CN102083063B - Method, system and equipment for confirming AS key - Google Patents

Method, system and equipment for confirming AS key Download PDF

Info

Publication number
CN102083063B
CN102083063B CN200910238670.6A CN200910238670A CN102083063B CN 102083063 B CN102083063 B CN 102083063B CN 200910238670 A CN200910238670 A CN 200910238670A CN 102083063 B CN102083063 B CN 102083063B
Authority
CN
China
Prior art keywords
algorithm
user terminal
network equipment
cell
origin
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN200910238670.6A
Other languages
Chinese (zh)
Other versions
CN102083063A (en
Inventor
杨义
梁靖
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Academy of Telecommunications Technology CATT
Datang Mobile Communications Equipment Co Ltd
Original Assignee
China Academy of Telecommunications Technology CATT
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Academy of Telecommunications Technology CATT filed Critical China Academy of Telecommunications Technology CATT
Priority to CN200910238670.6A priority Critical patent/CN102083063B/en
Publication of CN102083063A publication Critical patent/CN102083063A/en
Application granted granted Critical
Publication of CN102083063B publication Critical patent/CN102083063B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The embodiment of the invention relates to a wireless communication technology, in particular to a method, system and equipment for confirming an AS key. The invention is used for solving the problems that the safety between UE (User Equipment) and a target base station is influenced and the call dropping rate between the UE and the target base station is increased because an AS algorithm used by the UE and an AS algorithm selected by the target base station are inconsistent with each other in the prior art. The method disclosed by the embodiment of the invention comprises the following steps: network side equipment receives a message integrity check code derived from the user terminal; and the network side equipment transmits AS algorithm information to the user terminal when allowing the user terminal to be accessed into a cell corresponding to the message integrity check code so as to indicate the user terminal to confirm an AS key according to the AS algorithm information. By adopting the embodiment of the invention, the safety between the user terminal and the target base station can be ensured, and the call dropping rate between the user terminal and the target base station can be reduced.

