[go: up one dir, main page]

WO2011054300A1 - Method and system for controling mtc terminal access - Google Patents

Method and system for controling mtc terminal access Download PDF

Info

Publication number
WO2011054300A1
WO2011054300A1 PCT/CN2010/078407 CN2010078407W WO2011054300A1 WO 2011054300 A1 WO2011054300 A1 WO 2011054300A1 CN 2010078407 W CN2010078407 W CN 2010078407W WO 2011054300 A1 WO2011054300 A1 WO 2011054300A1
Authority
WO
WIPO (PCT)
Prior art keywords
mtc
network element
mtc terminal
access
mobility management
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2010/078407
Other languages
French (fr)
Chinese (zh)
Inventor
李志军
王志海
施晓峰
谢宝国
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Publication of WO2011054300A1 publication Critical patent/WO2011054300A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/08Access restriction or access information delivery, e.g. discovery data delivery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/02Processing of mobility data, e.g. registration information at HLR [Home Location Register] or VLR [Visitor Location Register]; Transfer of mobility data, e.g. between HLR, VLR or external networks

Definitions

  • the present invention relates to the field of communications, and in particular to an access control method and system for a machine type communication terminal.
  • human-to-human (Human To Human, ⁇ 2 ⁇ ) communication occupies a major position.
  • ⁇ 2 ⁇ communication since both parties involved are people with behavioral control capabilities, the conversation is actually controlled by human behavior.
  • M2M Machine To Machine
  • M2M includes networked applications and monthly services with the intelligent interaction of machine terminals as the core.
  • M2M is based on intelligent machine terminals and uses multiple communication methods as access means. It can provide customers with information solutions to meet customers' information needs in monitoring, command and dispatch, data collection and measurement.
  • M2M can be used in industrial applications (eg, traffic monitoring, alarm systems, marine rescue, vending machines, paying for cars, etc.), home applications (eg, automatic meter reading, temperature control, etc.) and personal applications (eg, life detection, far End diagnosis, etc.).
  • M2M communicates with the machine
  • the communication behavior is automatically controlled, that is, the initiation of communication, the termination of communication, and the control of some access and restrictions in the communication process are automated.
  • the behavior of This behavior depends on the constraints and control of the behavior of the machine (ie, the terminal in the M2M communication) in the M2M communication.
  • the behavior of the terminal in the M2M communication is constrained by the service subscription data, and the network is based on the service subscription data in the M2M communication. The terminal is managed.
  • M2M communication also known as Machine Type Communication (MTC)
  • MTC Machine Type Communication
  • the terminal is called MTC User Equipment (MTC).
  • UE User Equipment
  • MTC server MTC Server
  • PS Packet Service
  • FIG. 1 is a schematic diagram of an architecture of an M2M communication entity accessing an Evolved Packet System (EPS).
  • EPS Evolved Packet System
  • the underlying bearer network includes: an evolved universal mobile communication system (Evolved Universal Terrestrial Radio Access Network, E-UTRAN for short), and a Mobility Management Entity (MME).
  • E-UTRAN evolved Universal Terrestrial Radio Access Network
  • MME Mobility Management Entity
  • S-GW Service Gateway
  • PDN GW Packet Data Network Gateway
  • P-GW Packet Data Network Gateway
  • HSS Home Subscriber
  • PCRF Policy and Charging Rules Function
  • the MME is responsible for the control plane, such as mobility management, non-access stratum signaling processing, and context management in user mobility management.
  • the S-GW is an access gateway device connected to E-UTRAN, in E-UTRAN and The P-GW forwards data and is responsible for buffering paging waiting data.
  • the P-GW is a border network of EPS and Packet Data Network (PDN).
  • the PCRF is a policy and charging rule function entity, which is connected to the service network protocol (Internet Protocol, IP for short) through the receiving interface Rx.
  • the service information in addition, can be connected to the gateway device in the network through the Gx interface, and is responsible for initiating the establishment of the IP bearer, ensuring the quality of service (QoS) of the service data, and performing charging control.
  • the HSS provides management of the subscriber's subscription data, and management of important context information accessed by the user to the network.
  • the MTC UE accesses the EPS network through the E-UTRAN (eNodeB), where the IP address is assigned.
  • an IP channel can be established between the MTC UE and the MTC Server to implement upper layer service communication with the MTC Server.
  • the IP channel established between the MTC UE and the MTC Server is an IP channel that is also serialized, and its physical The path passes through: eNodeB, S-GW, and P-GW.
  • eNodeB eNodeB
  • S-GW eNodeB
  • P-GW P-GW
  • M2M communication is to establish a service layer interface on the IP channel between the MTC UE and the MTC Server. Proposed by the service layer interface protocol, MTC UE and MTC Server interactive service data, while, MTC Server also achieve control of the MTC UE through the service layer protocol.
  • Figure 2 depicts the flow of M2M communication in this way, as shown in Figure 2, in which MTC
  • the UE accesses through the PS network, and establishing a communication connection with the MTC Server mainly includes the following steps: 5201.
  • the MTC UE initiates an attach request to the MME.
  • the MME receives the foregoing attach request, and sends a location update request to the HSS.
  • the HSS downloads subscription data of the MTC UE to the MME, where the subscription data part for the M2M access control is included.
  • the MME sends the SGW/PGW Send a create request, request SGW/PGW to be MTC
  • the UE creates a suitable payload
  • the PGW needs to obtain policy data from the PCC to establish a suitable bearer according to the PGW, the PGW and the PCC interact to obtain a PCC policy.
  • the PGW creates a bearer for the MTC UE, and returns a create response.
  • S206 The MME sends an attach response to the MTC UE.
  • the MTC UE is attached to the PS network, is assigned an IP address, and establishes a suitable payload.
  • the registration of the business layer can be initiated to the MTC Server.
  • the MTC UE initiates registration of the service layer to the MTC Server;
  • the MTC Server accepts the registration of the MTC UE, and returns a registration response.
  • the MTC UE accesses the PS network and establishes an IP connection with the MTC Server, so that service layer communication between the subsequent and the MTC Server can be realized.
  • the service layer needs to restrict access to the MTC terminal device, that is, it is allowed to access only under specified conditions, and the access of the MTC terminal device is denied if the condition is not allowed.
  • the MTC terminal equipment is limited to use only the specific IMSI and IMEI to access the network, it can be judged when accessing the network. If the IMSI and the IMEI pair do not match, the MTC device or the SIM card is stolen and the access of the MTC terminal device is denied. Or, in some M2M services, the MTC terminal is applied in a fixed location area beyond which the area will not be allowed to be used.
  • IMSI International Mobile Subscriber Identification Number
  • IMEI International Mobile Equipment Identity
  • the MTC terminal device it is necessary to limit the access location of the MTC terminal device. If the access is in an unacceptable location area, or is moved to an unallowed location area after access, it is necessary to restrict access to the system. Or, in some M2M services, the MTC terminal is restricted from accessing the system within a specified time, and access to the system will not be allowed beyond this time. Therefore, the access time of the MTC terminal device is limited. If the access time is within an unallowable time period, or the access time exceeds the allowed time, it is required to restrict access to the system.
  • the MME controls which requires the MME to perform various checks and checks for various management requirements.
  • the present invention has been made in view of the problem in the prior art that an access control of an MTC terminal by an access layer is required to cause an increase in the complexity of the core network.
  • the main object of the present invention is to provide an improved M2M terminal.
  • the access control scheme to solve at least one of the above problems.
  • an access control method of an MTC terminal is provided.
  • the access control method of the MTC terminal according to the present invention includes: the mobility management network element reports to the access control network element information currently attached to the network or the MTC terminal currently attached to the network; the access control network element resides in the MTC terminal The information judgment does not allow the MTC terminal to access, and sends an indication to the mobility management network element to reject the access of the MTC terminal; the mobility management network element receives the indication, and refuses to access the network by the MTC terminal according to the indication.
  • an access control system for an MTC terminal is provided.
  • the access control system of the MTC terminal according to the present invention includes: a user subscription data storage, a mobility management network element, and an access control network element.
  • the user is subscribed to the data storage for storing the subscription data of the MTC terminal in the system;
  • the mobility management network element is connected to the user's subscription data storage, and is configured to receive the current request sent by the user's subscription data storage and attach to the network or is currently attached to the network.
  • the subscription data of the MTC terminal of the network, and the information of the MTC terminal is provided to the access control network element;
  • the access control network element is connected to the mobility management network element, and is used to determine whether the MTC terminal is allowed according to the information of the MTC terminal. And accessing, and not allowing the MTC terminal to access, sending an indication to the mobility management network element to reject the access of the MTC terminal, so that the mobility management network element rejects the MTC terminal from accessing the network.
  • the access control network element of the service layer obtains the information of the MTC terminal through the mobility management network element, and determines whether to allow the MTC terminal to access according to the information of the MTC terminal, so that the MTC terminal can be connected through the service layer.
  • the control is implemented to solve the problem that the complexity of the core network is increased due to the access control of the access layer to the MTC terminal in the prior art, thereby reducing the cost of network construction.
  • FIG. 1 is a schematic diagram of an architecture of an M2M communication entity accessing an EPS in a related art
  • FIG. 2 is a schematic diagram of a related art in which an MTC UE accesses through a PS network and establishes a communication connection with an MTC server
  • 3 is a schematic structural diagram of an access control system of an MTC UE according to an embodiment of the present invention
  • FIG. 4 is a structural diagram of an MTC UE accessing an M2M communication through an EPS system according to an embodiment of the present invention
  • the MTC UE of the embodiment of the present invention accesses the architecture diagram of the M2M communication through the GPRS system
  • FIG. 6 is a flowchart of the access control method of the MTC terminal according to the embodiment of the present invention
  • FIG. 7 is a flowchart of information about an MME actively transmitting to an MTC UE on an MTC Server according to an embodiment of the present invention
  • FIG. 8 is another MME actively reporting an MTC UE to an MTC Server according to an embodiment of the present invention
  • FIG. 9 is a flowchart of the MTC Server sending an inquiry request to the MME to obtain the information of the MTC UE by using the MTC GW according to the embodiment of the present invention
  • FIG. 10 is a flowchart of the MTC server subscribing the MTC UE to the MME according to the embodiment of the present invention
  • FIG. 11 is a method for acquiring an MTC UE, an address of an MTC Server that is a monthly service of the MTC UE, and an MTC UE for the MTC GW in the embodiment of the present invention
  • FIG. 10 is a flowchart of the MTC Server sending an inquiry request to the MME to obtain the information of the MTC UE by using the MTC GW according to the embodiment of the present invention
  • FIG. 10 is a flowchart of the MTC server subscribing the MTC UE to
  • FIG. 12 is a flowchart of the method for acquiring the corresponding relationship by the MTC GW in the embodiment of the present invention
  • FIG. 13 is a third method for using the MTC GW in the embodiment of the present invention.
  • FIG. 14 is a flowchart of Embodiment 1 of the method according to the present invention;
  • FIG. 15 is a flowchart of Embodiment 2 of the method according to the present invention.
  • the embodiment of the present invention provides a flexible access control requirement for the MTC terminal to access the network, and at the same time minimizes the complex transformation of the core network caused by the support of the access restriction service. An improved access control scheme for an MTC terminal.
  • the MTC Server may not be a network entity managed by an operator, and may be deployed in a core network. Therefore, in consideration of access security when the MTC Server accesses the core network, the present invention is implemented.
  • the MTC gateway MTC GW
  • MTC GW MTC gateway
  • the MTC gateway is added on the core network side, so that all MTC Server accesses pass through the MTC gateway, and the MTC gateway can be hidden by the internal network topology structure, and the MTC is hidden.
  • the server accesses the authentication and other means to implement the security guarantee for the MTC Server to access the core network.
  • the information of the underlying access layer of the MTC terminal is obtained by the service layer (the MTC server or the newly added MTC gateway) through the mobility management network element, and then the obtained MTC is obtained.
  • the information of the terminal controls the access of the MTC terminal.
  • an access control system of an MTC terminal mainly includes: a user subscription data storage 1.
  • the above various network elements are described below.
  • the user subscription data storage 1 is configured to store the subscription data of the MTC terminal in the system; the mobility management network element 3 is connected to the user subscription data storage 1 and is configured to receive the current request sent by the user subscription data storage 1 to be attached to The network or the subscription data of the MTC terminal currently attached to the network, and provides the information of the MTC terminal to the access control network element 5; in a specific application, when the MTC UE requests to attach to the network, the MTC UE ⁇ ! The mobility management network element 3 sends an attach request, and after receiving the attach request of the MTC UE, the mobility management network element 3 sends a location update request to the user subscription data storage 1, and the user subscription data storage 1 receives the location update request.
  • the subscription data of the MTC UE is delivered to the mobility management network element 3, and the mobility management network element 3 receives and stores the subscription data.
  • the user subscription data storage 1 sends the updated subscription data of the MTC UE to the mobility management network element 3.
  • the access control network element 5 is connected to the mobility management network element 3, and is configured to determine whether to allow the MTC terminal to access according to the information of the MTC terminal provided by the mobility management network element 3, and not allow the MTC terminal to be connected.
  • an indication to reject the access of the MTC terminal is sent to the mobility management network element 3, so that the mobility management network element 3 rejects the access of the MTC terminal to the network.
  • the mobility management network element 3 rejects the attach request of the MTC terminal, and returns a reject attachment response to the MTC terminal; if the current MTC terminal has When attached to the network, the mobility management network element 3 initiates a detach process to attach the MTC terminal.
  • the access control network element 5 may be an MTC gateway newly added on the core network side in the embodiment of the present invention, where the MTC gateway is connected between the MTC server and the mobility management network element, except for the MTC gateway. And performing security verification on the MTC server according to a predetermined condition of the locally stored MTC UE access or a predetermined condition of the MTC UE access obtained from the core network, and an MTC gateway may perform Serving multiple MTC servers.
  • the access control network element 5 may also be an MTC server, and the MTC server controls access of the MTC terminal according to a predetermined condition of the locally stored MTC UE access or a predetermined condition of the MTC UE access obtained from the core network.
  • an MTC gateway is connected between the MTC server and the mobility management network element 3.
  • the MTC gateway is mainly used to forward data between the MTC server and the mobility management network element 3, and may also need to perform necessary protocol conversion. Working, and, the MTC gateway also performs security verification on the MTC server.
  • the MTC UE accesses the E-UTRAN network
  • the user subscription data storage 1 is an HSS
  • the mobility management network element 3 is an MME.
  • the MTC UE accesses the GERAN/UTRAN network
  • the user subscription data storage 1 is The HLR
  • the mobility management network element 3 is an SGSN.
  • an MTC UE uses an EPS system to implement access (that is, an MTC UE accesses an E-UTRAN network) as an example.
  • FIG. 4 is a structural diagram of the MTC UE accessing the M2M communication through the EPS system in the embodiment.
  • the connection is such that the MTC server obtains information of the underlying access layer of the MTC UE to determine the behavior of the MTC UE.
  • the MTC GW is deployed in the core network.
  • the MTC server may be deployed outside the carrier's core network or in the core network.
  • An MTC GW can work on multiple MTC Servers on a monthly basis.
  • the MTC GW and the MME establish an interface.
  • the interface is referred to as an M2M-MME.
  • the MTC GW can query the MME for information about a certain MTC UE, for example, the subscription data of the MTC UE and the current bit of the MTC UE.
  • the area i or the current state of the MTC UE, etc.; or, through the interface, the MTC GW may subscribe to the MME for an access layer load event associated with a certain MTC UE, for example, the MTC UE attaches to the PS network, the MTC UE The MME is detached from the PS network, and the MTC UE has an event such as a location move in the PS network. Alternatively, the MME can actively notify the MTC GW of the event of the underlying access layer associated with a certain MTC UE.
  • the MTC GW may obtain the reservation according to the MTC UE stored in the MTC GW or the subscription of the MTC UE obtained from the core network.
  • the condition determines whether the access of the MTC UE is allowed. If the MTC UE is not allowed to access, the MME sends a reject message to reject the access of the MTC UE.
  • the MTC GW acts as an intermediary (similar to the proxy) for communication between the MTC Server and the MME, and accepts the query of the MTC UE information performed by the MTC Server, and the subscription of the access layer event related to the MTC UE, Forward the request to the MME.
  • the MTC GW Before forwarding the request, the MTC GW needs to perform security detection on the MTC Server. If the detection passes, the request is forwarded. In the process of forwarding the request, the MTC GW may need to perform necessary protocol conversion work. At the same time, the MTC GW forwards the information of the MTC UE sent by the MME to the MTC Server. And after obtaining the information about the MTC UE, the MTC server may determine whether to allow the MTC UE according to the predetermined condition of the locally stored MTC UE access or the predetermined condition of the MTC UE access obtained from the core network. In the case of determining that the MTC UE is not allowed to access, the MTC GW sends a reject message to the MME to reject the access of the MTC UE.
  • the MTC GW can also establish an interface with the HSS.
  • the interface is referred to as an M2M-HSS.
  • the MTC GW can query the subscription data of the MTC UE from the HSS; or, through the interface, the MTC GW can query from the HSS to the address of the MME allocated for the MTC UE.
  • the MTC GW may obtain the subscription data of the MTC UE by using the M2M-MME interface with the MME.
  • the MTC GW can actively query the MME for the subscription data of the MTC UE, and the MME can also actively send the subscription data of the MTC UE to the MTC GW.
  • System embodiment two This embodiment is described by taking an example in which an MTC UE accesses a GERAN/UTRAN network.
  • FIG. 5 is a structural diagram of the M2M communication in the METH UE through the GERAN/UTRAN network access in the embodiment. As shown in FIG. 5, the embodiment is basically similar to the system embodiment 1 described above, except that the GERAN/UTRAN network is used.
  • the SGSN in the network is equivalent to the MME in the E-UTRAN network, and is used for the access control and mobility management functions of the PS domain
  • the Gateway GPRS Support Node (GGSN) in the GERAN/UTRAN network is equivalent to the E. - SGW and PGW in the UTRAN network
  • the HLR in GERAN/UTRAN is equivalent to the HSS in the E-UTRAN network.
  • the functions of the specific connections and the functions of the network elements are similar to those of the above-mentioned system embodiment 1, and will not be described again.
  • an access control method of an MTC UE mainly includes the following steps: Step S601 - Step S605): Step S601: The mobility management network element reports to the access control network element information currently attached to the network or the MTC terminal currently attached to the network; Step S603: The access control network element resides in the MTC terminal The information judgment does not allow the MTC terminal to access, and sends an indication to the mobility management network element to reject the access of the MTC terminal. Step S605: The mobility management network element receives the indication, and according to the indication, rejects the MTC terminal from accessing the network. The processing of each step described above will be further described below. (1) Step S601 In the specific implementation process, the information of the mobility management network element to the MTC server on the MTC server includes, but is not limited to, the following three methods:
  • the mobility management network element actively reports to the access control network element.
  • the mobility management network element may actively notify the access control network element when an access layer event of an MTC UE occurs, or the mobility management network element actively sends an access control network element when the MTC UE requests attachment. The information of the MTC UE is reported.
  • the access control network element queries the mobility management network element.
  • the access control network element may send a query request for querying the information of the MTC UE to the mobility management network element, and the mobility management network element receives the access control network.
  • the information of the MTC UE corresponding to the access control network element is 4 ⁇ .
  • the access control network element may subscribe to the mobility management network element for an access layer event related to a certain MTC UE, mobility.
  • the management network element actively informs the access control network element when the subscribed access layer event occurs, and the notification includes the information of the corresponding MTC UE.
  • the foregoing access control network element may be an MTC gateway or an MTC server. The following uses the MTC server as an example to describe three methods for the access control network element to acquire the information of the MTC UE. ( ⁇ )
  • the mobility management network element actively sends the access control network element.
  • the mobility management network element may actively send an event notification to the MTC gateway when an access layer event of an MTC UE occurs, or mobility.
  • the management network element may actively report the information of the MTC UE to the MTC gateway; after receiving the event notification or the reported information of the MTC UE, the MTC gateway notifies or reports the MTC UE information of the event.
  • the mobility management network element actively performs the information of the MTC UE, the mobility management network element actively sends the MTC GW to the MTC server according to the indication carried in the MTC UE obtained from the user subscription data storage. MTC UE information.
  • the mobility management network element obtains the subscription data of the MTC UE from the user subscription data storage, but is not limited to: indicating the indication information that the mobility management network element reports the MTC UE to the MTC server (specifically, indicating the timing including the reporting, Information such as reported parameters), information of the MTC Server serving the MTC UE.
  • the mobility management network element may actively send the MTC UE information to the MTC server through the MTC GW when the MTC UE initiates the attach request, or may be in the MTC UE after the MTC UE attaches to the network. When the relevant access layer event occurs, it actively passes the MTC.
  • the GW notifies the event notification on the MTC Server, and carries the current information of the MTC UE in the event notification.
  • the following takes the mobility management network element as the MME as an example, and describes the flow of reporting the MME to the MTC Server at these two timings.
  • FIG. 7 is that, in this case, the MME actively sends the information of the MTC UE to the MTC GW through the MTC GW.
  • the information that the MME actively sends to the MTC server through the MTC GW mainly includes the following steps:
  • the MTC UE initiates an attach request to the MME.
  • S702 The MME sends a location update request to the HSS.
  • the HSS returns a location update response to the MME, where the update response carries the subscription data of the MTC UE, where the subscription data includes: indication information indicating that the MME reports the information of the MTC UE to the MTC server, and is the monthly information of the MTC UE.
  • Information about the MTC Server (specifically, the information may be the IP address of the MTC Server, or may be the information such as the monthly service identifier of the MTC Server);
  • the MME parses the address of the MTC server according to the information of the MTC server serving the MTC UE.
  • the MME sends the information of the foregoing MTC UE to the MTC GW, and the information of the MTC server that is parsed in the step S704 is further included in the information of the MME to the MTC GW.
  • the information of the MTC UE is used by the MTC GW. Send to the MTC corresponding to the above address
  • FIG. 8 is a flow of the information that the MME actively sends the MTC UE to the MTC Server through the MTC GW.
  • the information that the MME actively sends to the MTC server through the MTC GW mainly includes the following steps:
  • the MTC UE is attached to the PS network.
  • the MME obtains the subscription data of the MTC UE from the HSS, including the subscription data for the M2M service part.
  • the M2M service subscription data includes an address of the MTC server serving the MTC UE (which may also be an identifier information of the MTC server), and an indication that the MME is requested to actively forward to the MTC Server a predetermined event related to the MTC UE.
  • the requesting MME sends an event notification to the MTC server when the MTC UE generates a predetermined event, where the predetermined event is an access layer event related to the MTC UE, specifically, the foregoing predetermined event includes but is not limited to one of the following Or any combination thereof:
  • the subscription data of the MTC UE changes. After the HSS changes the subscription data of the MTC UE, the HSS needs to re-issue the new subscription data to the MME. After receiving the new subscription data, the MME may notify the MTC Server that the subscription data has Change, or directly send new subscription data to the MTC Server;
  • the MTC UE has a large state change; for example, the MTC UE is attached to the network, the MTC UE is detached from the network, the MTC UE is changed from the connected state to the idle state, and the MTC UE is changed from the idle state to the connected state;
  • the network change of the MTC UE for example, the MTC UE has a handover of the base station and the network.
  • the MTC UE sends a handover message to the MME, so that the MME can capture the network change event of the MTC.
  • the relationship between the IMSI and the IMEI used by the MTC UE changes; for example, the pairing relationship between the IMSI and the IMEI that the MTC UE should use is specified in the subscription data, but the current MTC UE replaces the terminal, such as changing the SIM card to the non- On the MTC terminal.
  • the MTC Server needs to obtain the IMSI and IMEI pairing used by the MTC UE.
  • the foregoing predetermined event that is, an access layer event related to the MTC UE occurs
  • the MME actively notifies the MTC GW of the occurrence of the predetermined event.
  • the event notification sent by the MME to the MTC GW includes current information of the MTC UE. 5804.
  • the MTC GW obtains, according to the identifier of the pre-acquired MTC UE, the address of the mobility management network element allocated for the MTC UE, and the address of the MTC server that is used for the MTC UE, to obtain the service for the MTC UE.
  • the address of the MTC Server is accessed, according to the identifier of the pre-acquired MTC UE, the address of the mobility management network element allocated for the MTC UE, and the address of the MTC server that is used for the MTC UE, to obtain the service for the MTC UE.
  • the address of the MTC Server
  • the MTC GW sends the above event notification to the MTC Server.
  • the access layer event of S802 may occur in step S801.
  • the MME should notify the MTC Server when the MTC UE attaches to the network. Send an event notification.
  • the information of the MME to the MTC UE on the MTC Server includes, but is not limited to, one of the following or any combination thereof: A) the current service of the MTC UE obtained by the MME from the HSS. Contract data
  • the UE is carried in the attach message sent when the UE is attached to the network, and the IMEI may be provided by the MTC UE to the network when it is attached, or may be obtained by the network to the MTC UE according to the need;
  • C) The MTC UE is in the MME.
  • the context information for example, the current location area i of the MTC UE and/or the current state of the MTC UE; wherein, the current location area of the MTC UE may be: a Tracking Area (TA) of the MTC UE, The current Cell cell of the MTC UE, and the current state of the MTC UE may be one of an attached state, a detached state, a connected state, an idle state, and the like.
  • D) the current mobility event of the MTC UE for example, the MTC UE is attached to the network,
