+

WO2013123849A1 - Resource admission and control method, bng, and pdp - Google Patents

Resource admission and control method, bng, and pdp Download PDF

Info

Publication number
WO2013123849A1
WO2013123849A1 PCT/CN2013/071248 CN2013071248W WO2013123849A1 WO 2013123849 A1 WO2013123849 A1 WO 2013123849A1 CN 2013071248 W CN2013071248 W CN 2013071248W WO 2013123849 A1 WO2013123849 A1 WO 2013123849A1
Authority
WO
WIPO (PCT)
Prior art keywords
user equipment
fixed network
mobile user
resource information
network resource
Prior art date
Application number
PCT/CN2013/071248
Other languages
French (fr)
Chinese (zh)
Inventor
尤建洁
宗在峰
范亮
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2013123849A1 publication Critical patent/WO2013123849A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W28/00Network traffic management; Network resource management
    • H04W28/16Central resource management; Negotiation of resources or communication parameters, e.g. negotiating bandwidth or QoS [Quality of Service]

Definitions

  • the present invention relates to the field of communications, and in particular, to a resource admission control method, a Broadband Network Gateway (BNG), and a Fixed Network Policy Server (PDP).
  • BNG Broadband Network Gateway
  • PDP Fixed Network Policy Server
  • the Residential Gateway as a centralized intelligent interface, connects the home network to the external network to provide connectivity, control and coordination for the home network.
  • the International Standards Organization Broadband Forum (BBF) is working on the standardization of Fixed Mobile Convergence (FMC), including the Third Generation Partnership Project (3GPP) User Equipment (UE).
  • FMC Fixed Mobile Convergence
  • 3GPP Third Generation Partnership Project
  • UE User Equipment
  • the RG accesses the network.
  • the RG acts as an 802. lx client to initiate access authentication to an AN (Access Node), and the AN acts as an 802. lx authenticator and a remote user dialing authentication system.
  • the (RADIUS) client initiates an authentication request to the AAA (Authentication Authorization Accounting, Authentication, Authorization, and Accounting Server).
  • AAA Authentication Authorization Accounting, Authentication, Authorization, and Accounting Server.
  • the RG is authenticated and works in routing mode, the device terminals in the home network can access the network through the RG without authentication. If the RG selects the bridging mode access for the UE, the UE itself needs to be authenticated to access the network.
  • the BBF network hopes to be aware of the existence of the 3GPP UE, that is, the 3GPP UE supports explicit access authentication on the BBF network. .
  • the embodiment of the invention provides a resource admission control method, a BNG and a PDP, to solve the mobile The problem of users consuming too much bandwidth resources of the fixed network.
  • An embodiment of the present invention provides a resource admission control method, where the method includes:
  • the network element After the user equipment is successfully authenticated, the network element obtains fixed network resource information that is allowed to be used by the mobile user equipment; the network element is a broadband network gateway (BNG) or a fixed network policy server (PDP);
  • BNG broadband network gateway
  • PDP fixed network policy server
  • the network element After receiving the request from the mobile user equipment of the physical link, the network element determines, according to the fixed network resource information, whether the physical network link where the mobile user equipment is located allows the fixed network resource used by the mobile user equipment to meet the The request, if satisfied, accepts the request.
  • the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
  • the acquiring, by the network element, the fixed network resource information that the physical link of the user equipment is allowed to use by the mobile user equipment after the user equipment is successfully authenticates includes: the BNG receiving the fixed network authentication
  • the fixed network server (AAA) transmits the fixed network resource information used by the mobile user equipment on the physical link where the fixed network user equipment is located after the fixed network user equipment passes the fixed network authentication;
  • the BNG Receiving, by the BNG, the fixed network resource information used by the mobile user equipment that is sent by the fixed network AAA after the mobile user equipment is authenticated by the fixed network, to allow the mobile user equipment to use; or the BNG querying the fixed network AAA Obtaining fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
  • the acquiring, by the network element, the fixed network resource information that the physical link of the user equipment is allowed to use by the mobile user equipment after the user equipment is successfully authenticated includes:
  • the PDP receives the fixed network resource information that the fixed network authentication and authorization accounting server (AAA) allows the mobile user equipment to use after the fixed network user equipment passes the fixed network authentication;
  • AAA fixed network authentication and authorization accounting server
  • the AAA obtains fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
  • the fixed network user equipment or the link where the mobile user equipment is located allows the fixed network resource information used by the mobile user equipment to be subscribed in the fixed network AAA.
  • the embodiment of the present invention further provides a broadband network gateway (BNG), where the BNG includes: an obtaining module, configured to: acquire a fixed network resource used by the mobile user equipment by the physical link where the user equipment is located after the user equipment is successfully authenticated.
  • BNG broadband network gateway
  • the admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request is satisfied, and if so, the request is accepted.
  • the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
  • the acquiring module is configured to:
  • the fixed network authentication and authorization accounting server receives the fixed network authentication and authorization accounting server (AAA), the fixed network resource information used by the mobile user equipment that is sent by the fixed network user equipment after the fixed network user equipment passes the fixed network authentication;
  • the embodiment of the present invention further provides a fixed network policy server (PDP), where the PDP includes: an obtaining module, configured to: obtain a fixed network that allows the mobile user equipment to be used by the physical link where the user equipment is located after the user equipment is successfully authenticated.
  • PDP fixed network policy server
  • the admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request is satisfied, and if so, the request is accepted.
  • the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
  • the acquiring module is configured to: Receiving a fixed network authentication and authorization accounting server (AAA), the fixed network resource information used by the mobile user equipment, where the physical link of the fixed network user equipment is sent after the fixed network user equipment passes the fixed network authentication;
  • AAA fixed network authentication and authorization accounting server
  • the resource admission control method, the BNG, and the PDP according to the obtained fixed network resource information that allows the mobile user to use, determine whether to access the mobile user equipment, and better solve the problem that the mobile user consumes the bandwidth resources of the fixed network excessively. Improve the business experience of fixed network users themselves.
  • Figure 1 is a schematic diagram of an access authentication scenario of an RG
  • 3 is a schematic diagram of an access authentication scenario of a 3GPP UE
  • Embodiment 1 of a resource admission control method of the present invention
  • Embodiment 6 is a signaling flowchart of Embodiment 2 of the RG access authentication according to the present invention.
  • Embodiment 7 is a signaling flowchart of Embodiment 2 of the resource admission control method of the present invention.
  • Figure 8 is a schematic structural view of an embodiment of a BNG of the present invention.
  • Fig. 9 is a schematic structural view of an embodiment of a PDP of the present invention. Preferred embodiment of the invention
  • An embodiment of the present invention provides a resource admission control method, where the method includes:
  • Step 1 After the user equipment is successfully authenticated, the network element obtains the physical link of the user equipment.
  • the fixed network resource information used by the mobile user equipment; the network element is a broadband network gateway (BNG) or a fixed network policy server (PDP);
  • BNG broadband network gateway
  • PDP fixed network policy server
  • the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
  • the network element obtains the fixed network resource information that the user is located on the physical link to allow the mobile user to use after the user is authenticated: the receiving the fixed network authentication and authorization accounting server (AAA) is sent after the fixed network user equipment passes the fixed network authentication.
  • AAA authentication and authorization accounting server
  • the physical link where the fixed network user equipment is located allows the fixed network resource information used by the mobile user equipment; and the physical link of the mobile user equipment that is sent by the fixed network AAA after the mobile user equipment passes the fixed network authentication allows the mobile link to be moved.
  • the fixed network resource information used by the user equipment; or the fixed network AAA is obtained by obtaining the fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
  • Step 2 After receiving the request from the mobile user equipment of the physical link, the network element determines, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request is satisfied, and if so, the request is accepted.
  • FIG. 1 is a schematic diagram of an access authentication scenario of an existing RG.
  • RG is
  • the RG access authentication process is as follows: The RG initiates an access authentication (ie, sends an authentication protocol start (EAPoL Start) message), and the AN acts as an 802.1x authenticator and the RADIUS client sends an authentication request to the AAA (ie, sends an authentication access request). (RADIUS Access Request) message).
  • EAPoL Start an authentication protocol start
  • RADIUS client sends an authentication request to the AAA (ie, sends an authentication access request).
  • FIG. 2 it is a signaling flowchart of the RG access authentication embodiment of the present invention.
  • the RG performs access authentication on the fixed network, and after the authentication succeeds, the AAA sends the link information of the RG to the broadband network gateway. (BNG).
  • BNG broadband network gateway
  • Step 201 The RG sends an EAPoL-Start message to the AN to start the 802. lx authentication access.
  • Step 203 The RG replies with an EAP-Identity-Response (EAP-Identity-Response) to the AN, where the user name is included;
  • EAP-Identity-Response EAP-Identity-Response
  • Step 205 the BNG acts as a RADIUS proxy (Proxy), and sends the RADIUS-Access-Request to the BBF AAA.
  • RADIUS proxy Proxy
  • Step 206 The BBF AAA replies to a RADIUS access response (RADIUS-Access-Response), where the EAP challenge is included;
