CN101765216B - Method, device and system for controlling subscriber access - Google Patents
Method, device and system for controlling subscriber access Download PDFInfo
- Publication number
- CN101765216B CN101765216B CN2008102407712A CN200810240771A CN101765216B CN 101765216 B CN101765216 B CN 101765216B CN 2008102407712 A CN2008102407712 A CN 2008102407712A CN 200810240771 A CN200810240771 A CN 200810240771A CN 101765216 B CN101765216 B CN 101765216B
- Authority
- CN
- China
- Prior art keywords
- user terminal
- base station
- home base
- current user
- imsi
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 26
- 230000009365 direct transmission Effects 0.000 claims description 34
- 238000012546 transfer Methods 0.000 claims description 21
- 238000012545 processing Methods 0.000 claims description 5
- 239000000284 extract Substances 0.000 claims description 3
- CSRZQMIRAZTJOY-UHFFFAOYSA-N trimethylsilyl iodide Substances C[Si](C)(C)I CSRZQMIRAZTJOY-UHFFFAOYSA-N 0.000 claims 4
- 238000005516 engineering process Methods 0.000 description 6
- 238000010295 mobile communication Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 230000002452 interceptive effect Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000011664 signaling Effects 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 1
- 230000001413 cellular effect Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000000605 extraction Methods 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 238000011835 investigation Methods 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 239000000463 material Substances 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000005457 optimization Methods 0.000 description 1
- 239000002245 particle Substances 0.000 description 1
- 230000035515 penetration Effects 0.000 description 1
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention relates to a method, a device and a system for controlling subscriber access. The method comprises the following steps of: presetting a corresponding relation table of an international mobile subscriber identity (IMSI) of a subscriber terminal and a home base station; acquiring the IMSI of a current subscriber terminal and a corresponding home base station identifier thereof; judging whether the current subscriber terminal has an access authority or not by looking up the preset corresponding relation table; if so, permitting the subscriber to access; and otherwise refusing to access. Apparently, the method, the device and the system can control the access of a subscriber in a home base station system, and do not need to modify conventional UE and CN.
Description
Technical Field
The present invention relates to the field of mobile communications technologies, and in particular, to a method, an apparatus, and a system for controlling user access.
Background
At present, with the development of mobile communication technology, the main commercial technologies of mobile communication are also transitioning from 2G, 2.5G, and 3G to HSPA, and with the continuous improvement of wireless access rate, the service types gradually evolve from simple voice and short message services to rich data services, wherein the ratio of mobile data services to the total amount of services is also higher and higher. At the same time, the practical deployment of 3G also faces challenges in terms of coverage, capacity, and off-grid factors: the transmission loss and the space loss of the wireless signal of the 2GHz frequency band are large, the penetration capability to the building wall is weak, and the indoor coverage quality is not satisfactory; however, a large amount of high-speed data and multimedia services, such as video telephony, streaming media, games, etc., generally occur in indoor environments, and these services all require large system capacity and good network quality, and it is found through investigation that the indoor usage amount of 3G services accounts for about 70%. Without high quality indoor coverage, the quality of voice and video services will be greatly reduced, and the file download speed will also be slowed.
Certainly, the network capacity can be increased by directly constructing more macro base stations aiming at the problems, but the method consumes a large amount of manpower, financial resources, material resources and time in the aspects of selection of base station sites, purchase, installation, debugging, maintenance and the like of equipment, so that the cost is very high, and therefore, it is obviously not an intelligent choice to consider indoor and outdoor coverage by only using a macro cellular network.
