KR20150006332A - Method and apparatus for lawful interception for device supporting device to device communication - Google Patents

Abstract

The present invention relates to an apparatus and a method for legitimately intercepting a terminal supporting an end-to-end communication function. The interception reporting method according to an embodiment of the present invention includes the steps of: activating an interception operation; storing the information exchanged between the terminal and another terminal through the end-to-end communication; and transmitting an interception report including the stored information.

Description

TECHNICAL FIELD [0001] The present invention relates to a method and apparatus for legally intercepting a terminal supporting terminal-to-terminal communication,

More particularly, the present invention relates to a method and apparatus for legally listening to a terminal supporting terminal-to-terminal communication, and more particularly, .

A device to device service (D2D service) for transmitting and receiving signals and data directly between communication terminals through a communication link is emerging without passing through a network entity such as a base station.

A terminal supporting the D2D service acquires synchronization with a peripheral terminal and then discovers peripheral terminals using a predetermined point in time and resources. Then, the terminal can acquire device information of the discovered peripheral terminal and start D2D communication. Here, the device information may include identification information of a peripheral terminal, interest, application program information, and the like. Also, when the terminal supporting the D2D service is interfaced with the base station, time and resource information can be set from the base station and the peripheral terminal can be searched accordingly.

Lawful Interception (LI) is a lawful interrogation agency that legally collects communication subjects for collecting and collecting information for public interest, arresting criminals and other various reasons. In most countries, lawful interception is prescribed by law, and when a State interception agency requires such legitimate interception, the telecommunications carrier is obliged to provide a legal interception function. In case of legitimate interception, And collects data or voice classified into CC (Content of Communication) and IRI (Interception Related Information).

In North America, the CALEA (Communications Assistance for Law Enforcement Act) stipulates lawful interception. Recently, it is a trend to force legitimate interception of data communication services such as Voice over Internet Protocol (VoIP) as well as voice communication services through a mobile communication network.

In an LTE (Long Term Evolution) system, data and voice are transmitted by communication between a User Equipment (UE) and an EPC (Evolved Packet Core). Therefore, in order to legally tap the terminal, the LEMF (Law Enforcement Monitoring Facility) of the eavesdropping agency can take the information from the entity (for example, P-GW) located at the end of the network of the LTE provider and perform tapping.

However, in the case of D2D communication, since the terminal does not use the network of the communication carrier, the conventional tapping technology can not be applied as it is. In addition, there is a need for a technique to prevent such distortions as distortions or omissions of information in the terminal.

SUMMARY OF THE INVENTION The present invention has been made in view of the above problems, and it is an object of the present invention to provide a method for enabling legitimate eavesdropping on communication between a terminal and a terminal.

According to another aspect of the present invention, there is provided a method of reporting an eavesdrop message of a terminal performing communication between terminals, the method comprising: activating a eavesdropping operation; Storing information to be transmitted / received to / from a counterpart terminal through the inter-terminal communication; And transmitting an intercept report including the stored information.

According to another aspect of the present invention, there is provided a method of reporting an interrogation of a terminal that performs inter-terminal communication, the method comprising: transmitting a resource allocation request for communication between terminals to a network; Receiving an interrogation report command for connecting a path for the inter-terminal communication and a path between the terminal and the network from the network at the same time; And transmitting data for the inter-terminal communication to the counterpart terminal and the network.

According to another aspect of the present invention, there is provided a method of intercepting a base station for a terminal performing inter-terminal communication, the method comprising: receiving an interception start command for the terminal from a core network; Receiving a resource allocation request for the inter-terminal communication from the terminal; Transmitting an interrogation report command to the terminal to set the transmission power of the terminal to a level at which the interception can be performed; Allocating resources for the inter-terminal communication to the terminal; Overhearing data transmitted by the terminal to the counterpart terminal through the inter-terminal communication; And sending an intercept report to the core network.

According to another aspect of the present invention, there is provided a method of intercepting a base station for a terminal performing inter-terminal communication, the method comprising: receiving an interception start command for the terminal from a core network; Receiving a resource allocation request for the inter-terminal communication from the terminal; Transmitting an intercept report command for connecting the terminal to the terminal and a path between the terminal and the network at the same time; And receiving data for communication between the terminals from the terminal.

According to another aspect of the present invention, there is provided a method for intercepting a proxy terminal to a target terminal that performs inter-terminal communication, the method comprising: receiving search related information for intercepting the target terminal from the core network; step; Confirming a search signal of the target terminal based on the search related information; Lock-on the target terminal; And acquiring information generated in the inter-terminal communication of the target terminal.

According to another aspect of the present invention, there is provided a method of intercepting an eavesdropping device for a target terminal that performs inter-terminal communication, the method comprising: performing authentication for intercepting a core network to which the target terminal belongs; Receiving information of the target terminal from the core network; Transmitting an eavesdropping start command to the core network based on information of the target terminal; And receiving an intercept report including intercept data for the target terminal.

According to an aspect of the present invention, there is provided an apparatus for reporting an interrogation of a terminal that performs inter-terminal communication, comprising: a transceiver for transmitting and receiving signals and data to / from a network; And a controller for activating an eavesdropping operation and storing information to be transmitted / received to / from the counterpart terminal by the inter-terminal communication, and controlling the interception report to include the stored information.

According to an aspect of the present invention, there is provided an apparatus for reporting an interrogation of a terminal that performs inter-terminal communication, comprising: a transceiver for transmitting and receiving signals and data to / from a network; And an intercept report command for transmitting a resource allocation request for inter-terminal communication with a counterpart terminal to the network and concurrently connecting a path for the inter-terminal communication and a path between the terminal and the network from the network, And a control unit for controlling data for inter-terminal communication to be transmitted to the counterpart terminal and the network.

According to an aspect of the present invention, there is provided an apparatus for intercepting a base station for a terminal that performs inter-terminal communication, comprising: a transceiver for transmitting and receiving signals and data to and from the terminal; An interface unit for transmitting and receiving signals and networks to and from the core network; And an interception report command for receiving an interception start command for the terminal from the core network, receiving a resource allocation request for inter-terminal communication from the terminal, and setting a transmission power of the terminal to a level at which interception is possible To the terminal, allocates resources for the inter-terminal communication to the terminal, overhears data transmitted from the terminal to the counterpart terminal by the inter-terminal communication, reports the interception report to the core network And a control unit for controlling the transmitting unit.

According to an aspect of the present invention, there is provided an apparatus for intercepting a base station for a terminal that performs inter-terminal communication, comprising: a transceiver for transmitting and receiving signals and data to and from the terminal; An interface unit for transmitting and receiving signals and networks to and from the core network; And a terminal for receiving a resource allocation request for the inter-terminal communication from the terminal, a path for communication between the terminal and a path between the terminal and the network, And a control unit for transmitting an interrogation report command to be connected at the same time and controlling the terminal to receive data for communication between the terminals.

According to an aspect of the present invention, there is provided an apparatus for intercepting a proxy terminal for a target terminal that performs inter-terminal communication, the proxy terminal comprising: a transceiver unit for transmitting and receiving signals and data to / ; And receiving search-related information for tapping the target terminal from the core network, checking a search signal of the target terminal based on the search-related information, lock-on the target terminal, And a control unit for acquiring information generated in the inter-terminal communication of the target terminal.

According to an aspect of the present invention, there is provided an eavesdropping device for performing eavesdropping on a target terminal that performs inter-terminal communication, comprising: an interface unit for transmitting and receiving signals and data to and from a core network to which the target terminal belongs; And a core network controller configured to perform authentication for the core network, receive information of the target terminal from the core network, transmit an eavesdropping start command to the core network based on information of the target terminal, And a control unit for controlling to receive the intercept report including the intercepting data.