  • RADIUS access response RADIUS-Access-Response
  • Step 207 The BNG forwards the RADIUS-Access-Response to the AN.
  • Step 208 The AN unpacks the EAP frame and sends it to the RG.
  • the RG responds, and the reply message includes a Challenged Password.
  • Step 209 The AN encapsulates the received EAP frame into a RADIUS-Access-Request packet, where the Challenged Password is included.
  • Step 210 The BNG forwards the RADIUS-Access-Request to the BBF AAA.
  • Step 211 If the authentication is successful, the BBF AAA replies to the RADIUS-Access-Accept; and carries the resource parameter used by the link where the RG is located to allow the mobile network user to use in the reply message;
  • the RG is a type of fixed network user equipment
  • the resource parameters allowed by the mobile network user include: a committed rate, and/or a peak rate, and/or a time period, and/or a service type.
  • Step 212 The BNG saves the resource parameter and forwards the RADIUS-Access-Accept;
  • Step 213 The AN unpacks the EAP frame, and sends an EAP-Success to the RG.
  • FIG. 3 it is a schematic diagram of an access authentication scenario of a 3GPP UE.
  • the 3GPP UE is an 802. lx client
  • the RG is an 802. lx authenticator and a RADIUS client
  • the BBF AAA is an authentication server.
  • the access authentication procedure of the 3GPP UE is: The 3GPP UE initiates an access authentication (ie, an EAPoL Start message) to the RG, and the RG acts as an 802. lx authenticator and the RADIUS client initiates an authentication request to the AAA (ie, sends the authentication). Access Request (RADIUS Access Request) message).
  • FIG. 4 it is a signaling flowchart of a 3GPP UE access authentication embodiment of the present invention, and a 3GPP UE.
  • the AAA sends the link information of the 3GPP UE to the BNG.
  • the process includes the following steps:
  • Step 401 The 3GPP UE sends an EAPoL-Start message to the RG to start 802. lx authentication access.
  • Step 402 The RG sends an EAP-Identity-Request packet to the UE, and requests the UE to report the username.
  • Step 403 The UE replies with an EAP-Identity-Response to the RG, including the user name.
  • Step 404 The RG encapsulates the EAP frame into a RADIUS-Access-Request packet and sends the packet to the BNG.
  • Step 405 The BNG sends the RADIUS-Access-Request message to the BBF AAA.
  • Step 406 Further, the BBF AAA sends the RADIUS-Access-Request to the home according to the Network Access Identifier (NAI). AAA;
  • Step 407 Home AAA replies to RADIUS-Access-Response, which includes EAP Challenge;
  • Step 408 The BBF AAA forwards the RADIUS-Access-Response to the BNG.
  • Step 409 the BNG transfers the RADIUS-Access-Response to the RG;
  • Step 410 The RG decapsulates the EAP frame and sends the message to the UE.
  • the UE sends a reply, and the reply message includes a Challenged Password.
  • Step 411 The RG encapsulates the received EAP frame into a RADIUS-Access-Request packet, where the Challenged Password is included.
  • Step 412 The BNG forwards the RADIUS-Access-Request to the BBF AAA.
  • Step 413 The BBF AAA forwards the RADIUS-Access-Request to the Home AAA.
  • Step 415 The BBF AAA forwards the RADIUS-Access-Accept to the BNG; and adds, in the message, the resource parameter that the link where the 3GPP UE is located allows the mobile network user to use;
  • the resource parameters that are allowed to be used by the mobile network user include: a committed rate, and/or a peak rate, and/or a time period, and/or a service type.
  • the BNG forwards the RADIUS-Access-Accept to the RG;
  • Step 417 The RG decapsulates the EAP frame and sends an EAP-Success to the UE.
  • FIG. 5 it is a signaling flowchart of the implementation of the resource admission control method of the present invention.
  • the fixed network policy server After receiving a service request from an application function (AF), the fixed network policy server (PDP) sends a resource request to the BNG.
  • the BNG determines whether the request is accepted. The process includes the following steps:
  • Step 501 After receiving the mobile user service request from the AF, the PDP performs an initial admission decision (such as determining whether the user subscription information QoS is legal), and sends a resource request to the BNG to request the corresponding resource.
  • an initial admission decision such as determining whether the user subscription information QoS is legal
  • Step 502 Optionally, after the BNG receives the resource request message, if the resource request is from a mobile user, and the local policy does not use the fixed network resource for the mobile user, the BBF AAA is configured to allow the mobile user to use the fixed network resource. Information, BBF AAA reply to relevant information;
  • the fixed network user or the mobile user's link allows the fixed network resource information used by the mobile user to sign in the BBF AAA.
  • Step 503 The BNG performs admission control on the resource request.
  • the BNG determines whether the resource parameter used by the mobile user is allowed to meet the resource request of the current mobile user. If the current resource is available, the BNG accepts the resource request and executes the relevant policy rule.
  • Step 504 The BNG replies with a response message to the PDP. If not, the BDP replies with a refusal message to the PDP, where the refusal message is carried, where the current resource request exceeds the resource parameter used by the mobile network user in the link where the mobile user is located.
  • the signaling flow chart of the second embodiment of the RG access authentication is performed.
  • the RG performs access authentication on the fixed network, and after the authentication succeeds, the AAA pushes the link information of the RG to the PDP.
  • the process includes the following steps:
  • Step 601 The RG sends an authentication request message to the BNG.
  • Step 602 Further, after receiving the authentication request, the BNG checks the validity of the user to the BBF AAA.
  • Step 603 If the user is legal, the AAA pushes the resource parameter used by the mobile network user to the PDP.
  • the resource parameters allowed by the mobile network user include: a committed rate, and/or a peak rate, and/or a time period, and/or a service type.
  • the PDP saves relevant information.
  • Step 604 The AAA sends an authentication response message to the BNG.
  • Step 605 The BNG sends an authentication response message to the RG.
  • FIG. 7 it is a signaling flowchart of the second implementation of the resource admission control method of the present invention.
  • the PDP After receiving the service request from the AF, the PDP performs an admission decision to determine whether to accept the request.
  • the process includes the following steps:
  • Step 701 The PDP receives a mobile user service request trigger from the AF.
  • Step 702 Optionally, after the PDP receives the service request message, if the service request is from the mobile user, and the local policy does not use the fixed network resource for the mobile user, the BBF AAA is configured to allow the mobile user to use the fixed network resource information. , BBF AAA replies with relevant information;
  • the fixed network user or the mobile user's link allows the fixed network resource information used by the mobile user to sign in the BBF AAA.
  • Step 703 The PDP performs admission control on the service request.
  • the PDP determines whether the resource parameter used by the mobile user to allow the mobile user to use meets the resource request of the current mobile user. If the resource request is satisfied, and the current resource is available, the PDP accepts the service request and executes the relevant policy rule.
  • Step 704 After the PDP formulates the relevant policy rules, it is sent to the BNG for execution.
  • the foregoing resource admission control method solves the problem that the mobile user excessively consumes the bandwidth resources of the fixed network according to the obtained request for determining whether to access the mobile user equipment by using the fixed network resource information used by the mobile user, and improves the fixed network.
  • the embodiment of the present invention further provides a broadband network gateway (BNG). As shown in FIG. 8, the BNG includes an obtaining module 81 and an admission control module 82, where:
  • An acquiring module configured to acquire, after the user equipment is successfully authenticated, the physical network link where the user equipment is located, the fixed network resource information that is allowed to be used by the mobile user equipment;
  • the admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request, if satisfied, accepts the request.
  • the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
  • the acquiring module is specifically configured to: receive a fixed network authentication and authorization accounting server (AAA), and the physical link of the fixed network user equipment that is sent by the fixed network user equipment after the fixed network user equipment is allowed to allow the mobile user equipment to use
  • AAA authentication and authorization accounting server
  • the fixed network resource information ; receiving the fixed network resource information used by the mobile user equipment that is sent by the fixed network AAA after the mobile user equipment is authenticated by the fixed network, and allowing the mobile user equipment to use the physical network link; or querying the fixed network
  • the AAA obtains fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
  • the above BNG better solves the problem that mobile users consume too much bandwidth resources of the fixed network, and improves the service experience of the fixed network users themselves.
  • An embodiment of the present invention further provides a PDP.
  • the PDP includes an acquiring module.
  • admission control module 92 wherein:
  • An acquiring module configured to acquire, after the user equipment is successfully authenticated, the physical network link where the user equipment is located, the fixed network resource information that is allowed to be used by the mobile user equipment;
  • the admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request, if satisfied, accepts the request.
  • the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type. Further, the acquiring module is specifically configured to: receive a fixed network authentication and authorization accounting server
  • AAA the fixed network resource information used by the mobile network device to be transmitted by the fixed network user equipment after the fixed network user equipment is authenticated by the fixed network; receiving the fixed network AAA in the mobile user equipment to pass the fixed network authentication
  • the physical link of the mobile user equipment that is sent later allows the fixed network resource information used by the mobile user equipment; or the AAA is obtained by the fixed network AAA to obtain the link of the fixed network user equipment or the mobile user equipment.
  • the above PDP better solves the problem that mobile users consume too much bandwidth resources of the fixed network, and improves the service experience of the fixed network users themselves.
  • the resource admission control method, the BNG, and the PDP according to the obtained fixed network resource information that allows the mobile user to use, determine whether to access the mobile user equipment, and better solve the problem that the mobile user consumes the bandwidth resources of the fixed network excessively. Improve the business experience of fixed network users themselves.