In view of this, the prior art proposes to use a Femtocell (Femtocell) system to solve the indoor coverage problem encountered when deploying high-speed data services, as shown in fig. 1; femtocell is also called a Femtocell, is a wireless access device placed in a user home or office environment, can integrate the functions of a Node B (base station) and an RNC (radio network controller), and works in an authorized frequency band; the transmitting power is small, generally milliwatt level, so the coverage radius is also small, generally 20-50 m; one Femtocell access device generally supports 4-6 mobile users at most, and the air interface L1 of the Femtocell access device conforms to the 3GPP/2 standard, so that the Femtocell access device is suitable for any existing mobile terminal; the Femtocell uses a fixed broadband access (such as DSL) as a backhaul network thereof, and the gateways at the network side converge and provide a standard interface facing a mobile core network, so that the Femtocell has automatic configuration and optimization functions, does not need planning, does not have the problems of site selection and the like, and can be used as an extension of a mobile network and an effective scheme for fixed mobile convergence.
The home base station system is based on a small range of a home or an office, and if the problem of charging and the like is involved, the authority of the user for accessing the home base station needs to be controlled, for example, the home A is provided with the home base station, the cost is borne by the A, and the user B cannot access the home base station of the home A if the user B is not authorized; therefore, in the above-mentioned home base station system, it is necessary to limit the access authority range of the user to a certain home base station or a certain number of home base stations, that is, unauthorized users cannot access the target home base station.
Disclosure of Invention
In view of this, embodiments of the present invention solve the problem of controlling user access in a femtocell system, and a method, an apparatus, and a system for controlling user access provided by embodiments of the present invention can implement access control for a femtocell user and can deny user access without permission.
In order to solve the above problems, the technical solutions provided by the embodiments of the present invention are as follows:
a control method for realizing user access comprises the following steps:
presetting a corresponding relation table of International Mobile Subscriber Identity (IMSI) of a user terminal and a home base station;
acquiring a home base station identifier corresponding to a current user terminal;
receiving a direct-transmission message transmitted by the current user terminal through the home base station or a direct-transmission message from the current user terminal, which is forwarded by the home base station after processing;
analyzing a non-access stratum (NAS) message in the direct transfer message;
when the temporary mobile subscriber identity TMSI or the grouped temporary mobile subscriber identity PTMSI of the current user terminal is extracted from the NAS message, requesting the current user terminal to report the IMSI again; when the IMSI of the current user terminal is extracted from the NAS message, whether the current user terminal has the access authority is judged by searching the preset corresponding relation table, and if so, the user is allowed to access; otherwise, access is denied.
Preferably, the femtocell identifier is obtained by:
and receiving the direct transmission message transmitted by the current user terminal through the femtocell, recording the femtocell link identification from which the direct transmission message comes, and acquiring the femtocell identification corresponding to the user terminal according to the link identification.
Preferably, the femtocell identifier is obtained by:
and receiving the direct transmission message from the current user terminal, which is forwarded after the home base station is processed, and directly extracting the home base station identification corresponding to the current user terminal from the direct transmission message.
Preferably, whether the current user terminal has the access right is judged by the following modes:
searching a preset corresponding relation table by using the obtained IMSI of the current user terminal;
if the home base station corresponding to the IMSI of the current user terminal is consistent with the home base station corresponding to the current user terminal in the corresponding relation table, determining that the current user terminal has access authority; otherwise, there is no authority.
Preferably, whether the current user terminal has the access right is judged by the following modes:
searching a preset corresponding relation table by using the acquired home base station identifier;
if the IMSI of the user terminal corresponding to the home base station is consistent with the IMSI of the current user terminal in the corresponding relation table, determining that the current user terminal has access authority; otherwise, there is no authority.
Preferably, after obtaining the IMSI of the current user terminal by analyzing the NAS message again, if the current user terminal has an access right, the corresponding relationship between the TMSI and the IMSI or the home base station corresponding to the IMSI currently is recorded, or the corresponding relationship between the PTMSI and the IMSI or the home base station corresponding to the IMSI currently is recorded.