According to the method and apparatus for legally listening to a terminal supporting terminal-to-terminal communication according to the present invention, the terminal can acquire information transmitted and received in inter-terminal communication in which data is not transmitted through a network entity.

1 is a diagram for explaining a conventional legitimate tapping process,
Figure 2 illustrates a system architecture to which the present invention is applicable;
FIG. 3 is a view for explaining a tapping process according to the first and second embodiments of the present invention; FIG.
FIG. 4 is a flowchart illustrating a tapping process according to the first embodiment of the present invention. FIG.
5 is a flowchart illustrating a tapping process according to a second embodiment of the present invention.
FIG. 6 is a view for explaining a tapping process according to a third embodiment and a fourth embodiment of the present invention; FIG.
FIG. 7 is a flowchart illustrating an eavesdropping process of a proxy terminal according to a third embodiment of the present invention;
FIG. 8 is a flowchart illustrating an eavesdropping process of a proxy terminal according to a fourth embodiment of the present invention;
9 is a view showing another embodiment in which a proxy terminal is selected in the third and fourth embodiments of the present invention;
10 is a view for explaining a tapping process according to a fifth embodiment of the present invention;
11 is a flowchart illustrating a tapping process according to a fifth embodiment of the present invention.
12 is a diagram illustrating a configuration of a terminal according to a sixth embodiment of the present invention;
FIG. 13 is a flowchart illustrating a tapping process according to a seventh embodiment of the present invention;
14 is a diagram illustrating a configuration of a base station according to an embodiment of the present invention;
15 is a view showing a configuration of an eavesdropper's eavesdropping apparatus according to an embodiment of the present invention;
16 is a diagram illustrating a configuration of a proxy terminal according to an embodiment of the present invention,
17 is a diagram showing a configuration of an eavesdropper's eavesdropping apparatus according to an embodiment of the present invention.

Hereinafter, preferred embodiments of the present invention will be described with reference to the accompanying drawings. In the following description, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. This is for the purpose of omitting unnecessary explanations so that the gist of the present invention is not undermined.

For the same reason, some of the components in the drawings are exaggerated, omitted, or schematically illustrated. Also, the size of each component does not entirely reflect the actual size. In the drawings, the same or corresponding components are denoted by the same reference numerals.

Although the LTE system and the LTE-A (LTE-Advanced) system will be described by way of example in the following description of the embodiments of the present invention, It will be understood by those of ordinary skill in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.

Prior to describing the embodiments of the present invention, conventional legitimate eavesdropping techniques will be described.

1 is a diagram for explaining a conventional legitimate tapping process.

1, when the terminal 110 is communicating with the counterpart terminal 130 through the base station 120 and the P-GW 140 of the core network, the LEMF 150 of the intercepting institution transmits P -GW 140 or S-GW to collect the communication contents of the terminal to be intercepted. At this time, if the eavesdropping setting information is received from the CSCF (Call Session Control Function) to intimidate the communication contents of the terminal 110 to be intercepted according to the interception request of the LEMF 150, the P- And transmits the communication contents to the LEMF 150 via the Internet network 160.

However, in the case where the intercepting terminal 110 communicates with the counterpart terminal 130 through D2D communication without passing through the network, since the information transmitted between the terminals does not reach the base station 120, the LEMF 150 collects the communication contents It is difficult to do.

Therefore, the present invention proposes a method capable of performing legitimate eavesdropping on communication contents even when the terminal subject to eavesdropper 110 performs D2D communication.

2 is a diagram illustrating a system architecture to which the present invention is applicable.

2, each of the UEs (UEs) 200 and 210 has Proximity-based Services (ProSe) applications 201 and 211 for D2D communication, and a connection between the UEs 200 and 210 Is based on the PC5 interface. All terminals 200 and 210 also have Delivery Functions 202 and 212 for legitimate eavesdropping according to the present invention. The Delivery Function 202 of the terminal 200 to be intercepted is matched with the Delivery Function 263 provided on the eavesdropper side to have a logical connection relationship.

The access network of the UEs 200 and 210 may be an Evolved Universal Terrestrial Radio Access Network (E-UTRAN) 220 configured as a base station (eNodeB) of the LTE network. At this time, the server and the eavesdropping device of the LTE network may be composed of a separate operator network or a single operator network. The E-UTRAN 220 is connected to the terminal 200 through an LTE-Uu interface and is connected to the core network EPC 230 through an S1 interface.

The EPC 230 starts interception of the interception target terminal 200 in response to the intercept communication data interception request from the intercepting organization. The initiation of tapping may be performed by extracting tapping object identification information for the tapping target terminal 200 and setting it to the tapping wait state or storing the terminal information of the tapping target terminal 200 in a separate storage device.

The EPC 230 maintains a state of waiting for the intercepting terminal 200. When the intercepting terminal 200 requests inter-terminal communication via the access network 220, the EPC 230 transmits the intercepted terminal 200 to the intercepting terminal 200 (CC) and transmits it to the eavesdropping device.

The ProSe function server 240 manages security, authentication, and related information (e.g., discovery code) for supporting inter-terminal communication and search, and the ProSe App Server 250 manages security, 211) related information, and may be operated by a third party developer or a third party.

The LEMF 260 is provided with a management function (ADMF) 261 for controlling overall control of the tapping process through mediation functions 262 and 264, And a delivery function 263 for transmitting various data.

The ADMF 261 carries out management functions for legitimate eavesdropping, that is, commands for eavesdropping, and delivers eavesdropping requirements for eavesdropping-related control and bearer data to the Delivery Function 263. The delivery function 263 transmits the control data of the terminal 200 to be intercepted and the intercepted bearer data input from the ADMF 261 to the Mediation Function 264.

Here, the eavesdropping related control data is the eavesdropping related information (IRI), and the bearer data is the communication contents (CC). The types of legally intercepted information are classified into Content of Communication (CC) and Interception Related Information (IRI). The CC means the content of plain text between the subject of the interception, The related information (IRI) includes service related information such as communication related information indicating successful communication, terminal search information, service profile per customer, user's location information, Layer 2 MAC, PDCP and Layer 3 IP information, And a reception ID.

3 is a diagram for explaining a tapping process according to the first and second embodiments of the present invention.

3, communication contents and interception related information transmitted in a process of performing D2D communication with a target terminal (hereinafter, referred to as 'target terminal') 310 with a counterpart terminal 320 are transmitted to a target terminal 310, Is delivered to the interceptor 340 via the connected network entity 330.

4 is a flowchart illustrating a tapping process according to the first embodiment of the present invention.

4, the LEMF 433 of the LEA (Law Enforcement Agency), which is an interceptor, transmits an LI Activation Request to the ADMF 432, which is a control unit, in step 451, (Authentication, Authorization, and Accounting) with the EPC 420 as a core network in step 452 and acquires information on the target terminal 410 such as an International Mobile Subscriber Identity (IMSI) in step 453. The HSS (Home Subscriber Server) of the core network 420 can perform the authentication process and the information transmission of the target terminal. In step 454, the ADMF 432 transmits an LI Activation Command including information of the target terminal 410 to the EPC 420 to instruct the target terminal 410 to tap. At this time, the network entity receiving the interception start command may vary depending on the configuration of the network. For example, when a Mobility Management Entity (MME) receives the message and performs the activation, the MME performs an operation differently depending on whether the terminal has the D2D capability based on the received ID information of the terminal . At this time, the terminal registers its own capability in the MME through the Initial Attach procedure. If the terminal has D2D capability and is currently in D2D operation, the MME acquires the ID for D2D by communicating with the Prose Function and prepares the operation for D2D enable (LI Enable). If the terminal has only D2D Capability and is not in D2D operation, the MME prepares the D2D LI Enable operation to the terminal according to the embodiment. Finally, if the terminal does not have D2D capability, it instructs the IP packet to LI Enable by communicating with P-GW according to the existing operation of MME. The steps 451 to 454 described above are defined as 'a common process for starting the interception.' Herein, an embodiment according to the eavesdropping operation of the LTE will be described, and the detailed configuration of the eavesdropping process may be changed according to the system configuration.