  • the MTC UE detaches from the network, the MTC UE location update, the MTC UE base station handover, the MTC UE network handover, and the like.
  • the access control network element queries the mobility management network element specifically.
  • the MTC Server sends a query request to the mobility management network element through the MTC GW, requesting to query the information of the MTC UE, and moving.
  • the MTU GW reports the information of the MTC UE to the MTC GW, and the MTC GW sends the MTC UE information to the MTC Server.
  • the MTC GW needs to perform security verification on the MTC server. Specifically, the MTC GW can obtain information about the MTC Server that the core network is allowed to access.
  • the service identifier, the IP address, and the like determining whether the MTC server is within the range of the MTC server that is allowed to access, and if yes, continuing to process the query request, according to the identifier of the pre-acquired MTC UE, being the MTC UE Obtaining, by the address of the allocated mobility management network element and the address of the MTC server address of the MTC UE, obtaining the address of the mobility management network element allocated for the MTC UE, and forwarding the query request to the Mobility management network element; otherwise, the MTC GW rejects the query request.
  • the E-UTARN network is taken as an example. FIG.
  • FIG. 9 is a flowchart of the MTC Server sending an inquiry request to the MME through the MTC GW to obtain information about the access layer of the MTC UE.
  • the MTC Server passes the MTC GW.
  • Sending a query request to the MME, and obtaining the information of the MTC UE mainly includes the following steps:
  • the MTC UE is attached to the PS network
  • the MTC UE initiates a service layer registration with the MTC Server; S903, after the MTC UE registers with the MTC Server, if the MTC Server is for the purpose of service control, the MTC UE determines that the current information of the MTC UE needs to be queried (mainly refers to the access layer information). In this step, the MTC Server may need to obtain information about the MTC UE for a variety of possible purposes, for example:
  • the MTC Server wants to know the IMSI and IMEI conditions used by the MTC UE to check whether the SIM card provided by the MTC UE is stolen, that is, whether the IMSI or IMEI binding relationship is normal; or
  • the MTC Server needs to know the current location information (such as the TA area, the cell cell, and the like) of the MTC UE to determine whether the MTC UE accesses in the location area that is not allowed, or moves to the location area that is not allowed; S904, The MTC Server sends a query request to the MTC GW to query the information of the MTC UE, where the query request may carry the identifier of the MTC UE and the address of the MTC Server;
  • the current location information such as the TA area, the cell cell, and the like
  • the MTC GW receives the foregoing query request, performs legal authentication on the MTC Server, and determines that the MTC Server is legal. 5906.
  • the MTC GW acquires, according to the identifier of the pre-acquired MTC UE, the address of the MME allocated to the MTC UE, and the address of the MTC server that is used for the MTC UE, the MME allocated for the MTC UE. address;
  • the MTC GW forwards the foregoing query request to the MME; S908, the MME returns the current information of the MTC UE to the MTC GW according to the current context of the MTC UE, and the MTC GW sends the current information of the MTC UE to the MTC Server.
  • the MTC Server obtains the current information of the MTC UE from the MME through the MTC GW, so that the current behavior of the MTC UE can be determined according to the current information of the MTC UE, and the behavior of the MTC UE can be further controlled.
  • the information of the MTC UE requested by the MTC Server to the MME includes, but is not limited to, one of the following or any combination thereof:
  • IMSI IMSI, IMEI used by the MTC UE; specifically, the IMSI used by the MTC UE is required to be carried in the attach message when the MTC UE attaches to the network, and the MME can obtain the IMSI used by the MTC UE from the attach message, and The IMEI may be provided to the network by the MTC UE when it is attached, or may be obtained by the network querying the MTC UE according to the need.
  • Context information of the MTC UE on the MME for example, the current location area of the MTC UE (the location areas may be: TA area, Cell) and/or the current status of the MTC UE (eg:
  • the MTC UE is currently attached, connected, idle, etc.).
  • the access control network element subscribes to the relevant event port of the MTC UE to the mobility management network element. Due to the need of service management, the MTC Server needs to know the event sent by the underlying access layer in time (for example, the MTC UE attaches and detaches from the network) , location change, etc., and make corresponding decisions based on these events to control the behavior of the MTC UE.
  • the MTC Server can subscribe to these access layer events to the mobility management network element through the MTC GW, and the mobility management network element
  • the MTC GW reports the event notification to the MTC server in time, and the event notification carries the current information of the MTC UE.
  • the processing of the MTC Server is basically the same as the processing of the above (B).
  • the MTC Server sends a query request for the relevant event of the subscription to the MTC UE to the MTC GW, the MTC GW
  • the MTC server needs to perform security verification. After the authentication is valid, the query request is forwarded to the mobility management network element allocated to the MTC UE.
  • the specific method is the same as the above, and is not mentioned here.
  • the MTC GW before forwarding, the MTC GW also needs to obtain the address of the mobility management network element allocated for the MTC UE.
  • the difference from the above (B) is that the query request sent by the MTC Server to the mobility management network element through the MTC GW is related to the event for subscribing to the MTC UE, that is, requesting the mobility management network element to access in connection with the MTC UE.
  • the MTC GW notifies the event to the MTC Server.
  • FIG. 10 is a flow chart of the MTC server subscribing to the MME to obtain the information about the MTC UE by using the E-UTRAN network as an example.
  • the information about obtaining the MTC UE mainly includes the following steps:
  • the MTC UE is attached to the PS network
  • the MTC UE initiates a service layer registration with the MTC Server; S103, after the MTC UE registers with the MTC Server, according to the needs of the service management, the MTC
  • the Server needs to know the events related to the MTC UE that occur in the underlying access layer in time, and therefore, it is determined that the MME subscribes to these events;
  • the MTC Server sends a query request for the access layer event related to the MTC UE to the MTC GW. It is clear that the MTC Server can subscribe to only one or one type of access layer event at a time, or can subscribe to multiple or more at a time. Class access layer events.
  • the MTC GW receives the above query request, and performs a security-risk certificate on the MTC Server, and the insurance card is legal;
  • the MTC GW obtains the MME allocated for the MTC UE according to the correspondence between the identifier of the MTC UE, the address of the MME allocated for the MTC UE, and the address of the MTC server for the MTC UE. Address
  • the MTC GW forwards the foregoing query request to the MME, and subscribes to the MME for an access layer event related to the MTC UE. 5108, an access layer event corresponding to the subscription subscribed by the MTC server occurs;
  • the MME actively sends an event notification to the MTC GW to the event of the access layer event, where the event notification carries the current related information of the MTC UE.
  • the MTC GW sends the received event notification to the MTC Server.
  • the access layer event related to the MTC UE subscribed by the MTC server may be one of the following events or thousands:
  • the state change of the MTC UE for example, the MTC UE is attached to the network, detached from the network, changed from the connected state to the idle state, changed from the idle state to the connected state, and the like;
  • the MME sends a handover message or the like.
  • the methods for obtaining the MTC UE described in (B) and (C) above may be used alone or in combination.
  • the information of the MTC UE that the MTC Server requests to query in the step S aggregation S903 may further include: D) a mobility event that occurs in the MTC UE, for example, the MTC UE is attached to Network, MTC
  • the UE detaches from the network, the MTC UE location update, the MTC UE base station handover, the MTC UE network handover, and the like. Then, when the event occurs, the MME sends an event notification to the MTC server through the MTC GW, so that the MTC server knows the current event of the MTC UE and the current information of the MTC UE.
  • the MTC Server may further perform the step S103 in FIG. 10 and the subsequent steps after acquiring the current information of the MTC UE after step S908 of FIG. 9, or in the above step S902. Then, step S903 and step S103 are simultaneously performed to subscribe to the related events of the MTC UE, so that when these events occur, the event notifications are notified by the event notification, and the current information of the MTC UE is further acquired.
  • the MTC Server may obtain the information of the MTC UE from the MME through the MTC GW, and may be the subscription data of the MTC UE, the current state of the MTC UE, the location area information of the MTC UE, and the like.
  • the method for obtaining the information of the MTC UE may be that the MTC server actively queries the MME through the MTC GW, or after the MTC server subscribes the related event to the MME through the MTC GW, the MME notifies the MTC Server when the event occurs, or may be The MME actively notifies the access layer event to the MTC Server through the MTC GW according to the indication in the subscription data of the MTC UE.
  • the MTC Server can further determine the behavior of the MTC UE by using the information, and make a decision according to the service to control the behavior of the MTC UE (for example, when the MTC UE is in the non- When the access time is allowed, the MTC Server may request to attach the MTC UE; when the MTC UE moves to the non-allowed area, the MTC Server may request to attach the MTC UE, etc.).
  • the MTC GW in order to implement data interaction between the MTC Server and the mobility management network element, the MTC GW needs to acquire and save the identifier of the MTC UE, the address of the mobility management network element allocated for the MTC UE, and the MTC UE.
  • the MTC Server obtains the corresponding relationship, including but not limited to the following three methods: Method 1: The MTC Server sends the carried message to the MTC GW for the MTC UE.
  • the registration notification message of the identification information of the assigned mobility management network element specifically, after the MTC UE sends the registration request to the MTC Server after the MTC UE is attached to the network, the mobility request is allocated to the MTC UE in the registration request.
  • the MTC Server After receiving the registration request, the MTC Server sends a registration notification message to the MTC GW, where the message carries the identification information of the mobility management network element allocated for the MTC UE, and the registration notification message is used.
  • the MTC GW can obtain the above correspondence.
  • the MTC UE may carry the Global Unique Temporary Identity (GUTI) of the MTC UE in the registration message sent to the MTC Server, and the GUTI includes the MTC UE.
  • GUI Global Unique Temporary Identity
  • the information is sent by the MTC Server to the MTC GW in the registration notification message.
  • the MTC GW can obtain the address of the MME allocated to the MTC UE by parsing the GUTI, so that the corresponding relationship can be obtained.
  • Method 2 is an MTC UE.
  • the allocated mobility management network element and the MTC server for the MTC UE are actively notified to the MTC GW of their respective addresses, and the MTC GW establishes the corresponding relationship after receiving the information of the two on the MTC GW;
  • Method 3 MTC The GW obtains the address of the mobility management network element allocated for the MTC UE from the user subscription data storage through the interface between the user and the data storage of the user, and acquires the MTC Server actively notified by the MTC server of the MTC UE. Relevant information, thereby establishing the above correspondence.
  • the following takes the E-UTRAN network as an example to describe the method for obtaining the addresses of the above three mobility management network elements.
  • the MTC GW obtains the corresponding relationship mainly including the following steps:
  • the MTC UE is attached to the PS network, and the MTC UE is allocated a GUTI in the attaching process, and the GUTI is included in the attach response and sent to the MTC UE.
  • the GUTI includes The ID information of the MME allocated by the MTC UE can be addressed to the MME allocated for the MTC UE according to the MME ID.
  • the MTC UE After the access to the PS network, the MTC UE initiates application layer registration to the MTC server, and carries the GUTI information in the registration message.
  • the MTC Server After receiving the registration request of the MTC UE, the MTC Server sends a registration notification message to the MTC GW.
  • the registration notification message carries: MTC UE information, MTC Server information,
  • the information of the MTC UE includes: an IMSI of the MTC UE and/or an IP address of the MTC UE; the information of the MTC Server includes: a monthly service identifier of the MTC Server and/or an IP address of the MTC Server. 5114.
  • the MTC GW parses the address of the MME allocated by the MTC UE according to the GUTI information carried in the registration notification message. Meanwhile, the MTC GW locally saves the identifier of the MTC UE and the MTC Server of the MTC UE. The correspondence between the address and the address of the MME allocated for the MTC UE, so that the association of the three can be achieved.
  • FIG. 12 illustrates a process in which the MTC GW uses the method MTC UE, the address of the MTC server for the MTC UE, and the address of the MME allocated for the MTC UE, as shown in FIG.
  • the MTC GW obtains the corresponding relationship mainly including the following steps:
  • the MTC UE sends an attach request to the network, where the MTC UE sends an attach request to the MME.
  • the MME sends a location update request to the HSS.
  • S213 The HSS sends a location update response to the MME.
  • the HSS sends the subscription data of the MTC UE to the MME, where the M2M subscription data is included in the M2M subscription data.
  • the information of the MTC server serving the MTC UE (which may be a domain name or an IP address), according to which the address of the corresponding MTC Server can be resolved.
  • the MME instructs the SGW/PGW to create a suitable payload for the MTC UE.
  • the MME sends an attach response to the MTC UE.
  • MTC GW MME sends a notification message to inform the MME address is assigned MTC UE; and, alternatively, may MME ⁇ 1 month MTC UE that works to the MTC Server address is also included in the notification message, so that The MTC GW can obtain the correspondence between the MTC UE, the address of the MTC server for the MTC UE, and the address of the MME allocated for the MTC UE by using the notification message.
  • the foregoing notification message may be an independent notification message, or may exist in other messages sent by the MME to the MTC GW (for example, when the MTC UE is attached, the MME sends an attach event to the MTC GW).
  • the following information is included in the notification message: the identifier information of the MTC UE (which may include: the identifier of the MTC UE (such as the IMSI) and/or the IP address of the MTC UE) and the identifier information of the MME (specifically, the identifier of the MME may be included: / or MME's IP address ;).
  • the MTC GW can learn the address information of the MME allocated for the MTC UE according to the correspondence between the identifier information of the MTC UE and the MME carried in the notification message.
  • the MTC UE initiates registration of the service layer to the MTC Server;
  • the MTC Server sends a registration notification message to the MTC GW.
  • the parameters that the MTC Server carries in the notification message include: the identifier information of the MTC UE and the MTC Server.
  • the identifier information of the MTC UE may include: The identifier of the MTC Server (for example, IMSI) and/or the IP address of the MTC server may include: a monthly service identifier and/or an IP address of the MTC Server.
  • the MTC GW After receiving the registration notification message, the MTC GW can obtain the address of the MTC server served by the MTC UE and the address of the MME allocated to the MTC UE, thereby establishing the identifier of the MTC UE and the MTC of the MTC UE.
  • the step S216 may be sent after the step S215, or may be sent after the step S213, and the specific step is performed after the step, which has the same effect, and is not limited in the present invention. .
  • the MTC GW obtains the corresponding relationship mainly includes the following steps: S311: The MTC UE is attached to the PS network. In the process of attaching the MTC UE to the network, the address of the MME allocated for the MTC UE is saved in the HSS.
  • the MTC UE initiates a service layer registration with the MTC Server.
  • the MTC Server sends a registration notification message to the MTC GW.
  • the registration notification message carries the identifier information of the MTC UE and the identifier information of the MTC server, where the identifier information of the MTC UE includes: an identifier of the MTC UE (for example, IMSI) and / or IP address, MTC Server identification information includes: MTC Server's monthly service ID and / or IP address.
  • the MTC GW queries the HSS for the address of the MME allocated for the MTC UE, and the HSS returns the address of the MME allocated by the MTC UE; thus, by the steps S313 and S314, the MTC GW obtains the identifier of the MTC UE, and the MTC UE is the elapsed time.
  • the MTC Server sends a registration response to the MTC UE.
  • the MTC GW queries the HSS for the address of the MME allocated to the MTC UE, which may be: The MTC GW queries the HSS for the MTC UE.
  • the contract data the HSS returns the address of the MME allocated to the MTC UE while returning the subscription data of the MTC UE; or: the MTC GW queries the HSS for the address of the MME allocated for the MTC UE, and the HSS only returns the allocation to the MTC UE.
  • the address of the MME is an MTC server.
  • the MTC gateway only needs to interact with the mobility management network element, but does not need to The step of interacting with the MTC server, and in the foregoing method (B) and the foregoing method (C), when receiving the registration request sent by the MTC UE, the MTC server may send a registration notification message to the MTC gateway, and the MTC gateway receives the After the registration notification message is sent, the information about the MTC UE or the access layer event is queried or subscribed to the mobility management network element, and the specific implementation process can be obtained from the above process, and the details are not mentioned.
  • the access control network element may determine whether the MTC UE is allowed to access by obtaining the information of the MTC UE of the underlying access layer from the mobility management network element, and determining whether the MTC UE satisfies a predetermined condition. And, if it is determined that the MTC UE is not allowed to access, send an indication to the mobility management network element to reject the access of the MTC UE, to control access of the MTC UE.
  • the foregoing predetermined conditions include, but are not limited to, one of the following or any combination thereof: a time when the MTC UE is allowed to access, a location area i that allows the MTC UE to access, or a binding relationship between the IMSI and the IMEI that the MTC UE is allowed to use, The network to which the MTC UE is allowed to be attached, the number of times the MTC UE is allowed to access, and the like.
  • the foregoing predetermined condition may be saved in the user subscription data storage as the subscription data of the MTC UE, or may be saved in the access control network element.
  • the user may subscribe to the data store to save the rule as the subscription data of the MTC UE, by accessing
  • the control network element records the total duration of the access of the MTC UE in one month.
  • the access control network element may obtain the subscription data of the MTC UE from the mobility management network element, and notify the attached event according to the received event.
  • the access control network element may also perform judgment according to the current information of the MTC UE, and the specific determination process may be performed according to specific conditions. Specifically, the access control network element determines that the MTC UE is not allowed to access, including but not limited to one of the following or any combination thereof:
  • the access control network element determines that the MTC UE does not allow access when the MTC UE requests attachment, the access control network element sends an indication to the mobility management network element to reject the attachment of the MTC UE;
  • the access control network element is configured to determine that the MTC UE is not allowed to access after the MTC UE has attached to the network, and the access control network element sends an indication to the mobility management network element to attach the MTC UE.
  • the MTC gateway may directly send an indication to the mobility management network element after determining that the MTC UE is not allowed to access the network; if the access control network element is the MTC After the server determines that the MTC UE is not allowed to access the network, the MTC server sends an indication to the mobility management network element through the MTC gateway.
  • Step 4: S605 In the specific implementation process, after receiving the foregoing indication sent by the access control network element in step S603, the mobility management network element performs the corresponding operation and performs the corresponding operation.
  • the mobility management network element rejects the attachment of the MTC UE.
  • the mobility management network element receives the indication after the MTC UE attaches to the network (the access control network element indicates to attach the MTC UE)
  • the mobility management network element Perform a detach process to attach the MTC UE.
  • FIG. 14 is a flowchart of the MTC server de-attaching the MTC UE according to the queried MTC UE information after the MTC UE is attached. As shown in FIG. 14, the MTC Server detaches the MTC UE according to the queried MTC UE information.
  • the MTC UE mainly includes the following steps:
  • the MTC UE accesses the network.
  • the MTC UE initiates a service layer registration with the MTC Server.
  • the MTC Server queries the MTC GW for the information of the MTC UE, or subscribes to the MTC GW for the access layer event related to the MTC UE, and the MTC GW sends the query and the subscription request to the MME; if the MTC GW is used by the MTC GW
  • the MTC Server may send a registration notification message to the MTC GW, and after receiving the registration message, the MTC GW sends a query or subscription request to the MME.
  • An access layer event related to the MTC UE occurs. This step occurs after the MTC Server subscribes to the access layer event.
  • the MME returns the information of the queried MTC UE to the MTC GW, or the MME notifies the MTC GW of the access layer event after the MTC server subscribes the access layer event to the MME through the MTC GW, and the access layer event occurs (S404). .
  • the MTC GW sends the queried information or event notification to the MTC Server;
  • the MTC Server after the MTC Server obtains the information of the MTC UE, or obtains the event notification of the access layer, the MTC Server needs to be in the service management, and determines that the MTC UE needs to be attached; S407, the MTC Server sends a detach request to the MTC GW.
  • the MTC GW sends a detach request to the MME;
  • the MME After the MME receives the detach request, the MME performs a detach procedure to attach the MTC UE.
  • the MME sends a detach response to the MTC GW, and the MTC GW sends a detach response to the MTC Server.
  • the MTC GW may obtain the information of the MTC UE returned by the MME or the event notification of the last 4 , in the above step S405, and may determine according to the service management requirement.
  • the MTC GW may send the detach response to the MTC Server, or may not send to the MTC Server. De-attach response.
  • Method embodiment two This embodiment describes a flow in which the MTC Server controls the access of the MTC UE by using the information of the MTC UE obtained from the MME when the MTC UE is used.
  • access control including: controlling the access time, the number of accesses, and the access location of the MTC UE. If the current access of the MTC UE is not within the allowable range, the network should reject the attachment of the MTC UE, or attach the MTC UE, and further issue an indication to the network. When a similar situation occurs, the network may refuse the network. MTC UE attach request.
  • the MME may actively send an attach event notification to the MTC GW when the MTC UE attaches, and the MTC GW sends the event notification to the MTC Server, and the MTC Server determines whether the attach is allowed.
  • the MTC GW may not send the event notification to the MTC Server, but directly determine whether the attachment of the MTC UE is allowed according to the event notification.
  • FIG. 15 is a schematic diagram of a flow of an attach event notification sent by the MME to the MTC GW when the MTC UE is attached, and the MTC GW/MTC Server determines whether to allow the MTC UE to attach.
  • the method mainly includes the following steps: S501 , MTC UE to the network Sending an attach request, specifically sending an attach request to the MME;
  • the MME After the MME receives the attach request, the MME sends a location update to the HSS. In the process, the HSS sends the subscription data of the MTC UE to the MME.
  • the MME sends an attach event notification to the MTC GW.
  • the MTC GW determines whether the attach is allowed, the MTC GW needs the service management after receiving the notification of the attach event, and determines whether the MTC UE is allowed to be attached. In this embodiment, the MTC GW needs to be in the service management manner. It is determined that the MTC UE is not allowed to attach; in the attach event, the MME may include the thousands of information of the attached, for example: the accessed network, the location of the access, the time of the access, the IMSI and the IMEI used by the MTC UE. Binding relationships, etc.
  • the MTC GW according to the information of the MTC UE's allowed access, for example, the time the MTC UE allows access, the location area allowed to access, the number of times the access is allowed, the network allowed to access, the IMSI and the IMEI that are allowed to be used. Binding relationship, etc., determining that the current MTC UE is attached to the non-permitted time, or the non-allowed location area, or the number of times the current access times of the MTC UE has exceeded the allowed access, or the IMSI and IMEI that the MTC UE uses are not allowed. If the MTC UE requests to attach to an unallowed network or the like, the MTC GW determines that the MTC UE is not allowed to attach.
  • step S508 After determining that the MTC UE is not allowed to attach, the MTC GW performs step S508.
  • the following steps S505 to S506 are steps performed by the MTC Server to determine whether to allow the MTC UE to be attached. In the case where steps S505 to S507 are performed, the above step S504 is not performed. S505.
  • the MTC GW sends the event notification to the MTC Server.
  • the MTC Server After receiving the attachment event of the MME, the MTC Server needs to perform service management, and determines that the access of the MTC UE should be denied.
  • the MTC Server sends a reject access indication to the MTC GW.
  • S508 The MTC GW sends a reject access indication to the MME.
  • S509 After receiving the reject attachment indication, the MME rejects the access of the MTC UE, and returns an attach rejection response to the MTC UE. Since the MTC GW is operator-controlled, in this embodiment, if judged by the MTC GW, the operator can have more flexible access control rights.
  • E-UTRAN (EPS) network is taken as an example in the above embodiment, in fact, for GPRS access of the GERAN/UTRAN network, the SGSN in the GERAN/UTRAN network is equivalent to the MME in the E-UTRAN network, acting as the PS.
  • the access control and mobility management functions of the domain, and the GGSN in the GERAN/UTRAN network is equivalent to the SGW+PGW in the E-UTRAN network, and the HLR in the GERAN/UTRAN is equivalent to the HSS in the E-UTRAN network. Therefore, according to the above description of the embodiments of the present invention, those skilled in the art can directly apply the foregoing technical solutions provided by the embodiments of the present invention to the PS domain in the GERAN/UTRAN network.
  • the access control network element (MTC GW/MTC Server) of the service layer obtains the information of the MTC UE of the access layer from the mobility management network element, and further, according to the acquired MTC UE The information is effectively controlled for access by the MTC UE.
  • the MTC server can also perform the security-risk certificate to the MTC server through the MTC GW, and only the MTC server that is allowed to access can access the core network, and the access is denied to the illegal MTC server. Thereby the security of the core network can be guaranteed.
  • the access of the MTC UE can be controlled by the MTC GW, so that the operator can flexibly control the access of the MTC UE when the MTC Server is a non-operator network element. .
  • modules or steps of the present invention can be implemented by a general-purpose computing device, which can be concentrated on a single computing device or distributed over a network composed of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device, such that they may be stored in the storage device by the computing device, or they may be separately fabricated into individual integrated circuit modules, or they may be Multiple modules or steps are made into a single integrated circuit module.
  • the invention is not limited to any specific combination of hardware and software.
  • the above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the scope of the present invention are intended to be included within the scope of the present invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A method and system for controlling Machine Type Communication (MTC) terminal are disclosed by the present invention. Wherein, the method includes the following steps: a mobility management network element reports the information of the MTC terminal, which requests to attach to the network or has attached to the network currently, to an access control network element (S601); the access control network element determines to refuse the MTC terminal access based on the MTC terminal information, and transmits an indication of refusing the access of the MTC terminal to the mobility management network element (S603); the mobility management network element receives the indication, and refuses the MTC terminal to access the network based on the indication (S605). By using the present invention, the access control to the MTC terminal can be realized by the access layer without increasing the complexity of the core network, thus reducing the cost of the network construction.