A home base station gateway comprising: the device comprises a presetting unit, an obtaining unit and a judging unit; wherein,
the preset unit is used for presetting a corresponding relation table of the International Mobile Subscriber Identity (IMSI) of the user terminal and the home base station;
the acquiring unit is used for acquiring the IMSI of the current user terminal and the home base station identification corresponding to the IMSI, and comprises an identification acquiring module and an IMSI acquiring module, wherein the identification acquiring module is used for receiving a direct transmission message transmitted by the current user terminal through a home base station, recording the home base station link identification from which the direct transmission message comes, and acquiring the home base station identification corresponding to the user terminal according to the link identification, or receiving the direct transmission message from the current user terminal, which is forwarded by the home base station after processing, and directly extracting the home base station identification corresponding to the current user terminal from the direct transmission message; the IMSI acquisition module is used for analyzing non-access stratum (NAS) information in the direct transfer information and extracting the IMSI of the current user terminal from the NAS information;
the judging unit is used for judging whether the current user terminal has the access authority by searching the corresponding relation table preset by the preset unit, and if so, the user is allowed to access; otherwise, access is refused;
and when the home base station gateway extracts the temporary mobile subscriber identity TMSI or the packet temporary mobile subscriber identity PTMSI of the current user terminal from the NAS message, requesting the current user terminal to report the IMSI again.
Preferably, the judging unit includes: a searching module and a comparing module; wherein,
the searching module is used for searching a corresponding relation table preset by the preset unit by using the obtained IMSI or the obtained home base station identifier of the current user terminal;
the comparison module is used for comparing whether the corresponding relationship exists between the current user terminal and the home base station corresponding to the current user terminal in the preset corresponding relationship table or not, and if so, determining that the current user terminal has access authority; otherwise, determining that the current user terminal has no access authority.
A home base station system comprising: a home base station and a home base station gateway; the home base station is used for sending a direct transfer message sent by a current user terminal to the home base station gateway;
the home base station gateway is used for acquiring the IMSI of the current user terminal and the home base station identification corresponding to the IMSI by using the direct transfer message sent by the home base station, judging whether the current user terminal has the access authority or not by searching a preset corresponding relation table of the IMSI of the user terminal and the home base station, executing subsequent operation according to the access authority, and requesting the current user terminal to report the IMSI again when the TMSI or PTMSI of the current user terminal is acquired by using the direct transfer message sent by the home base station.
It can be seen that, with the method, apparatus and system of the embodiments of the present invention, the access control of the user in the femtocell system is implemented by presetting the correspondence table between the IMSI of the user terminal and the femtocell, then obtaining the IMSI of the current user terminal and the corresponding femtocell identifier thereof, determining whether the current user terminal has the access right by searching the preset correspondence table, and then executing the subsequent operation according to the access right of the user terminal, without changing the existing UE and CN.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a schematic diagram of a network architecture of a home base station system in the prior art;
FIG. 2 is a schematic flow chart of the method of example 1 of the present invention;
FIG. 3 is a schematic flow chart of example 2 of the present invention;
fig. 4 is a schematic block diagram of a gateway structure in embodiment 3 of the present invention.
Detailed Description
The basic idea of the embodiment of the present invention is to preset a corresponding relationship table between a UE (User Equipment, User terminal) IMSI (International Mobile subscriber identity) and a femtocell, then obtain an IMSI of a current User terminal and a corresponding femtocell identifier, judge whether the current User terminal has an access right by searching the preset corresponding relationship table, and then execute subsequent operations according to the access right of the User terminal, thereby implementing access control on a User in a femtocell system without changing the existing UE and CN (core network).