Landscapes

  • Engineering & Computer Science (AREA)
  • Quality & Reliability (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A resource admission and control method, a Broadband Network Gateway (BNG), and a Policy Decision Point (PDP). The resource admission and control method comprises: a network element acquiring, after authentication of a user equipment succeeds, information about a fixed network resource that a physical link where the user equipment is located allows a mobile user equipment to use, the network element being the BNG or the PDP; after receiving a request from the mobile user equipment on the physical link, the network element determining, according to the information about a fixed network resource, whether a fixed network resource that a physical link where the mobile user equipment is located allows the mobile user equipment to use meets the request; and if yes, admitting the request. By means of the resource admission and control method, the BNG, and the PDP, it is determined, according to information about a fixed network resource that a mobile user is allowed to use, whether to admit a request from a mobile user equipment, thereby desirably solving the problem that a mobile user excessively consumes bandwidth resources of a fixed network, and improving the service experience of a user in a fixed network.

Description

资源接纳控制方法、 BNG和 PDP  Resource admission control method, BNG and PDP
技术领域 Technical field
本发明涉及通信领域, 尤其涉及一种资源接纳控制方法、 宽带网络网关 ( Broadband Network Gateway, BNG )和固网策略服务器(PDP ) 。 背景技术  The present invention relates to the field of communications, and in particular, to a resource admission control method, a Broadband Network Gateway (BNG), and a Fixed Network Policy Server (PDP). Background technique
随着网络技术的发展和用户对业务的需求, 家庭网络中的终端设备逐渐 多样化、 更加智能化。 而家庭网关 (Residential Gateway, RG )作为一个集 中式智能接口, 将家庭网络和外部网络联系起来, 为家庭网络提供联接、 总 控及协调。  With the development of network technology and the demand of users for services, terminal devices in home networks are gradually diversified and more intelligent. The Residential Gateway (RG), as a centralized intelligent interface, connects the home network to the external network to provide connectivity, control and coordination for the home network.
目前, 国际性标准组织宽带论坛(Broadband Forum, BBF )正在进行固 定移动网络融合(Fixed Mobile Convergence, FMC ) 的标准化工作, 涉及的 场景包括第三代合作伙伴计划(3GPP )用户设备(UE )通过 RG接入网络。  Currently, the International Standards Organization Broadband Forum (BBF) is working on the standardization of Fixed Mobile Convergence (FMC), including the Third Generation Partnership Project (3GPP) User Equipment (UE). The RG accesses the network.
相关技术中, RG作为 802. lx客户端向 AN ( Access Node, 接入节点 ) 发起接入认证, 此时 AN 作为 802. lx 认证器及远程用户拨号认证系统 In the related art, the RG acts as an 802. lx client to initiate access authentication to an AN (Access Node), and the AN acts as an 802. lx authenticator and a remote user dialing authentication system.
( RADIUS )客户端向 AAA ( Authentication Authorization Accounting,认证、 授权和计费服务器)发起认证请求。若 RG通过认证且工作在路由模式下时, 家庭网络中的设备终端可以通过 RG接入网络而无需认证。 若 RG为 UE选 择桥接模式接入, 则 UE 自身需进行认证才能接入网络。 对于试图从 RG接 入网络的 3GPP UE,为了便于对其业务数据流进行策略控制及流量统计, BBF 网络希望能感知该 3GPP UE的存在, 即该 3GPP UE在 BBF网络支持显式的 接入认证。 The (RADIUS) client initiates an authentication request to the AAA (Authentication Authorization Accounting, Authentication, Authorization, and Accounting Server). If the RG is authenticated and works in routing mode, the device terminals in the home network can access the network through the RG without authentication. If the RG selects the bridging mode access for the UE, the UE itself needs to be authenticated to access the network. For 3GPP UEs attempting to access the network from the RG, in order to facilitate policy control and traffic statistics for its service data flow, the BBF network hopes to be aware of the existence of the 3GPP UE, that is, the 3GPP UE supports explicit access authentication on the BBF network. .
但是, 目前移动用户过多消耗固网的带宽资源, 影响固网用户自身的业 务体验。 发明内容  However, at present, mobile users consume too much bandwidth resources of the fixed network, which affects the service experience of the fixed network users themselves. Summary of the invention
本发明实施例提供了一种资源接纳控制方法、 BNG和 PDP, 以解决移动 用户过多消耗固网的带宽资源的问题。 The embodiment of the invention provides a resource admission control method, a BNG and a PDP, to solve the mobile The problem of users consuming too much bandwidth resources of the fixed network.
本发明实施例提供了一种资源接纳控制方法, 该方法包括:  An embodiment of the present invention provides a resource admission control method, where the method includes:
网元在用户设备认证成功后获取所述用户设备所在物理链路允许移动用 户设备使用的固网资源信息; 所述网元为宽带网络网关(BNG )或固网策略 服务器( PDP ) ;  After the user equipment is successfully authenticated, the network element obtains fixed network resource information that is allowed to be used by the mobile user equipment; the network element is a broadband network gateway (BNG) or a fixed network policy server (PDP);
所述网元收到来自所述物理链路的移动用户设备的请求后, 根据所述固 网资源信息决策所述移动用户设备所在物理链路允许移动用户设备使用的固 网资源是否满足所述请求, 若满足, 则接纳该请求。  After receiving the request from the mobile user equipment of the physical link, the network element determines, according to the fixed network resource information, whether the physical network link where the mobile user equipment is located allows the fixed network resource used by the mobile user equipment to meet the The request, if satisfied, accepts the request.
优选地, 所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类 型中的一种或多种。  Preferably, the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
优选地, 当所述网元为 BNG时, 所述网元在用户设备认证成功后获取 所述用户设备所在物理链路允许移动用户设备使用的固网资源信息包括: 所述 BNG接收固网认证授权计费服务器( AAA )在固网用户设备通过 固网认证后发送的所述固网用户设备所在物理链路允许移动用户设备使用的 固网资源信息;  Preferably, when the network element is a BNG, the acquiring, by the network element, the fixed network resource information that the physical link of the user equipment is allowed to use by the mobile user equipment after the user equipment is successfully authenticates includes: the BNG receiving the fixed network authentication The fixed network server (AAA) transmits the fixed network resource information used by the mobile user equipment on the physical link where the fixed network user equipment is located after the fixed network user equipment passes the fixed network authentication;
所述 BNG接收所述固网 AAA在移动用户设备通过固网认证后发送的所 述移动用户设备所在物理链路允许移动用户设备使用的固网资源信息; 或者 所述 BNG查询所述固网 AAA获得所述固网用户设备或所述移动用户设 备所在链路允许移动用户设备使用的固网资源信息。  Receiving, by the BNG, the fixed network resource information used by the mobile user equipment that is sent by the fixed network AAA after the mobile user equipment is authenticated by the fixed network, to allow the mobile user equipment to use; or the BNG querying the fixed network AAA Obtaining fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
优选地, 当所述网元为 PDP时, 所述网元在用户设备认证成功后获取所 述用户设备所在物理链路允许移动用户设备使用的固网资源信息包括:  Preferably, when the network element is a PDP, the acquiring, by the network element, the fixed network resource information that the physical link of the user equipment is allowed to use by the mobile user equipment after the user equipment is successfully authenticated includes:
所述 PDP接收固网认证授权计费服务器( AAA )在固网用户设备通过固 网认证后发送的所述固网用户设备所在物理链路允许移动用户设备使用的固 网资源信息;  The PDP receives the fixed network resource information that the fixed network authentication and authorization accounting server (AAA) allows the mobile user equipment to use after the fixed network user equipment passes the fixed network authentication;
所述 PDP接收所述固网 AAA在移动用户设备通过固网认证后发送的所 述移动用户设备所在物理链路允许移动用户设备使用的固网资源信息;或者, 所述 PDP查询所述固网 AAA获得所述固网用户设备或所述移动用户设 备所在链路允许移动用户设备使用的固网资源信息。 优选地, 所述固网用户设备或所述移动用户设备所在链路允许移动用户 设备使用的固网资源信息签约在所述固网 AAA中。 Receiving, by the PDP, the fixed network resource information used by the mobile user equipment to be used by the mobile user equipment after the mobile user equipment is authenticated by the fixed network, and the PDP querying the fixed network The AAA obtains fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use. Preferably, the fixed network user equipment or the link where the mobile user equipment is located allows the fixed network resource information used by the mobile user equipment to be subscribed in the fixed network AAA.
本发明实施例还提供了一种宽带网络网关 (BNG ) , 该 BNG包括: 获取模块, 设置为: 在用户设备认证成功后获取所述用户设备所在物理 链路允许移动用户设备使用的固网资源信息;  The embodiment of the present invention further provides a broadband network gateway (BNG), where the BNG includes: an obtaining module, configured to: acquire a fixed network resource used by the mobile user equipment by the physical link where the user equipment is located after the user equipment is successfully authenticated. Information
接纳控制模块, 设置为: 收到来自所述物理链路的移动用户设备的请求 后, 根据所述固网资源信息决策所述移动用户设备所在物理链路允许移动用 户设备使用的固网资源是否满足所述请求, 若满足, 则接纳该请求。  The admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request is satisfied, and if so, the request is accepted.
优选地, 所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类 型中的一种或多种。  Preferably, the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
优选地, 所述获取模块, 设置为:  Preferably, the acquiring module is configured to:
接收固网认证授权计费服务器( AAA )在固网用户设备通过固网认证后 发送的所述固网用户设备所在物理链路允许移动用户设备使用的固网资源信 息;  Receiving the fixed network authentication and authorization accounting server (AAA), the fixed network resource information used by the mobile user equipment that is sent by the fixed network user equipment after the fixed network user equipment passes the fixed network authentication;
接收所述固网 AAA在移动用户设备通过固网认证后发送的所述移动用 户设备所在物理链路允许移动用户设备使用的固网资源信息; 或者  Receiving, by the fixed network AAA, the fixed network resource information used by the mobile user equipment that is sent by the mobile user equipment after the mobile user equipment is authenticated by the fixed network; or
查询所述固网 AAA获得所述固网用户设备或所述移动用户设备所在链 路允许移动用户设备使用的固网资源信息。  Querying the fixed network AAA to obtain the fixed network resource information used by the fixed network user equipment or the mobile user equipment to allow the mobile user equipment to use.
本发明实施例另提供了一种固网策略服务器(PDP ) , 该 PDP包括: 获取模块, 设置为: 在用户设备认证成功后获取所述用户设备所在物理 链路允许移动用户设备使用的固网资源信息;  The embodiment of the present invention further provides a fixed network policy server (PDP), where the PDP includes: an obtaining module, configured to: obtain a fixed network that allows the mobile user equipment to be used by the physical link where the user equipment is located after the user equipment is successfully authenticated. Resource information
接纳控制模块, 设置为: 收到来自所述物理链路的移动用户设备的请求 后, 根据所述固网资源信息决策所述移动用户设备所在物理链路允许移动用 户设备使用的固网资源是否满足所述请求, 若满足, 则接纳该请求。  The admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request is satisfied, and if so, the request is accepted.
优选地, 所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类 型中的一种或多种。  Preferably, the fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
优选地, 所述获取模块, 设置为: 接收固网认证授权计费服务器( AAA )在固网用户设备通过固网认证后 发送的所述固网用户设备所在物理链路允许移动用户设备使用的固网资源信 息; Preferably, the acquiring module is configured to: Receiving a fixed network authentication and authorization accounting server (AAA), the fixed network resource information used by the mobile user equipment, where the physical link of the fixed network user equipment is sent after the fixed network user equipment passes the fixed network authentication;
接收所述固网 AAA在移动用户设备通过固网认证后发送的所述移动用 户设备所在物理链路允许移动用户设备使用的固网资源信息; 或者  Receiving, by the fixed network AAA, the fixed network resource information used by the mobile user equipment that is sent by the mobile user equipment after the mobile user equipment is authenticated by the fixed network; or
查询所述固网 AAA获得所述固网用户设备或所述移动用户设备所在链 路允许移动用户设备使用的固网资源信息。  Querying the fixed network AAA to obtain the fixed network resource information used by the fixed network user equipment or the mobile user equipment to allow the mobile user equipment to use.
上述资源接纳控制方法、 BNG和 PDP,根据获得的允许移动用户使用的 固网资源信息决策是否接入移动用户设备的请求, 较好地解决了移动用户过 多消耗固网的带宽资源的问题, 提高了固网用户自身的业务体验。 附图概述  The resource admission control method, the BNG, and the PDP, according to the obtained fixed network resource information that allows the mobile user to use, determine whether to access the mobile user equipment, and better solve the problem that the mobile user consumes the bandwidth resources of the fixed network excessively. Improve the business experience of fixed network users themselves. BRIEF abstract
图 1是 RG的接入认证场景示意图;  Figure 1 is a schematic diagram of an access authentication scenario of an RG;
图 2是本发明 RG接入认证实施例一的信令流程图;  2 is a signaling flowchart of Embodiment 1 of the RG access authentication according to the present invention;
图 3是 3GPP UE的接入认证场景示意图;  3 is a schematic diagram of an access authentication scenario of a 3GPP UE;
图 4是本发明 3GPP UE接入认证实施例的信令流程图;  4 is a signaling flowchart of a 3GPP UE access authentication embodiment of the present invention;
图 5是本发明资源接纳控制方法实施一的信令流程图;  5 is a signaling flowchart of Embodiment 1 of a resource admission control method of the present invention;
图 6是本发明 RG接入认证实施例二的信令流程图;  6 is a signaling flowchart of Embodiment 2 of the RG access authentication according to the present invention;
图 7是本发明资源接纳控制方法实施二的信令流程图;  7 is a signaling flowchart of Embodiment 2 of the resource admission control method of the present invention;
图 8是本发明 BNG实施例的结构示意图;  Figure 8 is a schematic structural view of an embodiment of a BNG of the present invention;
图 9是本发明 PDP实施例的结构示意图。 本发明的较佳实施方式  Fig. 9 is a schematic structural view of an embodiment of a PDP of the present invention. Preferred embodiment of the invention
下文中将结合附图对本发明的实施例进行详细说明。 需要说明的是, 在 不冲突的情况下, 本申请中的实施例及实施例中的特征可以相互任意组合。  Embodiments of the present invention will be described in detail below with reference to the accompanying drawings. It should be noted that, in the case of no conflict, the features in the embodiments and the embodiments in the present application may be arbitrarily combined with each other.
本发明实施例提供了一种资源接纳控制方法, 该方法包括:  An embodiment of the present invention provides a resource admission control method, where the method includes:
步骤一、 网元在用户设备认证成功后获取所述用户设备所在物理链路允 许移动用户设备使用的固网资源信息; 所述网元为宽带网络网关(BNG )或 固网策略服务器 (PDP ) ; Step 1: After the user equipment is successfully authenticated, the network element obtains the physical link of the user equipment. The fixed network resource information used by the mobile user equipment; the network element is a broadband network gateway (BNG) or a fixed network policy server (PDP);
