CN105340319B - Method and equipment for providing and acquiring security context - Google Patents

Abstract

The invention discloses a method and device for providing and acquiring security context, which are used to realize that core network devices under a specific network can acquire security context. The providing method includes: the first core network device receives the NAS message from the UE; when the first core network device determines that the NAS message needs to be rerouted to the second core network device in the specific network, sending the information to the access network device. Send a rerouting command, where the rerouting command includes a NAS message and information used to determine the second core network device; the first core network device receives a context request sent by the second core network device, the context request including the rerouting indication, the UE's identity and the key set identity, the first core network device searches for the corresponding security context according to the UE's identity and the key set identity, and sends the security context to the second core network device, wherein the root key is the root key in the security context.

Description

A security context providing, obtaining method and device

technical field

The present invention relates to the field of communication technologies, and in particular, to a method and device for providing and acquiring a security context.

Background technique

User Equipment (UE) after Release (R) 10 and R10 has the ability to report a Low Access Priority Indicator (LAPI) to an evolved base station (evolved NodeB, eNB), so that the eNB A specific network can be selected for the UE according to the indication reported by the UE, so as to prevent the impact of the UE performing specific services on the ordinary network, such as network congestion caused by a large number of low-priority UEs accessing the network. Wherein, the specific service is, for example, machine type communication (Machine Type Communication, MTC). A specific network is a network that serves a specific business, such as a machine-type communication network, which is dedicated to machine-type communication. All machine-type communication devices are connected to this network for communication, which can prevent the impact of machine-type communication on ordinary networks. . The network architecture of a specific network is the same as that of an ordinary network, but there are some changes in the function of the network entity.

Currently widely used pre-R10 UEs do not support this function. In order to realize this function without changing the existing UE, the prior art proposes a network-side-based solution, so that pre-R10 UEs can also choose to perform operations on a specific network. communication. The specific method is shown in Fig. 1. The UE initiates an attach request or a location update request to the network side, and the mobility management entity (Mobile Management Entity, MME) requests subscription data from the Home Subscriber Server (HSS), and when the subscription data includes the UE When a specific network communication is indicated, the MME forwards a non-access stratum (NonAccess Stratum, NAS) message to a specific (specific) MME through the eNB, wherein the NAS message, such as an attach request or a location update request, the specific MME , that is, the MME in a specific network.

Before the MME obtains the subscription data from the HSS, the security association has been established between the UE and the MME. The behavior of the network side to reselect the specific MME is unknown to the UE. The specific MME needs to obtain the security context from the MME, so as to use the security context. The security context communicates securely with the UE. In addition, if the NAS message is integrity protected, it needs to consider how the specific MME performs the integrity check on the rerouted NAS message.

The Tracking Area Update (TAU) process in the prior art is as follows. It is assumed that when the UE initiates a TAU, there is no available security context on the new MME (MMEn) and needs to ask the old MME (MMEo) for it. See Figure 2, including:

MMEn sends a security context request message to MMEo, where the request message includes the Globally Unique Temporary UE Identity (GUTI) allocated by MMEo to the UE, namely the old GUTI (GUTIo), and the request message also includes the information received from the UE. The entire TAU message of ;

MMEo retrieves user data from the database according to GUTIo, uses the retrieved security context to verify the integrity of the TAU request, and sends the authentication data (authentication data) and the UE's International Mobile Subscriber Identification Number (IMSI) To the MMEn, wherein the authentication data includes a security context, and the MMEn stores the received security context.

To sum up, in the MME reselection scenario, the prior art cannot solve the problem of how the specific MME obtains the security context of the UE, so that the specific MME cannot perform secure communication with the UE.

SUMMARY OF THE INVENTION

The present invention provides a method and device for providing, obtaining, and obtaining a security context, so as to realize that a core network device under a specific network can obtain the security context of a UE, so that the core network device under a specific network can communicate with the UE securely.

In a first aspect, a method for providing a security context provided by an embodiment of the present invention includes:

The first core network device receives the non-access stratum NAS message sent by the user equipment UE;

When it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the first core network device sends a rerouting command to the access network device, where the rerouting command Describe the information of the second core network equipment;

The first core network device receives the context request sent by the second core network device, where the context request includes the identifier of the UE and the identifier of the key set, and the first core network device, according to the identifier of the UE and the identifier of the key set, Find the corresponding security context, and send the security context to the second core network device.

With reference to the first aspect, in a first possible implementation manner, before the first core network device sends the rerouting command to the access network device, the method further includes:

The first core network device reconstructs the received NAS message, and the NAS message included in the rerouting command is the reconstructed NAS message.

With reference to the first possible implementation manner of the first aspect, in a second possible implementation manner, the first core network device reconstructs the received NAS message from the UE, including:

The first core network device uses the key set identifier in the current security context to replace the key set identifier in the NAS message sent by the UE; and/or,

The first core network device calculates the integrity protection check value according to the current security context, and uses the integrity protection check value as the message authentication code MAC information element IE in the NAS message sent by the UE.

With reference to the second possible implementation manner of the first aspect, in a third possible implementation manner, the integrity protection check value is used as the message authentication code MAC information element IE in the NAS message sent by the UE, include:

Filling the integrity protection check value into the message authentication code MAC information element IE in the NAS message sent by the UE; or

Replace the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

With reference to the second possible implementation manner of the first aspect, in a fourth possible implementation manner, the first core network device reconstructs the received NAS message from the UE, and further includes:

The first core network device replaces the identifier of the UE in the NAS message received from the UE with the identifier allocated by the first core network device to the UE.

With reference to the first aspect, in a fifth possible implementation manner, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

With reference to the first aspect, in a sixth possible implementation manner, after the first core network device determines the current security context and before sending the security context to the second core network device, the method further includes:

The first core network device uses the current security context to verify the integrity of the NAS message carried in the context request;

Then, the step of sending the security context by the first core network device to the second core network device is performed when the verification is successful.

With reference to the sixth possible implementation manner of the first aspect, in a seventh possible implementation manner, the first core network device verifies the integrity of the NAS message carried in the context request by using the security context currently shared with the UE, include:

The first core network device verifies the integrity protection check value or the message authentication code MAC value in the NAS message carried in the context request; or

The first core network device verifies the integrity protection check value in the context request.

With reference to the first aspect, in an eighth possible implementation manner, the rerouting command further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

With reference to the first aspect, in a ninth possible implementation manner, the context request further includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

In a second aspect, a method for obtaining a security context provided by an embodiment of the present invention includes:

The second core network device receives a specific message sent by the access network device, where the specific message includes a non-access stratum NAS message;

The second core network device determines the first core network device according to the specific message, and sends a context request to the first core network device, where the context request includes the identifier of the UE and the identifier of the key set;

The second core network device receives the context response sent by the first core network device, and obtains a security context therefrom, where the security context is determined by the first core network device according to the UE identifier and the key set identifier in the context request

With reference to the second aspect, in a first possible implementation manner, the NAS message includes an identifier allocated by the first core network device to the UE, and the second core network device determines the first core network device according to the identifier.

With reference to the second aspect, in a second possible implementation manner, the specific message further includes identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device network equipment.

With reference to the second aspect, in a third possible implementation manner, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

In combination with the second aspect, or in combination with the first possible implementation manner of the second aspect, or in combination with the second possible implementation manner of the second aspect, in combination with the third possible implementation manner of the second aspect, in the fourth In a possible implementation manner, the security context of the UE acquired by the second core network device includes the encryption algorithm and the integrity protection algorithm used by the first core network device to protect the NAS message.

With reference to the fourth possible implementation manner of the second aspect, in a fifth possible implementation manner, after the second core network device acquires the security context of the UE, the method further includes:

When the second core network device needs to select a new algorithm, the second core network device uses the new algorithm to derive a new NAS key, and sends a NAS security mode command message to the UE, which contains the identifier of the new algorithm; wherein, The new algorithm includes an encryption algorithm and/or an integrity protection algorithm;

The second core network device receives the NAS security mode completion message fed back by the UE.

With reference to the second aspect, in a sixth possible implementation manner, the context request further includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

With reference to the second aspect, in a seventh possible implementation manner, the specific message further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

In a third aspect, a method for receiving and processing a rerouting command provided by an embodiment of the present invention includes:

The access network device receives the rerouting command sent by the first core network device, which includes a non-access stratum NAS message and indication information for determining the second core network device;

The access network device determines the second core network device according to the indication information, and sends a specific message carrying the NAS message to the second core network device.

With reference to the third aspect, in a first possible implementation manner, the specific message further includes:

A rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

In combination with the third aspect, or in combination with the first possible implementation manner of the third aspect, in the second possible implementation manner, the specific message further includes:

Identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

With reference to the third aspect, in a third possible implementation manner, the NAS message is a NAS message reconstructed by the first core network device on the received NAS message sent by the UE.

With reference to the third aspect, in a fourth possible implementation manner, the rerouting command further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

With reference to the third aspect, in a fifth possible implementation manner, the specific message further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

In a fourth aspect, a device for providing a security context provided by an embodiment of the present invention includes:

a receiving NAS message unit, configured to receive a non-access stratum NAS message sent by the user equipment UE;

A rerouting command sending unit is configured to send a rerouting command to the access network device when it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, where the rerouting command includes the NAS message and the user interface. for determining the information of the second core network device;

A security context providing unit, configured to receive a context request sent by the second core network device, where the context request includes the identifier of the UE and the identifier of the key set, and searches for the corresponding identifier according to the identifier of the UE and the identifier of the key set security context, and send the security context to the second core network device.

With reference to the fourth aspect, in a first possible implementation manner, the sending rerouting command unit is further configured to:

Before sending the rerouting command to the access network device, the received NAS message is reconstructed, and the NAS message included in the rerouting command is the reconstructed NAS message.

With reference to the first possible implementation manner of the fourth aspect, in the second possible implementation manner, when the sending rerouting command unit reconstructs the received NAS message from the UE, it is specifically used for:

Use the key set identifier in the current security context to replace the key set identifier in the NAS message sent by the UE; and/or,

Calculate the integrity protection check value according to the current security context, and use the integrity protection check value as the message authentication code MAC information element IE in the NAS message sent by the UE.

With reference to the second possible implementation manner of the fourth aspect, in a third possible implementation manner, the sending rerouting command unit uses the integrity protection check value as a message in the NAS message sent by the UE When the authentication code MAC information element is IE, it is specifically used for:

Filling the integrity protection check value into the message authentication code MAC information element IE in the NAS message sent by the UE; or

Replace the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

In combination with the second possible implementation manner of the fourth aspect, in the fourth possible implementation manner, the sending rerouting command unit is further used for:

The identifier of the UE in the NAS message received from the UE is replaced by the identifier assigned to the UE by the first core network device.

With reference to the fourth aspect, in a fifth possible implementation manner, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

With reference to the fourth aspect, in a sixth possible implementation manner, the security context providing unit is further configured to:

After determining the current security context, before sending the security context to the second core network device, use the current security context to verify the integrity of the NAS message carried in the context request;

Then, when the verification is successful, the security context sends the security context to the second core network device.

With reference to the sixth possible implementation manner of the fourth aspect, in a seventh possible implementation manner, the security context providing unit verifies the integrity of the NAS message carried in the context request by using the security context currently shared with the UE , specifically for:

Verify the integrity protection check value or message authentication code MAC value in the NAS message carried in the context request; or

Verify the integrity protection check value in this context request.

With reference to the fourth aspect, in an eighth possible implementation manner, the rerouting command further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

With reference to the fourth aspect, in a ninth possible implementation manner, the context request further includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

In a fifth aspect, a device for acquiring a security context provided by an embodiment of the present invention includes:

a specific message receiving unit, configured to receive a specific message sent by an access network device, where the specific message includes a non-access stratum NAS message;

a context request unit, configured to determine the first core network device according to the specific message, and send a context request to the first core network device, where the context request includes the identifier of the UE and the identifier of the key set;

a context obtaining unit, configured to receive a context response sent by the first core network device, and obtain a security context therefrom, where the security context is determined by the first core network device according to the identifier of the UE and the key set identifier in the context request .

With reference to the fifth aspect, in a first possible implementation manner, the NAS message includes an identifier allocated by the first core network device to the UE, and the second core network device determines the first core network device according to the identifier.

With reference to the fifth aspect, in a second possible implementation manner, the specific message further includes identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device network equipment.

With reference to the fifth aspect, in a third possible implementation manner, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

In combination with the fifth aspect, or with the first possible implementation manner of the fifth aspect, or with the second possible implementation manner of the fifth aspect, or with the third possible implementation manner of the fifth aspect, in the fourth In a possible implementation manner, the security context includes an encryption algorithm and an integrity protection algorithm used by the first core network device to protect the NAS message.

With reference to the fourth possible implementation manner of the fifth aspect, in the fifth possible implementation manner, after the context acquisition unit acquires the security context of the UE, it is further configured to:

When a new algorithm needs to be selected, use the new algorithm to derive a new NAS key, and send a NAS security mode command message to the UE, which contains the identifier of the new algorithm; wherein, the new algorithm includes an encryption algorithm and/or or integrity protection algorithms;

Receive the NAS security mode completion message fed back by the UE.

With reference to the fifth aspect, in a sixth possible implementation manner, the context request further includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

With reference to the fifth aspect, in a seventh possible implementation manner, the specific message further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

In a sixth aspect, a device for receiving and processing a rerouting command provided by an embodiment of the present invention includes:

a rerouting command receiving unit, configured to receive a rerouting command sent by the first core network device, including a non-access stratum NAS message and indication information for determining the second core network device;

A specific message sending unit, configured to determine the second core network device according to the indication information, and send a specific message carrying the NAS message to the second core network device.

With reference to the sixth aspect, in a first possible implementation manner, the specific message further includes:

A rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

In combination with the sixth aspect, or in combination with the first possible implementation manner of the sixth aspect, in the second possible implementation manner, the specific message further includes:

Identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

With reference to the sixth aspect, in a third possible implementation manner, the NAS message is a NAS message reconstructed by the first core network device on the received NAS message sent by the UE.

With reference to the sixth aspect, in a fourth possible implementation manner, the rerouting command further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

With reference to the sixth aspect, in a fifth possible implementation manner, the specific message further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

In a seventh aspect, an embodiment of the present invention provides a device for providing a security context, the device includes a processor and a transceiver, wherein,

The transceiver receives the non-access stratum NAS message sent by the user equipment UE;

When the processor determines that the NAS message needs to be re-routed to the second core network device in the specific network, a re-routing command is sent to the access network device through the transceiver, where the re-routing command includes the NAS message and is used to determine the Describe the information of the second core network equipment;

The transceiver receives the context request sent by the second core network device, where the context request includes the identifier of the UE and the identifier of the key set, and the processor searches for the corresponding security context according to the identifier of the UE and the identifier of the key set, The transceiver sends the security context to the second core network device.

With reference to the seventh aspect, in a first possible implementation manner, before the transceiver sends a rerouting command to the access network device, the processor is further configured to reconstruct the received NAS message, where the rerouting command includes The included NAS message is the reconstructed NAS message.

With reference to the first possible implementation manner of the seventh aspect, in the second possible implementation manner, when the processor reconstructs the received NAS message, it is specifically used for:

Use the key set identifier in the current security context to replace the key set identifier in the NAS message sent by the UE; and/or,

Calculate the integrity protection check value according to the current security context, and use the integrity protection check value as the message authentication code MAC information element IE in the NAS message sent by the UE.

With reference to the second possible implementation manner of the seventh aspect, in a third possible implementation manner, the processor uses the integrity protection check value as the message authentication code MAC information element in the NAS message sent by the UE IE, specifically for:

Filling the integrity protection check value into the message authentication code MAC information element IE in the NAS message sent by the UE; or

Replace the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

With reference to the second possible implementation manner of the seventh aspect, in the fourth possible implementation manner, when the processor reconstructs the received NAS message, it is further used for:

The identifier of the UE in the NAS message received from the UE is replaced by the identifier assigned to the UE by the first core network device.

With reference to the seventh aspect, in a fifth possible implementation manner, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

With reference to the seventh aspect, in a sixth possible implementation manner, after the processor determines the current security context, and before the transceiver sends the security context to the second core network device, the processor is further configured to:

Use the current security context to verify the integrity of the NAS message carried in the context request;

Then, when the verification is successful, the transceiver sends the security context to the second core network device.

In conjunction with the sixth possible implementation manner of the seventh aspect, in the seventh possible implementation manner, when the processor uses the security context currently shared with the UE to verify the integrity of the NAS message carried in the context request, it specifically uses At:

Verify the integrity protection check value or message authentication code MAC value in the NAS message carried in the context request; or

Verify the integrity protection check value in this context request.

With reference to the seventh aspect, in an eighth possible implementation manner, the rerouting command further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

With reference to the seventh aspect, in a ninth possible implementation manner, the context request further includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

In an eighth aspect, an embodiment of the present invention provides a device for acquiring a security context, the device includes a transceiver and a processor, wherein:

The transceiver receives a specific message sent by the access network device, where the specific message includes a non-access stratum NAS message;

The processor determines the first core network device according to the specific message, and the transceiver sends a context request to the first core network device, where the context request includes the identifier of the UE and the identifier of the key set;

The transceiver receives the context response sent by the first core network device, and the processor obtains the security context therefrom, where the security context is determined by the first core network device according to the identifier of the UE and the identifier of the key set in the context request.

With reference to the eighth aspect, in a first possible implementation manner, the NAS message includes an identifier allocated by the first core network device to the UE, and the second core network device determines the first core network device according to the identifier.

With reference to the eighth aspect, in a second possible implementation manner, the specific message further includes identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device network equipment.

With reference to the eighth aspect, in a third possible implementation manner, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

In combination with the eighth aspect, or in combination with the first possible implementation manner of the eighth aspect, or in combination with the second possible implementation manner of the eighth aspect, or in combination with the third possible implementation manner of the eighth aspect, in the fourth In a possible implementation manner, the security context includes an encryption algorithm and an integrity protection algorithm used by the first core network device to protect the NAS message.

With reference to the fourth possible implementation manner of the eighth aspect, in a fifth possible implementation manner, after acquiring the security context of the UE, the processor is further configured to: when a new algorithm needs to be selected, use the new The algorithm derives a new NAS key, and sends a NAS security mode command message to the UE through the transceiver, which contains the identifier of the new algorithm; wherein, the new algorithm includes an encryption algorithm and/or an integrity protection algorithm;

The transceiver receives the NAS security mode completion message fed back by the UE.

With reference to the eighth aspect, in a sixth possible implementation manner, the context request further includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

With reference to the eighth aspect, in a seventh possible implementation manner, the specific message further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

In a ninth aspect, an embodiment of the present invention provides a device for receiving and processing a rerouting command, the device includes a transceiver and a processor, wherein:

The transceiver receives the rerouting command sent by the first core network device, which includes a non-access stratum NAS message and indication information for determining the second core network device;

The processor determines the second core network device according to the indication information, and sends a specific message carrying the NAS message to the second core network device through the transceiver.

With reference to the ninth aspect, in a first possible implementation manner, the specific message further includes:

A rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

In combination with the ninth aspect, or in combination with the first possible implementation manner of the ninth aspect, in a second possible implementation manner, the specific message further includes:

Identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

With reference to the ninth aspect, in a third possible implementation manner, the NAS message is a NAS message after the first core network device reconstructs the received NAS message sent by the UE.

With reference to the ninth aspect, in a fourth possible implementation manner, the rerouting command further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

With reference to the ninth aspect, in a fifth possible implementation manner, the specific message further includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

The present invention receives the non-access stratum NAS message sent by the user equipment UE through the first core network device; when it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the first core network device sends the access layer to the access layer. The network device sends a rerouting command, where the rerouting command includes a NAS message and information used to determine the second core network device; the first core network device receives the context request sent by the second core network device, the The context request includes the identity of the UE and the identity of the key set, and the first core network device searches for the corresponding security context according to the identity of the UE and the identity of the key set, and sends the security context to the second core network device . Thus, the first core network device can provide the security context of the UE to the second core network device in a specific network.

The present invention receives a specific message sent by the access network device through the second core network device, and the specific message includes a non-access stratum NAS message; the second core network device determines the first core network device according to the specific message, and reports to the first core network device. A core network device sends a context request, and the context request includes the identifier of the UE and the key set identifier; the second core network device receives the context response sent by the first core network device, and obtains a security context from it, and the security context is the first A core network device is determined according to the identifier of the UE and the identifier of the key set in the context request. Therefore, the second core network device in the specific network can obtain the security context of the UE provided by the first core network device, so that the core network device in the specific network can securely communicate with the UE.

In a tenth aspect, a method for providing a security context provided by an embodiment of the present invention includes:

The first core network device receives the non-access stratum NAS message sent by the user equipment UE;

When it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the first core network device sends a rerouting command to the access network device, where the rerouting command information about the second core network device.

With reference to the tenth aspect, in a first possible implementation manner, the method further includes:

The first core network device receives the request message sent by the second core network device, the request message includes the identifier of the UE, the first core network device searches for the corresponding authentication data according to the identifier of the UE, and stores the The authentication data is sent to the second core network device.

With reference to the first possible implementation manner of the tenth aspect, in a second possible implementation manner, before the first core network device sends the authentication data to the second core network device, the method further includes: The first core network device verifies the check value in the request message;

The first core network sends the authentication data to the second core network device, specifically: when the verification is successful, the first core network device sends the authentication data to the second core network device.

With reference to the second possible implementation manner of the tenth aspect, in a third possible implementation manner, the first core network device verifies the check value in the request message, specifically including:

When the request message also includes a key set identifier, the first core network device uses the UE identifier and the key set identifier to determine the corresponding security context, and uses the security context to calculate a check value, if If the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The first core network device calculates the check value by using the hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The first core network device searches for the locally stored check value, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

With reference to the tenth aspect, in a fourth possible implementation manner, before determining that the NAS message needs to be rerouted to the second core network device in a specific network, the method further includes: the first core network device the authentication process between the UEs, or obtain the security context of the UE from a third core network device;

After it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, and before the first core network device sends a rerouting command to the access network device, the method further includes: the first core network device is the The UE allocates the identity and determines the check value;

The rerouting command further includes: an identifier allocated by the first core network device to the UE and the check value;

Alternatively, the rerouting command further includes: the identifier allocated by the first core network device to the UE, the check value, and the key set identifier of the security context of the UE.

With reference to the tenth aspect, in a fifth possible implementation manner, before the first core network determines that the NAS message needs to be rerouted to a second core network device in a specific network, the method further includes:

The first core network device sends a request message to the third core network device, the request message includes the NAS message, and receives a response message replied by the third core network device, including the security context of the UE, the check value and information for determining the second core network device; wherein the check value is determined by the third core network device;

The first core network device determines, by using the information for determining the second core network device, that the NAS message needs to be rerouted to the second core network device in the specific network;

The rerouting command further includes: the check value, or the check value and a key set identifier.

In an eleventh aspect, a method for obtaining a security context provided by an embodiment of the present invention includes:

The second core network device receives a specific message sent by the access network device, where the specific message includes a non-access stratum NAS message;

The second core network device determines the first core network device according to the specific message, and sends a request message to the first core network device, where the request message includes the identifier of the UE;

The second core network device receives the response message sent by the first core network device, and obtains the authentication data of the UE therefrom, where the authentication data includes the security context of the UE, and the authentication data is the first core network device. The network device is determined according to the identifier of the UE.

With reference to the eleventh aspect, if the second MME is regarded as the second core network device, correspondingly, the first MME or the third MME can be regarded as the first core network device.

With reference to the eleventh aspect, in a first possible implementation manner, the identifier of the UE is an identifier allocated to the UE by the first core network device;

The specific message also includes: a check value, or a check value and a key set identifier;

The request message also includes: a check value, or a check value and a key set identifier.

With reference to the eleventh aspect, in a second possible implementation manner, the specific message further includes: a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device ;

The request message includes the NAS message, the NAS message includes the identifier of the UE, and the request message further includes the rerouting indication.

In a twelfth aspect, a method for providing a security context provided by an embodiment of the present invention includes:

The third core network device receives the request message sent by the first core network device, including the non-access stratum NAS message of the user equipment UE;

When it is determined that the NAS message needs to be rerouted to the second core network device in a specific network, the third core network device sends a response message to the first core network device, which includes the security context of the UE and a message for determining Information of the second core network device.

With reference to the twelfth aspect, in a first possible implementation manner, when it is determined that the NAS message needs to be rerouted to a second core network device in a specific network, the method further includes:

The third core network device determines the check value of the UE;

The response message further includes: the check value, or a key set identifier corresponding to the check value and the security context of the UE.

With reference to the first possible implementation manner of the twelfth aspect, in the second possible implementation manner, the method further includes:

The third core network device receives the request message sent by the second core network device, which includes the NAS message, the check value and the key set identifier;

The third core network device finds the corresponding authentication data according to the identifier of the UE, and sends a response message to the second core network device, which includes the authentication data of the UE.

With reference to the second possible implementation manner of the twelfth aspect, in a third possible implementation manner, before the third core network device sends a response message to the second core network device, the method further includes: a third The core network device verifies the check value in the request message;

The third core network device sends a response message to the second core network device, specifically: when the verification is successful, the third core network device sends a response message to the second core network device.

With reference to the third possible implementation manner of the twelfth aspect, in a fourth possible implementation manner, the third core network device verifies the check value in the request message, specifically including:

When the request message further includes a key set identifier, the third core network device determines a corresponding security context by using the UE's identifier and the key set identifier, and uses the security context to calculate a check value , if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The third core network device calculates the check value by using the hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The third core network device searches for the locally stored check value, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

With reference to the twelfth aspect, in a fifth possible implementation manner, the method further includes:

The third core network device receives the request message sent by the second core network device, which includes the NAS message and a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device;

The third core network device determines that the NAS message in the request message is rerouted to the second core network device through the rerouting indication;

The third core network device finds the corresponding security context according to the UE's identity and key set identity in the NAS message, and uses the security context to verify the integrity check code in the request message. When the verification is successful, the third core The network device finds the corresponding authentication data according to the identifier of the UE, and returns the authentication data to the second core network device.

In a thirteenth aspect, a device for providing a security context provided by an embodiment of the present invention includes:

a receiving NAS message unit, configured to receive a non-access stratum NAS message sent by the user equipment UE;

A rerouting command sending unit is configured to send a rerouting command to the access network device when it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, where the rerouting command includes the NAS message and the user interface. for determining the information of the second core network device.

With reference to the thirteenth aspect, in a first possible implementation manner, the device further includes:

An authentication data providing unit, configured to receive a request message sent by the second core network device, where the request message includes the identifier of the UE, search for the corresponding authentication data according to the identifier of the UE, and use the authentication The data is sent to the second core network device.

With reference to the first possible implementation manner of the thirteenth aspect, in the second possible implementation manner, the authentication data providing unit is also used to verify the authentication data before sending the authentication data to the second core network device. The check value in the request message;

The authentication data providing unit sends the authentication data to the second core network device, specifically: when the verification is successful, sending the authentication data to the second core network device.

In combination with the second possible implementation manner of the thirteenth aspect, in the third possible implementation manner, when the authentication data provides the check value in the unit verification request message, it is specifically used for:

When the request message also includes a key set identifier, use the UE identifier and the key set identifier to determine the corresponding security context, and use the security context to calculate a check value. If the verification value is consistent with the verification value in the request message, it is determined that the verification is successful; or,

The check value is calculated by a hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The locally stored check value is searched, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

With reference to the thirteenth aspect, in a fourth possible implementation manner, before determining that the NAS message needs to be rerouted to the second core network device in the specific network, the sending rerouting command unit is further configured to: the authentication process between the UEs, or obtain the security context of the UE from a third core network device;

After determining that the NAS message needs to be rerouted to the second core network device in the specific network, and before sending the rerouting command to the access network device, the unit for sending the rerouting command is further configured to: assign an identifier to the UE, and determine the check value;

The rerouting command further includes: an identifier allocated by the rerouting command unit for the UE and the check value;

Or, the rerouting command further includes: the identifier allocated to the UE by the sending rerouting command unit, the check value, and the key set identifier of the security context of the UE.

With reference to the thirteenth aspect, in a fifth possible implementation manner, before the unit for sending a rerouting command determines that the NAS message needs to be rerouted to the second core network device in the specific network, the unit is further configured to:

Send a request message to the third core network device, where the request message includes the NAS message, and receive a response message replied by the third core network device, including the security context of the UE, a check value and a Information of the second core network device; wherein, the check value is determined by the third core network device;

determining that the NAS message needs to be rerouted to the second core network device in the specific network by using the information for determining the second core network device;

The rerouting command further includes: the check value, or the check value and a key set identifier.

In a fourteenth aspect, a device for acquiring a security context provided by an embodiment of the present invention includes:

a specific message receiving unit, configured to receive a specific message sent by an access network device, where the specific message includes a non-access stratum NAS message;

a requesting unit, configured to determine the first core network device according to the specific message, and send a request message to the first core network device, where the request message includes the identifier of the UE;

an obtaining unit, configured to receive a response message sent by the first core network device, and obtain the authentication data of the UE therefrom, where the authentication data includes the security context of the UE, and the authentication data is the first core The network device is determined according to the identifier of the UE.

With reference to the fourteenth aspect, if the second MME is regarded as the second core network device, correspondingly, the first MME or the third MME can be regarded as the first core network device.

With reference to the fourteenth aspect, in a first possible implementation manner, the identifier of the UE is an identifier allocated to the UE by the first core network device;

The specific message also includes: a check value, or a check value and a key set identifier;

The request message also includes: a check value, or a check value and a key set identifier.

With reference to the fourteenth aspect, in a second possible implementation manner, the specific message further includes: a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device ;

The request message includes the NAS message, the NAS message includes the identifier of the UE, and the request message further includes the rerouting indication.

A fifteenth aspect, a device for providing a security context provided by an embodiment of the present invention includes:

a receiving request unit, configured to receive a request message sent by the first core network device, including a non-access stratum NAS message of the user equipment UE;

a response unit, configured to send a response message to the first core network device when it is determined that the NAS message needs to be rerouted to a second core network device in a specific network, including the security context of the UE and a response message for determining Information of the second core network device.

With reference to the fifteenth aspect, in a first possible implementation manner, when determining that the NAS message needs to be rerouted to a second core network device in a specific network, the response unit is further configured to:

determine the check value of the UE;

The response message further includes: the check value, or a key set identifier corresponding to the check value and the security context of the UE.

With reference to the first possible implementation manner of the fifteenth aspect, in a second possible implementation manner, the receiving request unit is further configured to: receive a request message sent by the second core network device, including the NAS message, check value and key set identifier;

The response unit is further configured to: find corresponding authentication data according to the identifier of the UE, and send a response message to the second core network device, which includes the authentication data of the UE.

With reference to the second possible implementation manner of the fifteenth aspect, in a third possible implementation manner, before sending a response message to the second core network device, the response unit is further configured to verify the request message check value in ;

The response unit sends a response message to the second core network device, specifically: when the verification is successful, the response unit sends a response message to the second core network device.

With reference to the third possible implementation manner of the fifteenth aspect, in a fourth possible implementation manner, when the response unit verifies the check value in the request message, it is specifically used for:

When the request message also includes a key set identifier, use the UE identifier and the key set identifier to determine the corresponding security context, and use the security context to calculate a check value. If the verification value is consistent with the verification value in the request message, it is determined that the verification is successful; or,

The check value is calculated by a hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The locally stored check value is searched, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

With reference to the fifteenth aspect, in a fifth possible implementation manner, the receiving request unit is further configured to:

receiving a request message sent by the second core network device, including the NAS message and a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device;

Determine through the rerouting indication that the NAS message in the request message is rerouted to the second core network device;

Find the corresponding security context according to the UE's identity and key set identity in the NAS message, and use the security context to verify the integrity check code in the request message. When the verification is successful, find the corresponding security context according to the UE's identity and returns the authentication data to the second core network device.

In a sixteenth aspect, an embodiment of the present invention provides a device for providing a security context, including a transceiver and a processor, wherein:

The transceiver receives the non-access stratum NAS message sent by the user equipment UE;

When it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the processor sends a rerouting command to the access network device through the transceiver, where the rerouting command includes the NAS message and is used to determine the information about the second core network device.

With reference to the sixteenth aspect, in a first possible implementation manner, the transceiver is further configured to receive a request message sent by the second core network device, where the request message includes the identifier of the UE, and the processor further uses According to the identifier of the UE, the corresponding authentication data is searched, and the authentication data is sent to the second core network device through the transceiver.

With reference to the first possible implementation manner of the sixteenth aspect, in the second possible implementation manner, the processor is further configured to:

Before the transceiver sends the authentication data to the second core network device, verify the check value in the request message; when the verification is successful, send the authentication data to the second core network through the transceiver equipment.

With reference to the second possible implementation manner of the sixteenth aspect, in the third possible implementation manner, when the processor verifies the check value in the request message, it is specifically used for:

When the request message also includes a key set identifier, use the UE identifier and the key set identifier to determine the corresponding security context, and use the security context to calculate a check value. If the verification value is consistent with the verification value in the request message, it is determined that the verification is successful; or,

The check value is calculated by a hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The locally stored check value is searched, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

With reference to the sixteenth aspect, in a fourth possible implementation manner, before determining that the NAS message needs to be rerouted to the second core network device in a specific network, the processor is further configured to: The authentication process between, or obtain the security context of the UE from the third core network device;

After determining that the NAS message needs to be rerouted to the second core network device in the specific network, and before sending a rerouting command to the access network device through the transceiver, the processor is further configured to: assign an identifier to the UE, and determine the check value;

The rerouting command further includes: an identifier allocated by the processor to the UE and the check value;

Alternatively, the rerouting command further includes: the identifier allocated by the processor to the UE, the check value, and the key set identifier of the security context of the UE.

With reference to the sixteenth aspect, in a fifth possible implementation manner, before the processor determines that the NAS message needs to be rerouted to the second core network device in the specific network, the processor is further configured to: send the third The core network device sends a request message, the request message includes the NAS message, and receives a response message replied by the third core network device through the transceiver, which includes the security context of the UE, a check value and a Information of the second core network device; wherein, the check value is determined by the third core network device;

determining that the NAS message needs to be rerouted to the second core network device in the specific network by using the information for determining the second core network device;

The rerouting command further includes: the check value, or the check value and a key set identifier.

In a seventeenth aspect, an embodiment of the present invention provides a device for acquiring a security context, including: a transceiver and a processor, wherein:

The transceiver receives a specific message sent by the access network device, where the specific message includes a non-access stratum NAS message;

The processor determines the first core network device according to the specific message, and sends a request message to the first core network device through the transceiver, where the request message includes the identifier of the UE;

The transceiver receives the response message sent by the first core network device, from which the processor obtains the authentication data of the UE, the authentication data includes the security context of the UE, and the authentication data is the first core network device It is determined according to the identity of the UE.

With reference to the seventeenth aspect, in a first possible implementation manner, the identifier of the UE is an identifier allocated to the UE by the first core network device;

The specific message also includes: a check value, or a check value and a key set identifier;

The request message also includes: a check value, or a check value and a key set identifier.

With reference to the seventeenth aspect, in a second possible implementation manner, the specific message further includes: a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device ;

The request message includes the NAS message, the NAS message includes the identifier of the UE, and the request message further includes the rerouting indication.

In an eighteenth aspect, an embodiment of the present invention provides a device for providing a security context, including: a transceiver and a processor, wherein:

The transceiver receives the request message sent by the first core network device, including the non-access stratum NAS message of the user equipment UE;

When it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the processor sends a response message to the first core network device through the transceiver, which includes the security context of the UE and the information used for determining Information of the second core network device.

With reference to the eighteenth aspect, in a first possible implementation manner, when the processor determines that the NAS message needs to be rerouted to the second core network device in the specific network, the processor is further configured to:

Determine the check value of the UE;

The response message further includes: the check value, or a key set identifier corresponding to the check value and the security context of the UE.

With reference to the first possible implementation manner of the eighteenth aspect, in a second possible implementation manner, the transceiver is further configured to receive a request message sent by the second core network device, including the NAS message , check value and key set identifier;

The processor finds the corresponding authentication data according to the identifier of the UE, and sends a response message to the second core network device through the transceiver, which includes the authentication data of the UE.

With reference to the second possible implementation manner of the eighteenth aspect, in a third possible implementation manner, before sending the response message to the second core network device through the transceiver, the processor is further configured to verify all The check value in the request message;

The processor sends a response message to the second core network device through the transceiver, specifically: when the verification is successful, the processor sends a response message to the second core network device through the transceiver.

With reference to the third possible implementation manner of the eighteenth aspect, in a fourth possible implementation manner, when the processor verifies the check value in the request message, it is specifically used for:

When the request message also includes a key set identifier, use the UE identifier and the key set identifier to determine the corresponding security context, and use the security context to calculate a check value. If the verification value is consistent with the verification value in the request message, it is determined that the verification is successful; or,

The check value is calculated by a hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The locally stored check value is searched, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

With reference to the eighteenth aspect, in a fifth possible implementation manner, the transceiver is further configured to receive a request message sent by the second core network device, including the NAS message and a rerouting indication, the rerouting The routing indication is used to indicate that the NAS message is rerouted to the second core network device;

The processor is further configured to determine, through the rerouting indication, that the NAS message in the request message is rerouted to the second core network device; find the corresponding security device according to the UE identifier and the key set identifier in the NAS message. context, and use the security context to verify the integrity check code in the request message, when the verification is successful, find the corresponding authentication data according to the identity of the UE, and return the authentication data to the second through the transceiver core network equipment.

In this embodiment of the present invention, the non-access stratum NAS message sent by the user equipment UE is received by the first core network device; when it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the first core network device sends the The access network device sends a rerouting command, where the rerouting command includes a NAS message and information for determining the second core network device. Therefore, when the first core network device determines that the NAS message needs to be rerouted to the second core network device in a specific network, the first core network device sends a rerouting command to the access network device.

In this embodiment of the present invention, a specific message sent by the access network device is received by the second core network device, where the specific message includes a non-access stratum NAS message; the second core network device determines the first core network device according to the specific message, and Sending a request message to the first core network device, where the request message includes the identifier of the UE; the second core network device receives the response message sent by the first core network device, and obtains the authentication data of the UE therefrom. The data includes the security context of the UE, and the authentication data is determined by the first core network device according to the identifier of the UE. Therefore, the second core network device in the specific network can obtain the security context of the UE provided by the first core network device, so that the core network device in the specific network can securely communicate with the UE.

In this embodiment of the present invention, the request message sent by the first core network device is received by the third core network device, including the non-access stratum NAS message of the user equipment UE; when it is determined that the NAS message needs to be rerouted to the second core network device in the specific network When the core network device is used, the third core network device sends a response message to the first core network device, which includes the security context of the UE and the information used to determine the second core network device, so that the third core network device When the device receives the request message sent by the first core network device and determines that the NAS message in it needs to be rerouted to the second core network device in the specific network, it sends a response message to the first core network device to send the UE a The security context and information for determining the second core network device are provided to the second core network device in the specific network.

Description of drawings

1 is a schematic diagram of an MME reselection process in the prior art;

2 is a schematic diagram of a process in which MMEn asks for a security context from MMEo in a TAU process in the prior art;

FIG. 3 is a schematic flowchart of a security context transmission process according to Embodiment 1 of the present invention;

FIG. 4 is a schematic flowchart of a security context transmission process according to Embodiment 2 of the present invention;

FIG. 5 is a schematic flowchart of a security context transmission process provided in Embodiment 3 of the present invention;

FIG. 6 is a schematic flowchart of a security context transmission process according to Embodiment 4 of the present invention;

FIG. 7 is a schematic flowchart of a security context transmission process according to Embodiment 5 of the present invention;

8 is a schematic diagram of a first method for calculating an integrity protection check value (Token value) provided by an embodiment of the present invention;

9 is a schematic diagram of a second method for calculating a Token value provided by an embodiment of the present invention;

10 is a schematic flowchart of a method for providing a security context according to an embodiment of the present invention;

11 is a schematic flowchart of a method for acquiring a security context according to an embodiment of the present invention;

12 is a schematic flowchart of a method for receiving and processing a rerouting command according to an embodiment of the present invention;

13 is a schematic structural diagram of a device for providing a security context according to an embodiment of the present invention;

14 is a schematic structural diagram of a device for acquiring a security context according to an embodiment of the present invention;

15 is a schematic structural diagram of a device for receiving and processing a rerouting command according to an embodiment of the present invention;

FIG. 16 is a schematic flowchart of a security context transmission process according to Embodiment 6 of the present invention;

FIG. 17 is a schematic flowchart of a security context transmission process according to Embodiment 7 of the present invention;

FIG. 18 is a schematic flowchart of a security context transmission process according to Embodiment 8 of the present invention;

FIG. 19 is a schematic flowchart of a security context transmission process according to Embodiment 9 of the present invention;

20 is a schematic flowchart of another method for providing a security context provided by an embodiment of the present invention;

21 is a schematic flowchart of another method for acquiring a security context provided by an embodiment of the present invention;

22 is a schematic flowchart of a method for providing a third security context provided by an embodiment of the present invention;

23 is a schematic structural diagram of another security context providing device according to an embodiment of the present invention;

FIG. 24 is a schematic structural diagram of another security context acquisition device provided by an embodiment of the present invention;

FIG. 25 is a schematic structural diagram of a device for providing a third security context according to an embodiment of the present invention.

Detailed ways

The embodiments of the present invention provide a method and device for providing and acquiring a security context, so as to realize that an MME in a specific network can acquire the security context of a UE, so that the MME in the specific network and the UE can communicate securely.

In addition, the technical solutions provided by the embodiments of the present invention can also perform integrity check on the rerouted NAS message.

The core network equipment described in the present invention may be an MME or an SGSN or other equipment. The access network device described in the present invention may be an eNB, or may be a radio network controller (Radio Network Controller, RNC) and other devices. The NAS message described in the present invention may be an attach request message or a tracking area update request message or the like.

In the following, an introduction to specific embodiments of the present invention is given by taking the core network device as an MME, the access network device as an eNB, and the NAS message as an attach request message as an example.

Embodiment 1 of the present invention:

This embodiment is directed to a scenario in which the NAS message is not protected by security (including integrity protection and confidentiality protection), for example, the UE attaches to the network for the first time (ie, accesses the network for the first time). The specific process is shown in Figure 3, including steps:

301. The UE initiates an attach request (or a tracking area update request) to the first MME for the first time;

All bits of the Evolved Universal Terrestrial Radio Access Network (E-UTRAN) key set identifier (Key Set Identifier in E-UTRAN, eKSI) in the attach request (or tracking area update request) are set to 1, That is, the UE has no available security context, and the attach request (or tracking area update request) is not protected by security.

The eKSI is used to identify different security contexts under the UE. Specifically, the eKSI is the key set identifier in the security context. Since the root keys in different security contexts are different, the key set identifier can be used. to identify the security context. The root key is Kasme.

302. The UE performs authentication and key negotiation with the first MME, and establishes a NAS security association between the UE and the first MME;

In this step, the shared security context between the UE and the first MME is established.

303. The first MME initiates an update location request to the HSS;

304. The HSS queries the database, that is, searches the subscription data of the UE, determines whether the UE is a UE that needs to perform a specific service (such as an MTC service), whether the UE needs to be connected to a corresponding specific network, and returns an update location confirmation, which updates the location confirmation. The message contains information about using a specific network, for example, the information includes the service type of the UE and the type information of the specific network accessed by the UE.

305. After receiving the information indication of using a specific network, the first MME re-structures the attach request (or the tracking area update request), that is, replaces the attachment request with the eKSI associated with the security context currently shared with the UE. eKSI.

The eKSI associated with the security context is the key set identifier in the security context.

306. The first MME sends a rerouting command to the eNB, where the rerouting command includes a reconfigured attach request (or a reconfigured tracking area update request), using information of a specific network.

Wherein, the information of using a specific network is the information used to determine the second MME.

The second MME, that is, the MME in the specific network, that is, the specific MME described in the background art.

307. After receiving the rerouting command, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, and sends a specific message to the second MME, where the specific message includes the reconfigured attach request (or reconfigured Tracking area update request), rerouting indication and identification information of the first MME.

Wherein, the identification information of the first MME may be an MME ID, or may be a GUTI or the like.

Wherein, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, for example, including:

The eNB determines the corresponding second MME of the specific network through the type information of the specific network according to the pre-configured correspondence list between the network type and the second MME identifier.

308. The second MME finds the first MME according to the identification information of the first MME, and sends a context request message to the first MME, which contains the IMSI, eKSI and rerouting indication of the UE.

309. After receiving the context request message, the first MME obtains the UE's IMSI, eKSI and rerouting indication from it, and the first MME determines that it needs to search for a security context according to the rerouting indication, and then finds the corresponding security context according to the IMSI and eKSI. The UE is determined by the IMSI, and the security context under the UE is determined by the eKSI.

3010. The first MME sends the security context currently shared by the UE with the first MME to the second MME through a context response message, where the security context includes the root key (Kasme), the encryption algorithm (the algorithm used to prevent interception) and Integrity Protection Algorithms (algorithms for tamper resistance).

3011. If the second MME needs to reselect the algorithm used when communicating with the UE, for example, if the algorithm (including the encryption algorithm and/or the integrity protection algorithm) selected by the second MME is different in the security context, the second MME uses The newly selected algorithm derives a new NAS key, and sends a NAS security mode command message to the UE, which contains the new algorithm selected by the second MME. The new algorithm selected by the second MME includes an encryption algorithm and/or an integrity protection algorithm.

Wherein, the second MME derives a new NAS key by using the newly selected algorithm, including: deriving a new NAS by using the identifier (ID) of the newly selected encryption algorithm and/or the integrity protection algorithm, and the root key Kasme key. This is the prior art, and details are not described here.

3012. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

For this embodiment, the following five aspects can be further expanded:

First: if the first MME assigns an identifier to the UE before rerouting, for example, a GUTI (which includes the identifier of the first MME, which can be used to find the corresponding first MME), then in step 305, it is also necessary to use The assigned GUTI replaces the IMSI (or PTMSI or GUTI) in the attach request (or tracking area update request), so step 307 does not need to carry the identification information of the first MME, and step 308 carries not IMSI but GUTI.

Second: the indication carried in the context request in steps 308 and 309 is optional and not mandatory. When the context request carries the rerouting indication, the first MME learns that the attach request (or the tracking area update request) is rerouted to the second MME according to the rerouting indication in the context request.

Third: The NAS security mode command procedure of steps 3011 and 3012 is optional, and this procedure is only initiated when the second MME selects a new integrity algorithm and/or encryption algorithm for the UE.

Fourth: The context request in step 308 may also carry the reconstructed attach request (or the reconstructed tracking area update request) instead of directly carrying the eKSI. The first MME uses the IMSI and the reconstructed attach request (or the reconstructed tracking). The eKSI in the area update request) obtains the security context, and the first MME does not need to perform integrity verification on the reconstructed attach request (or the reconstructed tracking area update request), and only needs to send the security context to the first MME according to the rerouting instruction. Two MME can be.

Fifth: in step 305, the attachment request (or the tracking area update request) is not reconstructed, then all the following steps use the attachment request (or the tracking area update request) sent by the UE. Therefore, the rerouting command in step 306 also includes the eKSI associated with the security context currently shared by the first MME with the UE. In step 307, the eKSI is also included in the specific message. The context request in step 308 may also carry an attach request (or a tracking area update request).

Embodiment 2 of the present invention:

This embodiment is directed to the scenario where the NAS message is not protected by security, for example, the UE attaches to the network for the first time. This embodiment increases the integrity protection for the attach request (or the tracking area update request), and improves the security. The specific process is shown in Figure 4, including:

401. The UE initiates an attach request (or a tracking area update request) to the first MME for the first time. ;

The Message Authentication Code (MAC) information element (InformationElement, IE) is empty, that is, it is not integrity protected.

402. The UE performs authentication and key negotiation with the network side, and establishes a NAS security association between the UE and the first MME;

In this step, the shared security context between the UE and the first MME is established.

403. The first MME initiates an update location request to the HSS;

404. The HSS queries the database, that is, searches the subscription data of the UE to see if the UE is a UE that needs to perform a specific service (such as an MTC service), whether the UE needs to be connected to a corresponding specific network, and returns an update location confirmation, which updates the location confirmation. The message contains information about using a specific network, for example, the information includes the service type of the UE and the type information of the specific network accessed by the UE.

405. After receiving the information indication of using a specific network, the first MME reconstructs the originally received attach request message (or tracking area update request), that is, the first MME calculates the token based on the security context currently shared with the UE (or the tracking area update request). Token) value, and fill the Token value into the MAC IE of the attach request message, and replace the eKSI in the attach request with the eKSI associated with the current security context.

Wherein, the Token value is the integrity protection check value.

406. The first MME sends a rerouting command to the eNB, where the command includes a reconfigured attach request (or a reconfigured tracking area update request), using information about a specific network.

Wherein, the information of using a specific network is the information used to determine the second MME.

The second MME, that is, the MME in the specific network, that is, the specific MME described in the background art.

407. After receiving the rerouting command, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, and sends a specific message to the second MME, where the specific message includes the reconfigured attach request (or reconfigured Tracking area update request), rerouting indication and identification information of the first MME.

Wherein, the identification information of the first MME may be an MME ID, or may be a GUTI or the like.

Wherein, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, for example, including:

The eNB determines the corresponding second MME of the specific network through the type information of the specific network according to the pre-configured correspondence list between the network type and the second MME identifier.

408. The second MME finds the first MME according to the identification information of the first MME, and sends a context request message to the first MME, which includes the IMSI of the UE, the reconfigured attach request and the rerouting indication.

409. The first MME finds the corresponding security context according to the IMSI and eKSI, and uses the security context to verify the Token value in the attach request.

The first MME uses the security context to verify the Token value in the attach request, that is, the first MME will use the security context to calculate and obtain the Token value, and compare it with the Token value in the attach request. If they are consistent, the verification is successful.

4010. If the verification is successful, then the first MME sends the security context that the UE currently shares with the first MME to the second MME through a context response message, where the security context contains the root key (Kasme), the encryption algorithm (used to prevent Algorithms for snooping) and integrity protection algorithms (algorithms for tamper resistance).

4011. If the second MME needs to reselect the algorithm used when communicating with the UE, for example, if the algorithm (including the encryption algorithm and/or the integrity protection algorithm) selected by the second MME is different in the security context, the second MME uses The newly selected algorithm derives a new NAS key, and sends a NAS security mode command message to the UE, which contains the new algorithm selected by the second MME. The new algorithm selected by the second MME includes an encryption algorithm and/or an integrity protection algorithm.

Wherein, the second MME derives a new NAS key by using the newly selected algorithm, including: deriving a new NAS by using the identifier (ID) of the newly selected encryption algorithm and/or the integrity protection algorithm, and the root key Kasme key. This is the prior art, and details are not described here.

4012. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

For this embodiment, the following four aspects can be further expanded:

First: If the first MME assigns an identifier to the UE before rerouting, for example, a GUTI (which includes the identifier of the first MME, which can be used to find the corresponding first MME), then in step 405, it is also necessary to use The assigned GUTI replaces the IMSI (or P-TMSI or GUTI) in the attach request (or tracking area update request), so step 407 does not need to carry the identification information of the first MME, and step 408 carries not IMSI but GUTI.

Second: the rerouting indication carried in the context request in steps 408 and 409 is optional and not mandatory. When the context request carries the rerouting indication, the first MME learns, according to the rerouting indication in the context request, that the attach request (or the tracking area update request) is rerouted to the second MME, and the first MME receives the attach request (or the tracking area update request). Track area update requests) and verify the Token value.

Third: The NAS security mode command procedure of steps 4011 and 4012 is optional, and this procedure is only initiated when the second MME selects a new integrity algorithm and/or encryption algorithm for the UE.

Fourth: In step 405, the attach request (or the tracking area update request) is not reconstructed, and only the Token value is calculated, then all the following steps use the attach request (or the tracking area update request) sent by the UE. Therefore, the rerouting command in step 406 also includes the eKSI associated with the security context currently shared by the first MME with the UE and the calculated Token value. Step 407 The specific message also includes the eKSI and the calculated Token value. In step 408, the context request also includes the Token value. Step 409: The first MME needs to verify the Token value in the security context.

Embodiment three of the present invention:

This embodiment is aimed at a scenario where the NAS message is secured and there is no available security context on the first MME. For example, when the UE initiates an attach request or a tracking area update request, the specific process is shown in Figure 5, including steps:

501. The UE initiates an attach request (or a tracking area update request) to the first MME, and the attach request (or a tracking area update request) is integrity-protected;

502. There is no available security context on the first MME, and the first MME uses the GUTIo in the attach request (or the tracking area update request) to search for the third MME, thereby initiating a context request to the third MME;

The GUTIo is the old GUTI, that is, the GUTI allocated to the UE by the third MME.

503. The third MME verifies the integrity of the received attach request (or tracking area update request).

504. If the verification is successful, the third MME sends a context response to the first MME, which contains the security context.

505. The first MME initiates an update location request to the HSS;

506. The HSS queries the database, that is, searches the subscription data of the UE to see if the UE is a UE that needs to perform a specific service (such as an MTC service), whether the UE needs to be connected to a corresponding specific network, and returns an update location confirmation, which updates the location confirmation. The message contains information about using a specific network, for example, the information includes the service type of the UE and the type information of the specific network accessed by the UE.

507. After the first MME receives the information indication of using a specific network, it reconstructs the originally received Attach Request (or Tracking Area Update Request) message, that is, if the first MME has allocated a GUTI to the UE, the first MME will The GUTIo in the Attach Request (or Tracking Area Update Request) message is replaced with the GUTI allocated by the first MME for the UE; if the first MME does not allocate a GUTI for the UE, the first MME will add the GUTI in the Attach Request (or Tracking Area Update Request) message to the UE. GUTIo is replaced by IMSI. The first MME calculates the Token value based on the security context currently shared with the UE, and replaces the Token value with the MAC IE of the Attach Request (or Tracking Area Update Request) message;

508. The first MME sends a rerouting command to the eNB, where the command includes a reconfigured attach request (or a reconfigured tracking area update request) and information about using a specific network.

Wherein, the information of using a specific network is the information used to determine the second MME.

The second MME, that is, the MME in the specific network, that is, the specific MME described in the background art.

509. After receiving the rerouting command, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, and sends a specific message to the second MME, where the specific message includes the reconfigured attach request (or reconfigured Tracking Area Update Request) and rerouting indication.

Wherein, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, for example, including:

The eNB determines the corresponding second MME of the specific network through the type information of the specific network according to the pre-configured correspondence list between the network type and the second MME identifier.

5010. The second MME finds the first MME according to the GUTI in the reconfigured attach request (or the reconfigured tracking area update request), and sends a context request message to the first MME, which includes the GUTI allocated by the first MME for the UE, Refactored Attach Request (or Refactored Tracking Area Update Request) and Rerouting Indication.

5011. The first MME learns according to the rerouting indication that the reconfigured attach request (or the reconfigured tracking area update request) is rerouted, and the first MME receives the reconfigured attach request (or the reconfigured tracking area update request) ), and find the corresponding security context according to GUTI (or IMSI) and eKSI, and use the security context to verify the Token value in the attach request (or tracking area update request).

The first MME finds the corresponding security context according to the GUTI (or IMSI) and the eKSI, including: the first MME determines the corresponding UE according to the GUTI (or IMSI), and determines the corresponding security context under the UE according to the eKSI.

The first MME uses the security context to verify the Token value in the reconstructed attach request (or the reconstructed tracking area update request), that is, the first MME will use the security context to calculate the Token value, which is different from the reconstructed attach request (or The Token value in the refactored tracking area update request) is compared, and the verification is successful if they are consistent.

5012. If the verification is successful, the first MME sends the current security context of the UE to the second MME, where the security context includes the first root key (Kasme), encryption algorithm (algorithm for preventing interception) and integrity protection algorithm (algorithms for tamper resistance).

5013. If the second MME needs to reselect the algorithm used when communicating with the UE, for example, if the algorithm (including the encryption algorithm and/or the integrity protection algorithm) selected by the second MME is different in the security context, the second MME uses The newly selected algorithm derives a new NAS key, and sends a NAS security mode command message to the UE, which contains the new algorithm selected by the second MME. The new algorithm selected by the second MME includes an encryption algorithm and/or an integrity protection algorithm. Wherein, the second MME derives a new NAS key by using the newly selected algorithm, including: deriving a new NAS by using the identifier (ID) of the newly selected encryption algorithm and/or the integrity protection algorithm, and the root key Kasme key. This is the prior art, and details are not described here.

5014. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

For this embodiment, the following two aspects can be further expanded:

First: if GUTIo is replaced by IMSI in step 507, then step 609 needs to carry the identification information of the first MME, so that the second MME can find the corresponding first MME and request a security context according to the identification information of the first MME.

Second: Steps 5013 and 5014 NAS security mode command procedures are optional and are only initiated when the second MME selects a new integrity algorithm and/or encryption algorithm for the UE.

Embodiment four of the present invention:

This embodiment is aimed at the scenario where the NAS message is secured and there is no available security context on the first MME. For example, when the UE initiates an attach request or a tracking area update request, the specific process is shown in Figure 6, including steps:

601. The UE initiates an attach request (or tracking area update request) to the first MME, and the attach request (or tracking area update request) is integrity-protected;

602. There is no available security context on the first MME, and the first MME uses the GUTIo in the attach request (or the tracking area update request) to search for the third MME, thereby initiating a context request to the third MME;

The GUTIo is the old GUTI, that is, the GUTI allocated to the UE by the third MME.

603. The third MME verifies the integrity of the received attach request (or tracking area update request).

604. If the verification is successful, the third MME sends a context response to the first MME, which contains the security context.

605. The first MME initiates an update location request to the HSS;

606. The HSS queries the database, that is, searches the subscription data of the UE to see whether the UE is a UE that needs to perform a specific service (such as MTC service), whether the UE needs to be connected to a corresponding specific network, and returns an update location confirmation, which updates the location confirmation. The message contains information about using a specific network, for example, the information includes the service type of the UE and the type information of the specific network accessed by the UE.

607. After receiving the information indication of using the specific network, the first MME sends a rerouting command to the eNB, where the command includes an attach request (or a tracking area update request), the identity of the UE and the information of using the specific network.

Wherein, the information of using a specific network is the information used to determine the second MME.

The second MME, that is, the MME in the specific network, that is, the specific MME described in the background art.

The identifier of the UE may be the GUTI allocated to the UE by the first MME, or may be the IMSI.

Optionally, if re-authentication is performed between the first MME and the UE, the rerouting command may further include eKSI.

609. After receiving the rerouting command, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, and sends a specific message to the second MME, where the specific message includes an attach request (or a tracking area update request), The identity of the UE and the rerouting indication.

Wherein, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, for example, including:

The eNB determines the corresponding second MME of the specific network through the type information of the specific network according to the pre-configured correspondence list between the network type and the second MME identifier.

The identifier of the UE may be the GUTI allocated to the UE by the first MME, or may be the IMSI.

Optionally, when the identifier of the UE is an IMSI, the specific message may further include the identifier information of the first MME, so that the second MME can find the corresponding first MME according to the identifier information of the first MME.

Optionally, if re-authentication is performed between the first MME and the UE, the specific message may further include eKSI.

6010. The second MME finds the first MME according to the GUTI in the specific message or the identity information of the first MME, and sends a context request message to the first MME, which includes the UE's identity, an attach request (or a tracking area update request), and a retry. routing instructions.

The identifier of the UE may be the GUTI allocated to the UE by the first MME, or may be the IMSI.

Optionally, if re-authentication is performed between the first MME and the UE, the specific message may further include eKSI.

6011. The first MME learns that the attach request (or tracking area update request) is rerouted according to the rerouting indication, and the first MME receives the attach request (or tracking area update request), and finds out according to GUTI (or IMSI) and eKSI. The corresponding security context is used, and the attach request (or the tracking area update request) is verified with the security context.

The first MME finds the corresponding security context according to the GUTI (or IMSI) and the eKSI, including: the first MME determines the corresponding UE according to the GUTI (or IMSI), and determines the corresponding security context under the UE according to the eKSI.

The first MME uses the security context to verify the attachment request (or the tracking area update request), that is, the first MME will use the security context to calculate and obtain the MAC value, and compare it with the MAC value in the attach request (or the tracking area update request), If they are consistent, the verification is successful.

6012. If the verification is successful, the first MME sends the current security context of the UE to the second MME, where the security context includes the first root key (Kasme), the encryption algorithm (the algorithm used for anti-eavesdropping) and the integrity protection algorithm (algorithms for tamper resistance).

6013. If the second MME needs to reselect the algorithm used when communicating with the UE, for example, if the algorithm (including the encryption algorithm and/or the integrity protection algorithm) selected by the second MME is different in the security context, the second MME uses The newly selected algorithm derives a new NAS key, and sends a NAS security mode command message to the UE, which contains the new algorithm selected by the second MME. The new algorithm selected by the second MME includes an encryption algorithm and/or an integrity protection algorithm. Wherein, the second MME derives a new NAS key by using the newly selected algorithm, including: deriving a new NAS by using the identifier (ID) of the newly selected encryption algorithm and/or the integrity protection algorithm, and the root key Kasme key. This is the prior art, and details are not described here.

6014. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

For this embodiment, one of the following aspects can be further expanded:

First: The NAS security mode command procedure of steps 6013 and 6014 is optional and is only initiated when the second MME has selected a new integrity algorithm and/or encryption algorithm for the UE.

Embodiment 5 of the present invention:

This embodiment is aimed at a scenario where the NAS message is secured and there is no available security context on the first MME. For example, when the UE initiates an attach request or a tracking area update request, the specific process is shown in Figure 7, including the steps:

701. The UE initiates an attach request (or tracking area update request) to the first MME, and the attach request (or tracking area update request) is integrity-protected;

702. There is no available security context on the first MME, and the first MME uses the GUTIo in the attach request (or the tracking area update request) to search for the third MME, thereby initiating a context request to the third MME;

The GUTIo is the old GUTI, that is, the GUTI allocated to the UE by the third MME.

703. The third MME verifies the integrity of the received attach request (or tracking area update request).

704. If the verification is successful, the third MME sends a context response to the first MME, which contains the security context and information on using a specific network.

705. After receiving the information indication of using the specific network, the first MME sends a rerouting command to the eNB, where the command includes the attach request (or the tracking area update request) and the information of using the specific network.

Wherein, the information of using a specific network is the information used to determine the second MME.

The second MME, that is, the MME in the specific network, that is, the specific MME described in the background art.

706. After receiving the rerouting command, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, and sends a specific message to the second MME, the specific message includes an attach request (or a tracking area update request) and Rerouting indication.

Wherein, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, for example, including:

The eNB determines the corresponding second MME of the specific network through the type information of the specific network according to the pre-configured correspondence list between the network type and the second MME identifier.

707. The second MME finds the third MME according to the GUTI in the attach request (or the tracking area update request), and sends a context request message to the third MME, which includes the GUTI, the attach request (or the tracking area update request) and the rerouting indication .

708. The third MME learns that the attach request (or the tracking area update request) is rerouted according to the rerouting indication, and the third MME receives the attach request (or the tracking area update request) and finds the corresponding security context according to the GUTI and eKSI , and verify the attach request (or tracking area update request) with the security context.

The third MME finds the corresponding security context according to the GUTI and the eKSI, including: the third MME determines the corresponding UE according to the GUTI, and determines the corresponding security context under the UE according to the eKSI.

The third MME uses the security context to verify the attachment request (or the tracking area update request), that is, the third MME will use the security context to calculate the MAC value, and compare it with the MAC value in the attach request (or the tracking area update request), If they are consistent, the verification is successful.

709. If the verification is successful, the third MME sends the current security context of the UE to the second MME, where the security context includes the first root key (Kasme), the encryption algorithm (the algorithm used to prevent interception) and the integrity protection algorithm (algorithms for tamper resistance).

7010. If the second MME needs to reselect the algorithm used when communicating with the UE, for example, if the algorithm (including the encryption algorithm and/or the integrity protection algorithm) selected by the second MME is different in the security context, the second MME uses The newly selected algorithm derives a new NAS key, and sends a NAS security mode command message to the UE, which contains the new algorithm selected by the second MME. The new algorithm selected by the second MME includes an encryption algorithm and/or an integrity protection algorithm. Wherein, the second MME derives a new NAS key by using the newly selected algorithm, including: deriving a new NAS by using the identifier (ID) of the newly selected encryption algorithm and/or the integrity protection algorithm, and the root key Kasme key. This is the prior art, and details are not described here.

7011. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

In this embodiment, if the second MME is regarded as the second core network device, correspondingly, the third MME can be regarded as the first core network device.

For this embodiment, one of the following aspects can be further expanded:

First: Steps 7010 and 7011 The NAS security mode command procedure is optional and is only initiated when the second MME selects a new integrity algorithm and/or encryption algorithm for the UE.

The following describes the calculation method of the Token provided by this embodiment with reference to the accompanying drawings.

method one:

Referring to Figure 8, using KEY, MESSAGE, COUNT, BEARER identification, and DIRECTION values, the Token value is calculated by the EIA algorithm.

Wherein, the count (COUNT) value is the count value of the NAS message, and specifically adopts the count value shared by the UE and the first MME;

The message (MESSAGE) is a NAS message;

EIA is the integrity algorithm;

The key (KEY) is set to KNASint;

Bearer (BEARER) identifies that all bits are set to default values, such as 1;

The DIRECTION value bit is set to the default value, such as 1;

Method Two:

Referring to FIG. 9, only the NAS message and the count value of the NAS message and the NAS layer integrity key are used, and the Token value is obtained by calculating the hash function.

To sum up, on the side of the first core network device, referring to FIG. 10 , a method for obtaining a security context provided by an embodiment of the present invention includes the steps:

901. A first core network device receives a non-access stratum NAS message sent by a user equipment UE;

902. When it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the first core network device sends a rerouting command to the access network device, where the rerouting command includes the NAS message and a command for determining the information of the second core network device;

903. The first core network device receives the context request sent by the second core network device, where the context request includes the identifier of the UE and the identifier of the key set, and the first core network device receives the identifier of the UE and the identifier of the key set according to the identifier of the UE and the identifier of the key set. identification, look up the corresponding security context, and send the security context to the second core network device.

Preferably, before the first core network device sends the rerouting command to the access network device, the method further includes:

The first core network device reconstructs the received NAS message, and the NAS message included in the rerouting command is the reconstructed NAS message.

Preferably, the first core network device reconstructs the received NAS message from the UE, including:

The first core network device uses the key set identifier in the current security context to replace the key set identifier in the NAS message sent by the UE; and/or,

The first core network device calculates the integrity protection check value according to the current security context, and uses the integrity protection check value as the message authentication code MAC information element IE in the NAS message sent by the UE.

Preferably, the integrity protection check value is used as the message authentication code MAC information element IE in the NAS message sent by the UE, including:

Filling the integrity protection check value into the message authentication code MAC information element IE in the NAS message sent by the UE; or

Replace the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

Preferably, the first core network device reconstructs the received NAS message from the UE, further comprising:

The first core network device replaces the identifier of the UE in the NAS message received from the UE with the identifier allocated by the first core network device to the UE.

Preferably, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

Preferably, after the first core network device determines the current security context, and before sending the security context to the second core network device, the method further includes:

The first core network device uses the current security context to verify the integrity of the NAS message carried in the context request;

Then, the step of sending the security context by the first core network device to the second core network device is performed when the verification is successful.

Preferably, the first core network device uses the security context currently shared with the UE to verify the integrity of the NAS message carried in the context request, including:

The first core network device verifies the integrity protection check value or the message authentication code MAC value in the NAS message carried in the context request; or

The first core network device verifies the integrity protection check value in the context request

Preferably, the rerouting command also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

Preferably, the context request also includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

Correspondingly, referring to FIG. 11 , on the device side of the second core network, a method for acquiring a security context provided by an embodiment of the present invention includes:

101. The second core network device receives a specific message sent by the access network device, where the specific message includes a non-access stratum NAS message;

102. The second core network device determines the first core network device according to the specific message, and sends a context request to the first core network device, where the context request includes the identifier of the UE and the key set identifier;

103. The second core network device receives the context response sent by the first core network device, and obtains a security context therefrom, where the security context is determined by the first core network device according to the identifier of the UE and the key set identifier in the context request. of.

Preferably, the NAS message includes an identifier allocated to the UE by the first core network device, and the second core network device determines the first core network device according to the identifier.

Preferably, the specific message further includes identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

Preferably, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

Preferably, the security context of the UE acquired by the second core network device includes the encryption algorithm and the integrity protection algorithm used by the first core network device to protect the NAS message.

Preferably, after the second core network device acquires the security context of the UE, the method further includes:

When the second core network device needs to select a new algorithm, the second core network device uses the new algorithm to derive a new NAS key, and sends a NAS security mode command message to the UE, which contains the identifier of the new algorithm; wherein, The new algorithm includes an encryption algorithm and/or an integrity protection algorithm;

The second core network device receives the NAS security mode completion message fed back by the UE.

Preferably, the context request also includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

Preferably, the specific message also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

Correspondingly, on the access network device side, referring to FIG. 12 , a method for receiving and processing a rerouting command provided by an embodiment of the present invention includes:

111. The access network device receives a rerouting command sent by the first core network device, which includes a non-access stratum NAS message and indication information for determining the second core network device;

112. The access network device determines the second core network device according to the indication information, and sends a specific message carrying the NAS message to the second core network device.

Preferably, the specific message also includes:

A rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

Preferably, the specific message also includes:

Identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

Preferably, the NAS message is a NAS message reconstructed by the first core network device on the received NAS message sent by the UE.

Preferably, the rerouting command also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

Preferably, the specific message also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

Referring to FIG. 13, a device for providing a security context provided by an embodiment of the present invention includes:

a receiving NAS message unit 131, configured to receive a non-access stratum NAS message sent by the user equipment UE;

The sending rerouting command unit 132 is configured to send a rerouting command to the access network device when it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, where the rerouting command includes the NAS message and the second core network device. information for determining the second core network device;

The security context providing unit 133 is configured to receive a context request sent by the second core network device, where the context request includes the identifier of the UE and the identifier of the key set, and searches for the corresponding identifier according to the identifier of the UE and the identifier of the key set. and send the security context to the second core network device.

Preferably, the sending rerouting command unit is also used for:

Before sending the rerouting command to the access network device, the received NAS message is reconstructed, and the NAS message included in the rerouting command is the reconstructed NAS message.

Preferably, when the rerouting command sending unit reconstructs the received NAS message from the UE, it is specifically used for:

Use the key set identifier in the current security context to replace the key set identifier in the NAS message sent by the UE; and/or,

Calculate the integrity protection check value according to the current security context, and use the integrity protection check value as the message authentication code MAC information element IE in the NAS message sent by the UE.

Preferably, when the sending rerouting command unit uses the integrity protection check value as the message authentication code MAC information element IE in the NAS message sent by the UE, it is specifically used for:

Filling the integrity protection check value into the message authentication code MAC information element IE in the NAS message sent by the UE; or

Replace the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

Preferably, the sending rerouting command unit is also used for:

The identifier of the UE in the NAS message received from the UE is replaced by the identifier assigned to the UE by the first core network device.

Preferably, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

Preferably, the security context providing unit is also used for:

After determining the current security context, before sending the security context to the second core network device, use the current security context to verify the integrity of the NAS message carried in the context request;

Then, when the verification is successful, the security context sends the security context to the second core network device.

Preferably, when the security context providing unit uses the security context currently shared with the UE to verify the integrity of the NAS message carried in the context request, it is specifically used for:

Verify the integrity protection check value or message authentication code MAC value in the NAS message carried in the context request; or

Verify the integrity protection check value in this context request.

Preferably, the rerouting command also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

Preferably, the context request also includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

The device shown in FIG. 13 may be a core network device, such as an MME.

Referring to FIG. 14 , a device for acquiring a security context provided by an embodiment of the present invention includes:

a specific message receiving unit 141, configured to receive a specific message sent by an access network device, where the specific message includes a non-access stratum NAS message;

a context requesting unit 142, configured to determine the first core network device according to the specific message, and send a context request to the first core network device, where the context request includes the identifier of the UE and the identifier of the key set;

A context obtaining unit 143, configured to receive a context response sent by the first core network device, and obtain a security context therefrom, where the security context is determined by the first core network device according to the identifier of the UE and the key set identifier in the context request of.

Preferably, the NAS message includes an identifier allocated to the UE by the first core network device, and the second core network device determines the first core network device according to the identifier.

Preferably, the specific message further includes identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

Preferably, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

Preferably, the security context includes an encryption algorithm and an integrity protection algorithm used by the first core network device to protect the NAS message.

Preferably, after the context obtaining unit obtains the security context of the UE, it is further used to:

When a new algorithm needs to be selected, use the new algorithm to derive a new NAS key, and send a NAS security mode command message to the UE, which contains the identifier of the new algorithm; wherein, the new algorithm includes an encryption algorithm and/or or integrity protection algorithms;

Receive the NAS security mode completion message fed back by the UE.

Preferably, the context request also includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

Preferably, the specific message also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

The device shown in FIG. 14 may be a core network device, and the device may be the same core network device as the core network device shown in FIG. 13 , such as an MME.

Referring to FIG. 15 , a device for receiving and processing a rerouting command provided by an embodiment of the present invention includes:

a rerouting command receiving unit 151, configured to receive a rerouting command sent by the first core network device, which includes a non-access stratum NAS message and indication information for determining the second core network device;

The specific message sending unit 152 is configured to determine the second core network device according to the indication information, and send a specific message carrying the NAS message to the second core network device.

Preferably, the specific message also includes:

A rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

Preferably, the specific message also includes:

Identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

Preferably, the NAS message is a NAS message reconstructed by the first core network device on the received NAS message sent by the UE.

Preferably, the rerouting command also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

Preferably, the specific message also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

The device shown in FIG. 15 may be an access network device, such as an eNB.

An embodiment of the present invention provides a device for providing a security context, the device includes a processor and a transceiver, wherein:

The transceiver receives the non-access stratum NAS message sent by the user equipment UE;

When the processor determines that the NAS message needs to be re-routed to the second core network device in the specific network, a re-routing command is sent to the access network device through the transceiver, where the re-routing command includes the NAS message and is used to determine the Describe the information of the second core network equipment;

The transceiver receives the context request sent by the second core network device, the context request includes the identifier of the UE and the identifier of the key set, and the processor searches for the corresponding security context according to the identifier of the UE and the identifier of the key set, The transceiver sends the security context to the second core network device.

Preferably, before the transceiver sends the rerouting command to the access network device, the processor is further configured to reconstruct the received NAS message, and the NAS message included in the rerouting command is the reconstructed NAS message. .

Preferably, when the processor reconstructs the received NAS message, it is specifically used for:

Use the key set identifier in the current security context to replace the key set identifier in the NAS message sent by the UE; and/or,

Calculate the integrity protection check value according to the current security context, and use the integrity protection check value as the message authentication code MAC information element IE in the NAS message sent by the UE.

Preferably, when the processor uses the integrity protection check value as the message authentication code MAC information element IE in the NAS message sent by the UE, it is specifically used for:

Filling the integrity protection check value into the message authentication code MAC information element IE in the NAS message sent by the UE; or

Replace the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

Preferably, when the processor reconstructs the received NAS message, it is further used for:

The identifier of the UE in the NAS message received from the UE is replaced by the identifier assigned to the UE by the first core network device.

Preferably, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

Preferably, after the processor determines the current security context, and before the transceiver sends the security context to the second core network device, the processor is further configured to:

Use the current security context to verify the integrity of the NAS message carried in the context request;

Then, when the verification is successful, the transceiver sends the security context to the second core network device.

Preferably, when the processor uses the security context currently shared with the UE to verify the integrity of the NAS message carried in the context request, it is specifically used for:

Verify the integrity protection check value or message authentication code MAC value in the NAS message carried in the context request; or

Verify the integrity protection check value in this context request.

Preferably, the rerouting command also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

Preferably, the context request also includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

An embodiment of the present invention provides a device for acquiring a security context, the device includes a transceiver and a processor, wherein:

The transceiver receives a specific message sent by the access network device, where the specific message includes a non-access stratum NAS message;

The processor determines the first core network device according to the specific message, and the transceiver sends a context request to the first core network device, where the context request includes the identifier of the UE and the identifier of the key set;

The transceiver receives the context response sent by the first core network device, and the processor obtains the security context therefrom, where the security context is determined by the first core network device according to the identifier of the UE and the identifier of the key set in the context request.

Preferably, the NAS message includes an identifier allocated to the UE by the first core network device, and the second core network device determines the first core network device according to the identifier.

Preferably, the specific message further includes identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

Preferably, the key set identifier is included in the context request; or,

The key set identifier is included in the NAS message, which is included in the context request.

Preferably, the security context includes an encryption algorithm and an integrity protection algorithm used by the first core network device to protect the NAS message.

Preferably, after acquiring the security context of the UE, the processor is further configured to: when a new algorithm needs to be selected, use the new algorithm to derive a new NAS key, and send the NAS security key to the UE through the transceiver. The mode command message, which contains the identification of the new algorithm; wherein, the new algorithm includes an encryption algorithm and/or an integrity protection algorithm;

The transceiver receives the NAS security mode completion message fed back by the UE.

Preferably, the context request also includes:

A rerouting indication and/or an integrity protection check value, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

Preferably, the specific message also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

An embodiment of the present invention provides a device for receiving and processing a rerouting command. The device includes a transceiver and a processor, wherein:

The transceiver receives a rerouting command sent by the first core network device, which includes a non-access stratum NAS message and indication information for determining the second core network device;

The processor determines the second core network device according to the indication information, and sends a specific message carrying the NAS message to the second core network device through the transceiver.

Preferably, the specific message also includes:

A rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device.

Preferably, the specific message also includes:

Identification information of the first core network device, and the second core network device determines the first core network device according to the identification information of the first core network device.

Preferably, the NAS message is a NAS message reconstructed by the first core network device on the received NAS message sent by the UE.

Preferably, the rerouting command also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

Preferably, the specific message also includes:

The key set identity and/or the integrity protection check value and/or the identity of the UE.

It can be seen that, by reconstructing the NAS message in the embodiment of the present invention, the NAS message re-routed to the specific network can be integrity checked, and the core network device of the specific network can obtain the security context, so as to conduct security with the UE. communication.

Embodiment 6 of the present invention:

Embodiment 6 of the present invention is directed to the scenario in which the authentication process is performed on the UE and the MME before the NAS message is rerouted, and a new security context is shared. The specific process is shown in Figure 16, including the steps:

S161. The UE initiates an attach request or a location update request to the first MME (new MME);

S162. When the network side cannot find the security context corresponding to the UE or the integrity verification fails in the process of obtaining the context from the third MME (the old MME), the UE and the network side perform authentication and key negotiation to establish the relationship between the UE and the first MME. NAS security between;

S163. The first MME initiates an update location request to the HSS;

S164. The HSS queries the database, and returns an update location confirmation, the confirmation message contains information about using a specific network.

S165. After receiving the information about using a specific network, the first MME allocates a new GUTI value (or not a new GUTI) to the UE, and uses the new security context generated by authentication to calculate the Token value.

S166. The first MME sends a rerouting command to the eNB, where the rerouting command includes an attach request or a location update request, GUTI, eKSI, Token value and information about using a specific network, and the eKSI is a new security context generated after authentication Keyset ID.

S167. After receiving the rerouting command, the eNB selects the MME of the specific network, that is, the second MME, for the UE according to the information of using the specific network, and sends a message to the second MME, which includes the attach request/location update request, GUTI, eKSI and Token values.

S168. The second MME finds the first MME according to the GUTI, and sends a request message to the first MME. The request message can be an identity request message/context request message or includes an identity request message/context request message, and the request message includes an attach request /Location update request, GUTI, eKSI and Token values.

S169. After the first MME receives the request message, it finds the corresponding security context according to the GUTI and eKSI and uses the security context to verify the Token value in the request message. The specific verification method is that the first MME calculates the Token value according to the security context, and then Compared with the Token value in the request message, if they are consistent, the verification is considered successful. If the verification is successful, the first MME finds the corresponding authentication data according to the GUTI.

S1610. The first MME sends UE-related authentication data to the second MME, where the authentication data includes an authentication vector and a security context.

S1611. If the algorithm priority list of the second MME is different from the algorithm priority of the first MME, the second MME can re-select a new algorithm for the UE, derive a new NAS key according to the new algorithm, and send the NAS key to the UE The security mode command message contains the selected new integrity algorithm ID and new encryption algorithm ID.

S1612. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

For this embodiment, the following six aspects can be further expanded:

First: after the first MME allocates the GUTI and calculates the Token value in step S165, it can also reconstruct the attach request/location update request, including replacing the IMSI/GUTI in the attach request/location update request with the allocated GUTI, and using the authentication The eKSI of the new security context generated later replaces the eKSI in the attach request/location update request, and replaces/fills the MAC value in the attach request/location update request with the calculated Token. In this way, GUTI, eKSI and Token values do not need to be carried in step S166, GUTI, eKSI and Token values do not need to be carried in step S167, and GUTI, eKSI and Token values do not need to be carried in step S168, but the reconstructed attachment is carried request/location update request.

Alternatively, after the first MME allocates the GUTI and calculates the Token value in step S165, it can also reconstruct the attach request/location update request, including replacing/filling the MAC value in the attach request/location update request with the calculated Token. In this way, the Token value does not need to be carried in step S166, the Token value does not need to be carried in step S167, and the Token value does not need to be carried in step S168, but the reconstructed attach request/location update request is carried.

Second: Optionally, the eKSI may not be carried in steps S166, S167, and S168.

Third: Optionally, the Token value can be the integrity check code MAC calculated according to the security context (the NASCOUNT value can be regarded as all 0s or a preset value), or it can be calculated by the hash function Hash The check value (the input parameter can be the message, or the message and the NAS layer integrity key, or the message, the NAS layer integrity key and the NAS COUNT value), or the signature assigned to the UE by the first MME. The above message may be Attach Request/Location Update Request, or Attach Request/Location Update Request and GUTI, or Attach Request/Location Update Request, GUTI and eKSI. The first MME calculates the Token through the hash function Hash, and then compares it with the Token value in the identity request/context request message. If they are consistent, the verification is considered successful; or, the first MME calculates the Token value in the identity request/context request message with the The Token (signature or random number) of the / allocated / saved is compared, and if they are consistent, the verification is considered successful. The first MME can recognize that the attach request/location update request in the identity request/context request is rerouted (according to Token and GUTI, or based on Token, eKSI and GUTI), then the first MME can accept the attach request/location update request and use the NAS COUNT value of all 0s or the preset NAS COUNT value to verify the integrity of the message, and do not assign the serial number in the request/location update request to the locally stored NAS after the verification is passed. COUNT, keep the local NAS COUNT value unchanged.

Fourth: In step S168, when the request message is the identity request message/context request message, GUTI, eKSI and Token are included in the identity request/context request message. When the request message includes the identity request message/context request message, GUTI, eKSI and Token can also be sent to the first MME together with the identity request/context request message in addition to the identity request/context request message, that is, the second MME sends the message to the first MME. An MMME initiates a request message, which finally includes an identity request/context request message, GUTI, eKSI and Token values. An attach request/location update request is included in the identity request/context request.

Fifth: the NAS security mode command process in steps S1611 and S1612 is optional, and this process is initiated only when the second MME selects a new integrity algorithm and encryption algorithm for the UE.

Sixth: the information of using a specific network is used to indicate that the attach request needs to be rerouted to a specific network, and the information of using a specific network may be a core network type.

Embodiment 7 of the present invention:

In this embodiment, before the NAS message is rerouted, the New MME (the first MME) obtains the security context from the old MME (the third MME), and the subsequent specific MME (the second MME) asks the New MME (the first MME) for the security context The specific process is shown in Figure 17, including steps:

S171. The UE initiates an attach request/location update request to the eNB;

S172. The eNB forwards the attach request/location update request to the first MME;

S173. The first MME has no available security context, and the first MME sends an identity request/context request to the third MME.

S174. After the third MME successfully authenticates, it sends an identity response message to the first MME, where the message includes the security context and information about using a specific network.

S175. After the first MME receives the information indication of using a specific network, it allocates a new GUTI value to the UE, and uses the new security context generated by the authentication to calculate the Token value.

S176. The first MME sends a rerouting command to the eNB, the command includes an attach request/location update request, GUTI, Token value and information about using a specific network, and eKSI is the key set identifier in the attach request/location update request message.

S177. After receiving the rerouting command, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, and sends a message to the second MME, the message includes the attach request/location update request, GUTI and Token value.

S178. The second MME finds the first MME according to the GUTI, and sends a request message to the first MME. The request message can be an identity request message/context request message or includes an identity request message/context request message, and the request message includes an attach request /Location update request, GUTI and Token values.

S179. After the first MME receives the request message, it finds the corresponding security context according to the GUTI and eKSI, and uses the security context to verify the Token value in the request message. The specific verification method is as follows: the first MME calculates the Token value according to the security context, and then Compared with the Token value in the request message, if they are consistent, the verification is considered successful. If the verification is successful, the first MME finds the corresponding authentication data according to the GUTI.

S1710. The first MME sends UE-related authentication data to the second MME, where the authentication data includes an authentication vector and a security context.

S1711. If the algorithm priority list of the second MME is different from the algorithm priority of the third MME, the second MME can re-select a new algorithm for the UE, derive a new NAS key according to the new algorithm, and send the NAS key to the UE The security mode command message contains the selected new integrity algorithm ID and new encryption algorithm ID.

S1712. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

For this embodiment, the following six aspects can be further expanded:

First: after the first MME allocates the GUTI and calculates the Token value in step S175, it can also reconstruct the attach request/location update request, including replacing the IMSI/GUTI in the attach request/location update request with the allocated GUTI, and using the authentication The eKSI of the new security context generated later replaces the eKSI in the attach request/location update request, and replaces/fills the MAC value in the attach request/location update request with the calculated Token. In this way, the GUTI, eKSI and Token values do not need to be carried in step S176, the GUTI, eKSI and Token values do not need to be carried in step S177, and the GUTI, eKSI and Token values do not need to be carried in step S178, but the reconstructed attachment is carried request/location update request.

Alternatively, after the first MME allocates the GUTI and calculates the Token value in step S175, it can also reconstruct the attach request/location update request, including replacing/filling the MAC value in the attach request/location update request with the calculated Token. In this way, the Token value does not need to be carried in step S176, the Token value does not need to be carried in step S177, and the Token value does not need to be carried in step S178, but the reconstructed attach request/location update request is carried.

Second: Optionally, KSI can be carried in steps S176, S177, and S178.

Third: Optionally, the Token value can be the integrity check code MAC calculated according to the security context (the NASCOUNT value can be regarded as all 0s or a preset value), or it can be calculated by the hash function Hash Check value (the input parameter can be the message, or the message and the NAS layer integrity key, or the message, the NAS layer integrity key and the NAS COUNT value), or the signature assigned by the MME to the UE. The above message may be Attach Request/Location Update Request, or Attach Request/Location Update Request and GUTI, or Attach Request/Location Update Request, GUTI and eKSI. The first MME calculates the Token through the hash function Hash, and then compares it with the Token value in the identity request/context request message. If they are consistent, the verification is considered successful; or, the first MME calculates the Token value in the identity request/context request message with the The Token (signature or random number) of the / allocated / saved is compared, and if they are consistent, the verification is considered successful. The first MME can recognize that the attach request/location update request in the identity request/context request is rerouted (according to Token or based on Token and eKSI), then the first MME can accept the sequence number in the attach request/location update request and the current For an attach request/location update request with the same sequence number as the stored NAS COUNT, after the verification is passed, the NASCOUNT stored by the first MME remains unchanged and the authentication data is returned to the second MME.

Fourth: in step S178, when the request message is the identity request message/context request message, GUTI, eKSI and Token are included in the identity request/context request message. When the request message includes the identity request message/context request message, GUTI, eKSI and Token can also be sent to the first MME together with the identity request/context request message in addition to the identity request/context request message, that is, the second MME sends the message to the first MME. An MMME initiates a request message, which finally includes an identity request/context request message, GUTI, eKSI and Token values. An attach request/location update request is included in the identity request/context request.

Fifth: the NAS security mode command process in steps S1711 and S1712 is optional, and this process is initiated only when the second MME selects a new integrity algorithm and encryption algorithm for the UE.

Sixth: the information of using a specific network is used to indicate that the attach request needs to be rerouted to a specific network, and the information of using a specific network may be a core network type.

Embodiment 8 of the present invention:

In this embodiment, before the NAS message is rerouted, the New MME (first MME) obtains the security context from the old MME (third MME), and the subsequent specific MME (second MME) asks the old MME (third MME) for the security context scene,

The specific process is shown in Figure 18, including steps:

S181. The UE initiates an attach request/location update request to the eNB;

S182. The eNB forwards the attach request/location update request to the first MME;

S183. The first MME has no available security context, and the first MME sends an identity request/context request to the third MME.

S184. After successful verification by the third MME, if the attach request needs to be rerouted to a specific network, the third MME calculates or allocates a Token to the UE.

S185. The third MME sends an identity response message to the first MME, where the message includes the security context and uses information of a specific network, eKSI and Token. The above-mentioned information of using a specific network, eKSI and Token may also be sent to the first MME together with the identity response message in addition to the identity response message.

S186. The new MME sends a rerouting command to the eNB, where the command includes an attach request/location update request, eKSI, Token value and information about using a specific network.

S187. After receiving the rerouting command, the eNB selects the second MME of the specific network for the UE according to the information of using the specific network, and sends a message to the second MME, the message includes the attach request/location update request, eKSI and Token value.

S188. The second MME finds the third MME according to the GUTI in the attach request/location update request, and sends a request message to the third MME, where the request message may be an identity request/context request message or include an identity request message/context request message, The request message includes the attach request/location update request, eKSI and Token value.

S189. After receiving the request message, the third MME finds the corresponding security context according to the GUTI and eKSI, and uses the security context to verify the Token value in the request message. The specific verification method is that the third MME calculates the Token value according to the security context, and then Compared with the Token value in the request message, if they are consistent, the verification is considered successful. If the verification is successful, the third MME finds the corresponding authentication data according to the GUTI.

S1810. The third MME sends UE-related authentication data to the second MME, where the authentication data includes an authentication vector and a security context.

S1811. If the algorithm priority list of the second MME is different from the algorithm priority of the third MME, the second MME can re-select a new algorithm for the UE, derive a new NAS key according to the new algorithm, and send the NAS key to the UE The security mode command message contains the selected new integrity algorithm ID and new encryption algorithm ID.

S1812. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

For this embodiment, the following five aspects can be further expanded:

First: Optionally, steps S186, S187, and S188 do not carry the eKSI, and the third MME uses the eKSI in the attach request/location update request.

Second: Optionally, the Token value can be the integrity check code MAC calculated according to the security context (the NASCOUNT value can be regarded as all 0s or a preset value), or it can be calculated by the hash function Hash The check value (the input parameter can be the message, or the message and the NAS layer integrity key, or the message, the NAS layer integrity key and the NAS COUNT value), or the signature assigned to the UE by the first MME. The above message may be Attach Request/Location Update Request, or Attach Request/Location Update Request and GUTI, or Attach Request/Location Update Request, GUTI and eKSI. The third MME calculates the Token through the hash function Hash, and then compares it with the Token value in the identity request/context request message. If they are consistent, the verification is considered successful; or, the third MME calculates the Token value in the identity request/context request message with the The Token (signature or random number) of the / allocated / saved is compared, and if they are consistent, the verification is considered successful. The third MME can recognize that the attach request/location update request in the identity request/context request is rerouted (according to Token or based on Token and eKSI), then the third MME can accept the sequence number in the attach request/location update request and the current For an attach request/location update request with the same serial number of the stored NAS COUNT, after the verification is passed, the NAS COUNT stored by the third MME remains unchanged and the authentication data is returned to the second MME.

Third: in step S188, when the request message is the identity request message/context request message, the eKSI and/or Token are included in the identity request/context request message. When the request message includes the identity request message/context request message, the eKSI and/or Token can also be sent to the first MME together with the identity request/context request message in addition to the identity request/context request message, that is, the second MME sends the message to the first MME. An MMME initiates a request message, and the request message finally includes an identity request/context request message, eKSI and/or Token value. An attach request/location update request is included in the identity request/context request.

Fourth: the NAS security mode command process in steps S1811 and S1812 is optional, and this process is initiated only when the second MME selects a new integrity algorithm and encryption algorithm for the UE.

Fifth: the information of using a specific network is used to indicate that the attach request needs to be rerouted to a specific network, and the information of using a specific network may be a core network type.

In this embodiment, if the second MME is regarded as the second core network device, correspondingly, the third MME can be regarded as the first core network device.

Embodiment 9 of the present invention:

In this embodiment, before the NAS message is rerouted, the New MME (first MME) obtains the security context from the old MME (third MME), and the subsequent specific MME (second MME) asks the old MME (third MME) for the security context The specific process is shown in Figure 19, including steps:

S191. The UE initiates an attach request/location update request to the eNB;

S192. The eNB forwards the attach request/location update request to the first MME;

S193. The first MME has no available security context, and the first MME sends an identity request/context request to the third MME.

S194. The third MME sends an identity response message to the first MME, where the message includes the security context and information about using a specific network.

S195. The first MME sends a rerouting command to the eNB, where the command includes an attach request/location update request and information on using a specific network.

S196. After receiving the rerouting command, the eNB selects the MME of the specific network for the UE according to the information of using the specific network, and sends a message to the second MME, the message includes the attach request/location update request and the rerouting indication.

S197. The second MME finds the third MME according to the GUTI in the attach request/location update request, and sends a request message to the third MME, where the request message may be an identity request/context request message or include an identity request message/context request message, The request message includes an attach request/location update request and a rerouting indication.

S198. After the third MME receives the request message, the third MME can identify that the attach request/location update request in the request message is re-routing (according to the rerouting indication), then the third MME can accept the attachment request/location update request in the The serial number of the NAS COUNT is the same as the attachment request/location update request. The third MME finds the corresponding security context according to the GUTI and eKSI and uses the security context to verify the Token value in the request message. The specific verification method is , the third MME calculates the Token value according to the security context, and then compares it with the Token value in the identity request/context request message. If they are consistent, the verification is considered successful. If the verification is successful, the third MME finds the corresponding authentication data according to the GUTI. After the verification is passed, the NAS COUNT stored by the third MME remains unchanged and the authentication data is returned to the second MME. The Token value in this embodiment is the message authentication code MAC.

S199. The third MME sends UE-related authentication data to the second MME, where the authentication data includes an authentication vector and a security context.

S1910. If the algorithm priority list of the second MME is different from the algorithm priority of the third MME, the second MME can re-select a new algorithm for the UE, derive a new NAS key according to the new algorithm, and send the NAS key to the UE The security mode command message contains the selected new integrity algorithm ID and new encryption algorithm ID.

S1911. The UE derives a new NAS key according to the integrity algorithm identifier and the encryption algorithm identifier carried in the NAS security mode command, and sends a NAS security mode completion message to the second MME.

For this embodiment, the following three aspects can be further expanded:

First: in step S197, when the request message is the identity request message/context request message, the rerouting indication is included in the identity request/context request message. When the request message contains the identity request message/context request message, the rerouting indication can also be sent to the first MME together with the identity request/context request message in addition to the identity request/context request message, that is, the second MME sends the first MMME A request message is initiated, which finally contains an identity request/context request message and a rerouting indication. An attach request/location update request is included in the identity request/context request.

Second: the NAS security mode command process in steps S1910 and S1911 is optional, and this process is initiated only when the second MME selects a new integrity algorithm and encryption algorithm for the UE.

Third: the information of using a specific network is used to indicate that the attach request needs to be rerouted to a specific network, and the information of using a specific network may be a core network type.

To sum up, on the side of the first core network device, referring to FIG. 20 , another method for providing a security context provided by an embodiment of the present invention includes the steps:

S2001. A first core network device receives a non-access stratum NAS message sent by a user equipment UE;

S2002. When it is determined that the NAS message needs to be rerouted to a second core network device in a specific network, the first core network device sends a rerouting command to the access network device, where the rerouting command includes a NAS message and a Determine the information of the second core network device.

Preferably, the method further includes:

The first core network device receives the request message sent by the second core network device, the request message includes the identifier of the UE, the first core network device searches for the corresponding authentication data according to the identifier of the UE, and stores the The authentication data is sent to the second core network device.

Preferably, before the first core network device sends the authentication data to the second core network device, the method further includes: the first core network device verifies the check value in the request message;

The first core network sends the authentication data to the second core network device, specifically: when the verification is successful, the first core network device sends the authentication data to the second core network device.

Preferably, the verification value in the first core network device verification request message specifically includes:

When the request message also includes a key set identifier, the first core network device uses the UE identifier and the key set identifier to determine the corresponding security context, and uses the security context to calculate a check value, if If the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The first core network device calculates the check value by using the hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The first core network device searches for the locally stored check value, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

Preferably, before determining that the NAS message needs to be rerouted to a second core network device in a specific network, the method further includes: passing an authentication process between the first core network device and the UE, or Obtain the security context of the UE from the third core network device;

After it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, and before the first core network device sends a rerouting command to the access network device, the method further includes: the first core network device is the The UE allocates the identity and determines the check value;

The rerouting command further includes: an identifier allocated by the first core network device to the UE and the check value;

Alternatively, the rerouting command further includes: an identifier allocated to the UE by the first core network device, the check value, and a key set identifier of the security context of the UE.

Preferably, before the first core network determines that the NAS message needs to be rerouted to a second core network device in a specific network, the method further includes:

The first core network device sends a request message to the third core network device, the request message includes the NAS message, and receives a response message replied by the third core network device, including the security context of the UE, the check value and information for determining the second core network device; wherein the check value is determined by the third core network device;

The first core network device determines, by using the information for determining the second core network device, that the NAS message needs to be rerouted to the second core network device in the specific network;

The rerouting command further includes: the check value, or the check value and a key set identifier.

Correspondingly, referring to FIG. 21 , on the second core network device side, another method for acquiring a security context provided by an embodiment of the present invention includes the steps:

S2101. The second core network device receives a specific message sent by the access network device, where the specific message includes a non-access stratum NAS message;

S2102. The second core network device determines the first core network device according to the specific message, and sends a request message to the first core network device, where the request message includes the identifier of the UE;

The first core network device may be a new MME or an old MME.

S2103. The second core network device receives the response message sent by the first core network device, and obtains the authentication data of the UE therefrom, where the authentication data includes the security context of the UE, and the authentication data is the first authentication data of the UE. A core network device is determined according to the identifier of the UE.

Preferably, the identifier of the UE is an identifier allocated by the first core network device to the UE;

The specific message also includes: a check value, or a check value and a key set identifier;

The request message also includes: a check value, or a check value and a key set identifier.

Preferably, the specific message further includes: a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device;

The request message includes the NAS message, the NAS message includes the identifier of the UE, and the request message further includes the rerouting indication.

Correspondingly, referring to FIG. 22 , on the device side of the third core network, another method for providing a security context provided by an embodiment of the present invention includes the steps:

S2201. The third core network device receives the request message sent by the first core network device, including the non-access stratum NAS message of the user equipment UE;

S2202. When it is determined that the NAS message needs to be rerouted to the second core network device in a specific network, the third core network device sends a response message to the first core network device, including the security context and the user interface of the UE. for determining the information of the second core network device.

Preferably, when it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the method further includes:

The third core network device determines the check value of the UE;

The response message further includes: the check value, or a key set identifier corresponding to the check value and the security context of the UE.

Preferably, the method also includes:

The third core network device receives the request message sent by the second core network device, which includes the NAS message, the check value and the key set identifier;

The third core network device finds the corresponding authentication data according to the identifier of the UE, and sends a response message to the second core network device, which includes the authentication data of the UE.

Preferably, before the third core network device sends the response message to the second core network device, the method further includes: the third core network device verifies the check value in the request message;

The third core network device sends a response message to the second core network device, specifically: when the verification is successful, the third core network device sends a response message to the second core network device.

Preferably, the third core network device verifies the check value in the request message, specifically including:

When the request message further includes a key set identifier, the third core network device determines a corresponding security context by using the UE's identifier and the key set identifier, and uses the security context to calculate a check value , if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The third core network device calculates the check value by using the hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The third core network device searches for the locally stored check value, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

Preferably, the method also includes:

The third core network device receives the request message sent by the second core network device, which includes the NAS message and a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device;

The third core network device determines that the NAS message in the request message is rerouted to the second core network device through the rerouting indication;

The third core network device finds the corresponding security context according to the UE's identity and key set identity in the NAS message, and uses the security context to verify the integrity check code in the request message. When the verification is successful, the third core The network device finds the corresponding authentication data according to the identifier of the UE, and returns the authentication data to the second core network device.

Referring to FIG. 23, on the side of the first core network device, another device for providing a security context provided by an embodiment of the present invention includes:

A receiving NAS message unit 2301, configured to receive a non-access stratum NAS message sent by the user equipment UE;

The sending rerouting command unit 2302 is configured to send a rerouting command to the access network device when it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, where the rerouting command includes the NAS message and the information for determining the second core network device.

Preferably, the device further includes:

The authentication data providing unit 2303 is configured to receive a request message sent by the second core network device, where the request message includes the identifier of the UE, search for the corresponding authentication data according to the identifier of the UE, and use the authentication data. The right data is sent to the second core network device.

Preferably, before the authentication data providing unit sends the authentication data to the second core network device, it is also used to verify the check value in the request message;

The authentication data providing unit sends the authentication data to the second core network device, specifically: when the verification is successful, sending the authentication data to the second core network device.

Preferably, when the authentication data providing unit verifies the check value in the request message, it is specifically used for:

When the request message also includes a key set identifier, use the UE identifier and the key set identifier to determine the corresponding security context, and use the security context to calculate a check value. If the verification value is consistent with the verification value in the request message, it is determined that the verification is successful; or,

The check value is calculated by a hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The locally stored check value is searched, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

Preferably, before determining that the NAS message needs to be rerouted to the second core network device in the specific network, the sending rerouting command unit is further configured to: pass an authentication process with the UE, or from the UE. The third core network device obtains the security context of the UE;

After determining that the NAS message needs to be rerouted to the second core network device in the specific network, and before sending the rerouting command to the access network device, the unit for sending the rerouting command is further configured to: assign an identifier to the UE, and determine the check value;

The rerouting command further includes: an identifier allocated by the rerouting command unit for the UE and the check value;

Or, the rerouting command further includes: the identifier allocated by the rerouting command sending unit to the UE, the check value, and the key set identifier of the security context of the UE.

Preferably, before the unit for sending a rerouting command determines that the NAS message needs to be rerouted to the second core network device in the specific network, it is further used to:

Send a request message to the third core network device, where the request message includes the NAS message, and receive a response message replied by the third core network device, including the security context of the UE, a check value and a Information of the second core network device; wherein, the check value is determined by the third core network device;

determining that the NAS message needs to be rerouted to the second core network device in the specific network by using the information for determining the second core network device;

The rerouting command further includes: the check value, or the check value and a key set identifier.

The device shown in Figure 23 may be a core network device, such as an MME.

Correspondingly, referring to FIG. 24 , on the device side of the second core network, another device for acquiring a security context provided by an embodiment of the present invention includes:

A specific message receiving unit 2401, configured to receive a specific message sent by an access network device, where the specific message includes a non-access stratum NAS message;

a requesting unit 2402, configured to determine a first core network device according to the specific message, and send a request message to the first core network device, where the request message includes the identifier of the UE;

Obtaining unit 2403, configured to receive the response message sent by the first core network device, and obtain the authentication data of the UE therefrom, where the authentication data includes the security context of the UE, and the authentication data is the first The core network device is determined according to the identifier of the UE.

Preferably, the identifier of the UE is an identifier allocated by the first core network device to the UE;

The specific message also includes: a check value, or a check value and a key set identifier;

The request message also includes: a check value, or a check value and a key set identifier.

Preferably, the specific message further includes: a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device;

The request message includes the NAS message, the NAS message includes the identifier of the UE, and the request message further includes the rerouting indication.

The device shown in Figure 24 may be a core network device, such as an MME.

Referring to FIG. 25 , on the device side of the third core network, another device for providing a security context provided by an embodiment of the present invention includes:

A receiving request unit 2501, configured to receive a request message sent by a first core network device, including a non-access stratum NAS message of a user equipment UE;

A response unit 2502, configured to send a response message to the first core network device when it is determined that the NAS message needs to be rerouted to a second core network device in a specific network, including the security context of the UE and a Determine the information of the second core network device.

Preferably, when determining that the NAS message needs to be rerouted to the second core network device in the specific network, the response unit is further configured to:

determine the check value of the UE;

The response message further includes: the check value, or a key set identifier corresponding to the check value and the security context of the UE.

Preferably, the receiving request unit is further configured to: receive a request message sent by the second core network device, which includes the NAS message, a check value and a key set identifier;

The response unit is further configured to: find corresponding authentication data according to the identifier of the UE, and send a response message to the second core network device, which includes the authentication data of the UE.

Preferably, before sending the response message to the second core network device, the response unit is further configured to verify the check value in the request message;

The response unit sends a response message to the second core network device, specifically: when the verification is successful, the response unit sends a response message to the second core network device.

Preferably, when the response unit verifies the check value in the request message, it is specifically used for:

When the request message also includes a key set identifier, use the UE identifier and the key set identifier to determine the corresponding security context, and use the security context to calculate a check value. If the verification value is consistent with the verification value in the request message, it is determined that the verification is successful; or,

The check value is calculated by a hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The locally stored check value is searched, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

Preferably, the receiving request unit is also used for:

receiving a request message sent by the second core network device, including the NAS message and a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device;

Determine through the rerouting indication that the NAS message in the request message is rerouted to the second core network device;

Find the corresponding security context according to the UE's identity and key set identity in the NAS message, and use the security context to verify the integrity check code in the request message. When the verification is successful, find the corresponding security context according to the UE's identity and returns the authentication data to the second core network device.

The device shown in Figure 25 may be a core network device, such as an MME.

Another device for providing a security context provided by an embodiment of the present invention includes a transceiver and a processor, wherein,

The transceiver receives the non-access stratum NAS message sent by the user equipment UE;

When it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the processor sends a rerouting command to the access network device through the transceiver, where the rerouting command includes the NAS message and is used to determine the information about the second core network device.

Preferably, the transceiver is further configured to receive a request message sent by the second core network device, where the request message includes the identifier of the UE, and the processor is further configured to search for a corresponding authentication device according to the identifier of the UE. and send the authentication data to the second core network device through the transceiver.

Preferably, the processor is also used for:

Before the transceiver sends the authentication data to the second core network device, verify the check value in the request message; when the verification is successful, send the authentication data to the second core network through the transceiver equipment.

Preferably, when the processor verifies the check value in the request message, it is specifically used for:

When the request message also includes a key set identifier, use the UE identifier and the key set identifier to determine the corresponding security context, and use the security context to calculate a check value. If the verification value is consistent with the verification value in the request message, it is determined that the verification is successful; or,

The check value is calculated by a hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The locally stored check value is searched, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

Preferably, before determining that the NAS message needs to be rerouted to the second core network device in the specific network, the processor is further configured to: pass an authentication process with the UE, or obtain information from a third core network device. The network device obtains the security context of the UE;

After determining that the NAS message needs to be rerouted to the second core network device in the specific network, and before sending a rerouting command to the access network device through the transceiver, the processor is further configured to: assign an identifier to the UE, and determine the check value;

The rerouting command further includes: an identifier allocated by the processor to the UE and the check value;

Or, the rerouting command further includes: the identifier allocated by the processor to the UE, the check value, and the key set identifier of the security context of the UE.

Preferably, before determining that the NAS message needs to be rerouted to the second core network device in the specific network, the processor is further configured to: send a request message to the third core network device through the transceiver, where the request message includes the The NAS message is received, and a response message replied by the third core network device is received through the transceiver, which includes the security context of the UE, the check value, and the information used to determine the second core network device; The verification value is determined by the third core network device;

determining that the NAS message needs to be rerouted to the second core network device in the specific network by using the information for determining the second core network device;

The rerouting command further includes: the check value, or the check value and a key set identifier.

Another device for acquiring a security context provided by an embodiment of the present invention includes: a transceiver and a processor, wherein:

The transceiver receives a specific message sent by the access network device, where the specific message includes a non-access stratum NAS message;

The processor determines the first core network device according to the specific message, and sends a request message to the first core network device through the transceiver, where the request message includes the identifier of the UE;

The transceiver receives the response message sent by the first core network device, from which the processor obtains the authentication data of the UE, the authentication data includes the security context of the UE, and the authentication data is the first core network device It is determined according to the identity of the UE.

Preferably, the identifier of the UE is an identifier allocated by the first core network device to the UE;

The specific message also includes: a check value, or a check value and a key set identifier;

The request message also includes: a check value, or a check value and a key set identifier.

Preferably, the specific message further includes: a rerouting indication, where the rerouting indication is used to indicate that the NAS message is rerouted to the second core network device;

The request message includes the NAS message, the NAS message includes the identifier of the UE, and the request message further includes the rerouting indication.

Another device for providing a security context provided by an embodiment of the present invention includes: a transceiver and a processor, wherein:

The transceiver receives the request message sent by the first core network device, including the non-access stratum NAS message of the user equipment UE;

When it is determined that the NAS message needs to be rerouted to the second core network device in the specific network, the processor sends a response message to the first core network device through the transceiver, which includes the security context of the UE and the information used for determining Information about the second core network device.

Preferably, when determining that the NAS message needs to be rerouted to the second core network device in the specific network, the processor is further configured to:

determine the check value of the UE;

The response message further includes: the check value, or a key set identifier corresponding to the check value and the security context of the UE.

Preferably, the transceiver is further configured to receive a request message sent by the second core network device, including the NAS message, a check value and a key set identifier;

The processor finds the corresponding authentication data according to the identifier of the UE, and sends a response message to the second core network device through the transceiver, which includes the authentication data of the UE.

Preferably, before the processor sends a response message to the second core network device through the transceiver, it is further configured to verify the check value in the request message;

The processor sends a response message to the second core network device through the transceiver, specifically: when the verification is successful, the processor sends a response message to the second core network device through the transceiver.

Preferably, when the processor verifies the check value in the request message, it is specifically used for:

When the request message also includes a key set identifier, use the UE identifier and the key set identifier to determine the corresponding security context, and use the security context to calculate a check value. If the verification value is consistent with the verification value in the request message, it is determined that the verification is successful; or,

The check value is calculated by a hash function, and if the calculated check value is consistent with the check value in the request message, it is determined that the verification is successful; or,

The locally stored check value is searched, and if the stored check value is consistent with the check value in the request message, it is determined that the verification is successful.

Preferably, the transceiver is further configured to receive a request message sent by the second core network device, including the NAS message and a rerouting indication, where the rerouting indication is used to indicate that the NAS message is to be rerouted to the second core network device. Two core network equipment;

The processor is further configured to determine, through the rerouting indication, that the NAS message in the request message is rerouted to the second core network device; find the corresponding security device according to the UE identifier and the key set identifier in the NAS message. context, and use the security context to verify the integrity check code in the request message, when the verification is successful, find the corresponding authentication data according to the identity of the UE, and return the authentication data to the second through the transceiver core network equipment.

As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, etc.) having computer-usable program code embodied therein.

The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block in the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to the processor of a general purpose computer, special purpose computer, embedded processor or other programmable data processing device to produce a machine such that the instructions executed by the processor of the computer or other programmable data processing device produce Means for implementing the functions specified in a flow or flow of a flowchart and/or a block or blocks of a block diagram.

These computer program instructions may also be stored in a computer readable memory capable of directing a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer readable memory result in an article of manufacture comprising instruction means, the instructions The apparatus implements the functions specified in the flow or flow of the flowcharts and/or the block or blocks of the block diagrams.

These computer program instructions can also be loaded on a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer-implemented process such that The instructions provide steps for implementing the functions specified in the flow or blocks of the flowcharts and/or the block or blocks of the block diagrams.

Although the preferred embodiments of the present invention have been described, additional changes and modifications to these embodiments may occur to those skilled in the art once the basic inventive concepts are known. Therefore, the appended claims are intended to be construed to include the preferred embodiment and all changes and modifications that fall within the scope of the present invention.

Obviously, those skilled in the art can make various changes and modifications to the embodiments of the present invention without departing from the spirit and scope of the embodiments of the present invention. Thus, provided that these modifications and variations of the embodiments of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.

Claims (33)

1. A method for providing a security context, the method comprising:

the method comprises the steps that first core network equipment receives a non-access stratum (NAS) message sent by User Equipment (UE);

the first core network equipment and the UE perform authentication and key agreement to establish a security context shared between the first core network equipment and the UE;

when determining that the NAS message needs to be rerouted to a second core network device in a specific network, the first core network device reconstructs the received NAS message;

the reconstructing, by the first core network device, the NAS message received from the UE includes:

the first core network device replaces the UE identifier in the NAS message received from the UE with the global unique temporary identifier GUTI allocated to the UE by the first core network device;

the first core network device replaces the key set identifier in the NAS message sent by the UE with the key set identifier in the security context shared between the first core network device and the UE;

the first core network device sends a rerouting command to an access network device, wherein the rerouting command comprises the reconstructed NAS message;

the first core network device receives a context request sent by the second core network device, wherein the context request comprises the reconstructed NAS message;

the first core network device finds the security context shared between the first core network device and the UE according to the GUTI in the reconstructed NAS message and the key set identifier in the security context shared between the first core network device and the UE, and sends the security context shared between the first core network device and the UE to the second core network device.

2. The method of claim 1, wherein the first core network device reconstructs the received NAS message from the UE, further comprising:

and the first core network equipment calculates an integrity protection check value according to the security context shared between the first core network equipment and the UE, and uses the integrity protection check value as a message authentication code MAC information element IE in the NAS message sent by the UE.

3. The method of claim 2, wherein using the integrity protection check value as a Message Authentication Code (MAC) Information Element (IE) in a NAS message sent by the UE comprises:

filling the integrity protection check value into a Message Authentication Code (MAC) information element IE in an NAS message sent by the UE; or

And replacing the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

4. The method according to any of claims 1 to 3, wherein before the first core network sends the security context shared between the first core network device and the UE to the second core network device, the method further comprises:

the first core network device verifies the integrity of the reconstructed NAS message carried in the context request by using a security context shared between the first core network device and the UE;

then, the step of the first core network device sending the security context shared between the first core network device and the UE to the second core network device is performed when the verification is successful.

5. The method of claim 4, wherein the verifying, by the first core network device, the integrity of the NAS message carried in the context request using the security context shared between the first core network device and the UE comprises:

the first core network device acquires a security context shared between the first core network device and the UE according to the GUTI and a key set identifier in the security context shared between the first core network device and the UE; calculating a check value by using the acquired security context; and if the calculated check value is consistent with the check value in the reconstructed NAS message, determining that the verification is successful.

6. The method of claim 1, wherein the context request further comprises:

a rerouting indication and/or an integrity protection check value, the rerouting indication indicating that the reconstructed NAS message is rerouted to the second core network device.

7. A method for obtaining a security context, the method comprising:

a second core network device receives a specific message sent by an access network device, wherein the specific message comprises an NAS message obtained by reconstructing a received non-access stratum NAS message sent by a User Equipment (UE) by a first core network device, and the reconstructed NAS message comprises a Globally Unique Temporary Identifier (GUTI) allocated to the UE by the first core network device and a key set identifier in a security context shared between the first core network device and the UE;

the second core network device determines a first core network device according to the GUTI and sends a context request to the first core network device, wherein the context request comprises the reconstructed NAS message;

and the second core network equipment receives the context response sent by the first core network equipment and acquires the security context from the context response.

8. The method of claim 7, wherein the NAS message further includes an integrity protection check value calculated by the first core network device according to a security context shared between the first core network device and the UE.

9. The method according to claim 7 or 8, wherein the security context of the UE acquired by the second core network device includes a ciphering algorithm and an integrity protection algorithm used by the first core network device to protect NAS messages.

10. The method of claim 9, wherein after the second core network device obtains the security context of the UE, the method further comprises:

when the second core network device needs to select a new algorithm, the second core network device derives a new NAS key by using the new algorithm, and sends an NAS security mode command message to the UE, where the message includes an identifier of the new algorithm; wherein the new algorithm comprises a ciphering algorithm and/or an integrity protection algorithm;

and the second core network equipment receives the NAS security mode completion message fed back by the UE.

11. An apparatus for providing a security context, the apparatus comprising:

the receiving NAS message unit is used for receiving a non-access stratum NAS message sent by User Equipment (UE);

the authentication and key agreement unit is used for performing authentication and key agreement with the UE so as to establish a security context shared between the equipment of the security context and the UE;

a rerouting command sending unit, configured to reconstruct the received NAS message when it is determined that the NAS message needs to be rerouted to a second core network device in a specific network;

reconstructing the received NAS message from the UE, wherein the reconstructing comprises:

replacing the UE identity in the NAS message received from the UE with a Globally Unique Temporary Identity (GUTI) allocated to the UE;

replacing the key set identifier in the NAS message sent by the UE with the key set identifier in the security context shared between the device of the security context and the UE;

the rerouting command sending unit is further configured to send a rerouting command to the access network device, where the rerouting command includes the reconstructed NAS message;

a security context providing unit, configured to receive a context request sent by the second core network device, where the context request includes the reconstructed NAS message, find, according to the GUTI in the reconstructed NAS message and a key set identifier in a security context shared between the security context device and the UE, and send the security context shared between the security context device and the UE to the second core network device.

12. The device of claim 11, wherein the sending rerouting command unit, when reconstructing the received NAS message from the UE, is further configured to:

and calculating an integrity protection check value according to the security context shared between the equipment and the UE, and using the integrity protection check value as a message authentication code MAC information element IE in an NAS message sent by the UE.

13. The apparatus according to claim 12, wherein when the rerouting command sending unit uses the integrity protection check value as a message authentication code MAC information element IE in a NAS message sent by the UE, the rerouting command sending unit is specifically configured to:

filling the integrity protection check value into a Message Authentication Code (MAC) information element IE in an NAS message sent by the UE; or

And replacing the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

14. The apparatus according to claim 12 or 13, wherein the security context providing unit is further configured to:

before sending the security context shared between the security context device and the UE to the second core network device, verifying the integrity of the reconstructed NAS message carried in the context request by using the security context shared between the security context device and the UE;

then, when the verification is successful, the security context is sent to the second core network device.

15. The device according to claim 14, wherein the security context providing unit is specifically configured to:

acquiring a security context shared between the equipment and the UE according to the GUTI and a key set identifier in the security context shared between the equipment and the UE; calculating a check value by using the acquired security context; and if the calculated check value is consistent with the check value in the reconstructed NAS message, determining that the verification is successful.

16. The apparatus of claim 11, wherein the context request further comprises:

a rerouting indication and/or an integrity protection check value, the rerouting indication indicating that the reconstructed NAS message is rerouted to the second core network device.

17. An apparatus for obtaining a security context, the apparatus comprising:

a specific message receiving unit, configured to receive a specific message sent by an access network device, where the specific message includes an NAS message obtained by a first core network device reconstructing a received NAS message of a non-access stratum sent by a user equipment UE, where the reconstructed NAS message includes a globally unique temporary identifier GUTI allocated by the first core network device to the UE and a key set identifier in a security context shared between the first core network device and the UE;

a context request unit, configured to determine a first core network device according to the GUTI, and send a context request to the first core network device, where the context request includes the reconstructed NAS message;

and the context obtaining unit is used for receiving the context response sent by the first core network device and obtaining the security context from the context response.

18. The device of claim 17, wherein the NAS message further includes an integrity protection check value calculated by the first core network device according to a security context shared between the first core network device and the UE.

19. The device according to claim 17 or 18, wherein the security context includes a ciphering algorithm and an integrity protection algorithm used by the first core network device to protect NAS messages.

20. The apparatus of claim 19, wherein after the context obtaining unit obtains the security context of the UE, the context obtaining unit is further configured to:

when a new algorithm needs to be selected, deriving a new NAS secret key by using the new algorithm, and sending an NAS security mode command message to the UE, wherein the NAS security mode command message comprises an identifier of the new algorithm; wherein the new algorithm comprises a ciphering algorithm and/or an integrity protection algorithm;

and receiving the NAS security mode completion message fed back by the UE.

21. An apparatus for providing a security context, the apparatus comprising a processor and a transceiver, wherein,

the transceiver receives a non-access stratum (NAS) message sent by User Equipment (UE);

the processor is configured to perform authentication and key agreement with the UE to establish a security context shared between the UE and the device of the security context, and when the processor determines that the NAS message needs to be rerouted to a second core network device in a specific network, the processor is further configured to reconstruct the received NAS message;

the processor reconstructs the received NAS message from the UE in the following way:

replacing the UE identity in the NAS message received from the UE with a Globally Unique Temporary Identity (GUTI) allocated to the UE;

replacing the key set identifier in the NAS message sent by the UE with the key set identifier in the security context shared between the device of the security context and the UE;

the processor is further configured to send a rerouting command to an access network device through the transceiver, where the rerouting command includes the reconstructed NAS message;

the transceiver receives a context request sent by the second core network device, where the context request includes the reconstructed NAS message, the processor finds a security context shared between the security context device and the UE according to the GUTI in the reconstructed NAS message and a key set identifier in a security context shared between the security context device and the UE, and the transceiver sends the security context shared between the security context device and the UE to the second core network device.

22. The device of claim 21, wherein the processor, when reconstructing the received NAS message, is further configured to:

and calculating an integrity protection check value according to the security context shared between the equipment with the security context and the UE, and taking the integrity protection check value as a message authentication code MAC information element IE in an NAS message sent by the UE.

23. The device of claim 22, wherein when the processor uses the integrity protection check value as a message authentication code MAC information element IE in a NAS message sent by the UE, the processor is specifically configured to:

filling the integrity protection check value into a Message Authentication Code (MAC) information element IE in an NAS message sent by the UE; or

And replacing the message authentication code MAC in the NAS message sent by the UE with the integrity protection check value.

24. The device of claim 22 or 23, wherein before the transceiver sends the security context shared between the device and the UE to the second core network device, the processor is further configured to:

verifying the integrity of the reconstructed NAS message carried in the context request by using a security context shared between the device with the security context and the UE;

then, when the verification is successful, the transceiver sends the security context to the second core network device.

25. The device of claim 24, wherein the processor is specifically configured to:

acquiring a security context shared between the equipment with the security context and the UE according to the GUTI and a key set identifier in the security context shared between the equipment with the security context and the UE; calculating a check value by using the acquired security context; and if the calculated check value is consistent with the check value in the reconstructed NAS message, determining that the verification is successful.

26. The apparatus of claim 21, wherein the context request further comprises:

a rerouting indication and/or an integrity protection check value, the rerouting indication indicating that the reconstructed NAS message is rerouted to the second core network device.

27. An apparatus for obtaining a security context, the apparatus comprising a transceiver and a processor, wherein:

the transceiver receives a specific message sent by access network equipment, wherein the specific message comprises an NAS message obtained by reconstructing a received non-access stratum NAS message sent by User Equipment (UE) by first core network equipment, and the reconstructed NAS message comprises a Globally Unique Temporary Identifier (GUTI) allocated to the UE by the first core network equipment and a key set identifier in a security context shared between the first core network equipment and the UE;

the processor is configured to determine a first core network device according to the GUTI, and the transceiver is further configured to send a context request to the first core network device, where the context request includes the reconstructed NAS message;

the transceiver is further configured to receive a context response sent by the first core network device, from which the processor obtains a security context.

28. The device of claim 27, wherein the NAS message further includes an integrity protection check value calculated by the first core network device according to a security context shared between the first core network device and the UE.

29. The device according to claim 27 or 28, wherein the security context comprises a ciphering algorithm and an integrity protection algorithm used by the first core network device to protect NAS messages.

30. The apparatus of claim 29, wherein after obtaining the security context of the UE, the processor is further configured to: when a new algorithm needs to be selected, deriving a new NAS secret key by using the new algorithm, and sending an NAS security mode command message to the UE through the transceiver, wherein the NAS security mode command message comprises an identifier of the new algorithm; wherein the new algorithm comprises a ciphering algorithm and/or an integrity protection algorithm;

and the transceiver receives the NAS security mode completion message fed back by the UE.

31. A system comprising an apparatus for providing a security context according to any one of claims 11 to 16 and an apparatus for obtaining a security context according to any one of claims 17 to 20.

32. A system comprising an apparatus for providing a security context according to any one of claims 21 to 26 and an apparatus for obtaining a security context according to any one of claims 27 to 30.

33. The system of claim 32, wherein the system further comprises an access network device.

Images