Description

MTC终端的接入控制方法和系统 技术领域 本发明涉及通信领域, 具体而言, 涉及一种机器类通讯终端的接入控制 方法和系统。 背景技术 在传统的移动网络月艮务中, 人对人 ( Human To Human , 简称为 Η2Η ) 通讯占据了主要的位置。在 Η2Η通讯中, 由于参与的双方为具有行为控制能 力的人, 因此会话实际上由人的行为控制。 随着移动网络服务和自动化控制 技术的发展, 目前, 出现了一种新的移动通讯方式, 即机器对机器( Machine To Machine, M2M ) 的通讯, 在该通讯方式中, 通讯的双方为机器设备。 狭义的 M2M定义是机器到机器的通信, 但从广义上说 M2M 包括以机 器终端智能交互为核心的、 网络化的应用与月艮务。 M2M基于智能机器终端、 以多种通信方式为接入手段, 可以为客户提供的信息化解决方案, 用于满足 客户对监控、 指挥调度、 数据釆集和测量等方面的信息化需求。 M2M 可以 应用于行业应用 (例如, 交通监控、 告警系统、 海上救援、 自动售货机、 开 车付费等)、 家庭应用 (例如, 自动抄表、 温度控制等) 及个人应用 (例如, 生命检测、 远端诊断等) 等。 与人对人通讯的最根本的不同在于, M2M 的通信对象为机器, 通讯行 为是自动化控制的, 即通讯的发起、 通讯的终止、 通讯过程中的一些准入和 限制的控制, 均是自动化的行为。 这种行为, 依赖于 M2M通讯中对机器(即 M2M通讯中的终端)行为的约束和控制, M2M通讯中的终端的行为受业务 签约数据约束, 网络才艮据业务签约数据对 M2M通讯中的终端进行管理。  TECHNICAL FIELD The present invention relates to the field of communications, and in particular to an access control method and system for a machine type communication terminal. BACKGROUND OF THE INVENTION In the traditional mobile network service, human-to-human (Human To Human, 简称2Η) communication occupies a major position. In the Η2Η communication, since both parties involved are people with behavioral control capabilities, the conversation is actually controlled by human behavior. With the development of mobile network services and automation control technology, a new mobile communication method, namely Machine To Machine (M2M) communication, has appeared. In this communication mode, both sides of the communication are machine equipment. . The narrow definition of M2M is machine-to-machine communication, but in a broad sense, M2M includes networked applications and monthly services with the intelligent interaction of machine terminals as the core. M2M is based on intelligent machine terminals and uses multiple communication methods as access means. It can provide customers with information solutions to meet customers' information needs in monitoring, command and dispatch, data collection and measurement. M2M can be used in industrial applications (eg, traffic monitoring, alarm systems, marine rescue, vending machines, paying for cars, etc.), home applications (eg, automatic meter reading, temperature control, etc.) and personal applications (eg, life detection, far End diagnosis, etc.). The most fundamental difference between communication with people is that M2M communicates with the machine, and the communication behavior is automatically controlled, that is, the initiation of communication, the termination of communication, and the control of some access and restrictions in the communication process are automated. the behavior of. This behavior depends on the constraints and control of the behavior of the machine (ie, the terminal in the M2M communication) in the M2M communication. The behavior of the terminal in the M2M communication is constrained by the service subscription data, and the network is based on the service subscription data in the M2M communication. The terminal is managed.

M2M通讯, 也称为机器类通讯 ( Machine Type Communication, 简称为 MTC ), 最典型的为终端和应用月艮务器之间的通讯, 该终端被称为 MTC终端 ( MTC User Equipment , 简称为 MTC UE ), 应用月艮务器被称为 MTC月艮务器 ( MTC Server )„ 在 2G/3G/LTE接入下, M2M通讯主要以分组 (Packet Service, 简称为 PS )网络作为底层承载网络, 实现 MTC终端和 MTC服务器之间的业务层通 讯。 图 1是 M2M通讯实体接入到演进的分组系统 ( Evolved Packet System, 简称为 EPS ) 的架构示意图。 在图 1中, 底层承载网络包括: 演进的通用移动通信系统陆地无线接入 网 ( Evolved Universal Terrestrial Radio Access Network, 简称为 E-UTRAN )、 移动管理单元( Mobility Management Entity,简称为 MME ),月艮务网关( Serving Gateway, 简称为 S-GW, 或 SGW ),分组数据网络网关( Packet Data Network Gateway, 简称为 PDN GW, 或 P-GW, 或 PGW)、 归属用户月艮务器 (Home Subscriber Server , 简称为 HSS )、 策略和计费规则功能实体 (Policy and Charging Rules Function , 简称为 PCRF )„ 其中, E-UTRAN的主要网元是是 eNodeB ( Evolved NodeB基站;)。 在图 1 中, MME 负责移动性管理、 非接入层信令的处理、 以及用户移 动管理中上下文的管理等控制面的相关工作; S-GW是与 E-UTRAN相连的 接入网关设备, 在 E-UTRAN和 P-GW之间转发数据, 并且负责对寻呼等待 数据进行緩存; P-GW则是 EPS与分组数据网络 (Packet Data Network, 简 称为 PDN ) 的边界网关, 负责 PDN的接入及在 EPS与 PDN间转发数据等 功能; PCRF是策略和计费规则功能实体, 它通过接收接口 Rx和运营商网络 协议 (Internet Protocol, 简称为 IP ) 业务网络相连, 获取业务信息, 此夕卜, 它还可以通过 Gx接口与网络中的网关设备相连, 负责发起 IP承载的建立, 保证业务数据的服务质量 (Quality of Service, 简称为 QoS ), 并进行计费控 制。 HSS提供用户的签约数据的管理, 和用户接入到网络中的重要的上下文 信息的管理。 在图 1中, MTC UE通过 E-UTRAN ( eNodeB )接入到 EPS网络中, 在 被分配 IP地址后, MTC UE与 MTC Server之间可以建立起 IP通道, 从而实 现与 MTC Server之间的上层业务通讯。 MTC UE与 MTC Server之间所建立 的 IP通道为一条還辑上的 IP通道,其物理路径经过: eNodeB、 S-GW、 P-GW。 目前, 实现 M2M通讯的一种方式是在 MTC UE与 MTC Server之间的 IP 通道上建立一个业务层接口协议, 通过该业务层接口协议, MTC UE 和 MTC Server交互业务数据, 同时, MTC Server也通过该业务层协议实现对 MTC UE的控制。 图 2描述该种方式实现 M2M通讯的流程,如图 2所示,在该方式中 MTCM2M communication, also known as Machine Type Communication (MTC), is the most typical communication between the terminal and the application server. The terminal is called MTC User Equipment (MTC). UE), the application server is called MTC server (MTC Server) „ Under 2G/3G/LTE access, M2M communication mainly uses Packet Service (PS) network as the underlying bearer network. Implement the service layer communication between the MTC terminal and the MTC server News. FIG. 1 is a schematic diagram of an architecture of an M2M communication entity accessing an Evolved Packet System (EPS). In FIG. 1, the underlying bearer network includes: an evolved universal mobile communication system (Evolved Universal Terrestrial Radio Access Network, E-UTRAN for short), and a Mobility Management Entity (MME). Service Gateway (S-GW, or SGW for short), Packet Data Network Gateway (PDN GW, or P-GW, or PGW), Home Subscriber (Home Subscriber) Server, abbreviated as HSS), Policy and Charging Rules Function (PCRF) „ where the main network element of E-UTRAN is eNodeB (Evolved NodeB base station;). In Figure 1, The MME is responsible for the control plane, such as mobility management, non-access stratum signaling processing, and context management in user mobility management. The S-GW is an access gateway device connected to E-UTRAN, in E-UTRAN and The P-GW forwards data and is responsible for buffering paging waiting data. The P-GW is a border network of EPS and Packet Data Network (PDN). Responsible for the PDN access and forwarding of data between the EPS and the PDN; the PCRF is a policy and charging rule function entity, which is connected to the service network protocol (Internet Protocol, IP for short) through the receiving interface Rx. The service information, in addition, can be connected to the gateway device in the network through the Gx interface, and is responsible for initiating the establishment of the IP bearer, ensuring the quality of service (QoS) of the service data, and performing charging control. The HSS provides management of the subscriber's subscription data, and management of important context information accessed by the user to the network. In Figure 1, the MTC UE accesses the EPS network through the E-UTRAN (eNodeB), where the IP address is assigned. After that, an IP channel can be established between the MTC UE and the MTC Server to implement upper layer service communication with the MTC Server. The IP channel established between the MTC UE and the MTC Server is an IP channel that is also serialized, and its physical The path passes through: eNodeB, S-GW, and P-GW. Currently, one way to implement M2M communication is to establish a service layer interface on the IP channel between the MTC UE and the MTC Server. Proposed by the service layer interface protocol, MTC UE and MTC Server interactive service data, while, MTC Server also achieve control of the MTC UE through the service layer protocol. Figure 2 depicts the flow of M2M communication in this way, as shown in Figure 2, in which MTC

UE通过 PS网络接入, 实现和 MTC Server建立通讯连接主要包括以下步骤: 5201 , MTC UE向 MME发起附着请求; The UE accesses through the PS network, and establishing a communication connection with the MTC Server mainly includes the following steps: 5201. The MTC UE initiates an attach request to the MME.

5202, MME接收上述附着请求, 向 HSS发送位置更新请求, 在该步骤 中, HSS向 MME下载 MTC UE的签约数据, 其中包含用于 M2M接入控制 的签约数据部分; S203 , MME向 SGW/PGW发送 载创建请求,请求 SGW/PGW为 MTC5202. The MME receives the foregoing attach request, and sends a location update request to the HSS. In this step, the HSS downloads subscription data of the MTC UE to the MME, where the subscription data part for the M2M access control is included. S203, the MME sends the SGW/PGW Send a create request, request SGW/PGW to be MTC

UE创建合适的^载; The UE creates a suitable payload;

5204, 如果 PGW需要从 PCC获得策略数据以据此建立合适的承载, 则 PGW和 PCC交互以获得 PCC策略; 5204. If the PGW needs to obtain policy data from the PCC to establish a suitable bearer according to the PGW, the PGW and the PCC interact to obtain a PCC policy.

5205 , PGW为 MTC UE创建 载, 返回 载创建响应; S206, MME向 MTC UE发送附着响应; 步骤 S206后, MTC UE已经附着到 PS网络, 被分配了 IP地址, 并建 立和合适的 载, 从而可以向 MTC Server发起业务层的注册。 5205, the PGW creates a bearer for the MTC UE, and returns a create response. S206: The MME sends an attach response to the MTC UE. After step S206, the MTC UE is attached to the PS network, is assigned an IP address, and establishes a suitable payload. The registration of the business layer can be initiated to the MTC Server.

5207, MTC UE向 MTC Server发起业务层的注册; 5207, the MTC UE initiates registration of the service layer to the MTC Server;

5208, MTC Server接受 MTC UE的注册, 返回注册响应; S209, 后续 MTC UE和 MTC Server之间通过业务层协议交互数据。 通过图 2所示的流程, MTC UE接入到 PS网络, 建立了和 MTC Server 之间的 IP连接, 从而可以实现后续和 MTC Server之间的业务层通讯。 在某些情况下, 业务层需要限制 MTC终端设备的接入, 即只允许在指 定的条件下接入, 如果条件不允许则拒绝 MTC终端设备的接入。 例如, 在某些 M2M业务中, 由于存在 MTC设备被偷窃和 SIM卡被盗 用的情况, 由于国际用户识别码 ( International Mobile Subscriber Identification Number, 简称为 IMSI )存在于 SIM卡上, 是 MTC UE的公开身份标识, 由 运营商分配。而国际移动设备识别码( International Mobile Equipment Identity, 简称为 IMEI )存在于终端设备商, 如果限定了 MTC终端设备只能使用特定 的 IMSI和 IMEI接入到网络, 则可以在接入网络时进行判断, 如果 IMSI和 IMEI配对不匹配, 则说明 MTC设备或 SIM卡被盗用, 拒绝该 MTC终端设 备的接入。 或者, 在某些 M2M业务中, MTC终端被应用于在固定的位置区域内, 超出这个位置区域将不允许其使用。 因此, 需要限制 MTC终端设备的接入 位置, 如果接入时在不被允许的位置区域内, 或者接入后移动到不被允许的 位置区域内, 则需要限制其接入到系统。 或者, 在某些 M2M业务中, MTC终端被限制在指定的时间内接入到系 统, 超出这个时间将不允许接入到系统。 因此, 限制 MTC终端设备的接入 时间,如果接入时间在不允许的时间段内,或者接入后超出了所允许的时间, 则需要限制其接入到系统。 虽然上述的业务管理需求, 可以在接入层进行控制, 例如, 在 E-UTRAN 接入下, 由 MME来控制, 这样需要 MME针对各种各样的管理需求故出各 种各样的检查和判断, 从而导致核心网的复杂度极大地增加。 发明内容 针对现有技术中需要由接入层对 MTC终端的接入控制而导致核心网的 复杂度增加的问题而提出本发明, 为此, 本发明的主要目的在于提供一种改 进的 M2M终端的接入控制方案, 以解决上述问题至少之一。 为了实现上述目的, 根据本发明的一个方面, 提供了一种 MTC终端的 接入控制方法。 根据本发明的 MTC终端的接入控制方法包括: 移动性管理网元向接入控制网元上报当前请求附着到网络或当前已附着 到网络的 MTC终端的信息; 接入控制网元 居 MTC终端的信息判断不允许 MTC终端接入, 向移 动性管理网元发送拒绝 MTC终端接入的指示; 移动性管理网元接收指示, 根据指示拒绝 MTC终端接入到网络。 为了实现上述目的, 居本发明的另一方面, 提供了一种 MTC终端的 接入控制系统。 根据本发明的 MTC终端的接入控制系统包括: 用户签约数据存储器、 移动性管理网元和接入控制网元。 其中, 用户签约数据存储器, 用于保存系统内的 MTC终端的签约数据; 移动性管理网元, 与用户签约数据存储器连接, 用于接收用户签约数据 存储器下发的当前请求附着到网络或当前已附着到网络的 MTC终端的签约 数据, 并向接入控制网元提供 MTC终端的信息; 接入控制网元, 与移动性管理网元连接, 用于才艮据 MTC终端的信息, 判断是否允许 MTC终端接入, 并在不允许 MTC终端接入的情况下, 向移动 性管理网元发送拒绝 MTC终端接入的指示, 以使移动性管理网元拒绝 MTC 终端接入到网络。 通过本发明, 业务层的接入控制网元通过移动性管理网元获取 MTC终 端的信息, 并根据该 MTC终端的信息判断是否允许该 MTC终端接入, 因而 可以通过业务层对 MTC终端进行接入控制, 从而解决了现有技术中需要由 接入层对 MTC终端的接入控制而导致核心网的复杂度增加的问题, 进而减 少网络构建的成本。 附图说明 此处所说明的附图用来提供对本发明的进一步理解, 构成本申请的一部 分, 本发明的示意性实施例及其说明用于解释本发明, 并不构成对本发明的 不当限定。 在附图中: 图 1是相关技术中 M2M通讯实体接入到 EPS的架构示意图; 图 2是相关技术中 MTC UE通过 PS网络接入并与 MTC月艮务器建立通 讯连接的¾¾程图; 图 3是根据本发明实施例的 MTC UE的接入控制系统结构示意图; 图 4是才艮据本发明实施例的 MTC UE通过 EPS系统接入实现 M2M通讯 的架构图; 图 5是才艮据本发明实施例的 MTC UE通过 GPRS系统接入实现 M2M通 讯的架构图; 图 6为才艮据本发明实施例的 MTC终端的接入控制方法的流程图; 图 7为才艮据本发明实施例的一种 MME主动向 MTC Server上 4艮 MTC UE 的信息的流程图; 图 8为根据本发明实施例的另一种 MME主动向 MTC Server上报 MTC UE的信息的流程图; 图 9为本发明实施例中 MTC Server通过 MTC GW向 MME发送查询请 求以获取 MTC UE的信息的流程图; 图 10为本发明实施例中 MTC Server通过向 MME订阅 MTC UE的相关 事件以获取该 MTC UE的信息的流程图; 图 11为本发明实施例中 MTC GW釆用方法一获取 MTC UE的标识、为 该 MTC UE月艮务的 MTC Server的地址以及为该 MTC UE分配的 MME的地 址之间的对应关系的流程图; 图 12为本发明实施例中 MTC GW釆用方法二获取上述对应关系的流程 图; 图 13为本发明实施例中 MTC GW釆用方法三获取上述对应关系的流程 图; 图 14为才艮据本发明方法实施例一流程图; 图 15为才艮据本发明方法实施例二的流程图。 具体实施方式 为了满足对 MTC终端接入到网络时的灵活的接入控制要求, 同时尽量 降低为支持这类接入限制业务时所引起的对核心网的复杂改造, 本发明实施 例提供了一种改进的 MTC终端的接入控制方案。 在本发明实施例中, 考虑 到 MTC Server可能不是运营商管理的网络实体, 并且有可能部署在核心网 夕卜, 因此, 考虑到 MTC Server接入到核心网时的接入安全, 本发明实施例 在核心网侧增加 MTC网关 ( MTC GW ), 使得所有 MTC Server的接入均通 过该 MTC 网关, 该 MTC 网关可以通过内部网络拓朴结构隐藏、 对 MTC5208, the MTC Server accepts the registration of the MTC UE, and returns a registration response. S209: The subsequent MTC UE and the MTC Server exchange data through the service layer protocol. Through the process shown in Figure 2, the MTC UE accesses the PS network and establishes an IP connection with the MTC Server, so that service layer communication between the subsequent and the MTC Server can be realized. In some cases, the service layer needs to restrict access to the MTC terminal device, that is, it is allowed to access only under specified conditions, and the access of the MTC terminal device is denied if the condition is not allowed. For example, in some M2M services, due to the theft of the MTC device and the theft of the SIM card, since the International Mobile Subscriber Identification Number (IMSI) exists on the SIM card, it is the disclosure of the MTC UE. Identity, assigned by the operator. The International Mobile Equipment Identity (IMEI) exists in the terminal equipment provider. If the MTC terminal equipment is limited to use only the specific IMSI and IMEI to access the network, it can be judged when accessing the network. If the IMSI and the IMEI pair do not match, the MTC device or the SIM card is stolen and the access of the MTC terminal device is denied. Or, in some M2M services, the MTC terminal is applied in a fixed location area beyond which the area will not be allowed to be used. Therefore, it is necessary to limit the access location of the MTC terminal device. If the access is in an unacceptable location area, or is moved to an unallowed location area after access, it is necessary to restrict access to the system. Or, in some M2M services, the MTC terminal is restricted from accessing the system within a specified time, and access to the system will not be allowed beyond this time. Therefore, the access time of the MTC terminal device is limited. If the access time is within an unallowable time period, or the access time exceeds the allowed time, it is required to restrict access to the system. Although the above-mentioned service management requirements can be controlled at the access layer, for example, under the E-UTRAN access, the MME controls, which requires the MME to perform various checks and checks for various management requirements. Judging, resulting in a huge increase in the complexity of the core network. SUMMARY OF THE INVENTION The present invention has been made in view of the problem in the prior art that an access control of an MTC terminal by an access layer is required to cause an increase in the complexity of the core network. To this end, the main object of the present invention is to provide an improved M2M terminal. The access control scheme to solve at least one of the above problems. In order to achieve the above object, according to an aspect of the present invention, an access control method of an MTC terminal is provided. The access control method of the MTC terminal according to the present invention includes: the mobility management network element reports to the access control network element information currently attached to the network or the MTC terminal currently attached to the network; the access control network element resides in the MTC terminal The information judgment does not allow the MTC terminal to access, and sends an indication to the mobility management network element to reject the access of the MTC terminal; the mobility management network element receives the indication, and refuses to access the network by the MTC terminal according to the indication. In order to achieve the above object, in another aspect of the present invention, an access control system for an MTC terminal is provided. The access control system of the MTC terminal according to the present invention includes: a user subscription data storage, a mobility management network element, and an access control network element. among them, The user is subscribed to the data storage for storing the subscription data of the MTC terminal in the system; the mobility management network element is connected to the user's subscription data storage, and is configured to receive the current request sent by the user's subscription data storage and attach to the network or is currently attached to the network. The subscription data of the MTC terminal of the network, and the information of the MTC terminal is provided to the access control network element; the access control network element is connected to the mobility management network element, and is used to determine whether the MTC terminal is allowed according to the information of the MTC terminal. And accessing, and not allowing the MTC terminal to access, sending an indication to the mobility management network element to reject the access of the MTC terminal, so that the mobility management network element rejects the MTC terminal from accessing the network. With the present invention, the access control network element of the service layer obtains the information of the MTC terminal through the mobility management network element, and determines whether to allow the MTC terminal to access according to the information of the MTC terminal, so that the MTC terminal can be connected through the service layer. The control is implemented to solve the problem that the complexity of the core network is increased due to the access control of the access layer to the MTC terminal in the prior art, thereby reducing the cost of network construction. BRIEF DESCRIPTION OF THE DRAWINGS The accompanying drawings, which are set to illustrate,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, In the accompanying drawings: FIG. 1 is a schematic diagram of an architecture of an M2M communication entity accessing an EPS in a related art; FIG. 2 is a schematic diagram of a related art in which an MTC UE accesses through a PS network and establishes a communication connection with an MTC server; 3 is a schematic structural diagram of an access control system of an MTC UE according to an embodiment of the present invention; FIG. 4 is a structural diagram of an MTC UE accessing an M2M communication through an EPS system according to an embodiment of the present invention; The MTC UE of the embodiment of the present invention accesses the architecture diagram of the M2M communication through the GPRS system; FIG. 6 is a flowchart of the access control method of the MTC terminal according to the embodiment of the present invention; FIG. 7 is a flowchart of information about an MME actively transmitting to an MTC UE on an MTC Server according to an embodiment of the present invention; FIG. 8 is another MME actively reporting an MTC UE to an MTC Server according to an embodiment of the present invention; FIG. 9 is a flowchart of the MTC Server sending an inquiry request to the MME to obtain the information of the MTC UE by using the MTC GW according to the embodiment of the present invention; FIG. 10 is a flowchart of the MTC server subscribing the MTC UE to the MME according to the embodiment of the present invention; A flowchart of a related event to obtain information of the MTC UE; FIG. 11 is a method for acquiring an MTC UE, an address of an MTC Server that is a monthly service of the MTC UE, and an MTC UE for the MTC GW in the embodiment of the present invention; A flow chart of the correspondence between the addresses of the allocated MMEs; FIG. 12 is a flowchart of the method for acquiring the corresponding relationship by the MTC GW in the embodiment of the present invention; FIG. 13 is a third method for using the MTC GW in the embodiment of the present invention. FIG. 14 is a flowchart of Embodiment 1 of the method according to the present invention; FIG. 15 is a flowchart of Embodiment 2 of the method according to the present invention. The embodiment of the present invention provides a flexible access control requirement for the MTC terminal to access the network, and at the same time minimizes the complex transformation of the core network caused by the support of the access restriction service. An improved access control scheme for an MTC terminal. In the embodiment of the present invention, it is considered that the MTC Server may not be a network entity managed by an operator, and may be deployed in a core network. Therefore, in consideration of access security when the MTC Server accesses the core network, the present invention is implemented. For example, the MTC gateway (MTC GW) is added on the core network side, so that all MTC Server accesses pass through the MTC gateway, and the MTC gateway can be hidden by the internal network topology structure, and the MTC is hidden.

