[go: up one dir, main page]

CN106211091B - Method and system for establishing cluster communication - Google Patents

Method and system for establishing cluster communication Download PDF

Info

Publication number
CN106211091B
CN106211091B CN201610811151.4A CN201610811151A CN106211091B CN 106211091 B CN106211091 B CN 106211091B CN 201610811151 A CN201610811151 A CN 201610811151A CN 106211091 B CN106211091 B CN 106211091B
Authority
CN
China
Prior art keywords
base station
station subsystem
cluster
sends
key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610811151.4A
Other languages
Chinese (zh)
Other versions
CN106211091A (en
Inventor
钟焰涛
傅文治
蒋罗
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Osenrec (Fujian) Marine Equipment Research Institute Co.,Ltd.
Original Assignee
Yulong Computer Telecommunication Scientific Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Yulong Computer Telecommunication Scientific Shenzhen Co Ltd filed Critical Yulong Computer Telecommunication Scientific Shenzhen Co Ltd
Priority to CN201610811151.4A priority Critical patent/CN106211091B/en
Priority to PCT/CN2016/107984 priority patent/WO2018045638A1/en
Publication of CN106211091A publication Critical patent/CN106211091A/en
Application granted granted Critical
Publication of CN106211091B publication Critical patent/CN106211091B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/06Selective distribution of broadcast services, e.g. multimedia broadcast multicast service [MBMS]; Services to user groups; One-way selective calling services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Multimedia (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)

Abstract

本发明公开了一种建立集群通信的方法及系统。该方法包括:主叫终端发起集群加密通信,并选定加密密钥,将所述加密密钥发送给集群调度服务器,以使得所述集群调度服务器将所述加密密钥发送给被叫终端;所述主叫终端与所述被叫终端建立加密呼叫,并进入加密通信,不需要KDS,由发起集群加密通信的终端选定密钥,避免严重依赖于密钥分发服务器KDS,减少KDS的计算和通信负担,避免KDS失效时整个系统无法运行的情况。

Figure 201610811151

The invention discloses a method and system for establishing cluster communication. The method includes: a calling terminal initiates a cluster encrypted communication, selects an encryption key, and sends the encryption key to a cluster scheduling server, so that the cluster scheduling server sends the encryption key to the called terminal; The calling terminal establishes an encrypted call with the called terminal, and enters encrypted communication. KDS is not required. The terminal that initiates the cluster encrypted communication selects the key, avoids heavy dependence on the key distribution server KDS, and reduces the calculation of KDS. and communication burden to avoid the situation that the whole system cannot operate when the KDS fails.

