[go: up one dir, main page]

CN101895855B - Access method, base station and access system of mobile terminal - Google Patents

Access method, base station and access system of mobile terminal Download PDF

Info

Publication number
CN101895855B
CN101895855B CN2009100846245A CN200910084624A CN101895855B CN 101895855 B CN101895855 B CN 101895855B CN 2009100846245 A CN2009100846245 A CN 2009100846245A CN 200910084624 A CN200910084624 A CN 200910084624A CN 101895855 B CN101895855 B CN 101895855B
Authority
CN
China
Prior art keywords
mobile terminal
blacklist database
module
sdcch
access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN2009100846245A
Other languages
Chinese (zh)
Other versions
CN101895855A (en
Inventor
沈寒冰
丁海煜
刘佳
李允博
任磊
李跃
董昕
阎江
舒建军
周双波
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Communications Group Co Ltd
Original Assignee
China Mobile Communications Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Communications Corp filed Critical China Mobile Communications Corp
Priority to CN2009100846245A priority Critical patent/CN101895855B/en
Publication of CN101895855A publication Critical patent/CN101895855A/en
Application granted granted Critical
Publication of CN101895855B publication Critical patent/CN101895855B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses an access method of a mobile terminal, which comprises the following steps: judging whether the terminal identification of the mobile terminal which is currently requested to be accessed and is allocated with the independent dedicated control channel SDCCH is positioned in a stored blacklist database or not; if yes, rejecting the access request initiated by the mobile terminal; if not, authenticating the mobile terminal; when the authentication fails, rejecting the access request initiated by the mobile terminal; and when the authentication is successful, accepting the access request initiated by the mobile terminal. The invention also discloses a base station and an access system. The invention can save network resources.

Description

移动终端的接入方法、基站及接入系统Access method, base station and access system of mobile terminal

技术领域 technical field

本发明涉及通信技术领域,尤其是涉及移动终端的接入方法、基站及接入系统。The present invention relates to the field of communication technology, in particular to a mobile terminal access method, a base station and an access system.

背景技术 Background technique

移动终端(Mobile Station,MS)向网络发起业务申请时,首先在随机接入信道(Random Access Channel,RACH)上发起请求,通过动态地在RACH上发送一个随机接入脉冲向一个基站(Base Transceiver Station,BTS)发起信道请求消息,申请一个信道。在信道请求消息中包括了申请信道的原因,可以是“应答寻呼”、“紧急呼叫”“移动主叫”“短消息业务”,也可以是其他业务,比如“位置更新”,等等。另外,信道请求消息中还包括一个随机参数,用于区分不同的MS,例如,MS随机选取5个比特作为随机参数时,最多可同时区分32个MS。When a mobile terminal (Mobile Station, MS) initiates a service application to the network, it first initiates a request on a random access channel (Random Access Channel, RACH), and dynamically sends a random access pulse to a base station (Base Transceiver) on the RACH. Station, BTS) initiates a channel request message to apply for a channel. The reason for channel application is included in the channel request message, which may be "response to paging", "emergency call", "mobile calling", "short message service", or other services, such as "location update", and so on. In addition, the channel request message also includes a random parameter for distinguishing different MSs. For example, when the MS randomly selects 5 bits as the random parameter, it can distinguish up to 32 MSs at the same time.

在发送信道请求消息后,MS在30个信号最强的射频信道(RadioFrequency,RF)搜索,如果没有找到合适的小区,MS将会继续检测所有RF信道的信号强度,并搜索小区选择参数C1>0且未被禁止接入的广播控制信道(Broadcast Control Channel,BCCH),当找到符合条件的信道后,MS选择该信道所在的小区,而不需要考虑公共陆地移动电话网(Public Land MobileNetwork,PLMN)识别。After sending the channel request message, the MS searches the 30 radio frequency channels (Radio Frequency, RF) with the strongest signal. If no suitable cell is found, the MS will continue to detect the signal strength of all RF channels and search for the cell selection parameter C1> 0 and the broadcast control channel (Broadcast Control Channel, BCCH) that is not prohibited from being accessed. When a qualified channel is found, the MS selects the cell where the channel is located, without considering the Public Land Mobile Network (PLMN) ) identification.

当自然灾害等灾难发生时,由于地面基站大面积受损,通常会采用高空基站接续业务,而高空基站数量较少,一般位于地面几百米以上,且采用全向天线,对地面提供全方位的覆盖,覆盖半径将会达到几十公里。此时,会出现大量MS尝试接入同一高空基站,通过该高空基站申请接入全球移动通信系统(Global System for Mobile communication,GSM),这些MS中不仅有本网的用户,还包括其他网的用户,在本网的用户中不仅包括可以接入GSM进行漫游的用户,也包括不允许漫游的用户。这样,就会出现独立专用控制信道(Separate Dedicated Control Channel,SDCCH)信道拥塞,MS无法接入的现象。现有技术中MS接入高空基站的具体流程如图1所示:When disasters such as natural disasters occur, due to large-scale damage to ground base stations, high-altitude base stations are usually used to connect services. However, the number of high-altitude base stations is small, generally located several hundred meters above the ground, and omnidirectional antennas are used to provide all-round coverage to the ground. coverage, the coverage radius will reach tens of kilometers. At this time, a large number of MSs will try to access the same high-altitude base station, and apply for access to the Global System for Mobile communication (GSM) through the high-altitude base station. Among these MSs, there are not only users of this network, but also users of other networks. Users, users on this network include not only users who can access GSM for roaming, but also users who are not allowed to roam. In this way, there will be a phenomenon that a separate dedicated control channel (Separate Dedicated Control Channel, SDCCH) channel is congested and the MS cannot access it. The specific flow of the MS accessing the high-altitude base station in the prior art is shown in Figure 1:

