WO2023019816A1 - Optical network device authentication and configuration management method and system in fttr scenario - Google Patents

Optical network device authentication and configuration management method and system in fttr scenario Download PDF

Info

Publication number
WO2023019816A1
WO2023019816A1 PCT/CN2021/135949 CN2021135949W WO2023019816A1 WO 2023019816 A1 WO2023019816 A1 WO 2023019816A1 CN 2021135949 W CN2021135949 W CN 2021135949W WO 2023019816 A1 WO2023019816 A1 WO 2023019816A1
Authority
WO
WIPO (PCT)
Prior art keywords
ont
type
edge
loid
ont device
Prior art date
Application number
PCT/CN2021/135949
Other languages
French (fr)
Chinese (zh)
Inventor
彭文豪
刘文超
赵伟峰
侍芯蕊
童晟辰
Original Assignee
天翼数字生活科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 天翼数字生活科技有限公司 filed Critical 天翼数字生活科技有限公司
Priority to BR112023021776A priority Critical patent/BR112023021776A2/en
Publication of WO2023019816A1 publication Critical patent/WO2023019816A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q11/00Selecting arrangements for multiplex systems
    • H04Q11/0001Selecting arrangements for multiplex systems using optical switching
    • H04Q11/0062Network aspects
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • H04L41/0813Configuration setting characterised by the conditions triggering a change of settings
    • H04L41/082Configuration setting characterised by the conditions triggering a change of settings the condition being updates or upgrades of network functionality
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Definitions