Server接入进行认证等手段实现 MTC Server接入到核心网的安全保证。 并 且, 在本发明实施例中由业务层 ( MTC Server或新增的 MTC网关) 通过移 动性管理网元获得该 MTC终端的底层接入层的信息, 进而才艮据获取的 MTC 终端的信息对该 MTC终端的接入进行控制。 下文中将参考附图并结合实施例来详细说明本发明。 需要说明的是, 在 不冲突的情况下, 本申请中的实施例及实施例中的特征可以相互组合。 系统实施例 根据本发明实施例, 提供了一种 MTC终端的控制系统。 图 3为才艮据本发明实施例的 MTC终端的接入控制系统的结构示意图, 如图 3所示, 根据本发明实施例的 MTC终端的接入控制系统主要包括: 用 户签约数据存储器 1、 移动性管理网元 3和接入控制网元 5。 下面分别对上 述各个网元进行描述。 其中,用户签约数据存储器 1 ,用于保存系统内的 MTC终端的签约数据; 移动性管理网元 3 , 与用户签约数据存储器 1连接, 用于接收用户签约 数据存储器 1下发的当前请求附着到网络或当前已附着到网络的 MTC终端 的签约数据, 并向接入控制网元 5提供该 MTC终端的信息; 在具体应用中, 在 MTC UE请求附着到网络时, MTC UE ^!夺向移动性管 理网元 3发送附着请求,移动性管理网元 3在接收到 MTC UE的附着请求后, 向用户签约数据存储器 1发送位置更新请求, 用户签约数据存储器 1在接收 到位置更新请求后, 向移动性管理网元 3下发该 MTC UE的签约数据, 移动 性管理网元 3接收并存储该签约数据。 并且, 在 MTC UE附着到网络后, 如 果该 MTC UE的签约数据发生变化,则用户签约数据存储器 1将向移动性管 理网元 3下发更新后的该 MTC UE的签约数据。 接入控制网元 5 , 与移动性管理网元 3连接, 用于根据移动性管理网元 3提供的上述 MTC终端的信息, 判断是否允许该 MTC终端接入, 并在不允 许该 MTC终端接入的情况下,向移动性管理网元 3发送拒绝该 MTC终端接 入的指示, 以使移动性管理网元 3拒绝该 MTC终端接入到网络。 而移动性 管理网元 3在接收到来自 MTC服务器 5的指示后,如果当前 MTC终端是请 求附着到网络, 则拒绝该 MTC终端的附着请求, 向 MTC终端返回拒绝附着 响应; 如果当前 MTC终端已附着到网络, 则移动性管理网元 3发起去附着 流程, 去附着该 MTC终端。 在具体实施过程中, 上述接入控制网元 5可以是本发明实施例中核心网 侧新增的 MTC网关, 该 MTC网关连接在 MTC服务器与移动性管理网元之 间, 除了该 MTC网关才艮据本地存储的 MTC UE接入的预定条件或者从核心 网获取的该 MTC UE接入的预定条件对 MTC终端的接入进行控制外, 还对 MTC服务器执行安全验证, 并且, 一个 MTC网关可以服务于多个 MTC服 务器。 或者, 上述接入控制网元 5也可以是 MTC服务器, MTC服务器根据本 地存储的 MTC UE接入的预定条件或者从核心网获取的该 MTC UE接入的 预定条件对 MTC终端的接入进行控制, 并且, 在该 MTC服务器与移动性管 理网元 3之间连接有 MTC网关, 该 MTC网关主要用于转发 MTC服务器与 移动性管理网元 3之间的数据,可能还需要执行必要的协议转换工作, 并且, 该 MTC网关还对 MTC服务器执行安全验证。 例如, 在 MTC UE接入到 E-UTRAN网络时, 上述用户签约数据存储器 1为 HSS , 移动性管理网元 3为 MME; 在 MTC UE接入到 GERAN/UTRAN 网络时, 用户签约数据存储器 1为 HLR, 移动性管理网元 3为 SGSN。 下面通过具体实施例对本发明实施例提供的上述系统进行说明。 系统实施例一 本实施例以 MTC UE 利用 EPS 系统实现接入 (即 MTC UE 接入到 E-UTRAN网络) 为例进行说明。 图 4为本实施例中 MTC UE通过 EPS系统接入实现 M2M通讯的架构图, 如图 4所示, 在本实施例中, MTC 网关与 MME之间, 以及 MTC 网关与 MTC服务器之间实现了连接,以便 MTC服务器获得 MTC UE的底层接入层 载的信息, 以判断 MTC UE的行为。 如图 4所示, 在该架构图中, MTC GW部署在核心网内, MTC Server 可能部署在运营商的核心网外, 也可能部署在核心网内。 一个 MTC GW可 以月艮务于多个 MTC Server。 在该架构图中, MTC GW和 MME建立了接口, 为了方便描述, 在本实 施例中, 将该接口称之为 M2M-MME。 通过该接口, MTC GW可以向 MME 查询某个 MTC UE的信息, 例如, MTC UE的签约数据、 MTC UE的当前位 置区 i或、 MTC UE的当前状态等; 或者,通过该接口, MTC GW可以向 MME 订阅与某个 MTC UE相关的接入层〃 载的事件, 例如, MTC UE附着到 PS 网络、 MTC UE从 PS网络去附着、 MTC UE在 PS网络中发生了位置移动等 事件; 或者, 通过该接口, MME可以将与某个 MTC UE相关的底层接入层 的事件, 主动通知给 MTC GW。 并且, MTC GW在获取到某个 MTC UE的信息或底层接入层事件之后, 可以根据存储在该 MTC GW中的 MTC UE接入的预定条件或者从核心网获 取的该 MTC UE接入的预定条件判断是否允许该 MTC UE的接入, 在不允 许该 MTC UE接入的情况下, 向 MME发送拒绝消息, 以拒绝该 MTC UE 的接入。 或者, 在该架构中, MTC GW作为 MTC Server和 MME之间通讯的中 介(类似代理), 接受 MTC Server所执行的对 MTC UE信息的查询、 对与 MTC UE相关的接入层事件的订阅, 将请求转发给 MME。 在转发请求之前, MTC GW需要对 MTC Server执行安全性检测, 在检测通过的情况下, 转发 请求, 在转发请求的过程中, MTC GW可能需要执行必要的协议转换工作。 同时, MTC GW将 MME发送的 MTC UE的信息转发给 MTC Server。 并且, MTC Server在获取某个 MTC UE的相关信息后, 可以才艮据本地 存储的 MTC UE接入的预定条件或者从核心网获取的该 MTC UE接入的预 定条件, 判断是否允许该 MTC UE的接入, 在判断不允许该 MTC UE接入 的情况下, 通过 MTC GW向 MME发送拒绝消息, 以拒绝该 MTC UE的接 入。 可选地, 在该架构中, MTC GW还可以与 HSS建立接口, 为了方便描 述, 在本实施例中, 将该接口称之为 M2M-HSS。 通过该接口, MTC GW可 以从 HSS查询到 MTC UE的签约数据; 或者, 通过该接口, MTC GW可以 从 HSS查询到为 MTC UE分配的 MME的地址。 或者, 可选地, 如果 MTC GW和 HSS之间不建立 M2M-HSS接口, 则 MTC GW可以通过与 MME之间的 M2M-MME接口, 获得 MTC UE的签约 数据。 MTC GW可以主动向 MME查询 MTC UE的签约数据, MME也可以 主动将 MTC UE的签约数据发送给 MTC GW。 系统实施例二 本实施例以 MTC UE接入到 GERAN/UTRAN网络为例进行说明。 图 5为本实施例中 MTC UE通过 GERAN/UTRAN网络接入实现 M2M 通讯的架构图, 如图 5所示, 本实施例基本与上述系统实施例一相似, 不同 之处在于, GERAN/UTRAN网络中的 SGSN相当于 E-UTRAN网络中 MME, 用于 PS域的接入控制、 移动性管理功能, 而 GERAN/UTRAN网络中的网关 GPRS 支持节点 (Gateway GPRS Support Node , 简称为 GGSN ) 相当于 E-UTRAN 网络中的 SGW 和 PGW, GERAN/UTRAN 中的 HLR 相当于 E-UTRAN 网络中的 HSS。 其具体连接及各个网元的功能与上述系统实施例 一相似, 在;^不再赘述。 方法实施例 根据本发明实施例, 还提供了一种 MTC UE的接入控制方法, 该方法可 以通过根据本发明实施例提供的上述系统实现。 图 6为根据本发明实施例的 MTC UE的接入控制方法的流程图, 如图 6 所示, 才艮据本发明实施例的 MTC UE的接入控制方法主要包括以下步 4聚 (步 骤 S601 -步骤 S605 ): 步骤 S601 :移动性管理网元向接入控制网元上报当前请求附着到网络或 当前已附着到网络的 MTC终端的信息; 步骤 S603 :接入控制网元 居上述 MTC终端的信息判断不允许该 MTC 终端接入, 向移动性管理网元发送拒绝该 MTC终端接入的指示; 步骤 S605 : 移动性管理网元接收上述指示, 根据该指示拒绝上述 MTC 终端接入到网络。 下面进一步对上述各步骤的处理进行说明。 (一) 步骤 S601 在具体实施过程中,移动性管理网元向 MTC月艮务器上 4艮 MTC终端的信 息包括但不限于以下三种方法: The server accesses the authentication and other means to implement the security guarantee for the MTC Server to access the core network. In addition, in the embodiment of the present invention, the information of the underlying access layer of the MTC terminal is obtained by the service layer (the MTC server or the newly added MTC gateway) through the mobility management network element, and then the obtained MTC is obtained. The information of the terminal controls the access of the MTC terminal. The invention will be described in detail below with reference to the drawings in conjunction with the embodiments. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict. System Embodiment According to an embodiment of the present invention, a control system for an MTC terminal is provided. 3 is a schematic structural diagram of an access control system of an MTC terminal according to an embodiment of the present invention. As shown in FIG. 3, an access control system of an MTC terminal according to an embodiment of the present invention mainly includes: a user subscription data storage 1. The mobility management network element 3 and the access control network element 5. The above various network elements are described below. The user subscription data storage 1 is configured to store the subscription data of the MTC terminal in the system; the mobility management network element 3 is connected to the user subscription data storage 1 and is configured to receive the current request sent by the user subscription data storage 1 to be attached to The network or the subscription data of the MTC terminal currently attached to the network, and provides the information of the MTC terminal to the access control network element 5; in a specific application, when the MTC UE requests to attach to the network, the MTC UE ^! The mobility management network element 3 sends an attach request, and after receiving the attach request of the MTC UE, the mobility management network element 3 sends a location update request to the user subscription data storage 1, and the user subscription data storage 1 receives the location update request. Then, the subscription data of the MTC UE is delivered to the mobility management network element 3, and the mobility management network element 3 receives and stores the subscription data. And, after the MTC UE is attached to the network, if the subscription data of the MTC UE changes, the user subscription data storage 1 sends the updated subscription data of the MTC UE to the mobility management network element 3. The access control network element 5 is connected to the mobility management network element 3, and is configured to determine whether to allow the MTC terminal to access according to the information of the MTC terminal provided by the mobility management network element 3, and not allow the MTC terminal to be connected. In the case of incoming, an indication to reject the access of the MTC terminal is sent to the mobility management network element 3, so that the mobility management network element 3 rejects the access of the MTC terminal to the network. After receiving the indication from the MTC server 5, if the current MTC terminal requests to attach to the network, the mobility management network element 3 rejects the attach request of the MTC terminal, and returns a reject attachment response to the MTC terminal; if the current MTC terminal has When attached to the network, the mobility management network element 3 initiates a detach process to attach the MTC terminal. In the specific implementation process, the access control network element 5 may be an MTC gateway newly added on the core network side in the embodiment of the present invention, where the MTC gateway is connected between the MTC server and the mobility management network element, except for the MTC gateway. And performing security verification on the MTC server according to a predetermined condition of the locally stored MTC UE access or a predetermined condition of the MTC UE access obtained from the core network, and an MTC gateway may perform Serving multiple MTC servers. Alternatively, the access control network element 5 may also be an MTC server, and the MTC server controls access of the MTC terminal according to a predetermined condition of the locally stored MTC UE access or a predetermined condition of the MTC UE access obtained from the core network. And, an MTC gateway is connected between the MTC server and the mobility management network element 3. The MTC gateway is mainly used to forward data between the MTC server and the mobility management network element 3, and may also need to perform necessary protocol conversion. Working, and, the MTC gateway also performs security verification on the MTC server. For example, when the MTC UE accesses the E-UTRAN network, the user subscription data storage 1 is an HSS, and the mobility management network element 3 is an MME. When the MTC UE accesses the GERAN/UTRAN network, the user subscription data storage 1 is The HLR, the mobility management network element 3 is an SGSN. The above system provided by the embodiment of the present invention will be described below by way of specific embodiments. System Embodiment 1 In this embodiment, an MTC UE uses an EPS system to implement access (that is, an MTC UE accesses an E-UTRAN network) as an example. FIG. 4 is a structural diagram of the MTC UE accessing the M2M communication through the EPS system in the embodiment. As shown in FIG. 4, in the embodiment, between the MTC gateway and the MME, and between the MTC gateway and the MTC server, The connection is such that the MTC server obtains information of the underlying access layer of the MTC UE to determine the behavior of the MTC UE. As shown in Figure 4, in the architecture diagram, the MTC GW is deployed in the core network. The MTC server may be deployed outside the carrier's core network or in the core network. An MTC GW can work on multiple MTC Servers on a monthly basis. In the architecture diagram, the MTC GW and the MME establish an interface. For the convenience of description, in this embodiment, the interface is referred to as an M2M-MME. Through the interface, the MTC GW can query the MME for information about a certain MTC UE, for example, the subscription data of the MTC UE and the current bit of the MTC UE. The area i or the current state of the MTC UE, etc.; or, through the interface, the MTC GW may subscribe to the MME for an access layer load event associated with a certain MTC UE, for example, the MTC UE attaches to the PS network, the MTC UE The MME is detached from the PS network, and the MTC UE has an event such as a location move in the PS network. Alternatively, the MME can actively notify the MTC GW of the event of the underlying access layer associated with a certain MTC UE. And after the MTC GW acquires the information of the certain MTC UE or the underlying access layer event, the MTC GW may obtain the reservation according to the MTC UE stored in the MTC GW or the subscription of the MTC UE obtained from the core network. The condition determines whether the access of the MTC UE is allowed. If the MTC UE is not allowed to access, the MME sends a reject message to reject the access of the MTC UE. Or, in the architecture, the MTC GW acts as an intermediary (similar to the proxy) for communication between the MTC Server and the MME, and accepts the query of the MTC UE information performed by the MTC Server, and the subscription of the access layer event related to the MTC UE, Forward the request to the MME. Before forwarding the request, the MTC GW needs to perform security detection on the MTC Server. If the detection passes, the request is forwarded. In the process of forwarding the request, the MTC GW may need to perform necessary protocol conversion work. At the same time, the MTC GW forwards the information of the MTC UE sent by the MME to the MTC Server. And after obtaining the information about the MTC UE, the MTC server may determine whether to allow the MTC UE according to the predetermined condition of the locally stored MTC UE access or the predetermined condition of the MTC UE access obtained from the core network. In the case of determining that the MTC UE is not allowed to access, the MTC GW sends a reject message to the MME to reject the access of the MTC UE. Optionally, in the architecture, the MTC GW can also establish an interface with the HSS. For convenience of description, in this embodiment, the interface is referred to as an M2M-HSS. Through the interface, the MTC GW can query the subscription data of the MTC UE from the HSS; or, through the interface, the MTC GW can query from the HSS to the address of the MME allocated for the MTC UE. Alternatively, if the M2M-HSS interface is not established between the MTC GW and the HSS, the MTC GW may obtain the subscription data of the MTC UE by using the M2M-MME interface with the MME. The MTC GW can actively query the MME for the subscription data of the MTC UE, and the MME can also actively send the subscription data of the MTC UE to the MTC GW. System embodiment two This embodiment is described by taking an example in which an MTC UE accesses a GERAN/UTRAN network. FIG. 5 is a structural diagram of the M2M communication in the METH UE through the GERAN/UTRAN network access in the embodiment. As shown in FIG. 5, the embodiment is basically similar to the system embodiment 1 described above, except that the GERAN/UTRAN network is used. The SGSN in the network is equivalent to the MME in the E-UTRAN network, and is used for the access control and mobility management functions of the PS domain, and the Gateway GPRS Support Node (GGSN) in the GERAN/UTRAN network is equivalent to the E. - SGW and PGW in the UTRAN network, the HLR in GERAN/UTRAN is equivalent to the HSS in the E-UTRAN network. The functions of the specific connections and the functions of the network elements are similar to those of the above-mentioned system embodiment 1, and will not be described again. Method Embodiments According to an embodiment of the present invention, an access control method for an MTC UE is further provided, and the method may be implemented by the foregoing system provided according to an embodiment of the present invention. FIG. 6 is a flowchart of an access control method of an MTC UE according to an embodiment of the present invention. As shown in FIG. 6, an access control method of an MTC UE according to an embodiment of the present invention mainly includes the following steps: Step S601 - Step S605): Step S601: The mobility management network element reports to the access control network element information currently attached to the network or the MTC terminal currently attached to the network; Step S603: The access control network element resides in the MTC terminal The information judgment does not allow the MTC terminal to access, and sends an indication to the mobility management network element to reject the access of the MTC terminal. Step S605: The mobility management network element receives the indication, and according to the indication, rejects the MTC terminal from accessing the network. The processing of each step described above will be further described below. (1) Step S601 In the specific implementation process, the information of the mobility management network element to the MTC server on the MTC server includes, but is not limited to, the following three methods:

(一 ) 移动性管理网元主动向接入控制网元上报 例如, 移动性管理网元可以在某个 MTC UE的接入层事件发生时, 主动 通知接入控制网元, 或者, 移动性管理网元在 MTC UE请求附着时, 主动向 接入控制网元上报该 MTC UE的信息。 (1) The mobility management network element actively reports to the access control network element. For example, the mobility management network element may actively notify the access control network element when an access layer event of an MTC UE occurs, or the mobility management network element actively sends an access control network element when the MTC UE requests attachment. The information of the MTC UE is reported.

(二 )接入控制网元向移动性管理网元查询 例如,接入控制网元可以向移动性管理网元发送查询 MTC UE的信息的 查询请求, 移动性管理网元接收到接入控制网元的查询请求后, 向接入控制 网元上 4艮所对应的 MTC UE的信息。 (2) The access control network element queries the mobility management network element. For example, the access control network element may send a query request for querying the information of the MTC UE to the mobility management network element, and the mobility management network element receives the access control network. After the query request of the element, the information of the MTC UE corresponding to the access control network element is 4。.

(三)接入控制网元向移动性管理网元订阅 MTC UE的相关事件通知 例如,接入控制网元可以向移动性管理网元订阅与某一 MTC UE相关的 接入层事件, 移动性管理网元在订阅的接入层事件发生时, 主动通知接入控 制网元, 通知中包含有对应的 MTC UE的信息。 在具体实施过程中,上述接入控制网元可以为 MTC网关,也可以为 MTC 服务器, 下面以 MTC服务器为例, 对上述接入控制网元获取 MTC UE的信 息的三种方法进行说明。 ( Α )移动性管理网元主动向接入控制网元上艮 例如, 移动性管理网元可以在某个 MTC UE的接入层事件发生时, 主动 向 MTC网关发送事件通知, 或者, 移动性管理网元可以在接收到 MTC UE 发送的附着请求后主动向 MTC网关上报该 MTC UE的信息; MTC网关在接 收到事件通知或上报的 MTC UE的信息后, 将事件通知或上报的 MTC UE 信息发送给 MTC服务器。 具体地, 移动性管理网元主动上 4艮 MTC UE的信息时, 移动性管理网元 是根据从用户签约数据存储器获取的该 MTC UE 中携带的指示, 主动通过 MTC GW向 MTC Server上 4艮 MTC UE的信息。 具体地, 移动性管理网元从 用户签约数据存储器中获取该 MTC UE的签约数据包括但不限于: 指示移动 性管理网元向 MTC Server上报 MTC UE的指示信息 (具体可以指示包括上 报的时机、 上报的参数等信息)、 为该 MTC UE服务的 MTC Server的信息。 在具体实施过程中,移动性管理网元可以在 MTC UE发起附着请求时主 动通过 MTC GW向 MTC Server上 4艮该 MTC UE的信息,也可以在 MTC UE 附着到网络后, 在与该 MTC UE相关的接入层事件发生时, 主动通过 MTC GW向 MTC Server上 4艮事件通知, 在事件通知中携带 MTC UE的当前信息。 下面以移动性管理网元为 MME 为例, 对 MME 在这两种上 4艮时机向 MTC Server进行上报的流程进行说明。 (3) A related event notification that the access control network element subscribes to the mobility management network element to subscribe to the MTC UE. For example, the access control network element may subscribe to the mobility management network element for an access layer event related to a certain MTC UE, mobility. The management network element actively informs the access control network element when the subscribed access layer event occurs, and the notification includes the information of the corresponding MTC UE. In the specific implementation process, the foregoing access control network element may be an MTC gateway or an MTC server. The following uses the MTC server as an example to describe three methods for the access control network element to acquire the information of the MTC UE. ( Α ) The mobility management network element actively sends the access control network element. For example, the mobility management network element may actively send an event notification to the MTC gateway when an access layer event of an MTC UE occurs, or mobility. After receiving the attach request sent by the MTC UE, the management network element may actively report the information of the MTC UE to the MTC gateway; after receiving the event notification or the reported information of the MTC UE, the MTC gateway notifies or reports the MTC UE information of the event. Send to the MTC server. Specifically, when the mobility management network element actively performs the information of the MTC UE, the mobility management network element actively sends the MTC GW to the MTC server according to the indication carried in the MTC UE obtained from the user subscription data storage. MTC UE information. Specifically, the mobility management network element obtains the subscription data of the MTC UE from the user subscription data storage, but is not limited to: indicating the indication information that the mobility management network element reports the MTC UE to the MTC server (specifically, indicating the timing including the reporting, Information such as reported parameters), information of the MTC Server serving the MTC UE. In a specific implementation process, the mobility management network element may actively send the MTC UE information to the MTC server through the MTC GW when the MTC UE initiates the attach request, or may be in the MTC UE after the MTC UE attaches to the network. When the relevant access layer event occurs, it actively passes the MTC. The GW notifies the event notification on the MTC Server, and carries the current information of the MTC UE in the event notification. The following takes the mobility management network element as the MME as an example, and describes the flow of reporting the MME to the MTC Server at these two timings.