In step 461, the target terminal 410 activates the eavesdropping operation. As a trigger for triggering the activation of tapping, there is a method in which the target terminal 410 downloads or pre-fetches the policy of the LEA or a country or a provider and activates the tapping operation according to the policy. Alternatively, there is a method of receiving an LI Activation Command transmitted from the LEA and activating a tapping operation according to a condition included in the message. The LI Activation Command includes configuration information related to interception such as an intercept range, interception time, and the like. According to the above method, the target terminal 410 that has activated the tapping operation becomes the tap enable (LI Enable) state.

The target terminal 410 in the eavesdropping activation state stores the Tx and / or (or / or) Rx information generated in the inter-terminal communication process in the storage device. The contents stored at this time are based on the pre-configured or commanded action when tapping is activated. The storage device may include a memory within the target terminal 410 and an external storage device. Furthermore, no connection from the outside is allowed to the storage device in which the information of the inter-terminal communication is stored, so that the stored information can not be modified.

If the target terminal downloads the policy of the LEA or the country or the provider, or if the target terminal has the tentative operation activated by the policy, the target terminal stores the location of the target terminal That is, Tx and / or Rx information of the inter-terminal communication is stored in the storage device regardless of the network coverage (In Coverage) or the out-of-coverage area.

On the other hand, if the target terminal receives the LI Activation Command message from the EPC and activates the eavesdropping, the eavesdropper performing method depends on the location of the target terminal.

If the target terminal is present in In coverage, the target terminal stores Tx and / or Rx information based on the configuration included in the LI Activation Command message. . In contrast, when the target terminal 410 stores information generated in the inter-terminal communication, if the target terminal 410 is located in the out of coverage area in step 462, And performs other operations. If the terminal receives the LI Activation Command Message from the EPC when it is located in the In Coverage, and the terminal is activated, the terminal stores Tx and / or Rx information according to the configuration of the LI Activation Command Message in Out of Coverage. On the other hand, if the terminal does not receive the LI Activation Command Message from the EPC when it is located in the In coverage, the terminal does not store Tx and / or Rx information. The Tx / Rx information may include the search related information and the communication contents described above.

There are various methods, such as RLF declaration of 3GPP LTE, as a method of determining whether the terminal is located in a shadow area, and can follow the method of the system to which the terminal is connected.

Then, the target terminal 410 includes the inter-terminal communication information stored in the storage device in the LI Report (LI Report), and reports it to the Delivery Function 431 of the LEA in step 466. The intercepting report message is transmitted over the IP network (Over the IP), and can be transmitted through another interface (for example, NAS, etc.) depending on the message capacity or other conditions. The LEMF 433 receives the intercept report of the target terminal 410 through the Delivery Function 310 in step 467 and completes the interception.

Various embodiments are possible as the method by which the target terminal 410 starts the intercept report.

First, the target terminal 410 may download the policy of the LEA or a country or a provider, or may have a method of reporting the policy according to the policy. For example, the target terminal 410 may report the inter-terminal communication information that was stored immediately in the case where the target terminal 410 is located in the shadow area and returns to the network coverage (in coverage) As another example, the target terminal 410 may initiate the intercept report when the stored inter-terminal communication information becomes more than a certain amount. Also, it is possible to transmit an intercept report message according to a predetermined time period.

Alternatively, there is a method of receiving an LI Report Command (LI Report Command) transmitted from the EPC 420 and activating an eavesdropping operation according to the conditions included in the message. According to the embodiment of the present invention, the EPC 420 performs the eavesdropping report operation differently according to the communication performed by the target terminal 410 for the eavesdropping report. If the target terminal 410 does not have the D2D capability, the EPC 420 performs the eavesdropping operation according to the existing eavesdropping method described with reference to Fig. If the target terminal 410 is currently performing the D2D operation or has the D2D capability, the EPC 420 instructs the target terminal 410 to report the inter-terminal communication information by transmitting an LI Report Command message. The target terminal 410 may report the information stored in the storage device as it receives the interrogation report command. Since the eavesdropping start command message may include eavesdropping conditions (eavesdropping time and eavesdropping request information, etc.), the EPC 420 may determine whether the eavesdropping report command is valid for transmission.

The eavesdropping report process of the present invention is described as follows. The target terminal 410 can report transmission / reception search information and communication information of the target terminal through report of interception.

The communication information includes a layer 2 (Layer 2), a layer 3 (Layer 3) ID of the receiving terminal, or a group ID of the terminal. The ID information of the transmitting terminal is available because it is included when receiving a packet from the transmitting terminal, and uses its own ID in case of the ID information of the receiving terminal.

Also, when reporting communication information to be transmitted, the communication information also includes Layer 2, Layer 3 ID of the receiving terminal, or Group ID of the receiving terminal. The ID information of the receiving terminal is generated in Application, Layer 2 or Layer 3, that is, inside the terminal. In the case of the ID of the transmitting terminal, the transmitting terminal can include its own ID in the communication information as needed.

According to an embodiment, the ID included in the communication information may be an ID allocated for D2D communication. When the report information including IRI and CC different from the ID arrives at the delivery function 431, the delivery function 431, in order to obtain subscriber information from the ID information as in the method proposed in the present invention, And sends a subscriber matching request message to the EPC 420 or the ProSE function 240. If the EPC 420 receives the subscriber matching request message, it transmits a message requesting the ID information to the ProSe function 240. On the other hand, when the ProSE function 240 receives the message, it requests the subscriber (IMSI, etc.) information to the EPC 420 with the 3GPP ID (S-TMSI) mapping with the ID. Then, the EPC 420 acquires Subscriber information via the HSS as needed. The EPC 420 or the ProSe function 240 responds to the Delivery Function 431 with subscriber information in response to a Subscriber Matching Response message and the Delivery Function 431 delivers the Subscriber information and the IRI and CC to the LEMF 433.

In the case of the search information, it can be generally configured in various ways according to the embodiment. As one example, the generation of the search code, which is one of the search information, can be generated by the ProSe function 240. In this case, the uniqueness of the location and time of the search code depends on the ProSe function. Alternatively, the search code may be generated or generated in advance by a rule defined in the App. Incidentally, in the case of search, since the method of broadcasting to an unspecified number is based on a basis of a specific recipient rather than a specified recipient, the search information itself does not include an ID that can directly determine the terminal.

Therefore, the search information reported by the terminal is configured by the method proposed by the present invention. If the target terminal 410 reports Discovery information to be transmitted, the target terminal 410 includes its D2D ID and Discovery code in the Report. On the other hand, in the case of the discovery information received by the target terminal 410, the target terminal 410 includes the D2D ID of its own and the D2D ID or APP ID of the sender interpreted according to the case and the Discovery code in the Report.

The generated LI Report message is delivered to the Delivery Function 431 in various ways. When the report information arrives at the delivery function 431, the subscriber information is obtained from the ID information included in the report by various methods proposed in the present invention. In the first example, the delivery function 431 transmits the Tx and Rx information included in the ProSe function 240 to the EPC 420 using the ID Mapping Table held by the ProSe function 240, The EPC 420 acquires subscriber information of Tx and Rx, and responds to the delivery function 431. [0050] FIG. Alternatively, if the ProSe function 240 can directly map the IMSI and the D2D ID, it responds directly to the Delivery Function 431. As a second example, if the Delivery Function 431 sends the included Tx and Rx information to the EPC 420, the EPC 420 queries the ProSe Function 240 for the information. When the ProSe function 240 transmits the ID (S-TMSI, etc.) of the UE's EPC to the EPC 420 using the ID Mapping Table held by the ProSe function 240, the EPC 420 transmits the subscriber information of Tx and Rx And responds to the Delivery Function (431). In both of the above examples, if the EPC 420 has a mapping table, the response procedure is reversed.

Another method of delivering the generated LI Report message to the Delivery Function 431 is to directly transmit Tx and Rx information in the Application Layer of the UE. As another example, if the ID of the Delivery Function included in the LI Report message is an Application ID, the Delivery Function 431 directly inquires the App server 250 to receive user information.

5 is a flowchart illustrating an eavesdropping process according to a second embodiment of the present invention.

Referring to FIG. 5, in step 560, an eavesdropping process between the EPC 540 and the LEA is performed. The tapping start process may include steps 451 to 454 of FIG.

The EPC 540 sends an LI Activation Command to the E-UTRAN 530 in step 571 to command the target terminal 520 to intercept. The eavesdropping command may include eavesdropping conditions (eavesdropping time, eavesdropping information, etc.). The E-UTRAN 530 may intercept the target terminal 520 for the valid time of the message in response to the intercept start command.

The E-UTRAN 530 transmits a Buffer Status Report (E-UTRAN) to the target terminal 520 in order to request a radio resource for communication between the target terminal 520 and the counterpart terminal 510, , BSR), eavesdropping of E-UTRAN 530 is triggered. The E-UTRAN 530 transmits an LI Report Command to the target terminal 520 in step 573.

The interrogation report command of the E-UTRAN 530 includes an instruction to allow the E-UTRAN 530 to adjust the power of the target terminal 520 so that the inter-terminal communication of the target terminal 520 can be eavesdropped. As an example of adjusting the power of the target terminal 520, there are a method of adjusting the physical power level to a level that can reach the E-UTRAN 530 and a method of adjusting the power level of the target terminal 520 in the range of 'short' It is possible to insert a class (range class).

The target terminal 520 performs power setting in step 574 and adjusts the transmission range according to the eavesdropping report command. In one embodiment, the target terminal 520 may send a power setting response to the E-UTRAN 530 with an adjusted transmission range. The transmission of the power setting response may be omitted.

The E-UTRAN 530 allocates a transmission resource to the target terminal 520 in step 575 and the target terminal 520 transmits data to the counterpart terminal 510 in accordance with the power set by the E-UTRAN 530 in step 576. [ . The E-UTRAN 530 overheats the data transmitted from the target terminal 520 in step 577.

On the other hand, a method of E-UTRAN 530 to tap search related information can apply a method similar to data tapping. The E-UTRAN 530 receiving the eavesdropping start command from the EPC 540 includes a power configuration execution command in the eavesdropping report command and transmits it to the target terminal 520. Then, the target terminal 520 transmits the search information in the power setting to the designated or allocated resource section, and the E-UTRAN 530 can participate in the corresponding section and obtain the search related information.

In step 578, the E-UTRAN 530 overhearing the IRI and the CC associated with the target terminal 520 transmits the LI Report including the information that is intercepted to the delivery function 551 of the intercepting organization. At this time, the intercept report can be transmitted over the IP by encapsulating the LEA IP in a PDCP level data packet using the function of the E-UTRAN 530 proposed in the present invention. In step 579, the LEMF 553 receives the LI Report through the Delivery Function 551 and completes the LEP report.

When the LI Report information arrives at the delivery function 551, an operation for obtaining Subscriber information from the ID information included in the Report is performed by various methods proposed in the present invention. In the first example, the delivery function 551 transmits the Tx and Rx information included in the ProSe function 240 to the EPC 540 using the ID Mapping Table held by the ProSe function 240, The EPC 540 obtains Subscriber information of Tx and Rx, and responds to the Delivery Function 551. [0134] Alternatively, if the ProSe function 240 can directly map the IMSI and the D2D ID, it responds to the Delivery Function 551 directly. As a second example, the Delivery Function 551 sends the included Tx and Rx information to the EPC 540, which then queries the ProSe function 240 for the information. The ProSe function 240 transmits the ID (S-TMSI, etc.) of the UE's EPC to the EPC 540 using the ID Mapping Table held by the ProSe function 240. The EPC 540 transmits the subscriber information of Tx and Rx And responds to the Delivery Function (551). In both of the above examples, if the EPC (540) has a mapping table, the response procedure is reversed.

In some embodiments, the target terminal 520 may further perform step 573-1 in the second embodiment of FIG. In step 573-1, the target terminal 520 activates the eavesdropping operation. As a trigger for triggering the activation of tapping, there is a method in which the target terminal 520 first downloads or pre-fetches the policy of the LEA, the country or the provider, and activates the tapping operation according to the policy. Alternatively, there is a method of receiving an LI Activation Command transmitted from the LEA and activating a tapping operation according to a condition included in the message. The LI Activation Command includes configuration information related to interception such as an intercept range, interception time, and the like. According to the above method, the target terminal 520 activating the tapping operation becomes the tap enable (LI Enable) state.

The E-UTRAN 530 sends an LI Activation Command to the target terminal 520 in step 573 and the step 573-1 is performed when the target terminal 520 receives the tap command have. Then, in the case where the target terminal 520 becomes the tap-activated state, step 574 may be performed.

FIG. 6 is a diagram for explaining a tapping process according to a third embodiment and a fourth embodiment of the present invention.

6, the information that the target terminal 610 exchanges with the counterpart terminal 620 through the inter-terminal communication is transmitted to the proxy terminal 630 which performs the interception, and the proxy terminal 630 transmits the interception contents to the network And report to the interceptor 650 via the proxy terminal 640. The proxy terminal 630 may be a terminal manufactured specifically for a firefighter, a police officer, or the like in charge of the public safety net.

FIG. 7 is a flowchart illustrating an eavesdropping process of a proxy terminal according to a third embodiment of the present invention.

7, in step 761, the proxy terminal 710 performs an authentication process on the EPC 740 and requests information (IMSI, etc.) of the target terminal 720 to detect the target terminal 720 . The authentication of the proxy terminal 710 and the transmission of information of the target terminal 720 may be handled by the HSS of the EPC 740.

The proxy terminal 710 receives the information of the target terminal 720 and transmits an LI Activation Command including the information of the target terminal 720 to the EPC 740 in step 762, ) To request the information to perform the auditing. At this time, the entity of the corresponding EPC 740 may vary depending on the network configuration.

The EPC 740 receives the probe initiation command from the proxy terminal 710 and then transmits a ProSe function 750 in step 763 to transmit discovery related information necessary for confirming the proximity of the target terminal 720 (ProSe UE Interception Request) for the search related information used by the target terminal 720. Accordingly, the ProSe function 750 transmits a response (ProSe UE Interception Response) including the requested information in step 764 to the EPC 740.

In step 765, the EPC 740, which has obtained the search related information, transmits an LI Activation Response including search related information to the proxy terminal 710. In step 766, the proxy terminal 710 generates information (e.g., target code) used by the current target terminal 720 in the target list.

In step 767, the proxy terminal 710 participates in the search process and checks the proximity of the target terminal 720 with reference to the target list. If the search is successfully performed and the proximity is confirmed, the proxy terminal 710 locks the target terminal 720 in step 768.

The target terminal 720 stores the Tx / Rx information of the inter-terminal communication in step 770. If the target terminal 720 receives the Tx / Rx information from the target terminal 720 in step 720, Can acquire information of the stored inter-terminal communication.

In one embodiment, the proxy terminal 710 transmits an LI Report Command to the target terminal 720 in step 771, and transmits an LI Report including information on the communication between the terminals to the target terminal 720 in step 771 .

The proxy terminal 710 transmits an LI Report Command to the EPC 740 in step 773 and the EPC 740 transmits an LI Report command to the target terminal 720 in step 774. In step 774, The target terminal 720 may transmit the inter-terminal communication information to the proxy terminal 710 according to the information of the proxy terminal 710 included in the intercept report command in step 775.

8 is a flowchart illustrating a process of tapping a proxy terminal according to the fourth embodiment of the present invention.

8, in step 871, the proxy terminal 810 performs an authentication process for the EPC 850 and requests information (IMSI, etc.) of the target terminal 830 to detect the target terminal 830 . Authentication of the proxy terminal 810 and information transfer of the target terminal 830 may be handled by the HSS of the EPC 850.

The proxy terminal 810 receives the information of the target terminal 830 and transmits an LI Activation Command including the information of the target terminal 830 to the EPC 850 in step 872, ) To request the information to perform the auditing. At this time, the entity of the corresponding EPC 850 may vary depending on the network configuration.

The EPC 850 receives the probe start command from the proxy terminal 810 and transmits the probe related information necessary for confirming the proximity of the target terminal 830 to the ProSe function 860 (ProSe UE Interception Request) for the search related information used by the target terminal 830. Accordingly, the ProSe function 860 transmits a response (ProSe UE Interception Response) including information requested in step 874 to the EPC 850.

In step 875, the EPC 850, which has obtained the search related information, transmits an LI Activation Response including search related information to the proxy terminal 810. In step 877, the proxy terminal 810 generates information (e.g., target code) used by the current target terminal 830 for searching as a target list.

In step 878, the proxy terminal 810 participates in the search process and checks the proximity of the target terminal 830 with reference to the target list. If the search is successfully performed and the proximity is confirmed, the proxy terminal 810 locks the target terminal 830 in step 879. [

The EPC 850 sends an LI Activation Command to the E-UTRAN 840 in step 876 to instruct the E-UTRAN 840 to intercept the target terminal 830. [ The E-UTRAN 840 monitors the target terminal 830 for the valid time of the intercept start command message after receiving the intercept start command. The E-UTRAN 840 transmits a request for radio resources (BSR) for data transmission to the E-UTRAN 840 in step 880, (LI Ready) message to the proxy terminal 810 to instruct the target terminal 830 to prepare for tapping. The proxy terminal 810 can acquire the resource information in the cell of the target terminal 830 and the security key of the wireless communication through the tap preparation message.

In step 882, the E-UTRAN 830 allocates radio resources to the target terminal 830 and the proxy terminal 810. When the target terminal 830 transmits data to the counterpart terminal 820 through inter-terminal communication in step 883, the proxy terminal 810 overheats the corresponding resource section in step 884 and completes the interception.

9 is a view showing another embodiment in which a proxy terminal is selected in the third and fourth embodiments of the present invention.

Referring to FIG. 9, in step 961, an LI activation process between the EPC 940 and the LEA 960 is performed. The tapping start procedure of step 961 includes steps 451 to 454 of FIG. The LEA 960 may acquire information (such as IMSI) of the target terminal 920 from the EPC 940 and search for a suitable proxy terminal 910 near the target terminal 920 through the tapping process. Authentication in the eavesdropping initiation process and information transmission of the target terminal 920 can be performed by the HSS of the EPC 940. [

The EPC 940 then transmits an information request (ProSe UE Interception Request) to the ProSe function 950 in step 962 to obtain information related to inter-terminal search and communication of the target terminal 920. In step 963, the ProSe function 950 transmits a ProSe UE Interception Response message including inter-terminal search related information such as a search code registered by the target terminal 920 and information related to inter-terminal communication. Accordingly, the EPC 940 may select one or more legitimate proxy terminals 910.

As an example of selecting the proxy terminal 910, the EPC 940 may transmit a Select Proxy Device message to the directly selected proxy terminal 910 based on the location information. As another example, a Proxy Selection Request message may be transmitted to the MME or possibly candidate terminals in the cell as in step 964, and a Proxy Selection Response message may be transmitted from the proxy terminal 910, And may select the proxy terminal 910. [

In step 967, the proxy terminal 910 acquires the search-related information from the EPC 940 and creates information such as a search code used by the target terminal 920 in a list. In step 968, the proxy terminal 910 participates in the search process and checks proximity to the target terminal 920 based on the target list. If the search is successfully performed and the proximity is confirmed, the proxy terminal 910 locks the target terminal 920 in step 969.

Since steps 769 through 775 of FIG. 7 or steps 880 through 884 of FIG. 8 may be applied to the proxy process of the proxy terminal 910 after the target terminal 920 is locked-on, Is omitted.

10 is a diagram for explaining a tapping process according to the fifth embodiment of the present invention.

10, when the eavesdropping authority 1050 requests the eavesdropping on the target terminal 1010, the network 1040 transmits to the ProSe terminals 1020 and 1030 within a predetermined area centered on the target terminal 1010 Transmits the identification information of the target terminal 1010 and the registered search code. The ProSe terminals 1020 and 1030 may notify the network 1040 of not only registered search codes transmitted by the target terminal 1010 but also unregistered search codes. Hereinafter, this will be described in detail.

11 is a flowchart illustrating a tapping process according to the fifth embodiment of the present invention.

Referring to FIG. 11, there is a surveillance terminal 1110 for sensing a target terminal 1120 and a target terminal 1120. Both the target terminal 1120 and the wireline terminal 1110 are terminals that have inter-terminal communication capability.

In step 1161, an LI activation process between the EPC 1130 and the LEA 1150 is performed. The intercept initiation procedure of step 1161 includes steps 451 to 454 of FIG. The LEA 1150 can obtain the information (IMSI, etc.) of the target terminal 1120 from the EPC 1130 and search for a suitable terminal device 1110 near the target terminal 1120 through the tapping process. Authentication in the eavesdropping initiation process and information transmission of the target terminal 1120 can be performed by the HSS of the EPC 1130.

The EPC 1130 transmits an information request (ProSe UE Interception Request) to the ProSe function 1140 in step 1162 in order to obtain information related to the inter-terminal search and communication of the target terminal 1120. [ The ProSe function 1140 transmits a ProSe UE Interception Response message including the inter-terminal search related information such as the search code registered by the target terminal 1120 and the inter-terminal communication related information in step 1163. [ Accordingly, the EPC 1130 may select one or more legitimate wiretap terminals 1110.

Then, the EPC 1130 transmits an LI Report Command to the ward terminal 1110 selected in step 1164. As an example, the EPC 1130 may select the intercepting terminal 1110 based on the cell to which the target terminal 1120 is connected, or based on the Tracking Area (TA) of the target terminal 1120.

The interrogation terminal 1110 acquires search related information through an interrogation report command and generates information such as a search code used in the search by the target terminal 1120 as a target list in step 1165. The surveillance terminal 1110 participates in the search process of the target terminal 1120 in step 1166 and intercepts the IRI of the target terminal 1120 referring to the target list.

The interrogation terminal 1110 transmits an LI Report to the EPC 1130 in step 1167 in accordance with the conditions set in the intercept report command or periodically or according to preset trigger conditions and the LEA 1150 In step 1168, the eavesdropping report is received from the EPC 1130 and the eavesdropping is completed.

12 is a flowchart illustrating a tapping process according to the sixth embodiment of the present invention.

12, in step 1261, an LI activation process between the EPC 1240 and the LEA is performed in order to intercept data transmitted and received by the target terminal 1220 by performing communication between the target terminal 1210 and the counterpart terminal 1210 . The intercept initiating process of step 1261 includes steps 451 to 454 of FIG.

The EPC 1240 sends an LI Activation Command to the E-UTRAN 1230 in step 1262 to command the target terminal 1220 to intercept. The eavesdropping command may include eavesdropping conditions (eavesdropping time and eavesdropping information, etc.). The E-UTRAN 1230 may intercept the target terminal 1220 for the valid time of the message in response to the intercept start command.

The target terminal 1220 transmits a Buffer Status Report (E-UTRAN) to the E-UTRAN 1230 in order to request a radio resource for communication between the target terminal 1210 and the counterpart terminal 1210, , BSR), eavesdropping of the E-UTRAN 1230 is triggered. The E-UTRAN 1230 transmits an LI Report Command to the target terminal 1220 in step 1264 in response thereto.

The E-UTRAN 1230 transmits an eavesdropping report command to the target terminal 1220 and the counterpart terminal 1210 so that the communication path between the target terminal 1220 and the base station 1220 can be simultaneously established . The target terminal 1220 accordingly sets up a communication path with the EPC 1240, if necessary, and prepares to transfer the data. At this time, if there is a previously set data bearer in use, the above process can be omitted.

The E-UTRAN 1230 then allocates resources to the target terminal 1220, and the resources allocated may vary according to the following specific embodiments.

First, the E-UTRAN 1230 may allocate resources for inter-terminal communication and transmission resources to the base station at the same time, and the target terminal 1220 may transmit data through two paths. In this case, the target terminal 1220 may transmit data for inter-terminal communication through an inter-terminal communication path as in step 1265, and may also transmit data to the network as in step 1266. [

The E-UTRAN 1230 encapsulates the IP address of the eavesdropping institution into a data packet of the PDCP level received from the terminal and sends an LI Report to the Delivery Function 1251 of the eavesdropper in step 1267. [ Lt; / RTI > The LEMF 1253 of the intercepting organization receives the intercept report from the Delivery Function 1251 in step 1268 and completes the interception process.

Meanwhile, the E-UTRAN 1230 may allow the target terminal 1220 to transmit data for the inter-terminal communication to the EPC 1240. Accordingly, the target terminal 1220 transmits the data to the EPC in step 1269, and the EPC 1240 transmits the report to the LEMF 1253 via the delivery function 1251 in step 1270. In step 1271, data of the inter-terminal communication is transmitted to the counterpart terminal 1210.

13 is a flowchart illustrating an eavesdropping process according to a seventh embodiment of the present invention.

Referring to FIG. 13, in step 1360, an eavesdropping process between the EPC 540 and the LEA is performed. The tapping initiation process may include steps 451 to 454 of FIG. In addition, in the present embodiment, the EPC 540 sends an LI Activation Command to the E-UTRAN in step 571 to command the target terminal to intercept. The eavesdropping command may include eavesdropping conditions (eavesdropping time, eavesdropping information, etc.). The E-UTRAN may intercept the target terminal for the valid time of the message in response to the intercept initiation command.

Therefore, Triggering (LI Enable) (step 1373-1) of the terminal follows the same method as the above-described embodiment (first embodiment or second embodiment), and in this embodiment additionally, The target terminal 520 transmits a buffer status report (BSR) to the E-UTRAN 530 in step 1372 in order to request a radio resource for communication between the terminal and the counterpart terminal, E-UTRAN 530 is triggered. The E-UTRAN 530 transmits an LI Activation Command to the target terminal 520 in step 1373 in response.

The E-UTRAN wake-up initiation command includes an instruction to allow the E-UTRAN 530 to adjust the communication resources and direction of the target terminal so that the E-UTRAN 530 can intercept the communication contents of the target terminal 520. As an example of adjusting the communication resources and direction of the target terminal 520, the E-UTRAN 530 makes a time difference between the D2D communication and the method of opening the connection to the E-UTRAN at the same time, And transmitting information for allocation of resources to be reported to the E-UTRAN through an uplink.

In step 1375, the E-UTRAN 530 allocates transmission resources to the target terminal 520 according to the above method, and the target terminal 520 allocates transmission resources to the target terminal 520 in accordance with the resource set by the E-UTRAN 530 in step 1376 510). If the established method opens concurrent connections, the target terminal 520 transmits the data to the target terminal 520 via the antenna and other resources allocated in step 1376 - 1 to the E-UTRAN 530, (520). If the E-UTRAN allocates the C-RNTI for the lawful interception for the uplink or transmits the resource block itself, the E-UTRAN 530 transmits the corresponding resource to the target terminal 520 after the inter-terminal data transmission And transmits the data. That is, step 1376-1 and step 1376-1 may be performed.

The E-UTRAN 530 having received the IRI and the CC associated with the target terminal 520 transmits an LI Report including the information that it has intercepted in step 1378 to the delivery function 551 of the interception agency. At this time, the intercept report can be transmitted over the IP by encapsulating the LEA IP in a PDCP level data packet using the function of the E-UTRAN 530 proposed in the present invention. In step 1379, the LEMF 553 receives the LI Report through the Delivery Function 551 and completes the LEP report.

When the LI Report information arrives at the delivery function 551, an operation for obtaining Subscriber information from the ID information included in the Report is performed by various methods proposed in the present invention. In the first example, the delivery function 551 transmits the Tx and Rx information included in the ProSe function 240 to the EPC 540 using the ID Mapping Table held by the ProSe function 240, The EPC 540 obtains Subscriber information of Tx and Rx, and responds to the Delivery Function 551. [0134] Alternatively, if the ProSe function 240 can directly map the IMSI and the D2D ID, it responds to the Delivery Function 551 directly. As a second example, the Delivery Function 551 sends the included Tx and Rx information to the EPC 540, which then queries the ProSe function 240 for the information. The ProSe function 240 transmits the ID (S-TMSI, etc.) of the UE's EPC to the EPC 540 using the ID Mapping Table held by the ProSe function 240. The EPC 540 transmits the subscriber information of Tx and Rx And responds to the Delivery Function (551). In both of the above examples, if the EPC (540) has a mapping table, the response procedure is reversed.

FIG. 14 is a diagram illustrating a configuration of a terminal according to an embodiment of the present invention.

14, a terminal according to an embodiment of the present invention may include a transmission / reception unit 1310, a control unit 1320, and a storage unit 1330. The control unit 1320 may also include an inter-terminal communication control unit 1321 and an intercepting data management unit 1322 for inter-terminal communication and intercept report. Hereinafter, the description of each section of Fig. 14 includes only the description of the operation according to the embodiment of the present invention.

The transmission / reception unit 1310 transmits and receives signals and data to / from the network. Specifically, the transmission / reception unit 1310 requests resource allocation for inter-terminal communication according to the control of the control unit 1320 or receives a report command of interception data from the network, . Also, the transmission / reception unit 1310 can transmit and receive signals and data to and from other terminals by inter-terminal communication. The storage unit 1330 stores the Tx / Rx information of the inter-terminal communication under the control of the controller 1320.

The inter-terminal communication control unit 1321 of the control unit 1320 corresponds to the ProSe APP shown in Fig. 2, and controls the transceiver unit 1310 to perform inter-terminal communication. Also, the intercepting data managing unit 13322 corresponds to the Delivery Function of FIG. 2, and transmits the Tx / Rx information stored in the storage unit 1330 in the intercept report message. A detailed description of the operation of the terminal in the eavesdropping process according to the embodiment of the present invention has been described above and will be omitted here.

15 is a diagram illustrating a configuration of a base station according to an embodiment of the present invention.

15, a base station according to an embodiment of the present invention may include a transmission / reception unit 1410, an interface unit 1420, a controller 1430, and a storage unit 1440. The transceiver 1410 communicates with the terminal via the wireless interface, and the interface 1420 communicates with the core network. In addition, the storage unit 1440 stores various information necessary for performing the tapping process according to the embodiment of the present invention.

The control unit 1430 may include an inter-terminal communication control unit 1430, an intercepting data managing unit 1432, and an intercepting unit 1433. The inter-terminal communication control unit 1430 may allocate resources for inter-terminal communication to the terminal according to the embodiment of the present invention, and may adjust the transmission power of the terminal for interception. The intercepting data management unit 1432 corresponds to the Delivery Function and transmits the intercept report received from the terminal to the core network. The eavesdropper performing unit 1433 corresponds to the ADMF provided in the eavesdropping agency, and performs an operation of transmitting an eavesdropping command to the terminal according to an eavesdropping command from the core network. Detailed description of the performance of the eavesdropping process of the base station is the same as that of the above-described embodiment, and the following description is omitted.

16 is a diagram illustrating a configuration of a proxy terminal according to an embodiment of the present invention.

16, a proxy terminal according to an exemplary embodiment of the present invention includes a transmitter / receiver 1510, a controller 1520, and a storage 1530, An intercept communication control unit 1521, an intercepting data managing unit 1522, and an intercepting unit 1523 for performing interworking.

The transmitting and receiving unit 1510 transmits and receives signals and data to and from the network and the target terminal under the control of the controller 1520. Also, the storage unit 1530 may store various information for performing the tapping process according to the embodiment of the present invention, for example, a target list generated based on the search code of the target terminal.

The control unit 1520 may include an inter-terminal communication control unit 1521, an intercepting data management unit 1522, and an intercepting unit 1523. The inter-terminal communication control unit 1521 is configured to control participation in the search process of the target terminal, and the intercepting data management unit 1522 is a configuration for reporting the information acquired by interception of the target terminal. In addition, the surveillance performance unit 1523 performs a function of commanding the target terminal to report the surveillance.

17 is a diagram showing a configuration of an eavesdropper's eavesdropping apparatus according to an embodiment of the present invention.

Referring to FIG. 17, the eavesdropping apparatus according to the present invention may include a transmission / reception unit 1610, a control unit 1620, and a storage unit 1630.

The control unit 1620 includes an intercepting data managing unit 1621 and an intercepting data managing unit 1620. The intercepting data managing unit 1621 and the intercepting data managing unit 1620 are connected to the interface unit 1610 and the core network, And an eavesdropper performing unit 1622 may be provided. The intercepting data management unit 1621 corresponds to the Delivery Function and receives the intercept report from the core network. The eavesdropper performing unit 1622 corresponds to the ADMF and performs authentication for eavesdropping on the EPC.

It will be understood by those skilled in the art that the present invention may be embodied in other specific forms without departing from the spirit or essential characteristics thereof. It is therefore to be understood that the above-described embodiments are illustrative in all aspects and not restrictive. The scope of the present invention is defined by the appended claims rather than the foregoing detailed description, and all changes or modifications derived from the meaning and scope of the claims and the equivalents thereof are included in the scope of the present invention Should be interpreted.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed embodiments, but, on the contrary, And is not intended to limit the scope of the invention. It is to be understood by those skilled in the art that other modifications based on the technical idea of the present invention are possible in addition to the embodiments disclosed herein.

Claims (65)

A method of reporting an interrogation of a terminal performing communication between terminals,
Activating a tapping operation;
Storing information to be transmitted / received to / from a counterpart terminal through the inter-terminal communication; And
And transmitting an intercept report including the stored information. The method according to claim 1,
Storing the information, when the terminal is located in a shadow area,
And transmitting the intercept report when the terminal returns from the shadow area in the step of transmitting the intercept report. The method according to claim 1,
Wherein the intercept report is transmitted in response to the received intercept report command. The method of claim 3,
Wherein the eavesdropping report command is received from a proxy terminal designated to perform network or eavesdropping. A method of reporting an interrogation of a terminal performing communication between terminals,
Transmitting a resource allocation request for communication between a terminal and a counterpart terminal to a network;
Receiving an interrogation report command for connecting a path for the inter-terminal communication and a path between the terminal and the network from the network at the same time; And
And transmitting data for the inter-terminal communication to the counterpart terminal and the network. 6. The method of claim 5,
Wherein the data is transmitted to a base station or a core network. A method of intercepting a base station for a terminal performing inter-terminal communication,
Receiving an eavesdropping start command for the terminal from the core network;
Receiving a resource allocation request for the inter-terminal communication from the terminal;
Transmitting an interrogation report command to the terminal to set the transmission power of the terminal to a level at which the interception can be performed;
Allocating resources for the inter-terminal communication to the terminal;
Overhearing data transmitted by the terminal to the counterpart terminal through the inter-terminal communication; And
And sending an intercept report to the core network. A method of intercepting a base station for a terminal performing inter-terminal communication,
Receiving an eavesdropping start command for the terminal from the core network;
Receiving a resource allocation request for the inter-terminal communication from the terminal;
Transmitting an intercept report command for connecting the terminal to the terminal and a path between the terminal and the network at the same time; And
And receiving data for the inter-terminal communication from the terminal. 9. The method of claim 8,
Encapsulating the received data based on an Internet Protocol (IP) address of a listening organization and transmitting the encapsulated data to a core network. A method of intercepting a proxy terminal for a target terminal that performs inter-terminal communication,
Receiving search related information for tapping the target terminal from the core network;
Confirming a search signal of the target terminal based on the search related information;
Lock-on the target terminal; And
And acquiring information generated in the inter-terminal communication of the target terminal. 11. The method of claim 10,
The step of acquiring the information comprises:
Transmitting an interrogation report command to the target terminal; And
And receiving an intercept report including information transmitted and received in the inter-terminal communication from the target terminal. 11. The method of claim 10,
The step of acquiring the information comprises:
Sending an interrogation report command to the core network; And
And receiving an intercept report including information transmitted and received in the inter-terminal communication corresponding to the intercept report command from the target terminal. 11. The method of claim 10,
The step of acquiring the information comprises:
Receiving resource information allocated by the target terminal for the inter-terminal communication from the base station; And
And overhearing the data transmitted by the target terminal to the counterpart terminal through the inter-terminal communication based on the resource information. 11. The method of claim 10,
Wherein the search related information is included in an eavesdrop response received from the core network in response to an eavesdrop command sent to the core network. 11. The method of claim 10,
Wherein the search related information is included in a proxy terminal selection message received from the core network. A method of intercepting an eavesdropping device for a target terminal performing inter-terminal communication,
Performing authentication for tapping the core network to which the target terminal belongs;
Receiving information of the target terminal from the core network;
Transmitting an eavesdropping start command to the core network based on information of the target terminal; And
And receiving an intercept report including intercept data for the target terminal. 1. An intercept report device of a terminal performing inter-terminal communication,
A transmitting and receiving unit transmitting and receiving signals and data to and from the network; And
And a control unit for activating an eavesdropping operation and storing information to be transmitted / received to / from the counterpart terminal by the inter-terminal communication, and for controlling transmission of an intercept report including the stored information. 18. The method of claim 17,
Wherein the controller controls to start storing the information when the terminal is located in a shadow area and to transmit the intrusion report when the terminal returns from the shadow area. 18. The method of claim 17,
Wherein the intercept report is transmitted in response to the received intercept report command. 20. The method of claim 19,
Wherein the intercept report command is received from a proxy terminal designated to perform the network or intercept. 1. An intercept report device of a terminal performing inter-terminal communication,
A transmitting and receiving unit transmitting and receiving signals and data to and from the network; And
Receiving an intercept report command for transmitting a resource allocation request for inter-terminal communication with a counterpart terminal to the network, and connecting a path for the inter-terminal communication and a path between the terminal and the network from the network at the same time, And to transmit data for inter-user communication to the counterpart terminal and the network. 22. The method of claim 21,
Wherein the data is transmitted to a base station or a core network. An apparatus for intercepting a base station for a terminal that performs inter-terminal communication,
A transmitting and receiving unit transmitting and receiving signals and data to and from the terminal;
An interface unit for transmitting and receiving signals and networks to and from the core network; And
An interception report command for receiving an interception start command for the terminal from the core network, receiving a resource allocation request for inter-terminal communication from the terminal, and setting a transmission power of the terminal to a level at which interception is possible Allocating resources for the inter-terminal communication to the terminal, overhearing data transmitted from the terminal to the counterpart terminal through the inter-terminal communication, and transmitting the intercept report to the core network And a control unit for controlling the transmission unit to transmit data. An apparatus for intercepting a base station for a terminal that performs inter-terminal communication,
A transmitting and receiving unit transmitting and receiving signals and data to and from the terminal;
An interface unit for transmitting and receiving signals and networks to and from the core network; And
Receiving a resource allocation request for the inter-terminal communication from the terminal; receiving a path for the inter-terminal communication and a path between the terminal and the network simultaneously to the terminal; And a controller for transmitting an interrogation report command for connecting the terminal and receiving data for communication between the terminals from the terminal. 25. The method of claim 24,
Wherein the control unit encapsulates the received data on the basis of an Internet Protocol (IP) address of the intercepting organization and controls the encapsulation to transmit the data to the core network. An apparatus for intercepting a proxy terminal for a target terminal that performs inter-terminal communication,
A transmitting and receiving unit transmitting and receiving signals and data to and from the target terminal through the inter-terminal communication; And
Related information for the target terminal from the core network, confirms a search signal of the target terminal on the basis of the search-related information, locks-on the target terminal, And a control unit for acquiring information generated in the inter-terminal communication of the terminal. 27. The method of claim 26,
Wherein the control unit transmits an interrogation report command to the target terminal and receives an intercept report including information transmitted and received in the inter-terminal communication from the target terminal. 27. The method of claim 26,
Wherein the control unit transmits an interrogation report command to the core network and receives an intercept report including information transmitted and received in the inter-terminal communication corresponding to the intercept report command from the target terminal. 27. The method of claim 26,
The control unit receives resource information allocated by the target terminal for the inter-terminal communication from the base station, and overhears data transmitted from the target terminal to the counterpart terminal by the inter-terminal communication based on the resource information, ). 27. The method of claim 26,
Wherein the search related information is included in an eavesdrop response received from the core network in response to an eavesdrop command transmitted to the core network. 27. The method of claim 26,
Wherein the search related information is included in a proxy terminal selection message received from the core network. An eavesdropping device of a eavesdropping authority that performs eavesdropping on a target terminal that performs inter-terminal communication,
An interface unit for transmitting and receiving signals and data to and from a core network to which the target terminal belongs; And
Wherein the core network is configured to perform authentication for the core network, receive information of the target terminal from the core network, transmit an eavesdropping start command to the core network based on information of the target terminal, And a control unit for controlling to receive an intercept report including intercept data. The method according to claim 1,
Wherein the eavesdropping operation is activated according to the eavesdropping policy information stored in advance. 34. The method of claim 33,
Further comprising receiving an LI Activation Command from a network entity,
And the eavesdropping policy information is updated based on the received eavesdrop command. 34. The method of claim 33,
Wherein the information is stored even if the terminal is located in any one of a network coverage area (In Coverage) and an out-of-coverage area when the tear-off operation is activated. 34. The method of claim 33,
And the eavesdropping report is performed according to the eavesdropping policy information. 34. The method of claim 33,
Wherein the eavesdropping policy information includes at least one of an eavesdropping range, an eavesdropping time, an eavesdropping request information, and an eavesdropping report period. The method according to claim 1,
Further comprising receiving an LI Activation Command from a network entity, wherein the eavesdropping operation is activated according to the eavesdrop command. 39. The method of claim 38,
Wherein the method for performing the eavesdropping operation is different depending on where the terminal is located in the network coverage (In Coverage) and the out-of-coverage area. 39. The method of claim 38,
Wherein the terminal stores the information when the terminal moves to the Out of Coverage when the terminal is located in the In Coverage and when the terminal receives the tear start command. Way. 39. The method of claim 38,
Wherein the terminal does not store the information when the terminal is located in an out of coverage area and the terminal has received the interception start command. 39. The method of claim 38,
And the intercept report is performed according to the interception start command. 39. The method of claim 38,
Wherein the eavesdropping start command includes at least one of eavesdropping range, eavesdropping time, eavesdropping request information, and eavesdropping reporting period. The method according to claim 1,
Wherein the intercept report includes at least one of a Layer 2 ID, a Layer 3 ID and a Group ID, a D2D communication ID, search information, an intercept time, Tx information, and Rx information of the transmitting terminal and the receiving terminal Wherein the interrogation reporting method comprises the steps of: 18. The method of claim 17,
Wherein,
And activates the eavesdropping operation according to the eavesdropping policy information stored in advance. 46. The method of claim 45,
The transmitting /
Receives an LI Activation Command from a network entity,
Wherein,
And updates the eavesdropping policy information based on the received eavesdrop command. 46. The method of claim 45,
Wherein,
Wherein the information is stored in any of a network coverage area (In Coverage) and a shadow area (Out of Coverage) when the tear-off operation is activated. 46. The method of claim 45,
Wherein,
And controls to perform the intercept report according to the intercept policy information. 46. The method of claim 45,
Wherein the eavesdropping policy information includes at least one of an eavesdropping range, eavesdropping time, eavesdropping request information, and an eavesdropping report period. 18. The method of claim 17,
The transmitting /
Receives an LI Activation Command from a network entity,
Wherein,
And activates the tapping operation in accordance with the tapping start command. 51. The method of claim 50,
Wherein,
Wherein the method for performing the eavesdropping operation is different depending on the location of the network coverage area (In Coverage) and the location of the out-of-coverage area (Out of Coverage). 51. The method of claim 50,
Wherein,
When the interception report apparatus is located in the network coverage and when the interception report instruction is received, the information is stored even when the interception report apparatus moves to the Out of Coverage. Of the present invention. 51. The method of claim 50,
Wherein,
Wherein the information processing apparatus does not store the information when the interception report apparatus is located in an out of coverage area and when the interception response instruction is received. 51. The method of claim 50,
Wherein,
And performs the intercept report according to the interception start command. 51. The method of claim 50,
Wherein the eavesdropping start command includes at least one of eavesdropping range, eavesdropping time, eavesdropping request information, and eavesdropping reporting period. 18. The method of claim 17,
Wherein the intercept report includes at least one of a Layer 2 ID, a Layer 3 ID and a Group ID, a D2D communication ID, search information, an intercept time, Tx information, and Rx information of the transmitting terminal and the receiving terminal Wherein the information processing apparatus comprises: A method of intercepting a network entity for performing interception of a terminal performing inter-terminal communication,
Receiving an eavesdropping start command for the terminal from the eavesdropper;
Confirming at least one of whether or not the terminal has communication capability (D2D capability) between the terminals and whether or not the D2D operation is performed; And
And preparing the terminal for LI enable according to the result of the checking. 58. The method of claim 57,
Further comprising the step of acquiring an ID for the D2D of the terminal when the terminal is in the D2D operation. 58. The method of claim 57,
Wherein the step of preparing for tapping activation comprises:
And requesting the terminal to activate the intercept when the terminal has D2D capability. 58. The method of claim 57,
Wherein the step of preparing for tapping activation comprises:
And requesting the P-GW or the S-GW to activate the terminal if the terminal does not have the D2D capability. A network entity for performing intercepting of a terminal performing inter-terminal communication,
A receiving unit for receiving an eavesdropping start command for the terminal from the eavesdropper; And
(D2D capability) and whether or not the D2D capability is available, and controlling the preparation of LI enable of the terminal according to the result of the check. Network entity. 62. The method of claim 61,
The control unit
And when the terminal is in the D2D operation, acquires the ID for the D2D of the terminal. 62. The method of claim 61,
Further comprising a transmitter for transmitting an LI Activation Request requesting activation of an intercept to the terminal when the terminal has D2D capability. 62. The method of claim 61,
Further comprising a transmitter for transmitting an LI Activation Request for requesting the P-GW or the S-GW to activate an intercept of the terminal if the terminal does not have D2D capability. 62. The method of claim 61,
Wherein the network entity is a Mobility Management Entity (MME) or a Home Subscriber Server (HSS).

Images