步骤101、MS在RACH上发起信道请求消息Channel Request;Step 101, the MS initiates a channel request message Channel Request on the RACH;

步骤102、BTS将MS发起的信道请求消息转发到基站控制器(Base StationCenter,BSC);Step 102, the BTS forwards the channel request message initiated by the MS to the Base Station Controller (Base Station Center, BSC);

步骤103、BSC向BTS下发信道激活消息Channel Activation;Step 103, BSC sends channel activation message Channel Activation to BTS;

步骤104、BTS向BSC反馈信道激活应答Channel Activation Ack;Step 104, BTS feeds back Channel Activation Ack to BSC;

步骤105、BSC向BTS下发立即分配信道指令Immediate AssignmentCommand;Step 105, the BSC issues an Immediate AssignmentCommand to the BTS to immediately assign a channel command;

步骤106、BTS立即通过允许接入信道(Access Grant Channel,AGCH)为MS分配SDCCH;Step 106, the BTS immediately assigns the SDCCH to the MS through an Access Grant Channel (AGCH);

步骤107、MS在分配的SDCCH上发起连接管理(Connection Management,CM)服务请求;Step 107, the MS initiates a connection management (Connection Management, CM) service request on the allocated SDCCH;

步骤108、BTS将MS发起的CM服务请求转发到基站控制器;Step 108, the BTS forwards the CM service request initiated by the MS to the base station controller;

步骤109、BSC将CM服务请求转发到移动交换中心(Mobile SwitchingControl,MSC);Step 109, the BSC forwards the CM service request to the Mobile Switching Center (Mobile Switching Control, MSC);

步骤110、BTS通过SDCCH向MS反馈无编号确认帧(UnnumberedAcknowledgement,UA);Step 110, the BTS feeds back an unnumbered acknowledgment frame (UnnumberedAcknowledgment, UA) to the MS through the SDCCH;

步骤111、MSC向BSC发送鉴权请求Authentication Request;Step 111, MSC sends Authentication Request to BSC;

步骤112、BSC通过SDCCH向MS发送鉴权请求;Step 112, the BSC sends an authentication request to the MS through the SDCCH;

步骤113、MS通过SDCCH向BSC反馈鉴权响应Authentication Response;Step 113, the MS feeds back an Authentication Response to the BSC through the SDCCH;

步骤114、BSC将鉴权响应反馈给MSC;Step 114, the BSC feeds back the authentication response to the MSC;

步骤115、MSC向BSC下发加密模式命令Ciphering Mode Command;Step 115, MSC issues Ciphering Mode Command to BSC;

步骤116、BSC将加密模式命令转发给BTS;Step 116, BSC forwards the encryption mode command to BTS;

步骤117、BTS通过SDCCH向将加密模式命令转发给MS;Step 117, the BTS forwards the encryption mode command to the MS through the SDCCH;

步骤118、MS通过SDCCH向BSC发送加密模式结束消息Ciphering ModeComplete;Step 118, the MS sends the encryption mode end message Ciphering ModeComplete to the BSC through the SDCCH;

步骤119、BSC将加密模式结束消息转发给MSC;Step 119, the BSC forwards the encryption mode end message to the MSC;

步骤120、MSC向BSC下发临时移动用户指令(Temporary Mobile StationIdentity,TMSI)重分配指令;Step 120, the MSC issues a Temporary Mobile Station Identity (TMSI) reallocation instruction to the BSC;

步骤121、BSC通过SDCCH向MS转发TMSI重分配指令;Step 121, the BSC forwards the TMSI reallocation instruction to the MS through the SDCCH;

步骤122、MS通过SDCCH向BSC通知TMSI重分配结束;Step 122, the MS notifies the BSC of the end of the TMSI reallocation through the SDCCH;

步骤123、BSC向MSC通知TMSI重分配结束;Step 123, the BSC notifies the MSC that the TMSI reallocation is completed;

步骤124、建立成功。Step 124, the establishment is successful.

若MS鉴权失败,网络会通过BTS向MS发送鉴权失败消息,并释放已分配的SDCCH信道,该MS将在一定时间内不再发起接入请求,但是,在T3122超时后,仍会再次发起接入请求。If the MS authentication fails, the network will send an authentication failure message to the MS through the BTS, and release the allocated SDCCH channel, and the MS will no longer initiate access requests within a certain period of time. Initiate an access request.

在灾难发生时,大量MS会在同一高空基站发起接入请求,当存在SDCCH空闲时,该高空基站为每个MS分配一条SDCCH,他网用户或本网禁止漫游的用户在鉴权时会被拒绝,在T3122超时后,被拒绝的用户又会继续发起请求,这种反复的尝试容易出现SDCCH拥塞而业务信道(Traffic Channel,TCH)空闲的情况,可能会导致信号无法接通,增加网络的负担。When a disaster occurs, a large number of MSs will initiate access requests on the same high-altitude base station. When there is an idle SDCCH, the high-altitude base station will allocate an SDCCH for each MS. Users on other networks or users whose roaming is prohibited on this network will be rejected during authentication. , after the T3122 timeout, the rejected user will continue to initiate the request. This repeated attempt is prone to SDCCH congestion and the traffic channel (Traffic Channel, TCH) is idle, which may cause the signal to be unreachable and increase the burden on the network .

进一步,从分配SDCCH给MS到MSC鉴权失败后拒绝MS的接入请求,这一过程中需要占用ABIS和A口资源,并且需要处理时间,同样增加了网络的负担。Furthermore, from allocating the SDCCH to the MS to rejecting the MS's access request after the MSC fails to authenticate, the process needs to occupy ABIS and A interface resources, and requires processing time, which also increases the burden on the network.