  • the present invention relates to the field of network technology and security, and more specifically, relates to an optical network device authentication and configuration management method and system under the FTTR scenario.
  • FTTR Fiber to the Room refers to the deployment of all-optical gateways and sub-devices in the home on the basis of FTTH (Fiber to the Home), and through the PON (Passive Optical Network) technology to achieve optical fiber communication coverage to the user's room.
  • Figure 1 illustrates a typical architecture for FTTH and FTTR.
  • ordinary home gateway is the optical network terminal equipment ONT (Optical Network Terminal) deployed on the user end, which is connected to the central office equipment OLT (Optical Line Terminal) through the home optical fiber.
  • ONT optical Network Terminal
  • OLT Optical Line Terminal
  • the ONT device After passing the authentication, the ONT device initiates account authentication (such as PPPoE dial-up) to the authentication system server (such as BRAS server, Broadband Remote Access Server).
  • account authentication such as PPPoE dial-up
  • the gateway is generally connected point-to-point to the next-level router through a network cable, and the router is further responsible for the network coverage in the home, such as further cascading multiple APs.
  • the lower branch of Figure 1 represents an exemplary FTTR scenario.
  • the ONT device first connected to the home optical fiber is the FTTR home all-optical gateway, which is further connected to multiple FTTR sub-devices at the next level through optical fibers (that is, point-to-multipoint). These FTTR sub-devices typically Placed in different rooms, the so-called "fiber into the room”.
  • the FTTR home all-optical gateway as the ONT registers and authenticates with the OLT, initiates account authentication to the authentication system server, and accepts the automatic configuration server ACS (Auto-Configuration Server) of the operator.
  • ACS Automatic Configuration Server
  • these FTTR sub-devices are similar to routers in FTTH scenarios when used, and belong to the internal devices of the LAN, and the access network does not perceive them.
  • FTTR FTTR home all-optical gateway
  • main ONT device the FTTR home all-optical gateway
  • the room shares the total bandwidth of this household's FTTR service, for example, 1000Mbps.
  • users in each room want to use independently of each other (FTTR primary users), for example, want to purchase different network access services (such as different bandwidth, different activation/deactivation time), the current management method does not support .
  • the invention aims to solve the problem that the device access authentication and management process of the current PON technology cannot be well compatible with the FTTR scene.
  • a method for classified access authentication and configuration management of home all-optical network equipment based on FTTR scenarios is provided, wherein the home all-optical gateway and sub-devices register and authenticate with the OLT respectively and accept management, and the sub-devices can be managed according to the Depending on the requirements, it supports the two modes of central office access authentication and ACS management or home gateway local management.
  • a method for optical network device authentication and configuration management in an FTTR scenario includes:
  • Assign an LOID indicating the type of equipment to each optical network device wherein the LOID includes at least Type A LOID, Type B1 LOID, and Type B2 LOID, wherein Type A LOID indicates that the optical network equipment is the master ONT equipment, and Type B1 LOID indicates that the optical network
  • the device is a Class B1 edge ONT device managed by ACS, and the Class B2 LOID indicates that the optical network device is a Class B2 edge ONT device not managed by ACS;
  • the B2 type edge ONT device is configured to register and authenticate with its coupled main ONT device and accept the management of the main ONT device.
  • a method for optical network device authentication and configuration management in an FTTR scenario wherein each optical network device has a LOID indicating the type of the device, wherein the LOID includes at least a type A LOID , Type B1 LOID, and Type B2 LOID, where Type A LOID indicates that the optical network device is the main ONT device, Type B1 LOID indicates that the optical network device is a Type B1 edge ONT device managed by the ACS, and Type B2 LOID indicates that the optical network device is not A B2 class edge ONT device managed by the ACS, wherein the method is performed by the main ONT device and includes the following steps:
  • edge ONT device In response to determining that the edge ONT device is a Class B1 edge ONT device:
  • edge ONT device In response to determining that the edge ONT device is a Class B2 edge ONT device:
  • the authentication result is returned to the B2-type edge ONT device and a configuration is issued, wherein the configuration configures the B2-type edge ONT device in bridge mode.
  • the method further includes: receiving the updated account number and configuration information of the edge ONT device associated with the master ONT device issued by the ACS.
  • a method for optical network device authentication and configuration management in an FTTR scenario wherein each optical network device has a LOID indicating the type of the device, wherein the LOID includes at least a type A LOID , Type B1 LOID, and Type B2 LOID, where Type A LOID indicates that the optical network device is the main ONT device, Type B1 LOID indicates that the optical network device is a Type B1 edge ONT device managed by the ACS, and Type B2 LOID indicates that the optical network device is not A B2 class edge ONT device managed by the ACS, wherein the method is performed by a B1 class edge ONT device and includes the following steps:
  • each optical network device has a LOID indicating the type of the device, wherein the LOID includes at least a type A LOID , Type B1 LOID, and Type B2 LOID, where Type A LOID indicates that the optical network device is the main ONT device, Type B1 LOID indicates that the optical network device is a Type B1 edge ONT device managed by the ACS, and Type B2 LOID indicates that the optical network device is not A B2 class edge ONT device managed by the ACS, wherein the method is performed by the B2 class edge ONT device and includes the following steps:
  • a method for optical network device authentication and configuration management in an FTTR scenario wherein each optical network device has a LOID indicating the type of the device, wherein the LOID includes at least a type A LOID , Type B1 LOID, and Type B2 LOID, where Type A LOID indicates that the optical network device is the main ONT device, Type B1 LOID indicates that the optical network device is a Type B1 edge ONT device managed by the ACS, and Type B2 LOID indicates that the optical network device is not A B2 class edge ONT device managed by the ACS, wherein the method is performed by the ACS and includes the following steps:
  • the account authentication is in response to receiving the configuration information request from the master ONT device, sending the account number and configuration information of the master ONT device and edge ONT devices associated with the master ONT device to the master ONT device;
  • the updated account number and configuration information of the edge ONT device are sent to the master ONT device.
  • a system for providing FTTR services includes an ACS, an authentication system, an OLT device, a master ONT device, and one or more edge ONTs coupled to the master ONT device equipment, of which:
  • Each of the master ONT device and the edge ONT device has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a B1 type LOID, and a B2 type LOID, wherein the type A LOID indicates that the optical network device is a master ONT device, B1 type LOID indicates that the optical network device is a B1 type edge ONT device managed by ACS, and B2 type LOID indicates that the optical network device is a B2 type edge ONT device not managed by ACS;
  • said master ONT device is configured to register and authenticate with said OLT device and accept said ACS management;
  • the B1-type edge ONT device is configured to register and authenticate with the OLT device through the master ONT device and accept the ACS management;
  • the B2-type edge ONT device is configured to register and authenticate with its coupled master ONT device and accept the management of the master ONT device.
  • the master ONT device is further configured to:
  • edge ONT device In response to determining that the edge ONT device is a Class B1 edge ONT device:
  • edge ONT device In response to determining that the edge ONT device is a Class B2 edge ONT device:
  • the authentication result is returned to the B2-type edge ONT device and a configuration is issued, wherein the configuration configures the B2-type edge ONT device in bridge mode.
  • the master ONT device is further configured to: receive the updated account number and configuration information of the edge ONT device associated with the master ONT device issued by the ACS.
  • the B1 type edge ONT device is further configured to:
  • the B2 type edge ONT device is further configured to:
  • the ACS is configured to:
  • the account authentication is in response to receiving the configuration information request from the master ONT device, sending the account number and configuration information of the master ONT device and edge ONT devices associated with the master ONT device to the master ONT device;
  • the updated account number and configuration information of the edge ONT device are sent to the master ONT device.
  • the optical network device authentication and configuration management method of the present invention has at least the following advantages:
  • the home gateway and sub-devices are classified and identified through LOID, and registered and certified separately;
  • the sub-device in the home accepts two modes of local management or ACS management.
  • FIG. 1 A typical architecture of FTTH and FTTR in the prior art is illustrated in FIG. 1 .
  • Fig. 2 is a schematic diagram of an FTTR scenario according to an embodiment of the present invention.
  • Fig. 3 is an example registration authentication process of a B1 type ONT device according to an embodiment of the present invention.
  • Fig. 4 is an example registration authentication process of a B2 type ONT device according to an embodiment of the present invention.
  • Fig. 5 is an exemplary flowchart of a method for optical network device authentication and configuration management in an FTTR scenario according to an embodiment of the present invention.
  • Fig. 6 is an exemplary flowchart of an optical network device authentication and configuration management method implemented by a master ONT device according to an embodiment of the present invention.
  • Fig. 7 is an exemplary flowchart of an optical network device authentication and configuration management method implemented by an edge ONT device according to an embodiment of the present invention.
  • Fig. 8 is an exemplary flowchart of an optical network device authentication and configuration management method implemented by an edge ONT device according to an embodiment of the present invention.
  • Fig. 9 is an exemplary flowchart of an optical network device authentication and configuration management method implemented by an ACS according to an embodiment of the present invention.
  • Fig. 10 is an example architecture diagram of a system for providing FTTR services according to an embodiment of the present invention.
  • the present invention performs logic optimization and method improvement for FTTR scenarios on the basis of the current ONT access authentication method.
  • the "home gateway” or “home all-optical gateway” mentioned in this article is not limited to home use only, but can generally refer to the main ONT device installed on the user side in the FTTR architecture
  • the term “master ONT device” can be used interchangeably with “master gateway”, “master optical modem”, “master device”, “traditional ONT device” or “conventional ONT device”.
  • FTTR sub-device” or “sub-device” generally refers to the edge ONT device installed on the user side in the FTTR architecture and coupled to the master ONT device, while the term “edge ONT device” can be used with "sub-device” or “slave ONT device” are used interchangeably.
  • the main ONT device and the edge ONT device may also be collectively referred to as “optical network device” or "ONT device”.
  • Fig. 2 is a schematic diagram of an FTTR scenario according to an embodiment of the present invention.
  • the FTTR service is applied to a place having four rooms, such as a house.
  • the homeowner has applied for the FTTR service, and the home optical fiber is connected to the FTTR home all-optical gateway (also called the main optical modem or the main ONT device, hereinafter referred to as the main gateway), and then connected to the FTTR sub-unit set in each room through the optical fiber.
  • Devices also called slave ONT devices or edge ONT devices, hereinafter referred to as sub-device
  • tenant 1-3 use sub-device 1-3 respectively, while the householder uses sub-device 4 in room 4.
  • the sub-device 4 in the house owner's own room does not need to be billed and managed separately, while the sub-device 1-3 in each of the other rooms requires separate billing and management. Therefore, the sub-devices can be divided into two categories, the sub-devices that need to be charged and managed separately (such as sub-devices 1-3) are the first category, and the sub-devices that do not need to be charged and managed separately (such as sub-devices 4) are second category.
  • Class A It means that the device is a conventional ONT device, also known as the master ONT device;
  • Class B (divided into B1 and B2): It means that the device is an FTTR sub-device, also known as an edge ONT device, among which
  • B1 category represents the FTTR sub-equipment managed by the operator's ACS, registers and authenticates with the OLT when it goes online, and accepts the configuration management of the ACS;
  • Type B2 represents the FTTR sub-device locally managed by the main gateway. When it goes online, it registers with the main gateway. The main gateway does not pass it transparently to the OLT, but issues authentication messages by itself and performs network configuration management.
  • the main gateway is a type A device
  • the sub-device 1-3 used by each tenant is a type B1 device
  • the sub-device 4 used by the householder is a type B2 device.
  • the corresponding category code is set in the device LOID used in the conventional PON protocol to distinguish whether the device is class A, B1 or B2. For this reason, the version of the PON protocol can be revised and updated, so that The central office equipment can identify the type of ONT equipment through LOID.
  • the LOID of the Class A device does not need to be modified, and its conventional LOID is still used, and only the LOIDs of the Class B1 and B2 devices need to be newly added.
  • Fig. 3 is an example registration authentication process of a B1 type ONT device according to an embodiment of the present invention.
  • the main gateway such as a home all-optical gateway
  • a type A LOID ie, a conventional LOID
  • the OLT After passing the authentication, the OLT returns the authentication result to it.
  • the master gateway may request configuration information from the operator's ACS.
  • the ACS issues the account number and configuration information of the main gateway to the main gateway, as well as the accounts and configuration information of one or more sub-devices registered with the operator and hung under the main gateway.
  • the account and configuration information of the sub-device can be cached locally by the main gateway. .
  • the number of FTTR sub-devices is 3, so the ACS can issue the account and configuration information for each sub-device (the account is a B-type account).
  • the sub-device here refers to a B1-type sub-device, that is, a sub-device that is managed by the ACS.
  • a B-type account is an account dedicated to B1-type sub-devices, and there is no need to further divide B1-type accounts and B2-type accounts, because B2-type devices do not accept ACS management, so no account is required.
  • the main gateway carries the A-type account and initiates an account authentication request to the authentication system. After the account authentication is successful, the authentication system returns the authentication result.
  • the FTTR sub-device is powered on and carries the B1 type LOID to initiate registration authentication to the OLT.
  • the registration authentication request message sent by the sub-device to the OLT will first pass through the main gateway.
  • the master gateway confirms that the LOID type is B1 type, and transparently transmits the request message to the OLT.
  • the OLT device returns the authentication result to it and sends the configuration, and the main gateway transparently transmits the message returned by the OLT to the sub-device.
  • the main gateway issues the B-class account and configuration information for the sub-device provided by the ACS to the sub-device.
  • the sub-device uses the Class B account and configuration information to initiate an account authentication request to the authentication system through the main gateway. After the account authentication is successful, the authentication system returns the authentication result.
  • the main gateway transparently transmits the request and return message between the sub-device and the authentication system. So far, the certification registration of B1 sub-equipment is completed.
  • Fig. 4 is an example registration authentication process of a B2 type ONT device according to an embodiment of the present invention.
  • the main gateway initiates registration authentication to the OLT, and then requests configuration information from the ACS after passing the authentication, and receives and caches the accounts and configuration information of the main gateway and each sub-device. Subsequently, the main gateway carries the A-type account and initiates an account authentication request to the authentication system.
  • the FTTR sub-device is powered on and initiates registration authentication.
  • the LOID carried by the FTTR sub-device is a B2 type LOID.
  • the home gateway After receiving the message, the home gateway confirms that the LOID type is B2, recognizes it as a local management device, and then returns the authentication result to it, and configures the sub-device as a bridge mode, that is, the sub-device is connected through the main gateway network. So far, the certification registration of B2 equipment is completed.
  • the FTTR all-optical gateway and each sub-device use Class A and B1 LOIDs to perform OLT registration and authentication respectively, and then the gateway and each sub-device use the accounts assigned by the system to perform account authentication (for example, through PPPoE dialing).
  • the operator's ACS also registers relevant information, recording that the FTTR user's home has an all-optical gateway and sub-devices that are managed separately. In this way, the following various needs can be flexibly met:
  • tenant 1 applies for a broadband rate of 500M, he can apply for a speed increase, and the operator can flexibly allocate and manage it;
  • the operator can also stop providing the Internet service of the sub-device 2 at this time, and open it after the new tenant moves in;
  • the sub-device 4 in the landlord's own room does not need to be billed and managed separately, and the sub-device 4 will carry the B2 type LOID to register and authenticate with the all-optical gateway.
  • the sub-device 4 can access the Internet normally, but the device does not have dial-up It does not have a separate Internet broadband account, but belongs to the broadband service of the all-optical gateway, and accepts the local management of the all-optical gateway.
  • the user can request the operator to handle related services. After the processing is completed, the operator will register the relevant information in the ACS. At this point, the ACS can deliver the updated sub-device account and configuration information to the main gateway, and the main gateway will update the locally cached sub-device account and configuration information accordingly.
  • Fig. 5 is an exemplary flowchart of a method 500 for optical network device authentication and configuration management in an FTTR scenario according to an embodiment of the present invention.
  • the method 500 starts at step 502, and allocates a LOID indicating the type of equipment for each optical network device, wherein the LOID includes at least a type A LOID, a type B1 LOID, and a type B2 LOID, wherein the type A LOID indicates that the optical network
  • the device is the main ONT device
  • the B1 type LOID indicates that the optical network device is a B1 type edge ONT device managed by the ACS
  • the B2 type LOID indicates that the optical network device is a B2 type edge ONT device not managed by the ACS.
  • the master ONT device is configured to register and authenticate with the OLT device and accept ACS management.
  • the master ONT device sends a registration authentication request to the OLT device, and requests configuration information from the ACS after the authentication is passed, and the ACS sends the master ONT device and the B1 edge ONT device coupled with the master ONT device (if (if any) account and configuration information.
  • the main ONT device is further configured to perform registration authentication and configuration management on the B2 edge ONT device coupled to it.
  • the edge ONT device of type B1 is configured to register and authenticate with the OLT device through its coupled main ONT device and accept ACS management.
  • the registration authentication request of the B1-type edge ONT device is sent to the main ONT device
  • the main ONT device recognizes that its LOID is B1 type, it is transparently transmitted to the OLT device and completes the authentication registration.
  • the main ONT device will provide it with the account number and configuration information issued by the ACS for it to authenticate with the account number of the authentication system.
  • the B2-type edge ONT device is configured to register and authenticate with its coupled master ONT device and accept the management of the master ONT device.
  • the registration and authentication request of the B2 edge ONT device is performed by the main ONT device and the configuration is directly issued. This configuration will configure the B2 edge ONT device in bridge mode so that it can connect to into the network.
  • Fig. 6 is an exemplary flowchart of an optical network device authentication and configuration management method 600 implemented by a master ONT device according to an embodiment of the present invention.
  • the master ONT device may be a home all-optical gateway in the FTTR scenario as illustrated in FIG. 2 , that is, a type A device.
  • the method 600 starts at step 602, the master ONT device initiates a registration authentication request to the OLT device, and the request includes the LOID of the master ONT device. After passing the authentication, the OLT device returns the authentication result to it and delivers the configuration.
  • step 604 in response to the OLT passing its authentication, the master ONT requests configuration information from the ACS.
  • step 606 the account and configuration information of the master ONT device and its associated edge ONT device are received from the ACS.
  • the account of the main ONT device is a type A account
  • the account of the edge ONT device associated with it that is, the edge ONT device of type B1
  • the edge ONT device of type B1 is a type B account.
  • step 608 the main ONT device initiates an account authentication request to the authentication system server with its own account. After the authentication system passes the authentication of the account, the account authentication is completed.
  • step 610 in response to receiving the authentication registration request of the edge ONT device, the master ONT device determines the type of the edge ONT device according to the LOID of the edge ONT device contained in the authentication registration request of the edge ONT device. As described before, the types of edge ONT devices include two types, B1 and B2. If it is determined that the edge ONT device is of type B1, the method proceeds to step 612.
  • step 612 in response to determining that the edge ONT device is of type B1, the master ONT device transparently transmits the authentication registration request message of the edge ONT device to the OLT device.
  • step 614 the main ONT device receives the authentication result returned by the OLT device, and transparently transmits it to the edge ONT device.
  • the master ONT device sends the account number and configuration information corresponding to the edge ONT device issued by the ACS to the edge ONT device.
  • the master ONT device transparently transmits the account authentication request and return message between the edge ONT device and the authentication system.
  • step 610 if it is determined that the edge ONT device is of type B2, the method proceeds to step 620.
  • step 620 in response to determining that the edge ONT device is of type B2, the master ONT device authenticates the edge ONT device, and if the authentication is passed, returns the authentication result to the edge ONT device in step 622 and issues configuration, wherein the configuration Configure the edge ONT device to bridge mode. So far, the method 600 ends.
  • the method 600 may also include receiving edge ONT device update information issued by the ACS, the update information including the latest account number and configuration information of the edge ONT device associated with the master ONT device, through this update information, Functions such as adding B1 sub-device, changing sub-device type, and sub-device configuration information can be flexibly implemented, thereby supporting flexible management of each FTTR sub-device.
  • FIG. 7 is an example flowchart of an optical network device authentication and configuration management method 700 implemented by an edge ONT device according to an embodiment of the present invention.
  • the edge ONT device may be an edge ONT device that requires separate accounting and management in the FTTR scenario as illustrated in FIG. 2 , that is, a B1 type device.
  • the method 700 starts at step 702, the edge ONT device sends a registration authentication request message to the main ONT device coupled to it with a Type B1 LOID.
  • the main ONT device identifies and determines that the edge ONT device is of type B1, it will transparently transmit the registration authentication request message to the OLT device for registration authentication, and return the authentication result to the edge ONT device.
  • the edge ONT device receives the authentication result from the OLT device returned by the main ONT device.
  • the edge ONT device receives the account number and configuration information from the ACS from the master ONT device.
  • the account and configuration information are provided by the ACS to the main ONT device, and the account is a B-type account exclusively used by the edge ONT device.
  • step 708 the edge ONT device uses the received account to initiate an account authentication request. So far, the method 700 ends.
  • FIG. 8 is an exemplary flowchart of an optical network device authentication and configuration management method 800 implemented by an edge ONT device according to an embodiment of the present invention.
  • the edge ONT device may be an edge ONT device that does not require separate accounting and management in the FTTR scenario as illustrated in FIG. 2 , that is, a B2 type device.
  • the method 800 starts at step 802, the edge ONT device sends a registration authentication request message to the main ONT device coupled to it with a B2 type LOID.
  • the main ONT device identifies and determines that the edge ONT device is of type B2, the main ONT device directly returns the authentication result to the edge ONT device, and configures the edge ONT device in bridge mode.
  • step 804 the authentication result and the delivered configuration from the master ONT device are received. Subsequently, in step 806, the edge ONT device itself is configured in bridge mode according to the received configuration. So far, the method 800 ends.
  • FIG. 9 is an exemplary flow chart of an optical network device authentication and configuration management method 900 implemented by the ACS according to an embodiment of the present invention.
  • the method 900 starts at step 902.
  • the master ONT device and the account and configuration information of the edge ONT device associated with the master ONT device are sent to the master ONT device.
  • step 904 in response to changes in the account number and configuration information of the edge ONT device associated with the master ONT device maintained on the ACS, the updated account number and configuration information of the edge ONT device are sent to the master ONT device. So far, the method 900 ends.
  • FIG. 10 is an example architecture diagram of a system 1000 for providing FTTR services according to an embodiment of the present invention.
  • system 1000 may include an ACS 1002, an authentication system 1004, an OLT device 1006, a master ONT device 1008, and one or more edge ONT devices 10101-1010n coupled to the master ONT device.
  • each of the master ONT device 1008 and the edge ONT devices 10101-1010n has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a type B1 LOID, and a type B2 LOID, wherein the type A LOID Indicates that the optical network device is a master ONT device, the B1 class LOID indicates that the optical network device is a B1 class edge ONT device managed by the ACS 1002, and the B2 class LOID indicates that the optical network device is a B2 class edge ONT device not managed by the ACS 1002.
  • Main ONT equipment 1008 can be configured to register authentication with OLT equipment 1006 and accept ACS 1002 management
  • B1 class edge ONT equipment in edge ONT equipment 10101-1010n can be configured to register authentication with OLT equipment 1006 through main ONT equipment 1008 and To accept the management of the ACS 1002, the B2 edge ONT device can be configured to register and authenticate with the main ONT device 1008 and accept the management of the main ONT device 1008.
  • gateways and sub-equipment are used for step-by-step access, and when the equipment is registered online, it can carry different types of LOID (type A, type B1) , B2 category) to carry out classification certification, so as to distinguish the device type between the home gateway device and the sub-device, and at the same time divide the management and configuration rights of the sub-device in the home.
  • LOID type A, type B1 , B2 category
  • the present invention enables operators to perform flexible and unlimited management capabilities on all room sub-devices of FTTR users, and is applicable to various scenarios.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Small-Scale Networks (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention provides an optical network device authentication and configuration management method and system in an FTTR scenario. The method may comprise: assigning to each optical network device an LOID which indicates a device type, wherein the LOID comprises at least a class A LOID, a class B1 LOID and a class B2 LOID, wherein the class A LOID indicates that the optical network device is a primary ONT device, the class B1 LOID indicates that the optical network device is a class B1 edge ONT device managed by an auto-configuration server (ACS), and the class B2 LOID indicates that the optical network device is a class B2 edge ONT device that is not managed by the ACS; configuring the primary ONT device to register with and authenticate an OLT device and to accept ACS management; configuring the class B1 edge ONT device to register with and authenticate the OLT device via the primary ONT device coupled therewith, and to accept the ACS management; and configuring the class B2 edge ONT device to register with and authenticate the primary ONT device coupled therewith, and to accept management by the primary ONT device.