其中, 所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类型 中的一种或多种。  The fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
所述网元在用户认证成功后获取所述用户所在物理链路允许移动用户使 用的固网资源信息包括: 接收固网认证授权计费服务器(AAA )在固网用户 设备通过固网认证后发送的所述固网用户设备所在物理链路允许移动用户设 备使用的固网资源信息; 接收所述固网 AAA在移动用户设备通过固网认证 后发送的所述移动用户设备所在物理链路允许移动用户设备使用的固网资源 信息; 或者, 查询所述固网 AAA获得所述固网用户设备或所述移动用户设 备所在链路允许移动用户设备使用的固网资源信息。  The network element obtains the fixed network resource information that the user is located on the physical link to allow the mobile user to use after the user is authenticated: the receiving the fixed network authentication and authorization accounting server (AAA) is sent after the fixed network user equipment passes the fixed network authentication. The physical link where the fixed network user equipment is located allows the fixed network resource information used by the mobile user equipment; and the physical link of the mobile user equipment that is sent by the fixed network AAA after the mobile user equipment passes the fixed network authentication allows the mobile link to be moved. The fixed network resource information used by the user equipment; or the fixed network AAA is obtained by obtaining the fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
步骤二、 所述网元收到来自所述物理链路的移动用户设备的请求后, 根 据所述固网资源信息决策所述移动用户设备所在物理链路允许移动用户设备 使用的固网资源是否满足所述请求, 若满足, 则接纳该请求。  Step 2: After receiving the request from the mobile user equipment of the physical link, the network element determines, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request is satisfied, and if so, the request is accepted.
如图 1所示, 是现有 RG的接入认证场景示意图, 在该场景下, RG为 Figure 1 is a schematic diagram of an access authentication scenario of an existing RG. In this scenario, RG is
802. lx客户端, 接入节点 ( Access Node, AN )为 802. lx认证器及 RADIUS 客户端, AAA为认证服务器。 RG的接入认证流程为: RG向 AN发起接入 认证(即发送认证协议开始 (EAPoL Start ) 消息) , AN作为 802.1x认证器 及 RADIUS客服端向 AAA发起认证请求(即发送认证接入请求(RADIUS Access Request ) 消息 ) 。 802. lx client, the access node (AN) is the 802. lx authenticator and the RADIUS client, and the AAA is the authentication server. The RG access authentication process is as follows: The RG initiates an access authentication (ie, sends an authentication protocol start (EAPoL Start) message), and the AN acts as an 802.1x authenticator and the RADIUS client sends an authentication request to the AAA (ie, sends an authentication access request). (RADIUS Access Request) message).
如图 2所示, 是本发明 RG接入认证实施例一的信令流程图, RG在固 定网络进行接入认证, 并在认证成功后 AAA将 RG所在的链路信息下发给 宽带网络网关 (BNG ) 。 该流程包括以下步骤:  As shown in FIG. 2, it is a signaling flowchart of the RG access authentication embodiment of the present invention. The RG performs access authentication on the fixed network, and after the authentication succeeds, the AAA sends the link information of the RG to the broadband network gateway. (BNG). The process includes the following steps:
步骤 201、RG向 AN发送一个 EAPoL-Start报文,开始 802. lx认证接入; 步骤 202、 AN向 RG发送 EAP标识请求( EAP-Identity-Request )报文, 要求 RG上报用户名;  Step 201: The RG sends an EAPoL-Start message to the AN to start the 802. lx authentication access. Step 202: The AN sends an EAP-Identity-Request message to the RG, requesting the RG to report the user name.
步骤 203、 RG回复 EAP标识响应 ( EAP-Identity-Response )给 AN, 其 中包括用户名; 步 骤 204 、 AN 将 EAP 帧 封 装 到 RADIUS 接入请 求 ( RADIUS-Access-Request )报文中, 发送给 BNG; Step 203: The RG replies with an EAP-Identity-Response (EAP-Identity-Response) to the AN, where the user name is included; Step 204: The AN encapsulates the EAP frame into a RADIUS-Access-Request packet and sends the packet to the BNG.
步骤 205、 进一步地, BNG 作为 RADIUS 代理 (Proxy ) , 将该 RADIUS-Access-Request发送给 BBF AAA;  Step 205. Further, the BNG acts as a RADIUS proxy (Proxy), and sends the RADIUS-Access-Request to the BBF AAA.
步骤 206、 BBF AAA回复 RADIUS接入响应( RADIUS-Access-Response ), 其中包含 EAP挑战( Challenge ) ;  Step 206: The BBF AAA replies to a RADIUS access response (RADIUS-Access-Response), where the EAP challenge is included;
步骤 207、 BNG将该 RADIUS-Access-Response转给 AN;  Step 207: The BNG forwards the RADIUS-Access-Response to the AN.
步骤 208、 AN解封出 EAP帧发送给 RG; RG进行回复, 回复的消息中 包含 Challenged Password;  Step 208: The AN unpacks the EAP frame and sends it to the RG. The RG responds, and the reply message includes a Challenged Password.
步骤 209、 AN将收到的 EAP帧封装到 RADIUS-Access-Request报文中 发送, 其中包含 Challenged Password;  Step 209: The AN encapsulates the received EAP frame into a RADIUS-Access-Request packet, where the Challenged Password is included.
步骤 210、 BNG将 RADIUS-Access-Request转发给 BBF AAA;  Step 210: The BNG forwards the RADIUS-Access-Request to the BBF AAA.
步骤 211、 若认证成功, BBF AAA回复 RADIUS-Access-Accept; 并在 回复消息中携带该 RG所在链路允许移动网络用户使用的资源参数;  Step 211: If the authentication is successful, the BBF AAA replies to the RADIUS-Access-Accept; and carries the resource parameter used by the link where the RG is located to allow the mobile network user to use in the reply message;
该 RG为固网用户设备的一种;  The RG is a type of fixed network user equipment;
具体地, 所述允许移动网络用户使用的资源参数包括: 承诺速率, 和 / 或峰值速率, 和 /或时间段, 和 /或业务类型。  Specifically, the resource parameters allowed by the mobile network user include: a committed rate, and/or a peak rate, and/or a time period, and/or a service type.
步骤 212、 BNG保存资源参数后转发 RADIUS-Access-Accept;  Step 212: The BNG saves the resource parameter and forwards the RADIUS-Access-Accept;
步骤 213、 AN解封出 EAP帧, 发送 EAP-Success给 RG。  Step 213: The AN unpacks the EAP frame, and sends an EAP-Success to the RG.
如图 3所示,是 3GPP UE的接入认证场景示意图,在该场景下, 3GPP UE 为 802. lx客户端, RG为 802. lx认证器及 RADIUS客户端, BBF AAA为认 证服务器。 3GPP UE的接入认证流程为: 3GPP UE向 RG发起接入认证 (即 发送认证协议开始( EAPoL Start )消息), RG作为 802. lx认证器及 RADIUS 客服端向 AAA发起认证请求(即发送认证接入请求( RADIUS Access Request ) 消息) 。 As shown in FIG. 3, it is a schematic diagram of an access authentication scenario of a 3GPP UE. In this scenario, the 3GPP UE is an 802. lx client, the RG is an 802. lx authenticator and a RADIUS client, and the BBF AAA is an authentication server. The access authentication procedure of the 3GPP UE is: The 3GPP UE initiates an access authentication (ie, an EAPoL Start message) to the RG, and the RG acts as an 802. lx authenticator and the RADIUS client initiates an authentication request to the AAA (ie, sends the authentication). Access Request (RADIUS Access Request) message).
如图 4所示,是本发明 3GPP UE接入认证实施例的信令流程图, 3GPP UE 在固定网络进行接入认证, 并在认证成功后 AAA将 3GPP UE所在的链路信 息下发给 BNG。 该流程包括以下步骤: As shown in FIG. 4, it is a signaling flowchart of a 3GPP UE access authentication embodiment of the present invention, and a 3GPP UE. After the authentication is successful, the AAA sends the link information of the 3GPP UE to the BNG. The process includes the following steps:
步骤 401、 3GPP UE向 RG发送一个 EAPoL-Start报文, 开始 802. lx认 证接入;  Step 401: The 3GPP UE sends an EAPoL-Start message to the RG to start 802. lx authentication access.
步骤 402、 RG向 UE发送 EAP-Identity-Request报文,要求 UE上报用户 名;  Step 402: The RG sends an EAP-Identity-Request packet to the UE, and requests the UE to report the username.
步骤 403、 UE回复 EAP-Identity-Response给 RG, 其中包括用户名; 步骤 404、 RG将 EAP帧封装到 RADIUS-Access-Request报文中, 发送 给 BNG;  Step 403: The UE replies with an EAP-Identity-Response to the RG, including the user name. Step 404: The RG encapsulates the EAP frame into a RADIUS-Access-Request packet and sends the packet to the BNG.