发明内容 Contents of the invention

本发明实施例提供了一种移动终端的接入方法,用于节省网络资源,该方法包括:An embodiment of the present invention provides an access method for a mobile terminal, which is used to save network resources. The method includes:

判断当前请求接入且已被分配独立专用控制信道SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中;Judging whether the terminal identification of the mobile terminal that currently requests access and has been allocated an independent dedicated control channel SDCCH is located in the saved blacklist database;

若是,则拒绝所述移动终端发起的接入请求;If so, rejecting the access request initiated by the mobile terminal;

若否,则对所述移动终端进行鉴权;当鉴权失败时,拒绝所述移动终端发起的接入请求,并当鉴权失败原因属于设定的加入黑名单数据库条件时,将所述移动终端的终端标识加入所述黑名单数据库中;当鉴权成功时,接受所述移动终端发起的接入请求。If not, then perform authentication on the mobile terminal; when the authentication fails, reject the access request initiated by the mobile terminal, and when the cause of the authentication failure belongs to the set adding blacklist database condition, add the The terminal identification of the mobile terminal is added to the blacklist database; when the authentication is successful, the access request initiated by the mobile terminal is accepted.

本发明实施例还提供了一种基站,用于节省网络资源,包括:The embodiment of the present invention also provides a base station for saving network resources, including:

第一判断模块,用于判断当前请求接入且已被分配独立专用控制信道SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中;The first judging module is used to judge whether the terminal identification of the mobile terminal that currently requests access and has been allocated an independent dedicated control channel SDCCH is located in the saved blacklist database;

通知模块,用于当所述第一判断模块的判断结果为否时,通知移动交换中心MSC对所述移动终端进行鉴权;A notification module, configured to notify the Mobile Switching Center MSC to authenticate the mobile terminal when the judgment result of the first judgment module is No;

第一接收模块,用于接收所述MSC发送的鉴权结果;The first receiving module is configured to receive the authentication result sent by the MSC;

接入模块,用于当所述MSC鉴权成功时,接受所述移动终端发起的接入请求;An access module, configured to accept an access request initiated by the mobile terminal when the MSC authentication is successful;

拒绝模块,用于当所述第一判断模块的判断结果为是时,或者当所述MSC鉴权失败时,拒绝所述移动终端发起的接入请求;A rejection module, configured to reject the access request initiated by the mobile terminal when the judgment result of the first judgment module is yes, or when the MSC authentication fails;

加入模块,用于当所述第一接收模块接收到的鉴权失败原因属于设定的加入黑名单数据库条件时,将所述移动终端的终端标识加入所述黑名单数据库中。An adding module, configured to add the terminal identifier of the mobile terminal to the blacklist database when the reason for authentication failure received by the first receiving module belongs to the set blacklist database addition condition.

本发明实施例还提供了一种接入系统,用于节省网络资源,包括MSC和基站;The embodiment of the present invention also provides an access system for saving network resources, including MSC and base station;

所述基站,用于判断当前请求接入且已被分配独立专用控制信道SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中;若是,则拒绝所述移动终端发起的接入请求;若否,则通知所述MSC对所述移动终端进行鉴权,并接收所述MSC发送的鉴权结果;当鉴权失败时,拒绝所述移动终端发起的接入请求,并当鉴权失败原因属于设定的加入黑名单数据库条件时,将所述移动终端的终端标识加入所述黑名单数据库中;当鉴权成功时,接受所述移动终端发起的接入请求;The base station is used to judge whether the terminal identification of the mobile terminal that currently requests access and has been allocated an independent dedicated control channel SDCCH is located in the saved blacklist database; if so, reject the access request initiated by the mobile terminal; if No, notify the MSC to authenticate the mobile terminal, and receive the authentication result sent by the MSC; when the authentication fails, reject the access request initiated by the mobile terminal, and when the authentication failure reason Adding the terminal identification of the mobile terminal to the blacklist database when it belongs to the set adding blacklist database condition; when the authentication is successful, accepting the access request initiated by the mobile terminal;

所述MSC,用于接收到所述基站发送的对所述移动终端进行鉴权的通知,对所述移动终端进行鉴权;并将鉴权结果发送给所述基站。The MSC is configured to receive the notification of authenticating the mobile terminal sent by the base station, perform authentication on the mobile terminal, and send an authentication result to the base station.

本发明实施例中,增加了黑名单数据库,判断当前请求接入且已被分配独立专用控制信道SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中,若是,可以直接拒绝该移动终端发起的接入请求,并不需要再进行鉴权,简化了他网用户及本网不允许漫游用户的鉴权流程,能够快速释放占用的网络资源,缩短处理时间,减少网络的负担。In the embodiment of the present invention, a blacklist database is added to judge whether the terminal identification of the mobile terminal that currently requests access and has been allocated an independent dedicated control channel SDCCH is located in the saved blacklist database, and if so, can directly reject the mobile terminal to initiate The access request does not need to be authenticated again, which simplifies the authentication process for other network users and local network users who do not allow roaming, can quickly release occupied network resources, shorten processing time, and reduce the burden on the network.

附图说明 Description of drawings

图1是背景技术中移动终端接入高空基站的流程图;Fig. 1 is the flow chart of mobile terminal access high-altitude base station in the background technology;

图2是本发明实施例中移动终端的接入方法的流程图;Fig. 2 is a flowchart of an access method of a mobile terminal in an embodiment of the present invention;

图3是本发明实施例中移动终端接入网络的流程图;FIG. 3 is a flowchart of a mobile terminal accessing a network in an embodiment of the present invention;

图4、图5、图6是本发明实施例中基站的结构示意图;FIG. 4, FIG. 5, and FIG. 6 are structural schematic diagrams of base stations in embodiments of the present invention;

图7是本发明实施例中接入系统的结构示意图。Fig. 7 is a schematic structural diagram of an access system in an embodiment of the present invention.

具体实施方式 Detailed ways

为解决现有技术中提到的SDCCH拥塞问题,节省网络资源,本发明实施例提供了一种移动终端的接入方法,具体流程如图2所示,包括:In order to solve the SDCCH congestion problem mentioned in the prior art and save network resources, an embodiment of the present invention provides a method for accessing a mobile terminal. The specific process is shown in Figure 2, including:

步骤201、判断当前请求接入且已被分配SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中,若否,执行步骤202,若是,执行步骤205;Step 201, judging whether the terminal identification of the mobile terminal that currently requests access and has been allocated an SDCCH is located in the saved blacklist database, if not, perform step 202, if so, perform step 205;

步骤202、对该移动终端进行鉴权;Step 202, authenticating the mobile terminal;

步骤203、判断鉴权是否成功,若是,执行步骤204,若否,执行步骤205;Step 203, determine whether the authentication is successful, if so, execute step 204, if not, execute step 205;

步骤204、接受该移动终端发起的接入请求;Step 204, accepting the access request initiated by the mobile terminal;

步骤205、拒绝该移动终端发起的接入请求。Step 205, rejecting the access request initiated by the mobile terminal.

如图2所示流程,步骤201在实施之前,接收移动终端MS发起的接入请求,判断当前是否存在空闲的SDCCH,若是,为该MS分配一条SDCCH,若否,则该MS处于等待状态,直至超时结束等待状态。Flow process as shown in Figure 2, before step 201 is implemented, receive the access request that mobile terminal MS initiates, judge whether there is idle SDCCH at present, if yes, allocate an SDCCH for this MS, if not, then this MS is in waiting state, Wait until the timeout ends.

如图2所示流程,步骤201在实施时,增加了一个黑名单数据库,在该黑名单数据库中记录有拒绝接入的MS的终端标识,判断当前请求接入且已被分配SDCCH的MS的终端标识是否位于已保存的黑名单数据库中。The process shown in Figure 2, when step 201 is implemented, a blacklist database is added, and the terminal identification of the MS that refuses to access is recorded in the blacklist database, and the identity of the MS that currently requests access and has been allocated an SDCCH is judged. Whether the terminal ID is in the saved blacklist database.

一个实施例中,黑名单数据库中记录的MS的终端标识可以有多种,较优的,可以在黑名单数据库中记录拒绝接入的MS的临时移动用户识别码TMSI号和/或国际移动用户识别码IMSI号。此时,当接收到MS发起的接入请求时,判断该MS的TMSI号和/或IMSI号是否记录在黑名单数据库中。In one embodiment, the terminal identifiers of the MS recorded in the blacklist database can be of various types. Preferably, the temporary mobile subscriber identity code TMSI number and/or international mobile subscriber identification number of the MS that refuses access can be recorded in the blacklist database. Identification code IMSI number. At this time, when the access request initiated by the MS is received, it is judged whether the TMSI number and/or IMSI number of the MS is recorded in the blacklist database.

如图2所述流程,步骤203在实施时,在鉴权失败后,进一步确定鉴权失败的原因,鉴权失败的理由有多种,如,可以是未知移动终端、未知位置区、不允许漫游、非法移动终端、非法设备、系统失败中的任意一项,也可以是其中几项的组合,具体的失败理由根据实际情况而定。实施时,非法移动终端或非法设备可以是为不属于本网的移动终端或设备。The process described in Figure 2, when step 203 is implemented, after the authentication fails, further determine the reason for the authentication failure. There are many reasons for the authentication failure, such as unknown mobile terminal, unknown location area, not allowed Any one of roaming, illegal mobile terminal, illegal device, and system failure, or a combination of several of them, and the specific failure reason depends on the actual situation. During implementation, the illegal mobile terminal or illegal device may be a mobile terminal or device that does not belong to the network.

若鉴权失败原因属于设定的加入黑名单数据库条件,将该移动终端的终端标识加入黑名单数据库中。在本例中,设定的加入黑名单数据库条件为:不允许漫游的本网移动终端或非法移动终端或非法设备。If the cause of the authentication failure belongs to the set adding condition to the blacklist database, the terminal identification of the mobile terminal is added to the blacklist database. In this example, the set conditions for adding to the blacklist database are: local network mobile terminals or illegal mobile terminals or illegal devices that are not allowed to roam.

在本例中,黑名单数据库可以根据鉴权结果随时更新,为保证黑名单数据库的有效性与精确性,避免将可以接入的MS的终端标识加入黑名单数据库中,该黑名单数据库的初始记录可以为空。In this example, the blacklist database can be updated at any time according to the authentication result. In order to ensure the validity and accuracy of the blacklist database and avoid adding the terminal identifiers of MSs that can be accessed into the blacklist database, the initial blacklist database Records can be empty.

实施时,黑名单数据库位于网络侧,可以存储在网络侧的任意网元上,可以实现对MS的终端标识的记录即可,在本例中,可以将黑名单数据库存储在基站上。During implementation, the blacklist database is located on the network side and can be stored on any network element on the network side. It only needs to record the terminal identification of the MS. In this example, the blacklist database can be stored on the base station.

如图2所示流程,步骤205在实施时,拒绝MS发起的接入请求后,该MS在一定时间(如T3122)内不会再发起接入请求,但超时后,该MS会再次发起接入请求。As shown in Figure 2, when step 205 is implemented, after rejecting the access request initiated by the MS, the MS will not initiate an access request within a certain period of time (such as T3122), but after the timeout, the MS will initiate an access request again. input request.

当大量MS在同一高空基站发起接入请求时,对于终端标识记录在黑名单数据库中且已分配SDCCH的MS,网络侧无需进行鉴权,直接拒绝上述MS发起的接入请求,并将为上述MS分配的SDCCH释放,缩短了对SDCCH的占用时间,可以缓解SDCCH的拥塞问题,节省网络资源。When a large number of MSs initiate access requests on the same high-altitude base station, the network side does not need to perform authentication for MSs whose terminal identities are recorded in the blacklist database and have been assigned SDCCHs, and directly rejects the access requests initiated by the above MSs, and will The release of the SDCCH allocated by the MS shortens the occupation time of the SDCCH, which can alleviate the congestion problem of the SDCCH and save network resources.

在实施时,为了节省网络资源,黑名单数据库中还可以记录有将MS的终端标识加入到黑名单数据库的时间,当该MS的终端标识在黑名单数据库中存在的时间超过设定的时间时,将移动终端的终端标识从黑名单数据库中删除。During implementation, in order to save network resources, the blacklist database can also record the time when the terminal identification of the MS is added to the blacklist database. When the terminal identification of the MS exists in the blacklist database for more than the set time , deleting the terminal identifier of the mobile terminal from the blacklist database.

现以黑名单数据库中存储的是MS的TMSI或IMSI号为例进行说明,此时,MS试图接入网络的具体处理流程如图3所示:Now take the TMSI or IMSI number of the MS stored in the blacklist database as an example for illustration. At this time, the specific processing flow of the MS trying to access the network is shown in Figure 3:

步骤301、接收到MS发起的接入请求;Step 301, receiving an access request initiated by the MS;

步骤302、判断当前是否存在空闲的SDCCH,若是,执行步骤303,若否,返回步骤302;Step 302, judging whether there is an idle SDCCH at present, if so, execute step 303, if not, return to step 302;

步骤303、为该MS分配一条SDCCH;Step 303, assigning an SDCCH to the MS;

步骤304、判断该MS的TMSI或IMSI号是否位于黑名单数据库中,若否,执行步骤305,若否,执行步骤311;Step 304, judging whether the TMSI or IMSI number of the MS is in the blacklist database, if not, execute step 305, if not, execute step 311;

步骤305、MSC对该MS进行鉴权;Step 305, the MSC authenticates the MS;

步骤306、判断鉴权是否成功,若否,执行步骤307,若否,执行步骤310;Step 306, judging whether the authentication is successful, if not, execute step 307, if not, execute step 310;

步骤307、确定鉴权失败原因;Step 307, determining the reason for authentication failure;

步骤308、判断鉴权失败原因是否属于设定的加入黑名单数据库条件,若是,执行步骤309,若否,执行步骤311;Step 308, judging whether the reason for authentication failure belongs to the set blacklist database condition, if so, execute step 309, if not, execute step 311;

步骤309、将该MS的TMSI号或IMSI号加入黑名单数据库中;Step 309, adding the TMSI number or IMSI number of the MS into the blacklist database;

步骤310、接受该MS发起的接入请求;Step 310, accepting the access request initiated by the MS;

步骤311、拒绝该MS发起的接入请求;Step 311, rejecting the access request initiated by the MS;

步骤312、等待T3122超时后,返回步骤301。Step 312, after waiting for T3122 to time out, return to step 301.

在该例中,设定的加入黑名单数据库条件为:不允许漫游的本网移动终端或非法移动终端或非法设备。In this example, the set conditions for adding to the blacklist database are: mobile terminals on the local network or illegal mobile terminals or illegal devices that are not allowed to roam.

基于同一发明构思,本发明实施例还提供了一种基站,具体如图4所示,包括:Based on the same inventive concept, an embodiment of the present invention also provides a base station, as shown in Figure 4, including:

第一判断模块401,用于判断当前请求接入且已被分配独立专用控制信道SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中;The first judging module 401 is used to judge whether the terminal identification of the mobile terminal that currently requests access and has been allocated an independent dedicated control channel SDCCH is located in the saved blacklist database;

通知模块402,用于当第一判断模块401的判断结果为否时,通知移动交换中心MSC对该移动终端进行鉴权;The notification module 402 is used to notify the mobile switching center MSC to authenticate the mobile terminal when the judgment result of the first judgment module 401 is no;

第一接收模块403,用于接收MSC发送的鉴权结果;The first receiving module 403 is configured to receive the authentication result sent by the MSC;

接入模块404,用于当MSC鉴权成功时,接受该移动终端发起的接入请求;An access module 404, configured to accept an access request initiated by the mobile terminal when the MSC authentication is successful;

拒绝模块405,用于当第一判断模块401的判断结果为是时,或者当MSC鉴权失败时,拒绝该移动终端发起的接入请求。The rejection module 405 is configured to reject the access request initiated by the mobile terminal when the judgment result of the first judgment module 401 is yes, or when the MSC authentication fails.

一个实施例中,如图5所示,基站还可以包括:In one embodiment, as shown in FIG. 5, the base station may further include:

第二接收模块501,用于接收移动终端发起的接入请求;The second receiving module 501 is configured to receive an access request initiated by a mobile terminal;

第二判断模块502,用于判断当前是否存在空闲的SDCCH;The second judging module 502 is used to judge whether there is currently an idle SDCCH;

分配模块503,用于当前存在空闲的SDCCH时,为该移动终端分配一条SDCCH。The allocation module 503 is configured to allocate an SDCCH to the mobile terminal when there is currently an idle SDCCH.

一个实施例中,如图6所示,基站还可以包括:In one embodiment, as shown in FIG. 6, the base station may further include:

加入模块601,用于当第一接收模块403接收到的鉴权失败原因属于设定的加入黑名单数据库条件时,将该移动终端的终端标识加入黑名单数据库中The adding module 601 is used to add the terminal identification of the mobile terminal to the blacklist database when the reason for the authentication failure received by the first receiving module 403 belongs to the set adding blacklist database condition

基于同一发明构思,本发明实施例还提供了一种接入系统,如图7所示,包括MSC 701和基站702;Based on the same inventive concept, an embodiment of the present invention also provides an access system, as shown in FIG. 7 , including an MSC 701 and a base station 702;

基站702,用于判断当前请求接入且已被分配独立专用控制信道SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中;若是,则拒绝该移动终端发起的接入请求;若否,则通知MSC 701对该移动终端进行鉴权,并接收MSC 701发送的鉴权结果;当鉴权失败时,拒绝该移动终端发起的接入请求;当鉴权成功时,接受该移动终端发起的接入请求;The base station 702 is used to judge whether the terminal identification of the mobile terminal that currently requests access and has been allocated an independent dedicated control channel SDCCH is located in the saved blacklist database; if so, reject the access request initiated by the mobile terminal; if not, Then notify the MSC 701 to authenticate the mobile terminal, and receive the authentication result sent by the MSC 701; when the authentication fails, reject the access request initiated by the mobile terminal; when the authentication succeeds, accept the access request initiated by the mobile terminal access request;

MSC 701,用于接收到基站702发送的对移动终端进行鉴权的通知,对该移动终端进行鉴权;并将鉴权结果发送给基站702。The MSC 701 is configured to receive the notification of authenticating the mobile terminal sent by the base station 702, and authenticate the mobile terminal; and send the authentication result to the base station 702.

在一个实施例中,基站702还可以用于:接收移动终端发起的接入请求;判断当前是否存在空闲的SDCCH,若是,为该移动终端分配一条SDCCH。In one embodiment, the base station 702 can also be used to: receive an access request initiated by a mobile terminal; determine whether there is an idle SDCCH, and if so, allocate an SDCCH to the mobile terminal.

在一个实施例中,基站702还可以用于:当鉴权失败原因属于设定的加入黑名单数据库条件时,将该移动终端的终端标识加入该黑名单数据库中In an embodiment, the base station 702 can also be used to: add the terminal identifier of the mobile terminal to the blacklist database when the cause of the authentication failure belongs to the set blacklist database addition condition

本发明实施例中,增加了黑名单数据库,判断当前请求接入且已被分配独立专用控制信道SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中,若是,可以直接拒绝该移动终端发起的接入请求,并不需要再进行鉴权,简化了他网用户及本网不允许漫游用户的鉴权流程,能够快速释放占用的网络资源,缩短处理时间,减少网络的负担。In the embodiment of the present invention, a blacklist database is added to judge whether the terminal identification of the mobile terminal that currently requests access and has been allocated an independent dedicated control channel SDCCH is located in the saved blacklist database, and if so, can directly reject the mobile terminal to initiate The access request does not need to be authenticated again, which simplifies the authentication process for other network users and local network users who do not allow roaming, can quickly release occupied network resources, shorten processing time, and reduce the burden on the network.

进一步,当鉴权失败理由属于设定的加入黑名单数据库条件时,则将该移动终端的终端标识加入黑名单数据库中,保证黑名单数据库中存储的内容可以及时更新,提高鉴权的准确性。Further, when the authentication failure reason belongs to the set adding blacklist database condition, then the terminal identification of the mobile terminal is added in the blacklist database, so as to ensure that the content stored in the blacklist database can be updated in time and improve the accuracy of authentication .

显然,本领域的技术人员可以对本发明进行各种改动和变形而不脱离本发明的精神和范围。这样,倘若本发明的这些修改和变形属于本发明权利要求及其等同技术范围之内,则本发明也意图包含这些改动和变形在内。Obviously, those skilled in the art can make various changes and modifications to the present invention without departing from the spirit and scope of the present invention. Thus, if these modifications and variations of the present invention fall within the scope of the claims of the present invention and their technical equivalents, the present invention also intends to include these modifications and variations.

Claims (7)

1.一种移动终端的接入方法,其特征在于,包括:1. An access method for a mobile terminal, comprising: 接收移动终端发起的接入请求;receiving an access request initiated by a mobile terminal; 判断当前是否存在空闲的独立专用控制信道SDCCH,若是,为所述移动终端分配一条SDCCH;Judging whether there is currently an idle independent dedicated control channel SDCCH, if so, assigning an SDCCH to the mobile terminal; 判断当前请求接入且已被分配SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中;Judging whether the terminal identification of the mobile terminal that currently requests access and has been allocated an SDCCH is located in the saved blacklist database; 若所述移动终端的终端标识位于保存的黑名单数据库中,则拒绝所述移动终端发起的接入请求,并释放为所述移动终端分配的SDCCH;If the terminal identifier of the mobile terminal is located in the saved blacklist database, rejecting the access request initiated by the mobile terminal, and releasing the SDCCH allocated for the mobile terminal; 若所述移动终端的终端标识未位于保存的黑名单数据库中,则对所述移动终端进行鉴权;当鉴权失败时,拒绝所述移动终端发起的接入请求,并当鉴权失败原因属于设定的加入黑名单数据库条件时,将所述移动终端的终端标识加入所述黑名单数据库中;当鉴权成功时,接受所述移动终端发起的接入请求。If the terminal identification of the mobile terminal is not located in the saved blacklist database, the mobile terminal is authenticated; when the authentication fails, the access request initiated by the mobile terminal is rejected, and the reason for the authentication failure is Adding the terminal identifier of the mobile terminal into the blacklist database when it belongs to the set blacklist database addition condition; when the authentication is successful, accepting the access request initiated by the mobile terminal. 2.如权利要求1所述的方法,其特征在于,所述设定的加入黑名单数据库条件包括:不允许漫游的本网移动终端或非法移动终端或非法设备。2 . The method according to claim 1 , wherein the set conditions for adding to the blacklist database include: mobile terminals on the local network or illegal mobile terminals or illegal devices that are not allowed to roam. 3.如权利要求1至2任一项所述的方法,其特征在于,所述黑名单数据库中记录有拒绝接入的移动终端的临时移动用户识别码TMSI号和/或国际移动用户识别码IMSI号。3. The method according to any one of claims 1 to 2, wherein the temporary mobile subscriber identity TMSI number and/or international mobile subscriber identity number of the mobile terminal that refuses access is recorded in the blacklist database IMSI number. 4.如权利要求3所述的方法,其特征在于,所述黑名单数据库中还记录有将所述移动终端的终端标识加入到黑名单数据库的时间,当所述移动终端的终端标识在所述黑名单数据库中存在的时间超过设定的时间时,将所述移动终端的终端标识从所述黑名单数据库中删除。4. The method according to claim 3, wherein the time when the terminal identification of the mobile terminal is added to the blacklist database is also recorded in the blacklist database, when the terminal identification of the mobile terminal is in the blacklist database When the existence time in the blacklist database exceeds the set time, delete the terminal identification of the mobile terminal from the blacklist database. 5.如权利要求4所述的方法,其特征在于,所述黑名单数据库位于基站中。5. The method of claim 4, wherein the blacklist database is located in a base station. 6.一种基站,其特征在于,包括第一判断模块、通知模块、第一接收模块、接入模块、拒绝模块、加入模块、第二接收模块、第二判断模块以及分配模块,其中:6. A base station, characterized in that it comprises a first judging module, a notification module, a first receiving module, an access module, a rejection module, a joining module, a second receiving module, a second judging module and an assignment module, wherein: 第二接收模块,用于接收移动终端发起的接入请求;The second receiving module is configured to receive an access request initiated by a mobile terminal; 第二判断模块,用于判断当前是否存在空闲的独立专用控制信道SDCCH;The second judging module is used to judge whether there is currently an idle independent dedicated control channel SDCCH; 分配模块,用于当前存在空闲的SDCCH时,为所述移动终端分配一条SDCCH;An allocation module, configured to allocate an SDCCH to the mobile terminal when there is currently an idle SDCCH; 第一判断模块,用于判断当前请求接入且已被分配SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中;The first judging module is used to judge whether the terminal identification of the mobile terminal that currently requests access and has been allocated the SDCCH is located in the saved blacklist database; 通知模块,用于当所述第一判断模块的判断结果为否时,通知移动交换中心MSC对所述移动终端进行鉴权;A notification module, configured to notify the Mobile Switching Center MSC to authenticate the mobile terminal when the judgment result of the first judgment module is No; 第一接收模块,用于接收所述MSC发送的鉴权结果;The first receiving module is configured to receive the authentication result sent by the MSC; 接入模块,用于当所述MSC鉴权成功时,接受所述移动终端发起的接入请求;An access module, configured to accept an access request initiated by the mobile terminal when the MSC authentication is successful; 拒绝模块,用于当所述第一判断模块的判断结果为是时,拒绝所述移动终端发起的接入请求,并释放为所述移动终端分配的SDCCH,或者当所述MSC鉴权失败时,拒绝所述移动终端发起的接入请求;A rejection module, configured to reject the access request initiated by the mobile terminal when the judgment result of the first judgment module is yes, and release the SDCCH allocated for the mobile terminal, or when the MSC authentication fails , rejecting the access request initiated by the mobile terminal; 加入模块,用于当所述第一接收模块接收到的鉴权失败原因属于设定的加入黑名单数据库条件时,将所述移动终端的终端标识加入所述黑名单数据库中。An adding module, configured to add the terminal identifier of the mobile terminal to the blacklist database when the reason for authentication failure received by the first receiving module belongs to the set blacklist database addition condition. 7.一种接入系统,其特征在于,包括:移动交换中心MSC和基站;7. An access system, characterized in that it comprises: a mobile switching center MSC and a base station; 所述基站,用于接收移动终端发起的接入请求,并判断当前是否存在空闲的独立专用控制信道SDCCH,若是,为所述移动终端分配一条SDCCH,并判断当前请求接入且已被分配SDCCH的移动终端的终端标识是否位于保存的黑名单数据库中,若所述移动终端的终端标识位于保存的黑名单数据库中,则拒绝所述移动终端发起的接入请求,并释放为所述移动终端分配的SDCCH;若所述移动终端的终端标识未位于保存的黑名单数据库中,则通知所述MSC对所述移动终端进行鉴权,并接收所述MSC发送的鉴权结果;当鉴权失败时,拒绝所述移动终端发起的接入请求,并当鉴权失败原因属于设定的加入黑名单数据库条件时,将所述移动终端的终端标识加入所述黑名单数据库中;当鉴权成功时,接受所述移动终端发起的接入请求;The base station is used to receive an access request initiated by a mobile terminal, and determine whether there is currently an idle independent dedicated control channel SDCCH, and if so, allocate an SDCCH for the mobile terminal, and determine that the current request for access has been allocated to an SDCCH Whether the terminal identifier of the mobile terminal is located in the saved blacklist database, if the terminal identifier of the mobile terminal is located in the saved blacklist database, the access request initiated by the mobile terminal is rejected, and the mobile terminal is released SDCCH allocated; if the terminal identification of the mobile terminal is not located in the saved blacklist database, then notify the MSC to authenticate the mobile terminal and receive the authentication result sent by the MSC; when the authentication fails , reject the access request initiated by the mobile terminal, and add the terminal identification of the mobile terminal to the blacklist database when the cause of authentication failure belongs to the set blacklist database addition condition; , accepting the access request initiated by the mobile terminal; 所述MSC,用于接收到所述基站发送的对所述移动终端进行鉴权的通知,对所述移动终端进行鉴权;并将鉴权结果发送给所述基站。The MSC is configured to receive the notification of authenticating the mobile terminal sent by the base station, perform authentication on the mobile terminal, and send an authentication result to the base station.
CN2009100846245A 2009-05-18 2009-05-18 Access method, base station and access system of mobile terminal Active CN101895855B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2009100846245A CN101895855B (en) 2009-05-18 2009-05-18 Access method, base station and access system of mobile terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2009100846245A CN101895855B (en) 2009-05-18 2009-05-18 Access method, base station and access system of mobile terminal

Publications (2)

Publication Number Publication Date
CN101895855A CN101895855A (en) 2010-11-24
CN101895855B true CN101895855B (en) 2013-06-26

Family

ID=43104889

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2009100846245A Active CN101895855B (en) 2009-05-18 2009-05-18 Access method, base station and access system of mobile terminal

Country Status (1)

Country Link
CN (1) CN101895855B (en)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102196378B (en) * 2010-03-02 2015-04-01 中兴通讯股份有限公司 Short message service access control method and base station subsystem
CN102843736B (en) * 2011-06-23 2018-02-13 中兴通讯股份有限公司 Cell switching method and device
CN102624690A (en) * 2011-11-28 2012-08-01 苏州奇可思信息科技有限公司 Computer proxy internet surfing method capable of realizing centralized control of advertisements
CN102791016B (en) * 2012-07-04 2014-12-10 大唐移动通信设备有限公司 Access processing method and device
CN104363974A (en) * 2013-03-20 2015-02-18 华为技术有限公司 Method for detecting user equipment conflict, user equipment, and base station
CN104754645B (en) * 2013-12-25 2018-10-23 中国移动通信集团公司 A kind of network connection control method and device
CN106804036B (en) * 2015-11-26 2019-07-09 中国电信股份有限公司 Method and mobile terminal for access to mobile network
CN108243418A (en) * 2016-12-23 2018-07-03 北京明朝万达科技股份有限公司 A kind of connection of mobile terminal into network smooth-switching method and system
CN112260780B (en) * 2019-07-03 2022-07-01 杭州萤石软件有限公司 Network access method, device and system
CN111212086A (en) * 2020-01-16 2020-05-29 郑州轻工业大学 Computer network protection method and system
CN114867028A (en) * 2021-02-03 2022-08-05 中国移动通信有限公司研究院 A protection method, device and network device for counterfeiting attack

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6400951B1 (en) * 1997-02-28 2002-06-04 Nokia Telecommunications Oy Handover and call setup in a mobile communication system
CN1620165A (en) * 2003-11-21 2005-05-25 华为技术有限公司 Identification method of mobile terminal user legalness
CN1852602A (en) * 2005-12-16 2006-10-25 华为技术有限公司 Assignation method
CN101111075A (en) * 2007-04-16 2008-01-23 华为技术有限公司 Method, system and device for admittance judgment and paging user in mobile communication system
CN101296521A (en) * 2008-06-20 2008-10-29 华为技术有限公司 Method, device and system for guaranteeing communication

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7539158B2 (en) * 2004-11-08 2009-05-26 Lemko Corporation System, method and device for providing communications using a distributed mobile architecture
US8064882B2 (en) * 2007-03-09 2011-11-22 Cisco Technology, Inc. Blacklisting of unlicensed mobile access (UMA) users via AAA policy database

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6400951B1 (en) * 1997-02-28 2002-06-04 Nokia Telecommunications Oy Handover and call setup in a mobile communication system
CN1620165A (en) * 2003-11-21 2005-05-25 华为技术有限公司 Identification method of mobile terminal user legalness
CN1852602A (en) * 2005-12-16 2006-10-25 华为技术有限公司 Assignation method
CN101111075A (en) * 2007-04-16 2008-01-23 华为技术有限公司 Method, system and device for admittance judgment and paging user in mobile communication system
CN101296521A (en) * 2008-06-20 2008-10-29 华为技术有限公司 Method, device and system for guaranteeing communication

Also Published As

Publication number Publication date
CN101895855A (en) 2010-11-24

Similar Documents

Publication Publication Date Title
CN101895855B (en) Access method, base station and access system of mobile terminal
US10003996B2 (en) Granular network access control and methods thereof
CN102223729B (en) Control machine type communication device and access the method and system of network
CN102457938B (en) The method and system of terminal access restriction
KR102604893B1 (en) Supporting multiple concurrent service contexts with a single connectivity context
CN103037480B (en) Method for setting wireless access capability and related communication device
US9338689B2 (en) Method for mobile terminal to access wireless access point and wireless access point
EP2922343B1 (en) Access control method, base station and system
CN102223672B (en) Control the method and system of machine type communication device access network
KR101857514B1 (en) Method for updating rplmn information, and user equipment
US20200008109A1 (en) Base station handover method, system, and computer storage medium
EP2849469A1 (en) Uplink/downlink transmission method for small amount of data, and corresponding terminal and mobility management unit
WO2016155298A1 (en) Relay ue access control method and apparatus
KR20110020166A (en) A method for controlling a server in charge of a control plane and a service in a mobile communication network.
KR102444040B1 (en) Method and device for data transmission in vehicle internet system
CN113055972B (en) Session processing method in wireless communication and terminal equipment
CN103262515B (en) Method and system for handling service requests in telecommunications network
JP4957864B2 (en) Mobile communication system
WO2011054251A1 (en) Method, system and terminal for preventing access from illegal terminals
CN102638848A (en) Congestion control method and system for machine type communication (MTC) equipment
CN107948994A (en) The detection method and device of network insertion result, computer-readable storage medium
CN102065400B (en) Method and device for user access under abnormal condition and communication system
CN107864484A (en) LTE network accesses detection method and device, the storage medium of result
CN107750052A (en) The detection method and device of network insertion result, computer-readable storage medium
KR101843971B1 (en) Communication system, base station and scheduling method of the base station

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant