[go: up one dir, main page]

CN102685667A - Method, device and system for transmitting and acquiring position information of access user - Google Patents

Method, device and system for transmitting and acquiring position information of access user Download PDF

Info

Publication number
CN102685667A
CN102685667A CN2012101385271A CN201210138527A CN102685667A CN 102685667 A CN102685667 A CN 102685667A CN 2012101385271 A CN2012101385271 A CN 2012101385271A CN 201210138527 A CN201210138527 A CN 201210138527A CN 102685667 A CN102685667 A CN 102685667A
Authority
CN
China
Prior art keywords
eap
sim
access user
position information
message
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN2012101385271A
Other languages
Chinese (zh)
Inventor
吕召彪
胡云
王非
王健全
邓安民
万其斌
陈旭东
傅强
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN2012101385271A priority Critical patent/CN102685667A/en
Publication of CN102685667A publication Critical patent/CN102685667A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

本发明提供接入用户的位置信息发送和获取方法、设备及系统。该接入用户的位置信息发送包括:AP设备获取接入用户的位置信息;所述AP设备将所述接入用户的位置信息承载于EAP-SIM报文中发送至宽带远程接入服务器BRAS,以使所述BRAS根据所述EAP-SIM报文获取所述接入用户的位置信息并完成EAP-SIM协议认证。本发明提供接入用户的位置信息发送和获取方法、设备及系统能够实现BRAS在进行认证的过程中获取用户位置信息。

The invention provides a method, device and system for sending and acquiring location information of an access user. The sending of the location information of the access user includes: the AP device obtains the location information of the access user; the AP device carries the location information of the access user in an EAP-SIM message and sends it to the broadband remote access server BRAS, The BRAS obtains the location information of the access user according to the EAP-SIM message and completes the EAP-SIM protocol authentication. The invention provides a method, device and system for sending and acquiring location information of an access user, which can realize that the BRAS acquires the user location information during authentication.

Description

接入用户的位置信息发送和获取方法、设备及系统Method, device and system for sending and acquiring location information of access users

技术领域 technical field

本发明涉及网络通信技术,尤其涉及一种接入用户的位置信息发送和获取方法、设备及系统,属于通信技术领域。The invention relates to network communication technology, in particular to a method, device and system for sending and acquiring location information of an access user, belonging to the field of communication technology.

背景技术 Background technique

瘦无线接入点(Access Point,AP)仅用于无线接入功能,也称为无线网桥或无线网关,其不具备胖AP的广域网(WAN,Wide Area Network)和局域网(Local Area Network,LAN)接口,不支持支持动态主机设置协议(Dynamic Host Configuration Protocol,DHCP)服务器、计算机域名系统(Domain Name System,DNS)服务器和防火墙等安全功能。因此,瘦AP架构符合运营商对大型电信网络集中控制、集中管理的要求,并且在全网设备的频率、功率控制,用户流量均衡,安全性等方面具有独有的优势,因此广泛应用于无线局域网络(Wireless Local Area Networks,WLAN)中。Thin wireless access points (Access Point, AP) are only used for wireless access functions, also known as wireless bridges or wireless gateways, which do not have the wide area network (WAN, Wide Area Network) and local area network (Local Area Network, LAN) interface, does not support security functions such as dynamic host configuration protocol (Dynamic Host Configuration Protocol, DHCP) server, computer domain name system (Domain Name System, DNS) server and firewall. Therefore, the thin AP architecture meets the requirements of operators for centralized control and centralized management of large-scale telecommunication networks, and has unique advantages in the frequency and power control of the entire network equipment, user traffic balance, security, etc., so it is widely used in wireless In the local area network (Wireless Local Area Networks, WLAN).

瘦AP架构WLAN网络中,无线接入控制器(Access Controller,AC)通常负责管理AP和用户业务,包括部署位置、接口类型和数量以及认证计费方式等,由宽带远程接入服务器(Broadband Remote Access Server,BRAS)负责实现认证、计费和授权功能等。在现有的WLAN网络结构下,终端用户并不直接接入到BRAS设备,而是通过AP访问网络。在这种组网情况下,BRAS无法获取用户位置信息,从而极大地限制了BRAS信息推送等基于用户的位置信息实现的扩展业务服务。In a WLAN network with a thin AP architecture, the wireless access controller (Access Controller, AC) is usually responsible for managing AP and user services, including deployment locations, interface types and quantities, and authentication and billing methods. The Broadband Remote Access Server (Broadband Remote Access Access Server, BRAS) is responsible for implementing authentication, accounting and authorization functions. Under the existing WLAN network structure, end users do not directly access the BRAS equipment, but access the network through APs. In this networking situation, the BRAS cannot obtain user location information, which greatly limits extended service services based on user location information, such as BRAS information push.

发明内容 Contents of the invention

本发明提供一种接入用户的位置信息发送和获取方法、设备及系统,用于实现BRAS在进行认证的过程中获取用户位置信息。The invention provides a method, device and system for sending and acquiring location information of an access user, which are used to realize that a BRAS obtains user location information during authentication.

一方面,本发明实施例提供一种接入用户的位置信息发送方法,包括:On the one hand, an embodiment of the present invention provides a method for sending location information of an access user, including:

AP设备获取接入用户的位置信息;The AP device obtains the location information of the access user;

所述AP设备将所述接入用户的位置信息承载于EAP-SIM报文中发送至BRAS,以使所述BRAS根据所述EAP-SIM报文获取所述接入用户的位置信息并完成EAP-SIM协议认证。The AP device carries the location information of the access user in the EAP-SIM message and sends it to the BRAS, so that the BRAS obtains the location information of the access user according to the EAP-SIM message and completes the EAP -SIM protocol authentication.