( 1 ) 在 MTC UE发起附着请求时, MME主动通过 MTC GW向 MTC Server上报该 MTC UE的信息 图 7为在这种情况下, MME主动通过 MTC GW向 MTC GW上 4艮 MTC UE的信息的流程图, 如图 7所示, 在 MTC UE发起附着请求时, MME主 动通过 MTC GW向 MTC Server上 4艮 MTC UE的信息主要包括以下步骤: (1) When the MTC UE initiates the attach request, the MME actively reports the information of the MTC UE to the MTC server through the MTC GW. FIG. 7 is that, in this case, the MME actively sends the information of the MTC UE to the MTC GW through the MTC GW. Flowchart, as shown in FIG. 7, when the MTC UE initiates an attach request, the information that the MME actively sends to the MTC server through the MTC GW mainly includes the following steps:

S701 , MTC UE向 MME发起附着请求; S702, MME向 HSS发送位置更新请求; S701. The MTC UE initiates an attach request to the MME. S702: The MME sends a location update request to the HSS.

5703 , HSS向 MME返回位置更新响应, 在该位置更新响应携带有 MTC UE的签约数据, 该签约数据中包含: 指示 MME向 MTC Server上报该 MTC UE的信息的指示信息、 为该 MTC UE月艮务的 MTC Server的信息 (具体地, 该信息可以为 MTC Server的 IP地址, 也可以为 MTC Server的月艮务标识等 信息); 5703. The HSS returns a location update response to the MME, where the update response carries the subscription data of the MTC UE, where the subscription data includes: indication information indicating that the MME reports the information of the MTC UE to the MTC server, and is the monthly information of the MTC UE. Information about the MTC Server (specifically, the information may be the IP address of the MTC Server, or may be the information such as the monthly service identifier of the MTC Server);

5704, MME根据为该 MTC UE服务的 MTC Server的信息解析出该 MTC Server的地址; S704, the MME parses the address of the MTC server according to the information of the MTC server serving the MTC UE.

5705 , MME向 MTC GW上 4艮上述 MTC UE的信息, 并且, MME向 MTC GW上 4艮的信息中还包括步骤 S704中解析出的 MTC Server的地址; S706, MTC GW将上述 MTC UE的信息发送给与上述地址对应的 MTCS705, the MME sends the information of the foregoing MTC UE to the MTC GW, and the information of the MTC server that is parsed in the step S704 is further included in the information of the MME to the MTC GW. S706, the information of the MTC UE is used by the MTC GW. Send to the MTC corresponding to the above address

Server„ Server„

( 2 )在 MTC UE附着到网络后, MME主动通过 MTC GW向 MTC Server 上报 MTC UE的信息 图 8为在这种情况下, MME主动通过 MTC GW向 MTC Server上 4艮 MTC UE的信息的流程图, 如图 8所示, 在 MTC UE附着到网络后, MME主动 通过 MTC GW向 MTC Server上 4艮 MTC UE的信息主要包括以下步骤: (2) After the MTC UE is attached to the network, the MME actively reports the information of the MTC UE to the MTC Server through the MTC GW. FIG. 8 is a flow of the information that the MME actively sends the MTC UE to the MTC Server through the MTC GW. As shown in FIG. 8, after the MTC UE is attached to the network, the information that the MME actively sends to the MTC server through the MTC GW mainly includes the following steps:

S801 , MTC UE附着到 PS网络; 在 MTC UE附着到 PS网络的过程中, MME从 HSS处获得了 MTC UE 的签约数据, 其中包括用于 M2M业务部分的签约数据。 在该 M2M业务签 约数据中, 包含为该 MTC UE服务的 MTC Server的地址 (也可以为 MTC Server的标识信息;)、 请求 MME主动向 MTC Server上 4艮与该 MTC UE相关 的预定事件的指示, 即请求 MME在该 MTC UE发生预定事件时, 向 MTC Server发送事件通知 ^ 其中, 上述预定事件为与该 MTC UE相关的接入层事件, 具体地, 上述 预定事件包括但不限于以下之一或其任意组合: S801. The MTC UE is attached to the PS network. In the process of attaching the MTC UE to the PS network, the MME obtains the subscription data of the MTC UE from the HSS, including the subscription data for the M2M service part. The M2M service subscription data includes an address of the MTC server serving the MTC UE (which may also be an identifier information of the MTC server), and an indication that the MME is requested to actively forward to the MTC Server a predetermined event related to the MTC UE. The requesting MME sends an event notification to the MTC server when the MTC UE generates a predetermined event, where the predetermined event is an access layer event related to the MTC UE, specifically, the foregoing predetermined event includes but is not limited to one of the following Or any combination thereof:

( 1 ) MTC UE的签约数据发生变化; 当 HSS变更 MTC UE的签约数据 后, HSS需要向 MME重新下发新的签约数据, MME收到新的签约数据后, 可以通知 MTC Server 该签约数据有变化、 或直接将新的签约数据发送给 MTC Server; (1) The subscription data of the MTC UE changes. After the HSS changes the subscription data of the MTC UE, the HSS needs to re-issue the new subscription data to the MME. After receiving the new subscription data, the MME may notify the MTC Server that the subscription data has Change, or directly send new subscription data to the MTC Server;

( 2 ) MTC UE的^!大态变 4匕; 例如, MTC UE附着到网络、 MTC UE从 网络去附着、 MTC UE由连接态变更为空闲态、 MTC UE由空闲态变更为连 接态; (2) The MTC UE has a large state change; for example, the MTC UE is attached to the network, the MTC UE is detached from the network, the MTC UE is changed from the connected state to the idle state, and the MTC UE is changed from the idle state to the connected state;

( 3 ) MTC UE的位置区 i或的变化; 例如, MTC UE发生了位置移动等, 在 MTC UE发生位置移动时, MTC UE会向 MME发送了位置更新消息, 从 而使得 MME能捕获到 MTC UE发生了位置移动; (3) The change of the location area i of the MTC UE; for example, the location movement of the MTC UE, etc., when the location movement of the MTC UE occurs, the MTC UE sends a location update message to the MME, so that the MME can capture the MTC UE. Position movement has occurred;

( 4 ) MTC UE的网络变化; 例如, MTC UE发生了基站、 网络的切换, 在这种情况下, MTC UE会向 MME发送切换消息, 从而使得 MME可以捕 获到 MTC发生的网络变化事件。 (4) The network change of the MTC UE; for example, the MTC UE has a handover of the base station and the network. In this case, the MTC UE sends a handover message to the MME, so that the MME can capture the network change event of the MTC.

( 5 ) MTC UE使用的 IMSI与 IMEI的关系发生变化; 例如, 在签约数 据中规定了 MTC UE应该使用的 IMSI和 IMEI的配对关系, 但是当前 MTC UE更换了终端,如将 SIM卡换到非 MTC终端上。在这种情况下, MTC Server 需要获得 MTC UE所使用的 IMSI、 IMEI配对。 (5) The relationship between the IMSI and the IMEI used by the MTC UE changes; for example, the pairing relationship between the IMSI and the IMEI that the MTC UE should use is specified in the subscription data, but the current MTC UE replaces the terminal, such as changing the SIM card to the non- On the MTC terminal. In this case, the MTC Server needs to obtain the IMSI and IMEI pairing used by the MTC UE.

5802, 上述预定事件, 即与 MTC UE相关的接入层事件发生; 5802, the foregoing predetermined event, that is, an access layer event related to the MTC UE occurs;

5803 , MME主动向 MTC GW通知该预定事件的发生, 具体地, MME 向 MTC GW发送的事件通知中包含有 MTC UE的当前信息; 5804, MTC GW根据预先获取的 MTC UE的标识、 为该 MTC UE分配 的移动性管理网元的地址以及为该 MTC UE月艮务的 MTC Server的地址的对 应关系, 获取为该 MTC UE服务的 MTC Server的地址; 5803, the MME actively notifies the MTC GW of the occurrence of the predetermined event. Specifically, the event notification sent by the MME to the MTC GW includes current information of the MTC UE. 5804. The MTC GW obtains, according to the identifier of the pre-acquired MTC UE, the address of the mobility management network element allocated for the MTC UE, and the address of the MTC server that is used for the MTC UE, to obtain the service for the MTC UE. The address of the MTC Server;

5805 , MTC GW将上述事件通知发送给该 MTC Server。 需要指出的是, 在图 8所示的流程中, S802的接入层事件, 可能发生在 步骤 S801中, 例如, 该事件是一个附着事件, 则 MME应该在 MTC UE附 着到网络时向 MTC Server发送事件通知。 具体地,在上述图 7和图 8的流程中, MME向 MTC Server上 4艮的 MTC UE的信息包括但不限于以下之一或其任意组合: A) MME从 HSS处获得的 MTC UE当前业务签约数据; 5805. The MTC GW sends the above event notification to the MTC Server. It should be noted that, in the process shown in FIG. 8, the access layer event of S802 may occur in step S801. For example, if the event is an attach event, the MME should notify the MTC Server when the MTC UE attaches to the network. Send an event notification. Specifically, in the foregoing processes of FIG. 7 and FIG. 8 , the information of the MME to the MTC UE on the MTC Server includes, but is not limited to, one of the following or any combination thereof: A) the current service of the MTC UE obtained by the MME from the HSS. Contract data

B) MTC UE所使用的 IMSI、 IMEI; 其中, MTC所使用的 IMSI是 MTCB) IMSI, IMEI used by the MTC UE; where the IMSI used by the MTC is MTC

UE在附着到网络时发送的附着消息中携带的, 而 IMEI则可能是 MTC UE 在附着时由提供给网络的, 也可能是网络根据需要的向 MTC UE 查询获得 的; C) MTC UE在 MME上的上下文信息, 例如, MTC UE的当前位置区 i或 和 /或 MTC UE当前的状态; 其中, MTC UE的当前位置区域可以是: MTC UE的 艮踪区域 ( Tracking Area, 简称为 TA )、 MTC UE当前的 Cell小区, 而 MTC UE当前的状态可能 是附着状态、 去附着状态、 连接状态、 空闲状态等中的一种。 D)该 MTC UE当前所发生的移动性事件, 例如, MTC UE附着到网络、The UE is carried in the attach message sent when the UE is attached to the network, and the IMEI may be provided by the MTC UE to the network when it is attached, or may be obtained by the network to the MTC UE according to the need; C) The MTC UE is in the MME. The context information, for example, the current location area i of the MTC UE and/or the current state of the MTC UE; wherein, the current location area of the MTC UE may be: a Tracking Area (TA) of the MTC UE, The current Cell cell of the MTC UE, and the current state of the MTC UE may be one of an attached state, a detached state, a connected state, an idle state, and the like. D) the current mobility event of the MTC UE, for example, the MTC UE is attached to the network,

MTC UE从网络去附着、 MTC UE位置更新、 MTC UE发生基站切换、 MTC UE发生网络切换等。 The MTC UE detaches from the network, the MTC UE location update, the MTC UE base station handover, the MTC UE network handover, and the like.

( B )接入控制网元向移动性管理网元查询 具体地, 在 MTC UE附着到网络后, MTC Server通过 MTC GW向移动 性管理网元发送查询请求, 请求查询该 MTC UE的信息, 移动性管理网元在 接收到该查询请求后, 向 MTC GW上报该 MTC UE的信息, MTC GW再将 该 MTC UE的信息发送给 MTC Server。 在具体实施过程中, MTC GW在接收到 MTC Server发送的查询请求后, 需要先对该 MTC Server执行安全验证, 具体地, MTC GW可以根据获取的 核心网所允许接入的 MTC Server的信息 (例如, 服务标识、 IP地址等), 判 断该 MTC Server是否在所允许接入的 MTC Server的范围内, 如果是, 则继 续处理该查询请求, 根据预先获取的 MTC UE的标识、 为该 MTC UE分配 的移动性管理网元的地址以及为该 MTC UE月艮务的 MTC Server的地址之间 的对应关系, 获取为该 MTC UE分配的移动性管理网元的地址, 并将查询请 求转发给该移动性管理网元; 否则, MTC GW拒绝该查询请求。 具体地, 以 E-UTARN网络为例, 图 9为 MTC Server通过 MTC GW向 MME发送查询请求, 以获取 MTC UE的接入层的信息的流程图, 如图 9所 示, MTC Server通过 MTC GW向 MME发送查询请求, 获取 MTC UE的信 息主要包括以下步 4聚: (B) The access control network element queries the mobility management network element specifically. After the MTC UE is attached to the network, the MTC Server sends a query request to the mobility management network element through the MTC GW, requesting to query the information of the MTC UE, and moving. After receiving the query request, the MTU GW reports the information of the MTC UE to the MTC GW, and the MTC GW sends the MTC UE information to the MTC Server. After the MTC GW receives the query request sent by the MTC server, the MTC GW needs to perform security verification on the MTC server. Specifically, the MTC GW can obtain information about the MTC Server that the core network is allowed to access. For example, the service identifier, the IP address, and the like, determining whether the MTC server is within the range of the MTC server that is allowed to access, and if yes, continuing to process the query request, according to the identifier of the pre-acquired MTC UE, being the MTC UE Obtaining, by the address of the allocated mobility management network element and the address of the MTC server address of the MTC UE, obtaining the address of the mobility management network element allocated for the MTC UE, and forwarding the query request to the Mobility management network element; otherwise, the MTC GW rejects the query request. Specifically, the E-UTARN network is taken as an example. FIG. 9 is a flowchart of the MTC Server sending an inquiry request to the MME through the MTC GW to obtain information about the access layer of the MTC UE. As shown in FIG. 9, the MTC Server passes the MTC GW. Sending a query request to the MME, and obtaining the information of the MTC UE mainly includes the following steps:

5901 , MTC UE附着到 PS网络; 5901, the MTC UE is attached to the PS network;

5902, MTC UE向 MTC Server发起业务层注册; S903 , 当 MTC UE注册到 MTC Server后, 如果 MTC Server出于业务控 制的目的, MTC UE决定需要查询 MTC UE的当前信息(主要指接入层信息); 在该步骤中, MTC Server可能出于多种可能目的需要获得 MTC UE的 信息, 例 ¾口: 5902, the MTC UE initiates a service layer registration with the MTC Server; S903, after the MTC UE registers with the MTC Server, if the MTC Server is for the purpose of service control, the MTC UE determines that the current information of the MTC UE needs to be queried (mainly refers to the access layer information). In this step, the MTC Server may need to obtain information about the MTC UE for a variety of possible purposes, for example:

MTC Server希望得知 MTC UE所使用的 IMSI、 IMEI情况, 以检 -险为 MTC UE所配备的 SIM卡是否被盗用, 即 IMSI、 IMEI绑定关系是否正常; 或者, The MTC Server wants to know the IMSI and IMEI conditions used by the MTC UE to check whether the SIM card provided by the MTC UE is stolen, that is, whether the IMSI or IMEI binding relationship is normal; or

MTC Server希望得知 MTC UE的当前的位置信息(如 TA区域、 Cell小 区等), 以判断 MTC UE是否在不被允许的位置区域接入, 或者是否移动到 不被允许的位置区域; S904, MTC Server向 MTC GW发送查询请求以查询 MTC UE的信息, 该查询请求中可以携带 MTC UE的标识及该 MTC Server的地址等信息; The MTC Server needs to know the current location information (such as the TA area, the cell cell, and the like) of the MTC UE to determine whether the MTC UE accesses in the location area that is not allowed, or moves to the location area that is not allowed; S904, The MTC Server sends a query request to the MTC GW to query the information of the MTC UE, where the query request may carry the identifier of the MTC UE and the address of the MTC Server;

S905 , MTC GW接收上述查询请求, 对该 MTC Server进行合法认证, 确定该 MTC Server合法; 5906, MTC GW根据预先获取的 MTC UE的标识、 为该 MTC UE分配 的 MME的地址以及为该 MTC UE月艮务的 MTC Server的地址之间的对应关 系, 获取为该 MTC UE分配的 MME的地址; S905: The MTC GW receives the foregoing query request, performs legal authentication on the MTC Server, and determines that the MTC Server is legal. 5906. The MTC GW acquires, according to the identifier of the pre-acquired MTC UE, the address of the MME allocated to the MTC UE, and the address of the MTC server that is used for the MTC UE, the MME allocated for the MTC UE. address;

5907, MTC GW将上述查询请求转发给 MME; S908, MME才艮据 MTC UE的当前上下文, 向 MTC GW返回 MTC UE 的当前信息, MTC GW将该 MTC UE的当前信息发送给 MTC Server。 通过步骤 S903 - S908, MTC Server通过 MTC GW从 MME处获得了 MTC UE的当前信息, 从而可以才艮据 MTC UE的当前信息, 判断 MTC UE 的当前行为, 进一步可对 MTC UE的行为做出控制。 具体地,在上述步 4聚中, MTC Server向 MME请求的 MTC UE的信息包 括但不限于以下之一或其任意组合: 5907, the MTC GW forwards the foregoing query request to the MME; S908, the MME returns the current information of the MTC UE to the MTC GW according to the current context of the MTC UE, and the MTC GW sends the current information of the MTC UE to the MTC Server. Through the steps S903-S908, the MTC Server obtains the current information of the MTC UE from the MME through the MTC GW, so that the current behavior of the MTC UE can be determined according to the current information of the MTC UE, and the behavior of the MTC UE can be further controlled. . Specifically, in the foregoing step, the information of the MTC UE requested by the MTC Server to the MME includes, but is not limited to, one of the following or any combination thereof:

A) MME从 HSS处获得的 MTC UE当前业务签约数据。 A) The current service subscription data of the MTC UE obtained by the MME from the HSS.

B) MTC UE所使用的 IMSI、 IMEI; 具体地, MTC UE所使用的 IMSI 是 MTC UE在附着到网络时在附着消息中必须携带的, MME可以从附着消 息中获取 MTC UE使用的 IMSI , 而 IMEI则可能是 MTC UE在附着时提供 给网络的, 也可能是网络根据需要的向 MTC UE查询获得的。 B) IMSI, IMEI used by the MTC UE; specifically, the IMSI used by the MTC UE is required to be carried in the attach message when the MTC UE attaches to the network, and the MME can obtain the IMSI used by the MTC UE from the attach message, and The IMEI may be provided to the network by the MTC UE when it is attached, or may be obtained by the network querying the MTC UE according to the need.

C) MTC UE在 MME上的上下文信息, 例如, MTC UE的当前位置区域 (这些位置区域可以是: TA区域、 Cell小区)和/或 MTC UE当前的状态(如:C) Context information of the MTC UE on the MME, for example, the current location area of the MTC UE (the location areas may be: TA area, Cell) and/or the current status of the MTC UE (eg:

MTC UE当前是附着状态、 连接状态、 空闲状态等)。 ( C )接入控制网元向移动性管理网元订阅 MTC UE的相关事件通 口 由于业务管理的需要, MTC Server需要及时获知底层接入层发送的事件 (如 MTC UE从网络附着、 去附着、 位置变更等), 并根据这些事件做出相 应的决策, 以控制 MTC UE的行为, 因此, MTC Server可以通过 MTC GW 向移动性管理网元订阅这些接入层事件, 移动性管理网元则在相应的接入层 事件发生时, 通过 MTC GW及时向 MTC Server上报事件通知, 该事件通知 中携带有 MTC UE的当前信息。 在该种情况下, MTC Server的处理与上述(B ) 的处理基本相同, MTC Server在向 MTC GW发送订阅 MTC UE的相关事件的查询请求后, MTC GW 也需要对该 MTC Server进行安全验证, 验证合法后再将该查询请求转发给 为该 MTC UE分配的移动性管理网元,具体方法与上述相同,在此不再赞述。 并且, 在转发前, MTC GW也需要获取为该 MTC UE分配的移动性管理网 元的地址。 与上述 ( B ) 的区别在于, MTC Server通过 MTC GW向移动性管理网 元发送的查询请求是用于订阅 MTC UE的相关事件的, 即请求移动性管理网 元在与 MTC UE相关的接入层事件发生时, 通过 MTC GW向 MTC Server 上 ·ί艮事件通知。 图 10为以 E-UTRAN网络为例, MTC Server向 MME订阅 MTC UE的 相关事件, 以获取该 MTC UE的信息的流程图, 如图 10所示, MTC Server 向 MME订阅 MTC UE的相关事件,以获取该 MTC UE的信息主要包括以下 步骤: The MTC UE is currently attached, connected, idle, etc.). (C) The access control network element subscribes to the relevant event port of the MTC UE to the mobility management network element. Due to the need of service management, the MTC Server needs to know the event sent by the underlying access layer in time (for example, the MTC UE attaches and detaches from the network) , location change, etc., and make corresponding decisions based on these events to control the behavior of the MTC UE. Therefore, the MTC Server can subscribe to these access layer events to the mobility management network element through the MTC GW, and the mobility management network element When the corresponding access layer event occurs, the MTC GW reports the event notification to the MTC server in time, and the event notification carries the current information of the MTC UE. In this case, the processing of the MTC Server is basically the same as the processing of the above (B). After the MTC Server sends a query request for the relevant event of the subscription to the MTC UE to the MTC GW, the MTC GW The MTC server needs to perform security verification. After the authentication is valid, the query request is forwarded to the mobility management network element allocated to the MTC UE. The specific method is the same as the above, and is not mentioned here. Moreover, before forwarding, the MTC GW also needs to obtain the address of the mobility management network element allocated for the MTC UE. The difference from the above (B) is that the query request sent by the MTC Server to the mobility management network element through the MTC GW is related to the event for subscribing to the MTC UE, that is, requesting the mobility management network element to access in connection with the MTC UE. When a layer event occurs, the MTC GW notifies the event to the MTC Server. FIG. 10 is a flow chart of the MTC server subscribing to the MME to obtain the information about the MTC UE by using the E-UTRAN network as an example. The information about obtaining the MTC UE mainly includes the following steps:

5101 , MTC UE附着到 PS网络; 5101, the MTC UE is attached to the PS network;

5102, MTC UE向 MTC Server发起业务层注册; S 103 , 当 MTC UE注册到 MTC Server后, 才艮据业务管理的需要, MTC5102: The MTC UE initiates a service layer registration with the MTC Server; S103, after the MTC UE registers with the MTC Server, according to the needs of the service management, the MTC

Server需要及时获知底层接入层发生的与该 MTC UE相关的事件, 因此, 确 定向 MME订阅这些事件; The Server needs to know the events related to the MTC UE that occur in the underlying access layer in time, and therefore, it is determined that the MME subscribes to these events;

5104, MTC Server向 MTC GW发送订阅与 MTC UE相关的接入层事件 的查询请求; 需要明确的是, MTC Server可以一次仅订阅一个或一类接入层事件, 也 可以一次订阅多个或多类接入层事件。 5104. The MTC Server sends a query request for the access layer event related to the MTC UE to the MTC GW. It is clear that the MTC Server can subscribe to only one or one type of access layer event at a time, or can subscribe to multiple or more at a time. Class access layer events.