The technical solution in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention; it is to be understood that the described embodiments are merely exemplary of the invention, and not restrictive of the full scope of the invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Fig. 2 shows a control method for implementing user access in embodiment 1 of the present invention, which is mainly applied to a home base station network system, and the method includes:
step 201: presetting a corresponding relation table of International Mobile Subscriber Identity (IMSI) of a user terminal and a home base station; specifically, a correspondence table between the IMSI of the user and the home base station is set in advance in the gateway, the number of IMSIs that can be set in one home base station may be 1 or multiple, and the correspondence table may be modified in specific implementation: for example, the user may notify the operator to modify the relationship by phone or short message;
step 202: obtaining the IMSI of the current user terminal and the corresponding home base station identification thereof;
specifically, after the femtocell successfully establishes RRC (Radio Resource Control) connection with the user terminal and receives an initial direct transfer message sent by the user terminal, the femtocell directly transmits the initial direct transfer message to the gateway, or after the initial direct transfer message is processed, the femtocell transmits a direct transfer message including an identifier of the femtocell to the gateway to which the femtocell belongs, such as repackaging and the like; correspondingly, after receiving the direct transmission message transmitted by the current user terminal through the femtocell, the gateway records the femtocell link identifier from which the direct transmission message comes, and obtains the femtocell identifier corresponding to the user terminal according to the link identifier; or receiving the direct transmission message from the current user terminal forwarded by the home base station after processing, and directly extracting the home base station identifier corresponding to the current user terminal from the direct transmission message;
meanwhile, after receiving the direct transmission message, the gateway analyzes an NAS (Non Access stratum) message in the direct transmission message, and extracts the IMSI of the current UE from the analyzed NAS message; certainly, other existing mature technologies may also be adopted to obtain the IMSI of the current UE, and the identifier and IMSI extraction process therein may be implemented by adopting the existing technologies, which is not described herein again;
step 203: judging that the current user terminal has access authority by searching the preset corresponding relation table, and if so, allowing the user to access; otherwise, access is refused;
in the embodiment of the present invention, two ways may be adopted to search the preset correspondence table: namely, the IMSI or the home base station identifier is used for searching; specifically, after extracting the IMSI information of the current user terminal from the parsed NAS message, the IMSI is used to search a preset correspondence table, if the UE is in the authority list of the home base station corresponding to the UE currently, it indicates that the current user terminal has an access authority, otherwise, it indicates that the current user terminal does not have the access authority; if the IMSI information of the current user terminal is extracted from the analyzed NAS message, the obtained home base station identification is utilized to search a set corresponding relation table, if the authority list of the home base station contains the IMSI of the current user terminal, the current user terminal is indicated to have access authority, otherwise, the current user terminal is indicated to have no access authority; for the user terminal with access authority, the direct transmission message sent by the user terminal is sent to the CN, Iu signaling connection is established between the user terminal and the CN, and then the interactive message of the UE and the CN is completed through the direct transmission process, and the operations of user registration, authentication, service negotiation and the like are mainly completed.
In addition, it should be noted that, if the NAS message in the direct transfer message is analyzed, and the NAS message carries a TMSI (Temporary Mobile Subscriber Identity) or a PTMSI (Packet Temporary Mobile Subscriber Identity) instead of the IMSI, the UE is requested to report the IMSI again; after the IMSI reported again by the UE is received and the UE is judged to be in the authority list of the current home base station, the subsequent operation is executed, and the corresponding relation between the TMSI and the IMSI or the current home base station or the corresponding relation between the PTMSI and the IMSI or the current home base station is recorded, so that the access authority judgment can be directly carried out when the TMSI or the PTMSI of the user terminal is received again in the subsequent process; and if the UE is not in the user authority list of the current home base station, sending a rejection message to the UE to inform the UE that the home base station is not allowed to execute operations such as registration or service initiation and the like.
