WO2019205895A1

WO2019205895A1 - Paging method, network device and terminal

Info

Publication number: WO2019205895A1
Application number: PCT/CN2019/080775
Authority: WO
Inventors: 黄宇红; 丁海煜; 李男
Original assignee: 中国移动通信有限公司研究院; 中国移动通信集团有限公司
Priority date: 2018-04-28
Filing date: 2019-04-01
Publication date: 2019-10-31
Also published as: CN110418343B; CN110418343A

Abstract

Provided by the present disclosure are a paging method, a network device and a terminal, the method comprising: sending a paging message carrying a first identifier, the first identifier being determined according to a terminal identifier and/or first information.

Description

Paging method, network device and terminal

Cross-reference to related applications

The present application claims priority to Chinese Patent Application No. 201 810 404 405.

Technical field

The present disclosure relates to the field of communications technologies, and in particular, to a paging method, a network device, and a terminal.

Background technique

In a mobile communication system, such as a Long Time Evolution (LTE) system, a network device usually uses a system architecture evolved Temporary Mobile Station Identifier (S-TMSI) to page a terminal. In special cases, such as a network failure, the terminal can be paged using the International Mobile Station Identifier (IMSI). The S-TMSI is composed of a Mobile Management Entity Code (MMEC) and a Mobile Management Entity (MME) Temporary Mobile Station Identifier (M-TMSI). The S-TMSI is unique under the MME, and usually does not change over a long period of time (such as several hours to several days), and the S-TMSI has the possibility of being reversely cracked to obtain the real identity IMSI of the terminal. Therefore, both IMSI and S-TMSI have the potential to be exploited by illegal attacks. Once the above information is stolen, it will have a serious impact on the long-term or short-term security of the terminal.

Summary of the invention

The present disclosure provides a paging method, a network device, and a terminal, which solves the problem of poor security of a paging process in a mobile communication system.

An embodiment of the present disclosure provides a paging method, which is applied to a network device, and includes:

Sending a paging message carrying the first identifier; wherein the first identifier is determined according to the terminal identifier and/or the first information.

Before the step of sending the paging message carrying the first identifier, the paging method further includes:

Determining the first identifier according to the terminal identifier and/or the first information;

or,

Receiving the first identifier sent by the core network.

The step of determining the first identifier according to the terminal identifier and/or the first information includes:

The first algorithm is used to calculate the terminal identifier and/or the first information to obtain a first identifier.

The first identifier sent by the core network is: the terminal calculates and obtains the terminal identifier and/or the first information by using the first algorithm, and reports the result to the core network.

Or the first identifier is: the core network calculates the terminal identifier and/or the first information by using the first algorithm.

The first information includes: identifier information of the first algorithm, time domain resource information of the terminal sending the random access request, time domain resource number for sending the random access request, frequency domain resource information for sending the random access request, and sending random At least one of a frequency domain resource number of the access request, preamble information for transmitting the random access request, a preamble number for transmitting the random access request, a network identifier, and a padding field.

And configuring, according to the first identifier, a first target transmission location of the paging message.

The step of configuring a first target transmission location of the paging message according to the first identifier includes:

Performing a remainder calculation on the preset value for the first value to obtain a first value;

The first target transmission location of the paging message is configured according to the first value.

After the step of sending the paging message carrying the first identifier, the paging method further includes:

Receiving a target request sent by the terminal, where the target request carries the second identifier.

The target request includes one of a random access request, an attach request, and a radio resource configuration connection request.

The second identifier is obtained by the terminal by using the first algorithm to calculate the terminal identifier and/or the second information.

After the step of receiving the target request sent by the terminal, the paging method further includes:

When the second identifier is the same as the first identifier, the response information of the target request is sent.

After the step of sending the response information of the target request, the paging method further includes:

Receiving terminal identification and/or second information.

After the step of receiving the terminal identifier and/or the second information, the paging method further includes:

Obtaining a third identity;

The third identifier is obtained by calculating the terminal identifier and/or the second information by using the first algorithm.

After the step of obtaining the third identifier, the paging method further includes:

When the third identifier is the same as the second identifier, or when the third identifier is the same as the first identifier, the authentication is successful.

When the third identifier is different from the second identifier, or when the third identifier is different from the first identifier, the authentication fails.

The second information includes: identifier information of the first algorithm, time domain resource information of the terminal sending target request, time domain resource number of the sending target request, frequency domain resource information of the sending target request, and frequency domain resource number of the sending target request. And transmitting at least one of preamble information of the target request, a preamble number of the transmission target request, a terminal identifier, a network identifier, and a padding field.

The first algorithm includes one of a one-way function algorithm, a hash function algorithm, and an elliptic function algorithm.

The terminal identifier includes: an International Mobile Subscriber Identity (IMSI), a Temporary Mobile Subscriber Identity (TMSI), or a Mobile Equipment International Identity (IMEI).

An embodiment of the present disclosure provides a paging method, which is applied to a terminal, and includes:

Receiving a paging message carrying the first identifier; wherein the first identifier is determined according to the terminal identifier and/or the first information.

Before the step of receiving the paging message carrying the first identifier, the paging method further includes:

The first identifier is reported to the core network.

Before the step of receiving the paging message carrying the first identification information, the paging method further includes:

And determining, according to the first identifier, a first target transmission location of the paging message.

The step of determining a first target transmission location of the paging message according to the first identifier includes:

A first target transmission location of the paging message is determined based on the first value.

After the step of receiving the paging message carrying the first identifier, the paging method further includes:

Obtaining a second identifier;

The second identifier is obtained by using the first algorithm to calculate the terminal identifier and/or the second information.

After the step of obtaining the second identifier, the paging method further includes:

When the second identifier is the same as the first identifier, the target request carrying the second identifier is sent.

After the step of sending the target request carrying the second identifier, the paging method further includes:

Receive response information for the target request.

The paging method further includes: after the step of receiving the response information of the target request, the paging method further includes:

Sending a terminal identification and/or second information.

Embodiments of the present disclosure provide a paging method, including:

The network device sends a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information;

The terminal receives the paging message;

The terminal determines the second identifier according to the terminal identifier and/or the second information;

When the second identifier is the same as the first identifier, the terminal sends a target request to the network device.

Embodiments of the present disclosure provide a network device including: a processor; a memory coupled to the processor, and a transceiver coupled to the processor; wherein the processor is configured to invoke and execute the program stored in the memory and data,

The transceiver is configured to send a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information.

Among them, the processor is used to:

or,

Receiving the first identifier sent by the core network.