步骤 405、 BNG将 RADIUS-Access-Request才艮文发送给 BBF AAA; 步骤 406、 进一步地, BBF AAA根据网络接入标识 (Network Access Identifier, NAI )将该 RADIUS-Access-Request发送给归属 ( Home ) AAA; 步骤 407、 Home AAA回复 RADIUS-Access-Response , 其中包含 EAP Challenge;  Step 405: The BNG sends the RADIUS-Access-Request message to the BBF AAA. Step 406: Further, the BBF AAA sends the RADIUS-Access-Request to the home according to the Network Access Identifier (NAI). AAA; Step 407, Home AAA replies to RADIUS-Access-Response, which includes EAP Challenge;
步骤 408、 BBF AAA将该 RADIUS-Access-Response转给 BNG;  Step 408: The BBF AAA forwards the RADIUS-Access-Response to the BNG.
步骤 409、 BNG将该 RADIUS-Access-Response转给 RG;  Step 409, the BNG transfers the RADIUS-Access-Response to the RG;
步骤 410、 RG解封出 EAP帧发送给 UE; UE进行回复, 回复的消息中 包含 Challenged Password;  Step 410: The RG decapsulates the EAP frame and sends the message to the UE. The UE sends a reply, and the reply message includes a Challenged Password.
步骤 411、 RG将收到的 EAP帧封装到 RADIUS-Access-Request报文中 发送, 其中包含 Challenged Password;  Step 411: The RG encapsulates the received EAP frame into a RADIUS-Access-Request packet, where the Challenged Password is included.
步骤 412、 BNG将 RADIUS-Access-Request转发给 BBF AAA;  Step 412: The BNG forwards the RADIUS-Access-Request to the BBF AAA.
步骤 413、 BBF AAA将 RADIUS-Access-Request转发给 Home AAA; 步骤 414、 若认证成功, Home AAA回复 RADIUS- Access- Accept;  Step 413: The BBF AAA forwards the RADIUS-Access-Request to the Home AAA. Step 414: If the authentication succeeds, the Home AAA replies to the RADIUS-Access-Accept;
步骤 415、 BBF AAA转发 RADIUS-Access-Accept给 BNG; 并在消息中 添加该 3GPP UE所在链路允许移动网络用户使用的资源参数;  Step 415: The BBF AAA forwards the RADIUS-Access-Accept to the BNG; and adds, in the message, the resource parameter that the link where the 3GPP UE is located allows the mobile network user to use;
具体地, 所述允许移动网络用户使用的资源参数包括: 承诺速率, 和 / 或峰值速率, 和 /或时间段, 和 /或业务类型。 步骤 416、 BNG转发 RADIUS-Access-Accept给 RG; Specifically, the resource parameters that are allowed to be used by the mobile network user include: a committed rate, and/or a peak rate, and/or a time period, and/or a service type. Step 416, the BNG forwards the RADIUS-Access-Accept to the RG;
步骤 417、 RG解封出 EAP帧, 发送 EAP-Success给 UE。  Step 417: The RG decapsulates the EAP frame and sends an EAP-Success to the UE.
如图 5所示, 是本发明资源接纳控制方法实施一的信令流程图, 固网策 略服务器( PDP )收到来自业务功能( Application Function, AF ) 的业务请求 后, 向 BNG发送资源请求, BNG判断是否接纳该请求。 该流程包括以下步 骤: As shown in FIG. 5, it is a signaling flowchart of the implementation of the resource admission control method of the present invention. After receiving a service request from an application function (AF), the fixed network policy server (PDP) sends a resource request to the BNG. The BNG determines whether the request is accepted. The process includes the following steps:
步骤 501、 PDP收到来自 AF的移动用户业务请求, 进行初始的接纳决 策后 (如判断用户签约信息 QoS等是否合法) , 向 BNG发送资源请求, 以 请求相应的资源;  Step 501: After receiving the mobile user service request from the AF, the PDP performs an initial admission decision (such as determining whether the user subscription information QoS is legal), and sends a resource request to the BNG to request the corresponding resource.
步骤 502、 可选地, BNG收到资源请求消息后, 若该资源请求来自某移 动用户, 且本地没有针对移动用户使用固网资源的策略规则, 则查询 BBF AAA获得允许移动用户使用固网资源信息, BBF AAA回复相关信息;  Step 502: Optionally, after the BNG receives the resource request message, if the resource request is from a mobile user, and the local policy does not use the fixed network resource for the mobile user, the BBF AAA is configured to allow the mobile user to use the fixed network resource. Information, BBF AAA reply to relevant information;
固网用户或移动用户所在链路允许移动用户使用的固网资源信息签约在 BBF AAA中。  The fixed network user or the mobile user's link allows the fixed network resource information used by the mobile user to sign in the BBF AAA.
步骤 503、 BNG对该资源请求进行接纳控制;  Step 503: The BNG performs admission control on the resource request.
具体地 , BNG判断该移动用户所在链路允许移动网络用户使用的资源参 数是否满足当前移动用户的资源请求, 若满足, 且当前资源可用, 则接纳该 资源请求, 并执行相关策略规则。  Specifically, the BNG determines whether the resource parameter used by the mobile user is allowed to meet the resource request of the current mobile user. If the current resource is available, the BNG accepts the resource request and executes the relevant policy rule.
步骤 504、 BNG向 PDP回复响应消息, 若不满足, 则向 PDP回复拒绝 消息, 其中携带拒绝原因, 如当前资源请求超过该移动用户所在链路允许移 动网络用户使用的资源参数。  Step 504: The BNG replies with a response message to the PDP. If not, the BDP replies with a refusal message to the PDP, where the refusal message is carried, where the current resource request exceeds the resource parameter used by the mobile network user in the link where the mobile user is located.
如图 6所示, 是本发明 RG接入认证实施例二的信令流程图, RG在固 定网络进行接入认证, 并在认证成功后 AAA将 RG所在的链路信息推送给 PDP。 该流程包括以下步骤: As shown in FIG. 6, the signaling flow chart of the second embodiment of the RG access authentication is performed. The RG performs access authentication on the fixed network, and after the authentication succeeds, the AAA pushes the link information of the RG to the PDP. The process includes the following steps:
步骤 601、 RG向 BNG发送认证请求消息; 步骤 602、 进一步地, BNG收到认证请求后到 BBF AAA检查用户合法 性; Step 601: The RG sends an authentication request message to the BNG. Step 602: Further, after receiving the authentication request, the BNG checks the validity of the user to the BBF AAA.
步骤 603、 若用户合法, 则 AAA将该 RG所在链路允许移动网络用户使 用的资源参数推送给 PDP;  Step 603: If the user is legal, the AAA pushes the resource parameter used by the mobile network user to the PDP.
具体地, 所述允许移动网络用户使用的资源参数包括: 承诺速率, 和 / 或峰值速率, 和 /或时间段, 和 /或业务类型。  Specifically, the resource parameters allowed by the mobile network user include: a committed rate, and/or a peak rate, and/or a time period, and/or a service type.
PDP保存相关信息。  The PDP saves relevant information.
步骤 604、 AAA向 BNG发送认证响应消息;  Step 604: The AAA sends an authentication response message to the BNG.
步骤 605、 BNG向 RG发送认证响应消息。  Step 605: The BNG sends an authentication response message to the RG.
如图 7所示, 是本发明资源接纳控制方法实施二的信令流程图, PDP收 到来自 AF的业务请求后进行接纳决策, 判断是否接纳该请求。 该流程包括 以下步骤: As shown in FIG. 7, it is a signaling flowchart of the second implementation of the resource admission control method of the present invention. After receiving the service request from the AF, the PDP performs an admission decision to determine whether to accept the request. The process includes the following steps:
步骤 701、 PDP收到来自 AF的移动用户业务请求触发;  Step 701: The PDP receives a mobile user service request trigger from the AF.
步骤 702、 可选地, PDP收到业务请求消息后, 若该业务请求来自移动 用户,且本地没有针对移动用户使用固网资源的策略规则,则查询 BBF AAA 获得允许移动用户使用固网资源信息, BBF AAA回复相关信息;  Step 702: Optionally, after the PDP receives the service request message, if the service request is from the mobile user, and the local policy does not use the fixed network resource for the mobile user, the BBF AAA is configured to allow the mobile user to use the fixed network resource information. , BBF AAA replies with relevant information;
固网用户或移动用户所在链路允许移动用户使用的固网资源信息签约在 BBF AAA中。  The fixed network user or the mobile user's link allows the fixed network resource information used by the mobile user to sign in the BBF AAA.
步骤 703、 PDP对该业务请求进行接纳控制;  Step 703: The PDP performs admission control on the service request.
具体地, PDP判断该移动用户所在链路允许移动用户使用的资源参数是 否满足当前移动用户的资源请求, 若满足, 且当前资源可用, 则接纳该业务 请求, 并执行相关策略规则。  Specifically, the PDP determines whether the resource parameter used by the mobile user to allow the mobile user to use meets the resource request of the current mobile user. If the resource request is satisfied, and the current resource is available, the PDP accepts the service request and executes the relevant policy rule.
步骤 704、 PDP制定相关策略规则后, 下发给 BNG执行。  Step 704: After the PDP formulates the relevant policy rules, it is sent to the BNG for execution.
上述资源接纳控制方法, 根据获得的允许移动用户使用的固网资源信息 决策是否接入移动用户设备的请求, 较好地解决了移动用户过多消耗固网的 带宽资源的问题, 提高了固网用户自身的业务体验。 本发明实施例还提供了一种宽带网络网关 (BNG ) , 如图 8 所示, 该 BNG包括获取模块 81和接纳控制模块 82, 其中: The foregoing resource admission control method solves the problem that the mobile user excessively consumes the bandwidth resources of the fixed network according to the obtained request for determining whether to access the mobile user equipment by using the fixed network resource information used by the mobile user, and improves the fixed network. The user's own business experience. The embodiment of the present invention further provides a broadband network gateway (BNG). As shown in FIG. 8, the BNG includes an obtaining module 81 and an admission control module 82, where:
获取模块, 用于在用户设备认证成功后获取所述用户设备所在物理链路 允许移动用户设备使用的固网资源信息;  An acquiring module, configured to acquire, after the user equipment is successfully authenticated, the physical network link where the user equipment is located, the fixed network resource information that is allowed to be used by the mobile user equipment;
接纳控制模块, 用于收到来自所述物理链路的移动用户设备的请求后, 根据所述固网资源信息决策所述移动用户设备所在物理链路允许移动用户设 备使用的固网资源是否满足所述请求, 若满足, 则接纳该请求。  The admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request, if satisfied, accepts the request.
其中, 所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类型 中的一种或多种。  The fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
进一步地, 所述获取模块, 具体用于: 接收固网认证授权计费服务器 ( AAA )在固网用户设备通过固网认证后发送的所述固网用户设备所在物理 链路允许移动用户设备使用的固网资源信息; 接收所述固网 AAA在移动用 户设备通过固网认证后发送的所述移动用户设备所在物理链路允许移动用户 设备使用的固网资源信息; 或者, 查询所述固网 AAA获得所述固网用户设 备或所述移动用户设备所在链路允许移动用户设备使用的固网资源信息。  Further, the acquiring module is specifically configured to: receive a fixed network authentication and authorization accounting server (AAA), and the physical link of the fixed network user equipment that is sent by the fixed network user equipment after the fixed network user equipment is allowed to allow the mobile user equipment to use The fixed network resource information; receiving the fixed network resource information used by the mobile user equipment that is sent by the fixed network AAA after the mobile user equipment is authenticated by the fixed network, and allowing the mobile user equipment to use the physical network link; or querying the fixed network The AAA obtains fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
上述 BNG较好地解决了移动用户过多消耗固网的带宽资源的问题, 提 高了固网用户自身的业务体验。  The above BNG better solves the problem that mobile users consume too much bandwidth resources of the fixed network, and improves the service experience of the fixed network users themselves.
本发明实施例还提供了一种 PDP, 如图 9所示, 该 PDP包括获取模块An embodiment of the present invention further provides a PDP. As shown in FIG. 9, the PDP includes an acquiring module.
91和接纳控制模块 92, 其中: 91 and admission control module 92, wherein:
获取模块, 用于在用户设备认证成功后获取所述用户设备所在物理链路 允许移动用户设备使用的固网资源信息;  An acquiring module, configured to acquire, after the user equipment is successfully authenticated, the physical network link where the user equipment is located, the fixed network resource information that is allowed to be used by the mobile user equipment;
接纳控制模块, 用于收到来自所述物理链路的移动用户设备的请求后, 根据所述固网资源信息决策所述移动用户设备所在物理链路允许移动用户设 备使用的固网资源是否满足所述请求, 若满足, 则接纳该请求。  The admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request, if satisfied, accepts the request.
其中, 所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类型 中的一种或多种。 进一步地, 所述获取模块, 具体用于: 接收固网认证授权计费服务器The fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type. Further, the acquiring module is specifically configured to: receive a fixed network authentication and authorization accounting server
( AAA )在固网用户设备通过固网认证后发送的所述固网用户设备所在物理 链路允许移动用户设备使用的固网资源信息; 接收所述固网 AAA在移动用 户设备通过固网认证后发送的所述移动用户设备所在物理链路允许移动用户 设备使用的固网资源信息; 或者, 查询所述固网 AAA获得所述固网用户设 备或所述移动用户设备所在链路允许移动用户设备使用的固网资源信息。 (AAA) the fixed network resource information used by the mobile network device to be transmitted by the fixed network user equipment after the fixed network user equipment is authenticated by the fixed network; receiving the fixed network AAA in the mobile user equipment to pass the fixed network authentication The physical link of the mobile user equipment that is sent later allows the fixed network resource information used by the mobile user equipment; or the AAA is obtained by the fixed network AAA to obtain the link of the fixed network user equipment or the mobile user equipment. The information about the fixed network resources used by the device.
上述 PDP较好地解决了移动用户过多消耗固网的带宽资源的问题,提高 了固网用户自身的业务体验。  The above PDP better solves the problem that mobile users consume too much bandwidth resources of the fixed network, and improves the service experience of the fixed network users themselves.
本领域普通技术人员可以理解上述方法中的全部或部分步骤可通过程序 来指令相关硬件完成, 上述程序可以存储于计算机可读存储介质中, 如只读 存储器、 磁盘或光盘等。 可选地, 上述实施例的全部或部分步骤也可以使用 一个或多个集成电路来实现。 相应地, 上述实施例中的各模块 /单元可以釆用 硬件的形式实现, 也可以釆用软件功能模块的形式实现。 本发明不限制于任 何特定形式的硬件和软件的结合。 One of ordinary skill in the art will appreciate that all or a portion of the above steps may be accomplished by a program that instructs the associated hardware to be stored in a computer readable storage medium, such as a read only memory, a magnetic disk, or an optical disk. Alternatively, all or part of the steps of the above embodiments may also be implemented using one or more integrated circuits. Correspondingly, each module/unit in the above embodiment may be implemented in the form of hardware or in the form of a software function module. The invention is not limited to any specific form of combination of hardware and software.
以上实施例仅用以说明本发明的技术方案而非限制, 仅仅参照较佳实施 例对本发明进行了详细说明。 本领域的普通技术人员应当理解, 可以对本发 明的技术方案进行修改或者等同替换, 而不脱离本发明技术方案的精神和范 围, 均应涵盖在本发明的权利要求范围当中。  The above embodiments are only intended to illustrate the technical solutions of the present invention and are not to be construed as limiting the invention. It should be understood by those skilled in the art that the present invention may be modified or equivalently substituted without departing from the spirit and scope of the invention.
工业实用性 Industrial applicability
上述资源接纳控制方法、 BNG和 PDP,根据获得的允许移动用户使用的 固网资源信息决策是否接入移动用户设备的请求, 较好地解决了移动用户过 多消耗固网的带宽资源的问题, 提高了固网用户自身的业务体验。  The resource admission control method, the BNG, and the PDP, according to the obtained fixed network resource information that allows the mobile user to use, determine whether to access the mobile user equipment, and better solve the problem that the mobile user consumes the bandwidth resources of the fixed network excessively. Improve the business experience of fixed network users themselves.

Claims

权 利 要 求 书 Claim
1、 一种资源接纳控制方法, 该方法包括: 1. A resource admission control method, the method comprising:
网元在用户设备认证成功后获取所述用户设备所在物理链路允许移动用 户设备使用的固网资源信息; 所述网元为宽带网络网关(BNG )或固网策略 服务器( PDP ) ;  After the user equipment is successfully authenticated, the network element obtains fixed network resource information that is allowed to be used by the mobile user equipment; the network element is a broadband network gateway (BNG) or a fixed network policy server (PDP);
所述网元收到来自所述物理链路的移动用户设备的请求后, 根据所述固 网资源信息决策所述移动用户设备所在物理链路允许移动用户设备使用的固 网资源是否满足所述请求, 若满足, 则接纳该请求。  After receiving the request from the mobile user equipment of the physical link, the network element determines, according to the fixed network resource information, whether the physical network link where the mobile user equipment is located allows the fixed network resource used by the mobile user equipment to meet the The request, if satisfied, accepts the request.
2、 根据权利要求 1所述的方法, 其中,  2. The method according to claim 1, wherein
所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类型中的一 种或多种。  The fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
3、 根据权利要求 1所述的方法, 其中,  3. The method according to claim 1, wherein
当所述网元为 BNG时, 所述网元在用户设备认证成功后获取所述用户 设备所在物理链路允许移动用户设备使用的固网资源信息包括:  When the network element is a BNG, the network element obtains the fixed network resource information that is allowed to be used by the mobile user equipment after the user equipment is successfully authenticated by the user equipment, including:
所述 BNG接收固网认证授权计费服务器(AAA )在固网用户设备通过 固网认证后发送的所述固网用户设备所在物理链路允许移动用户设备使用的 固网资源信息;  The BNG receiving the fixed network authentication and authorization accounting server (AAA) allows the fixed network resource information used by the mobile user equipment to be transmitted by the physical link of the fixed network user equipment sent by the fixed network user equipment after the fixed network user equipment is authenticated;
所述 BNG接收所述固网 AAA在移动用户设备通过固网认证后发送的所 述移动用户设备所在物理链路允许移动用户设备使用的固网资源信息; 或者 所述 BNG查询所述固网 AAA获得所述固网用户设备或所述移动用户设 备所在链路允许移动用户设备使用的固网资源信息。  Receiving, by the BNG, the fixed network resource information used by the mobile user equipment that is sent by the fixed network AAA after the mobile user equipment is authenticated by the fixed network, to allow the mobile user equipment to use; or the BNG querying the fixed network AAA Obtaining fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
4、 根据权利要求 1所述的方法, 其中,  4. The method according to claim 1, wherein
当所述网元为 PDP时,所述网元在用户设备认证成功后获取所述用户设 备所在物理链路允许移动用户设备使用的固网资源信息包括:  When the network element is a PDP, the network element obtains the fixed network resource information that is allowed to be used by the mobile user equipment after the user equipment is successfully authenticated by the user equipment, including:
所述 PDP接收固网认证授权计费服务器 ( AAA )在固网用户设备通过固 网认证后发送的所述固网用户设备所在物理链路允许移动用户设备使用的固 网资源信息; 所述 PDP接收所述固网 AAA在移动用户设备通过固网认证后发送的所 述移动用户设备所在物理链路允许移动用户设备使用的固网资源信息;或者, 所述 PDP查询所述固网 AAA获得所述固网用户设备或所述移动用户设 备所在链路允许移动用户设备使用的固网资源信息。 The PDP receives the fixed network resource information of the fixed network authentication and authorization accounting server (AAA) that is allowed to be used by the mobile user equipment by the physical link where the fixed network user equipment is located after the fixed network user equipment passes the fixed network authentication; Receiving, by the PDP, the fixed network resource information used by the mobile user equipment to be used by the mobile user equipment after the mobile user equipment is authenticated by the fixed network, and the PDP querying the fixed network The AAA obtains fixed network resource information that the fixed network user equipment or the mobile user equipment is located to allow the mobile user equipment to use.
5、 根据权利要求 3或 4所述的方法, 其中,  5. The method according to claim 3 or 4, wherein
所述固网用户设备或所述移动用户设备所在链路允许移动用户设备使用 的固网资源信息签约在所述固网 AAA中。  The fixed network user equipment or the link where the mobile user equipment is located allows the fixed network resource information used by the mobile user equipment to be subscribed in the fixed network AAA.
6、 一种宽带网络网关 (BNG ) , 该 BNG包括:  6. A broadband network gateway (BNG), the BNG comprising:
获取模块, 设置为: 在用户设备认证成功后获取所述用户设备所在物理 链路允许移动用户设备使用的固网资源信息;  The obtaining module is configured to: acquire, after the user equipment is successfully authenticated, the fixed network resource information that the physical link where the user equipment is located allows the mobile user equipment to use;
接纳控制模块, 设置为: 收到来自所述物理链路的移动用户设备的请求 后, 根据所述固网资源信息决策所述移动用户设备所在物理链路允许移动用 户设备使用的固网资源是否满足所述请求, 若满足, 则接纳该请求。  The admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request is satisfied, and if so, the request is accepted.
7、 根据权利要求 6所述的 BNG, 其中,  7. The BNG according to claim 6, wherein
所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类型中的一 种或多种。  The fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
8、 根据权利要求 6所述的 BNG, 其中,  8. The BNG according to claim 6, wherein
所述获取模块, 设置为:  The obtaining module is set to:
接收固网认证授权计费服务器( AAA )在固网用户设备通过固网认证后 发送的所述固网用户设备所在物理链路允许移动用户设备使用的固网资源信 息;  Receiving the fixed network authentication and authorization accounting server (AAA), the fixed network resource information used by the mobile user equipment that is sent by the fixed network user equipment after the fixed network user equipment passes the fixed network authentication;
接收所述固网 AAA在移动用户设备通过固网认证后发送的所述移动用 户设备所在物理链路允许移动用户设备使用的固网资源信息; 或者  Receiving, by the fixed network AAA, the fixed network resource information used by the mobile user equipment that is sent by the mobile user equipment after the mobile user equipment is authenticated by the fixed network; or
查询所述固网 AAA获得所述固网用户设备或所述移动用户设备所在链 路允许移动用户设备使用的固网资源信息。  Querying the fixed network AAA to obtain the fixed network resource information used by the fixed network user equipment or the mobile user equipment to allow the mobile user equipment to use.
9、 一种固网策略服务器 (PDP ) , 该 PDP包括:  9. A fixed network policy server (PDP), the PDP comprising:
获取模块, 设置为: 在用户设备认证成功后获取所述用户设备所在物理 链路允许移动用户设备使用的固网资源信息; Obtain the module, set to: obtain the physics of the user equipment after the user equipment is successfully authenticated. The link allows fixed network resource information used by the mobile user equipment;
接纳控制模块, 设置为: 收到来自所述物理链路的移动用户设备的请求 后, 根据所述固网资源信息决策所述移动用户设备所在物理链路允许移动用 户设备使用的固网资源是否满足所述请求, 若满足, 则接纳该请求。  The admission control module is configured to: after receiving the request from the mobile user equipment of the physical link, determine, according to the fixed network resource information, whether the fixed network resource used by the mobile user equipment is allowed to be used by the mobile user equipment The request is satisfied, and if so, the request is accepted.
10、 根据权利要求 9所述的 PDP, 其中,  10. The PDP according to claim 9, wherein
所述固网资源信息包括承诺速率、 峰值速率、 时间段和业务类型中的一 种或多种。  The fixed network resource information includes one or more of a commitment rate, a peak rate, a time period, and a service type.
11、 根据权利要求 9所述的 PDP, 其中,  11. The PDP according to claim 9, wherein
所述获取模块, 设置为:  The obtaining module is set to:
接收固网认证授权计费服务器( AAA )在固网用户设备通过固网认证后 发送的所述固网用户设备所在物理链路允许移动用户设备使用的固网资源信 息;  Receiving the fixed network authentication and authorization accounting server (AAA), the fixed network resource information used by the mobile user equipment that is sent by the fixed network user equipment after the fixed network user equipment passes the fixed network authentication;
接收所述固网 AAA在移动用户设备通过固网认证后发送的所述移动用 户设备所在物理链路允许移动用户设备使用的固网资源信息; 或者  Receiving, by the fixed network AAA, the fixed network resource information used by the mobile user equipment that is sent by the mobile user equipment after the mobile user equipment is authenticated by the fixed network; or
查询所述固网 AAA获得所述固网用户设备或所述移动用户设备所在链 路允许移动用户设备使用的固网资源信息。  Querying the fixed network AAA to obtain the fixed network resource information used by the fixed network user equipment or the mobile user equipment to allow the mobile user equipment to use.
PCT/CN2013/071248 2012-02-24 2013-02-01 Resource admission and control method, bng, and pdp WO2013123849A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201210043366.8 2012-02-24
CN201210043366.8A CN103297964B (en) 2012-02-24 2012-02-24 Resource acceptance control method, BNG and PDP

Publications (1)

Publication Number Publication Date
WO2013123849A1 true WO2013123849A1 (en) 2013-08-29

Family

ID=49004997

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2013/071248 WO2013123849A1 (en) 2012-02-24 2013-02-01 Resource admission and control method, bng, and pdp

Country Status (2)

Country Link
CN (1) CN103297964B (en)
WO (1) WO2013123849A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103957566B (en) 2014-04-17 2018-05-25 华为技术有限公司 Band width control method and bandwidth control device

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102075908A (en) * 2009-11-19 2011-05-25 中兴通讯股份有限公司 Flow monitoring method and system among resource and admission control systems
CN102131296A (en) * 2010-01-15 2011-07-20 中兴通讯股份有限公司 Method and system for controlling resources in full service converged network
CN102316533A (en) * 2010-07-07 2012-01-11 中兴通讯股份有限公司 Information transmission method for admission control and admission control system

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003049384A1 (en) * 2001-12-07 2003-06-12 Research In Motion Limited System and method of managing information distribution to mobile stations
CN101998534B (en) * 2009-08-24 2014-03-12 中兴通讯股份有限公司 Interaction method and device among resource admitting and controlling systems
CN102143530B (en) * 2010-02-03 2016-04-13 中兴通讯股份有限公司 A kind of policy control method to the access of mobile subscriber this locality and system
CN102347892B (en) * 2010-07-30 2016-03-30 中兴通讯股份有限公司 A kind of method and system of acquiring user access information by network equipment

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102075908A (en) * 2009-11-19 2011-05-25 中兴通讯股份有限公司 Flow monitoring method and system among resource and admission control systems
CN102131296A (en) * 2010-01-15 2011-07-20 中兴通讯股份有限公司 Method and system for controlling resources in full service converged network
CN102316533A (en) * 2010-07-07 2012-01-11 中兴通讯股份有限公司 Information transmission method for admission control and admission control system

Also Published As

Publication number Publication date
CN103297964A (en) 2013-09-11
CN103297964B (en) 2018-07-13

Similar Documents

Publication Publication Date Title
US11895157B2 (en) Network security management method, and apparatus
RU2755258C2 (en) Secondary authentication of user device
CN108781216B (en) Method and apparatus for network access
RU2491733C2 (en) Method for user terminal authentication and authentication server and user terminal therefor
CN106686589B (en) Method, system and AAA server for realizing VoWiFi service
CN106105134A (en) Improved end-to-end data protection
WO2010075745A1 (en) Authentication processing method and system, 3gpp authentication authorization accounting server and user device
WO2012174959A1 (en) Group authentication method, system and gateway in machine-to-machine communication
WO2013056668A1 (en) Device, system and method using eap for external authentication
WO2009152676A1 (en) Aaa server, p-gw, pcrf, method and system for obtaining the ue's id
WO2010069202A1 (en) Authentication negotiation method and the system thereof, security gateway, home node b
US20100257589A1 (en) method for releasing a high rate packet data session
KR100670791B1 (en) Extended Authorization Method in AAA Server
CN102938757B (en) The method and identity provider of user data in shared network
TW201316792A (en) Authentication method and apparatus for user equipment and LIPA network eneities
WO2015100874A1 (en) Home gateway access management method and system
WO2013123849A1 (en) Resource admission and control method, bng, and pdp
WO2014121614A1 (en) Method and system for implementing authentication and accounting in interaction between wireless local area network and fixed network
WO2017000620A1 (en) Re-authentication and recognition method, and evolved packet data gateway and system
WO2014121613A1 (en) Method and corresponding device for acquiring location information
TWI755951B (en) Communication system and communication method
EP4203392A1 (en) Authentication support for an electronic device to connect to a telecommunications network
WO2014032542A1 (en) Method and system for setting up multiple connections
WO2013037264A1 (en) Admission control method and system
CN101483580B (en) Initial service stream establishment method, apparatus and communication system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13751114

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 13751114

Country of ref document: EP

Kind code of ref document: A1

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载