Description

FTTR场景下的光网设备认证和配置管理方法和系统Optical network device authentication and configuration management method and system in FTTR scenario 技术领域technical field
本发明涉及网络技术与安全领域,更具体地,涉及FTTR场景下的光网设备认证和配置管理方法和系统。The present invention relates to the field of network technology and security, and more specifically, relates to an optical network device authentication and configuration management method and system under the FTTR scenario.
背景技术Background technique
FTTR(Fiber to the Room)是指在FTTH(Fiber to the Home)的基础上,在家庭内部署全光网关与子设备,通过PON(Passive Optical Network)技术实现光纤通信覆盖到用户房间。图1中解说了FTTH与FTTR的典型架构。FTTR (Fiber to the Room) refers to the deployment of all-optical gateways and sub-devices in the home on the basis of FTTH (Fiber to the Home), and through the PON (Passive Optical Network) technology to achieve optical fiber communication coverage to the user's room. Figure 1 illustrates a typical architecture for FTTH and FTTR.
在图1中,上半分支代表了示例性的FTTH场景。普通家庭网关是部署在用户端的光网络终端设备ONT(Optical Network Terminal),其通过入户光纤连接到局端设备OLT(Optical Line Terminal)。根据目前的PON协议,在ONT设备上线时,需要携带运营商分配的合法逻辑ID(LOID)向局端设备OLT发起注册认证。认证通过后,ONT设备向认证系统服务器(例如BRAS服务器,Broadband Remote Access Server)发起账号认证(例如PPPoE拨号)。在家庭内部,网关一般通过网线点对点地连接到下一级的路由器,由路由器进一步负责家庭内的网络覆盖,例如进一步级联多个AP。In Fig. 1, the upper branch represents an exemplary FTTH scenario. Ordinary home gateway is the optical network terminal equipment ONT (Optical Network Terminal) deployed on the user end, which is connected to the central office equipment OLT (Optical Line Terminal) through the home optical fiber. According to the current PON protocol, when the ONT device goes online, it needs to carry the legal logical ID (LOID) assigned by the operator to initiate registration authentication to the central office device OLT. After passing the authentication, the ONT device initiates account authentication (such as PPPoE dial-up) to the authentication system server (such as BRAS server, Broadband Remote Access Server). Inside the home, the gateway is generally connected point-to-point to the next-level router through a network cable, and the router is further responsible for the network coverage in the home, such as further cascading multiple APs.
图1的下半分支代表了示例性的FTTR场景。在FTTR场景中,入户光纤首先连接到的ONT设备是FTTR家庭全光网关,该设备进一步通过光纤连接到下一级的多个FTTR子设备(即点对多点),这些FTTR子设备典型地放置在不同的房间内,即所谓“光纤入房”。按照目前的光设备的注册认证和管理机制,仍然只有作为ONT的FTTR家庭全光网关向OLT进行注册认证,并向认证系统服务器发起账号认证,接受运营商的自动配置服务器ACS(Auto-Configuration Server)(例如终端综合管理系统 ITMS(Integrated Terminal Management System)平台)的管理,而这些FTTR子设备都只接受家庭全光网关的管理,由家庭全光网关将相关的数据转发给FTTR子设备。因此这些FTTR子设备在使用时与FTTH场景中的路由器类似,属于局域网内部设备,接入网并不感知。The lower branch of Figure 1 represents an exemplary FTTR scenario. In the FTTR scenario, the ONT device first connected to the home optical fiber is the FTTR home all-optical gateway, which is further connected to multiple FTTR sub-devices at the next level through optical fibers (that is, point-to-multipoint). These FTTR sub-devices typically Placed in different rooms, the so-called "fiber into the room". According to the current registration, authentication and management mechanism of optical equipment, only the FTTR home all-optical gateway as the ONT registers and authenticates with the OLT, initiates account authentication to the authentication system server, and accepts the automatic configuration server ACS (Auto-Configuration Server) of the operator. ) (such as ITMS (Integrated Terminal Management System) platform), and these FTTR sub-devices only accept the management of the home all-optical gateway, and the home all-optical gateway forwards the relevant data to the FTTR sub-devices. Therefore, these FTTR sub-devices are similar to routers in FTTH scenarios when used, and belong to the internal devices of the LAN, and the access network does not perceive them.
然而,在有些实际应用场景中,例如在学校宿舍楼、办公楼、住宅等存在一户多房间多用户的FTTR场景中,希望对于现有的FTTR架构能够有更灵活的管理方式。以一户四室的房子为例,典型地在每一间房间中设置一个FTTR子设备,共同连接到FTTR家庭全光网关(主ONT设备),房主为该户FTTR来付费,而四个房间共享这一户FTTR服务的总带宽,例如1000Mbps。然而,如果每个房间的用户希望相互独立的使用(FTTR主用户),例如希望购买不同的网络接入服务(例如不同带宽,不同的启用/停用时间),则目前的管理方式并不支持。However, in some practical application scenarios, for example, in school dormitory buildings, office buildings, residences and other FTTR scenarios where one household has multiple rooms and multiple users, it is desired to have a more flexible management method for the existing FTTR architecture. Take a four-room house as an example. Typically, one FTTR sub-device is set in each room, which is jointly connected to the FTTR home all-optical gateway (main ONT device). The room shares the total bandwidth of this household's FTTR service, for example, 1000Mbps. However, if users in each room want to use independently of each other (FTTR primary users), for example, want to purchase different network access services (such as different bandwidth, different activation/deactivation time), the current management method does not support .
发明内容Contents of the invention
提供本发明内容以便以简化形式介绍将在以下具体实施方式中进一步的描述一些概念。本发明内容并非旨在标识所要求保护的主题的关键特征或必要特征,也不旨在用于帮助确定所要求保护的主题的范围。This Summary is provided to introduce a selection of concepts in a simplified form that are further described below in the Detailed Description. This Summary is not intended to identify key features or essential features of the claimed subject matter, nor is it intended to be used as an aid in determining the scope of the claimed subject matter.
本发明旨在解决当前PON技术的设备接入认证和管理流程无法很好地兼容FTTR场景的问题。为此,提供了一种基于FTTR场景下的家庭全光网设备分类接入认证和配置管理方法,其中,家庭全光网关和子设备分别向OLT进行注册认证并接受管理,且子设备可根据管理要求的不同,支持接受局端接入认证和ACS管理或家庭网关本地管理这两种模式。The invention aims to solve the problem that the device access authentication and management process of the current PON technology cannot be well compatible with the FTTR scene. To this end, a method for classified access authentication and configuration management of home all-optical network equipment based on FTTR scenarios is provided, wherein the home all-optical gateway and sub-devices register and authenticate with the OLT respectively and accept management, and the sub-devices can be managed according to the Depending on the requirements, it supports the two modes of central office access authentication and ACS management or home gateway local management.
根据本发明的一个方面,提供了一种用于FTTR场景下的光网设备认证和配置管理的方法,其中所述方法包括:According to one aspect of the present invention, a method for optical network device authentication and configuration management in an FTTR scenario is provided, wherein the method includes:
为每一个光网设备分配指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备;Assign an LOID indicating the type of equipment to each optical network device, wherein the LOID includes at least Type A LOID, Type B1 LOID, and Type B2 LOID, wherein Type A LOID indicates that the optical network equipment is the master ONT equipment, and Type B1 LOID indicates that the optical network The device is a Class B1 edge ONT device managed by ACS, and the Class B2 LOID indicates that the optical network device is a Class B2 edge ONT device not managed by ACS;
将主ONT设备配置成向OLT设备注册认证并接受ACS管理;Configure the main ONT device to register and authenticate with the OLT device and accept ACS management;
将B1类边缘ONT设备配置成透过其耦合的主ONT设备向OLT设备注册认证并接受ACS管理;以及Configure the B1 edge ONT device to register and authenticate with the OLT device through its coupled main ONT device and accept ACS management; and
将B2类边缘ONT设备配置成向其耦合的主ONT设备注册认证并接受所述主ONT设备管理。The B2 type edge ONT device is configured to register and authenticate with its coupled main ONT device and accept the management of the main ONT device.
根据本发明的另一方面,提供了一种用于FTTR场景下的光网设备认证和配置管理的方法,其中每一个光网设备具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备,其中所述方法由主ONT设备执行并且包括以下步骤:According to another aspect of the present invention, a method for optical network device authentication and configuration management in an FTTR scenario is provided, wherein each optical network device has a LOID indicating the type of the device, wherein the LOID includes at least a type A LOID , Type B1 LOID, and Type B2 LOID, where Type A LOID indicates that the optical network device is the main ONT device, Type B1 LOID indicates that the optical network device is a Type B1 edge ONT device managed by the ACS, and Type B2 LOID indicates that the optical network device is not A B2 class edge ONT device managed by the ACS, wherein the method is performed by the main ONT device and includes the following steps:
向OLT设备发起注册认证请求,所述请求中包含所述主ONT设备的A类LOID;Initiate a registration authentication request to the OLT device, which includes the Class A LOID of the master ONT device in the request;
响应于所述OLT设备对所述主ONT设备的认证通过,向所述ACS请求配置信息;In response to the OLT device passing the authentication of the master ONT device, requesting configuration information from the ACS;
接收ACS下发的所述主ONT设备以及与所述主ONT设备相关联的边缘ONT设备的账号及配置信息;Receive the account number and configuration information of the master ONT device issued by the ACS and the edge ONT device associated with the master ONT device;
以所述主ONT设备的账号向认证系统发起账号认证请求;Initiate an account authentication request to the authentication system with the account number of the main ONT device;
响应于接收到边缘ONT设备的认证注册请求,根据所述边缘ONT设备的认证注册请求中包含的所述边缘ONT设备的LOID来确定所述边缘ONT设备的类型;In response to receiving the authentication registration request of the edge ONT device, determining the type of the edge ONT device according to the LOID of the edge ONT device included in the authentication registration request of the edge ONT device;
响应于确定所述边缘ONT设备是B1类边缘ONT设备:In response to determining that the edge ONT device is a Class B1 edge ONT device:
将所述B1类边缘ONT设备的认证注册请求透传给所述OLT设备;Transparently transmit the authentication registration request of the B1 type edge ONT device to the OLT device;
接收所述OLT设备返回的认证结果,并透传给所述B1类边缘ONT设备;Receive the authentication result returned by the OLT device, and transparently transmit it to the B1 edge ONT device;
将来自所述ACS的与所述B1类边缘ONT设备对应的账号及配置信息发送给所述B1类边缘ONT设备;以及sending the account and configuration information corresponding to the B1-type edge ONT device from the ACS to the B1-type edge ONT device; and
透传所述B1类边缘ONT设备和所述认证系统之间的账号认证请求以及返回消息;以及Transparently transmit the account authentication request and return message between the B1 type edge ONT device and the authentication system; and
响应于确定所述边缘ONT设备是B2类边缘ONT设备:In response to determining that the edge ONT device is a Class B2 edge ONT device:
对所述B2类边缘ONT设备进行认证;以及Authenticating the Class B2 edge ONT device; and
如果认证通过,向所述B2类边缘ONT设备返回认证结果并下发配置,其中该配置将所述B2类边缘ONT设备配置为桥接模式。If the authentication is passed, the authentication result is returned to the B2-type edge ONT device and a configuration is issued, wherein the configuration configures the B2-type edge ONT device in bridge mode.
根据本发明的一个实施例,所述方法进一步包括:接收所述ACS下发的经更新的与所述主ONT设备相关联的边缘ONT设备的账号及配置信息。According to an embodiment of the present invention, the method further includes: receiving the updated account number and configuration information of the edge ONT device associated with the master ONT device issued by the ACS.
根据本发明的又一方面,提供了一种用于FTTR场景下的光网设备认证和配置管理的方法,其中每一个光网设备具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备,其中所述方法由B1类边缘ONT设备执行并且包括以下步骤:According to yet another aspect of the present invention, a method for optical network device authentication and configuration management in an FTTR scenario is provided, wherein each optical network device has a LOID indicating the type of the device, wherein the LOID includes at least a type A LOID , Type B1 LOID, and Type B2 LOID, where Type A LOID indicates that the optical network device is the main ONT device, Type B1 LOID indicates that the optical network device is a Type B1 edge ONT device managed by the ACS, and Type B2 LOID indicates that the optical network device is not A B2 class edge ONT device managed by the ACS, wherein the method is performed by a B1 class edge ONT device and includes the following steps:
向与所述B1类边缘ONT设备耦合的主ONT设备发起注册认证请求,所述请求中包含所述主B1类边缘ONT设备的B1类LOID;Initiate a registration authentication request to the main ONT device coupled with the B1 type edge ONT device, and the request includes the B1 type LOID of the main B1 type edge ONT device;
接收所述主ONT设备返回的来自OLT设备的认证结果;Receiving the authentication result from the OLT device returned by the master ONT device;
接收所述主ONT设备发送的来自所述ACS的与所述B1类边缘ONT设备对应的账号及配置信息;以及receiving the account number and configuration information corresponding to the B1-type edge ONT device from the ACS sent by the master ONT device; and
以接收到的账号向认证系统发起账号认证请求。Initiate an account authentication request to the authentication system with the received account number.
根据本发明的又一方面,提供了一种用于FTTR场景下的光网设备认证和配置管理的方法,其中每一个光网设备具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备,其中所述方法由B2类边缘ONT设备执行并且包括以下步骤:According to yet another aspect of the present invention, a method for optical network device authentication and configuration management in an FTTR scenario is provided, wherein each optical network device has a LOID indicating the type of the device, wherein the LOID includes at least a type A LOID , Type B1 LOID, and Type B2 LOID, where Type A LOID indicates that the optical network device is the main ONT device, Type B1 LOID indicates that the optical network device is a Type B1 edge ONT device managed by the ACS, and Type B2 LOID indicates that the optical network device is not A B2 class edge ONT device managed by the ACS, wherein the method is performed by the B2 class edge ONT device and includes the following steps:
向与所述B2类边缘ONT设备耦合的主ONT设备发起注册认证请求,所述请求中包含所述主B1类边缘ONT设备的B2类LOID;Initiate a registration authentication request to the main ONT device coupled with the B2 type edge ONT device, and the request includes the B2 type LOID of the main B1 type edge ONT device;
接收所述主ONT设备返回的认证结果以及下发的配置;以及Receiving the authentication result returned by the main ONT device and the configuration issued; and
根据接收的配置将所述B2类边缘ONT设备配置成桥接模式。Configure the edge ONT device of type B2 into bridge mode according to the received configuration.
根据本发明的又一方面,提供了一种用于FTTR场景下的光网设备认证和配置管理的方法,其中每一个光网设备具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备,其中所述方法由ACS执行并且包括以下步骤:According to yet another aspect of the present invention, a method for optical network device authentication and configuration management in an FTTR scenario is provided, wherein each optical network device has a LOID indicating the type of the device, wherein the LOID includes at least a type A LOID , Type B1 LOID, and Type B2 LOID, where Type A LOID indicates that the optical network device is the main ONT device, Type B1 LOID indicates that the optical network device is a Type B1 edge ONT device managed by the ACS, and Type B2 LOID indicates that the optical network device is not A B2 class edge ONT device managed by the ACS, wherein the method is performed by the ACS and includes the following steps:
账号认证响应于接收到来自主ONT设备的配置信息请求,将所述主ONT设备以及与所述主ONT设备相关联的边缘ONT设备的账号及配置信息发送给所述主ONT设备;以及The account authentication is in response to receiving the configuration information request from the master ONT device, sending the account number and configuration information of the master ONT device and edge ONT devices associated with the master ONT device to the master ONT device; and
响应于所述ACS上维护的与所述主ONT设备相关联的边缘ONT设备的账号及配置信息发生改动,将经更新的边缘ONT设备的账号及配置信息发送给所述主ONT设备。In response to changes in the account number and configuration information of the edge ONT device associated with the master ONT device maintained on the ACS, the updated account number and configuration information of the edge ONT device are sent to the master ONT device.
根据本发明的又一方面,提供了一种用于提供FTTR服务的系统,其中系统包括ACS、认证系统、OLT设备、主ONT设备、以及一个或多个与所述主ONT设备耦合的边缘ONT设备,其中:According to yet another aspect of the present invention, a system for providing FTTR services is provided, wherein the system includes an ACS, an authentication system, an OLT device, a master ONT device, and one or more edge ONTs coupled to the master ONT device equipment, of which:
所述主ONT设备和所述边缘ONT设备中的每一个具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备;Each of the master ONT device and the edge ONT device has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a B1 type LOID, and a B2 type LOID, wherein the type A LOID indicates that the optical network device is a master ONT device, B1 type LOID indicates that the optical network device is a B1 type edge ONT device managed by ACS, and B2 type LOID indicates that the optical network device is a B2 type edge ONT device not managed by ACS;
其中所述主ONT设备被配置成向所述OLT设备注册认证并接受所述ACS管理;Wherein said master ONT device is configured to register and authenticate with said OLT device and accept said ACS management;
B1类边缘ONT设备被配置成透过所述主ONT设备向所述OLT设备注册认证并接受所述ACS管理;以及The B1-type edge ONT device is configured to register and authenticate with the OLT device through the master ONT device and accept the ACS management; and
B2类边缘ONT设备被配置成向其耦合的主ONT设备注册认证并接受所述主ONT设备管理。The B2-type edge ONT device is configured to register and authenticate with its coupled master ONT device and accept the management of the master ONT device.
根据本发明的一个实施例,所述主ONT设备被进一步配置成:According to an embodiment of the present invention, the master ONT device is further configured to:
向OLT设备发起注册认证请求,所述请求中包含所述主ONT设备的A类LOID;Initiate a registration authentication request to the OLT device, which includes the Class A LOID of the master ONT device in the request;
响应于所述OLT设备对所述主ONT设备的认证通过,向所述ACS请求配置信息;In response to the OLT device passing the authentication of the master ONT device, requesting configuration information from the ACS;
接收ACS下发的所述主ONT设备以及与所述主ONT设备相关联的边缘ONT设备的账号及配置信息;Receive the account number and configuration information of the master ONT device issued by the ACS and the edge ONT device associated with the master ONT device;
以所述主ONT设备的账号向认证系统发起账号认证请求;Initiate an account authentication request to the authentication system with the account number of the main ONT device;
响应于接收到边缘ONT设备的认证注册请求,根据所述边缘ONT设备的认证注册请求中包含的所述边缘ONT设备的LOID来确定所述边缘ONT设备的类型;In response to receiving the authentication registration request of the edge ONT device, determining the type of the edge ONT device according to the LOID of the edge ONT device included in the authentication registration request of the edge ONT device;
响应于确定所述边缘ONT设备是B1类边缘ONT设备:In response to determining that the edge ONT device is a Class B1 edge ONT device:
将所述B1类边缘ONT设备的认证注册请求透传给所述OLT设备;Transparently transmit the authentication registration request of the B1 type edge ONT device to the OLT device;
接收所述OLT设备返回的认证结果,并透传给所述B1类边缘ONT设备;Receive the authentication result returned by the OLT device, and transparently transmit it to the B1 edge ONT device;
将来自所述ACS的与所述B1类边缘ONT设备对应的账号及配置信息发送给所述B1类边缘ONT设备;以及sending the account and configuration information corresponding to the B1-type edge ONT device from the ACS to the B1-type edge ONT device; and
透传所述B1类边缘ONT设备和所述认证系统之间的账号认证请求以及返回消息;以及Transparently transmit the account authentication request and return message between the B1 type edge ONT device and the authentication system; and
响应于确定所述边缘ONT设备是B2类边缘ONT设备:In response to determining that the edge ONT device is a Class B2 edge ONT device:
对所述B2类边缘ONT设备进行认证;以及Authenticating the Class B2 edge ONT device; and
如果认证通过,向所述B2类边缘ONT设备返回认证结果并下发配置,其中该配置将所述B2类边缘ONT设备配置为桥接模式。If the authentication is passed, the authentication result is returned to the B2-type edge ONT device and a configuration is issued, wherein the configuration configures the B2-type edge ONT device in bridge mode.
根据本发明的一个实施例,所述主ONT设备被进一步配置成:接收所述ACS下发的经更新的与所述主ONT设备相关联的边缘ONT设备的账号及配置信息。According to an embodiment of the present invention, the master ONT device is further configured to: receive the updated account number and configuration information of the edge ONT device associated with the master ONT device issued by the ACS.
根据本发明的进一步实施例,所述B1类边缘ONT设备被进一步配置成:According to a further embodiment of the present invention, the B1 type edge ONT device is further configured to:
向与所述B1类边缘ONT设备耦合的主ONT设备发起注册认证请求,所述请求中包含所述主B1类边缘ONT设备的B1类LOID;Initiate a registration authentication request to the main ONT device coupled with the B1 type edge ONT device, and the request includes the B1 type LOID of the main B1 type edge ONT device;
接收所述主ONT设备返回的来自OLT设备的认证结果;Receiving the authentication result from the OLT device returned by the master ONT device;
接收所述主ONT设备发送的来自所述ACS的与所述B1类边缘ONT设备对应的账号及配置信息;以及receiving the account number and configuration information corresponding to the B1-type edge ONT device from the ACS sent by the master ONT device; and
以接收到的账号向认证系统发起账号认证请求。Initiate an account authentication request to the authentication system with the received account number.
根据本发明的进一步实施例,所述B2类边缘ONT设备被进一步配置成:According to a further embodiment of the present invention, the B2 type edge ONT device is further configured to:
向与所述B2类边缘ONT设备耦合的主ONT设备发起注册认证请求,所述请求中包含所述主B1类边缘ONT设备的B2类LOID;Initiate a registration authentication request to the main ONT device coupled with the B2 type edge ONT device, and the request includes the B2 type LOID of the main B1 type edge ONT device;
接收所述主ONT设备返回的认证结果以及下发的配置;以及Receiving the authentication result returned by the main ONT device and the configuration issued; and
根据接收的配置将所述B2类边缘ONT设备配置成桥接模式。Configure the edge ONT device of type B2 into bridge mode according to the received configuration.
根据本发明的进一步实施例,所述ACS被配置成:According to a further embodiment of the present invention, the ACS is configured to:
账号认证响应于接收到来自主ONT设备的配置信息请求,将所述主ONT设备以及与所述主ONT设备相关联的边缘ONT设备的账号及配置信息发送给所述主ONT设备;以及The account authentication is in response to receiving the configuration information request from the master ONT device, sending the account number and configuration information of the master ONT device and edge ONT devices associated with the master ONT device to the master ONT device; and
响应于所述ACS上维护的与所述主ONT设备相关联的边缘ONT设备的账号及配置信息发生改动,将经更新的边缘ONT设备的账号及配置信息发送给所述主ONT设备。In response to changes in the account number and configuration information of the edge ONT device associated with the master ONT device maintained on the ACS, the updated account number and configuration information of the edge ONT device are sent to the master ONT device.
与现有的设备接入认证和管理流程相比,本发明可以更好地适用于FTTR场景,家庭网关和子设备的管理可以更加细化。运营商可以根据注册的LOID对设备类型进行判断,从而做到分类管理,并且兼容了子设备的多种管理模式。更具体地,本发明的光网设备认证和配置管理方法至少具有以下优点:Compared with the existing device access authentication and management process, the present invention can be better applicable to FTTR scenarios, and the management of home gateways and sub-devices can be more detailed. Operators can judge the type of equipment according to the registered LOID, so as to achieve classified management, and it is compatible with multiple management modes of sub-equipment. More specifically, the optical network device authentication and configuration management method of the present invention has at least the following advantages:
1、家庭网关和子设备通过LOID进行分类标识,单独进行注册认证;1. The home gateway and sub-devices are classified and identified through LOID, and registered and certified separately;
2、允许运营商在FTTR场景中,对家庭网关进行管理的同时, 兼容对部分下接在家庭全光网关下的子设备进行自动化的网络连接管理;2. Allow operators to manage the home gateway in the FTTR scenario, and at the same time be compatible with automatic network connection management for some sub-devices connected to the home all-optical gateway;
3、支持FTTR场景中,家庭内的子设备接受本地管理或ACS管理两种模式。3. In the FTTR scenario, the sub-device in the home accepts two modes of local management or ACS management.
通过阅读下面的详细描述并参考相关联的附图,这些及其他特点和优点将变得显而易见。应该理解,前面的概括说明和下面的详细描述只是说明性的,不会对所要求保护的各方面形成限制。These and other features and advantages will become apparent by reading the following detailed description and by reference to the associated drawings. It is to be understood that both the foregoing general description and the following detailed description are illustrative only and are not restrictive in all respects as claimed.
附图说明Description of drawings
为了能详细地理解本发明的上述特征所用的方式,可以参照各实施例来对以上简要概述的内容进行更具体的描述,其中一些方面在附图中示出。然而应该注意,附图仅示出了本发明的某些典型方面,故不应被认为限定其范围,因为该描述可以允许有其它等同有效的方面。So that the manner in which the above recited features of the invention can be understood in detail, a more particular description of what has been briefly summarized above may be had by reference to various embodiments, some aspects of which are illustrated in the accompanying drawings. It is to be noted, however, that the drawings illustrate only certain typical aspects of the invention and are therefore not to be considered limiting of its scope, for the description may admit to other equally effective aspects.
图1中解说了现有技术中FTTH与FTTR的典型架构。A typical architecture of FTTH and FTTR in the prior art is illustrated in FIG. 1 .
图2是根据本发明的一个实施例的FTTR场景的示意图。Fig. 2 is a schematic diagram of an FTTR scenario according to an embodiment of the present invention.
图3是根据本发明的一个实施例的B1类ONT设备的示例注册认证流程。Fig. 3 is an example registration authentication process of a B1 type ONT device according to an embodiment of the present invention.
图4是根据本发明的一个实施例的B2类ONT设备的示例注册认证流程。Fig. 4 is an example registration authentication process of a B2 type ONT device according to an embodiment of the present invention.
图5是根据本发明的一个实施例的用于FTTR场景下的光网设备认证和配置管理的方法的示例流程图。Fig. 5 is an exemplary flowchart of a method for optical network device authentication and configuration management in an FTTR scenario according to an embodiment of the present invention.
图6是根据本发明的一个实施例的由主ONT设备实施的光网设备认证和配置管理方法的示例流程图。Fig. 6 is an exemplary flowchart of an optical network device authentication and configuration management method implemented by a master ONT device according to an embodiment of the present invention.
图7是根据本发明的一个实施例的由边缘ONT设备实施的光网设备认证和配置管理方法的示例流程图。Fig. 7 is an exemplary flowchart of an optical network device authentication and configuration management method implemented by an edge ONT device according to an embodiment of the present invention.
图8是根据本发明的一个实施例的由边缘ONT设备实施的光网设备认证和配置管理方法的示例流程图。Fig. 8 is an exemplary flowchart of an optical network device authentication and configuration management method implemented by an edge ONT device according to an embodiment of the present invention.
图9是根据本发明的一个实施例的由ACS实施的光网设备认证和配置管理方法的示例流程图。Fig. 9 is an exemplary flowchart of an optical network device authentication and configuration management method implemented by an ACS according to an embodiment of the present invention.
图10是根据本发明的一个实施例的用于提供FTTR服务的系统的 示例架构图。Fig. 10 is an example architecture diagram of a system for providing FTTR services according to an embodiment of the present invention.
具体实施方式Detailed ways
下面结合附图详细描述本发明,本发明的特点将在以下的具体描述中得到进一步的显现。The present invention will be described in detail below in conjunction with the accompanying drawings, and the features of the present invention will be further revealed in the following detailed description.
为了解决背景技术部分提到的希望对家庭内的多个子设备进行更灵活管理的问题,本发明在目前ONT接入认证方法的基础上,针对FTTR场景进行逻辑优化和方法改进。In order to solve the problem of more flexible management of multiple sub-devices in the family mentioned in the background technology section, the present invention performs logic optimization and method improvement for FTTR scenarios on the basis of the current ONT access authentication method.
本领域技术人员应对理解,本文中提到的“家庭网关”或“家庭全光网关”并不被限制为仅供家庭使用,而是可泛指FTTR架构中安装在用户侧的主ONT设备,同时术语“主ONT设备”可与“主网关”、“主光猫”、“主设备”、“传统ONT设备”或“常规ONT设备”互换地使用。类似地,“FTTR子设备”或“子设备”泛指FTTR架构中安装在用户侧的耦合到主ONT设备下的边缘ONT设备,同时术语“边缘ONT设备”可与“子设备”或“从ONT设备”互换地使用。主ONT设备和边缘ONT设备也可统称为“光网设备”或“ONT设备”。Those skilled in the art should understand that the "home gateway" or "home all-optical gateway" mentioned in this article is not limited to home use only, but can generally refer to the main ONT device installed on the user side in the FTTR architecture, Meanwhile, the term "master ONT device" can be used interchangeably with "master gateway", "master optical modem", "master device", "traditional ONT device" or "conventional ONT device". Similarly, "FTTR sub-device" or "sub-device" generally refers to the edge ONT device installed on the user side in the FTTR architecture and coupled to the master ONT device, while the term "edge ONT device" can be used with "sub-device" or "slave ONT device" are used interchangeably. The main ONT device and the edge ONT device may also be collectively referred to as "optical network device" or "ONT device".