The following describes the content of embodiment 2 of the present invention, and a detailed description is given to a method for implementing user access control by taking a specific access flow of a user terminal device in a Femtocell system as an example, as shown in fig. 3:
in S301, the UE transmits an RRC connection request (RRC Connect Req) to the Femtocell, requesting establishment of an RRC connection with the Femtocell;
in S302, femtocell allocates relevant resources to the UE according to the request of the UE, and sends the resources to the UE through an RRC connection setup (RRC connection setup) message;
in S303, the UE synchronizes with the Femtocell on the resource allocated by the Femtocell, sends an RRC connection setup complete (RRC connection setup complete) message to the Femtocell, and establishes an RRC connection;
in S304, the UE sends an initial direct transmission message to the Femtocell gateway through the Femtocell;
in S305, after receiving the direct transfer message of the UE, the Femtocell gateway records a Femtocell link identifier from which the direct transfer message of the UE comes, and obtains the Femtocell Id according to the link identifier; meanwhile, analyzing the NAS message in the direct transfer message, and if the NAS message contains the IMSI of the UE, executing the step S306; if the obtained from the NAS message is not IMSI of the UE, but TMSI or PTMSI, etc., execute step S307;
in S306, the Femtocell gateway determines whether the UE has an access right by searching a preset correspondence table between the UE IMSI and the Femtocell, using the IMSI or the Femtocell Id of the UE; if the current UE is in the authority list of the current Femtocell, executing step S309; otherwise, go to step S311;
in S307, the Femtocell gateway requests the UE to report the IMSI again;
in S308, after the Femocell gateway receives the IMSI reported again by the UE, if it is determined that the UE has the access right, the corresponding relationship between the TMSI and the IMSI or the Femtocell is recorded, and step S309 is executed; otherwise, go to step S311;
in S309, the Femtocell gateway sends the direct transfer message to the CN, and establishes Iu signaling connection with the CN;
in S310, the interactive message between the UE with access right and the CN is completed through a direct transmission process, which mainly completes operations such as user registration, authentication, service negotiation, and the like;
in S311, if the current UE has no access right, the Femtocell gateway sends a reject message to the UE through the NAS, and does not allow the UE to register or initiate a service in the current Femtocell.
It can be seen that, by adopting the method of the embodiment of the present invention, the access control of the user in the home base station system is realized without changing the existing UE and CN by presetting the corresponding relationship table of the IMSI and the home base station, then obtaining the IMSI of the current user terminal and the corresponding home base station identifier thereof, and judging whether the current user terminal has the access right by searching the preset corresponding relationship table, and then executing the subsequent operation according to the access right of the user terminal.
Based on the above idea, embodiment 3 of the present invention further provides a home base station gateway, as shown in fig. 4, the home base station gateway 400 includes: a presetting unit 410, an obtaining unit 420 and a judging unit 430; the presetting unit 410 is configured to preset a corresponding relationship table between the international mobile subscriber identity IMSI of the user equipment and the home base station; the obtaining unit 420 is configured to obtain an IMSI of the current user terminal and a home base station identifier corresponding to the IMSI; the determining unit 430 is configured to determine that the current user terminal has an access right by searching the corresponding relationship table preset by the preset unit 410, and if so, allow the user to access; otherwise, access is denied.
Preferably, the obtaining unit 420 includes an identifier obtaining module or an IMSI obtaining module; wherein,
the identification acquisition module is used for receiving a direct transmission message sent by the current user terminal through the femtocell, recording a femtocell link identification from which the direct transmission message comes, and acquiring a femtocell identification corresponding to the user terminal according to the link identification; or receiving a direct transmission message from the current user terminal, which is forwarded after the home base station is processed, and directly extracting a home base station identifier corresponding to the current user terminal from the direct transmission message;
the IMSI acquisition module is used for analyzing the non-access stratum NAS message in the direct transfer message and extracting the IMSI of the current user terminal from the NAS message.
Further, the judging unit 430 includes: a searching module and a comparing module; wherein,
the searching module is used for searching a corresponding relation table preset by the preset unit by using the obtained IMSI or the obtained home base station identifier of the current user terminal;
the comparison module is used for comparing whether the corresponding relationship exists between the current user terminal and the home base station corresponding to the current user terminal in the preset corresponding relationship table or not, and if so, determining that the current user terminal has access authority; otherwise, determining that the current user terminal has no access authority.