Among them, the processor is also used to:

Among them, the transceiver is also used to:

Receiving terminal identification and/or second information.

Among them, the processor is also used to:

Obtaining a third identity;

Among them, the processor is also used to:

Embodiments of the present disclosure provide a terminal, including: a processor; a memory coupled to the processor, and a transceiver coupled to the processor; wherein the processor is configured to call and execute programs and data stored in the memory ,

The transceiver is configured to receive a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information.

Among them, the processor is used to:

And controlling the transceiver to report the first identifier to the core network.

Among them, the processor is also used to:

Obtaining a second identifier;

Among them, the transceiver is also used to:

Receive response information for the target request.

Among them, the transceiver is also used to:

Sending a terminal identification and/or second information.

Embodiments of the present disclosure provide a communication device including: a processor, a memory storing a computer program, and when the computer program is executed by the processor, performing the above method.

Embodiments of the present disclosure provide a computer readable storage medium comprising instructions that, when executed by a computer, cause a computer to perform the paging method described above.

The foregoing technical solution of the present disclosure has the beneficial effects that the network device can use the first identifier to page the terminal, and the terminal performs the identification of the paging message according to the first identifier, where the first identifier is more difficult to be illegally attacked or stolen. It is also difficult to copy the call message, which can improve the security of the terminal communication.

DRAWINGS

FIG. 1 is a schematic flowchart diagram of a paging method on a network device side according to an embodiment of the present disclosure;

2 is a schematic flowchart of another network device side paging method according to an embodiment of the present disclosure;

FIG. 3 is a schematic structural diagram of a network device according to an embodiment of the present disclosure;

FIG. 4 is a schematic flowchart diagram of a paging method on a terminal side according to an embodiment of the present disclosure;

FIG. 5 is a schematic flowchart diagram of a terminal side paging method according to an embodiment of the present disclosure;

FIG. 6 is a schematic structural diagram of a terminal according to an embodiment of the present disclosure;

FIG. 7 is a block diagram showing the structure of a communication device according to an embodiment of the present disclosure.

detailed description

The technical problems, the technical solutions, and the advantages of the present invention will be more clearly described in conjunction with the accompanying drawings and specific embodiments. In the following description, specific details such as specific configurations and components are provided only to assist in a comprehensive understanding of the embodiments of the present disclosure. It will be apparent to those skilled in the art that various changes and modifications may be made to the embodiments described herein without departing from the scope and spirit of the disclosure. In addition, descriptions of well-known functions and constructions are omitted for clarity and conciseness.

It is to be understood that the phrase "one embodiment" or "an embodiment" or "an" or "an" Thus, "in one embodiment" or "in an embodiment" or "an" In addition, these particular features, structures, or characteristics may be combined in any suitable manner in one or more embodiments.

In the various embodiments of the present disclosure, it should be understood that the size of the serial numbers of the following processes does not mean the order of execution, and the order of execution of each process should be determined by its function and internal logic, and should not be implemented by the present disclosure. The implementation of the examples constitutes any limitation.

Additionally, the terms "system" and "network" are used interchangeably herein.

In the embodiments provided herein, it should be understood that "B corresponding to A" means that B is associated with A, and B can be determined from A. However, it should also be understood that determining B from A does not mean that B is only determined based on A, and that B can also be determined based on A and/or other information.

As shown in FIG. 1 , an embodiment of the present disclosure provides a paging method, which specifically includes the following steps:

Step 11: Send a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information.

In this embodiment, the network device configures the paging message of the terminal, and carries the first identifier determined according to the terminal identifier and/or the first information in the paging message, where the network device can send the paging to the terminal by using a broadcast manner. Message.

The first identifier here may be a preset hexadecimal value of a preset number of bits. For example, the first identifier is represented by an 8-digit hexadecimal number, and the value is 0x1903a30b; or the first identifier is represented by an 11-digit decimal number, and the value is 10000293940; or the first identifier is a 5-bit binary number. To represent, the value is 00100; the terminal identifier includes: an international mobile subscriber identity IMSI, a temporary mobile subscriber identity TMSI or an International Mobile Equipment Identity (IMEI), etc.; the network identity includes a network cell ID, Global Cell ID, PLMN, etc.

In this embodiment, the first identifier is determined according to the terminal identifier and/or the first information, but the first identifier cannot be mapped to the terminal identifier or the first information, that is, the first identifier is an irreversible algorithm. The terminal identifier is obtained by operation, and the terminal identifier or the first information cannot be obtained by the first identifier, so that the terminal cannot be security attacked, and the terminal identifier is transmitted after the integrity protection is established, so as to effectively protect the terminal. purpose.

Before the step 11, the method may further include: determining, by the network device, the first identifier carried by the paging message. Among them, the determination method includes but is not limited to the following methods:

Manner 1: Determine the first identifier according to the terminal identifier and/or the first information.

In this manner, the first identifier is determined by the network device, and the manner of determining may be implemented by using a first algorithm (wherein the first algorithm includes but is not limited to a one-way function algorithm or a hash function algorithm or an elliptic function algorithm) The irreversible algorithm performs an operation on the terminal identifier and/or the first information to obtain a first identifier. For example, when the system information of the network device is changed, the network device needs to send a paging message to the terminal, and the network device can determine the first identifier by using the terminal identifier and/or the first information carried by the terminal when initiating the random access request. The terminal identifier may be directly determined as the first identifier, that is, the terminal identifier is the same as the first identifier. Alternatively, the network device performs a one-way function operation or a hash function operation or an elliptic function operation according to the terminal identifier and/or the first information to obtain the first identifier.

Manner 2: Receive the first identifier sent by the core network.

In this mode, the first identifier is sent to the network device by the core network. The manner in which the core network determines the first identifier includes, but is not limited to, terminal reporting or core network autonomous determination.

The first identifier sent by the core network in the terminal reporting mode is: the terminal uses the first algorithm to calculate and obtain the terminal identifier and/or the first information, and reports the result to the core network. For example, the terminal uses a one-way function algorithm or a hash function algorithm or an elliptic function algorithm to calculate the terminal identifier and report it to the core network. For example, the first identifier is reported by the terminal to the core network when it is randomly accessed, and is stored by the core network. The first identifier is that when the terminal sends a random access request, the terminal performs a one-way function operation or a hash operation on the terminal identifier, and the calculation result is the first identifier. If the SHA256 algorithm is used, the maximum length of the input message does not exceed 2 ⁶⁴ bits, and the input is processed in 512-bit packets, and the output is a 256-bit binary number or a 64-bit hexadecimal number. The terminal identifier may be carried in the first field in the random access request. The first field may be the International Mobile Subscriber Identity (IMSI) of the terminal or the Temporary Mobile Subscriber Identity (TMSI) of the terminal or the Mobile Equipment International Identity (IMEI) of the terminal device. Or the first identifier is: the terminal uses a one-way function algorithm or a hash function algorithm or an elliptic function algorithm to calculate the terminal identifier and the first information, and reports the result to the core network. For example, the first identifier is that the terminal performs a one-way function operation or a hash operation on the terminal identifier and the first information, and the obtained operation value is used as the first identifier. The terminal identifier may be carried in the first field in the random access request, and the first information may be carried in the second field in the random access request. The first field may be the International Mobile Subscriber Identity (IMSI) of the terminal or the Temporary Mobile Subscriber Identity (TMSI) of the terminal or the Mobile Equipment International Identity (IMEI) of the terminal device, and the second field is an additional field for the terminal to calculate the first identifier.

The first identifier is determined by the core network by using the first algorithm to calculate the terminal identifier and/or the first information. For example, the core network uses a one-way function algorithm or a hash function algorithm or an elliptic function algorithm to calculate the terminal identifier. The first identifier is obtained by the core network, and the core network may be obtained according to the terminal identifier included in the paging request, for example, the core network obtains a one-way encryption function or a hash function operation according to the terminal identifier, where The terminal identifier is an International Mobile Subscriber Identity (IMSI) of the terminal, a Temporary Mobile Subscriber Identity (TMSI) of the terminal, or a Mobile Equipment International Identity (IMEI) of the terminal device. Specifically, the first identifier is determined to be a core network element, and the first identifier determined by the core network element is sent to the network device.

It is to be noted that the foregoing first information includes, but is not limited to, identifier information of the first algorithm, time domain resource information of the terminal sending the random access request, time domain resource number for sending the random access request, and sending the random access request. At least one of frequency domain resource information, a frequency domain resource number for transmitting a random access request, preamble information for transmitting a random access request, a preamble number for transmitting a random access request, a network identifier, and a padding field. The time domain resource information, the frequency domain resource information, and the preamble information may be understood as the size and location of the time-frequency code domain resource. For example, the time domain resource information may indicate that the time domain occupies several symbols, and the positions of the symbols are Where, the frequency domain resource information may indicate that the frequency occupies several resource blocks, and where are the locations of the resource blocks. The time domain resource number, the frequency domain resource number, and the preamble number can be understood as the system may divide all the available resources from the time domain, the frequency domain, and the code domain within a time window and respectively number them, and may be mapped according to the number. Corresponding time-frequency code domain resources. The padding field can be predefined or dynamically configured by the terminal. If the padding field is dynamically configured by the terminal, if the padding field is agnostic to the network device or the core network, the terminal is required to inform the network device or the core network of the padding field content. For example, if the padding field is a random value or other padding field dynamically configured by the terminal, the network device or the core network is agnostic to its content, and the terminal needs to send the padding field. In addition, the first information may also be information corresponding to the time domain, the frequency domain, and the code domain resource location used by the terminal to initiate the random access request. At this time, the network device may determine the first location according to the resource location of the terminal initiated the random access request. The content of a message, the terminal does not need to send the first information to the network device.

In an embodiment of the present disclosure, before step 11, the method may further include: configuring, according to the first identifier, a first target transmission location of the paging message. Among them, the determination method includes but is not limited to the following methods:

The first identifier is subjected to a remainder calculation on the preset value to obtain a first value; and the first target transmission location of the paging message is configured according to the first value. That is to say, the first target transmission location of the paging message is determined by the first identifier, and the specific method may be: obtaining the remainder of the specific identifier by the first identifier, for example, obtaining the first identifier pair 1024 to obtain the first A value is used, and the first value is mapped to the 1024 subframes, and the subframe that is sent by the paging message corresponding to the first identifier is determined to be the first target transmission location.

In another embodiment of the present disclosure, as shown in FIG. 2, the method includes:

Step 21: Send a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information.

After step 21, the method may further include:

Step 22: Receive a target request sent by the terminal, where the target request carries a second identifier.

The target request is sent by the terminal after confirming that the paging message is paging itself. The target request includes: a random access request, an attach request, or a radio resource configuration connection request. The second identifier is obtained by the terminal by using the first algorithm to calculate the terminal identifier and/or the second information. For example, after receiving the paging message, the terminal uses a one-way function algorithm or a hash function algorithm or an elliptic function algorithm on the terminal. The identifier is obtained by performing an operation on the terminal identifier and the second information by using a one-way function algorithm or a hash function algorithm or an elliptic function algorithm. That is, the terminal receives the paging message sent by the network device at the first target transmission location, and verifies whether the paging message is paging itself. In the process of verifying whether the paging message is paging itself, the first algorithm is adopted. Performing operation on the terminal identifier and/or the second information to obtain a second identifier, detecting whether the first identifier and the second identifier are consistent, and if yes, determining that the paging message is paging itself, otherwise not paging itself, to improve communication Security. If the paging message is paging itself, send a subsequent target request to the network device, such as: a random access request, an attach request (such as receiving a paging message initiated by network error recovery) or a radio resource configuration connection request. Wait. After receiving the target request, the network device verifies the target request, and verifies the response information of the target request by the terminal after the verification.

The method for the network device to verify the target request includes, but is not limited to, determining whether the target request is legal according to the second identifier, and responding to the response information of the target request, such as a random access request response and an attach establishment response, when the target request is legal. Or wireless resource configuration connection establishment response, etc. For example, after receiving the target request, the network device verifies the second identifier in the target request and the previously determined first identifier. If the second identifier is consistent with the first identifier, determining that the target request is legal, otherwise determining that the target request is not legitimate. That is to say, after step 22, it also includes:

Step 23: Send the response information of the target request when the second identifier is the same as the first identifier. In this way, the network device performs secondary verification on the target request sent by the terminal, which can further improve the security of the network communication.

After receiving the response information of the target request, the terminal sends the terminal identifier and/or the second information to the network device to perform an authentication process with the network device. Correspondingly, after the step 23, the network device may further include:

Step 24: Receive terminal identification and/or second information.

Optionally, after the step of receiving the terminal identifier and/or the second information, the network device may further include:

Step 25: Obtain a third identifier, where the third identifier is obtained by using a first algorithm to calculate the terminal identifier and/or the second information. After determining the third identifier, the network device further performs an authentication process according to the third identifier.

Among them, the authentication process includes but is not limited to:

Step 26: When the third identifier is the same as the second identifier, or when the third identifier is the same as the first identifier, the authentication succeeds.

Step 27: When the third identifier is different from the second identifier, or when the third identifier is different from the first identifier, the authentication fails.

Here, it is said that the authentication process no longer uses the traditional plaintext transmission method for authentication, but uses the first algorithm to calculate the ciphertext obtained by the transmitted plaintext, and further authenticates according to the ciphertext, thereby further improving the security of communication. Sex.

The foregoing second information includes, but is not limited to, the identifier information of the first algorithm, the time domain resource information of the terminal sending target request, the time domain resource number of the sending target request, the frequency domain resource information of the sending target request, and the sending target request. At least one of a frequency domain resource number, a preamble information of a transmission destination request, a preamble number of a transmission destination request, a terminal identifier, a network identifier, and a padding field. The padding field can be predefined or dynamically configured by the terminal.

It should be noted that the first algorithm involved in the embodiments of the present disclosure includes, but is not limited to, one of a one-way function algorithm, a hash function algorithm, and an elliptic function algorithm, and any one can implement terminal identification, first. The algorithms for performing irreversible operations on the information and/or the second information are all applicable to the embodiments of the present disclosure, and are not enumerated here.

The terminal identifiers involved in the embodiments of the present disclosure include, but are not limited to, an International Mobile Subscriber Identity (IMSI), a Temporary Mobile Subscriber Identity (TMSI), or a Mobile Equipment International Identity (IMEI).

In the paging method of the embodiment of the present disclosure, the network device may use the first identifier to page the terminal, and the terminal performs the identification of the paging message according to the first identifier, where the first identifier is difficult to be illegally attacked or stolen, and the paging is performed. Messages are also difficult to copy, which can improve the security of terminal communication.

The above embodiments respectively introduce the paging method of the present disclosure. The following embodiment will further explain the corresponding network device with reference to the accompanying drawings.

As shown in FIG. 3, an embodiment of the present disclosure further provides a network device, including: a processor 300; a memory 320 connected to the processor 300 through a bus interface, and a processor 300 through a bus interface. Connected transceiver 310; the memory 320 is configured to store programs and data used by the processor in performing operations; to transmit data information or pilots through the transceiver 310, and to receive through the transceiver 310 Uplink control channel; when the processor 300 calls and executes the program and data stored in the memory 320, the following functions are implemented:

The processor 300 is configured to read a program in the memory 320 and perform the following process.

The transceiver 310 is configured to receive and send data under the control of the processor 300, and can be used to:

The processor 300 is further configured to: determine, according to the terminal identifier and/or the first information, the first identifier;

or,

Receiving the first identifier sent by the core network.

The processor 300 is further configured to: perform operation on the terminal identifier and/or the first information by using a first algorithm to obtain a first identifier.

The processor 300 is further configured to: configure, according to the first identifier, a first target transmission location of the paging message.

The processor 300 is further configured to: perform a remainder calculation on the preset value by using the first identifier to obtain a first value;

The transceiver 310 is further configured to:

The transceiver 310 is further configured to: when the second identifier is the same as the first identifier, send response information of the target request.

The transceiver 310 is further configured to: receive the terminal identifier and/or the second information.

The processor 300 is further configured to: obtain a third identifier, where the third identifier is obtained by using a first algorithm to calculate the terminal identifier and/or the second information.

The processor 300 is further configured to: when the third identifier is the same as the second identifier, or when the third identifier is the same as the first identifier, the authentication succeeds.

The processor 300 is further configured to: when the third identifier is different from the second identifier, or when the third identifier is different from the first identifier, the authentication fails.

Here, in FIG. 3, the bus architecture may include any number of interconnected buses and bridges, specifically linked by one or more processors represented by processor 300 and various circuits of memory represented by memory 320. The bus architecture can also link various other circuits, such as peripherals, voltage regulators, and power management circuits, as is well known in the art and, therefore, will not be further described herein. The bus interface provides an interface. Transceiver 310 can be a plurality of components, including a transmitter and a transceiver, providing means for communicating with various other devices on a transmission medium. The processor 300 is responsible for managing the bus architecture and general processing, and the memory 320 can store data used by the processor 300 in performing operations.

The network device embodiment of the present disclosure is corresponding to the foregoing embodiment of the paging method. All the implementation methods in the foregoing method embodiments are applicable to the embodiment of the network device, and the same technical effects can be achieved. The network device can use the first identifier to page the terminal, and the terminal performs the identification of the paging message according to the first identifier, wherein the first identifier is difficult to be illegally attacked or stolen, and the paging message is difficult to be copied, which can improve Terminal communication security.

It will be understood by those skilled in the art that all or part of the steps of implementing the above embodiments may be implemented by hardware, or may be completed by a computer program indicating related hardware, and the computer program includes instructions for performing some or all of the above steps. And the computer program can be stored in a readable storage medium, which can be any form of storage medium.

The paging method of the embodiment of the present disclosure is described above from the network device side. The paging method on the terminal side will be further described below with reference to the accompanying drawings.

As shown in FIG. 4, an embodiment of the present disclosure provides a paging method, which is applied to a terminal, and may include the following steps:

Step 41: Receive a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information.

In this embodiment, the received paging message carries the first identifier determined according to the terminal identifier and/or the first information, and the paging message sent by the network device may be received in a broadcast manner. The first identifier here may be a preset hexadecimal value of a preset number of bits. For example, the first identifier is a 256-bit binary number or a 64-bit hexadecimal number. The terminal identifier includes: an International Mobile Subscriber Identity (IMSI), a Temporary Mobile Subscriber Identity (TMSI), or a Mobile Equipment International Identity (IMEI).

In this embodiment, the first identifier is determined according to the terminal identifier and/or the first information, but the first identifier cannot be mapped to the terminal identifier or the first information, so that the terminal cannot perform a security attack and can be effective. The purpose of protecting the terminal.

Before the step 31, the method may further include: determining, according to the terminal identifier and/or the first information, the first identifier; and reporting the first identifier to the core network.

The step of determining the first identifier according to the terminal identifier and/or the first information includes but is not limited to:

The first algorithm is used to calculate the terminal identifier and/or the first information to obtain a first identifier. For example, the terminal uses a one-way function algorithm or a hash function algorithm or an elliptic function algorithm to perform operation on the terminal identifier to obtain a first identifier; wherein, when the terminal sends a random access request, the terminal performs a one-way function operation or hash on the terminal identifier. Operation, the result of the calculation is the first identifier. If the SHA256 algorithm is used, the maximum length of the input message does not exceed 2 ⁶⁴ bits, and the input is processed in 512-bit packets, and the output is a 256-bit binary number or a 64-bit hexadecimal number. The terminal identifier may be carried in the first field in the random access request. The first field may be the International Mobile Subscriber Identity (IMSI) of the terminal or the Temporary Mobile Subscriber Identity (TMSI) of the terminal or the Mobile Equipment International Identity (IMEI) of the terminal device.

Alternatively, the terminal uses a one-way function algorithm or a hash function algorithm or an elliptic function algorithm to perform operation on the terminal identifier and the first information to obtain a first identifier. The terminal performs a one-way function operation or a hash operation or an elliptic function operation on the terminal identifier and the first information, and the obtained operation value is used as the first identifier. The terminal identifier may be carried in the first field in the random access request, and the first information may be carried in the second field in the random access request. The first field may be the International Mobile Subscriber Identity (IMSI) of the terminal or the Temporary Mobile Subscriber Identity (TMSI) of the terminal or the Mobile Equipment International Identity (IMEI) of the terminal device, and the second field is an additional field for the terminal to calculate the first identifier.

It is to be noted that the foregoing first information includes, but is not limited to, identifier information of the first algorithm, time domain resource information of the terminal sending the random access request, time domain resource number for sending the random access request, and sending the random access request. At least one of frequency domain resource information, a frequency domain resource number for transmitting a random access request, preamble information for transmitting a random access request, a preamble number for transmitting a random access request, a network identifier, and a padding field. The time domain resource information, the frequency domain resource information, and the preamble information may be understood as the size and location of the time-frequency code domain resource. For example, the time domain resource information may indicate that the time domain occupies several symbols, and the positions of the symbols are Where, the frequency domain resource information may indicate that the frequency occupies several resource blocks, and where are the locations of the resource blocks. The time domain resource number, the frequency domain resource number, and the preamble number can be understood as the system may divide all the available resources from the time domain, the frequency domain, and the code domain within a time window and respectively number them, and may be mapped according to the number. Corresponding time-frequency code domain resources. The padding field may be predefined or dynamically configured by the terminal. If the padding field is dynamically configured by the terminal, if the padding field is agnostic to the network device or the core network, the terminal is required to inform the network device or the core network of the padding field content. For example, the first information may also be information corresponding to the time domain, the frequency domain, and the code domain resource location used by the terminal to initiate the random access request. At this time, the network device may determine the first location according to the resource location of the terminal initiated the random access request. The content of a message, the terminal does not need to send the first information to the network device. If the first information is a random value or other padding field dynamically configured by the terminal, the network device or the core network is unaware of the content thereof, and the terminal needs to send the first information.

In an embodiment of the present disclosure, before step 31, the method may further include: determining, according to the first identifier, a first target transmission location of the paging message. Among them, the determination method includes but is not limited to the following methods:

The first identifier is subjected to a remainder calculation on the preset value to obtain a first value; and the first target transmission location of the paging message is determined according to the first value. That is to say, the first target transmission location received by the paging message is determined by the first identifier, and the specific method may be: obtaining the remainder of the specific identifier by the first identifier, for example, obtaining the first identifier pair 1024 to obtain the first A value is used, and the first value is mapped to the 1024 subframes, and the subframe that is sent by the paging message corresponding to the first identifier is determined to be the first target transmission location.

In another embodiment of the present disclosure, as shown in FIG. 5, the paging method includes:

Step 51: Receive a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information. After step 51, the method may further include:

Step 52: Obtain a second identifier, where the second identifier is obtained by using the first algorithm to calculate the terminal identifier and/or the second information. After the step of obtaining the second identification information, the terminal may further perform the following steps:

Step 53: When the second identifier is the same as the first identifier, send a target request carrying the second identifier to improve communication security.

Specifically, the terminal receives the paging message sent by the network device at the first target transmission location, and verifies whether the paging message is paging itself, so as to improve the security of the communication. The method for the terminal to verify whether the paging message is paging itself includes but is not limited to: using a one-way function algorithm or a hash function algorithm or an elliptic function algorithm to operate the terminal identifier, or adopting a one-way function algorithm or a hash function algorithm or an ellipse The function algorithm performs operation on the terminal identifier and the second information to obtain a second identifier. If the second identifier is the same as the first identifier, determining that the paging message is paging itself. The terminal determines the second identifier, specifically: the terminal performs a one-way function operation or a hash operation or an elliptic function operation on the terminal identifier, and the calculation result is the second identifier information, and detects whether the first identifier carried in the second identifier and the paging message is The same, if the same, it is determined that the paging message is paging itself. Or the terminal performs a one-way function operation or a hash operation or an elliptic function operation on the terminal identifier and the second information, and obtains the operation value and uses the second identifier to detect whether the second identifier is the same as the first identifier carried in the paging message. If they are the same, it is determined that the paging message is paging itself.

The target request includes: a random access request, an attach request, or a radio resource configuration connection request. After transmitting the target request carrying the second identifier, the terminal receives the response information of the target request, and the response information is fed back after the network device confirms that the target request is legal. The method for the network device to verify the target request includes, but is not limited to, determining whether the target request is legal according to the second identifier, and responding to the response information of the target request, such as a random access request response and an attach establishment response, when the target request is legal. Or wireless resource configuration connection establishment response, etc. In this way, the network device performs secondary verification on the target request sent by the terminal, which can further improve the security of the network communication. The step of determining whether the target request is legal according to the second identifier may include, but is not limited to: the network device, after receiving the target request, verifying the second identifier in the target request with the previously determined first identifier, if the second identifier Consistent with the first identifier, it is determined that the target request is legal, otherwise the target request is determined to be illegal. That is to say, after receiving the target request sent by the terminal, the network device sends the response information of the target request when the second identifier is the same as the first identifier. In this way, the network device performs secondary verification on the target request sent by the terminal, which can further improve the security of the network communication. Accordingly, the terminal performs the following steps:

Step 54: Receive response information of the target request.

After receiving the response information of the target request, the terminal may further perform:

Step 55: Send the terminal identifier and/or the second information to send the terminal identifier and/or the second information to the network device to perform an authentication process with the network device. After the step of receiving the terminal identifier and/or the second information, the network device further includes: obtaining the third identifier; wherein the third identifier is obtained by using the first algorithm to calculate the terminal identifier and/or the second information. The authentication process includes but is not limited to: the network device uses a one-way function algorithm or a hash function algorithm or an elliptic function algorithm to operate the terminal identifier, or uses a one-way function algorithm or a hash function algorithm or an elliptic function algorithm to identify the terminal and the The second information is calculated to obtain the third identification information. If the third identification information is the same as the second identifier, or the third identifier is the same as the first identifier, the authentication succeeds. Specifically, the network device performs a one-way function operation or a hash operation or an elliptic function operation on the terminal identifier, and the calculation result is the third identifier information, and detects whether the third identifier information is the same as the second identifier carried in the target request, or detects Whether the third identifier information is the same as the first identifier in the paging message, if the same, the authentication succeeds; if different, the authentication fails. Alternatively, the network device performs a one-way function operation or a hash operation or an elliptic function operation on the terminal identifier and the second information, obtains the operation value, and uses the third identifier information to detect whether the third identifier information and the second identifier carried in the target request are The same, or detecting whether the third identifier information is the same as the first identifier in the paging message, if the same, the authentication succeeds; if not, the authentication fails. The above authentication process no longer uses the traditional plaintext transmission mode for authentication, but uses the first algorithm to calculate the ciphertext obtained by the transmitted plaintext, and further authenticates according to the ciphertext, thereby further improving the security of the communication.

The above method effectively utilizes two major characteristics of an algorithm such as a one-way function, a hash function, and an elliptic function:

1) Irreversible, the input value cannot be inferred from the output value, and the input data can be effectively protected, that is, the terminal identification is provided with validity protection, and even if the illegal device obtains the identification, the real identification of the terminal cannot be reversely cracked;

2) The randomness of the output value and the input value can only be obtained by a random method to meet the required output value. That is, there is no fixed association between the input value and the output value, and the output value is randomly generated. Therefore, even if the terminal knows the identifier in the paging message sent by the network, the corresponding identifier cannot be obtained through the pseudo-random method, and the network device provides through the terminal. The validity of the limit value can be verified by calculating all or part of the input parameters in the first information of the identifier. When the partial information for calculating the limit, such as the time domain, the frequency domain, and/or the code domain resource used by the sending target request, is determined by the network device according to the received target request, the terminal reports the verification service. A message only needs to contain other input information and values in addition to the above information.

In the paging method of the embodiment of the present disclosure, the terminal receives the paging message carrying the first identifier, and the terminal performs the identification of the paging message according to the first identifier, where the first identifier is difficult to be illegally attacked or stolen, and the paging message is It is also difficult to copy, which can improve the security of terminal communication.

The above embodiments respectively introduce the paging method of the present disclosure. The following embodiments will further explain the corresponding terminals in conjunction with the accompanying drawings.

As shown in FIG. 6, the embodiment provides a terminal, including:

a processor 63; and a memory 63 connected to the processor 61 via a bus interface 62, the memory 63 for storing programs and data used by the processor 61 when performing operations, when the processor 61 calls and When the program and data stored in the memory 63 are executed, the following process is performed.

The transceiver 64 is connected to the bus interface 62 for receiving and transmitting data under the control of the processor 61, and is specifically configured to: receive a paging message carrying the first identifier; wherein the first identifier is based on the terminal identifier And/or the first information is determined.

The processor 61 is further configured to: determine, according to the terminal identifier and/or the first information, the first identifier;

The first identifier is reported to the core network.

The processor 61 is further configured to: perform operation on the terminal identifier and/or the first information by using the first algorithm to obtain the first identifier.

The processor 61 is further configured to: determine, according to the first identifier, a first target transmission location of the paging message.

The processor 61 is further configured to: perform a remainder calculation on the preset value by using the first identifier to obtain a first value;

The processor 61 is further configured to: obtain a second identifier;

The transceiver 64 is further configured to: when the second identifier is the same as the first identifier, send a target request that carries the second identifier.

The transceiver 64 is further configured to: receive response information of the target request.

The transceiver 64 is further configured to: send the terminal identifier and/or the second information.

It should be noted that in FIG. 6, the bus architecture may include any number of interconnected buses and bridges, specifically linked by one or more processors represented by processor 61 and various circuits of memory represented by memory 63. The bus architecture can also link various other circuits such as peripherals, voltage regulators, and power management circuits, which are well known in the art and, therefore, will not be further described herein. The bus interface provides an interface. Transceiver 64 can be a plurality of components, including a transmitter and a transceiver, providing means for communicating with various other devices on a transmission medium. For different terminals, the user interface 65 may also be an interface capable of externally connecting the required devices, including but not limited to a keypad, a display, a speaker, a microphone, a joystick, and the like. The processor 61 is responsible for managing the bus architecture and the usual processing, and the memory 63 can store data used by the processor 61 when performing operations.

The terminal embodiment of the present disclosure corresponds to the embodiment of the foregoing method, and all the implementation methods in the foregoing method embodiments are applicable to the embodiment of the terminal, and the same technical effects can be achieved. The terminal receives the paging message carrying the first identifier, and the terminal performs the identification of the paging message according to the first identifier, wherein the first identifier is difficult to be illegally attacked or stolen, and the paging message is also difficult to be copied, thereby improving the terminal. The security of communication.

The disclosure provides a paging method, including: the network device sends a paging message carrying the first identifier; wherein the first identifier is determined according to the terminal identifier and/or the first information;

The terminal receives the paging message;

It should be noted that the embodiments on the network device side and the terminal side are applicable to the embodiment of the paging method, and are not described again in order to avoid redundancy.

As shown in FIG. 7, a communication device 70 of the present disclosure includes a processor 72, a memory 73 storing a computer program, and when the computer program is executed by the processor 72, performs the method as described in the above embodiments.

It should be noted that the communication device may be the above-mentioned network device, or may be the above-mentioned terminal, and can achieve the technical effects achieved by the network device or the terminal. The communication device may further include: a transceiver 71, which is communicably connected to the processor 72 via a bus interface or an interface, and the transceiver 71 and the memory 73 may also be communicatively connected through a bus interface or an interface. The functions of the above transceivers can also be implemented by a processor. The communication device of the present disclosure may further include other components for implementing the above method. All the implementations in the foregoing method embodiments are applicable to the embodiment of the communication device, and the same technical effects can be achieved. The communication device may be the terminal described in the foregoing embodiment, or may be the network device described in the foregoing embodiment. Embodiments of the present disclosure also provide a computer readable storage medium comprising instructions that, when executed by a computer, cause a computer to perform the method as described above. Specifically, the computer readable storage medium stores a computer program, which is implemented by the processor to implement the processes of the paging method embodiment, and can achieve the same technical effect. To avoid repetition, details are not described herein again. The computer readable storage medium, such as a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk.

Those of ordinary skill in the art will appreciate that the elements and algorithm steps of the various examples described in connection with the embodiments disclosed herein can be implemented in electronic hardware or a combination of computer software and electronic hardware. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the solution. A person skilled in the art can use different methods to implement the described functions for each particular application, but such implementation should not be considered to be beyond the scope of the present disclosure.

A person skilled in the art can clearly understand that for the convenience and brevity of the description, the specific working process of the system, the device and the unit described above can refer to the corresponding process in the foregoing method embodiment, and details are not described herein again.

In the embodiments provided by the present disclosure, it should be understood that the disclosed apparatus and method may be implemented in other manners. For example, the device embodiments described above are merely illustrative. For example, the division of the unit is only a logical function division. In actual implementation, there may be another division manner, for example, multiple units or components may be combined or Can be integrated into another system, or some features can be ignored or not executed. In addition, the mutual coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection through some interface, device or unit, and may be in an electrical, mechanical or other form.

The units described as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of the embodiment.

In addition, each functional unit in various embodiments of the present disclosure may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit.

The functions may be stored in a computer readable storage medium if implemented in the form of a software functional unit and sold or used as a standalone product. Based on such understanding, a portion of the technical solution of the present disclosure that contributes in essence or to the related art or a part of the technical solution may be embodied in the form of a software product stored in a storage medium, including several The instructions are for causing a computer device (which may be a personal computer, server, or network device, etc.) to perform all or part of the steps of the methods described in various embodiments of the present disclosure. The foregoing storage medium includes various media that can store program codes, such as a USB flash drive, a mobile hard disk, a ROM, a RAM, a magnetic disk, or an optical disk.

Moreover, it should be noted that in the apparatus and method of the present disclosure, it is apparent that the various components or steps may be decomposed and/or recombined. These decompositions and/or recombinations should be considered as equivalents to the present disclosure. Also, the steps of performing the above-described series of processes may naturally be performed in chronological order in the order illustrated, but need not necessarily be performed in chronological order, and some steps may be performed in parallel or independently of each other. It will be appreciated by those skilled in the art that all or any of the steps or components of the methods and apparatus of the present disclosure may be in a network of any computing device (including a processor, storage medium, etc.) or computing device, in hardware, firmware The software, or a combination thereof, is implemented by those of ordinary skill in the art using their basic programming skills while reading the description of the present disclosure.

Thus, the objects of the present disclosure can also be achieved by running a program or a set of programs on any computing device. The computing device can be a well-known general purpose device. Accordingly, the objects of the present disclosure may also be realized by merely providing a program product including program code for implementing the method or apparatus. That is to say, such a program product also constitutes the present disclosure, and a storage medium storing such a program product also constitutes the present disclosure. It will be apparent that the storage medium may be any known storage medium or any storage medium developed in the future. It should also be noted that in the apparatus and method of the present disclosure, it is apparent that various components or steps may be decomposed and/or recombined. These decompositions and/or recombinations should be considered as equivalents to the present disclosure. Also, the steps of performing the series of processes described above may naturally be performed in chronological order in the order illustrated, but need not necessarily be performed in chronological order. Certain steps may be performed in parallel or independently of one another.

The above is an alternative embodiment of the present disclosure, and it should be noted that those skilled in the art can also make several improvements and retouchings without departing from the principles of the present disclosure. It should also be considered as the scope of protection of the present disclosure.

Claims

A paging method applied to a network device, including:

Sending a paging message carrying the first identifier; wherein the first identifier is determined according to the terminal identifier and/or the first information.
The method according to claim 1, before the step of transmitting the paging message carrying the first identifier, the method further includes:

Determining the first identifier according to the terminal identifier and/or the first information; or

Receiving the first identifier sent by the core network.
The paging method according to claim 2, wherein the step of determining the first identifier according to the terminal identifier and/or the first information comprises:

The first identifier is used to calculate the terminal identifier and/or the first information to obtain the first identifier.
The paging method according to claim 2, wherein

The first identifier sent by the core network is: the terminal calculates and obtains the terminal identifier and/or the first information by using a first algorithm, and reports the information to the core network;

Or the first identifier is that the core network calculates and obtains the terminal identifier and/or the first information by using a first algorithm.
The paging method according to any one of claims 1 to 4, wherein the first information comprises: identification information of the first algorithm, time domain resource information of a terminal sending a random access request, and sending random access The requested time domain resource number, the frequency domain resource information for sending the random access request, the frequency domain resource number for sending the random access request, the preamble information for sending the random access request, the preamble number for sending the random access request, and the network At least one of the identification and padding fields.
The paging method according to any one of claims 1 to 4, before the step of transmitting the paging message carrying the first identifier, the method further includes:

And configuring, according to the first identifier, a first target transmission location of the paging message.
The paging method according to claim 6, wherein the step of configuring the first target transmission location of the paging message according to the first identifier comprises:

Performing a remainder calculation on the preset value on the preset value to obtain a first value;

And configuring, according to the first value, a first target transmission location of the paging message.
The method according to claim 1, after the step of transmitting the paging message carrying the first identifier, the method further includes:

Receiving a target request sent by the terminal, where the target request carries a second identifier.
The paging method according to claim 8, wherein

The target request includes one of a random access request, an attach request, and a radio resource configuration connection request.
The paging method according to claim 8, wherein the second identifier is obtained by the terminal calculating the terminal identifier and/or the second information by using a first algorithm.
The paging method according to claim 8, after the step of receiving the target request sent by the terminal, the method further includes:

And transmitting, when the second identifier is the same as the first identifier, response information of the target request.
The paging method of claim 11, after the step of transmitting the response information of the target request, further comprising:

Receiving the terminal identifier and/or the second information.
The paging method according to claim 12, after the step of receiving the terminal identifier and/or the second information, further comprising:

Obtaining a third identity;

The third identifier is obtained by using the first algorithm to calculate the terminal identifier and/or the second information.
The paging method of claim 13, after the step of obtaining the third identifier, further comprising:

When the third identifier is the same as the second identifier, or when the third identifier is the same as the first identifier, the authentication succeeds.
The paging method of claim 13, after the step of obtaining the third identifier, further comprising:

When the third identifier is different from the second identifier, or when the third identifier is different from the first identifier, the authentication fails.
The paging method according to any one of claims 10, 12 to 15, wherein the second information comprises: identification information of the first algorithm, time domain resource information of the terminal transmitting the target request, and a request to send the target The time domain resource number, the frequency domain resource information of the transmission target request, the frequency domain resource number of the transmission destination request, the preamble information of the transmission destination request, the preamble number of the transmission destination request, the terminal identifier, the network identifier, and the padding field One.
The paging method according to any one of claims 3, 4, 10, 13 to 15, wherein the first algorithm comprises one of a one-way function algorithm, a hash function algorithm, and an elliptic function algorithm.
The paging method according to claim 1, wherein the terminal identifier comprises: an International Mobile Subscriber Identity (IMSI), a Temporary Mobile Subscriber Identity (TMSI) or a Mobile Equipment International Identity (IMEI).
A paging method is applied to a terminal, including:

Receiving a paging message carrying the first identifier; wherein the first identifier is determined according to the terminal identifier and/or the first information.
The paging method of claim 19, before the step of receiving the paging message carrying the first identifier, further comprising:

Determining the first identifier according to the terminal identifier and/or the first information;

The first identifier is reported to the core network.
The paging method according to claim 20, wherein the step of determining the first identifier according to the terminal identifier and/or the first information comprises:

The first identifier is used to calculate the terminal identifier and/or the first information to obtain the first identifier.
The paging method according to any one of claims 19 to 21, wherein the first information comprises: identification information of the first algorithm, time domain resource information of a terminal sending a random access request, and sending random access The requested time domain resource number, the frequency domain resource information for sending the random access request, the frequency domain resource number for sending the random access request, the preamble information for sending the random access request, the preamble number for sending the random access request, and the network At least one of the identification and padding fields.
The paging method of claim 19, before the step of receiving the paging message carrying the first identification information, further comprising:

Determining, according to the first identifier, a first target transmission location of the paging message.
The paging method according to claim 23, wherein the step of determining the first target transmission location of the paging message according to the first identifier comprises:

Performing a remainder calculation on the preset value on the preset value to obtain a first value;

Determining, according to the first value, a first target transmission location of the paging message.
The paging method of claim 19, after the step of receiving the paging message carrying the first identifier, further comprising:

Obtaining a second identifier;

The second identifier is obtained by using the first algorithm to calculate the terminal identifier and/or the second information.
The paging method according to claim 25, after the step of obtaining the second identifier, further comprising:

And when the second identifier is the same as the first identifier, sending a target request that carries the second identifier.
The paging method according to claim 26, wherein the target request comprises one of a random access request, an attach request, and a radio resource configuration connection request.
The paging method according to claim 26, after the step of transmitting the target request carrying the second identifier, further comprising:

Receiving response information of the target request.
The paging method according to claim 28, after the step of receiving the response information of the target request, further comprising:

Sending a terminal identification and/or second information.
The paging method according to any one of claims 25 to 29, wherein the second information comprises: identification information of the first algorithm, time domain resource information of the terminal transmission target request, and a transmission destination request Time domain resource number, frequency domain resource information of the transmission destination request, frequency domain resource number of the transmission destination request, preamble information of the transmission destination request, preamble number of the transmission destination request, terminal identity, network identity, and padding field At least one.
The paging method according to any one of claims 21, 25 to 29, wherein the first algorithm comprises one of a one-way function algorithm, a hash function algorithm, and an elliptic function algorithm.
The paging method according to claim 19, wherein the terminal identifier comprises: an International Mobile Subscriber Identity (IMSI), a Temporary Mobile Subscriber Identity (TMSI) or a Mobile Equipment International Identity (IMEI).
A paging method comprising:

The network device sends a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information;

Receiving, by the terminal, the paging message;

Determining, by the terminal, the second identifier according to the terminal identifier and/or the second information;

When the second identifier is the same as the first identifier, the terminal sends a target request to the network device.
A network device comprising: a processor; a memory coupled to the processor; and a transceiver coupled to the processor; wherein the processor is configured to invoke and execute programs and data stored in the memory ,

The transceiver is configured to send a paging message carrying the first identifier, where the first identifier is determined according to the terminal identifier and/or the first information.
The network device of claim 34, wherein the processor is configured to:

Determining the first identifier according to the terminal identifier and/or the first information;

or,

Receiving the first identifier sent by the core network.
The network device according to claim 34 or 35, wherein the processor is further configured to:

And configuring, according to the first identifier, a first target transmission location of the paging message.
The network device of claim 34, wherein the transceiver is further configured to:

Receiving a target request sent by the terminal, where the target request carries a second identifier.
The network device of claim 37, wherein the transceiver is further configured to:

And transmitting, when the second identifier is the same as the first identifier, response information of the target request.
The network device of claim 38, wherein the transceiver is further configured to:

Receiving the terminal identifier and/or the second information.
The network device of claim 39, wherein the processor is further configured to:

Obtaining a third identity;

The third identifier is obtained by using the first algorithm to calculate the terminal identifier and/or the second information.
The network device of claim 40, wherein the processor is further configured to:

When the third identifier is the same as the second identifier, or when the third identifier is the same as the first identifier, the authentication succeeds.
The network device of claim 40, wherein the processor is further configured to:

When the third identifier is different from the second identifier, or when the third identifier is different from the first identifier, the authentication fails.
A terminal comprising: a processor; a memory coupled to the processor; and a transceiver coupled to the processor; wherein the processor is configured to invoke and execute programs and data stored in the memory,

The transceiver is configured to receive a paging message carrying a first identifier, where the first identifier is determined according to the terminal identifier and/or the first information.
The terminal of claim 43, wherein the processor is configured to:

Determining the first identifier according to the terminal identifier and/or the first information;

And controlling the transceiver to report the first identifier to the core network.
The terminal according to claim 43 or 44, wherein the processor is further configured to:

Determining, according to the first identifier, a first target transmission location of the paging message.
The terminal of claim 43, wherein the processor is further configured to:

Obtaining a second identifier;

The second identifier is obtained by using the first algorithm to calculate the terminal identifier and/or the second information.
The terminal of claim 46, wherein the transceiver is further configured to:

And when the second identifier is the same as the first identifier, sending a target request that carries the second identifier.
The terminal of claim 47, wherein the transceiver is further configured to:

Receiving response information of the target request.
The terminal of claim 48, wherein the transceiver is further configured to:

Sending a terminal identification and/or second information.
A communication device comprising: a processor, a memory storing a computer program, the computer program being executed by a processor, performing the method of any one of claims 1 to 18, or any one of 19 to 32 Methods.
A computer readable storage medium comprising instructions which, when executed by a computer, cause the computer to perform the method of any one of claims 1 to 18 or the paging method of any of 19 to 32.