图2是根据本发明的一个实施例的FTTR场景的示意图。如图2中所示,FTTR服务被应用于一户具有四个房间的场所,例如住宅。房主申请办理了FTTR服务,入户光纤连接到FTTR家庭全光网关(也称主光猫或主ONT设备,以下简称主网关),随后再通过光纤连接到设置在每一个房间中的FTTR子设备(也称从ONT设备或边缘ONT设备,以下简称子设备),即房间1中的子设备1、房间2中的子设备2、房间3中的子设备3、以及房间4中的子设备4。其中,租户1-3分别使用子设备1-3,而户主使用房间4中的子设备4。Fig. 2 is a schematic diagram of an FTTR scenario according to an embodiment of the present invention. As shown in FIG. 2, the FTTR service is applied to a place having four rooms, such as a house. The homeowner has applied for the FTTR service, and the home optical fiber is connected to the FTTR home all-optical gateway (also called the main optical modem or the main ONT device, hereinafter referred to as the main gateway), and then connected to the FTTR sub-unit set in each room through the optical fiber. Devices (also called slave ONT devices or edge ONT devices, hereinafter referred to as sub-device), that is, sub-device 1 in room 1, sub-device 2 in room 2, sub-device 3 in room 3, and sub-device in room 4 4. Among them, tenants 1-3 use sub-device 1-3 respectively, while the householder uses sub-device 4 in room 4.
在这一场景中,房主自己房间的子设备4不需单独计费和管理,而其余每一个房间的子设备1-3都要求单独计费和管理。因此,可将子设备分成两类,需要单独计费和管理的子设备(例如子设备1-3)为第一类,而不需要单独计费和管理的子设备(例如子设备4)为第二类。In this scenario, the sub-device 4 in the house owner's own room does not need to be billed and managed separately, while the sub-device 1-3 in each of the other rooms requires separate billing and management. Therefore, the sub-devices can be divided into two categories, the sub-devices that need to be charged and managed separately (such as sub-devices 1-3) are the first category, and the sub-devices that do not need to be charged and managed separately (such as sub-devices 4) are second category.
为此,为包括主网关和子设备在内的所有ONT设备定义分类如 下:To this end, a classification is defined for all ONT devices including master gateways and sub-devices as follows:
A类:代表该设备为常规ONT设备,也称主ONT设备;Class A: It means that the device is a conventional ONT device, also known as the master ONT device;
B类(分为B1和B2):代表该设备为FTTR子设备,也称边缘ONT设备,其中Class B (divided into B1 and B2): It means that the device is an FTTR sub-device, also known as an edge ONT device, among which
B1类:代表由运营商ACS管理的FTTR子设备,上线时向OLT进行注册认证,并接受ACS的配置管理;B1 category: represents the FTTR sub-equipment managed by the operator's ACS, registers and authenticates with the OLT when it goes online, and accepts the configuration management of the ACS;
B2类:代表由主网关本地管理的FTTR子设备,上线时向主网关注册,主网关不透传给OLT,而是自己下发认证消息,并进行网络配置管理。Type B2: represents the FTTR sub-device locally managed by the main gateway. When it goes online, it registers with the main gateway. The main gateway does not pass it transparently to the OLT, but issues authentication messages by itself and performs network configuration management.
根据这一分类,在图2的场景中,主网关为A类设备,各租户使用的子设备1-3均为B1类设备,而户主使用的子设备4为B2类设备。与这一分类对应,在常规的PON协议中使用的设备LOID中设置相应的类别码,用于区分设备是A类、B1类还是B2类,为此可对PON协议版本进行修订和更新,使得局端设备能够通过LOID来识别ONT设备的类型。在一个实施例中,由于A类设备与常规ONT设备一致,A类设备的LOID可无需修改,仍采用其常规LOID,只需要新添加B1和B2类设备的LOID。According to this classification, in the scenario in Figure 2, the main gateway is a type A device, the sub-device 1-3 used by each tenant is a type B1 device, and the sub-device 4 used by the householder is a type B2 device. Corresponding to this classification, the corresponding category code is set in the device LOID used in the conventional PON protocol to distinguish whether the device is class A, B1 or B2. For this reason, the version of the PON protocol can be revised and updated, so that The central office equipment can identify the type of ONT equipment through LOID. In one embodiment, since the Class A device is consistent with the conventional ONT device, the LOID of the Class A device does not need to be modified, and its conventional LOID is still used, and only the LOIDs of the Class B1 and B2 devices need to be newly added.
以下分别结合图3和图4来具体描述B1类ONT设备和B2类ONT设备的注册认证流程。The registration and authentication processes of the B1 type ONT device and the B2 type ONT device are described in detail below in conjunction with Fig. 3 and Fig. 4 respectively.
图3是根据本发明的一个实施例的B1类ONT设备的示例注册认证流程。如图3中所示,首先,主网关(例如家庭全光网关)上电并携带A类LOID(即常规LOID)向局端OLT设备发起注册认证。认证通过后,OLT设备向其返回认证结果。随后,主网关可向运营商的ACS请求配置信息。作为响应,ACS向主网关下发该主网关的账号及配置信息,以及在运营商处登记的挂在该主网关下的一个或多个子设备的账号及配置信息。子设备的账号及配置信息可由主网关本地缓存。。在这一示例中,FTTR子设备数量为3,因此ACS可下发分别用于每一个子设备的账号及配置信息(该账号为B类账号)。可以理解,此处的子设备指的是B1类子设备,即接受ACS管理的子设备。B类账号是专用于B1类子设备的账号,不需要再进一步划分B1类账号和B2类账号,因为B2类设备不接受ACS管理, 因而不需要账号。随后,主网关携带A类账号向认证系统发起账号认证请求。账号认证成功后,认证系统返回认证结果。Fig. 3 is an example registration authentication process of a B1 type ONT device according to an embodiment of the present invention. As shown in FIG. 3 , first, the main gateway (such as a home all-optical gateway) is powered on and carries a type A LOID (ie, a conventional LOID) to initiate registration authentication to the central office OLT device. After passing the authentication, the OLT returns the authentication result to it. Subsequently, the master gateway may request configuration information from the operator's ACS. In response, the ACS issues the account number and configuration information of the main gateway to the main gateway, as well as the accounts and configuration information of one or more sub-devices registered with the operator and hung under the main gateway. The account and configuration information of the sub-device can be cached locally by the main gateway. . In this example, the number of FTTR sub-devices is 3, so the ACS can issue the account and configuration information for each sub-device (the account is a B-type account). It can be understood that the sub-device here refers to a B1-type sub-device, that is, a sub-device that is managed by the ACS. A B-type account is an account dedicated to B1-type sub-devices, and there is no need to further divide B1-type accounts and B2-type accounts, because B2-type devices do not accept ACS management, so no account is required. Subsequently, the main gateway carries the A-type account and initiates an account authentication request to the authentication system. After the account authentication is successful, the authentication system returns the authentication result.
随后,FTTR子设备上电并携带B1类LOID向OLT发起注册认证。根据FTTR的连接架构,子设备发给OLT的注册认证请求消息会先经过主网关。主网关接收到该消息后,确认LOID类型为B1类型后,将该请求消息透传给OLT。认证通过后,OLT设备向其返回认证结果,并下发配置,主网关则透传OLT返回的消息给子设备。Subsequently, the FTTR sub-device is powered on and carries the B1 type LOID to initiate registration authentication to the OLT. According to the connection architecture of FTTR, the registration authentication request message sent by the sub-device to the OLT will first pass through the main gateway. After receiving the message, the master gateway confirms that the LOID type is B1 type, and transparently transmits the request message to the OLT. After the authentication is passed, the OLT device returns the authentication result to it and sends the configuration, and the main gateway transparently transmits the message returned by the OLT to the sub-device.
然后,主网关向子设备下发ACS向其提供的用于该子设备的B类账号及配置信息。子设备用该B类账号及配置信息透过主网关向认证系统发起账号认证请求,账号认证成功后,认证系统返回认证结果。在子设备账号认证过程中,主网关透传子设备和认证系统之间的请求及返回消息。至此,B1类子设备的认证注册完成。Then, the main gateway issues the B-class account and configuration information for the sub-device provided by the ACS to the sub-device. The sub-device uses the Class B account and configuration information to initiate an account authentication request to the authentication system through the main gateway. After the account authentication is successful, the authentication system returns the authentication result. During the sub-device account authentication process, the main gateway transparently transmits the request and return message between the sub-device and the authentication system. So far, the certification registration of B1 sub-equipment is completed.
图4是根据本发明的一个实施例的B2类ONT设备的示例注册认证流程。如图4中所示,首先,与图3中类似,主网关向OLT发起注册认证,认证通过后再向ACS请求配置信息,并接收并缓存主网关及各子设备的账号及配置信息。随后,主网关携带A类账号向认证系统发起账号认证请求。Fig. 4 is an example registration authentication process of a B2 type ONT device according to an embodiment of the present invention. As shown in Figure 4, first, similar to Figure 3, the main gateway initiates registration authentication to the OLT, and then requests configuration information from the ACS after passing the authentication, and receives and caches the accounts and configuration information of the main gateway and each sub-device. Subsequently, the main gateway carries the A-type account and initiates an account authentication request to the authentication system.
随后,FTTR子设备上电并发起注册认证。与图3的示例不同,本示例中,该FTTR子设备携带的LOID是B2类LOID。家庭网关收到该消息后,确认LOID类型为B2类型,将其识别为本地管理设备,随即向其返回认证结果,并将该子设备配置为桥接模式,即该子设备通过主网关来接入网络。至此,B2类设备的认证注册完成。Subsequently, the FTTR sub-device is powered on and initiates registration authentication. Different from the example in FIG. 3 , in this example, the LOID carried by the FTTR sub-device is a B2 type LOID. After receiving the message, the home gateway confirms that the LOID type is B2, recognizes it as a local management device, and then returns the authentication result to it, and configures the sub-device as a bridge mode, that is, the sub-device is connected through the main gateway network. So far, the certification registration of B2 equipment is completed.
返回到图2的示例场景中,通过以上所描述的光网设备接入认证和配置管理方法,当户主向运营商请求办理FTTR套餐服务,运营商安装完FTTR全光网关和各子设备后,FTTR全光网关和各子设备分别用A类和B1类LOID进行OLT注册认证,然后网关和各子设备分别用系统分配的账号进行账号认证(例如通过PPPoE拨号)。运营商的ACS中也同样登记相关信息,记录该FTTR用户家庭有全光网关和子设备分别接受管理。由此,可以灵活地满足以下各种需求:Returning to the example scenario in Figure 2, through the optical network device access authentication and configuration management methods described above, when the head of the household requests the operator for the FTTR package service, after the operator installs the FTTR all-optical gateway and each sub-equipment, The FTTR all-optical gateway and each sub-device use Class A and B1 LOIDs to perform OLT registration and authentication respectively, and then the gateway and each sub-device use the accounts assigned by the system to perform account authentication (for example, through PPPoE dialing). The operator's ACS also registers relevant information, recording that the FTTR user's home has an all-optical gateway and sub-devices that are managed separately. In this way, the following various needs can be flexibly met:
1、当租户1申请自己需要500M的宽带速率,则可以申请提速,运营商可以灵活进行分配和管理;1. When tenant 1 applies for a broadband rate of 500M, he can apply for a speed increase, and the operator can flexibly allocate and manage it;
2、当租户2不再续租,此时运营商也可以停止提供子设备2的上网服务,等到新的租客入住后,办理开通;2. When the tenant 2 does not renew the lease, the operator can also stop providing the Internet service of the sub-device 2 at this time, and open it after the new tenant moves in;
3、房东自己房间的子设备4不需单独计费和管理,则子设备4将携带B2类LOID向全光网关进行注册认证,完成后,子设备4可以正常上网,但是该设备不具备拨号能力,没有单独的上网宽带账号,而是属于全光网关的宽带业务,并接受全光网关的本地管理。3. The sub-device 4 in the landlord's own room does not need to be billed and managed separately, and the sub-device 4 will carry the B2 type LOID to register and authenticate with the all-optical gateway. After completion, the sub-device 4 can access the Internet normally, but the device does not have dial-up It does not have a separate Internet broadband account, but belongs to the broadband service of the all-optical gateway, and accepts the local management of the all-optical gateway.
此外,当用户的使用需求发生变更时,例如新增新的B1类子设备、将原B2类子设备变更为B1类子设备或B1类子设备变更为B2类子设备或B2类子设备单独办理提速等等,用户可以向运营商请求办理相关的业务。办理完成后,运营商将相关的信息登记到ACS中。此时,ACS可下发经更新的子设备账号及配置信息给主网关,主网关则相应地更新本地缓存的子设备账号及配置信息。In addition, when the user's use requirements change, such as adding a new B1 sub-device, changing the original B2 sub-device to B1 sub-device or changing B1 sub-device to B2 sub-device or B2 sub-device alone For speed increase, etc., the user can request the operator to handle related services. After the processing is completed, the operator will register the relevant information in the ACS. At this point, the ACS can deliver the updated sub-device account and configuration information to the main gateway, and the main gateway will update the locally cached sub-device account and configuration information accordingly.
图5是根据本发明的一个实施例的用于FTTR场景下的光网设备认证和配置管理的方法500的示例流程图。如图5中所示,方法500开始于步骤502,为每一个光网设备分配指示设备类型的LOID,其中LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备。Fig. 5 is an exemplary flowchart of a method 500 for optical network device authentication and configuration management in an FTTR scenario according to an embodiment of the present invention. As shown in FIG. 5 , the method 500 starts at step 502, and allocates a LOID indicating the type of equipment for each optical network device, wherein the LOID includes at least a type A LOID, a type B1 LOID, and a type B2 LOID, wherein the type A LOID indicates that the optical network The device is the main ONT device, the B1 type LOID indicates that the optical network device is a B1 type edge ONT device managed by the ACS, and the B2 type LOID indicates that the optical network device is a B2 type edge ONT device not managed by the ACS.
接着,在步骤504,将主ONT设备配置成向OLT设备注册认证并接受ACS管理。如之前所描述的,主ONT设备向OLT设备发送注册认证请求,在认证通过后向ACS请求配置信息,ACS则下发该主ONT设备以及与该主ONT设备耦合的B1类边缘ONT设备(如果有的话)的账号及配置信息。此外,主ONT设备还被进一步配置成对与其耦合的B2边缘ONT设备进行注册认证及配置管理。Next, in step 504, the master ONT device is configured to register and authenticate with the OLT device and accept ACS management. As described before, the master ONT device sends a registration authentication request to the OLT device, and requests configuration information from the ACS after the authentication is passed, and the ACS sends the master ONT device and the B1 edge ONT device coupled with the master ONT device (if (if any) account and configuration information. In addition, the main ONT device is further configured to perform registration authentication and configuration management on the B2 edge ONT device coupled to it.