一方面,本发明实施例提供一种接入用户的位置信息获取方法,包括:On the one hand, an embodiment of the present invention provides a method for obtaining location information of an access user, including:

BRAS接收AP设备发送的EAP-SIM报文,所述EAP-SIM报文携带有接入用户的位置信息;The BRAS receives the EAP-SIM message sent by the AP device, and the EAP-SIM message carries the location information of the access user;

所述BRAS解析所述EAP-SIM报文,获取所述接入用户的位置信息并完成EAP-SIM协议认证。The BRAS parses the EAP-SIM message, acquires the location information of the access user and completes the EAP-SIM protocol authentication.

一方面,本发明实施例提供一种无线接入点设备,包括:In one aspect, an embodiment of the present invention provides a wireless access point device, including:

第一位置信息获取模块,用于获取接入用户的位置信息;The first location information obtaining module is used to obtain the location information of the access user;

位置信息发送模块,用于将所述接入用户的位置信息承载于EAP-SIM报文中发送至宽带远程接入服务器BRAS,以使所述BRAS根据所述EAP-SIM报文获取所述接入用户的位置信息并完成EAP-SIM协议认证。A location information sending module, configured to carry the location information of the access user in an EAP-SIM message and send it to the broadband remote access server BRAS, so that the BRAS obtains the access information according to the EAP-SIM message. Enter the user's location information and complete the EAP-SIM protocol authentication.

一方面,本发明实施例提供一种宽带远程接入服务器,包括:On the one hand, an embodiment of the present invention provides a broadband remote access server, including:

位置信息接收模块,用于接收AP设备发送的EAP-SIM报文,所述EAP-SIM报文携带有接入用户的位置信息;The location information receiving module is used to receive the EAP-SIM message sent by the AP device, and the EAP-SIM message carries the location information of the access user;

第二位置信息获取模块,用于解析所述EAP-SIM报文,获取所述接入用户的位置信息并完成EAP-SIM协议认证。The second location information acquisition module is configured to parse the EAP-SIM message, acquire the location information of the access user and complete the EAP-SIM protocol authentication.

一方面,本发明实施例提供一种通信系统,包括本发明实施例提供的无线接入点设备和本发明实施例提供的宽带远程接入服务器,其中所述无线接入点设备与所述宽带远程接入服务器通信。On the one hand, an embodiment of the present invention provides a communication system, including the wireless access point device provided in the embodiment of the present invention and the broadband remote access server provided in the embodiment of the present invention, wherein the wireless access point device and the broadband Remote access server communication.

根据本发明提供的接入用户的位置信息发送和获取方法、设备及系统,实现了当UE通过AP设备接入网络时,由AP设备在用户的EAP-SIM协议认证过程中,向BRAS提供接入用户的位置信息,使得BRAS能够获取到接入用户的位置信息,从而可实现基于接入用户的位置信息的扩展业务服务。According to the method, device and system for sending and obtaining the location information of the access user provided by the present invention, when the UE accesses the network through the AP device, the AP device provides the access information to the BRAS during the user's EAP-SIM protocol authentication process. The location information of the access user enables the BRAS to obtain the location information of the access user, so that the extended service based on the location information of the access user can be realized.

附图说明 Description of drawings

图1为典型的瘦AP架构的WLAN网络的系统架构图。FIG. 1 is a system architecture diagram of a typical thin AP architecture WLAN network.

图2为本发明实施例的接入用户的位置信息发送方法的流程示意图。FIG. 2 is a schematic flowchart of a method for sending location information of an access user according to an embodiment of the present invention.

图3为本发明实施例的接入用户的位置信息发送方法的一个示例的信令图。Fig. 3 is a signaling diagram of an example of a method for sending location information of an access user according to an embodiment of the present invention.

图4为本发明另一实施例的接入用户的位置信息发送方法的流程示意图。Fig. 4 is a schematic flowchart of a method for sending location information of an access user according to another embodiment of the present invention.

图5为本发明实施例的接入用户的位置信息获取方法的流程示意图。FIG. 5 is a schematic flowchart of a method for acquiring location information of an access user according to an embodiment of the present invention.

图6为本发明实施例的AP设备的结构示意图。FIG. 6 is a schematic structural diagram of an AP device according to an embodiment of the present invention.

图7为本发明实施例的BRAS的结构示意图。FIG. 7 is a schematic structural diagram of a BRAS according to an embodiment of the present invention.

具体实施方式 Detailed ways

图1为典型的瘦AP架构的WLAN网络的系统架构图。如图1所示,包括UE、UE接入的AP、与AP通过无线接入点控制与供应(Controlling andProvisioning of Wireless Access Point,CAPWAP)管道连接的AC、与AP连接的BRAS,以及与BRAS连接的、用于对UE进行认证授权的认证服务器,例如为Radios服务器。下面以在图1所示的WLAN网络中为例,对本发明实施例的接入用户的位置信息、获取方法及设备进行详细说明。但本领域的技术人员能够理解,该WLAN网络架构并非用作对本发明实施例的限制,本发明实施例的接入用户的位置信息、获取方法及设备适用于任意其它包括AP和BRAS的网络系统。FIG. 1 is a system architecture diagram of a typical thin AP architecture WLAN network. As shown in Figure 1, it includes the UE, the AP connected to the UE, the AC connected to the AP through the Controlling and Provisioning of Wireless Access Point (CAPWAP) pipeline, the BRAS connected to the AP, and the BRAS connected The authentication server used to authenticate and authorize the UE is, for example, a Radios server. Taking the WLAN network shown in FIG. 1 as an example, the location information of the access user, the method for obtaining it, and the device in the embodiment of the present invention will be described in detail below. However, those skilled in the art can understand that the WLAN network architecture is not used as a limitation to the embodiment of the present invention, and the location information, acquisition method and equipment of the access user in the embodiment of the present invention are applicable to any other network systems including APs and BRASs .