Figure 201610811151

Description

Method and system for establishing cluster communication
Technical Field
The embodiment of the invention relates to the technical field of communication, in particular to a method and a system for establishing trunking communication.
Background
The trunking communication system is a special communication system, and the application fields include command, dispatch, public security, emergency rescue and the like. In order to solve the problem of voice encryption of a trunking communication and improve the security of a trunking communication system, the prior art provides a method for trunking voice calling. The call encryption method of the method generally comprises the following steps: all member terminals of a calling party and a called party respectively acquire a session Key of the encrypted call to a Key Distribution Server (KDS) through a base station subsystem BBS in the encrypted call establishment process; all member terminals of a calling party and a called party respectively send a request for entering encrypted communication to the BBS, and an encrypted call is established; after entering the encrypted conversation, all the member terminals of the calling and the called use the same session key to encrypt the sent voice frames and decrypt the received voice frames in the conversation process.
The above described solution has two problems: firstly, the method depends heavily on a key distribution server, KDS calculation and communication burden are very large, and once KDS fails, the whole system cannot operate; secondly, when a terminal exits from a certain cluster, the key of the cluster cannot be updated in time, and the forward confidentiality cannot be satisfied, that is, the person exiting from the cluster cannot continue to decrypt the messages in the cluster.
Disclosure of Invention
The embodiment of the invention aims to provide a method and a system for establishing cluster communication, aiming at solving the problem of reducing the communication burden of a key distribution server.
To achieve the purpose, the embodiment of the invention adopts the following technical scheme:
in a first aspect, a method of establishing group communication, the method comprising:
a calling terminal initiates cluster encryption communication, selects an encryption key and sends the encryption key to a cluster scheduling server, so that the cluster scheduling server sends the encryption key to a called terminal;
and the calling terminal establishes an encrypted call with the called terminal and enters encrypted communication.
Preferably, the initiating group encrypted communication by the calling terminal includes:
the calling terminal sends a request for starting an encryption cluster call to the base station subsystem;
the calling terminal sends a service request message to the base station subsystem;
the calling terminal receives a service connection message returned by the base station subsystem;
and the calling terminal and the base station subsystem establish service connection.
Preferably, the establishing of the encrypted call between the calling terminal and the called terminal includes:
the cluster scheduling server sends a call connection request to the base station subsystem and sends the encryption key to the base station subsystem;
the base station subsystem sends an encryption cluster starting call to the called terminal;
the called terminal sends a key request to the base station subsystem and receives an encryption key returned by the base station subsystem;
and the called terminal sends a service request to the base station subsystem and establishes a service with the base station subsystem.
Preferably, after the calling terminal establishes an encrypted call with the called terminal and enters encrypted communication, the method further includes:
when the called terminal exits the cluster, the cluster scheduling server sends a key updating request to the calling terminal so that the calling terminal reselects a key and sends the selected key to the cluster scheduling server;
and the cluster scheduling server sends the selected key to all the called terminals in the cluster communication.
In a second aspect, a method of establishing group communication, the method comprising:
the trunking dispatching server receives an encryption key sent by the calling terminal;
and the cluster dispatching server sends a call connection request to the base station subsystem and sends the encryption key to the base station subsystem, so that the base station subsystem sends an encryption cluster call to the called terminal and establishes a service with the called terminal.
Preferably, after the trunking dispatch server sends the call connection request to the base station subsystem and sends the encryption key to the base station subsystem, the method further includes:
when the called terminal exits the cluster, the cluster scheduling server sends a key updating request to the calling terminal so that the calling terminal reselects a key and sends the selected key to the cluster scheduling server;
and the cluster scheduling server sends the selected key to all the called terminals in the cluster communication.
In a third aspect, a system for establishing a group communication includes a calling terminal; the calling terminal is used for:
initiating cluster encryption communication, selecting an encryption key, and sending the encryption key to a cluster scheduling server so that the cluster scheduling server sends the encryption key to a called terminal;
and establishing an encrypted call with the called terminal and entering encrypted communication.
Preferably, the calling terminal is further configured to:
sending a request for starting an encryption cluster call to a base station subsystem;
sending a service request message to the base station subsystem;
receiving a service connection message returned by the base station subsystem;
and establishing service connection with the base station subsystem.
Preferably, the system further comprises the cluster scheduling server, the base station subsystem and the called terminal;
the cluster scheduling server is used for sending a call connection request to the base station subsystem and sending the encryption key to the base station subsystem;
the base station subsystem is used for sending an encryption cluster starting call to the called terminal;
the called terminal is used for sending a key request to the base station subsystem and receiving an encryption key returned by the base station subsystem; and sending a service request to the base station subsystem, and establishing service with the base station subsystem.
Preferably, the cluster scheduling server is further configured to: after the calling terminal and the called terminal establish an encrypted call and enter encrypted communication and the called terminal exits a cluster, the cluster scheduling server sends a key updating request to the calling terminal so that the calling terminal reselects a key and sends the selected key to the cluster scheduling server; and sending the selected key to all the called terminals in the trunking communication.
The embodiment of the invention provides a method and a system for establishing trunking communication.A calling terminal initiates trunking encrypted communication, selects an encryption key and sends the encryption key to a trunking dispatch server so that the trunking dispatch server sends the encryption key to a called terminal; the calling terminal and the called terminal establish encrypted calling and enter encrypted communication, a KDS is not needed, a key is selected by the terminal initiating the cluster encrypted communication, the KDS is avoided being seriously depended on a key distribution server, the calculation and communication burden of the KDS is reduced, and the condition that the whole system cannot operate when the KDS fails is avoided.
Drawings
Fig. 1 is a flowchart illustrating a method for establishing a group communication according to an embodiment of the present invention;
fig. 2 is a schematic flowchart of a method for establishing trunking communication by a calling terminal according to an embodiment of the present invention;
fig. 3 is a flowchart illustrating a method for a called terminal to establish trunking communication according to an embodiment of the present invention;
fig. 4 is a flowchart illustrating another method for establishing a group communication according to an embodiment of the present invention;
fig. 5 is a flowchart illustrating another method for establishing a group communication according to an embodiment of the present invention;
fig. 6 is a flowchart illustrating another method for establishing a group communication according to an embodiment of the present invention;
fig. 7 is a schematic structural diagram of a system for establishing group communication according to an embodiment of the present invention.
Detailed Description
The embodiments of the present invention will be described in further detail with reference to the drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of and not restrictive on the broad invention. It should be further noted that, for convenience of description, only some structures, not all structures, relating to the embodiments of the present invention are shown in the drawings.
Referring to fig. 1, fig. 1 is a flowchart illustrating a method for establishing a group communication according to an embodiment of the present invention.
As shown in fig. 1, the method for establishing group communication includes:
step 101, a calling terminal initiates cluster encryption communication, selects an encryption key, and sends the encryption key to a cluster scheduling server, so that the cluster scheduling server sends the encryption key to a called terminal;
specifically, the manner of establishing the communication service by the calling terminal is as follows:
preferably, the initiating group encrypted communication by the calling terminal includes:
the calling terminal sends a request for starting an encryption cluster call to the base station subsystem;
the calling terminal sends a service request message to the base station subsystem;
the calling terminal receives a service connection message returned by the base station subsystem;
and the calling terminal and the base station subsystem establish service connection.
Specifically, as shown in fig. 2, fig. 2 is a schematic flowchart of a method for establishing trunking communication by a calling terminal according to an embodiment of the present invention.
As shown in fig. 2, the method for establishing trunking communication by the calling terminal includes:
step 201, a calling terminal sends a starting cluster call to a Base Station Subsystem (BSS);
step 202, the calling terminal sends a service request message to the base station subsystem;
step 203, the base station subsystem returns a service connection message to the calling terminal;
step 204, the calling terminal sends a service connection completion message to the base station subsystem;
step 205, the calling terminal sends a secret key to a trunking dispatch server (PDS);
step 206, the base station subsystem completes the establishment of the encrypted call with the PDS.
And 102, the calling terminal and the called terminal establish an encrypted call and enter encrypted communication.
Preferably, the establishing of the encrypted call between the calling terminal and the called terminal includes:
the cluster scheduling server sends a call connection request to the base station subsystem and sends the encryption key to the base station subsystem;
the base station subsystem sends an encryption cluster starting call to the called terminal;
the called terminal sends a key request to the base station subsystem and receives an encryption key returned by the base station subsystem;
and the called terminal sends a service request to the base station subsystem and establishes a service with the base station subsystem.
Specifically, as shown in fig. 3, fig. 3 is a schematic flowchart of a method for establishing trunking communication by a called terminal according to an embodiment of the present invention.
As shown in fig. 3, the method for establishing trunking communication by the calling terminal includes:
step 301, the PDS sends a call connection request to a base station subsystem;
step 302, the PDS sends a key to the base station subsystem;
step 303, the base station subsystem sends an encryption cluster starting call to a called terminal;
step 304, the called terminal sends a key request to the base station subsystem;
step 305, the base station subsystem sends a key to the called terminal;
step 306, the called terminal sends a service request to the base station subsystem;
step 307, the base station subsystem sends service connection to the called terminal;
step 308, the called terminal sends service establishment completion to the base station subsystem;
step 309, the base station subsystem sends a call setup completion to the PDS.
The embodiment of the invention provides a method for establishing cluster communication, wherein a calling terminal initiates cluster encryption communication, selects an encryption key and sends the encryption key to a cluster scheduling server, so that the cluster scheduling server sends the encryption key to a called terminal; the calling terminal and the called terminal establish encrypted calling and enter encrypted communication, a KDS is not needed, a key is selected by the terminal initiating the cluster encrypted communication, the KDS is avoided being seriously depended on a key distribution server, the calculation and communication burden of the KDS is reduced, and the condition that the whole system cannot operate when the KDS fails is avoided.
Referring to fig. 4, fig. 4 is a flowchart illustrating another method for establishing a group communication according to an embodiment of the present invention.
As shown in fig. 4, the method for establishing group communication includes:
step 401, a calling terminal initiates cluster encryption communication, selects an encryption key, and sends the encryption key to a cluster scheduling server, so that the cluster scheduling server sends the encryption key to a called terminal;
step 402, the calling terminal and the called terminal establish an encrypted call and enter encrypted communication;
step 403, when the called terminal exits the cluster, the cluster scheduling server sends a key update request to the calling terminal, so that the calling terminal reselects a key, and sends the selected key to the cluster scheduling server;
step 404, the trunking dispatch server sends the selected key to all called terminals in trunking communication.
In the method for establishing trunking communication provided by the embodiment of the invention, when the called terminal exits the trunking, the trunking dispatch server sends a key updating request to the calling terminal so that the calling terminal reselects a key and sends the selected key to the trunking dispatch server, and the trunking dispatch server sends the selected key to all the called terminals in trunking communication.
Referring to fig. 5, fig. 5 is a flowchart illustrating another method for establishing a group communication according to an embodiment of the present invention.
As shown in fig. 5, the method for establishing group communication includes:
step 501, a cluster scheduling server receives an encryption key sent by a calling terminal;
step 502, the cluster scheduling server sends a call connection request to the base station subsystem and sends the encryption key to the base station subsystem, so that the base station subsystem sends an encryption cluster call to the called terminal and establishes a service with the called terminal.
The embodiment of the invention provides a method for establishing cluster communication.A cluster dispatching server receives an encryption key sent by a calling terminal, the cluster dispatching server sends a call connection request to a base station subsystem and sends the encryption key to the base station subsystem, so that the base station subsystem sends an encryption-started cluster call to a called terminal and establishes service with the called terminal, a KDS is not needed, the key is selected by the terminal initiating the cluster encryption communication, the condition that the KDS is seriously relied on a key distribution server KDS is avoided, the calculation and communication burden of the KDS is reduced, and the condition that the whole system cannot operate when the KDS fails is avoided.
Referring to fig. 6, fig. 6 is a flowchart illustrating another method for establishing a group communication according to an embodiment of the present invention.
As shown in fig. 6, the method for establishing group communication includes:
601, a cluster scheduling server receives an encryption key sent by a calling terminal;
step 602, the cluster scheduling server sends a call connection request to the base station subsystem, and sends the encryption key to the base station subsystem, so that the base station subsystem sends an encryption cluster call to the called terminal, and establishes a service with the called terminal.
Step 603, when the called terminal exits the cluster, the cluster scheduling server sends a key updating request to the calling terminal, so that the calling terminal reselects a key and sends the selected key to the cluster scheduling server;
step 604, the trunking dispatch server sends the selected key to all called terminals in trunking communication.
In the method for establishing trunking communication provided by the embodiment of the invention, when the called terminal exits the trunking, the trunking dispatch server sends a key updating request to the calling terminal so that the calling terminal reselects a key and sends the selected key to the trunking dispatch server, and the trunking dispatch server sends the selected key to all the called terminals in trunking communication.
Referring to fig. 7, fig. 7 is a schematic structural diagram of a system for establishing group communication according to an embodiment of the present invention.
As shown in fig. 7, the system for establishing group communication includes a calling terminal 701; the calling terminal 701 is configured to:
initiating cluster encryption communication, selecting an encryption key, and sending the encryption key to a cluster scheduling server so that the cluster scheduling server sends the encryption key to a called terminal;
and establishing an encrypted call with the called terminal and entering encrypted communication.
Preferably, the calling terminal 701 is further configured to:
sending a request for starting an encryption cluster call to a base station subsystem;
sending a service request message to the base station subsystem;
receiving a service connection message returned by the base station subsystem;
and establishing service connection with the base station subsystem.
Preferably, the system further comprises the cluster scheduling server 702, the base station subsystem 703 and the called terminal 704;
the trunking dispatch server 702 is configured to send a call connection request to the base station subsystem 703 and send the encryption key to the base station subsystem 703;
the base station subsystem 703 is configured to send an encryption cluster call to the called terminal 704;
the called terminal 704 is configured to send a key request to the base station subsystem 703 and receive an encryption key returned by the base station subsystem 703; and sending a service request to the base station subsystem 703, and establishing a service with the base station subsystem 703.
Preferably, the cluster scheduling server 702 is further configured to: after the calling terminal 701 establishes an encrypted call with the called terminal 704 and enters encrypted communication, and when the called terminal 704 exits from a cluster, the cluster scheduling server 702 sends a key update request to the calling terminal 701, so that the calling terminal 701 reselects a key and sends the selected key to the cluster scheduling server 702; the selected key is sent 704 to all called terminals in the trunked communication.
The embodiment of the invention provides a system for establishing cluster communication.A calling terminal initiates cluster encryption communication, selects an encryption key and sends the encryption key to a cluster scheduling server so that the cluster scheduling server sends the encryption key to a called terminal; the calling terminal and the called terminal establish encrypted calling and enter encrypted communication, a KDS is not needed, a key is selected by the terminal initiating the cluster encrypted communication, the KDS is avoided being seriously depended on a key distribution server, the calculation and communication burden of the KDS is reduced, and the condition that the whole system cannot operate when the KDS fails is avoided.
The technical principle of the embodiment of the present invention is described above in conjunction with the specific embodiments. The description is only intended to explain the principles of embodiments of the invention and should not be taken in any way as limiting the scope of the embodiments of the invention. Based on the explanations herein, those skilled in the art will be able to conceive of other embodiments of the present invention without inventive step, and these embodiments will fall within the scope of the present invention.

Claims (8)

1.一种建立集群通信的方法,其特征在于,所述方法包括:1. A method for establishing trunking communication, wherein the method comprises: 主叫终端发起集群加密通信,并选定加密密钥,将所述加密密钥发送给集群调度服务器,以使得所述集群调度服务器将所述加密密钥发送给被叫终端;The calling terminal initiates cluster encrypted communication, selects an encryption key, and sends the encryption key to the cluster scheduling server, so that the cluster scheduling server sends the encryption key to the called terminal; 所述主叫终端与所述被叫终端建立加密呼叫,并进入加密通信;The calling terminal establishes an encrypted call with the called terminal, and enters encrypted communication; 所述主叫终端与所述被叫终端建立加密呼叫,包括:The calling terminal and the called terminal establish an encrypted call, including: 所述集群调度服务器向基站子系统发送呼叫连接请求,并将所述加密密钥发送给所述基站子系统;The cluster scheduling server sends a call connection request to the base station subsystem, and sends the encryption key to the base station subsystem; 所述基站子系统向所述被叫终端发送启动加密集群呼叫;sending, by the base station subsystem, to the called terminal to initiate an encrypted trunking call; 所述被叫终端向所述基站子系统发送密钥请求,并接收所述基站子系统返回的加密密钥;The called terminal sends a key request to the base station subsystem, and receives an encryption key returned by the base station subsystem; 所述被叫终端向所述基站子系统发送业务请求,并与所述基站子系统建立业务。The called terminal sends a service request to the base station subsystem, and establishes a service with the base station subsystem. 2.根据权利要求1所述的方法,其特征在于,所述主叫终端发起集群加密通信,包括:2. The method according to claim 1, wherein the calling terminal initiates a cluster encrypted communication, comprising: 所述主叫终端向基站子系统发送启动加密集群呼叫的请求;The calling terminal sends a request for starting an encrypted trunking call to the base station subsystem; 所述主叫终端向所述基站子系统发送业务请求消息;sending, by the calling terminal, a service request message to the base station subsystem; 所述主叫终端接收所述基站子系统返回的业务连接消息;receiving, by the calling terminal, a service connection message returned by the base station subsystem; 所述主叫终端和所述基站子系统建立业务连接。The calling terminal and the base station subsystem establish a service connection. 3.根据权利要求1至2任意一项所述的方法,其特征在于,所述主叫终端与所述被叫终端建立加密呼叫,并进入加密通信之后,还包括:3. The method according to any one of claims 1 to 2, wherein after the calling terminal and the called terminal establish an encrypted call and enter encrypted communication, the method further comprises: 在所述被叫终端退出集群时,所述集群调度服务器将密钥更新请求发送给所述主叫终端,以使得所述主叫终端重新选定一个密钥,并将选定后的密钥发送给所述集群调度服务器;When the called terminal exits the cluster, the cluster scheduling server sends a key update request to the calling terminal, so that the calling terminal re-selects a key and sends the selected key sent to the cluster scheduling server; 所述集群调度服务器将所述选定后的密钥发送给正在集群通信中的所有被叫终端。The trunking scheduling server sends the selected key to all called terminals in trunking communication. 4.一种建立集群通信的方法,其特征在于,所述方法包括:4. A method for establishing trunking communication, wherein the method comprises: 集群调度服务器接收主叫终端发送的加密密钥;The cluster scheduling server receives the encryption key sent by the calling terminal; 所述集群调度服务器向基站子系统发送呼叫连接请求,并将所述加密密钥发送给所述基站子系统,以使得所述基站子系统向被叫终端发送启动加密集群呼叫,并与所述被叫终端建立业务;The cluster scheduling server sends a call connection request to the base station subsystem, and sends the encryption key to the base station subsystem, so that the base station subsystem sends the called terminal to start an encrypted cluster call, and communicates with the base station subsystem. The called terminal establishes a service; 与所述被叫终端建立业务,包括:Establish a service with the called terminal, including: 所述被叫终端向所述基站子系统发送密钥请求,并接收所述基站子系统返回的加密密钥;The called terminal sends a key request to the base station subsystem, and receives an encryption key returned by the base station subsystem; 所述被叫终端向所述基站子系统发送业务请求,并与所述基站子系统建立业务。The called terminal sends a service request to the base station subsystem, and establishes a service with the base station subsystem. 5.根据权利要求4所述的方法,其特征在于,所述集群调度服务器向所述基站子系统发送呼叫连接请求,并将所述加密密钥发送给所述基站子系统之后,还包括:5. The method according to claim 4, wherein after the cluster scheduling server sends a call connection request to the base station subsystem and sends the encryption key to the base station subsystem, the method further comprises: 在所述被叫终端退出集群时,所述集群调度服务器将密钥更新请求发送给所述主叫终端,以使得所述主叫终端重新选定一个密钥,并将选定后的密钥发送给所述集群调度服务器;When the called terminal exits the cluster, the cluster scheduling server sends a key update request to the calling terminal, so that the calling terminal re-selects a key and sends the selected key sent to the cluster scheduling server; 所述集群调度服务器将所述选定后的密钥发送给正在集群通信中的所有被叫终端。The trunking scheduling server sends the selected key to all called terminals in trunking communication. 6.一种建立集群通信的系统,其特征在于,所述系统包括主叫终端;所述主叫终端用于:6. A system for establishing trunking communication, wherein the system comprises a calling terminal; the calling terminal is used for: 发起集群加密通信,并选定加密密钥,将所述加密密钥发送给集群调度服务器,以使得所述集群调度服务器将所述加密密钥发送给被叫终端;Initiating cluster encrypted communication, selecting an encryption key, and sending the encryption key to the cluster scheduling server, so that the cluster scheduling server sends the encryption key to the called terminal; 与所述被叫终端建立加密呼叫,并进入加密通信;establish an encrypted call with the called terminal, and enter encrypted communication; 所述系统还包括所述集群调度服务器、基站子系统和所述被叫终端;The system further includes the cluster scheduling server, the base station subsystem and the called terminal; 所述集群调度服务器,用于向所述基站子系统发送呼叫连接请求,并将所述加密密钥发送给所述基站子系统;the cluster scheduling server, configured to send a call connection request to the base station subsystem, and send the encryption key to the base station subsystem; 所述基站子系统,用于向所述被叫终端发送启动加密集群呼叫;the base station subsystem, configured to send an encrypted trunking call to the called terminal; 所述被叫终端,用于向所述基站子系统发送密钥请求,并接收所述基站子系统返回的加密密钥;向所述基站子系统发送业务请求,并与所述基站子系统建立业务。The called terminal is configured to send a key request to the base station subsystem, and receive an encryption key returned by the base station subsystem; send a service request to the base station subsystem, and establish with the base station subsystem business. 7.根据权利要求6所述的系统,其特征在于,所述主叫终端还用于:7. The system according to claim 6, wherein the calling terminal is further used for: 向基站子系统发送启动加密集群呼叫的请求;Send a request to start an encrypted trunking call to the base station subsystem; 向所述基站子系统发送业务请求消息;sending a service request message to the base station subsystem; 接收所述基站子系统返回的业务连接消息;receiving a service connection message returned by the base station subsystem; 和所述基站子系统建立业务连接。Establish a service connection with the base station subsystem. 8.根据权利要求6至7任意一项所述的系统,其特征在于,所述集群调度服务器,还用于:在所述主叫终端与所述被叫终端建立加密呼叫,并进入加密通信之后,在所述被叫终端退出集群时,所述集群调度服务器将密钥更新请求发送给所述主叫终端,以使得所述主叫终端重新选定一个密钥,并将选定后的密钥发送给所述集群调度服务器;将所述选定后的密钥发送给正在集群通信中的所有被叫终端。8. The system according to any one of claims 6 to 7, wherein the cluster scheduling server is further configured to: establish an encrypted call between the calling terminal and the called terminal, and enter encrypted communication Afterwards, when the called terminal exits the cluster, the cluster scheduling server sends a key update request to the calling terminal, so that the calling terminal re-selects a key and re-selects the selected key. The key is sent to the cluster scheduling server; the selected key is sent to all called terminals in the cluster communication.
CN201610811151.4A 2016-09-08 2016-09-08 Method and system for establishing cluster communication Active CN106211091B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201610811151.4A CN106211091B (en) 2016-09-08 2016-09-08 Method and system for establishing cluster communication
PCT/CN2016/107984 WO2018045638A1 (en) 2016-09-08 2016-11-30 Method and system for establishing push-to-talk communication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610811151.4A CN106211091B (en) 2016-09-08 2016-09-08 Method and system for establishing cluster communication

Publications (2)

Publication Number Publication Date
CN106211091A CN106211091A (en) 2016-12-07
CN106211091B true CN106211091B (en) 2020-04-24

Family

ID=58067737

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610811151.4A Active CN106211091B (en) 2016-09-08 2016-09-08 Method and system for establishing cluster communication

Country Status (2)

Country Link
CN (1) CN106211091B (en)
WO (1) WO2018045638A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108174344B (en) * 2017-12-25 2020-05-08 成都三零瑞通移动通信有限公司 GIS position information transmission encryption method and device in trunking communication

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101651944A (en) * 2009-06-16 2010-02-17 中兴通讯股份有限公司 Cluster system and encrypted communication method
CN102843675A (en) * 2011-06-24 2012-12-26 中兴通讯股份有限公司 Cluster call voice encryption method, terminal and system
CN103634744A (en) * 2012-08-22 2014-03-12 北京信威通信技术股份有限公司 Cluster group call end-to-end encryption realization method
CN104010276A (en) * 2013-02-27 2014-08-27 中兴通讯股份有限公司 A group key hierarchical management method, system and terminal of a broadband trunking system
CN104427496A (en) * 2013-08-29 2015-03-18 成都鼎桥通信技术有限公司 TD-LTE cluster communication system encryption transmission method, device and system
CN105451195A (en) * 2014-07-25 2016-03-30 成都鼎桥通信技术有限公司 End-to-end cluster key distribution method and core network equipment (eCN)

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100455067C (en) * 2005-08-04 2009-01-21 中兴通讯股份有限公司 Method for realizing single-calling in colony system
CN101442742B (en) * 2008-12-12 2011-04-20 华为技术有限公司 Method, system and equipment for implementing end-to-end encipher of mobile cluster set call
CN101902734B (en) * 2010-08-19 2012-10-10 优能通信科技(杭州)有限公司 End-to-end self-synchronization voice encryption transmission implementation method for digital trunking communication system
CN103596136A (en) * 2012-08-15 2014-02-19 北京信威通信技术股份有限公司 Cluster group call end-to-end encryption method under single base station mode
US9100988B2 (en) * 2012-10-22 2015-08-04 Motorola Solutions, Inc. Mobile repeater system based ad hoc trunked sites

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101651944A (en) * 2009-06-16 2010-02-17 中兴通讯股份有限公司 Cluster system and encrypted communication method
CN102843675A (en) * 2011-06-24 2012-12-26 中兴通讯股份有限公司 Cluster call voice encryption method, terminal and system
CN103634744A (en) * 2012-08-22 2014-03-12 北京信威通信技术股份有限公司 Cluster group call end-to-end encryption realization method
CN104010276A (en) * 2013-02-27 2014-08-27 中兴通讯股份有限公司 A group key hierarchical management method, system and terminal of a broadband trunking system
CN104427496A (en) * 2013-08-29 2015-03-18 成都鼎桥通信技术有限公司 TD-LTE cluster communication system encryption transmission method, device and system
CN105451195A (en) * 2014-07-25 2016-03-30 成都鼎桥通信技术有限公司 End-to-end cluster key distribution method and core network equipment (eCN)

Also Published As

Publication number Publication date
WO2018045638A1 (en) 2018-03-15
CN106211091A (en) 2016-12-07

Similar Documents

Publication Publication Date Title
JP6145177B2 (en) Proximity discovery, authentication, and link establishment between communicating mobile devices in 3GPP LTE
CN103179558B (en) Group system group exhales encryption implementation method and system
CN101442742B (en) Method, system and equipment for implementing end-to-end encipher of mobile cluster set call
CN102843675A (en) Cluster call voice encryption method, terminal and system
CN102118721A (en) Evolved packet system and attachment processing method of emergency call thereof
CN100518346C (en) A method for key distribution and dynamic update of CDMA system trunking system
CN106982419B (en) Single call end-to-end encryption method and system for broadband cluster system
WO2014131356A1 (en) Method, system, and terminal for hierarchical management of group keys of broadband cluster system
EP4000295A1 (en) Managing security keys in a communication system
CN111050424B (en) Multi-group call establishment method and equipment
CN104244188A (en) Multi-user talking method in TD-LTE cluster system
CN102123361B (en) Method and device for realizing encrypted information communication
CN105451195B (en) End-to-end cluster cryptographic key distribution method and equipment of the core network
US9479334B2 (en) Method, system, and terminal for communication between cluster system encryption terminal and encryption module
WO2016187749A1 (en) Mcptt group call processing method, system and related device
CN106211091B (en) Method and system for establishing cluster communication
CN101848425A (en) PTT (Push-To-Talk) data processing method, terminal, PTT server and PTT system
CN103002439A (en) Confidential call communication method and user terminal
WO2016045293A1 (en) All-group calling method, system, related device and computer storage medium
CN103634744A (en) Cluster group call end-to-end encryption realization method
KR20180014725A (en) Method and system for establishing encrypted audio seshen
MX2024007817A (en) Authentication and/or key management method, first device, terminal and communication device.
CN104753869A (en) SIP protocol based session encryption method
CN104753876A (en) Flexible and controllable session encryption method
CN104936152A (en) Terminal in cluster system, and authorization method for terminal

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20250625

Address after: 361000 Fujian Province Xiamen City Xiang'an District Xiangshan Street Xiang'an South Road 5002 No. 1006-79 Room

Patentee after: Osenrec (Fujian) Marine Equipment Research Institute Co.,Ltd.

Country or region after: China

Address before: No. 2 Mengxi Road, North Science Park, Nanshan District, Shenzhen City, Guangdong Province 518057

Patentee before: YULONG COMPUTER TELECOMMUNICATION SCIENTIFIC (SHENZHEN) Co.,Ltd.

Country or region before: China

TR01 Transfer of patent right