5105 , MTC GW接收上述查询请求, 并对该 MTC Server进行安全-险证, -险证该 MTC Server合法; 5105, the MTC GW receives the above query request, and performs a security-risk certificate on the MTC Server, and the insurance card is legal;

5106 , MTC GW根据预先获取的 MTC UE的标识、 为该 MTC UE分配 的 MME的地址以及为该 MTC UE月艮务的 MTC Server的地址之间的对应关 系, 获取为该 MTC UE分配的 MME的地址; The MTC GW obtains the MME allocated for the MTC UE according to the correspondence between the identifier of the MTC UE, the address of the MME allocated for the MTC UE, and the address of the MTC server for the MTC UE. Address

5107, MTC GW将上述查询请求转发给 MME,向 MME订阅与 MTC UE 相关的接入层事件; 5108, 与 MTC Server所订阅的对应的接入层事件发生; 5107. The MTC GW forwards the foregoing query request to the MME, and subscribes to the MME for an access layer event related to the MTC UE. 5108, an access layer event corresponding to the subscription subscribed by the MTC server occurs;

5109, MME在接入层事件发生后, 主动向 MTC GW上 4艮这些接入层事 件的事件通知, 该事件通知中携带有 MTC UE当前的相关信息; 5109. After the access layer event occurs, the MME actively sends an event notification to the MTC GW to the event of the access layer event, where the event notification carries the current related information of the MTC UE.

5110 , MTC GW将接收到的上述事件通知发送给 MTC Server。 在图 10所示的流程中, MTC Server所订阅的与 MTC UE有关的接入层 事件发生, 可以是如下事件中的一种或若千种: 5110. The MTC GW sends the received event notification to the MTC Server. In the process shown in FIG. 10, the access layer event related to the MTC UE subscribed by the MTC server may be one of the following events or thousands:

A) MTC UE的签约数据的变化; 当 HSS变更 MTC UE的签约数据后, HSS需要向 MME重新下发新的签约数据, MME收到新的签约数据后, 可 以通知 MTC Server该签约数据有变化、 或直接将新的签约数据发送给 MTC Server; A) The change of the subscription data of the MTC UE; after the HSS changes the subscription data of the MTC UE, the HSS needs to re-issue the new subscription data to the MME, and after receiving the new subscription data, the MME may notify the MTC Server that the subscription data has changed. , or directly send new contract data to the MTC Server;

B) MTC UE的状态变化; 例如, MTC UE附着到网络、 从网络去附着、 由连接态变更为空闲态、 由空闲态变更为连接态等; B) the state change of the MTC UE; for example, the MTC UE is attached to the network, detached from the network, changed from the connected state to the idle state, changed from the idle state to the connected state, and the like;

C) MTC UE的位置区域的变化; 例如, MTC UE发生了位置移动等, 向 MME发送了位置更新消息等; D) MTC UE的网络变化; 例如, MTC UE发生了基站、 网络的切换, 向C) a change in the location area of the MTC UE; for example, a location change or the like occurs in the MTC UE, a location update message is sent to the MME, etc.; D) a network change of the MTC UE; for example, a handover of the base station and the network occurs in the MTC UE,

MME发送了切换消息等。 在具体实施过程中, 上述 (B )、 ( C ) 所述的获取 MTC UE的方法可以 单独使用, 也可以结合使用。 例如, 在上述图 9所示的流程中, 在步 4聚 S903 中 MTC Server请求查询的 MTC UE的信息中可以进一步包括: D)该 MTC UE所发生的移动性事件, 例如, MTC UE附着到网络、 MTCThe MME sends a handover message or the like. In the specific implementation process, the methods for obtaining the MTC UE described in (B) and (C) above may be used alone or in combination. For example, in the foregoing process shown in FIG. 9, the information of the MTC UE that the MTC Server requests to query in the step S aggregation S903 may further include: D) a mobility event that occurs in the MTC UE, for example, the MTC UE is attached to Network, MTC

UE从网络去附着、 MTC UE位置更新、 MTC UE发生基站切换、 MTC UE 发生网络切换等。 则在上述事件发生时, MME将通过 MTC GW向 MTC Server发送事件 通知,从而使 MTC Server获知该 MTC UE当前发生的事件,以及该 MTC UE 的当前信息。 The UE detaches from the network, the MTC UE location update, the MTC UE base station handover, the MTC UE network handover, and the like. Then, when the event occurs, the MME sends an event notification to the MTC server through the MTC GW, so that the MTC server knows the current event of the MTC UE and the current information of the MTC UE.

MTC Server也可以在图 9的步骤 S908后, 获取到 MTC UE的当前信息 后,进一步执行图 10中的步骤 S 103及其之后的步骤,或者,在上述步骤 S902 后, 同时执行步骤 S903和步骤 S 103 , 以订阅 MTC UE的相关事件, 从而在 这些事件发生时, 通过 ΜΜΕ上艮的事件通知, 获知这些事件的发生, 并进 一步获取 MTC UE的当前信息。 通过上述图 7至图 10所示的流程, MTC Server可以通过 MTC GW从 MME获得 MTC UE的信息, 具体地可以是 MTC UE的签约数据、 MTC UE 的当前状态、 MTC UE的位置区域信息等。 该获得 MTC UE信息的方式, 可 以是 MTC Server主动通过 MTC GW向 MME查询, 也可以是 MTC Server 通过 MTC GW向 MME订阅相关的事件后, MME在事件发生时通知 MTC Server, 或者, 还可以是 MME根据 MTC UE的签约数据中的指示, 主动将 接入层事件通过 MTC GW通知给 MTC Server。 当 MTC Server从底层接入层获得了 MTC UE的信息, MTC Server可以 凭借这些信息, 可以进一步判断 MTC UE的行为, 并根据业务做出决策以控 制 MTC UE的行为(例如, 当 MTC UE在非允许时间内接入时, MTC Server 可以要求去附着该 MTC UE; 当 MTC UE移动到非允许区域时, MTC Server 可以要求去附着该 MTC UE等)。 在上述方法中, 为了实现 MTC Server与移动性管理网元之间的数据交 互, MTC GW需要获取并保存 MTC UE的标识、 为该 MTC UE分配的移动 性管理网元的地址以及为该 MTC UE月艮务的 MTC Server的地址之间的对应 关系, 在具体实施过程中, MTC Server获取该对应关系包括但不限于以下三 种方法: 方法一, MTC Server向 MTC GW发送携带有为该 MTC UE分配的移动 性管理网元的标识信息的注册通知消息; 具体地, 在 MTC UE附着到网络后, MTC UE向 MTC Server发送注册 请求时,在该注册请求中携带为该 MTC UE分配的移动性管理网元的标识信 息, MTC Server在接收到该注册请求后, 向 MTC GW发送注册通知消息, 该消息中携带为该 MTC UE分配的移动性管理网元的标识信息,通过该注册 通知消息, MTC GW可以获取上述对应关系。 例如, 在 EPS网络中, MTC UE在向 MTC Server发送的注册消息中可 以携带网络为该 MTC UE 的全球唯一临时标识 (Global Unique Temporary Identity, 简称为 GUTI ), 而 GUTI中包含有为 MTC UE分配的 MME的 ID 信息, MTC Server将该 GUTI携带在注册通知消息中发送给 MTC GW, MTC GW通过解析该 GUTI, 可以获取为该 MTC UE分配的 MME的地址, 从而 可以获取上述对应关系; 方法二, 为 MTC UE分配的移动性管理网元以及为该 MTC UE月艮务的 MTC Server主动向 MTC GW通知其各自地址, MTC GW在接收到两者上 4艮 的信息后, 建立上述对应关系; 方法三, MTC GW通过其与用户签约数据存储器之间的接口, 从用户签 约数据存储器获取为 MTC UE 分配的移动性管理网元的地址, 并获取为该 MTC UE月艮务的 MTC Server主动通知的该 MTC Server的相关信息, 从而建 立上述对应关系。 下面以 E-UTRAN网络为例, 对上述三种移动性管理网元的地址的获取 方法进行说明。 方法一 图 11描述 MTC GW釆用该方法 MTC UE的标识、 为该 MTC UE服务 的 MTC Server的地址以及为该 MTC UE分配的 MME的地址之间的对应关 系的流程图, 如图 11所示, MTC GW获取该对应关系主要包括以下步 4聚: The MTC Server may further perform the step S103 in FIG. 10 and the subsequent steps after acquiring the current information of the MTC UE after step S908 of FIG. 9, or in the above step S902. Then, step S903 and step S103 are simultaneously performed to subscribe to the related events of the MTC UE, so that when these events occur, the event notifications are notified by the event notification, and the current information of the MTC UE is further acquired. The MTC Server may obtain the information of the MTC UE from the MME through the MTC GW, and may be the subscription data of the MTC UE, the current state of the MTC UE, the location area information of the MTC UE, and the like. The method for obtaining the information of the MTC UE may be that the MTC server actively queries the MME through the MTC GW, or after the MTC server subscribes the related event to the MME through the MTC GW, the MME notifies the MTC Server when the event occurs, or may be The MME actively notifies the access layer event to the MTC Server through the MTC GW according to the indication in the subscription data of the MTC UE. When the MTC Server obtains the information of the MTC UE from the underlying access layer, the MTC Server can further determine the behavior of the MTC UE by using the information, and make a decision according to the service to control the behavior of the MTC UE (for example, when the MTC UE is in the non- When the access time is allowed, the MTC Server may request to attach the MTC UE; when the MTC UE moves to the non-allowed area, the MTC Server may request to attach the MTC UE, etc.). In the above method, in order to implement data interaction between the MTC Server and the mobility management network element, the MTC GW needs to acquire and save the identifier of the MTC UE, the address of the mobility management network element allocated for the MTC UE, and the MTC UE. The corresponding relationship between the addresses of the MTC servers of the monthly service. In the specific implementation process, the MTC Server obtains the corresponding relationship, including but not limited to the following three methods: Method 1: The MTC Server sends the carried message to the MTC GW for the MTC UE. The registration notification message of the identification information of the assigned mobility management network element; specifically, after the MTC UE sends the registration request to the MTC Server after the MTC UE is attached to the network, the mobility request is allocated to the MTC UE in the registration request. After receiving the registration request, the MTC Server sends a registration notification message to the MTC GW, where the message carries the identification information of the mobility management network element allocated for the MTC UE, and the registration notification message is used. The MTC GW can obtain the above correspondence. For example, in the EPS network, the MTC UE may carry the Global Unique Temporary Identity (GUTI) of the MTC UE in the registration message sent to the MTC Server, and the GUTI includes the MTC UE. MME ID The information is sent by the MTC Server to the MTC GW in the registration notification message. The MTC GW can obtain the address of the MME allocated to the MTC UE by parsing the GUTI, so that the corresponding relationship can be obtained. Method 2 is an MTC UE. The allocated mobility management network element and the MTC server for the MTC UE are actively notified to the MTC GW of their respective addresses, and the MTC GW establishes the corresponding relationship after receiving the information of the two on the MTC GW; Method 3, MTC The GW obtains the address of the mobility management network element allocated for the MTC UE from the user subscription data storage through the interface between the user and the data storage of the user, and acquires the MTC Server actively notified by the MTC server of the MTC UE. Relevant information, thereby establishing the above correspondence. The following takes the E-UTRAN network as an example to describe the method for obtaining the addresses of the above three mobility management network elements. Method 1 FIG. 11 is a flow chart showing the correspondence between the MTC GW, the identifier of the MTC UE, the address of the MTC Server serving the MTC UE, and the address of the MME allocated for the MTC UE, as shown in FIG. The MTC GW obtains the corresponding relationship mainly including the following steps:

5111 , MTC UE附着到 PS网络, 在附着过程中 MTC UE被分配了一个 GUTI, 该 GUTI被包含在附着响应中发送给 MTC UE; 才艮据现有技术下 GUTI的构成, GUTI中包含有为 MTC UE分配的 MME 的 ID信息, 才艮据该 MME ID, 可以寻址到为 MTC UE分配的 MME。 5111, the MTC UE is attached to the PS network, and the MTC UE is allocated a GUTI in the attaching process, and the GUTI is included in the attach response and sent to the MTC UE. According to the composition of the GUTI in the prior art, the GUTI includes The ID information of the MME allocated by the MTC UE can be addressed to the MME allocated for the MTC UE according to the MME ID.

5112, MTC UE在接入到 PS网络后, 向 MTC Server发起应用层注册, 在注册消息中携带 GUTI信息; After the access to the PS network, the MTC UE initiates application layer registration to the MTC server, and carries the GUTI information in the registration message.

5113 , MTC Server在接收到 MTC UE的注册请求后, 向 MTC GW发送 注册通知消息; 在该注册通知消息中携带有: MTC UE的信息、 MTC Server的信息、After receiving the registration request of the MTC UE, the MTC Server sends a registration notification message to the MTC GW. The registration notification message carries: MTC UE information, MTC Server information,

GUTI信息(即 GUTI信息)。 该 MTC UE的信息包括: MTC UE的 IMSI和 / 或 MTC UE的 IP地址; 该 MTC Server的信息包括: 该 MTC Server的月艮务 标识和 /或 MTC Server的 IP地址。 5114 , MTC GW才艮据注册通知消息中携带的 GUTI信息,解析得为 MTC UE分配的 MME的地址; 同时, MTC GW在本地保存 MTC UE的标识、 为该 MTC UE月艮务的 MTC Server的地址以及为该 MTC UE分配的 MME的地址之间的对应关系, 从而可以实现三者的关联。 GUTI information (ie GUTI information). The information of the MTC UE includes: an IMSI of the MTC UE and/or an IP address of the MTC UE; the information of the MTC Server includes: a monthly service identifier of the MTC Server and/or an IP address of the MTC Server. 5114. The MTC GW parses the address of the MME allocated by the MTC UE according to the GUTI information carried in the registration notification message. Meanwhile, the MTC GW locally saves the identifier of the MTC UE and the MTC Server of the MTC UE. The correspondence between the address and the address of the MME allocated for the MTC UE, so that the association of the three can be achieved.

5115 , 如果 MTC Server根据业务数据判断允许 MTC UE注册, 则返回 注册响应。 在该注册响应中, 可能携带若千的业务层参数给 MTC UE。 方法二 图 12描述 MTC GW釆用该方法 MTC UE、 为该 MTC UE月艮务的 MTC Server的地址以及为该 MTC UE分配的 MME的地址之间的对应关系的¾¾程, 如图 12所示, MTC GW获取该对应关系主要包括以下步 4聚: 5115. If the MTC Server determines to allow the MTC UE to register according to the service data, a registration response is returned. In this registration response, it is possible to carry thousands of service layer parameters to the MTC UE. Method 2 FIG. 12 illustrates a process in which the MTC GW uses the method MTC UE, the address of the MTC server for the MTC UE, and the address of the MME allocated for the MTC UE, as shown in FIG. The MTC GW obtains the corresponding relationship mainly including the following steps:

5211 , MTC UE向网络发送附着请求, 具体地 MTC UE向 MME发送附 着请求; 5211. The MTC UE sends an attach request to the network, where the MTC UE sends an attach request to the MME.

5212, MME向 HSS发送位置更新请求; S213 , HSS向 MME发送位置更新响应; 在该过程中, HSS向 MME下发 MTC UE的签约数据, 其中包括 M2M 签约数据, 在 M2M签约数据中, 包含了服务于该 MTC UE的 MTC Server 的信息 (可能是一个域名, 也可能是一个 IP地址), 根据该信息可以解析得 对应的 MTC Server的地址。 S214 , MME指示 SGW/PGW为 MTC UE创建合适的 载; 5212: The MME sends a location update request to the HSS. S213: The HSS sends a location update response to the MME. In the process, the HSS sends the subscription data of the MTC UE to the MME, where the M2M subscription data is included in the M2M subscription data. The information of the MTC server serving the MTC UE (which may be a domain name or an IP address), according to which the address of the corresponding MTC Server can be resolved. S214. The MME instructs the SGW/PGW to create a suitable payload for the MTC UE.

5215 , MME向 MTC UE发送附着响应; 5215. The MME sends an attach response to the MTC UE.

5216, MME向 MTC GW发送通知消息, 告知为 MTC UE分配的 MME 的地址; 并且, 可选地, MME可以^ 1为 MTC UE月艮务的 MTC Server的地址也包 含在通知消息中, 从而使得 MTC GW通过该通知消息即可以获取 MTC UE、 为该 MTC UE月艮务的 MTC Server的地址以及为该 MTC UE分配的 MME的 地址之间的对应关系。 具体地, 上述通知消息, 可以是一个独立的通知消息, 也可以存在于 MME向 MTC GW发送的其他消息中 (例如, 在 MTC UE附着时, MME向 MTC GW发送一个附着事件上 4艮)。在该通知消息中包含如下信息: MTC UE 的标识信息 (具体可以包括: MTC UE的标识 (如 IMSI ) 和 /或 MTC UE的 IP地址) 以及 MME的标识信息 (具体可以包括: MME的标识和 /或 MME 的 IP地址;)。 才艮据该通知消息中携带的 MTC UE和 MME的标识信息的对应 关系, MTC GW可以获知为 MTC UE分配的 MME的地址信息。 5216, MTC GW MME sends a notification message to inform the MME address is assigned MTC UE; and, alternatively, may MME ^ 1 month MTC UE that works to the MTC Server address is also included in the notification message, so that The MTC GW can obtain the correspondence between the MTC UE, the address of the MTC server for the MTC UE, and the address of the MME allocated for the MTC UE by using the notification message. Specifically, the foregoing notification message may be an independent notification message, or may exist in other messages sent by the MME to the MTC GW (for example, when the MTC UE is attached, the MME sends an attach event to the MTC GW). The following information is included in the notification message: the identifier information of the MTC UE (which may include: the identifier of the MTC UE (such as the IMSI) and/or the IP address of the MTC UE) and the identifier information of the MME (specifically, the identifier of the MME may be included: / or MME's IP address ;). The MTC GW can learn the address information of the MME allocated for the MTC UE according to the correspondence between the identifier information of the MTC UE and the MME carried in the notification message.

5217, MTC UE向 MTC Server发起业务层的注册; 5217, the MTC UE initiates registration of the service layer to the MTC Server;

5218, MTC Server向 MTC GW发送注册通知消息; 具体地, MTC Server在该通知消息中携带的参数包括: MTC UE的标识 信息及该 MTC Server, 具体地, MTC UE的标识信息可以包括: MTC UE的 标识(例如, IMSI )和 /或 MTC UE的 IP地址, MTC Server的标识信息可以 包括: 该 MTC Server的月艮务标识和 /或 IP地址。 The MTC Server sends a registration notification message to the MTC GW. Specifically, the parameters that the MTC Server carries in the notification message include: the identifier information of the MTC UE and the MTC Server. Specifically, the identifier information of the MTC UE may include: The identifier of the MTC Server (for example, IMSI) and/or the IP address of the MTC server may include: a monthly service identifier and/or an IP address of the MTC Server.

MTC GW在接收到上述注册通知消息后, 可以获得为 MTC UE所服务 的 MTC Server的地址、 为 MTC UE分配的 MME的地址, 从而建立起 MTC UE的标识、 为该 MTC UE月艮务的 MTC Server的地址以及为该 MTC UE分 配的 MME三者之间的对应关系。 在图 12所示的流程中, 需要指出的是, 上述 S216步骤可以在 S215步 骤后发出, 也可以在 S213 步骤后发出, 具体在何步骤后发出, 具有同等的 效果, 在本发明中不作限定。 方法三 图 13描述 MTC GW釆用该方法 MTC UE、 为该 MTC UE月艮务的 MTC Server的地址以及为该 MTC UE分配的 MME的地址之间的对应关系的流程, 如图 13所示, MTC GW获取该对应关系主要包括以下步骤: S311 , MTC UE附着到 PS网络; 在 MTC UE 附着到网络的过程中, HSS 中保存了为 MTC UE分配的 MME的地址。 After receiving the registration notification message, the MTC GW can obtain the address of the MTC server served by the MTC UE and the address of the MME allocated to the MTC UE, thereby establishing the identifier of the MTC UE and the MTC of the MTC UE. The correspondence between the address of the server and the MME assigned to the MTC UE. In the flow shown in FIG. 12, it should be noted that the step S216 may be sent after the step S215, or may be sent after the step S213, and the specific step is performed after the step, which has the same effect, and is not limited in the present invention. . Method 3 FIG. 13 is a flowchart of the correspondence between the MTC GW, the MTC server address of the MTC UE, and the address of the MME allocated for the MTC UE, as shown in FIG. The MTC GW obtains the corresponding relationship mainly includes the following steps: S311: The MTC UE is attached to the PS network. In the process of attaching the MTC UE to the network, the address of the MME allocated for the MTC UE is saved in the HSS.

S312, MTC UE向 MTC Server发起业务层注册; S313 , MTC Server向 MTC GW发送注册通知消息; 在该注册通知消息携带有 MTC UE的标识信息以及 MTC Server的标识 信息, 其中, MTC UE的标识信息包括: MTC UE的标识 (例如, IMSI ) 和 /或 IP地址, MTC Server的标识信息包括: MTC Server的月艮务标识和 /或 IP 地址。 S312: The MTC UE initiates a service layer registration with the MTC Server. S313. The MTC Server sends a registration notification message to the MTC GW. The registration notification message carries the identifier information of the MTC UE and the identifier information of the MTC server, where the identifier information of the MTC UE includes: an identifier of the MTC UE (for example, IMSI) and / or IP address, MTC Server identification information includes: MTC Server's monthly service ID and / or IP address.

5314, MTC GW向 HSS查询为 MTC UE分配的 MME的地址, HSS返 回为 MTC UE分配的 MME的地址; 从而, 由步骤 S313和 S314, MTC GW获得了 MTC UE的标识、 为该 MTC UE月艮务的 MTC Server的地址以及为该 MTC UE分配的 MME的地址 三者之间的对应关系。 5314, the MTC GW queries the HSS for the address of the MME allocated for the MTC UE, and the HSS returns the address of the MME allocated by the MTC UE; thus, by the steps S313 and S314, the MTC GW obtains the identifier of the MTC UE, and the MTC UE is the elapsed time. The correspondence between the address of the MTC Server and the address of the MME allocated for the MTC UE.

5315 , MTC Server向 MTC UE发送注册响应; 在图 13所示的流程中,需要指出的是, MTC GW向 HSS查询为 MTC UE 分配的 MME的地址, 可以是: MTC GW向 HSS查询 MTC UE的签约数据, HSS在返回 MTC UE的签约数据的同时, 返回给 MTC UE分配的 MME的 地址; 也可以是: MTC GW向 HSS查询为 MTC UE分配的 MME的地址, HSS仅返回为 MTC UE分配的 MME的地址。 上述以接入控制网元为 MTC服务器为例进行说明, 如果接入控制网元 为 MTC网关, 则在上述方法 (A ) 中, MTC网关只需要与移动性管理网元 进行交互, 而不需要与 MTC服务器进行交互的步骤, 而在上述方法(B )和 上述方法(C ) 中, MTC服务器在接收到 MTC UE发送的注册请求时, 可以 向 MTC网关发送注册通知消息, MTC网关在接收到注册通知消息后, 向移 动性管理网元查询或订阅 MTC UE的信息或接入层事件,其具体实施过程中 可以从上述流程中得到, 具体不再赞述。 5, the MTC Server sends a registration response to the MTC UE. In the process shown in FIG. 13, the MTC GW queries the HSS for the address of the MME allocated to the MTC UE, which may be: The MTC GW queries the HSS for the MTC UE. The contract data, the HSS returns the address of the MME allocated to the MTC UE while returning the subscription data of the MTC UE; or: the MTC GW queries the HSS for the address of the MME allocated for the MTC UE, and the HSS only returns the allocation to the MTC UE. The address of the MME. The foregoing is an example in which the access control network element is an MTC server. If the access control network element is an MTC gateway, in the foregoing method (A), the MTC gateway only needs to interact with the mobility management network element, but does not need to The step of interacting with the MTC server, and in the foregoing method (B) and the foregoing method (C), when receiving the registration request sent by the MTC UE, the MTC server may send a registration notification message to the MTC gateway, and the MTC gateway receives the After the registration notification message is sent, the information about the MTC UE or the access layer event is queried or subscribed to the mobility management network element, and the specific implementation process can be obtained from the above process, and the details are not mentioned.

(二) 步骤 S603 在具体应用中, 接入控制网元可以通过从移动性管理网元获取底层接入 层的 MTC UE的信息, 判断 MTC UE是否满足预定条件, 从而判断是否允 许 MTC UE接入, 并在判断不允许 MTC UE接入的情况下, 向移动性管理 网元发送拒绝该 MTC UE接入的指示, 以控制 MTC UE的接入。 具体地, 上述预定条件包括但不限于以下之一或其任意组合: 允许 MTC UE接入的时间、允许 MTC UE接入的位置区 i或、允许 MTC UE使用的 IMSI 与 IMEI的绑定关系、 允许 MTC UE附着的网络、 允许 MTC UE接入的次数 等。 在具体实施过程中,上述预定条件可以作为 MTC UE的签约数据保存在 用户签约数据存储器中, 也可以保存在接入控制网元中。 例如, 如果预定条件中某一个条件为: MTC UE在一个月的时间内接入 的时长不超过为 24小时, 则可以由用户签约数据存储器将规则作为该 MTC UE的签约数据保存, 由接入控制网元记录该 MTC UE在一个月内接入的总 时长, 具体地, 接入控制网元可以从移动性管理网元中获取该 MTC UE的签 约数据, 并根据接收到的附着事件通知与去附着事件通知的时间差来计算 MTC UE每次接入的时长, 并才艮据该时长, 记录该 MTC UE在该月已接入的 总时长, 并据此判断该 MTC UE在该月接入的总时长是否超过 24小时, 从 而在下次接入接收到附着事件通知时, 判断是否不允许该 MTC UE接入。 同样, 对于其它的预定条件, 接入控制网元也可以根据该 MTC UE的当 前信息进行判断, 具体判断过程可以根据具体的条件进行。 具体地, 接入控 制网元在包括但不限于以下之一或其任意组合的情况下判断不允许 MTC UE 接入: (2) Step S603 In a specific application, the access control network element may determine whether the MTC UE is allowed to access by obtaining the information of the MTC UE of the underlying access layer from the mobility management network element, and determining whether the MTC UE satisfies a predetermined condition. And, if it is determined that the MTC UE is not allowed to access, send an indication to the mobility management network element to reject the access of the MTC UE, to control access of the MTC UE. Specifically, the foregoing predetermined conditions include, but are not limited to, one of the following or any combination thereof: a time when the MTC UE is allowed to access, a location area i that allows the MTC UE to access, or a binding relationship between the IMSI and the IMEI that the MTC UE is allowed to use, The network to which the MTC UE is allowed to be attached, the number of times the MTC UE is allowed to access, and the like. In a specific implementation process, the foregoing predetermined condition may be saved in the user subscription data storage as the subscription data of the MTC UE, or may be saved in the access control network element. For example, if one of the predetermined conditions is: The duration of the MTC UE accessing within one month is not more than 24 hours, the user may subscribe to the data store to save the rule as the subscription data of the MTC UE, by accessing The control network element records the total duration of the access of the MTC UE in one month. Specifically, the access control network element may obtain the subscription data of the MTC UE from the mobility management network element, and notify the attached event according to the received event. Determining the time difference of the event notification to calculate the duration of each access of the MTC UE, and recording the total duration of the MTC UE access in the month according to the duration, and determining that the MTC UE accesses in the month according to the duration Whether the total duration is more than 24 hours, so that when the next access receives the notification of the attachment event, it is determined whether the MTC UE is not allowed to access. Similarly, for other predetermined conditions, the access control network element may also perform judgment according to the current information of the MTC UE, and the specific determination process may be performed according to specific conditions. Specifically, the access control network element determines that the MTC UE is not allowed to access, including but not limited to one of the following or any combination thereof:

( 1 ) 判断 MTC UE在非允许时间请求附着到网络; ( 2 ) 判断 MTC UE在非允许位置区域请求附着到网络; (1) determining that the MTC UE requests to attach to the network during the non-permitted time; (2) determining that the MTC UE requests to attach to the network in the non-permitted location area;

( 3 ) 判断 MTC UE超过允许接入的次数; (3) determining that the MTC UE exceeds the number of allowed accesses;

( 4 )判断 MTC UE以不被允许的 IMSI与 IMEI的绑定关系请求附着到 网络; (4) determining that the MTC UE requests to attach to the network by using a binding relationship between the IMSI and the IMEI that is not allowed;

( 5 ) 判断 MTC UE移动到不允许的位置区域; ( 6 ) 判断 MTC UE附着到网络的时间超出了所允许的接入时间; (5) determining that the MTC UE moves to an unallowable location area; (6) determining that the time when the MTC UE is attached to the network exceeds the allowed access time;

( 7 ) 判断 MTC UE切换到不允许的网络。 进一步地,如果接入控制网元是在 MTC UE在请求附着的时候判断不允 许该 MTC UE接入,则接入控制网元向移动性管理网元发送拒绝该 MTC UE 附着的指示; 而如果接入控制网元是在 MTC UE已附着到网络后判断不允许 该 MTC UE接入,则接入控制网元向移动性管理网元发送去附着该 MTC UE 的指示。 在具体实施过程中, 如果接入控制网元是 MTC网关, 则 MTC网关可以 在判断出不允许 MTC UE接入网络后, 直接向移动性管理网元发送指示; 如 果接入控制网元是 MTC服务器, 则 MTC服务器在判断出不允许 MTC UE 接入网络后, 通过 MTC网关向移动性管理网元发送指示。 (三) 步 4聚 S605 在具体实施过程中, 移动性管理网元在接收到步骤 S603 中接入控制网 元发送的上述指示后, 居该指示, 执行相应的操作。 具体地, 如果移动性 管理网元是在 MTC UE发起附着请求的过程中, 接收到上述指示(此时接入 控制网元指示拒绝 MTC UE附着),则移动性管理网元拒绝 MTC UE的附着, 向 MTC UE返回附着拒绝响应; 而如是移动性管理网元是在 MTC UE附着 到网络后接收到上述指示 (此时接入控制网元指示去附着该 MTC UE ), 则 移动性管理网元执行去附着流程, 去附着该 MTC UE。 为进一步理解本发明实施例提供的上述技术方案,下面以 EPS网络为例, 通过具体实施例对上述方案进行说明。 方法实施例一 本实施例描述了 MTC Server利用在 MTC UE附着后, 从 MME获得的 MTC UE的信息, 对 MTC UE的接入进行控制的流程。 图 14为 MTC UE附着后, MTC Server才艮据查询到的该 MTC UE信息, 去附着该 MTC UE的流程图, 如图 14所示, MTC Server根据查询到的该 MTC UE信息, 去附着该 MTC UE主要包括以下步骤: (7) It is judged that the MTC UE switches to an unallowable network. Further, if the access control network element determines that the MTC UE does not allow access when the MTC UE requests attachment, the access control network element sends an indication to the mobility management network element to reject the attachment of the MTC UE; The access control network element is configured to determine that the MTC UE is not allowed to access after the MTC UE has attached to the network, and the access control network element sends an indication to the mobility management network element to attach the MTC UE. In the specific implementation process, if the access control network element is an MTC gateway, the MTC gateway may directly send an indication to the mobility management network element after determining that the MTC UE is not allowed to access the network; if the access control network element is the MTC After the server determines that the MTC UE is not allowed to access the network, the MTC server sends an indication to the mobility management network element through the MTC gateway. (3) Step 4: S605 In the specific implementation process, after receiving the foregoing indication sent by the access control network element in step S603, the mobility management network element performs the corresponding operation and performs the corresponding operation. Specifically, if the mobility management network element is in the process of initiating an attach request by the MTC UE, and receiving the foregoing indication (when the access control network element indicates to reject the MTC UE attach), the mobility management network element rejects the attachment of the MTC UE. Returning an attach rejection response to the MTC UE; if the mobility management network element receives the indication after the MTC UE attaches to the network (the access control network element indicates to attach the MTC UE), the mobility management network element Perform a detach process to attach the MTC UE. To further understand the above technical solutions provided by the embodiments of the present invention, the following solutions are described by using an EPS network as an example. Method Embodiment 1 This embodiment describes a flow in which the MTC Server controls the access of the MTC UE by using the information of the MTC UE obtained from the MME after the MTC UE is attached. FIG. 14 is a flowchart of the MTC server de-attaching the MTC UE according to the queried MTC UE information after the MTC UE is attached. As shown in FIG. 14, the MTC Server detaches the MTC UE according to the queried MTC UE information. The MTC UE mainly includes the following steps:

S401 , MTC UE接入到网络; S401. The MTC UE accesses the network.

S402, MTC UE向 MTC Server发起业务层注册; 5403 , MTC Server向 MTC GW查询 MTC UE的信息,或者向 MTC GW 订阅和该 MTC UE相关的接入层事件, MTC GW将所述查询、 订阅请求发 送给 MME; 如果是由 MTC GW对 MTC UE的接入进行控制, 则在步骤 S403中, MTC Server向 MTC GW发送的可以是注册通知消息, MTC GW在接收到注 册通 消息后, 向 MME发送查询或订阅请求。 S402. The MTC UE initiates a service layer registration with the MTC Server. S403, the MTC Server queries the MTC GW for the information of the MTC UE, or subscribes to the MTC GW for the access layer event related to the MTC UE, and the MTC GW sends the query and the subscription request to the MME; if the MTC GW is used by the MTC GW After the access control is performed, in step S403, the MTC Server may send a registration notification message to the MTC GW, and after receiving the registration message, the MTC GW sends a query or subscription request to the MME.

5404, 与 MTC UE相关的接入层事件发生; 该步 4聚发生在 MTC Server订阅接入层事件后。 5404. An access layer event related to the MTC UE occurs. This step occurs after the MTC Server subscribes to the access layer event.

5405 , MME向 MTC GW返回所查询的 MTC UE的信息, 或当 MTC Server通过 MTC GW向 MME订阅接入层事件, 且接入层事件发生 ( S404 ) 后, MME向 MTC GW通知接入层事件。 MTC GW将所查询的信息、 或事 件通知发送给 MTC Server; S405: The MME returns the information of the queried MTC UE to the MTC GW, or the MME notifies the MTC GW of the access layer event after the MTC server subscribes the access layer event to the MME through the MTC GW, and the access layer event occurs (S404). . The MTC GW sends the queried information or event notification to the MTC Server;

5406, 当 MTC Server获得了 MTC UE的信息, 或获得了接入层的事件 通知后, MTC Server 居业务管理需要, 判断需要去附着该 MTC UE; S407, MTC Server向 MTC GW发送去附着请求, MTC GW向 MME发 送去附着请求; 5406, after the MTC Server obtains the information of the MTC UE, or obtains the event notification of the access layer, the MTC Server needs to be in the service management, and determines that the MTC UE needs to be attached; S407, the MTC Server sends a detach request to the MTC GW. The MTC GW sends a detach request to the MME;

5408, MME接收到去附着请求后,执行去附着流程,去附着该 MTC UE; After the MME receives the detach request, the MME performs a detach procedure to attach the MTC UE.

5409, MME向 MTC GW发送去附着响应, MTC GW将去附着响应发 送给 MTC Server。 在上述流程中, 如果为 MTC GW执行是否去附着 MTC UE, 则在上述 步骤 S405中, MTC GW获取到 MME返回的 MTC UE的信息或上 4艮的事件 通知后, 可以根据业务管理需要, 判断是否需要去附着该 MTC UE, 如果是, 则向 MEE发送去附着请求, 然后执行步骤 S408和 S409, 并且, 在 S409中 MTC GW可以将去附着响应发送给 MTC Server, 也可以不向 MTC Server发 送去附着响应。 方法实施例二 本实施例描述了 MTC Server利用在 MTC UE时, 从 MME获得的 MTC UE的信息, 对 MTC UE的接入进行控制的流程。 在多数情况下, M2M通讯中对 MTC UE的控制, 有一个 4艮重要的部分 是: 接入控制, 包括: 控制 MTC UE的接入时间、 接入次数、 接入位置等。 如果 MTC UE的当前接入不在允许范围内, 则网络应该拒绝该 MTC UE的 附着, 或者去附着该 MTC UE, 并且也可以进一步下发指示给网络, 当类似 情况发生时候, 网络可以自行拒绝该 MTC UE的附着请求。 在这种应用下, MME可以在 MTC UE附着时, 主动发送附着事件通知 给 MTC GW, MTC GW将该事件通知发送给 MTC Server, 由 MTC Server 判断附着是否允许。 同样地, MTC GW也可以不将该事件通知发送给 MTC Server, 而直接根据该事件通知, 判断 MTC UE的附着是否允许。 图 15为 MTC UE附着时, MME向 MTC GW发送附着事件通知, 由 MTC GW/MTC Server判断是否允许 MTC UE附着的流程示意图, 如图 15 所示, 主要包括以下步骤: S501 , MTC UE向网络发送附着请求, 具体地向 MME发送附着请求; 5409. The MME sends a detach response to the MTC GW, and the MTC GW sends a detach response to the MTC Server. In the above process, if the MTC GW is to perform the detachment of the MTC UE, the MTC GW may obtain the information of the MTC UE returned by the MME or the event notification of the last 4 , in the above step S405, and may determine according to the service management requirement. Whether to attach the MTC UE, if yes, send a detach request to the MEE, and then perform steps S408 and S409, and in S409, the MTC GW may send the detach response to the MTC Server, or may not send to the MTC Server. De-attach response. Method embodiment two This embodiment describes a flow in which the MTC Server controls the access of the MTC UE by using the information of the MTC UE obtained from the MME when the MTC UE is used. In most cases, there are four important parts in the control of the MTC UE in the M2M communication: access control, including: controlling the access time, the number of accesses, and the access location of the MTC UE. If the current access of the MTC UE is not within the allowable range, the network should reject the attachment of the MTC UE, or attach the MTC UE, and further issue an indication to the network. When a similar situation occurs, the network may refuse the network. MTC UE attach request. In this application, the MME may actively send an attach event notification to the MTC GW when the MTC UE attaches, and the MTC GW sends the event notification to the MTC Server, and the MTC Server determines whether the attach is allowed. Similarly, the MTC GW may not send the event notification to the MTC Server, but directly determine whether the attachment of the MTC UE is allowed according to the event notification. FIG. 15 is a schematic diagram of a flow of an attach event notification sent by the MME to the MTC GW when the MTC UE is attached, and the MTC GW/MTC Server determines whether to allow the MTC UE to attach. As shown in FIG. 15 , the method mainly includes the following steps: S501 , MTC UE to the network Sending an attach request, specifically sending an attach request to the MME;

5502, MME接收到该附着请求后, 向 HSS发送位置更新, 在该过程中, HSS向 MME下发 MTC UE的签约数据; After the MME receives the attach request, the MME sends a location update to the HSS. In the process, the HSS sends the subscription data of the MTC UE to the MME.

5503 , MME向 MTC GW发送附着事件通知; 5503. The MME sends an attach event notification to the MTC GW.

5504, 可选地, 如果由 MTC GW判断附着是否允许, 则 MTC GW在接 收到附着事件通知后 居业务管理需要, 判断是否允许该 MTC UE附着, 在 本实施例中, MTC GW 居业务管理需要, 判断不允许该 MTC UE附着; 在附着事件中, MME 可能包含该次附着的若千信息, 例如: 接入的网 络、 接入的位置、 接入的时间、 该 MTC UE使用的 IMSI与 IMEI的绑定关 系等。 MTC GW根据该 MTC UE的允许接入的信息, 例如, 该 MTC UE允 许接入的时间、 允许接入的位置区域、 允许接入的次数、 允许接入的网络、 允许使用的 IMSI与 IMEI的绑定关系等, 判断该 MTC UE的本次附着在非 允许时间、 或非允许位置区域、 或 MTC UE当前接入次数已超过允许接入的 次数、 或 MTC UE使用不被允许的 IMSI与 IMEI、 或 MTC UE请求附着到 不被允许的网络等, 则 MTC GW判断不允许该 MTC UE附着。 MTC GW在判断不允许该 MTC UE附着后, 执行步骤 S508。 下面步骤 S505到步骤 S506为由 MTC Server判断是否允许该 MTC UE 附着所执行的步骤, 在执行步骤 S505 -步骤 S507的情况下, 不执行上述步 骤 S504。 S505 , MTC GW向 MTC Server发送所述事件通知; 5504. Optionally, if the MTC GW determines whether the attach is allowed, the MTC GW needs the service management after receiving the notification of the attach event, and determines whether the MTC UE is allowed to be attached. In this embodiment, the MTC GW needs to be in the service management manner. It is determined that the MTC UE is not allowed to attach; in the attach event, the MME may include the thousands of information of the attached, for example: the accessed network, the location of the access, the time of the access, the IMSI and the IMEI used by the MTC UE. Binding relationships, etc. The MTC GW according to the information of the MTC UE's allowed access, for example, the time the MTC UE allows access, the location area allowed to access, the number of times the access is allowed, the network allowed to access, the IMSI and the IMEI that are allowed to be used. Binding relationship, etc., determining that the current MTC UE is attached to the non-permitted time, or the non-allowed location area, or the number of times the current access times of the MTC UE has exceeded the allowed access, or the IMSI and IMEI that the MTC UE uses are not allowed. If the MTC UE requests to attach to an unallowed network or the like, the MTC GW determines that the MTC UE is not allowed to attach. After determining that the MTC UE is not allowed to attach, the MTC GW performs step S508. The following steps S505 to S506 are steps performed by the MTC Server to determine whether to allow the MTC UE to be attached. In the case where steps S505 to S507 are performed, the above step S504 is not performed. S505. The MTC GW sends the event notification to the MTC Server.

5506, MTC Server接收到 MME上 4艮的附着事件后, 居业务管理需要, 判断应该拒绝该 MTC UE的接入; 5506. After receiving the attachment event of the MME, the MTC Server needs to perform service management, and determines that the access of the MTC UE should be denied.

5507, MTC Server向 MTC GW发送拒绝接入指示; 5507: The MTC Server sends a reject access indication to the MTC GW.

5508, MTC GW向 MME发送拒绝接入指示; S509, MME接收到拒绝附着指示后,拒绝 MTC UE的接入,向 MTC UE 返回附着拒绝响应。 由于 MTC GW是运营商控制的, 因此,在本实施例中,如果由 MTC GW 进行判断可以使得运营商具有更灵活的接入控制权。 虽然在上述实施例中以 E-UTRAN ( EPS ) 网络为例来描述, 事实上, 对 于 GERAN/UTRAN网络的 GPRS接入, GERAN/UTRAN网络中的 SGSN相 当于 E-UTRAN网络中 MME, 充当 PS域的接入控制、 移动性管理功能, 而 GERAN/UTRAN网络中的 GGSN相当于 E-UTRAN网络中的 SGW+PGW, GERAN/UTRAN中的 HLR相当于 E-UTRAN网络中的 HSS。 因此, 才艮据本 发明实施例的上述描述, 本领域技术人员可以直接将本发明实施例提供的上 述技术方案应用到 GERAN/UTRAN网络中的 PS域。 需要说明的是, 在附图的流程图示出的步骤可以在诸如一组计算机可执 行指令的计算机系统中执行, 并且, 虽然在流程图中示出了逻辑顺序, 但是 在某些情况下, 可以以不同于此处的顺序执行所示出或描述的步骤。 如上所述, 在本发明实施例中, 业务层的接入控制网元( MTC GW/MTC Server ) 从移动性管理网元获取接入层的 MTC UE的信息, 进而可以根据获 取的 MTC UE的信息对 MTC UE的接入进行有效控制。 同时, 在本发明实 施例中, 还可以通过 MTC GW对 MTC Server进行安全-险证, 只有允许接入 的 MTC Server才能够接入到核心网,对于不合法的 MTC Server则拒绝接入, 从而可以保证核心网的安全性。并且,在本发明实施例中,还可以由 MTC GW 对 MTC UE的接入进行控制,从而使得在 MTC Server为非运营商的网元时, 运营商可以灵活的对 MTC UE的接入进行控制。 显然, 本领域的技术人员应该明白, 上述的本发明的各模块或各步骤可 以用通用的计算装置来实现, 它们可以集中在单个的计算装置上, 或者分布 在多个计算装置所组成的网络上, 可选地, 它们可以用计算装置可执行的程 序代码来实现, 从而, 可以将它们存储在存储装置中由计算装置来执行, 或 者将它们分别制作成各个集成电路模块, 或者将它们中的多个模块或步骤制 作成单个集成电路模块来实现。 这样, 本发明不限制于任何特定的硬件和软 件结合。 以上所述仅为本发明的优选实施例而已, 并不用于限制本发明, 对于本 领域的技术人员来说, 本发明可以有各种更改和变化。 凡在本发明的 ^"神和 原则之内, 所作的任何修改、 等同替换、 改进等, 均应包含在本发明的保护 范围之内。 S508: The MTC GW sends a reject access indication to the MME. S509: After receiving the reject attachment indication, the MME rejects the access of the MTC UE, and returns an attach rejection response to the MTC UE. Since the MTC GW is operator-controlled, in this embodiment, if judged by the MTC GW, the operator can have more flexible access control rights. Although the E-UTRAN (EPS) network is taken as an example in the above embodiment, in fact, for GPRS access of the GERAN/UTRAN network, the SGSN in the GERAN/UTRAN network is equivalent to the MME in the E-UTRAN network, acting as the PS. The access control and mobility management functions of the domain, and the GGSN in the GERAN/UTRAN network is equivalent to the SGW+PGW in the E-UTRAN network, and the HLR in the GERAN/UTRAN is equivalent to the HSS in the E-UTRAN network. Therefore, according to the above description of the embodiments of the present invention, those skilled in the art can directly apply the foregoing technical solutions provided by the embodiments of the present invention to the PS domain in the GERAN/UTRAN network. It should be noted that the steps shown in the flowchart of the accompanying drawings may be performed in a computer system such as a set of computer executable instructions, and, although the logical order is shown in the flowchart, in some cases, The steps shown or described may be performed in an order different than that herein. As described above, in the embodiment of the present invention, the access control network element (MTC GW/MTC Server) of the service layer obtains the information of the MTC UE of the access layer from the mobility management network element, and further, according to the acquired MTC UE The information is effectively controlled for access by the MTC UE. In addition, in the embodiment of the present invention, the MTC server can also perform the security-risk certificate to the MTC server through the MTC GW, and only the MTC server that is allowed to access can access the core network, and the access is denied to the illegal MTC server. Thereby the security of the core network can be guaranteed. In addition, in the embodiment of the present invention, the access of the MTC UE can be controlled by the MTC GW, so that the operator can flexibly control the access of the MTC UE when the MTC Server is a non-operator network element. . Obviously, those skilled in the art should understand that the above modules or steps of the present invention can be implemented by a general-purpose computing device, which can be concentrated on a single computing device or distributed over a network composed of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device, such that they may be stored in the storage device by the computing device, or they may be separately fabricated into individual integrated circuit modules, or they may be Multiple modules or steps are made into a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software. The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the scope of the present invention are intended to be included within the scope of the present invention.

Claims

权 利 要 求 书 一种机器类通讯 MTC终端的接入控制方法, 其特征在于, 包括: The access control method for a machine type communication MTC terminal is characterized in that it comprises: 移动性管理网元向接入控制网元上报当前请求附着到网络或当前已 附着到网络的 MTC终端的信息;  The mobility management network element reports to the access control network element information currently attached to the network or the MTC terminal currently attached to the network; 所述接入控制网元根据所述 MTC终端的信息判断不允许所述 MTC 终端接入, 向所述移动性管理网元发送拒绝所述 MTC终端接入的指示; 所述移动性管理网元接收所述指示, 据所述指示拒绝所述 MTC 终端接入到网络。 根据权利要求 1所述的方法, 其特征在于, 所述移动性管理网元向所述 接入控制网元上 4艮所述 MTC终端的信息包括:  The access control network element determines, according to the information of the MTC terminal, that the MTC terminal is not allowed to access, and sends an indication to the mobility management network element to reject the access of the MTC terminal; the mobility management network element Receiving the indication, according to the indication, denying the MTC terminal to access the network. The method according to claim 1, wherein the information that the mobility management network element sends to the access control network element to the MTC terminal comprises: 所述移动性管理网元根据从用户签约数据存储器获取的所述 MTC 终端的签约数据的指示, 向所述接入控制网元上报所述 MTC 终端的信 息。 根据权利要求 2所述的方法, 其特征在于, 所述签约数据中包括: 指示 所述移动性管理网元将所述 MTC 终端的信息上 4艮给所述接入控制网元 的第一指示信息;  And the mobility management network element reports the information of the MTC terminal to the access control network element according to the indication of the subscription data of the MTC terminal that is obtained from the user subscription data storage. The method according to claim 2, wherein the subscription data includes: a first indication that the mobility management network element sends information of the MTC terminal to the access control network element Information 则所述移动性管理网元向所述接入控制网元上报所述 MTC 终端的 信息包括:  And the information that the mobility management network element reports to the access control network element to the MTC terminal includes: 所述移动性管理网元在接收到所述位置更新响应后, 根据所述签约 数据中包含的所述第一指示信息的指示, 向所述接入控制网元上报所述 MTC终端的信息。 根据权利要求 2所述的方法, 其特征在于, 所述签约数据中还包括: 指 示所述移动性管理网元在发生与所述 MTC 终端相关的接入层事件时向 所述接入控制网元发送事件通知的第二指示信息;  After receiving the location update response, the mobility management network element reports the information of the MTC terminal to the access control network element according to the indication of the first indication information included in the subscription data. The method according to claim 2, wherein the subscription data further comprises: instructing the mobility management network element to access the access control network when an access layer event related to the MTC terminal occurs The second indication information of the element sending event notification; 则所述移动性管理网元向所述接入控制网元上报所述 MTC 终端的 信息包括: 所述移动性管理网元在发生与所述 MTC终端相关的接入层事件时, 居所述第二指示信息的指示, 向所述接入控制网元发送事件通知, 其 中, 所述事件通知中携带有当前所述 MTC终端的信息。 根据权利要求 1所述的方法, 其特征在于, 所述移动性管理网元向所述 接入控制网元上 4艮所述 MTC终端的信息包括: The information that the mobility management network element reports to the access control network element of the MTC terminal includes: And the mobility management network element sends an event notification to the access control network element when the access layer event related to the MTC terminal occurs, and the event notification is sent to the access control network element, where the event notification is It carries information about the currently described MTC terminal. The method according to claim 1, wherein the information that the mobility management network element sends to the access control network element to the MTC terminal comprises: 在所述 MTC UE附着到网络后, 所述接入控制网元向所述移动性管 理网元发送查询请求, 请求查询所述 MTC终端的信息;  After the MTC UE is attached to the network, the access control network element sends a query request to the mobility management network element, requesting to query information of the MTC terminal; 所述移动性管理网元接收到所述查询请求后, 向所述接入控制网元 上 4艮所述 MTC终端的信息。 根据权利要求 1所述的方法, 其特征在于, 所述移动性管理网元向所述 接入控制网元上 4艮所述 MTC终端的信息包括:  After receiving the query request, the mobility management network element sends information of the MTC terminal to the access control network element. The method according to claim 1, wherein the information that the mobility management network element sends to the access control network element to the MTC terminal comprises: 所述 MTC UE附着到网络后, 所述接入控制网元向所述移动性管理 网元发送查询请求, 请求订阅与所述 MTC终端相关的接入层事件; 所述移动性管理网元在所述接入层事件发生时向所述接入控制网元 发送接入层事件通知, 其中, 所述接入层事件通知中携带有所述 MTC 终端的信息。 根据权利要求 4或 6所述的方法, 其特征在于, 与所述 MTC终端相关 的接入层事件包括以下之一或其任意组合:  After the MTC UE is attached to the network, the access control network element sends a query request to the mobility management network element to subscribe to an access layer event related to the MTC terminal; the mobility management network element is The access layer event notification is sent to the access control network element when the access layer event occurs, where the access layer event notification carries the information of the MTC terminal. The method of claim 4 or 6, wherein the access layer event associated with the MTC terminal comprises one or any combination of the following: 所述 MTC终端的签约数据发生变化;  The subscription data of the MTC terminal changes; 所述 MTC终端的位置发生变化;  The location of the MTC terminal changes; 所述 MTC终端的状态发生变化;  The state of the MTC terminal changes; 所述 MTC终端的网络发生变化;  The network of the MTC terminal changes; 所述 MTC终端使用的国际用户识别码 IMSI和国际移动设备识别码 IMEI的绑定关系发生变 4匕。 根据权利要求 1至 6 中任一项所述的方法, 其特征在于, 所述 MTC终 端的信息包括以下之一或其任意组合:  The binding relationship between the international subscriber identity code IMSI used by the MTC terminal and the international mobile device identifier IMEI is changed. The method according to any one of claims 1 to 6, wherein the information of the MTC terminal comprises one or any combination of the following: 所述 MTC终端当前的业务签约数据;  The current service subscription data of the MTC terminal; 所述 MTC终端所使用的国际用户识别码 IMSI和国际移动设备识别 码 IMEI; 所述 MTC终端在所述移动性管理网元上的上下文信息。 The international subscriber identity code IMSI and the international mobile equipment identity IMEI used by the MTC terminal; Context information of the MTC terminal on the mobility management network element. 9. 根据权利要求 8所述的方法, 其特征在于, 所述 MTC终端在所述移动 性管理网元上的上下文信息包括: 所述 MTC 终端的当前位置区域信息 和 /或所述 MTC终端当前的状态信息。 The method according to claim 8, wherein the context information of the MTC terminal on the mobility management network element comprises: current location area information of the MTC terminal and/or current status of the MTC terminal Status information. 10. 根据权利要求 8所述的方法, 其特征在于, 所述接入控制网元判断不允 许所述 MTC终端接入包括: The method according to claim 8, wherein the access control network element determines that the MTC terminal access is not allowed to include: 所述接入控制网元判断获取的所述 MTC 终端的信息是否满足预定 条件, 在判断不满足的情况下, 确定不允许所述 MTC终端接入;  Determining, by the access control network element, whether the obtained information of the MTC terminal meets a predetermined condition, and determining that the MTC terminal is not allowed to access if the determination is not satisfied; 其中, 所述预定条件包括以下之一或其任意组合: 允许所述 MTC 终端接入的时间、 允许所述 MTC终端接入的位置区域、 允许所述 MTC 终端使用的 IMSI与 IMEI的绑定关系、允许所述 MTC终端附着的网络、 允许所述 MTC终端接入的次数。  The predetermined condition includes one of the following or any combination thereof: a time for allowing the MTC terminal to access, a location area for allowing the MTC terminal to access, and an IMSI binding relationship between the IMSI and the IMEI used by the MTC terminal. And a network that allows the MTC terminal to attach, and the number of times the MTC terminal is allowed to access. 11. 根据权利要求 10所述的方法, 其特征在于, 所述接入控制网元在以下之 一或其任意组合的情况下判断不允许所述 MTC终端接入: The method according to claim 10, wherein the access control network element determines that the MTC terminal is not allowed to access in the following one or any combination thereof: 判断所述 MTC终端在非允许时间请求附着到网络;  Determining that the MTC terminal requests to attach to the network during an unallowed time; 判断所述 MTC终端在非允许位置区域请求附着到网络; 判断所述 MTC终端超过允许接入的次数;  Determining that the MTC terminal requests to attach to the network in the non-permitted location area; determining that the MTC terminal exceeds the number of allowed accesses; 判断所述 MTC终端以不被允许的 IMSI与 IMEI的绑定请求附着到 网络;  Determining that the MTC terminal is attached to the network by a binding request of IMSI and IMEI that are not allowed; 判断所述 MTC终端移动到不允许的位置区域;  Determining that the MTC terminal moves to an unallowable location area; 判断所述 MTC终端附着到网络的时间超出了所允许的接入时间; 判断所述 MTC终端切换到不允许的网络。  Determining that the time when the MTC terminal is attached to the network exceeds the allowed access time; determining that the MTC terminal switches to an unallowable network. 12. 根据权利要求 1至 6中任一项所述的方法, 其特征在于, 如果所述 MTC 终端当前请求附着到网络, 则拒绝所述 MTC 终端接入的指示包括: 拒 绝所述 MTC终端附着的指示; The method according to any one of claims 1 to 6, wherein, if the MTC terminal currently requests to attach to the network, the indication of rejecting the access of the MTC terminal comprises: rejecting the attachment of the MTC terminal Instructions; 所述移动性管理网元根据所述指示拒绝所述 MTC 终端接入到网络 包括:  The mobility management network element denying the MTC terminal to access the network according to the indication includes: 所述移动性管理网元拒绝所述 MTC终端的附着, 向所述 MTC终端 返回附着拒绝响应。 The mobility management network element rejects the attachment of the MTC terminal, and returns an attach rejection response to the MTC terminal. 13. 根据权利要求 1至 6中任一项所述的方法, 其特征在于, 如果所述 MTC 终端当前已附着到网络, 则拒绝所述 MTC 终端接入的指示包括: 去附 着所述 MTC终端的指示; The method according to any one of claims 1 to 6, wherein, if the MTC terminal is currently attached to the network, the indication of rejecting the access of the MTC terminal comprises: detaching the MTC terminal Instructions; 所述移动性管理网元根据所述指示拒绝所述 MTC 终端接入到网络 包括:  The mobility management network element denying the MTC terminal to access the network according to the indication includes: 所述移动性管理网元执行去附着流程, 去附着所述 MTC终端。  The mobility management network element performs a detach process to attach the MTC terminal. 14. 根据权利要求 1至 6中任一项所述的方法, 其特征在于, 所述移动性管 理网元包括: 月艮务通用分组无线业务支撑节点 SGSN 或移动管理单元 MME。 The method according to any one of claims 1 to 6, wherein the mobility management network element comprises: a 艮 通用 General Packet Radio Service Support Node SGSN or a mobility management unit MME. 15. 根据权利要求 2或 3所述的方法, 其特征在于, 所述用户签约数据存储 器包括: 归属位置寄存器 HLR或归属用户服务器 HSS。 The method according to claim 2 or 3, wherein the user subscription data storage comprises: a home location register HLR or a home subscriber server HSS. 16. 根据权利要求 1至 6中任一项所述的方法, 其特征在于, 所述接入控制 网元包括: MTC网关或 MTC月艮务器。 The method according to any one of claims 1 to 6, wherein the access control network element comprises: an MTC gateway or an MTC server. 17. 居权利要求 16所述的方法, 其特征在于, 在所述接入控制网元为所述 MTC服务器的情况下, 所述 MTC服务器与所述移动性管理网元之间通 过 MTC网关进行通讯。 The method of claim 16, wherein, in the case that the access control network element is the MTC server, the MTC server and the mobility management network element are performed by using an MTC gateway. communication. 18. —种 MTC 终端的接入控制系统, 其特征在于, 包括: 用户签约数据存 储器、 移动性管理网元和接入控制网元, 其中, An access control system for an MTC terminal, comprising: a user subscription data storage, a mobility management network element, and an access control network element, where 所述用户签约数据存储器, 用于保存系统内的 MTC 终端的签约数 据;  The user subscription data storage is used to store subscription data of the MTC terminal in the system; 所述移动性管理网元, 与所述用户签约数据存储器连接, 用于接收 所述用户签约数据存储器下发的当前请求附着到网络或当前已附着到网 络的 MTC终端的签约数据, 并向所述接入控制网元提供所述 MTC终端 的信息;  The mobility management network element is connected to the user subscription data storage, and is configured to receive subscription data that is sent by the user subscription data store and is attached to a network or an MTC terminal that is currently attached to the network, and The access control network element provides information about the MTC terminal; 所述接入控制网元, 与所述移动性管理网元连接, 用于才艮据所述 MTC终端的信息, 判断是否允许所述 MTC终端接入, 并在不允许所述 MTC终端接入的情况下, 向所述移动性管理网元发送拒绝所述 MTC终 端接入的指示, 以使所述移动性管理网元拒绝所述 MTC 终端接入到网 络。 The access control network element is connected to the mobility management network element, and is configured to determine whether to allow the MTC terminal to access according to the information of the MTC terminal, and not allow the MTC terminal to access In case, the mobility management network element is sent to reject the MTC terminal An indication of end access, such that the mobility management network element denies the MTC terminal from accessing the network. 19. 根据权利要求 18所述的系统, 其特征在于, 所述接入控制网元为 MTC 网关。 The system according to claim 18, wherein the access control network element is an MTC gateway. 20. 根据权利要求 18所述的系统, 其特征在于, 所述接入控制网元为 MTC 月艮务器, 则所述系统还包括: The system according to claim 18, wherein the access control network element is an MTC server, the system further includes: MTC网关, 连接在所述 MTC服务器与所述移动性管理网元之间, 用于转发所述 MTC服务器与所述移动性管理网元之间的数据, 并对所 述 MTC服务器执行安全验证。  The MTC gateway is connected between the MTC server and the mobility management network element, and is configured to forward data between the MTC server and the mobility management network element, and perform security verification on the MTC server.
PCT/CN2010/078407 2009-11-06 2010-11-04 Method and system for controling mtc terminal access Ceased WO2011054300A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200910221259.8 2009-11-06
CN200910221259.8A CN102056266B (en) 2009-11-06 2009-11-06 Method and system for access control of machine type communication (MTC) terminal

Publications (1)

Publication Number Publication Date
WO2011054300A1 true WO2011054300A1 (en) 2011-05-12

Family

ID=43960053

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2010/078407 Ceased WO2011054300A1 (en) 2009-11-06 2010-11-04 Method and system for controling mtc terminal access

Country Status (2)

Country Link
CN (1) CN102056266B (en)
WO (1) WO2011054300A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102869113A (en) * 2011-07-06 2013-01-09 上海贝尔股份有限公司 Method and device for physical random access in communication network
WO2019104357A1 (en) * 2017-11-27 2019-05-31 Cisco Technology, Inc. Subscription-based event notification techniques for reducing data buffering in mobile networks
US10805841B2 (en) 2018-07-23 2020-10-13 Cisco Technology, Inc. Policy enforcement methods and apparatus for background data transfers involving multiple UEs

Families Citing this family (25)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102833733B (en) * 2011-06-13 2017-10-17 中兴通讯股份有限公司 A kind of method and system for monitoring the movement of Hypomobility terminal location
CN102307348B (en) * 2011-08-09 2013-12-18 中国联合网络通信集团有限公司 MTC (machine type communication) equipment triggering method and system as well as mobile communication network equipment
CN102395118B (en) * 2011-09-23 2014-05-21 电信科学技术研究院 Method and device for updating reachability state information of terminal based on adhesion flow
CN102333294B (en) * 2011-09-23 2014-04-09 电信科学技术研究院 Method and device for renewing terminal reachable state information based on detaching process
CN102413451B (en) * 2011-09-23 2014-05-21 电信科学技术研究院 Method for offering reachable state information of terminal and device therefor
CN102340826B (en) * 2011-11-17 2016-05-25 电信科学技术研究院 A kind of method and apparatus of transfer of data
CN103139868B (en) * 2011-11-30 2016-08-03 华为技术有限公司 Control the method, apparatus and system accessed
CN102547658B (en) * 2011-12-22 2015-04-15 电信科学技术研究院 Method and device for transmitting data
CN103188738B (en) * 2011-12-27 2015-11-25 华为技术有限公司 resource allocation method, device and system
WO2013155707A1 (en) 2012-04-20 2013-10-24 华为技术有限公司 Mtc device communication method, device and system
WO2014000265A1 (en) * 2012-06-29 2014-01-03 华为技术有限公司 Online subscription data configuration method, device, and system
CN103702380B (en) * 2012-09-27 2017-11-28 华为技术有限公司 A kind of mobile management network element and method
EP2941905B1 (en) 2013-01-04 2020-02-12 IOT Holdings, Inc. Method and apparatus for processing service layer detach commands and attach notifications
CN103718511A (en) * 2013-04-28 2014-04-09 华为技术有限公司 Robot information reporting method, apparatus and system
CN104284297B (en) * 2013-07-11 2018-12-25 华为终端有限公司 A kind of method, apparatus of resource migration
CN105228132B (en) * 2014-06-20 2019-03-29 阿尔卡特朗讯 Methods, devices and systems for being managed to the relevant information of MTC and resource
CN105792314A (en) * 2014-12-17 2016-07-20 中兴通讯股份有限公司 Terminal access method, device and system
CN104581976A (en) * 2015-01-30 2015-04-29 江苏中航伟业电子科技发展有限公司 A method for multiple terminals to access a mobile communication system
US9693178B2 (en) * 2015-03-18 2017-06-27 Intel IP Corporation Procedures to provision and attach a cellular internet of things device to a cloud service provider
US9681473B2 (en) * 2015-05-29 2017-06-13 Huawei Technologies Co., Ltd. MTC service management using NFV
CN106507350B (en) * 2016-10-21 2019-11-08 陕西理工学院 An Internet of Things terminal and system with low energy consumption and limited triggering
CN108541029B (en) * 2017-03-02 2021-02-23 展讯通信(上海)有限公司 Cell switching method and device
CN109756883A (en) * 2017-11-06 2019-05-14 中国电信股份有限公司 The mobile communication number access right method of inspection, verifying bench and communication system
CN110418327B (en) * 2018-04-27 2022-05-31 中国移动通信有限公司研究院 A wireless control method and device, base station and storage medium
CN112511654B (en) * 2021-02-04 2022-02-22 上海途鸽数据科技有限公司 Networking processing and control method of cloud communication terminal, terminal and platform

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1997207A (en) * 2006-01-06 2007-07-11 上海原动力通信科技有限公司 Method for the power on and registration access of the user service in the mobile communication system
CN101047960A (en) * 2006-03-31 2007-10-03 华为技术有限公司 Implementing of reattachment in radio evolution network
KR100792707B1 (en) * 2006-11-02 2008-01-08 (주)엑스톤 Configuration and control method of a wireless mobile communication module including an external controller function.
US20080153521A1 (en) * 2006-12-22 2008-06-26 Cellco Partnership (D/B/A Verizon Wireless) MDN-less SMS messaging (network solution) for wireless M2M application
CN101500222A (en) * 2008-01-31 2009-08-05 大唐移动通信设备有限公司 Method, apparatus and system for implementing UE detachment

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100428855C (en) * 2005-12-31 2008-10-22 华为技术有限公司 System and method for implementing service of access terminal
CN102056334A (en) * 2009-10-30 2011-05-11 中兴通讯股份有限公司 Access control method and system of machine type communication (MTC) terminals

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1997207A (en) * 2006-01-06 2007-07-11 上海原动力通信科技有限公司 Method for the power on and registration access of the user service in the mobile communication system
CN101047960A (en) * 2006-03-31 2007-10-03 华为技术有限公司 Implementing of reattachment in radio evolution network
KR100792707B1 (en) * 2006-11-02 2008-01-08 (주)엑스톤 Configuration and control method of a wireless mobile communication module including an external controller function.
US20080153521A1 (en) * 2006-12-22 2008-06-26 Cellco Partnership (D/B/A Verizon Wireless) MDN-less SMS messaging (network solution) for wireless M2M application
CN101500222A (en) * 2008-01-31 2009-08-05 大唐移动通信设备有限公司 Method, apparatus and system for implementing UE detachment

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102869113A (en) * 2011-07-06 2013-01-09 上海贝尔股份有限公司 Method and device for physical random access in communication network
CN102869113B (en) * 2011-07-06 2016-01-27 上海贝尔股份有限公司 The method and apparatus of the physical accidental access in a kind of communication network
WO2019104357A1 (en) * 2017-11-27 2019-05-31 Cisco Technology, Inc. Subscription-based event notification techniques for reducing data buffering in mobile networks
US10805178B2 (en) 2017-11-27 2020-10-13 Cisco Technology, Inc. Subscription-based event notification techniques for reducing data buffering in mobile networks
US10805841B2 (en) 2018-07-23 2020-10-13 Cisco Technology, Inc. Policy enforcement methods and apparatus for background data transfers involving multiple UEs

Also Published As

Publication number Publication date
CN102056266B (en) 2014-04-09
CN102056266A (en) 2011-05-11

Similar Documents

Publication Publication Date Title
WO2011054300A1 (en) Method and system for controling mtc terminal access
WO2011054299A1 (en) Method and system for obtaining information of machine type communication terminal
WO2011050689A1 (en) Access control method and system for machine type communication terminal
US20130304857A1 (en) Method and Device for Location Management of Group-Based Machine Type Communication MTC Device
WO2012051890A1 (en) Terminal access limit method and system
WO2011000315A1 (en) Method, network device and network system for group management
WO2011057541A1 (en) Method, mobile management unit and gateway for restricting mtc device to access and communicate
CN115552938B (en) Method for opening wireless access network information
WO2009094916A1 (en) A control method, system, and device for circuit domain fallback
WO2011097911A1 (en) Method, device and system for selecting policy and charging rules function entity
WO2009094837A1 (en) A method for selecting a policy and charging rules function server on a non-roaming scene
WO2011134329A1 (en) Method and system for transmitting small data packets
WO2011140884A1 (en) Method for machine type communication group selecting packet data network gateway, and mobile management network element
US20140348071A1 (en) Bearer processing method and mobile management device
CN102802239A (en) Method and system for providing access network selection strategy based on network state
WO2011063688A1 (en) Method and system for selecting policy and charging rules function entity
WO2011153750A1 (en) Method and system for synchronizing user data
WO2011134336A1 (en) Machine type communication events report method, device and system
CN102332985B (en) Method and device for providing charging support based on local internet protocol (IP) access (LIPA) bearer
US10326604B2 (en) Policy and charging rules function (PCRF) selection
WO2011050688A1 (en) Method and system for obtaining machine type communication terminal information
WO2013104248A1 (en) Method and device for processing local access connection
CN101730073B (en) Method and system for acquiring user contracting data
WO2013163945A1 (en) Method for reporting machine type communication event and device thereof
WO2010139285A1 (en) Information synchronization method, communication system and devices thereof

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10827914

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10827914

Country of ref document: EP

Kind code of ref document: A1