实施例一Embodiment one

本实施例的接入用户的位置信息发送方法由AP设备执行。下面从AP设备的角度对本实施例的接入用户的位置信息发送方法进行详细说明。The method for sending location information of an access user in this embodiment is executed by an AP device. The method for sending location information of an access user in this embodiment will be described in detail below from the perspective of an AP device.

图2为本发明实施例的接入用户的位置信息发送方法的流程示意图。如图2所示,该接入用户的位置信息发送方法包括:FIG. 2 is a schematic flowchart of a method for sending location information of an access user according to an embodiment of the present invention. As shown in Figure 2, the method for sending the location information of the access user includes:

步骤S201,AP设备获取接入用户的位置信息;Step S201, the AP device obtains the location information of the access user;

步骤S202,AP设备将所述接入用户的位置信息承载于可扩展认证协议用户识别模块(Extensible Authentication Protocol Method for GSM SubscriberIdentity Modules,EAP-SIM)报文中发送至BRAS,以使所述BRAS根据所述EAP-SIM报文获取所述接入用户的位置信息并完成EAP-SIM协议认证。Step S202, the AP device carries the location information of the access user in an Extensible Authentication Protocol Method for GSM Subscriber Identity Module (EAP-SIM) message and sends it to the BRAS, so that the BRAS according to The EAP-SIM message obtains the location information of the access user and completes the EAP-SIM protocol authentication.

其中,AP设备可通过现有技术中任意获取用户位置信息的方式获取接入用户的位置信息,例如将AP的位置信息作为接入用户的位置信息,或者当UE通过自身设置的定位设备能够确定UE位置坐标时,AP通过与UE的信令交互获取UE位置坐标等。并且,在对接入用户进行EAP-SIM认证的过程中,将所获取的接入用户的位置信息携带在EAP-SIM报文中发送至BRAS。Among them, the AP device can obtain the location information of the access user through any method in the prior art, such as using the location information of the AP as the location information of the access user, or when the UE can determine the location information through its own positioning device When the UE location coordinates are used, the AP obtains the UE location coordinates and the like through signaling interaction with the UE. And, in the process of performing EAP-SIM authentication on the access user, the obtained location information of the access user is carried in the EAP-SIM message and sent to the BRAS.

具体地,图3为本发明实施例的接入用户的位置信息发送方法的一个示例的信令图。如图3所示,包括以下步骤:Specifically, FIG. 3 is a signaling diagram of an example of a method for sending location information of an access user according to an embodiment of the present invention. As shown in Figure 3, the following steps are included:

步骤S301,当UE接入AP设备时,向AP设备发送EAPOL开始信号;Step S301, when the UE accesses the AP device, send an EAPOL start signal to the AP device;

步骤S302,AP设备根据基于局域网的扩展认证协议(EAP OVER LAN,EAPOL)开始信号向UE反馈信息,要求UE提供EAP请求信息(EAP-RequestIdentify);Step S302, the AP device feeds back information to the UE according to the start signal of the extended authentication protocol based on the local area network (EAP OVER LAN, EAPOL), and requires the UE to provide EAP request information (EAP-RequestIdentify);

步骤S303,UE向AP设备提供EAP请求信息(该EAP请求信息为EAP-SIM协议信息);Step S303, the UE provides the AP device with EAP request information (the EAP request information is EAP-SIM protocol information);

步骤S304,AP设备在EAP请求信息中封装用户位置信息,获取封装有用户位置信息的EAP-SIM协议信息;Step S304, the AP device encapsulates the user location information in the EAP request information, and obtains the EAP-SIM protocol information encapsulated with the user location information;

步骤S305,将封装用户位置信息的EAP-SIM协议信息推送给BRAS;Step S305, pushing the EAP-SIM protocol information encapsulating the user location information to the BRAS;

步骤S306,BRAS从EAP-SIM协议信息获取封装的用户位置信息;Step S306, the BRAS obtains the encapsulated user location information from the EAP-SIM protocol information;

步骤S307,BRAS将EAP-SIM协议信息发送给Radios服务器,提出Radios接入请求;Step S307, the BRAS sends the EAP-SIM protocol information to the Radios server, and proposes a Radios access request;

优选地,BRAS单元截获EAP-SIM协议信息并从EAP-SIM协议信息获取封装的用户位置信息后,标准化重封装EAP-SIM协议信息,并将其发送给Radios服务器;当BRAS采用此方式时,由于向Radios服务器提供标准化的EAP-SIM协议信息,所以无需对Radios服务器进行修改即可实现EAP-SIM认证。Preferably, after the BRAS unit intercepts the EAP-SIM protocol information and obtains the encapsulated user location information from the EAP-SIM protocol information, standardizes and repackages the EAP-SIM protocol information and sends it to the Radios server; when the BRAS adopts this method, Since standardized EAP-SIM protocol information is provided to the Radios server, EAP-SIM authentication can be implemented without modifying the Radios server.

