CN113596836B - Single-card multi-point access and authentication method, device and system based on IMS environment - Google Patents

Abstract

The embodiment of the invention discloses an authentication method based on an IMS environment, which comprises the following steps: after receiving a first authentication request of a terminal to be accessed without configuring a SIM card, authenticating an access message data gateway of the terminal to be accessed; and after the authentication of the terminal to be accessed to the message data gateway is completed, if a second authentication request of the terminal to be accessed is received, authenticating the signaling sent by the terminal to be accessed. The invention provides a method, a device and a system for single-card multi-point access and authentication based on an IMS environment, which realize the single-card multi-point access based on an ePDG access mode by providing authentication for access equipment and enabling the access equipment to finish authentication operation, thereby enabling a user to access a plurality of authentication servers through one SIM card number.

Description

Single-card multi-point access and authentication method, device and system based on IMS environment

Technical Field

The present invention relates to the field of communications technologies, and in particular, to a method, an apparatus, and a system for single-card multi-point access and authentication based on an IMS environment.

Background

IMS, IP Multimedia Subsystem, IP multimedia system is a communication framework. Based on the IP packet, the SIP session control protocol is adopted, so that the fusion of the mobile network and the fixed network can be realized, and the method is regarded as a core technology of the next-generation operator network.

The network element included in the IMS core network comprises: one or more SIP servers, and one or more application servers AS. SIP servers are also called call/session control servers CSCFs, which handle signaling signals in IMS networks and can be divided into three types according to functionality: proxy CSCF (P-CSCF), interrogating CSCF (I-CSCF) and serving CSCF (S-CSCF); wherein the P-CSCF is the first point of attachment of the UE and the IMS network in the signaling plane, and all requests go through the P-CSCF. During the registration procedure, the system will assign a P-CSCF to a UE and the whole registration procedure will not change. The main functions are as follows: user authentication, establishing IPsec security connection, compressing/decompressing SIP message to reduce consumption of wireless transmission.

Referring to fig. 1, there are two ways in which a terminal accesses an IMS network of an operator: the first is called base station access, i.e. eNodeB access, by which conventional LTE terminals (handsets) are all accessed; the other is ePDG access, which is connected to an operator ePDG through the Internet to realize access, and is commonly used in an area where an operator base station signal cannot cover, and VoWiFi adopts access in this form. Whether the base station is accessed or the ePDG is accessed, the access authentication can be completed by relying on SIM authentication provided by an operator, but no solution for realizing single-card multi-point access exists at present.

Disclosure of Invention

Aiming at the technical problems, the invention provides a single-card multi-point access and authentication method, device and system based on an IMS environment, which realize the single-card multi-point access based on an ePDG access mode by providing authentication for access equipment and enabling the access equipment to finish authentication operation, thereby enabling a user to access a plurality of authentication servers through one SIM card number. The technical scheme is as follows:

in a first aspect, an embodiment of the present invention provides an authentication method based on an IMS environment, including the steps of:

After receiving a first authentication request of a terminal to be accessed without configuring a SIM card, authenticating an access message data gateway of the terminal to be accessed;

And after the authentication of the terminal to be accessed to the message data gateway is completed, if a second authentication request of the terminal to be accessed is received, authenticating the signaling sent by the terminal to be accessed.

In a first possible implementation manner of the first aspect of the present invention, the specific manner of performing authentication on the access of the terminal to be accessed to the packet data gateway is:

Acquiring a mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

In a second possible implementation manner of the first aspect of the present invention, the to-be-accessed terminal may further query registration information, and specific steps are as follows:

Receiving an information request carrying a mobile phone number sent by the terminal to be accessed;

inquiring and calling registration information corresponding to the mobile phone number;

and sending the registration information to the terminal to be accessed, wherein the registration information is information of a SIM card corresponding to the mobile phone number and comprises an IMS server address, a P-CSCF address and an IMPI.

In a second aspect, an embodiment of the present invention provides an IMS environment-based authentication device, including a processor, a memory, and a computer program stored in the memory and configured to be executed by the processor, the processor implementing an IMS environment-based authentication method as described above when executing the computer program.

In a third aspect, an embodiment of the present invention provides a single-card multi-point access method based on an IMS environment, including the steps of:

When an original terminal configured with an SIM card is accessed through a message data gateway, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

when an additional terminal without a SIM card is accessed through a message data gateway, a signaling channel is established after authentication is completed according to an authentication identifier obtained by an authentication server for authenticating the additional terminal to the message data gateway; and allowing the additional terminal to access after authentication is completed according to an authentication identifier obtained by the authentication server for authenticating the signaling sent by the additional terminal through the signaling channel.