在步骤506,将B1类边缘ONT设备配置成透过其耦合的主ONT设备向OLT设备注册认证并接受ACS管理。如之前所描述的,B1类边缘 ONT设备的注册认证请求在发送到主ONT设备后,经主ONT设备识别其LOID为B1类型后,被透传给OLT设备,并完成认证注册。随后,主ONT设备会向其提供来自ACS下发的账号及配置信息,供其向认证系统账号认证使用。In step 506, the edge ONT device of type B1 is configured to register and authenticate with the OLT device through its coupled main ONT device and accept ACS management. As described before, after the registration authentication request of the B1-type edge ONT device is sent to the main ONT device, after the main ONT device recognizes that its LOID is B1 type, it is transparently transmitted to the OLT device and completes the authentication registration. Subsequently, the main ONT device will provide it with the account number and configuration information issued by the ACS for it to authenticate with the account number of the authentication system.
在步骤508,将B2类边缘ONT设备配置成向其耦合的主ONT设备注册认证并接受所述主ONT设备管理。如之前所描述的,B2类边缘ONT设备的注册认证请求由主ONT设备来进行并直接下发配置,该配置会将B2类边缘ONT设备配置成桥接模式,以便通过主ONT设备的桥接来接入网络。In step 508, the B2-type edge ONT device is configured to register and authenticate with its coupled master ONT device and accept the management of the master ONT device. As described before, the registration and authentication request of the B2 edge ONT device is performed by the main ONT device and the configuration is directly issued. This configuration will configure the B2 edge ONT device in bridge mode so that it can connect to into the network.
以下将结合图6-9来进一步分别详细描述FTTR场景中的各设备完成认证和配置管理的方法。The methods for completing authentication and configuration management of each device in the FTTR scenario will be further described in detail below in conjunction with FIGS. 6-9 .
图6是根据本发明的一个实施例的由主ONT设备实施的光网设备认证和配置管理方法600的示例流程图。在本示例中,主ONT设备可以是如图2中所例示的FTTR场景中的家庭全光网关,即A类设备。方法600开始于步骤602,主ONT设备向OLT设备发起注册认证请求,该请求中包含主ONT设备的LOID。在认证通过后,OLT设备向其返回认证结果,并下发配置。Fig. 6 is an exemplary flowchart of an optical network device authentication and configuration management method 600 implemented by a master ONT device according to an embodiment of the present invention. In this example, the master ONT device may be a home all-optical gateway in the FTTR scenario as illustrated in FIG. 2 , that is, a type A device. The method 600 starts at step 602, the master ONT device initiates a registration authentication request to the OLT device, and the request includes the LOID of the master ONT device. After passing the authentication, the OLT device returns the authentication result to it and delivers the configuration.
在步骤604,响应于OLT设备对其的认证通过,主ONT设备向ACS请求配置信息。In step 604, in response to the OLT passing its authentication, the master ONT requests configuration information from the ACS.
随后,在步骤606,接收ACS下发的主ONT设备以及与其相关联的边缘ONT设备的账号及配置信息。如之前所描述的,主ONT设备的账号是A类账号,与其相关联的边缘ONT设备(即B1类边缘ONT设备)的账号是B类账号。Subsequently, in step 606, the account and configuration information of the master ONT device and its associated edge ONT device are received from the ACS. As described above, the account of the main ONT device is a type A account, and the account of the edge ONT device associated with it (that is, the edge ONT device of type B1) is a type B account.
在步骤608,主ONT设备以其自己的账号向认证系统服务器发起账号认证请求。认证系统对该账号认证通过后,账号认证完成。在步骤610,响应于接收到边缘ONT设备的认证注册请求,主ONT设备根据边缘ONT设备的认证注册请求中包含的边缘ONT设备的LOID来确定边缘ONT设备的类型。如之前所描述的,边缘ONT设备的类型包括B1和B2两种类型。如果确定该边缘ONT设备是B1类型,则方法前进至步骤612。In step 608, the main ONT device initiates an account authentication request to the authentication system server with its own account. After the authentication system passes the authentication of the account, the account authentication is completed. In step 610, in response to receiving the authentication registration request of the edge ONT device, the master ONT device determines the type of the edge ONT device according to the LOID of the edge ONT device contained in the authentication registration request of the edge ONT device. As described before, the types of edge ONT devices include two types, B1 and B2. If it is determined that the edge ONT device is of type B1, the method proceeds to step 612.
在步骤612,响应于确定该边缘ONT设备是B1类型,主ONT设备将该边缘ONT设备的认证注册请求消息透传给OLT设备。接着,在步骤614,主ONT设备接收OLT设备返回的认证结果,并透传给该边缘ONT设备。In step 612, in response to determining that the edge ONT device is of type B1, the master ONT device transparently transmits the authentication registration request message of the edge ONT device to the OLT device. Next, in step 614, the main ONT device receives the authentication result returned by the OLT device, and transparently transmits it to the edge ONT device.
在步骤616,主ONT设备将ACS下发的对应于该边缘ONT设备的账号及配置信息发送给该边缘ONT设备。之后,在步骤618,当该边缘ONT设备用其账号进行账号认证时,主ONT设备透传该边缘ONT设备和认证系统之间的账号认证请求及返回消息。In step 616, the master ONT device sends the account number and configuration information corresponding to the edge ONT device issued by the ACS to the edge ONT device. Afterwards, in step 618, when the edge ONT device performs account authentication with its account, the master ONT device transparently transmits the account authentication request and return message between the edge ONT device and the authentication system.
回到步骤610,如果确定该边缘ONT设备是B2类型,则方法前进至步骤620。在步骤620,响应于确定该边缘ONT设备是B2类型,主ONT设备对该边缘ONT设备进行认证,如果认证通过,则在步骤622向该边缘ONT设备返回认证结果并下发配置,其中该配置将该边缘ONT设备配置为桥接模式。至此,方法600结束。Returning to step 610, if it is determined that the edge ONT device is of type B2, the method proceeds to step 620. In step 620, in response to determining that the edge ONT device is of type B2, the master ONT device authenticates the edge ONT device, and if the authentication is passed, returns the authentication result to the edge ONT device in step 622 and issues configuration, wherein the configuration Configure the edge ONT device to bridge mode. So far, the method 600 ends.
可选地,方法600还可包括接收ACS下发的边缘ONT设备更新信息,该更新信息中包含最新的与该主ONT设备相关联的边缘ONT设备的账号及配置信息,通过这一更新信息,可以灵活地实现新增B1类子设备、子设备类型变更、以及子设备配置信息变更等功能,从而支持对各FTTR子设备的灵活管理。Optionally, the method 600 may also include receiving edge ONT device update information issued by the ACS, the update information including the latest account number and configuration information of the edge ONT device associated with the master ONT device, through this update information, Functions such as adding B1 sub-device, changing sub-device type, and sub-device configuration information can be flexibly implemented, thereby supporting flexible management of each FTTR sub-device.
图7是根据本发明的一个实施例的由边缘ONT设备实施的光网设备认证和配置管理方法700的示例流程图。在本示例中,边缘ONT设备可以是如图2中所例示的FTTR场景中的需要单独计费和管理的边缘ONT设备,即B1类设备。方法700开始于步骤702,边缘ONT设备携带B1类LOID向其耦合的主ONT设备发送注册认证请求消息。如之前所描述的,当主ONT设备识别确定该边缘ONT设备是B1类型时,会将该注册认证请求消息透传给OLT设备进行注册认证,并将认证结果返回给该边缘ONT设备。FIG. 7 is an example flowchart of an optical network device authentication and configuration management method 700 implemented by an edge ONT device according to an embodiment of the present invention. In this example, the edge ONT device may be an edge ONT device that requires separate accounting and management in the FTTR scenario as illustrated in FIG. 2 , that is, a B1 type device. The method 700 starts at step 702, the edge ONT device sends a registration authentication request message to the main ONT device coupled to it with a Type B1 LOID. As described before, when the main ONT device identifies and determines that the edge ONT device is of type B1, it will transparently transmit the registration authentication request message to the OLT device for registration authentication, and return the authentication result to the edge ONT device.
相应地,在步骤704,边缘ONT设备接收主ONT设备返回的来自OLT设备的认证结果。Correspondingly, in step 704, the edge ONT device receives the authentication result from the OLT device returned by the main ONT device.
随后,在步骤706,边缘ONT设备从主ONT设备接收来自ACS 的账号及配置信息。该账号及配置信息是由ACS提供给主ONT设备的,该账号是一个专供该边缘ONT设备使用的B类账号。Subsequently, in step 706, the edge ONT device receives the account number and configuration information from the ACS from the master ONT device. The account and configuration information are provided by the ACS to the main ONT device, and the account is a B-type account exclusively used by the edge ONT device.
在步骤708,边缘ONT设备使用接收到的账号发起账号认证请求。至此,方法700结束。In step 708, the edge ONT device uses the received account to initiate an account authentication request. So far, the method 700 ends.
图8是根据本发明的一个实施例的由边缘ONT设备实施的光网设备认证和配置管理方法800的示例流程图。在本示例中,边缘ONT设备可以是如图2中所例示的FTTR场景中的不需要单独计费和管理的边缘ONT设备,即B2类设备。方法800开始于步骤802,边缘ONT设备携带B2类LOID向其耦合的主ONT设备发送注册认证请求消息。如之前所描述的,当主ONT设备识别确定该边缘ONT设备是B2类型时,主ONT设备直接向边缘ONT设备返回认证结果,并将该边缘ONT设备配置为桥接模式。FIG. 8 is an exemplary flowchart of an optical network device authentication and configuration management method 800 implemented by an edge ONT device according to an embodiment of the present invention. In this example, the edge ONT device may be an edge ONT device that does not require separate accounting and management in the FTTR scenario as illustrated in FIG. 2 , that is, a B2 type device. The method 800 starts at step 802, the edge ONT device sends a registration authentication request message to the main ONT device coupled to it with a B2 type LOID. As described before, when the main ONT device identifies and determines that the edge ONT device is of type B2, the main ONT device directly returns the authentication result to the edge ONT device, and configures the edge ONT device in bridge mode.
相应地,在步骤804,接收来自主ONT设备的认证结果和下发配置。随后,在步骤806,根据接收的配置将边缘ONT设备自己配置为桥接模式。至此,方法800结束。Correspondingly, in step 804, the authentication result and the delivered configuration from the master ONT device are received. Subsequently, in step 806, the edge ONT device itself is configured in bridge mode according to the received configuration. So far, the method 800 ends.
图9是根据本发明的一个实施例的由ACS实施的光网设备认证和配置管理方法900的示例流程图。方法900开始于步骤902,响应于接收到来自主ONT设备的账号认证配置信息请求,将该主ONT设备以及与该主ONT设备相关联的边缘ONT设备的账号及配置信息发送给该主ONT设备。FIG. 9 is an exemplary flow chart of an optical network device authentication and configuration management method 900 implemented by the ACS according to an embodiment of the present invention. The method 900 starts at step 902. In response to receiving an account authentication configuration information request from the master ONT device, the master ONT device and the account and configuration information of the edge ONT device associated with the master ONT device are sent to the master ONT device.
在步骤904,响应于ACS上维护的与该主ONT设备相关联的边缘ONT设备的账号及配置信息发生改动,将经更新的边缘ONT设备的账号及配置信息发送给该主ONT设备。至此,方法900结束。In step 904, in response to changes in the account number and configuration information of the edge ONT device associated with the master ONT device maintained on the ACS, the updated account number and configuration information of the edge ONT device are sent to the master ONT device. So far, the method 900 ends.
图10是根据本发明的一个实施例的用于提供FTTR服务的系统1000的示例架构图。如图10中所示,系统1000可包括ACS 1002、认证系统1004、OLT设备1006、主ONT设备1008、以及一个或多个与所述主ONT设备耦合的边缘ONT设备10101-1010n。如之前所描述的,主ONT设备1008和所述边缘ONT设备10101-1010n中的每一个具有指示设备类型的LOID,其中LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备 是受ACS 1002管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS 1002管理的B2类边缘ONT设备。主ONT设备1008可被配置成向OLT设备1006注册认证并接受ACS 1002管理,边缘ONT设备10101-1010n中的B1类边缘ONT设备可被配置成透过主ONT设备1008向OLT设备1006注册认证并接受ACS 1002管理,其中的B2类边缘ONT设备则可被配置成向主ONT设备1008注册认证并接受主ONT设备1008管理。FIG. 10 is an example architecture diagram of a system 1000 for providing FTTR services according to an embodiment of the present invention. As shown in FIG. 10, system 1000 may include an ACS 1002, an authentication system 1004, an OLT device 1006, a master ONT device 1008, and one or more edge ONT devices 10101-1010n coupled to the master ONT device. As previously described, each of the master ONT device 1008 and the edge ONT devices 10101-1010n has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a type B1 LOID, and a type B2 LOID, wherein the type A LOID Indicates that the optical network device is a master ONT device, the B1 class LOID indicates that the optical network device is a B1 class edge ONT device managed by the ACS 1002, and the B2 class LOID indicates that the optical network device is a B2 class edge ONT device not managed by the ACS 1002. Main ONT equipment 1008 can be configured to register authentication with OLT equipment 1006 and accept ACS 1002 management, B1 class edge ONT equipment in edge ONT equipment 10101-1010n can be configured to register authentication with OLT equipment 1006 through main ONT equipment 1008 and To accept the management of the ACS 1002, the B2 edge ONT device can be configured to register and authenticate with the main ONT device 1008 and accept the management of the main ONT device 1008.
以上描述了本发明的家庭光网设备的分类接入认证和配置管理方法和系统,其中采用网关和子设备分步接入,且设备上线注册时可通过携带不同类型的LOID(A类、B1类、B2类)进行分类认证,从而对家庭网关设备和子设备进行设备类型区分,同时划分家庭内的子设备的管理配置权。The method and system for classified access authentication and configuration management of home optical network equipment of the present invention have been described above, wherein gateways and sub-equipment are used for step-by-step access, and when the equipment is registered online, it can carry different types of LOID (type A, type B1) , B2 category) to carry out classification certification, so as to distinguish the device type between the home gateway device and the sub-device, and at the same time divide the management and configuration rights of the sub-device in the home.
以上实例可以看出,本发明能够让运营商对FTTR用户的所有房间子设备进行灵活的、不受限的管理能力,可适用于丰富的场景。It can be seen from the above examples that the present invention enables operators to perform flexible and unlimited management capabilities on all room sub-devices of FTTR users, and is applicable to various scenarios.
以上所已经描述的内容包括所要求保护主题的各方面的示例。当然,出于描绘所要求保护主题的目的而描述每一个可以想到的组件或方法的组合是不可能的,但本领域内的普通技术人员应该认识到,所要求保护主题的许多进一步的组合和排列都是可能的。从而,所公开的主题旨在涵盖落入所附权利要求书的精神和范围内的所有这样的变更、修改和变化。What has been described above includes examples of aspects of the claimed subject matter. It is, of course, not possible to describe every conceivable combination of components or methodologies for purposes of delineating the claimed subject matter, but one of ordinary skill in the art will recognize that many further combinations and Permutations are possible. Accordingly, the disclosed subject matter is intended to embrace all such alterations, modifications and variations that fall within the spirit and scope of the appended claims.

Claims (10)

  1. 一种用于FTTR场景下的光网设备认证和配置管理的方法,其特征在于,所述方法包括:A method for optical network device authentication and configuration management in an FTTR scenario, characterized in that the method includes:
    为每一个光网设备分配指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受自动配置服务器ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备;Assign an LOID indicating the type of equipment to each optical network device, wherein the LOID includes at least Type A LOID, Type B1 LOID, and Type B2 LOID, wherein Type A LOID indicates that the optical network equipment is the master ONT equipment, and Type B1 LOID indicates that the optical network The device is a B1-type edge ONT device managed by the automatic configuration server ACS, and the B2-type LOID indicates that the optical network device is a B2-type edge ONT device not managed by the ACS;
    将主ONT设备配置成向OLT设备注册认证并接受ACS管理;Configure the main ONT device to register and authenticate with the OLT device and accept ACS management;
    将B1类边缘ONT设备配置成透过其耦合的主ONT设备向OLT设备注册认证并接受ACS管理;以及Configure the B1 edge ONT device to register and authenticate with the OLT device through its coupled main ONT device and accept ACS management; and
    将B2类边缘ONT设备配置成向其耦合的主ONT设备注册认证并接受所述主ONT设备管理。The B2 type edge ONT device is configured to register and authenticate with its coupled main ONT device and accept the management of the main ONT device.
  2. 一种用于FTTR场景下的光网设备认证和配置管理的方法,其特征在于,每一个光网设备具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受自动配置服务器ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备,其中所述方法由主ONT设备执行并且包括以下步骤:A method for optical network device authentication and configuration management in an FTTR scenario, characterized in that each optical network device has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a B1 type LOID, and a B2 type LOID, where A-type LOID indicates that the optical network device is the main ONT device, B1-type LOID indicates that the optical network device is a B1-type edge ONT device managed by the automatic configuration server ACS, and B2-type LOID indicates that the optical network device is not managed by the ACS B2 class edge ONT equipment, wherein said method is carried out by main ONT equipment and comprises the following steps:
    向OLT设备发起注册认证请求,所述请求中包含所述主ONT设备的A类LOID;Initiate a registration authentication request to the OLT device, which includes the Class A LOID of the master ONT device in the request;
    响应于所述OLT设备对所述主ONT设备的认证通过,向所述ACS请求配置信息;In response to the OLT device passing the authentication of the master ONT device, requesting configuration information from the ACS;
    接收ACS下发的所述主ONT设备以及与所述主ONT设备相关联的边缘ONT设备的账号及配置信息;Receive the account number and configuration information of the master ONT device issued by the ACS and the edge ONT device associated with the master ONT device;
    以所述主ONT设备的账号向认证系统发起账号认证请求;Initiate an account authentication request to the authentication system with the account number of the main ONT device;
    响应于接收到边缘ONT设备的认证注册请求,根据所述边缘ONT设备的认证注册请求中包含的所述边缘ONT设备的LOID来确定所述边缘ONT设备的类型;In response to receiving the authentication registration request of the edge ONT device, determining the type of the edge ONT device according to the LOID of the edge ONT device included in the authentication registration request of the edge ONT device;
    响应于确定所述边缘ONT设备是B1类边缘ONT设备:In response to determining that the edge ONT device is a Class B1 edge ONT device:
    将所述B1类边缘ONT设备的认证注册请求透传给所述OLT设备;Transparently transmit the authentication registration request of the B1 type edge ONT device to the OLT device;
    接收所述OLT设备返回的认证结果,并透传给所述B1类边缘ONT设备;Receive the authentication result returned by the OLT device, and transparently transmit it to the B1 edge ONT device;
    将来自所述ACS的与所述B1类边缘ONT设备对应的账号及配置信息发送给所述B1类边缘ONT设备;以及sending the account and configuration information corresponding to the B1-type edge ONT device from the ACS to the B1-type edge ONT device; and
    透传所述B1类边缘ONT设备和所述认证系统之间的账号认证请求以及返回消息;以及Transparently transmit the account authentication request and return message between the B1 type edge ONT device and the authentication system; and
    响应于确定所述边缘ONT设备是B2类边缘ONT设备:In response to determining that the edge ONT device is a Class B2 edge ONT device:
    对所述B2类边缘ONT设备进行认证;以及Authenticating the Class B2 edge ONT device; and
    如果认证通过,向所述B2类边缘ONT设备返回认证结果并下发配置,其中该配置将所述B2类边缘ONT设备配置为桥接模式。If the authentication is passed, the authentication result is returned to the B2-type edge ONT device and a configuration is issued, wherein the configuration configures the B2-type edge ONT device in bridge mode.
  3. 一种用于FTTR场景下的光网设备认证和配置管理的方法,其特征在于,每一个光网设备具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受自动配置服务器ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备,其中所述方法由B1类边缘ONT设备执行并且包括以下步骤:A method for optical network device authentication and configuration management in an FTTR scenario, characterized in that each optical network device has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a B1 type LOID, and a B2 type LOID, where A-type LOID indicates that the optical network device is the main ONT device, B1-type LOID indicates that the optical network device is a B1-type edge ONT device managed by the automatic configuration server ACS, and B2-type LOID indicates that the optical network device is not managed by the ACS B2 class edge ONT device, wherein said method is carried out by B1 class edge ONT device and comprises the following steps:
    向与所述B1类边缘ONT设备耦合的主ONT设备发起注册认证请求,所述请求中包含所述主B1类边缘ONT设备的B1类LOID;Initiate a registration authentication request to the main ONT device coupled with the B1 type edge ONT device, and the request includes the B1 type LOID of the main B1 type edge ONT device;
    接收所述主ONT设备返回的来自OLT设备的认证结果;Receiving the authentication result from the OLT device returned by the main ONT device;
    接收所述主ONT设备发送的来自所述ACS的与所述B1类边缘ONT设备对应的账号及配置信息;以及receiving the account number and configuration information corresponding to the B1-type edge ONT device from the ACS sent by the master ONT device; and
    以接收到的账号向认证系统发起账号认证请求。Initiate an account authentication request to the authentication system with the received account number.
  4. 一种用于FTTR场景下的光网设备认证和配置管理的方法,其特征在于,每一个光网设备具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受自动配置服务器ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备,其中所述方法由B2类边缘ONT设备执行并且包括以下步骤:A method for optical network device authentication and configuration management in an FTTR scenario, characterized in that each optical network device has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a B1 type LOID, and a B2 type LOID, where A-type LOID indicates that the optical network device is the main ONT device, B1-type LOID indicates that the optical network device is a B1-type edge ONT device managed by the automatic configuration server ACS, and B2-type LOID indicates that the optical network device is not managed by the ACS B2 class edge ONT device, wherein said method is carried out by B2 class edge ONT device and comprises the following steps:
    向与所述B2类边缘ONT设备耦合的主ONT设备发起注册认证请求,所述请求中包含所述主B1类边缘ONT设备的B2类LOID;Initiate a registration authentication request to the main ONT device coupled with the B2 type edge ONT device, and the request includes the B2 type LOID of the main B1 type edge ONT device;
    接收所述主ONT设备返回的认证结果以及下发的配置;以及Receiving the authentication result returned by the main ONT device and the configuration issued; and
    根据接收的配置将所述B2类边缘ONT设备配置成桥接模式。Configure the edge ONT device of type B2 into bridge mode according to the received configuration.
  5. 一种用于FTTR场景下的光网设备认证和配置管理的方法,其特征在于,每一个光网设备具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受自动配置服务器ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备,其中所述方法由ACS执行并且包括以下步骤:A method for optical network device authentication and configuration management in an FTTR scenario, characterized in that each optical network device has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a B1 type LOID, and a B2 type LOID, where A-type LOID indicates that the optical network device is the main ONT device, B1-type LOID indicates that the optical network device is a B1-type edge ONT device managed by the automatic configuration server ACS, and B2-type LOID indicates that the optical network device is not managed by the ACS B2 class edge ONT equipment, wherein said method is carried out by ACS and comprises the following steps:
    账号认证响应于接收到来自主ONT设备的配置信息请求,将所述主ONT设备以及与所述主ONT设备相关联的边缘ONT设备的账号及配置信息发送给所述主ONT设备;以及The account authentication is in response to receiving the configuration information request from the master ONT device, sending the account number and configuration information of the master ONT device and edge ONT devices associated with the master ONT device to the master ONT device; and
    响应于所述ACS上维护的与所述主ONT设备相关联的边缘ONT设备的账号及配置信息发生改动,将经更新的边缘ONT设备的账号及配置信息发送给所述主ONT设备。In response to changes in the account number and configuration information of the edge ONT device associated with the master ONT device maintained on the ACS, the updated account number and configuration information of the edge ONT device are sent to the master ONT device.
  6. 一种用于提供FTTR服务的系统,其中系统包括自动配置服务器 ACS、认证系统、OLT设备、主ONT设备、以及一个或多个与所述主ONT设备耦合的边缘ONT设备,其特征在于:A system for providing FTTR services, wherein the system includes an automatic configuration server ACS, an authentication system, an OLT device, a master ONT device, and one or more edge ONT devices coupled with the master ONT device, characterized in that:
    所述主ONT设备和所述边缘ONT设备中的每一个具有指示设备类型的LOID,其中所述LOID至少包括A类LOID、B1类LOID以及B2类LOID,其中A类LOID指示光网设备是主ONT设备,B1类LOID指示光网设备是受ACS管理的B1类边缘ONT设备,并且B2类LOID指示光网设备是不受ACS管理的B2类边缘ONT设备;Each of the master ONT device and the edge ONT device has a LOID indicating the type of device, wherein the LOID includes at least a type A LOID, a B1 type LOID, and a B2 type LOID, wherein the type A LOID indicates that the optical network device is a master ONT device, B1 type LOID indicates that the optical network device is a B1 type edge ONT device managed by ACS, and B2 type LOID indicates that the optical network device is a B2 type edge ONT device not managed by ACS;
    其中所述主ONT设备被配置成向所述OLT设备注册认证并接受所述ACS管理;Wherein said master ONT device is configured to register and authenticate with said OLT device and accept said ACS management;
    B1类边缘ONT设备被配置成透过所述主ONT设备向所述OLT设备注册认证并接受所述ACS管理;以及The B1-type edge ONT device is configured to register and authenticate with the OLT device through the master ONT device and accept the ACS management; and
    B2类边缘ONT设备被配置成向其耦合的主ONT设备注册认证并接受所述主ONT设备管理。The B2-type edge ONT device is configured to register and authenticate with its coupled master ONT device and accept the management of the master ONT device.
  7. 如权利要求6所述的系统,其特征在于,所述主ONT设备被进一步配置成:The system of claim 6, wherein the master ONT device is further configured to:
    向OLT设备发起注册认证请求,所述请求中包含所述主ONT设备的A类LOID;Initiate a registration authentication request to the OLT device, which includes the Class A LOID of the master ONT device in the request;
    响应于所述OLT设备对所述主ONT设备的认证通过,向所述ACS请求配置信息;In response to the OLT device passing the authentication of the master ONT device, requesting configuration information from the ACS;
    接收ACS下发的所述主ONT设备以及与所述主ONT设备相关联的边缘ONT设备的账号及配置信息;Receive the account number and configuration information of the master ONT device issued by the ACS and the edge ONT device associated with the master ONT device;
    以所述主ONT设备的账号向认证系统发起账号认证请求;Initiate an account authentication request to the authentication system with the account number of the main ONT device;
    响应于接收到边缘ONT设备的认证注册请求,根据所述边缘ONT设备的认证注册请求中包含的所述边缘ONT设备的LOID来确定所述边缘ONT设备的类型;In response to receiving the authentication registration request of the edge ONT device, determining the type of the edge ONT device according to the LOID of the edge ONT device included in the authentication registration request of the edge ONT device;
    响应于确定所述边缘ONT设备是B1类边缘ONT设备:In response to determining that the edge ONT device is a Class B1 edge ONT device:
    将所述B1类边缘ONT设备的认证注册请求透传给所述OLT设备;Transparently transmit the authentication registration request of the B1 type edge ONT device to the OLT device;
    接收所述OLT设备返回的认证结果,并透传给所述B1类边缘ONT设备;Receive the authentication result returned by the OLT device, and transparently transmit it to the B1 edge ONT device;
    将来自所述ACS的与所述B1类边缘ONT设备对应的账号及配置信息发送给所述B1类边缘ONT设备;以及sending the account and configuration information corresponding to the B1-type edge ONT device from the ACS to the B1-type edge ONT device; and
    透传所述B1类边缘ONT设备和所述认证系统之间的账号认证请求以及返回消息;以及Transparently transmit the account authentication request and return message between the B1 type edge ONT device and the authentication system; and
    响应于确定所述边缘ONT设备是B2类边缘ONT设备:In response to determining that the edge ONT device is a Class B2 edge ONT device:
    对所述B2类边缘ONT设备进行认证;以及Authenticating the Class B2 edge ONT device; and
    如果认证通过,向所述B2类边缘ONT设备返回认证结果并下发配置,其中该配置将所述B2类边缘ONT设备配置为桥接模式。If the authentication is passed, the authentication result is returned to the B2-type edge ONT device and a configuration is issued, wherein the configuration configures the B2-type edge ONT device in bridge mode.
  8. 如权利要求6所述的系统,其特征在于,所述B1类边缘ONT设备被进一步配置成:The system according to claim 6, wherein the B1 type edge ONT device is further configured to:
    向与所述B1类边缘ONT设备耦合的主ONT设备发起注册认证请求,所述请求中包含所述主B1类边缘ONT设备的B1类LOID;Initiate a registration authentication request to the main ONT device coupled with the B1 type edge ONT device, and the request includes the B1 type LOID of the main B1 type edge ONT device;
    接收所述主ONT设备返回的来自OLT设备的认证结果;Receiving the authentication result from the OLT device returned by the main ONT device;
    接收所述主ONT设备发送的来自所述ACS的与所述B1类边缘ONT设备对应的账号及配置信息;以及receiving the account number and configuration information corresponding to the B1-type edge ONT device from the ACS sent by the master ONT device; and
    以接收到的账号向认证系统发起账号认证请求。Initiate an account authentication request to the authentication system with the received account number.
  9. 如权利要求6所述的系统,其特征在于,所述B2类边缘ONT设备被进一步配置成:The system according to claim 6, wherein the B2 type edge ONT device is further configured to:
    向与所述B2类边缘ONT设备耦合的主ONT设备发起注册认证请求,所述请求中包含所述主B1类边缘ONT设备的B2类LOID;Initiate a registration authentication request to the main ONT device coupled with the B2 type edge ONT device, and the request includes the B2 type LOID of the main B1 type edge ONT device;
    接收所述主ONT设备返回的认证结果以及下发的配置;以及Receiving the authentication result returned by the main ONT device and the configuration issued; and
    根据接收的配置将所述B2类边缘ONT设备配置成桥接模式。Configure the edge ONT device of type B2 into bridge mode according to the received configuration.
  10. 如权利要求6所述的系统,其特征在于,所述ACS被配置成:The system of claim 6, wherein the ACS is configured to:
    账号认证响应于接收到来自主ONT设备的配置信息请求,将所述主 ONT设备以及与所述主ONT设备相关联的边缘ONT设备的账号及配置信息发送给所述主ONT设备;以及Account authentication is in response to receiving the configuration information request from the master ONT device, sending the account number and configuration information of the master ONT device and edge ONT devices associated with the master ONT device to the master ONT device; and
    响应于所述ACS上维护的与所述主ONT设备相关联的边缘ONT设备的账号及配置信息发生改动,将经更新的边缘ONT设备的账号及配置信息发送给所述主ONT设备。In response to changes in the account number and configuration information of the edge ONT device associated with the master ONT device maintained on the ACS, the updated account number and configuration information of the edge ONT device are sent to the master ONT device.
PCT/CN2021/135949 2021-08-20 2021-12-07 Optical network device authentication and configuration management method and system in fttr scenario WO2023019816A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
BR112023021776A BR112023021776A2 (en) 2021-08-20 2021-12-07 METHODS FOR AUTHENTICATION AND CONFIGURATION MANAGEMENT FOR OPTICAL NETWORK DEVICES IN FTTR SCENARIOS AND SYSTEM FOR PROVIDING FTTR SERVICES

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202110961387.7A CN113852883B (en) 2021-08-20 2021-08-20 Optical network equipment authentication and configuration management method and system in FTTR scene
CN202110961387.7 2021-08-20

Publications (1)

Publication Number Publication Date
WO2023019816A1 true WO2023019816A1 (en) 2023-02-23

Family

ID=78975754

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2021/135949 WO2023019816A1 (en) 2021-08-20 2021-12-07 Optical network device authentication and configuration management method and system in fttr scenario

Country Status (3)

Country Link
CN (1) CN113852883B (en)
BR (1) BR112023021776A2 (en)
WO (1) WO2023019816A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117729249A (en) * 2024-02-18 2024-03-19 四川天邑康和通信股份有限公司 Gateway management method, device, equipment, system and medium based on FTTR
CN118175459A (en) * 2024-05-13 2024-06-11 中兴通讯股份有限公司 Flow control method for fiber-to-room FTTR system

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114641030B (en) * 2022-05-18 2022-07-19 华中科技大学 FTTR-based home user hotspot area identification method, system, device and medium
CN115086061B (en) * 2022-06-30 2024-03-22 天翼数字生活科技有限公司 Authentication and network access control method and system for FTTR

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160173479A1 (en) * 2013-08-22 2016-06-16 Huawei Technologies Co., Ltd. Terminal Authentication Method, Apparatus, and System in Passive Optical Network
WO2017177551A1 (en) * 2016-04-13 2017-10-19 中兴通讯股份有限公司 Binding method, device and system for customer information and equipment
CN109495321A (en) * 2018-12-24 2019-03-19 深圳市友华通信技术有限公司 A method of automatically configuring ONU
CN113014324A (en) * 2021-05-25 2021-06-22 武汉长光科技有限公司 Networking method, device, equipment, system and storage medium

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2966996A1 (en) * 2010-10-27 2012-05-04 France Telecom DATA PROCESSING FOR THE MANAGEMENT OF SLEEP
CN102480321A (en) * 2010-11-29 2012-05-30 中兴通讯股份有限公司 Method and system for managing relevant parameters of home gateway in GPON (Gigabit Passive Optical Network) system
US10880196B2 (en) * 2018-01-25 2020-12-29 Charter Communications Operating, Llc Bi-directional speed test method and system for customer premises equipment (CPE) devices
CN110430113B (en) * 2019-06-28 2021-07-27 广东省广播电视网络股份有限公司 Automatic service opening system and automatic service opening method
CN112887851B (en) * 2021-01-13 2021-10-08 烽火通信科技股份有限公司 Household all-optical network system and implementation method thereof

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160173479A1 (en) * 2013-08-22 2016-06-16 Huawei Technologies Co., Ltd. Terminal Authentication Method, Apparatus, and System in Passive Optical Network
WO2017177551A1 (en) * 2016-04-13 2017-10-19 中兴通讯股份有限公司 Binding method, device and system for customer information and equipment
CN109495321A (en) * 2018-12-24 2019-03-19 深圳市友华通信技术有限公司 A method of automatically configuring ONU
CN113014324A (en) * 2021-05-25 2021-06-22 武汉长光科技有限公司 Networking method, device, equipment, system and storage medium

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117729249A (en) * 2024-02-18 2024-03-19 四川天邑康和通信股份有限公司 Gateway management method, device, equipment, system and medium based on FTTR
CN117729249B (en) * 2024-02-18 2024-05-03 四川天邑康和通信股份有限公司 FTTR-based gateway management method, FTTR-based gateway management device, FTTR-based gateway management equipment, FTTR-based gateway management system and medium
CN118175459A (en) * 2024-05-13 2024-06-11 中兴通讯股份有限公司 Flow control method for fiber-to-room FTTR system

Also Published As

Publication number Publication date
CN113852883B (en) 2023-04-07
BR112023021776A2 (en) 2024-03-12
CN113852883A (en) 2021-12-28

Similar Documents

Publication Publication Date Title
WO2023019816A1 (en) Optical network device authentication and configuration management method and system in fttr scenario
JP5871916B2 (en) Method, telecommunications network, and program for efficient management and / or configuration of connections between telecommunications networks and customer premises equipment
CN1980195B (en) Complementary residential gateway management
AU2004240305B2 (en) Broadband access method with great capacity and the device and the system thereof
CN102726069B (en) The dynamic Service group of dialogue-based attribute
CN103039038B (en) Method and system for efficient use of a telecommunication network and the connection between the telecommunications network and a customer premises equipment
US8346940B2 (en) Method and system for provisioning customer premises equipment
CN103069750B (en) The method and system of the connection for being efficiently used between communication network and this communication network and customer rs premise equipment
CN103039040B (en) For the effectively method of initialization communication network and the communication network
CN104144354A (en) IPTV service fulfillment configuration method and system based on PPPoE access
EP1881639B1 (en) A method and system for cpecf (customer premises equipment configuration function) obtaining the terminal equipment information and configuring the terminal equipment
KR20070024116A (en) System for managing network service connection based on terminal aucthentication
CN100471159C (en) Automatic configuration method for devices based on technique of towing beam
CN105871782B (en) Network service processing method, device, business router and platform authentication system
KR102560548B1 (en) Access point, home gateway and home network system, and method for performing ip communication on the home network system
KR20070031154A (en) Method for dynamically acquiring link status information of network sources and system for providing network connection service
CN112448945B (en) Controlling network access of customer premises equipment
WO2019061269A1 (en) Pspupv implementation for docsis access network
EP2887577B1 (en) Method for establishing and/or configuring an internet protocol network connection between a customer premises equipment and a telecommunications network
CN108306807B (en) Account opening management method and device
KR101304593B1 (en) Method for providing services of multiple service providers in an IP-based access network including access node, user gateway
WO2020036117A1 (en) Communication system and communication method
KR20110005417A (en) Connection processing system for wire internet and method there of

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21954051

Country of ref document: EP

Kind code of ref document: A1

REG Reference to national code

Ref country code: BR

Ref legal event code: B01A

Ref document number: 112023021776

Country of ref document: BR

ENP Entry into the national phase

Ref document number: 112023021776

Country of ref document: BR

Kind code of ref document: A2

Effective date: 20231019

NENP Non-entry into the national phase

Ref country code: DE