步骤S308,Radios服务器根据接收到的EAP-SIM协议信息,发起Radios接入挑战;Step S308, the Radios server initiates a Radios access challenge according to the received EAP-SIM protocol information;

步骤S309,UE通过BRAS与Radios服务器进行Radios信息交互等一系列EAP-SIM认证过程动作,该交互过程与现有的认证过程相同,故此处不再赘述;Step S309, the UE performs a series of EAP-SIM authentication process actions such as Radios information interaction with the Radios server through the BRAS. The interaction process is the same as the existing authentication process, so it will not be repeated here;

步骤S310,Radios服务器向UE返回认证结果,例如Radios服务器向BRAS返回Radios接受消息,由BRAS向AP返回EAP-SIM认证成功消息,并由AP将EAP-SIM认证成功消息发送给UE。In step S310, the Radios server returns an authentication result to the UE. For example, the Radios server returns a Radios acceptance message to the BRAS, and the BRAS returns an EAP-SIM authentication success message to the AP, and the AP sends the EAP-SIM authentication success message to the UE.

根据本发明实施例的接入用户的位置信息发送方法,实现了当UE通过AP设备接入网络时,由AP设备在用户的EAP-SIM协议认证过程中,向BRAS提供接入用户的位置信息,使得BRAS能够获取到接入用户的位置信息,从而可实现基于接入用户的位置信息的扩展业务服务。According to the method for sending the location information of the access user in the embodiment of the present invention, when the UE accesses the network through the AP device, the AP device provides the location information of the access user to the BRAS during the user's EAP-SIM protocol authentication process , so that the BRAS can obtain the location information of the access user, so as to realize the extended service based on the location information of the access user.

实施例二Embodiment two

在上述实施例一接入用户的位置信息发送方法的基础上,上述步骤S202中,所述AP设备将所述接入用户的位置信息承载于EAP-SIM报文发送至BRAS具体包括:On the basis of the method for sending the location information of the access user in the above-mentioned embodiment 1, in the above step S202, the AP device carrying the location information of the access user in an EAP-SIM message and sending it to the BRAS specifically includes:

获取所述接入用户发送的封装的EAP-SIM报文;Obtain the encapsulated EAP-SIM message sent by the access user;

对所述封装的EAP-SIM报文进行解析;Analyzing the encapsulated EAP-SIM message;

在解析获得的EAP-SIM报文中,添加所述接入用户的位置信息;In the EAP-SIM message obtained by parsing, add the location information of the access user;

对添加有所述接入用户的位置信息的EAP-SIM报文进行重新封装;re-encapsulating the EAP-SIM message added with the location information of the access user;

将重新封装的EAP-SIM报文发送至所述BRAS。Send the re-encapsulated EAP-SIM message to the BRAS.

具体地,图4为本发明另一实施例的接入用户的位置信息发送方法的流程示意图。如图4所示,包括以下步骤:Specifically, FIG. 4 is a schematic flowchart of a method for sending location information of an access user according to another embodiment of the present invention. As shown in Figure 4, the following steps are included:

步骤S401,UE发起用户认证请求,认证请求类型为EAP-SIM认证;Step S401, the UE initiates a user authentication request, and the authentication request type is EAP-SIM authentication;

步骤S402,AP设备响应UE请求,并向UE提出认证信息要求;Step S402, the AP device responds to the UE request, and requests the UE for authentication information;

步骤S403,UE发送EAP请求信息(该EAP请求信息为EAP-SIM协议信息)到AP设备;Step S403, the UE sends EAP request information (the EAP request information is EAP-SIM protocol information) to the AP device;

步骤S404,AP设备解封从UE接收到的EAP请求信息;Step S404, the AP device decapsulates the EAP request information received from the UE;

步骤S405,AP设备在EAP请求信息中添加用户位置信息;Step S405, the AP device adds user location information in the EAP request information;

更为具体地,对标准EAP请求信息进行改造时,例如根据标准EAP-SIM协议的报文定义,选择在标准EAP-SIM协议中的属性字段(ATTRIBUTEFIELD)中添加地址(Address)属性,并赋予其值,其值即为用户位置信息。表1为添加后的报文格式:More specifically, when modifying the standard EAP request information, for example, according to the message definition of the standard EAP-SIM protocol, choose to add the address (Address) attribute to the attribute field (ATTRIBUTEFIELD) in the standard EAP-SIM protocol, and assign Its value, its value is the user location information. Table 1 shows the added message format:

表1Table 1

此外,也可通过其它方式在EAP-SIM协议信息中携带用户位置信息,例如新增加一个地址部分。In addition, the user location information may also be carried in the EAP-SIM protocol information in other ways, such as adding a new address part.

步骤S406,AP重新封装添加有用户位置信息的EAP-SIM协议认证信息;Step S406, the AP repackages the EAP-SIM protocol authentication information added with the user location information;

步骤S407,AP将重新封装的EAP-SIM协议认证信息发送给BRAS;Step S407, the AP sends the repackaged EAP-SIM protocol authentication information to the BRAS;

步骤S408,BRAS解封接收到的EAP-SIM协议认证消息,并从中截取用户位置信息;Step S408, the BRAS decapsulates the received EAP-SIM protocol authentication message, and intercepts the user location information therefrom;

步骤S409,BRAS将截取后的信息重新按标准化的EAP-SIM协议方式封包并发送给Radios服务器;Step S409, the BRAS repackages the intercepted information according to the standardized EAP-SIM protocol mode and sends it to the Radios server;

具体地,由BRAS单元中的EAP-SIM协议封包功能模块将在增加的ATTRIBUTE FIELD部分中添加Address属性删除,使EAP-SIM协议消息的报文重新变回标准的格式,例如表2所示,表2为标准EAP-SIM协议信息格式:Specifically, the EAP-SIM protocol packet function module in the BRAS unit will add the Address attribute in the increased ATTRIBUTE FIELD part and delete it, so that the message of the EAP-SIM protocol message is changed back to the standard format, as shown in Table 2, for example, Table 2 is the standard EAP-SIM protocol information format:

表2Table 2

Figure BDA00001609470600061
Figure BDA00001609470600061

步骤S410,Radios服务器开始认证流程;Step S410, the Radios server starts the authentication process;

步骤S411,认证成功,则结束;不成功则向UE返回用户认证失败并可重新认证,即返回执行步骤S401。Step S411, if the authentication is successful, it ends; if it is not successful, it returns to the UE that the user authentication fails and re-authentication is possible, that is, returns to step S401.

实施例三Embodiment three

本实施例的接入用户的位置信息获取方法由BRAS来执行,下面从BRAS的角度对本实施例的接入用户的位置信息获取方法进行详细说明。The method for obtaining location information of an access user in this embodiment is performed by the BRAS. The method for obtaining location information of an access user in this embodiment will be described in detail below from the perspective of the BRAS.

图5为本发明实施例的接入用户的位置信息获取方法的流程示意图。如图5所示,该接入用户的位置信息获取方法包括:FIG. 5 is a schematic flowchart of a method for acquiring location information of an access user according to an embodiment of the present invention. As shown in Figure 5, the method for obtaining the location information of the access user includes:

步骤S501,BRAS接收AP设备发送的EAP-SIM报文,所述EAP-SIM报文携带有接入用户的位置信息;Step S501, the BRAS receives the EAP-SIM message sent by the AP device, and the EAP-SIM message carries the location information of the access user;

步骤S502,所述BRAS解析所述EAP-SIM报文,获取所述接入用户的位置信息并完成EAP-SIM协议认证。Step S502, the BRAS parses the EAP-SIM message, obtains the location information of the access user and completes the EAP-SIM protocol authentication.

本实施例的接入用户的位置信息获取方法与前述任一实施例中BRAS通过从AP设备接收的EAP-SIM报文中获取接入用户的位置信息的流程相同,故此处不再赘述。The method for obtaining the location information of the access user in this embodiment is the same as the process in which the BRAS obtains the location information of the access user from the EAP-SIM message received from the AP device in any of the foregoing embodiments, so details are not repeated here.

根据本实施例的接入用户的位置信息获取方法,实现了当UE接入网络时,BRAS在对UE进行EAP-SIM协议认证的过程中即可获取到接入用户的位置信息,从而可实现基于接入用户的位置信息的扩展业务服务。According to the method for obtaining the location information of the access user in this embodiment, when the UE accesses the network, the BRAS can obtain the location information of the access user during the process of authenticating the UE through the EAP-SIM protocol, thereby realizing Extended business services based on the location information of the access user.

进一步地,所述BRAS解析所述EAP-SIM报文,获取所述接入用户的位置信息并完成EAP-SIM协议认证具体包括:Further, the BRAS parses the EAP-SIM message, obtains the location information of the access user and completes the EAP-SIM protocol authentication, specifically including:

所述BRAS解析所述EAP-SIM报文;The BRAS parses the EAP-SIM message;

从解析获得的EAP-SIM报文中获取所述接入用户的位置信息;Obtain the location information of the access user from the EAP-SIM message obtained by parsing;

删除所述解析获得的EAP-SIM报文中的所述接入用户的位置信息,并对删除后的EAP-SIM报文进行重新封装;Deleting the location information of the access user in the EAP-SIM message obtained by the analysis, and repackaging the deleted EAP-SIM message;

将重新封装的EAP-SIM报文发送至认证服务器,以完成所述EAP-SIM协议认证。Send the re-encapsulated EAP-SIM message to the authentication server, so as to complete the EAP-SIM protocol authentication.

进一步地,所述从解析获得的EAP-SIM报文中获取所述接入用户的位置信息具体包括:Further, the obtaining the location information of the access user from the EAP-SIM message obtained by parsing specifically includes:

提取解析获得的EAP-SIM报文中属性字段的地址属性,并根据所述地址属性确定所述接入用户的位置信息;Extracting the address attribute of the attribute field in the EAP-SIM message obtained by parsing, and determining the location information of the access user according to the address attribute;

相应地,删除所述解析获得的EAP-SIM报文中的所述接入用户的位置信息,并对删除后的EAP-SIM报文进行重新封装具体包括:Correspondingly, deleting the location information of the access user in the EAP-SIM message obtained by the analysis, and re-encapsulating the deleted EAP-SIM message specifically includes:

删除所述解析获得的EAP-SIM报文中的所述地址属性,并根据标准化的EAP-SIM协议对删除后的EAP-SIM报文进行重新封装。Deleting the address attribute in the EAP-SIM message obtained through the analysis, and repackaging the deleted EAP-SIM message according to the standardized EAP-SIM protocol.

当BRAS采用此方式时,由于向Radios服务器提供标准化的EAP-SIM协议信息,所以无需对Radios服务器进行修改即可实现认证。When the BRAS adopts this method, because it provides standardized EAP-SIM protocol information to the Radios server, authentication can be realized without modifying the Radios server.

实施例四Embodiment Four

图6为本发明实施例的AP设备的结构示意图。如图6所示,包括:FIG. 6 is a schematic structural diagram of an AP device according to an embodiment of the present invention. As shown in Figure 6, including:

第一位置信息获取模块61,用于获取接入用户的位置信息;The first location information acquiring module 61 is configured to acquire the location information of the access user;

位置信息发送模块62,用于将所述接入用户的位置信息承载于EAP-SIM报文中发送至宽带远程接入服务器BRAS,以使所述BRAS根据所述EAP-SIM报文获取所述接入用户的位置信息并完成EAP-SIM协议认证。The location information sending module 62 is configured to carry the location information of the access user in the EAP-SIM message and send it to the broadband remote access server BRAS, so that the BRAS obtains the Access the user's location information and complete the EAP-SIM protocol authentication.

本实施例的AP设备向BRAS发送接入用户的位置信息的流程与前述实施例的接入用户的位置信息发送方法的流程相同,故此处不再赘述。The flow of the AP device sending the location information of the access user to the BRAS in this embodiment is the same as the flow of the method for sending the location information of the access user in the foregoing embodiment, so details are not repeated here.

根据本实施例的AP设备,实现了当UE通过AP设备接入网络时,由AP设备在用户的EAP-SIM协议认证过程中,向BRAS提供接入用户的位置信息,使得BRAS能够获取到接入用户的位置信息,从而可实现基于接入用户的位置信息的扩展业务服务。According to the AP device of this embodiment, when the UE accesses the network through the AP device, the AP device provides the location information of the access user to the BRAS during the user's EAP-SIM protocol authentication process, so that the BRAS can obtain the access user's location information. The location information of the incoming user can be used to realize the extended business service based on the location information of the incoming user.

进一步地,所述位置信息发送模块包括:Further, the location information sending module includes:

信息截获子模块,用于获取所述接入用户发送的封装的EAP-SIM报文;An information interception submodule, configured to obtain the encapsulated EAP-SIM message sent by the access user;

第一解析子模块,用于对所述封装的EAP-SIM报文进行解析;A first parsing submodule, configured to parse the encapsulated EAP-SIM message;

信息添加子模块,用于在解析获得的EAP-SIM报文中,添加所述接入用户的位置信息;The information adding submodule is used to add the location information of the access user in the EAP-SIM message obtained by parsing;

第一封装子模块,用于对添加有所述接入用户的位置信息的EAP-SIM报文进行重新封装;The first encapsulation submodule is used to re-encapsulate the EAP-SIM message added with the location information of the access user;

信息发送子模块,用于将重新封装的EAP-SIM报文发送至所述BRAS。The information sending sub-module is used to send the re-encapsulated EAP-SIM message to the BRAS.

进一步地,所述信息添加子模块具体用于在所述解析获得的EAP-SIM报文的属性字段添加地址属性,并根据所述接入用户的位置信息设置所述地址属性。Further, the information adding submodule is specifically configured to add an address attribute to the attribute field of the EAP-SIM message obtained through the parsing, and set the address attribute according to the location information of the access user.

实施例五Embodiment five

图7为本发明实施例的BRAS的结构示意图。如图6所示,包括:FIG. 7 is a schematic structural diagram of a BRAS according to an embodiment of the present invention. As shown in Figure 6, including:

位置信息接收模块71,用于接收AP设备发送的EAP-SIM报文,所述EAP-SIM报文携带有接入用户的位置信息;The location information receiving module 71 is used to receive the EAP-SIM message sent by the AP device, and the EAP-SIM message carries the location information of the access user;

第二位置信息获取模块72,用于解析所述EAP-SIM报文,获取所述接入用户的位置信息并完成EAP-SIM协议认证。The second location information acquiring module 72 is configured to parse the EAP-SIM message, acquire the location information of the access user and complete the EAP-SIM protocol authentication.

本实施例的BRAS获取接入用户的位置信息的流程与前述实施例的接入用户的位置信息获取方法的流程相同,故此处不再赘述。The flow of the BRAS in this embodiment to obtain the location information of the access user is the same as the flow of the method for obtaining the location information of the access user in the foregoing embodiments, so details are not repeated here.

根据本实施例的BRAS,实现了当UE接入网络时,BRAS在对UE进行EAP-SIM协议认证的过程中即可获取到接入用户的位置信息,从而可实现基于接入用户的位置信息的扩展业务服务According to the BRAS of this embodiment, when the UE accesses the network, the BRAS can obtain the location information of the access user during the process of authenticating the UE through the EAP-SIM protocol, so that the location information based on the access user can be realized extended business services

进一步地,所述第二位置信息获取模块具体包括:Further, the second location information acquisition module specifically includes:

第二解析子模块,用于解析所述EAP-SIM报文;The second parsing submodule is used to parse the EAP-SIM message;

信息提取子模块,用于从解析获得的EAP-SIM报文中获取所述接入用户的位置信息;An information extraction submodule, configured to obtain the location information of the access user from the EAP-SIM message obtained by parsing;

第二封装子模块,用于删除所述解析获得的EAP-SIM报文中的所述接入用户的位置信息,并对删除后的EAP-SIM报文进行重新封装;The second encapsulation submodule is configured to delete the location information of the access user in the EAP-SIM message obtained by the analysis, and re-encapsulate the deleted EAP-SIM message;

认证子模块,用于将重新封装的EAP-SIM报文发送至认证服务器,以完成所述EAP-SIM协议认证。The authentication submodule is configured to send the re-encapsulated EAP-SIM message to the authentication server, so as to complete the EAP-SIM protocol authentication.

进一步地,所述信息提取子模块具体用于提取解析获得的EAP-SIM报文中属性字段的地址属性,并根据所述地址属性确定所述接入用户的位置信息;Further, the information extraction submodule is specifically configured to extract the address attribute of the attribute field in the EAP-SIM message obtained by parsing, and determine the location information of the access user according to the address attribute;

相应地,所述第二封装子模块具体用于删除所述解析获得的EAP-SIM报文中的所述地址属性,并根据标准化的EAP-SIM协议对删除后的EAP-SIM报文进行重新封装。Correspondingly, the second encapsulation submodule is specifically configured to delete the address attribute in the EAP-SIM message obtained by the parsing, and re-delete the deleted EAP-SIM message according to the standardized EAP-SIM protocol. encapsulation.

实施例六Embodiment six

本实施例提供一种通信系统,包括本发明实施例的无线接入点设备和宽带远程接入服务器,其中所述无线接入点设备与所述宽带远程接入服务器通信。This embodiment provides a communication system, including the wireless access point device and the broadband remote access server according to the embodiment of the present invention, wherein the wireless access point device communicates with the broadband remote access server.

根据本实施例的通信系统,实现了当UE通过AP设备接入网络时,由AP设备在用户的EAP-SIM协议认证过程中,向BRAS提供接入用户的位置信息,使得BRAS能够获取到接入用户的位置信息,从而可实现基于接入用户的位置信息的扩展业务服务。According to the communication system of this embodiment, when the UE accesses the network through the AP device, the AP device provides the location information of the accessing user to the BRAS during the user's EAP-SIM protocol authentication process, so that the BRAS can obtain the accessing user's location information. The location information of the incoming user can be used to realize the extended business service based on the location information of the incoming user.

最后应说明的是:以上各实施例仅用以说明本发明的技术方案,而非对其限制;尽管参照前述各实施例对本发明进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分或者全部技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本发明各实施例技术方案的范围。Finally, it should be noted that: the above embodiments are only used to illustrate the technical solutions of the present invention, rather than limiting them; although the present invention has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand that: It is still possible to modify the technical solutions described in the foregoing embodiments, or perform equivalent replacements for some or all of the technical features; and these modifications or replacements do not make the essence of the corresponding technical solutions deviate from the technical solutions of the various embodiments of the present invention. scope.

Claims (13)

1. one kind is inserted the user position information sending method, it is characterized in that, comprising:
Wireless access point AP equipment obtains the access user position information;
Said AP equipment is carried on said access user position information in the Extensible Authentication Protocol subscriber identification module EAP-SIM message and is sent to Broadband Remote Access Server BRAS, so that said BRAS obtains said access user position information and accomplishes the EAP-SIM protocol authentication according to said EAP-SIM message.
2. position information transfer method according to claim 1 is characterized in that, said AP equipment is carried on the EAP-SIM message with said access user position information and is sent to BRAS and specifically comprises:
Obtain the EAP-SIM message of the encapsulation of said access user transmission;
EAP-SIM message to said encapsulation is resolved;
In resolving the EAP-SIM message that obtains, add said access user position information;
EAP-SIM message to being added with said access user position information encapsulates again;
The EAP-SIM message of encapsulation again is sent to said BRAS.
3. position information transfer method according to claim 2 is characterized in that, and is said in resolving the EAP-SIM message that obtains, and adds said access user position information and specifically comprises:
The attribute field of the EAP-SIM message that obtains in said parsing adds address properties, and according to said access user position information said address properties is set.
4. one kind is inserted the user position information acquisition methods, it is characterized in that, comprising:
BRAS receives the EAP-SIM message that AP equipment sends, and said EAP-SIM message carries the access user position information;
Said BRAS resolves said EAP-SIM message, obtains said access user position information and accomplishes the EAP-SIM protocol authentication.
5. access user position information acquisition methods according to claim 4 is characterized in that said BRAS resolves said EAP-SIM message, obtains said access user position information and accomplish the EAP-SIM protocol authentication specifically to comprise:
Said BRAS resolves said EAP-SIM message;
From resolve the EAP-SIM message that obtains, obtain said access user position information;
Delete the said access user position information in the EAP-SIM message that said parsing obtains, and the EAP-SIM message after the deletion is encapsulated again;
The EAP-SIM message of encapsulation again is sent to certificate server, to accomplish said EAP-SIM protocol authentication.
6. access user position information acquisition methods according to claim 4 is characterized in that, saidly from the EAP-SIM message that resolve to obtain, obtains said access user position information and specifically comprises:
Extract the address properties of resolving attribute field in the EAP-SIM message that obtains, and confirm said access user position information according to said address properties;
Correspondingly, delete the said access user position information in the EAP-SIM message that said parsing obtains, and the EAP-SIM message after the deletion encapsulated specifically again comprise:
Delete the said address properties in the EAP-SIM message that said parsing obtains, and encapsulate again according to the EAP-SIM message of standardized EAP-SIM agreement after to deletion.
7. a wireless access point device is characterized in that, comprising:
Primary importance information acquisition module is used to obtain the access user position information;
The positional information sending module; Be used for that said access user position information is carried on the EAP-SIM message and be sent to Broadband Remote Access Server BRAS, so that said BRAS obtains said access user position information and accomplishes the EAP-SIM protocol authentication according to said EAP-SIM message.
8. wireless access point device according to claim 7 is characterized in that, said positional information sending module comprises:
The information acquisition submodule is used to obtain the EAP-SIM message of the encapsulation that said access user sends;
First analyzing sub-module is used for the EAP-SIM message of said encapsulation is resolved;
Information is added submodule, is used for adding said access user position information at the EAP-SIM message of resolving acquisition;
The first encapsulation submodule is used for the EAP-SIM message that is added with said access user position information is encapsulated again;
Information is sent submodule, is used for the EAP-SIM message of encapsulation again is sent to said BRAS.
9. wireless access point device according to claim 7; It is characterized in that; Said information is added submodule and specifically is used for the attribute field interpolation address properties at the EAP-SIM message of said parsing acquisition, and according to said access user position information said address properties is set.
10. a Broadband Remote Access Server is characterized in that, comprising:
The positional information receiver module is used to receive the EAP-SIM message that AP equipment sends, and said EAP-SIM message carries the access user position information;
Second place information acquisition module is used to resolve said EAP-SIM message, obtains said access user position information and accomplishes the EAP-SIM protocol authentication.
11. Broadband Remote Access Server according to claim 10 is characterized in that, said second place information acquisition module specifically comprises:
Second analyzing sub-module is used to resolve said EAP-SIM message;
The information extraction submodule is used for obtaining said access user position information from resolving the EAP-SIM message that obtains;
The second encapsulation submodule is used for deleting the said access user position information of the EAP-SIM message that said parsing obtains, and the EAP-SIM message after the deletion is encapsulated again;
Authentication sub module is used for the EAP-SIM message of encapsulation again is sent to certificate server, to accomplish said EAP-SIM protocol authentication.
12. Broadband Remote Access Server according to claim 11; It is characterized in that; Said information extraction submodule specifically is used for extracting the address properties of resolving the EAP-SIM message attribute field that obtains, and confirms said access user position information according to said address properties;
Correspondingly, the said second encapsulation submodule specifically is used for deleting the said address properties of the EAP-SIM message that said parsing obtains, and encapsulates again according to the EAP-SIM message of standardized EAP-SIM agreement after to deletion.
13. communication system; It is characterized in that; Comprise arbitrary described wireless access point device of claim 7-9 and the arbitrary described Broadband Remote Access Server of claim 10-12, wherein said wireless access point device is communicated by letter with said Broadband Remote Access Server.
CN2012101385271A 2012-05-07 2012-05-07 Method, device and system for transmitting and acquiring position information of access user Pending CN102685667A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2012101385271A CN102685667A (en) 2012-05-07 2012-05-07 Method, device and system for transmitting and acquiring position information of access user

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2012101385271A CN102685667A (en) 2012-05-07 2012-05-07 Method, device and system for transmitting and acquiring position information of access user

Publications (1)

Publication Number Publication Date
CN102685667A true CN102685667A (en) 2012-09-19

Family

ID=46816914

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2012101385271A Pending CN102685667A (en) 2012-05-07 2012-05-07 Method, device and system for transmitting and acquiring position information of access user

Country Status (1)

Country Link
CN (1) CN102685667A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102883265A (en) * 2012-09-20 2013-01-16 中国联合网络通信集团有限公司 Method, equipment and system for sending and receiving position information of access user
CN103997546A (en) * 2013-02-18 2014-08-20 华为技术有限公司 Method and system for realizing communication in WLAN
CN112994962A (en) * 2019-12-13 2021-06-18 北大方正集团有限公司 AAA authentication test-based device, method, storage medium and system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1595896A (en) * 2003-09-12 2005-03-16 华为技术有限公司 Method for broadband access server to acquire user location information
CN1859437A (en) * 2005-04-30 2006-11-08 华为技术有限公司 Method for obtaining cut-in position information for user terminal and user terminal and relative device
EP2048824A1 (en) * 2006-08-01 2009-04-15 Huawei Technologies Co., Ltd. Access network system, access equipment, arp proxy method and ip bridging forwarding method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1595896A (en) * 2003-09-12 2005-03-16 华为技术有限公司 Method for broadband access server to acquire user location information
CN1859437A (en) * 2005-04-30 2006-11-08 华为技术有限公司 Method for obtaining cut-in position information for user terminal and user terminal and relative device
EP2048824A1 (en) * 2006-08-01 2009-04-15 Huawei Technologies Co., Ltd. Access network system, access equipment, arp proxy method and ip bridging forwarding method

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102883265A (en) * 2012-09-20 2013-01-16 中国联合网络通信集团有限公司 Method, equipment and system for sending and receiving position information of access user
CN102883265B (en) * 2012-09-20 2015-11-25 中国联合网络通信集团有限公司 The positional information method of sending and receiving of access user, equipment and system
CN103997546A (en) * 2013-02-18 2014-08-20 华为技术有限公司 Method and system for realizing communication in WLAN
CN112994962A (en) * 2019-12-13 2021-06-18 北大方正集团有限公司 AAA authentication test-based device, method, storage medium and system

Similar Documents

Publication Publication Date Title
CN110800331B (en) Network verification method, related equipment and system
EP1330073B1 (en) Method and apparatus for access control of a wireless terminal device in a communications network
CN111818516B (en) Authentication method, device and equipment
CN103297968B (en) A kind of method, equipment and the system of wireless terminal certification
CN103052064B (en) Method, the equipment and system of the own business of a kind of access operator
JP5982690B2 (en) Network convergence method, device, and communication system
CN103973658A (en) Static user terminal authentication processing method and device
JPWO2007097101A1 (en) Wireless access system and wireless access method
US11496894B2 (en) Method and apparatus for extensible authentication protocol
CN114070597B (en) Private network cross-network authentication method and device
US20150200938A1 (en) Method and device for transmitting wireless information
CN102474722B (en) Method and equipment for authenticating subscriber terminal
CN102724662A (en) Method and device for providing differentiated services in broadband wireless network
CN102333309A (en) Method, equipment system for key transmission in wireless local area network
CN109819440B (en) Authentication method and device
CN112423299B (en) Method and system for wireless access based on identity authentication
CN102883265B (en) The positional information method of sending and receiving of access user, equipment and system
CN113676904A (en) Slice authentication method and device
CN104518874A (en) Network access control method and system
CN102685667A (en) Method, device and system for transmitting and acquiring position information of access user
WO2024093923A1 (en) Communication method and communication apparatus
CN116601985A (en) Security context generation method, device and computer readable storage medium
EP2378802A1 (en) A wireless telecommunications network, and a method of authenticating a message
CN106998552A (en) Route control method, apparatus and system
CN113904781B (en) Slice authentication method and system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C12 Rejection of a patent application after its publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20120919