In a first possible implementation manner of the third aspect of the present invention, the authentication is completed according to an authentication identifier obtained by the authentication server performing authentication on the additional terminal accessing to the packet data gateway, specifically:

When an additional terminal without a SIM card is accessed through a message data gateway, a first authentication request is sent to the additional terminal, and the additional terminal forwards the first authentication request to the authentication server;

the first authentication request is forwarded to the original terminal through the authentication server, and an authentication identification is obtained through the original terminal after authentication according to the SIM card;

The authentication identification is sent from the original terminal to the authentication server and forwarded to the additional terminal by the authentication server;

and receiving the authentication identification sent by the additional terminal to finish authentication.

In a second possible implementation manner of the third aspect of the present invention, when the original terminal is accessed through a packet data gateway, the method further includes the steps of:

And receiving and storing the equipment information sent by the original terminal to finish registration, wherein the equipment information comprises, but is not limited to, a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

In a third possible implementation manner of the third aspect of the present invention, the authentication is completed according to an authentication identifier obtained by the authentication server performing authentication on the signaling sent by the additional terminal through the signaling channel, specifically:

When receiving a registration message sent by the additional terminal, returning a second authentication request to the additional terminal, and forwarding the second authentication request to the authentication server by the additional terminal;

the second authentication request is forwarded to the original terminal through the authentication server, and an authentication identification is obtained through the original terminal after authentication according to the SIM card;

The authentication identification is sent from the original terminal to the authentication server and forwarded to the additional terminal by the authentication server;

and finishing registration according to the registration message carrying the authentication identifier sent by the additional terminal.

In a fourth aspect, an embodiment of the present invention provides a single-card multi-point access system based on an IMS environment, including an IMS network device group, an authentication device, an original terminal configured with a SIM card, and a plurality of additional terminals not configured with a SIM card;

when the original terminal is connected with the IMS network equipment group, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

when an additional terminal not equipped with a SIM card is accessed through the messaging data gateway,

The authentication device is used for carrying out authentication on the access message data gateway of the terminal to be accessed and returning an authentication identification;

the IMS network equipment group is used for authenticating according to an authentication identifier obtained by authenticating the additional terminal to the message data gateway, and establishing a signaling channel after authentication is completed;

the authentication device is used for authenticating the signaling sent by the terminal to be accessed;

And the IMS network equipment group is used for allowing the additional terminal to access after authenticating the authentication identifier obtained by authenticating the signaling sent by the additional terminal through the signaling channel.

In a first possible implementation manner of the fourth aspect of the present invention, the single-card multi-point access system based on the IMS environment further includes an information server;

The information server is configured to receive and store device information sent by the original terminal to complete registration, where the device information includes, but is not limited to, a mobile phone number, an IMS server address, a P-CSCF address, and an IMPI.

Compared with the prior art, the embodiment of the invention has the following beneficial effects:

The invention provides a single-card multi-point access and authentication method, device and system based on an IMS environment, which are beneficial to ensuring the legitimacy of a terminal to be accessed and improving the safety of an IMS network by performing authentication when the terminal to be accessed accesses a message data gateway and performing authentication on signaling sent by the terminal to be accessed. And after the terminal to be accessed passes the authentication, an authentication identifier can be obtained. If the terminal to be accessed is an original terminal configured with an SIM card, finishing authentication according to the SIM card and allowing the original terminal to be accessed when the terminal is accessed through a message data gateway; if the terminal to be accessed is an additional terminal without a SIM card, completing access authentication for accessing the message data gateway by using the authentication identification when accessing through the message data gateway, and completing SIP signaling authentication for sending signaling to the additional terminal; and allowing the additional terminal to access after the access authentication and the SIP signaling authentication are completed simultaneously. Therefore, the terminal with the SIM card and the terminal without the SIM card can be simultaneously accessed to the IMS network, the single-card multi-point access based on the ePDG access mode is realized, the user can access a plurality of authentication servers through one SIM card number, and the security can be ensured by authenticating the accessed terminal.

Drawings

Fig. 1 is a schematic diagram of a prior art terminal access to an operator IMS network;

fig. 2 is a flow chart of steps of an IMS environment-based authentication method in an embodiment of the invention;

fig. 3 is a flowchart of steps of a single-card multi-point access method based on an IMS environment in an embodiment of the invention;

Fig. 4 is a schematic diagram of a single-card multi-point access system based on an IMS environment in an embodiment of the invention.

Detailed Description

The following description of the embodiments of the present invention will be made clearly and completely with reference to the accompanying drawings, in which it is apparent that the embodiments described are only some embodiments of the present invention, but not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.

Referring to fig. 2, the present solution provides an exemplary embodiment, an authentication method based on an IMS environment, including the steps of:

S101, after receiving a first authentication request of a terminal to be accessed without a SIM card, authenticating an access message data gateway of the terminal to be accessed;

And S102, after the authentication of the terminal to be accessed to the message data gateway is completed, if a second authentication request of the terminal to be accessed is received, the authentication is carried out on the signaling sent by the terminal to be accessed.

The embodiment provides an embodiment, in the authentication method based on IMS environment, the specific way for performing authentication on the access of the terminal to be accessed to the message data gateway is as follows:

Acquiring a mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

In another embodiment, in the authentication method based on IMS environment, the specific manner of performing authentication on the access of the terminal to be accessed to the message data gateway is as follows:

acquiring a SIM card number carried by the first authentication request;

Finding a corresponding SIM card according to the SIM card number and configuring a terminal of the SIM card;

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

Based on the above embodiment, in the authentication method based on IMS environment, if the second authentication request of the terminal to be accessed is received, the authentication and authentication of the signaling sent by the terminal to be accessed is specifically:

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

The present solution also provides an embodiment, in the authentication method based on IMS environment, the terminal to be accessed may query registration information, and the specific steps are as follows:

receiving an information request carrying a mobile phone number/SIM card number sent by the terminal to be accessed;

inquiring and calling registration information corresponding to the mobile phone number/SIM card number;

And sending the registration information to the terminal to be accessed, wherein the registration information is information of a SIM card corresponding to the mobile phone number/the SIM card number, and comprises an IMS server address, a P-CSCF address and an IMPI.

The present solution provides an exemplary embodiment of an IMS environment based authentication device, comprising a processor, a memory and a computer program stored in the memory and configured to be executed by the processor, the processor implementing the IMS environment based authentication method as described above when executing the computer program.

Referring to fig. 3, the present solution provides an exemplary embodiment, a single-card multi-point access method based on an IMS environment, including the steps of:

S201, when an original terminal configured with an SIM card is accessed through a message data gateway, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

S2021, when an additional terminal which is not configured with the SIM card is accessed through a message data gateway, establishing a signaling channel after authentication is completed according to an authentication identifier obtained by an authentication server for authentication of the additional terminal accessing the message data gateway; and

S2022, after authentication is completed according to an authentication identifier obtained by the authentication server for the signaling sent by the additional terminal through the signaling channel, the additional terminal is allowed to access.

It will be appreciated that the original terminal with the SIM card configured is unique and that the number of additional terminals without the SIM card configured is not limited.

The present solution provides an embodiment, in the single-card multi-point access method based on IMS environment, the authentication is completed according to an authentication identifier obtained by the authentication server for the additional terminal to access to the message data gateway, specifically:

When an additional terminal without a SIM card is accessed through a message data gateway, a first authentication request is sent to the additional terminal, and the additional terminal forwards the first authentication request to the authentication server;

the first authentication request is forwarded to the original terminal through the authentication server, and an authentication identification is obtained through the original terminal after authentication according to the SIM card;

The authentication identification is sent from the original terminal to the authentication server and forwarded to the additional terminal by the authentication server;

and receiving the authentication identification sent by the additional terminal to finish authentication.

Wherein the authentication server performs the steps of:

Acquiring a mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

Or alternatively

Acquiring a SIM card number carried by the first authentication request;

Finding a corresponding SIM card according to the SIM card number and configuring a terminal of the SIM card;

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

Based on the above embodiment, in the single-card multi-point access method based on IMS environment, the specific manner of the authentication server performing authentication on the signaling sent by the additional terminal through the signaling channel is:

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

In addition, the authentication server may further perform the steps of:

receiving an information request carrying a mobile phone number/SIM card number sent by the terminal to be accessed;

inquiring and calling registration information corresponding to the mobile phone number/SIM card number;

And sending the registration information to the terminal to be accessed, wherein the registration information is information of a SIM card corresponding to the mobile phone number/the SIM card number, and comprises an IMS server address, a P-CSCF address and an IMPI.

The present solution provides a preferred embodiment, in the single-card multi-point access method based on IMS environment, when the original terminal accesses through a packet data gateway, the method further includes the steps of:

And receiving and storing the equipment information sent by the original terminal to finish registration, wherein the equipment information comprises, but is not limited to, a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

In the single-card multi-point access method based on the IMS environment, the authentication is completed according to the authentication identifier obtained by the authentication server for the signaling sent by the additional terminal through the signaling channel, specifically:

When receiving a registration message sent by the additional terminal, returning a second authentication request to the additional terminal, and forwarding the second authentication request to the authentication server by the additional terminal;

the second authentication request is forwarded to the original terminal through the authentication server, and an authentication identification is obtained through the original terminal after authentication according to the SIM card;

The authentication identification is sent from the original terminal to the authentication server and forwarded to the additional terminal by the authentication server;

and finishing registration according to the registration message carrying the authentication identifier sent by the additional terminal.

It can be understood that after the additional terminal completes registration, services such as IMS call, short message, etc. can be normally used.

Referring to fig. 4, the present solution provides an exemplary embodiment, a single-card multi-point access system based on an IMS environment, which includes an IMS network device group, an authentication device, an original terminal configured with a SIM card, and a plurality of additional terminals not configured with a SIM card;

when the original terminal is connected with the IMS network equipment group, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

when an additional terminal not equipped with a SIM card is accessed through the messaging data gateway,

The authentication device is used for carrying out authentication on the access message data gateway of the terminal to be accessed and returning an authentication identification;

the IMS network equipment group is used for authenticating according to an authentication identifier obtained by authenticating the additional terminal to the message data gateway, and establishing a signaling channel after authentication is completed;

the authentication device is used for authenticating the signaling sent by the terminal to be accessed;

And the IMS network equipment group is used for allowing the additional terminal to access after authenticating the authentication identifier obtained by authenticating the signaling sent by the additional terminal through the signaling channel.

It will be appreciated that the IMS network device group includes a mobility management node of the all-IP packet core network EPC, a PDN gateway, a proxy server of the IP multimedia system, an application server, and a packet data gateway that is an untrusted network access point of an IMS network.

In the single-card multi-point access system based on the IMS environment, the IMS network equipment group comprises a message data gateway;

The message data gateway is used for sending a first authentication request to an additional terminal which is not configured with the SIM card when the additional terminal is accessed through the message data gateway, and forwarding the first authentication request to the authentication server by the additional terminal;

The authentication server is used for forwarding the first authentication request to the original terminal;

The authentication server is used for receiving an authentication identifier obtained by the original terminal according to the SIM card authentication and forwarding the authentication identifier to the additional terminal;

and the message data gateway is used for receiving the authentication identification sent by the additional terminal and finishing authentication.

Wherein the authentication server performs the steps of:

Acquiring a mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

Or alternatively

Acquiring a SIM card number carried by the first authentication request;

Finding a corresponding SIM card according to the SIM card number and configuring a terminal of the SIM card;

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

Based on the above embodiment, the specific manner of the authentication server performing authentication on the signaling sent by the additional terminal through the signaling channel is:

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

In addition, the authentication server may further perform the steps of:

receiving an information request carrying a mobile phone number/SIM card number sent by the terminal to be accessed;

inquiring and calling registration information corresponding to the mobile phone number/SIM card number;

And sending the registration information to the terminal to be accessed, wherein the registration information is information of a SIM card corresponding to the mobile phone number/the SIM card number, and comprises an IMS server address, a P-CSCF address and an IMPI.

The scheme provides a preferred embodiment, the single-card multi-point access system based on the IMS environment further comprises an information server;

The information server is configured to receive and store device information sent by the original terminal to complete registration, where the device information includes, but is not limited to, a mobile phone number, an IMS server address, a P-CSCF address, and an IMPI.

The present solution provides a preferred embodiment, in the IMS environment-based single card multi-point access system, the IMS network device group includes a proxy server;

the proxy server is used for returning a second authentication request to the additional terminal when receiving the registration message sent by the additional terminal, and forwarding the second authentication request to the authentication server by the additional terminal;

the authentication server is used for forwarding the second authentication request to the original terminal;

The authentication server is used for receiving an authentication identifier obtained by the original terminal according to the SIM card authentication and forwarding the authentication identifier to the additional terminal;

And the proxy server is used for finishing registration according to the registration message carrying the authentication identifier sent by the additional terminal.

It can be understood that after the additional terminal completes registration, services such as IMS call, short message, etc. can be normally used.

The scheme also provides an embodiment, and when the scheme is realized, the following specific steps are operated:

And the UE1 is used for inserting the SIM card, and is connected to the ePDG access point through a WiFi or wired network to realize authentication access. Since the SIM card is integrated on UE1, authentication is done directly on the SIM.

And when the ePDG requests authentication, the UE2/UE3 forwards the authentication request to an authentication server, and the authentication server forwards the authentication request to the UE1.

The UE1 completes authentication on the authentication request by relying on the SIM, and returns an authentication response to the authentication server; the authentication server returns this response to the UE2.

The UE2 completes authentication by using the authentication information, and realizes ePDG access.

The UE2 sends a registration message to the P-CSCF via the ePDG, which returns 401 authentication.

The UE2 forwards the authentication request to the authentication server, which in turn forwards to the UE1.

The UE1 completes authentication depending on the SIM card and returns an authentication response to the authentication server; the authentication server returns this response to the UE2.

The UE2 sends a registration message with authentication response to the P-CSCF to finish registration.

After the UE2 completes registration, services such as IMS call and short message can be normally used.

It should be noted that the number of the substrates,

IMS (IP Multimedia Subsystem): an IP multimedia system is a communication framework. Based on IP packet message, the SIP session control protocol is adopted to realize the integration of mobile and fixed networks, which is regarded as the core technology of the next generation of operator network,

UE (User Equipment): a user equipment. Typically refers to a terminal device, such as a mobile Phone or Smart Phone, etc., that accesses the IMS network.

ENodeB (Evolved Node B): and (3) an evolution node B. In an IMS network, it is often referred to as an operator base station.

EPDG (evolved PACKET DATA GATEWAY): and an evolved message data gateway. Typically as an untrusted network access point of an IMS network (e.g., from WiFi, internet, etc. access to the IMS).

VoWiFi (Voice Over WiFi) a technique for accessing an operator network via WiFi. After the terminal is accessed, all services provided by the operator can be normally used.

IMPI (Private User ID) private identity is typically built into the SIM card for IMS access authentication.

EPC (Evolved Packet Core): an all IP packet core network.

MME: (Mobility MANAGEMENT ENTITY), mobility management node;

PGW (PDN GateWay): a PDN gateway, which is a boundary gateway of the EPC network and is connected with various PDN networks;

P-CSCF (Proxy-Call Session Control Funtion): the proxy call session control function, like a proxy server, will first arrive at this address for IMS signaling messages.

AS (Application Server) an application server.

While the foregoing is directed to the preferred embodiments of the present invention, it will be appreciated by those skilled in the art that changes and modifications may be made without departing from the principles of the invention, such changes and modifications are also intended to be within the scope of the invention.

Those skilled in the art will appreciate that implementing all or part of the above-described methods in accordance with the embodiments may be accomplished by way of a computer program stored on a computer readable storage medium, which when executed may comprise the steps of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), a random-access Memory (Random Access Memory, RAM), or the like.

Claims (7)

1. An authentication method based on an IMS environment is characterized by comprising the following steps:

After receiving a first authentication request of a terminal to be accessed without configuring a SIM card, authenticating an access message data gateway of the terminal to be accessed;

After the authentication of the terminal to be accessed to the message data gateway is completed, if a second authentication request of the terminal to be accessed is received, the authentication is carried out on the signaling sent by the terminal to be accessed;

The specific way for authenticating the access of the terminal to be accessed to the message data gateway is as follows:

Acquiring a mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

Acquiring an authentication identifier from the terminal configuring the SIM card;

Transmitting the authentication identification to the terminal to be accessed;

If the second authentication request of the terminal to be accessed is received, the authentication and authentication of the signaling sent by the terminal to be accessed is specifically:

Acquiring an authentication identifier from the terminal configuring the SIM card;

And sending the authentication identification to the terminal to be accessed.

2. The IMS environment-based authentication method according to claim 1, wherein the terminal to be accessed can also query registration information, and the specific steps are as follows:

Receiving an information request carrying a mobile phone number sent by the terminal to be accessed;

inquiring and calling registration information corresponding to the mobile phone number;

and sending the registration information to the terminal to be accessed, wherein the registration information is information of a SIM card corresponding to the mobile phone number and comprises an IMS server address, a P-CSCF address and an IMPI.

3. An IMS environment based authentication device comprising a processor, a memory and a computer program stored in the memory and configured to be executed by the processor, the processor implementing the IMS environment based authentication method according to any of claims 1 to 2 when executing the computer program.

4. The single-card multi-point access method based on the IMS environment is characterized by comprising the following steps:

When an original terminal configured with an SIM card is accessed through a message data gateway, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

When an additional terminal without a SIM card is accessed through a message data gateway, a signaling channel is established after authentication is completed according to an authentication identifier obtained by an authentication server for authenticating the additional terminal to the message data gateway; and allowing the additional terminal to access after authentication is completed according to an authentication identifier obtained by the authentication server for authenticating the signaling sent by the additional terminal through the signaling channel;

The authentication is completed according to the authentication identifier obtained by the authentication server for the additional terminal to access the message data gateway, specifically:

When an additional terminal without a SIM card is accessed through a message data gateway, a first authentication request is sent to the additional terminal, and the additional terminal forwards the first authentication request to the authentication server;

the first authentication request is forwarded to the original terminal through the authentication server, and an authentication identification is obtained through the original terminal after authentication according to the SIM card;

The authentication identification is sent from the original terminal to the authentication server and forwarded to the additional terminal by the authentication server;

receiving the authentication identification sent by the additional terminal to finish authentication;

the authentication is completed according to an authentication identifier obtained by the authentication server for authenticating the signaling sent by the additional terminal through the signaling channel, specifically:

When receiving a registration message sent by the additional terminal, returning a second authentication request to the additional terminal, and forwarding the second authentication request to the authentication server by the additional terminal;

the second authentication request is forwarded to the original terminal through the authentication server, and an authentication identification is obtained through the original terminal after authentication according to the SIM card;

The authentication identification is sent from the original terminal to the authentication server and forwarded to the additional terminal by the authentication server;

and finishing registration according to the registration message carrying the authentication identifier sent by the additional terminal.

5. The single-card multi-point access method based on IMS environment as set forth in claim 4, wherein when said original terminal is accessed through a message data gateway, further comprising the steps of:

And receiving and storing the equipment information sent by the original terminal to finish registration, wherein the equipment information comprises, but is not limited to, a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

6. The single-card multi-point access system based on the IMS environment is characterized by comprising an IMS network equipment group, an authentication device, an original terminal configured with an SIM card and a plurality of additional terminals not configured with the SIM card;

when the original terminal is connected with the IMS network equipment group, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

when an additional terminal not equipped with a SIM card is accessed through the messaging data gateway,

The authentication device is used for carrying out authentication on the message data gateway accessed by the terminal to be accessed and returning an authentication identification;

the IMS network equipment group is used for authenticating according to an authentication identifier obtained by authenticating the additional terminal to the message data gateway, and establishing a signaling channel after authentication is completed;

The authentication device is used for authenticating the signaling sent by the terminal to be accessed;

the IMS network equipment group is used for allowing the additional terminal to access after authenticating an authentication identifier obtained by authenticating the signaling sent by the additional terminal through the signaling channel;

the IMS network equipment group comprises a message data gateway;

the message data gateway is used for sending a first authentication request to the additional terminal when the additional terminal which is not configured with the SIM card is accessed through the message data gateway, and forwarding the first authentication request to the authentication server by the additional terminal;

The authentication server is used for forwarding the first authentication request to the original terminal;

The authentication server is used for receiving an authentication identifier obtained by the original terminal according to the SIM card authentication and forwarding the authentication identifier to the additional terminal;

The message data gateway is used for receiving the authentication identification sent by the additional terminal and finishing authentication;

the IMS network equipment group comprises a proxy server;

the proxy server is used for returning a second authentication request to the additional terminal when receiving the registration message sent by the additional terminal, and forwarding the second authentication request to the authentication server by the additional terminal;

the authentication server is used for forwarding the second authentication request to the original terminal;

The authentication server is used for receiving an authentication identifier obtained by the original terminal according to the SIM card authentication and forwarding the authentication identifier to the additional terminal;

And the proxy server is used for finishing registration according to the registration message carrying the authentication identifier sent by the additional terminal.

7. The IMS environment-based single card multi point access system of claim 6, further comprising an information server;

The information server is configured to receive and store device information sent by the original terminal to complete registration, where the device information includes, but is not limited to, a mobile phone number, an IMS server address, a P-CSCF address, and an IMPI.