Description

A kind of method of definite AS key, system and equipment
Technical field
The present invention relates to wireless communication technology, particularly method, system and the equipment of a kind of definite AS (Access Stratum, Access Layer) key.
Background technology
At LTE (Long Term Evolution, Long Term Evolution) in the system, when UE (user terminal) switches, comprises that X2 switches and S1 switches between eNB (base station), eNB initiates handover request to target eNB by the source, and target eNB generates switching command and issues UE by source eNB then.Wherein comprise the AS algorithm sign that target eNB is selected in the switching command, UE can determine at the employed AS key of Target cell according to AS algorithm sign.The UE successful switch is behind Target cell, according to AS cryptographic key protection space interface signaling and the data determined.
If the UE handoff failure, then UE need carry out RRC connection re-establishment process.As shown in Figure 1, after UE selected a proper cell, UE initiated RRC (Radio Resource Control, Radio Resource control) connection re-establishment request message, sends RRC connection re-establishment message to UE when target eNB allows UE to insert.Rebulid RRC between UE and the eNB and connect, comprise and recover SRB1 (Signalling Radio Bearer 1, Signaling Radio Bearer 1) and reactivate AS safety.The reason that UE initiates RRC connection re-establishment process may comprise: Radio Link Failure, handoff failure, completeness check failure, RRC connect reconfiguration course failure etc.This process is initiated by UE, and when UE effective contextual prepared in the residential quarter that UE selects, rebuilding just may be successfully.If allow UE to insert, then target eNB sends RRC connection re-establishment message to UE.After UE receives this message, determine the AS key, RRC message is subsequently protected, namely finish message from the RRC connection re-establishment.
At present, source eNB is placed on the AS algorithm that oneself uses in the handover request message and issues target eNB.If handoff failure, UE reselects a residential quarter and initiates RRC connection re-establishment request, can cause UE also to use the used AS key in cell-of-origin, if the residential quarter that UE reselects is not the residential quarter under the source base station, may occur because the AS algorithm that the AS algorithm that UE uses and target BS are selected is inconsistent, make target BS refusal UE insert, or target BS changes because needs change AS algorithm requires UE to carry out intra-cell after rebuilding successfully, thereby influenced the fail safe between UE and the target BS, also increased the cutting off rate between UE and the target BS.
Summary of the invention
The embodiment of the invention provides a kind of method, system and equipment of definite AS key, if be not residential quarter under the source base station in order to solve residential quarter that the UE that exists in the prior art reselects, may occur because the AS algorithm that the AS algorithm that UE uses and target BS are selected is inconsistent, make target BS refusal UE insert, or target BS changes because needs change AS algorithm requires UE to carry out intra-cell after rebuilding successfully, thereby influenced the fail safe between UE and the target BS, also increased the problem of the cutting off rate between UE and the target BS.
The method of a kind of definite Access Layer AS key that the embodiment of the invention provides, this method comprises:
Network equipment receives the message integrity check sign indicating number from user terminal;
Described network equipment sends the AS algorithm information to described user terminal when allowing described user terminal to insert described message integrity check sign indicating number corresponding district, be used to indicate described user terminal and determine the AS key according to described AS algorithm information.
The system of a kind of definite Access Layer AS key that the embodiment of the invention provides, this system comprises:
Network equipment be used for to receive the message integrity check sign indicating number from user terminal, and when allowing described user terminal to insert described message integrity check sign indicating number corresponding district, sends the AS algorithm information to described user terminal;
User terminal is used for determining the AS key according to described AS algorithm information.
A kind of network equipment that the embodiment of the invention provides, this network measurement equipment comprises:
Receiver module is used for receiving the message integrity check sign indicating number from user terminal;
Processing module is used for sending Access Layer AS algorithm information to described user terminal when allowing described user terminal to insert described message integrity check sign indicating number corresponding district, is used to indicate described user terminal and determines the AS key according to described AS algorithm information.
A kind of user terminal that the embodiment of the invention provides, this user terminal comprises:
Sending module is used for sending the message integrity check sign indicating number to network equipment;
Determination module is used for determining the AS key according to described AS algorithm information behind the Access Layer AS algorithm information that receives from described network equipment.
Embodiment of the invention network equipment sends the AS algorithm information to user terminal when allowing user terminal to insert message integrity check sign indicating number corresponding district, user terminal is determined the AS key according to the AS algorithm information.Owing to can guarantee that the AS key of user terminal use is the same with the AS key that the objective network side apparatus uses, can not rebuild success when in the residential quarter that user terminal UE reselects not being the residential quarter under the source base station yet, and not needing user terminal to carry out intra-cell changes, thereby guaranteed the fail safe between user terminal and the target BS, also reduced the cutting off rate between user terminal and the target BS; Further also improved user's experience.
Description of drawings
Fig. 1 is RRC connection re-establishment process schematic diagram in the background technology;
Fig. 2 determines the system configuration schematic diagram of AS key for the embodiment of the invention;
Fig. 3 is the structural representation of embodiment of the invention network equipment;
Fig. 4 is the structural representation of embodiment of the invention user terminal;
Fig. 5 determines the method flow schematic diagram of AS key for the embodiment of the invention.
Embodiment
Embodiment of the invention network equipment sends the AS algorithm information to user terminal when allowing user terminal to insert message integrity check sign indicating number corresponding district, user terminal is determined the AS key according to the AS algorithm information.Owing to can guarantee that the AS key of user terminal use is the same with the AS key that the objective network side apparatus uses, can not rebuild success when in the residential quarter that user terminal UE reselects not being the residential quarter under the source base station yet, and not needing user terminal to carry out intra-cell changes, thereby guaranteed the fail safe between user terminal and the target BS, also reduced the cutting off rate between user terminal and the target BS.
Wherein, the method for the embodiment of the invention, system and equipment can be applied in LTE system, LTE-A (Long Term Evolution-Advanced, long-term evolution upgrading) system or the 3G system.Certainly, other systems that need the AS key to carry out message protection are suitable for the embodiment of the invention equally.
If the network equipment of the embodiment of the invention is applied in the LTE-A system, then the network equipment of the embodiment of the invention can be the base station, also can be Relay (relaying) node device.
In specific implementation process, the message integrity check sign indicating number can be by the carrying of RRC connection re-establishment request message, and the AS algorithm information can pass through RRC connection re-establishment message bearing.
Need to prove, the embodiment of the invention is not limited to RRC connection re-establishment request message bearer messages completeness check code, and RRC connection re-establishment message bearing AS algorithm information, other can the bearer messages completeness check code and the message of AS algorithm information be suitable for the embodiment of the invention equally.
Below with RRC connection re-establishment request message bearer messages completeness check code, and RRC connection re-establishment message bearing AS algorithm information is that example describes in further detail the embodiment of the invention.
The mode of other message bearing message integrity check sign indicating numbers and AS algorithm information and RRC connection re-establishment request message bearer messages completeness check code, and the mode of RRC connection re-establishment message bearing AS algorithm information is similar, does not repeat them here.。
As shown in Figure 2, the embodiment of the invention determines that the system of AS key comprises: network equipment 10 and user terminal 20.
Network equipment 10, be used for receiving the RRC connection re-establishment request message that comprises the message integrity check sign indicating number from user terminal 20, and when allowing user terminal to insert message integrity check sign indicating number corresponding district, send the RRC connection re-establishment message that comprises the AS algorithm information to user terminal.
User terminal 20 is used for determining the AS key according to the AS algorithm information that comprises in the RRC connection re-establishment message after the RRC connection re-establishment message of receiving from network equipment 10.
Wherein, user terminal 20 needs to initiate RRC connection re-establishment process behind handoff failure, namely reselect the residential quarter that needs insert earlier, message integrity check sign indicating number (shortMAC-I) with the residential quarter correspondence selected places RRC connection re-establishment request message then, sends to the network equipment under this residential quarter.
If the network equipment under this residential quarter is not source network side apparatus or the objective network side apparatus of user terminal 20 when switching, then the network equipment under this residential quarter does not allow this user terminal 20 to insert.
Network equipment 10 judges whether to allow user terminal 20 to insert according to following standard behind the RRC connection re-establishment request message that comprises the message integrity check sign indicating number that receives from user terminal 20:
If the completeness check code in the message that user terminal 20 reports is effectively, namely consistent with the corresponding message integrity check sign indicating number of certain Target cell, then allow user terminal 20 to insert the Target cell of these message integrity check sign indicating number correspondences; Otherwise do not allow user terminal 20 to insert.
In specific implementation process, message integrity check sign indicating number corresponding district is a residential quarter in the candidate cell immediately prepared for the RRC connection reconstruction of network equipment 10;
If network equipment 10 is not the last source network side apparatus that connects before user terminal 20 handoff failures (being that network equipment 10 is user terminal 20 objective network side apparatus when switching), the objective network side apparatus with the source network side apparatus for all residential quarters of self preparation as candidate cell.
Concrete, the embodiment of the invention is owing to can guarantee that the AS algorithm is synchronous between network side and the end side, so no matter the corresponding AS algorithm of the AS algorithm that the source network side apparatus carries in handover request sign is that the objective network side apparatus is supported, the objective network side apparatus of the embodiment of the invention is the candidate cell during as the RRC connection reconstruction with the residential quarters of preparing of source network side apparatus in the handover request all more, and user terminal 20 can insert these residential quarters when the RRC connection reconstruction.Do like this and can reduce the cutting off rate that the safety failure causes.
Wherein, network equipment 10 is after allowing user terminal to insert message integrity check sign indicating number corresponding district, also needed to determine the AS algorithm information send the RRC connection re-establishment message that comprises the AS algorithm information to user terminal before, the mode of concrete definite AS algorithm information has a variety of, enumerates several below.
Mode one, directly with AS algorithm sign as the AS algorithm information.
Network equipment 10 selects priority the highest from all AS algorithms that self supports, and the AS algorithm supported of user terminal 20, with the AS algorithm sign of the AS algorithm correspondence selected as the AS algorithm information.
Wherein, concrete AS algorithm may comprise polyalgorithm as required; comprise AS protection algorithm integrallty and AS cryptographic algorithm such as the AS algorithm; then network equipment 10 selects priority the highest from all AS protection algorithm integrallties of self supporting; and the AS protection algorithm integrallty that user terminal 20 is supported; and from all AS cryptographic algorithm of self supporting, select priority the highest; and the AS cryptographic algorithm that user terminal 20 is supported identifies AS integral algorithm corresponding algorithm sign and the AS cryptographic algorithm corresponding algorithm of selecting as the AS algorithm information.
Accordingly, user terminal 20 is determined the AS key according to AS algorithm sign.
Wherein, the AS key may comprise a plurality of keys as required.
Comprise AS protection algorithm integrallty and AS cryptographic algorithm such as the AS algorithm, the AS key comprises RRC message integrity protection key, RRC message encryption protection key and ciphering user data protection key:
RRC message integrity protection key: K RRCint=KDF (K ENB, AS integral algorithm sign, algorithm types difference symbol);
RRC message encryption protection key: K RRCenc=KDF (K ENB, AS cryptographic algorithm sign, algorithm types difference symbol);
Ciphering user data protection key: K UPenc=KDF (K ENB, AS cryptographic algorithm sign, algorithm types difference symbol);
KDF refers to key generating function (Key Derivation Function), and concrete using method is stipulated in 3GPPTS 33.401.
Because network equipment 10 allows user terminal 20 to insert, so network equipment 10 is user terminal 20 source network side apparatus or objective network side apparatus when switching.If the source network side apparatus of user terminal 20 when switching, then when adhering to or the position upgrade, user terminal 20 is placed on NAS (Non-Access Stratum with the algorithm of oneself supporting, Non-Access Stratum) tells MME (Mobility Management Entity in the message, Mobility Management Entity), MME tells the source network side apparatus with the algorithm that the user terminal of receiving 20 is supported by the S1 interface again; If the objective network side apparatus of user terminal 20 when switching, when X2 switches, the source network side apparatus is told the objective network side apparatus with the algorithm that user terminal 20 is supported in handover request, when S1 switches, source MME tells target MME with the algorithm that user terminal 20 is supported, target MME tells the objective network side apparatus with these algorithms again.
In specific implementation process, network equipment 10 can increase an IE (Information Element, information element) and be used for carrying the AS algorithm information in RRC connection re-establishment message.
Mode one is because the timely AS algorithm between synchronizing network side and the end side, thus reduced rebuild successfully after, change because of the intra-cell that needs modification algorithm carries out, reduced cutting off rate.
Mode two, judge whether AS algorithm sign as the AS algorithm information.
Network equipment 10 judges whether the cell-of-origin that connects at last before user terminal 20 handoff failures is the residential quarter that self covers, if then the content of the AS algorithm information that comprises in the RRC connection re-establishment message is set to sky; If not, judge further then whether the definite AS algorithm of the affiliated source network side apparatus in cell-of-origin is identical with the AS algorithm of self selecting, if it is identical, then the content of the AS algorithm information that comprises in the RRC connection re-establishment message is set to sky, if it is inequality, then from all AS algorithms that self supports, select priority the highest, and the AS algorithm supported of user terminal 20, with the AS algorithm sign of the AS algorithm correspondence selected as the AS algorithm information.
Accordingly, if user terminal 20 when the AS algorithm information of receiving is AS algorithm sign, is determined the AS key according to AS algorithm sign;
If user terminal 20 in the AS algorithm information content of receiving when empty, with employed AS algorithm in the cell-of-origin as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district.
In specific implementation process, the content of AS algorithm information is set to sky and can adopts and the AS algorithm information is not placed RRC connection re-establishment message to realize.
What wherein, network equipment 10 will receive identifies the AS algorithm that corresponding AS algorithm is determined as the source network side apparatus from AS algorithm in the handover request message of source network side apparatus.
In specific implementation process, whether be that the residential quarter that self covers can be judged by in the following sign one or more if network equipment 10 is judged the last cell-of-origin that connects before user terminal 20 handoff failures:
PCI (Physical Cell Identity, physical-layer cell identifier) and C-RNTI (Cell Radio NetworkTemporary Identity, cell-level Radio Network Temporary Identifier).
Concrete, user terminal 20 is when sending RRC connection re-establishment request message, can be that the C-RNTI that user terminal 20 distributes places RRC connection re-establishment request message with PCI and the cell-of-origin of cell-of-origin, network equipment 10 is after receiving RRC connection re-establishment request message, checking whether PCI and/or C-RNTI are that self distributes, is the residential quarter that self covers if then determine the cell-of-origin that connects at last before user terminal 20 handoff failures; Otherwise, determine that the cell-of-origin that connects at last before user terminal 20 handoff failures is not the residential quarter that self covers.
Need to prove, the embodiment of the invention is not limited to carry out judgment mode by PCI and/or C-RNTI, and other can judge that whether the last cell-of-origin that connects before user terminal 20 handoff failures is that the mode of the residential quarter that self covers all is suitable for the embodiment of the invention.
Because network equipment 10 allows user terminal 20 to insert, so network equipment 10 is user terminal 20 source network side apparatus or objective network side apparatus when switching, if it is not the residential quarter that self covers that network equipment 10 is determined the cell-of-origin that connects at last before user terminal 20 handoff failures, then network equipment 10 is objective network side apparatus, and the objective network side apparatus can judge further that the source network side apparatus passes the AS algorithm of coming and whether identically selects with oneself in handover request message.
Wherein mode two is with the difference of mode one: network equipment 10 does not need user terminal 20 is made a decision in the mode one, only AS algorithm sign need be got final product as the AS algorithm information, can simplify the processing behavior of network equipment 10 like this; Whether in the mode two, network equipment 10 is done a judgement to user terminal 20 earlier, select the AS algorithm to be identified as the AS algorithm information according to judged result again, can save empty overhead like this.
Mode three, with indication information as the AS algorithm information.
Network equipment 10 judges whether the last cell-of-origin that connects is the residential quarter that self covers before user terminal 20 handoff failures, if, then with first indication information as the AS algorithm information; If not, whether the AS algorithm of then further judging AS algorithm that the source network side apparatus under the cell-of-origin is determined and self selection identical, if identical, then with first indication information as the AS algorithm information, if inequality, then with second indication information as the AS algorithm information;
Accordingly, when user terminal 20 is first indication information at the AS algorithm information of receiving, will be in the cell-of-origin employed AS algorithm as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district;
When user terminal 20 is second indication information at the AS algorithm information of receiving, the RRC that receives is connected the AS algorithm of the AS algorithm sign correspondence that comprises in the reconfiguration message as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district.
Wherein, the deterministic process of mode three is identical with the deterministic process of mode two, and different is in the mode three network equipment 10 need be determined first indication information or second indication information as the AS algorithm information according to judged result.
In specific implementation process, first indication information and second indication information can be represented with 1bit, are 0 such as first indication information, and then second indication information is 1.
Because network equipment 10 allows user terminal 20 to insert, so network equipment 10 is user terminal 20 source network side apparatus or objective network side apparatus when switching, if network equipment 10 determines that the cell-of-origin that connects at last before user terminal 20 handoff failures is not the residential quarter that self covers, then network equipment 10 is objective network side apparatus.That is to say that network equipment 10 is under the situation of objective network side apparatus, just can send second indication information.
User terminal 20 is when switching, the objective network side apparatus can send the RRC that comprises AS algorithm sign by the source network side apparatus and connect reconfiguration message, so the objective network side apparatus knows all that with user terminal 20 RRC is connected the AS algorithm sign that comprises in the reconfiguration message, thereby can guarantee that the AS algorithm is synchronous between network side and the end side.
Need to prove that the embodiment of the invention is not limited to above-mentioned three kinds of modes, other can determine that according to the AS algorithm information mode of AS key is suitable for the embodiment of the invention equally by indicating user terminal 20.
As shown in Figure 3, embodiment of the invention network equipment comprises: receiver module 100 and processing module 110.
Receiver module 100 is used for receiving the RRC connection re-establishment request message that comprises the message integrity check sign indicating number from user terminal.
Processing module 110 is used for sending the RRC connection re-establishment message that comprises the AS algorithm information to user terminal when allowing user terminal to insert message integrity check sign indicating number corresponding district, is used to indicate user terminal and determines the AS key according to the AS algorithm information.
Wherein, processing module 110 comprises before the RRC connection re-establishment message of AS algorithm information to the user terminal transmission, from all AS algorithms that self supports, select priority the highest, and the AS algorithm supported of user terminal, with the AS algorithm sign of the AS algorithm correspondence selected as the AS algorithm information.
Further, processing module 110 identifies the AS algorithm of the AS algorithm correspondence of selection as before the AS algorithm information, determine that the last cell-of-origin that connects is not the residential quarter that self covers before the user terminal handoff failure, and the AS algorithm of the AS algorithm determined of the source network side apparatus under the cell-of-origin and self selection is different; What wherein network equipment will receive identifies the AS algorithm that corresponding AS algorithm is determined as the source network side apparatus from AS algorithm in the handover request message of source network side apparatus.
Wherein, processing module 110 comprises to the user terminal transmission before the RRC connection re-establishment message of AS algorithm information, and the last cell-of-origin that connects is the residential quarter that self covers before determining the user terminal handoff failure; Or the last cell-of-origin that connects is not the residential quarter that self covers before definite user terminal handoff failure, and when the AS algorithm that the source network side apparatus under the cell-of-origin is determined was identical with the AS algorithm of self selecting, the content of the AS algorithm information that comprises in the RRC connection re-establishment message was set to sky.
Processing module 110 comprises to the user terminal transmission before the RRC connection re-establishment message of AS algorithm information, and the last cell-of-origin that connects is the residential quarter that self covers before determining the user terminal handoff failure; Or the last cell-of-origin that connects is not the residential quarter that self covers before definite user terminal handoff failure, and the AS algorithm of the AS algorithm determined of the source network side apparatus under the cell-of-origin and self selection is when identical, with first indication information as the AS algorithm information.
Processing module 110 comprises before the RRC connection re-establishment message of AS algorithm information to the user terminal transmission, the last cell-of-origin that connects is not the residential quarter that self covers before determining the user terminal handoff failure, and the AS algorithm that the source network side apparatus under the cell-of-origin is determined and the AS algorithm self selected are not simultaneously, with second indication information as the AS algorithm information.
As shown in Figure 4, embodiment of the invention user terminal comprises: sending module 200 and determination module 210.
Sending module 200 is used for sending the RRC connection re-establishment request message that comprises the message integrity check sign indicating number to network equipment.
Determination module 210 is used for determining the AS key according to the AS algorithm information after the RRC connection re-establishment message that comprises the AS algorithm information that receives from network equipment.
Wherein, when determination module 210 is AS algorithm sign at the AS algorithm information of receiving, according to the corresponding AS algorithm of AS algorithm sign, determine the AS key.
Determination module 210 in the AS algorithm information content of receiving when empty, with employed AS algorithm in the cell-of-origin as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district.
When determination module 210 is first indication information at the AS algorithm information of receiving, will be in the cell-of-origin employed AS algorithm as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district.
When determination module 210 is second indication information at the AS algorithm information of receiving, the RRC that receives is connected the AS algorithm of the AS algorithm sign correspondence that comprises in the reconfiguration message as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district.
As shown in Figure 5, the embodiment of the invention determines that the method for AS key comprises the following steps:
Step 501, network equipment receive the RRC connection re-establishment request message that comprises the message integrity check sign indicating number from user terminal.
Step 502, network equipment send the RRC connection re-establishment message that comprises the AS algorithm information to user terminal when allowing user terminal to insert message integrity check sign indicating number corresponding district, be used to indicate user terminal and determine the AS key according to the AS algorithm information.
Wherein, can further include after the step 502:
AS algorithm information during step 503, user terminal disappear according to the RRC connection re-establishment of receiving is determined the AS key.
Before the step 501, user terminal needs to initiate RRC connection re-establishment process behind handoff failure, namely reselect the residential quarter that needs insert earlier, message integrity check sign indicating number with the residential quarter correspondence selected places RRC connection re-establishment request message then, sends to the network equipment under this residential quarter.
In the step 502, if the network equipment under this residential quarter is not source network side apparatus or the objective network side apparatus of user terminal when switching, then the network equipment under this residential quarter does not allow this user terminal to insert.
Network equipment judges whether to allow user terminal to insert according to following standard behind the RRC connection re-establishment request message that comprises the message integrity check sign indicating number that receives from user terminal:
If the completeness check code in the message of user terminal to send up is effectively, namely consistent with the corresponding message integrity check sign indicating number of certain Target cell, then allow user terminal to insert the Target cell of this message integrity check sign indicating number correspondence; Otherwise do not allow user terminal to insert.
In specific implementation process, message integrity check sign indicating number corresponding district is that network equipment is a residential quarter in the candidate cell immediately prepared of RRC connection reconstruction;
If network equipment is not the last source network side apparatus that connects before the user terminal handoff failure (being that network equipment is the objective network side apparatus of user terminal when switching), the objective network side apparatus with the source network side apparatus for all residential quarters of self preparation as candidate cell.
Concrete, the embodiment of the invention is owing to can guarantee that the AS algorithm is synchronous between network side and the end side, so no matter the corresponding AS algorithm of the AS algorithm that the source network side apparatus carries in handover request sign is that the objective network side apparatus is supported, the objective network side apparatus of the embodiment of the invention all is self residential quarter of preparing candidate cells during as the RRC connection reconstruction with source network side apparatus in the handover request more, and user terminal can insert these residential quarters when the RRC connection reconstruction.Do like this and can reduce the cutting off rate that the safety failure causes.
In the step 502, network equipment is after allowing user terminal to insert message integrity check sign indicating number corresponding district, also needed to determine the AS algorithm information send the RRC connection re-establishment message that comprises the AS algorithm information to user terminal before, the mode of concrete definite AS algorithm information has a variety of, enumerates several below.
Mode one, directly with AS algorithm sign as the AS algorithm information.
Network equipment selects priority the highest from all AS algorithms that self supports, and the AS algorithm supported of user terminal, with the AS algorithm sign of the AS algorithm correspondence selected as the AS algorithm information.
Wherein, concrete AS algorithm may comprise polyalgorithm as required; comprise AS protection algorithm integrallty and AS cryptographic algorithm such as the AS algorithm; then network equipment selects priority the highest from all AS protection algorithm integrallties of self supporting; and the AS protection algorithm integrallty that user terminal is supported; and from all AS cryptographic algorithm of self supporting, select priority the highest; and the AS cryptographic algorithm that user terminal is supported identifies AS integral algorithm corresponding algorithm sign and the AS cryptographic algorithm corresponding algorithm of selecting as the AS algorithm information.
Accordingly, in the step 503, user terminal is determined the AS key according to the corresponding AS algorithm of AS algorithm sign.
Wherein, the AS key may comprise a plurality of keys as required.
Comprise AS protection algorithm integrallty and AS cryptographic algorithm such as the AS algorithm, the AS key comprises RRC message integrity protection key, RRC message encryption protection key and ciphering user data protection key:
RRC message integrity protection key: K RRCint=KDF (K ENB, AS integral algorithm sign, algorithm types difference symbol);
RRC message encryption protection key: K RRCenc=KDF (K ENB, AS cryptographic algorithm sign, algorithm types difference symbol);
Ciphering user data protection key: K UPenc=KDF (K ENB, AS cryptographic algorithm sign, algorithm types difference symbol).
Because network equipment allows user terminal to insert, so network equipment is source network side apparatus or the objective network side apparatus of user terminal when switching for the first time.If the source network side apparatus of user terminal when switching for the first time, then when adhering to or the position upgrade, the algorithm that user terminal is supported oneself is placed in the NAS message tells MME, and MME tells the source network side apparatus with the algorithm of the user terminal support of receiving by the S1 interface again; If the objective network side apparatus of user terminal when switching for the first time, when X2 switches, the source network side apparatus is told the objective network side apparatus with the algorithm of user terminal support in handover request, when S1 switches, source MME tells target MME with the algorithm of user terminal support, and target MME tells the objective network side apparatus with these algorithms again.
In specific implementation process, network equipment can increase an IE and be used for carrying the AS algorithm information in RRC connection re-establishment message.
Mode one is because the timely AS algorithm between synchronizing network side and the end side, thus reduced rebuild successfully after, change because of the intra-cell that needs modification algorithm carries out, reduced cutting off rate.
Mode two, judge whether AS algorithm sign as the AS algorithm information.
Network equipment judges whether the cell-of-origin that connects at last before the user terminal handoff failure is the residential quarter that self covers, if then the content of the AS algorithm information that comprises in the RRC connection re-establishment message is set to sky; If not, judge further then whether the definite AS algorithm of the affiliated source network side apparatus in cell-of-origin is identical with the AS algorithm of self selecting, if it is identical, then the content of the AS algorithm information that comprises in the RRC connection re-establishment message is set to sky, if it is inequality, then from all AS algorithms that self supports, select priority the highest, and the AS algorithm supported of user terminal, with the AS algorithm sign of the AS algorithm correspondence selected as the AS algorithm information.
Accordingly, in the step 503, if user terminal when the AS algorithm information of receiving is AS algorithm sign, is determined the AS key according to AS algorithm sign;
If user terminal in the AS algorithm information content of receiving when empty, with employed AS algorithm in the cell-of-origin as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district.
In specific implementation process, the content of AS algorithm information is set to sky and can adopts and the AS algorithm information is not placed RRC connection re-establishment message to realize.
What wherein, network equipment will receive identifies the AS algorithm that corresponding AS algorithm is determined as the source network side apparatus from AS algorithm in the handover request message of source network side apparatus.
In specific implementation process, whether be that the residential quarter that self covers can be judged by in the following sign one or more if network equipment is judged the last cell-of-origin that connects before the user terminal handoff failure:
PCI and C-RNTI.
Concrete, user terminal is when sending RRC connection re-establishment request message, can be that the C-RNTI that user terminal distributes places RRC connection re-establishment request message with PCI and the cell-of-origin of cell-of-origin, network equipment is after receiving RRC connection re-establishment request message, checking whether PCI and/or C-RNTI are that self distributes, is the residential quarter that self covers if then determine the cell-of-origin that connects at last before the user terminal handoff failure; Otherwise, determine that the cell-of-origin that connects at last before the user terminal handoff failure is not the residential quarter that self covers.
Need to prove, the embodiment of the invention is not limited to carry out judgment mode by PCI and/or C-RNTI, and other can judge that whether the last cell-of-origin that connects before the user terminal handoff failure is that the mode of the residential quarter that self covers all is suitable for the embodiment of the invention.
Because network equipment allows user terminal to insert, so network equipment is source network side apparatus or the objective network side apparatus of user terminal when switching, if it is not the residential quarter that self covers that network equipment is determined the cell-of-origin that connects at last before the user terminal handoff failure, then network equipment is the objective network side apparatus, and the objective network side apparatus can judge further that the source network side apparatus passes the AS algorithm of coming and whether identically selects with oneself in handover request message.
Wherein mode two is with the difference of mode one: network equipment does not need user terminal is made a decision in the mode one, only AS algorithm sign need be got final product as the AS algorithm information, can simplify the processing behavior of network equipment like this; Whether in the mode two, network equipment is done a judgement to user terminal earlier, select the AS algorithm to be identified as the AS algorithm information according to judged result again, can save empty overhead like this.
Mode three, with indication information as the AS algorithm information.
Network equipment judges whether the last cell-of-origin that connects is the residential quarter that self covers before the user terminal handoff failure, if, then with first indication information as the AS algorithm information; If not, whether the AS algorithm of then further judging AS algorithm that the source network side apparatus under the cell-of-origin is determined and self selection identical, if identical, then with first indication information as the AS algorithm information, if inequality, then with second indication information as the AS algorithm information;
Accordingly, in the step 503, when user terminal is first indication information at the AS algorithm information of receiving, will be in the cell-of-origin employed AS algorithm as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district;
When user terminal is second indication information at the AS algorithm information of receiving, the RRC that receives is connected the AS algorithm of the AS algorithm sign correspondence that comprises in the reconfiguration message as inserting the AS algorithm that uses after the message integrity check sign indicating number corresponding district.
Wherein, the deterministic process of mode three is identical with the deterministic process of mode two, and different is in the mode three network equipment need be determined first indication information or second indication information as the AS algorithm information according to judged result.
In specific implementation process, first indication information and second indication information can be represented with 1bit, are 0 such as first indication information, and then second indication information is 1.
Because network equipment allows user terminal to insert, so network equipment is source network side apparatus or the objective network side apparatus of user terminal when switching, if network equipment determines that the cell-of-origin that connects at last before the user terminal handoff failure is not the residential quarter that self covers, then network equipment is the objective network side apparatus.That is to say that network equipment is under the situation of objective network side apparatus, just can send second indication information.
User terminal is when switching, the objective network side apparatus can send the RRC that comprises AS algorithm sign by the source network side apparatus and connect reconfiguration message, so the objective network side apparatus knows all that with user terminal RRC is connected the AS algorithm sign that comprises in the reconfiguration message, thereby can guarantee that the AS algorithm is synchronous between network side and the end side.
Need to prove that the embodiment of the invention is not limited to above-mentioned three kinds of modes, other can determine that according to the AS algorithm information mode of AS key is suitable for the embodiment of the invention equally by indicating user terminal.
Those skilled in the art should understand that embodiments of the invention can be provided as method, system or computer program.Therefore, the present invention can adopt complete hardware embodiment, complete software embodiment or in conjunction with the form of the embodiment of software and hardware aspect.And the present invention can adopt the form of the computer program of implementing in one or more computer-usable storage medium (including but not limited to magnetic disc store, CD-ROM, optical memory etc.) that wherein include computer usable program code.
The present invention is that reference is described according to flow chart and/or the block diagram of method, equipment (system) and the computer program of the embodiment of the invention.Should understand can be by the flow process in each flow process in computer program instructions realization flow figure and/or the block diagram and/or square frame and flow chart and/or the block diagram and/or the combination of square frame.Can provide these computer program instructions to the processor of all-purpose computer, special-purpose computer, Embedded Processor or other programmable data processing device to produce a machine, make the instruction of carrying out by the processor of computer or other programmable data processing device produce to be used for the device of the function that is implemented in flow process of flow chart or a plurality of flow process and/or square frame of block diagram or a plurality of square frame appointments.
These computer program instructions also can be stored in energy vectoring computer or the computer-readable memory of other programmable data processing device with ad hoc fashion work, make the instruction that is stored in this computer-readable memory produce the manufacture that comprises command device, this command device is implemented in the function of appointment in flow process of flow chart or a plurality of flow process and/or square frame of block diagram or a plurality of square frame.
These computer program instructions also can be loaded on computer or other programmable data processing device, make and carry out the sequence of operations step producing computer implemented processing at computer or other programmable devices, thereby be provided for being implemented in the step of the function of appointment in flow process of flow chart or a plurality of flow process and/or square frame of block diagram or a plurality of square frame in the instruction that computer or other programmable devices are carried out.
Although described the preferred embodiments of the present invention, in a single day those skilled in the art get the basic creative concept of cicada, then can make other change and modification to these embodiment.So claims are intended to all changes and the modification that are interpreted as comprising preferred embodiment and fall into the scope of the invention.
From above-described embodiment as can be seen: embodiment of the invention network equipment receives the RRC connection re-establishment request message that comprises the message integrity check sign indicating number from user terminal; Network equipment sends the RRC connection re-establishment message that comprises the AS algorithm information to user terminal when allowing user terminal to insert message integrity check sign indicating number corresponding district, be used to indicate user terminal and determine the AS key according to the AS algorithm information.
Owing to can guarantee that the AS key of user terminal use is the same with the AS key that the objective network side apparatus uses, can not rebuild success when in the residential quarter that user terminal UE reselects not being the residential quarter under the source base station yet, and not needing user terminal to carry out intra-cell changes, thereby guaranteed the fail safe between user terminal and the target BS, also reduced the cutting off rate between user terminal and the target BS; Further also improved user's experience.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also is intended to comprise these changes and modification interior.

Claims (22)

1. the method for a definite Access Layer AS key is characterized in that, this method comprises:
Network equipment receives the message integrity check sign indicating number from user terminal;
Described network equipment sends the AS algorithm information to described user terminal when allowing described user terminal to insert described message integrity check sign indicating number corresponding district, be used to indicate described user terminal and determine the AS key according to described AS algorithm information;
Described message integrity check sign indicating number corresponding district is that described network equipment is a residential quarter in the candidate cell immediately prepared of radio resource control RRC connection reconstruction; If described network equipment is not the last source network side apparatus that connects before the described user terminal handoff failure, described network equipment is that described network equipment all residential quarters of preparing are as described candidate cell with described source network side apparatus.
2. the method for claim 1 is characterized in that, described network equipment also comprised before described user terminal sends the AS algorithm information:
Described network equipment selects priority the highest from all AS algorithms of self supporting, and the AS algorithm of described user terminal support;
Described network equipment identifies the AS algorithm of the AS algorithm correspondence of selection as the AS algorithm information;
Described network equipment also comprises after sending the AS algorithm information:
Described user terminal is determined the AS key according to described AS algorithm sign.
3. method as claimed in claim 2 is characterized in that, described network equipment is selected after the AS algorithm, and the AS algorithm sign of the AS algorithm correspondence selected is also comprised as before the AS algorithm information:
Described network equipment determines that the last cell-of-origin that connects is not the residential quarter that self covers before the described user terminal handoff failure, and the AS algorithm of the AS algorithm determined of the source network side apparatus under the described cell-of-origin and self selection is different;
What wherein, described network equipment will receive identifies the AS algorithm that corresponding AS algorithm is determined as the source network side apparatus from AS algorithm in the handover request message of source network side apparatus.
4. the method for claim 1 is characterized in that, this method also comprises:
Described network equipment last cell-of-origin that connects before determining described user terminal handoff failure is the residential quarter that self covers; Or determine that the cell-of-origin that connects at last before the described user terminal handoff failure is not the residential quarter that self covers, and when the AS algorithm that the source network side apparatus under the described cell-of-origin is determined was identical with the AS algorithm of self selecting, the content of AS algorithm information was set to sky;
Described network equipment also comprises after sending the AS algorithm information:
Described user terminal in the AS algorithm information content of receiving when empty, with employed AS algorithm in the cell-of-origin as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district.
5. the method for claim 1 is characterized in that, described network equipment also comprised before described user terminal sends the AS algorithm information:
Described network equipment last cell-of-origin that connects before determining described user terminal handoff failure is the residential quarter that self covers; Or determine that the cell-of-origin that connects at last before the described user terminal handoff failure is not the residential quarter that self covers, and when the AS algorithm of the AS algorithm that the source network side apparatus under the described cell-of-origin is determined and self selection is identical, with first indication information as the AS algorithm information;
Described network equipment also comprises after sending the AS algorithm information:
Described user terminal after receiving first indication information, will be in the cell-of-origin employed AS algorithm as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district.
6. as claim 1 or 5 described methods, it is characterized in that described network equipment also comprised before described user terminal sends the AS algorithm information:
Described network equipment last cell-of-origin that connects before determining described user terminal handoff failure is not the residential quarter that self covers, and the AS algorithm that the source network side apparatus under the described cell-of-origin is determined and the AS algorithm self selected are not simultaneously, with second indication information as the AS algorithm information;
Described network equipment also comprises after sending the AS algorithm information:
Described user terminal is after receiving second indication information, and the AS algorithm that AS algorithm sign is corresponding is as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district.
7. as the described method of the arbitrary claim of claim 1~5, it is characterized in that described message integrity check sign indicating number carries by RRC connection re-establishment request message;
Described AS algorithm information is by RRC connection re-establishment message bearing.
8. the system of a definite Access Layer AS key is characterized in that, this system comprises:
Network equipment be used for to receive the message integrity check sign indicating number from user terminal, and when allowing described user terminal to insert described message integrity check sign indicating number corresponding district, sends the AS algorithm information to described user terminal; Described message integrity check sign indicating number corresponding district is that described network equipment is a residential quarter in the candidate cell immediately prepared of radio resource control RRC connection reconstruction; Described network equipment is used for, and before described network equipment is not described user terminal handoff failure during the last source network side apparatus that connects, is that described network equipment all residential quarters of preparing are as described candidate cell with described source network side apparatus;
User terminal is used for determining the AS key according to described AS algorithm information.
9. system as claimed in claim 8 is characterized in that, described network equipment also is used for:
From all AS algorithms that self supports, select priority the highest, and the AS algorithm supported of described user terminal, with the AS algorithm sign of the AS algorithm correspondence selected as the AS algorithm information;
Described user terminal is used for:
Determine the AS key according to described AS algorithm sign.
10. system as claimed in claim 9 is characterized in that, described network equipment also is used for:
With the AS algorithm sign of the AS algorithm correspondence selected as before the AS algorithm information, determine that the last cell-of-origin that connects is not the residential quarter that self covers before the described user terminal handoff failure, and the AS algorithm of the AS algorithm determined of the source network side apparatus under the described cell-of-origin and self selection is different;
What wherein, described network equipment will receive identifies the AS algorithm that corresponding AS algorithm is determined as the source network side apparatus from AS algorithm in the handover request message of source network side apparatus.
11. system as claimed in claim 8 is characterized in that, described network equipment also is used for:
The last cell-of-origin that connects is the residential quarter that self covers before determining described user terminal handoff failure; Or determine that the cell-of-origin that connects at last before the described user terminal handoff failure is not the residential quarter that self covers, and when the AS algorithm that the source network side apparatus under the described cell-of-origin is determined was identical with the AS algorithm of self selecting, the content of AS algorithm information was set to sky;
Described user terminal is used for:
In the AS algorithm information content of receiving when empty, with employed AS algorithm in the cell-of-origin as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district.
12. system as claimed in claim 8 is characterized in that, described network equipment also is used for:
The last cell-of-origin that connects is the residential quarter that self covers before determining described user terminal handoff failure; Or determine that the cell-of-origin that connects at last before the described user terminal handoff failure is not the residential quarter that self covers, and when the AS algorithm of the AS algorithm that the source network side apparatus under the described cell-of-origin is determined and self selection is identical, with first indication information as the AS algorithm information;
Described user terminal is used for:
After receiving first indication information, will be in the cell-of-origin employed AS algorithm as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district.
13. as claim 8 or 12 described systems, it is characterized in that described network equipment also is used for:
The last cell-of-origin that connects is not the residential quarter that self covers before determining described user terminal handoff failure, and the AS algorithm that the source network side apparatus under the described cell-of-origin is determined and the AS algorithm self selected are not simultaneously, with second indication information as the AS algorithm information;
Described user terminal is used for:
After receiving second indication information, the AS algorithm that AS algorithm sign is corresponding is as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district.
14. a network equipment is characterized in that, this network measurement equipment comprises:
Receiver module is used for receiving the message integrity check sign indicating number from user terminal;
Processing module is used for sending Access Layer AS algorithm information to described user terminal when allowing described user terminal to insert described message integrity check sign indicating number corresponding district, is used to indicate described user terminal and determines the AS key according to described AS algorithm information; Described message integrity check sign indicating number corresponding district is that described network equipment is a residential quarter in the candidate cell immediately prepared of radio resource control RRC connection reconstruction;
Described processing module is used for, and before described network equipment is not described user terminal handoff failure during the last source network side apparatus that connects, is that described network equipment all residential quarters of preparing are as described candidate cell with described source network side apparatus.
15. network equipment as claimed in claim 14 is characterized in that, described processing module also is used for:
From all AS algorithms that self supports, select priority the highest, and the AS algorithm supported of described user terminal, with the AS algorithm sign of the AS algorithm correspondence selected as the AS algorithm information.
16. network equipment as claimed in claim 15 is characterized in that, described processing module also is used for:
With the AS algorithm sign of the AS algorithm correspondence selected as before the AS algorithm information, determine that the last cell-of-origin that connects is not the residential quarter that self covers before the described user terminal handoff failure, and the AS algorithm of the AS algorithm determined of the source network side apparatus under the described cell-of-origin and self selection is different;
What wherein, described network equipment will receive identifies the AS algorithm that corresponding AS algorithm is determined as the source network side apparatus from AS algorithm in the handover request message of source network side apparatus.
17. network equipment as claimed in claim 14 is characterized in that, described processing module also is used for:
The last cell-of-origin that connects is the residential quarter that self covers before determining described user terminal handoff failure; Or determine that the cell-of-origin that connects at last before the described user terminal handoff failure is not the residential quarter that self covers, and when the AS algorithm that the source network side apparatus under the described cell-of-origin is determined was identical with the AS algorithm of self selecting, the content of the AS algorithm information that comprises in the RRC connection re-establishment message was set to sky.
18. network equipment as claimed in claim 14 is characterized in that, described processing module also is used for:
The last cell-of-origin that connects is the residential quarter that self covers before determining described user terminal handoff failure; Or determine that the cell-of-origin that connects at last before the described user terminal handoff failure is not the residential quarter that self covers, and when the AS algorithm of the AS algorithm that the source network side apparatus under the described cell-of-origin is determined and self selection is identical, with first indication information as the AS algorithm information;
The last cell-of-origin that connects is not the residential quarter that self covers before determining described user terminal handoff failure, and the AS algorithm that the source network side apparatus under the described cell-of-origin is determined and the AS algorithm self selected are not simultaneously, with second indication information as the AS algorithm information.
19. a user terminal is characterized in that, this user terminal comprises:
Sending module is used for sending the message integrity check sign indicating number to network equipment;
Determination module is used for determining the AS key according to described AS algorithm information behind the Access Layer AS algorithm information that receives from described network equipment; Described AS algorithm information is described network equipment when allowing described user terminal to insert described message integrity check sign indicating number corresponding district, sends to described user terminal; Described message integrity check sign indicating number corresponding district is that described network equipment is a residential quarter in the candidate cell immediately prepared of radio resource control RRC connection reconstruction, and during the source network side apparatus that connected at last before described network equipment is not described user terminal handoff failure, described candidate cell is that described source network side apparatus is all residential quarters that described network equipment is prepared.
20. user terminal as claimed in claim 19 is characterized in that, described determination module is used for:
When the described AS algorithm information of receiving is AS algorithm sign, determine the AS key according to described AS algorithm sign.
21. as claim 19 or 20 described user terminals, it is characterized in that described determination module is used for:
In the AS algorithm information content of receiving when empty, with employed AS algorithm in the cell-of-origin as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district.
22. user terminal as claimed in claim 19 is characterized in that, described determination module is used for:
When the AS algorithm information of receiving is first indication information, will be in the cell-of-origin employed AS algorithm as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district;
When the AS algorithm information of receiving is second indication information, will receive that the corresponding AS algorithm of AS algorithm sign is as inserting the AS algorithm that uses after the described message integrity check sign indicating number corresponding district.
CN200910238670.6A 2009-11-30 2009-11-30 Method, system and equipment for confirming AS key Active CN102083063B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN200910238670.6A CN102083063B (en) 2009-11-30 2009-11-30 Method, system and equipment for confirming AS key

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN200910238670.6A CN102083063B (en) 2009-11-30 2009-11-30 Method, system and equipment for confirming AS key

Publications (2)

Publication Number Publication Date
CN102083063A CN102083063A (en) 2011-06-01
CN102083063B true CN102083063B (en) 2013-07-10

Family

ID=44088778

Family Applications (1)

Application Number Title Priority Date Filing Date
CN200910238670.6A Active CN102083063B (en) 2009-11-30 2009-11-30 Method, system and equipment for confirming AS key

Country Status (1)

Country Link
CN (1) CN102083063B (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103379663B (en) * 2012-04-24 2017-02-08 中兴通讯股份有限公司 Method and system for rebuilding connection
CN102769849A (en) * 2012-07-25 2012-11-07 中兴通讯股份有限公司 Message sending method and device
CN109729524B (en) * 2017-10-31 2021-11-19 华为技术有限公司 RRC (radio resource control) connection recovery method and device
CN110149630A (en) * 2018-02-11 2019-08-20 华为技术有限公司 A kind of negotiation of security algorithm, sending method and device
CN114079920B (en) * 2020-08-11 2023-01-20 大唐移动通信设备有限公司 Access network security processing method, device, apparatus and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1708005A (en) * 2004-06-04 2005-12-14 中兴通讯股份有限公司 Method for selecting encrypted algorithm in radio communication system
CN101242630A (en) * 2007-02-05 2008-08-13 华为技术有限公司 Method, device and network system for secure algorithm negotiation
CN101500279A (en) * 2008-02-03 2009-08-05 中兴通讯股份有限公司 Wireless link recovery method

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ATE322138T1 (en) * 2004-01-20 2006-04-15 Stack Ltd DEVICE AND METHOD FOR PERFORMING MEASUREMENTS IN A SUBSCRIBER TERMINAL OF A UNIVERSAL MOBILE TELECOMMUNICATIONS SYSTEM (UMTS)

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1708005A (en) * 2004-06-04 2005-12-14 中兴通讯股份有限公司 Method for selecting encrypted algorithm in radio communication system
CN101242630A (en) * 2007-02-05 2008-08-13 华为技术有限公司 Method, device and network system for secure algorithm negotiation
CN101500279A (en) * 2008-02-03 2009-08-05 中兴通讯股份有限公司 Wireless link recovery method

Also Published As

Publication number Publication date
CN102083063A (en) 2011-06-01

Similar Documents

Publication Publication Date Title
CN106105368B (en) Dual link network
RU2517410C2 (en) Key derivation method, apparatus and system
CN104581843B (en) For the processing delivering method and its communication device of the network-side of wireless communication system
KR101147067B1 (en) Method, apparatus and system for key derivation
CN101610506B (en) Method and device for preventing network safety from desynchronizing
CN102137400B (en) Safety treatment method and system when re-establishing RRC (radio resource control) connection
CN103178938B (en) Signaling optimization processing method, equipment and system
CN111757557A (en) Method for supporting access to closed network, UE, base station and readable storage medium
CN106817696B (en) Apparatus and method for processing data transmission/reception for dual connection
KR20160113282A (en) Security password changing method, base station, and user equipment
CN102223632B (en) A kind of Access Layer security algorithm synchronous method and system
CN104918242B (en) Slave base station key updating method, slave base station, terminal and communication system
CN103888936B (en) Cell optimization method and device
CN102215545B (en) Method and device for re-establishing return link in relay network
CN103546989B (en) A kind of method and apparatus setting up wireless heterogeneous networks connection
CN102083063B (en) Method, system and equipment for confirming AS key
CN104604271A (en) Communication method, network side device, and user equipment
CN102572816B (en) Method and device for mobile switching
CN102469536A (en) Method for reporting type information, method for determining type of relay node (RN), system and equipment
CN108377518B (en) Connection reestablishment method and device and electronic equipment
CN103379564A (en) Intra-cell handover method and device
CN102917350B (en) Enable the method for safe key, access network node, subscriber equipment and system
CN109548191B (en) RRC connection reestablishment method, RRC connection recovery method, computer-readable storage medium, and base station
CN102892160A (en) Selecting Method, device and system for rebuilding cells in LTE (long term evolution) system
CN102149127B (en) Method, system and device for determining measurement objects

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CP01 Change in the name or title of a patent holder

Address after: 100191 No. 40, Haidian District, Beijing, Xueyuan Road

Patentee after: CHINA ACADEMY OF TELECOMMUNICATIONS TECHNOLOGY

Address before: 100191 No. 40, Haidian District, Beijing, Xueyuan Road

Patentee before: CHINA ACADEMY OF TELECOMMUNICATIONS TECHNOLOGY

CP01 Change in the name or title of a patent holder
TR01 Transfer of patent right

Effective date of registration: 20210623

Address after: 100085 1st floor, building 1, yard 5, Shangdi East Road, Haidian District, Beijing

Patentee after: DATANG MOBILE COMMUNICATIONS EQUIPMENT Co.,Ltd.

Address before: 100191 No. 40, Haidian District, Beijing, Xueyuan Road

Patentee before: CHINA ACADEMY OF TELECOMMUNICATIONS TECHNOLOGY

TR01 Transfer of patent right