Based on the same idea, embodiment 4 of the present invention provides a home base station system, including: a home base station and a home base station gateway; the home base station is used for sending a direct transfer message sent by a current user terminal to the home base station gateway;
the femtocell gateway is used for acquiring the IMSI of the current user terminal and the corresponding femtocell identifier thereof by utilizing the direct message sent by the femtocell, judging whether the current user terminal has the access authority or not by searching a preset corresponding relation table of the IMSI of the user terminal and the femtocell, and executing subsequent operation according to the access authority.
Those of skill in the art would understand that information, messages, and signals may be represented using any of a variety of different technologies and techniques. For example, the messages and information mentioned in the above description can be represented by voltages, currents, electromagnetic waves, magnetic fields or particles, optical fields or any combination thereof.
Those of skill would further appreciate that the various illustrative components and algorithm steps described in connection with the embodiments disclosed herein may be implemented as electronic hardware, computer software, or combinations of both, and that the various illustrative components and steps have been described above generally in terms of their functionality in order to clearly illustrate this interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
The steps of a method or algorithm described in connection with the embodiments disclosed herein may be embodied directly in hardware, in a software module executed by a processor, or in a combination of the two. A software module may reside in Random Access Memory (RAM), memory, Read Only Memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art.
The previous description of the disclosed embodiments is provided to enable any person skilled in the art to make or use the present invention. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the invention. Thus, the present invention is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and is not to be construed as limiting the invention, and any modifications, equivalents, improvements and the like that fall within the spirit and principle of the present invention are intended to be included therein.
Claims (9)
1. A control method for realizing user access is characterized by comprising the following steps:
presetting a corresponding relation table of International Mobile Subscriber Identity (IMSI) of a user terminal and a home base station;
acquiring a home base station identifier corresponding to a current user terminal;
receiving a direct-transmission message transmitted by the current user terminal through the home base station or a direct-transmission message from the current user terminal, which is forwarded by the home base station after processing;
analyzing a non-access stratum (NAS) message in the direct transfer message;
when the temporary mobile subscriber identity TMSI or the grouped temporary mobile subscriber identity PTMSI of the current user terminal is extracted from the NAS message, requesting the current user terminal to report the IMSI again; when the IMSI of the current user terminal is extracted from the NAS message, whether the current user terminal has the access authority is judged by searching the preset corresponding relation table, and if so, the user is allowed to access; otherwise, access is denied.
2. The method according to claim 1, wherein the home base station identity is obtained by:
and receiving the direct transmission message transmitted by the current user terminal through the femtocell, recording the femtocell link identification from which the direct transmission message comes, and acquiring the femtocell identification corresponding to the user terminal according to the link identification.
3. The method according to claim 1, wherein the home base station identity is obtained by:
and receiving the direct transmission message from the current user terminal, which is forwarded after the home base station is processed, and directly extracting the home base station identification corresponding to the current user terminal from the direct transmission message.
4. The method of claim 1, wherein the determining whether the current ue has access right is performed by:
searching a preset corresponding relation table by using the obtained IMSI of the current user terminal;
if the home base station corresponding to the IMSI of the current user terminal is consistent with the home base station corresponding to the current user terminal in the corresponding relation table, determining that the current user terminal has access authority; otherwise, there is no authority.
5. The method of claim 1, wherein the determining whether the current ue has access right is performed by:
searching a preset corresponding relation table by using the acquired home base station identifier;
if the IMSI of the user terminal corresponding to the home base station is consistent with the IMSI of the current user terminal in the corresponding relation table, determining that the current user terminal has access authority; otherwise, there is no authority.
6. The method of claim 1, wherein:
and after obtaining the IMSI of the current user terminal by analyzing the NAS message again, if the current user terminal has access authority, recording the corresponding relation between the TMSI and the IMSI or the current corresponding home base station thereof, or recording the corresponding relation between the PTMSI and the IMSI or the current corresponding home base station thereof.
7. A home base station gateway, comprising: the device comprises a presetting unit, an obtaining unit and a judging unit; wherein,
the preset unit is used for presetting a corresponding relation table of the International Mobile Subscriber Identity (IMSI) of the user terminal and the home base station;
the acquiring unit is used for acquiring the IMSI of the current user terminal and the home base station identification corresponding to the IMSI, and comprises an identification acquiring module and an IMSI acquiring module, wherein the identification acquiring module is used for receiving a direct transmission message transmitted by the current user terminal through a home base station, recording the home base station link identification from which the direct transmission message comes, and acquiring the home base station identification corresponding to the user terminal according to the link identification, or receiving the direct transmission message from the current user terminal, which is forwarded by the home base station after processing, and directly extracting the home base station identification corresponding to the current user terminal from the direct transmission message; the IMSI acquisition module is used for analyzing non-access stratum (NAS) information in the direct transfer information and extracting the IMSI of the current user terminal from the NAS information;
the judging unit is used for judging whether the current user terminal has the access authority by searching the corresponding relation table preset by the preset unit, and if so, the user is allowed to access; otherwise, access is refused;
and when the home base station gateway extracts the temporary mobile subscriber identity TMSI or the packet temporary mobile subscriber identity PTMSI of the current user terminal from the NAS message, requesting the current user terminal to report the IMSI again.
8. The gateway according to claim 7, wherein the determining unit comprises: a searching module and a comparing module; wherein,
the searching module is used for searching a corresponding relation table preset by the preset unit by using the obtained IMSI or the obtained home base station identifier of the current user terminal;
the comparison module is used for comparing whether the corresponding relationship exists between the current user terminal and the home base station corresponding to the current user terminal in the preset corresponding relationship table or not, and if so, determining that the current user terminal has access authority; otherwise, determining that the current user terminal has no access authority.
9. A home base station system, comprising: a home base station and a home base station gateway; the home base station is used for sending a direct transfer message sent by a current user terminal to the home base station gateway;
the home base station gateway is used for acquiring the IMSI of the current user terminal and the home base station identification corresponding to the IMSI by using the direct transfer message sent by the home base station, judging whether the current user terminal has the access authority or not by searching a preset corresponding relation table of the IMSI of the user terminal and the home base station, executing subsequent operation according to the access authority, and requesting the current user terminal to report the IMSI again when the TMSI or PTMSI of the current user terminal is acquired by using the direct transfer message sent by the home base station.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008102407712A CN101765216B (en) | 2008-12-23 | 2008-12-23 | Method, device and system for controlling subscriber access |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008102407712A CN101765216B (en) | 2008-12-23 | 2008-12-23 | Method, device and system for controlling subscriber access |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101765216A CN101765216A (en) | 2010-06-30 |
| CN101765216B true CN101765216B (en) | 2012-07-25 |
Family
ID=42496160
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008102407712A Active CN101765216B (en) | 2008-12-23 | 2008-12-23 | Method, device and system for controlling subscriber access |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101765216B (en) |
Families Citing this family (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102158982A (en) * | 2011-02-16 | 2011-08-17 | 电信科学技术研究院 | Method and equipment for processing local IP access (LIPA) connection |
| CN103609153B (en) * | 2011-12-21 | 2017-12-15 | 华为技术有限公司 | The method, apparatus and system of user's identification |
| WO2013097110A1 (en) * | 2011-12-28 | 2013-07-04 | 华为技术有限公司 | Short message receiving method for fixed network terminal,communication system and ip short message gateway |
| CN103051609B (en) * | 2012-12-07 | 2015-11-18 | 东软集团股份有限公司 | The virtual interactive interface method of gateway device and the NS software by its execution |
| CN105516376B (en) * | 2014-09-24 | 2020-09-08 | 中兴通讯股份有限公司 | Control method for mobile terminal to access home gateway and home gateway |
| CN105376836B (en) * | 2015-11-24 | 2019-04-09 | 京信通信系统(中国)有限公司 | The connection control method and system of UE terminal device |
| CN108563943A (en) * | 2018-04-12 | 2018-09-21 | 佛山市百里洲科技有限公司 | It is a kind of can secure accessing mobile terminal computer |
| WO2020034107A1 (en) * | 2018-08-14 | 2020-02-20 | Oppo广东移动通信有限公司 | Network access method, terminal device and network device |
| CN116017315B (en) * | 2022-12-23 | 2024-11-05 | 中国联合网络通信集团有限公司 | Regional broadcast method, apparatus, system and storage medium |
| CN117676583B (en) * | 2023-11-06 | 2024-07-19 | 深圳市佳贤通信科技股份有限公司 | Method and device for preventing network from being rubbed by family base station distributed RU system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1558697A (en) * | 2004-02-10 | 2004-12-29 | Ut˹�ͨѶ����˾ | PHS system authentication method |
| WO2005086421A1 (en) * | 2004-03-08 | 2005-09-15 | Telefonaktiebolaget L. M. Ericsson (Publ) | Unlicensed-radio access networks in mobile cellular communication networks |
| CN101312593A (en) * | 2007-05-25 | 2008-11-26 | 中兴通讯股份有限公司 | Access control method of private base station |
-
2008
- 2008-12-23 CN CN2008102407712A patent/CN101765216B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1558697A (en) * | 2004-02-10 | 2004-12-29 | Ut˹�ͨѶ����˾ | PHS system authentication method |
| WO2005086421A1 (en) * | 2004-03-08 | 2005-09-15 | Telefonaktiebolaget L. M. Ericsson (Publ) | Unlicensed-radio access networks in mobile cellular communication networks |
| CN101312593A (en) * | 2007-05-25 | 2008-11-26 | 中兴通讯股份有限公司 | Access control method of private base station |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101765216A (en) | 2010-06-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101765216B (en) | Method, device and system for controlling subscriber access | |
| EP1987628B1 (en) | Method and apparatus for providing access for a limited set of mobile stations to a restricted local access point | |
| JP4758504B2 (en) | Differentiated network view | |
| KR101633331B1 (en) | METHOD FOR providing connection type information and METHOD FOR controlling radio resource of home (e)NodeB | |
| US7738922B2 (en) | Terminal state control system | |
| US9078284B2 (en) | Personal access point media server | |
| EP2048891B1 (en) | Methods and equipments of notifying user's location in mobile communication system | |
| KR101489882B1 (en) | Informing a user equipment of a cell and a radio base station serving the cell about access rights granted to the user equipment | |
| KR20100120259A (en) | Server for control plane at mobile communication network and method for controlling establishment of connection thereof | |
| JP2004522348A (en) | Method for establishing a list of neighbor cells in a mobile radio system | |
| CN101785336A (en) | Access control for an AD-HOC small-coverage base station | |
| CN101720090B (en) | Method and device for realizing remote access control of home base station | |
| KR20110120898A (en) | Base station and control method of base station | |
| CA2750326A1 (en) | Optimized paging method for home (e)nodeb system | |
| US20120088496A1 (en) | Femto access point and method for automatically setting area code | |
| CN103384365A (en) | Method and system for network access, method for processing business and equipment | |
| KR101680107B1 (en) | Method and apparatus for acquisition of target cell configuration information by a source cell in a wireless communication system and sytem thereof | |
| US8737302B2 (en) | Method and system for processing terminal membership based on hybrid access mode cell | |
| JP4371344B2 (en) | Prepage timer | |
| CN101945485B (en) | Method, device and system for performing access control judgment by core network | |
| CN101610555B (en) | Method, system and device for triggering switching | |
| CN100525529C (en) | Realization method for balancing load in wireless communication system | |
| WO2010124487A1 (en) | Method for reporting user access mode and home nodeb gateway | |
| KR102362560B1 (en) | Method for providing mobile telecommunication service, and apparatus therefor | |
| KR101444435B1 (en) | Method for supporting closed subscriber group in wireless communication system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |