Method and system for safely accessing femtocell into network

A home base station gateway and home base station technology, applied in security devices, user identity/authority verification, electrical components, etc., can solve HomeeNodeB security issues and other issues, and achieve the effect of reducing the number of hops

Inactive Publication Date: 2010-03-17
ZTE CORP
View PDF0 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In the above scenario, the Home eNodeB does not belong to the operator, and the security of the Home eNodeB becomes a problem

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for safely accessing femtocell into network
  • Method and system for safely accessing femtocell into network
  • Method and system for safely accessing femtocell into network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0057] figure 2 It is the flow chart of Home eNodeB authentication and registration. When the Home eNodeB accesses the network for the first time, the Home eNodeB Gateway authenticates it and establishes an IPSec security association with it. After completing the establishment of the IPSec security association, the Home eNodeB initiates a registration process to the Home eNodeB Gateway. The implementation between the AAA server and the HSS does not affect the present invention. Therefore, in this embodiment, the AAA server and the HSS are placed in the same entity, and this embodiment does not describe in detail the implementation of the interface between the AAA server and the HSS. Each step is described in detail as follows:

[0058] 402 When the Home eNodeB accesses the network for the first time (for example, when it is powered on or restarted), the Home eNodeB selects an appropriate Home eNodeB Gateway according to the configuration or DNS resolution. The Home eNodeB ...

Embodiment 2

[0062] image 3 It is a flow chart of UE initial registration. During the UE registration process, the Home eNodeB Gateway will select an MME for the UE and generate a user plane security association. The HomeeNodeB Gateway will send the user plane root key to the MME, and the MME will generate a user plane security association based on the user plane root key, and send It is distributed to Home eNodeB and ServingGateway.

[0063] In this flowchart, the user plane security association is piggybacked to the HomeeNodeB through the S1-AP message, and piggybacked to the Serving Gateway through the Create Bearer Request message.

[0064] The detailed process of embodiment two is described as follows:

[0065] 602 The UE sends an attach request message to the Home eNodeB, and the attach request message is transmitted through an RRC (Radio Resource Control, radio resource control) message.

[0066] 604 The Home eNodeB sends the attach request message to the Home eNodeB Gateway thr...

Embodiment 3

[0084] Figure 4 It is a flow chart of the MME updating the user plane security association. This process is applicable to user plane security at the UE level and user plane security at the network element level. The flow chart is detailed as follows:

[0085] 802 The MME decides that the user plane security association needs to be updated. For example, the MME receives a user plane root key update request from the Home eNodeB Gateway. The MME generates a new user plane encryption key according to the user plane root key. The MME can decide whether to change other parameters in the SA, such as the security algorithm, etc. as required. The MME generates a new user plane security association.

[0086] 804 The MME sends the new user plane security association to the Home eNodeB.

[0087] 806 The Home eNodeB generates a new user plane policy library and a user plane security association library according to the received new user plane security association and the existing user ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention aims at providing a method for safely accessing a femtocell into a network, wherein the method is applied in the network comprising a femtocell gateway and an evolutionary packet systemEPS and comprises the following steps: accessing the femtocell into the network, carrying out access authentication on the femtocell by the femtocell gateway, generating femtocell secret key information in the authentication process and transmitting the femtocell secret key information into an MME; generating a user-interface security alliance between the femtocell and a service gateway accordingto the femtocell secret key information by the MME, and transmitting the user-interface security alliance into the femtocell and the service gateway; and accessing the femtocell into the service gateway by utilizing the user-interface security alliance. The invention also provides a system for safely accessing the femtocell into the network. By adopting the method, the femtocell is ensured to access into the network safely, and meanwhile, the hop count of the user interface is reduced.

Description

technical field [0001] The present invention relates to the communication field, and in particular, the present invention relates to a method and system for a home base station to securely access a network. Background technique [0002] 3GPP Evolved Packet System (EPS, Evolved Packet System) consists of Evolved UTRAN (E-UTRAN, Evolved Universal Terrestrial Radio Access Network, Evolved Terrestrial Radio Access Network), MME (Mobility Management Entity), S-GW (Serving Gateway, Serving Gateway), PDNGW (P-GW, Packet Data Network GateWay, data network gateway), and other supporting nodes. Among them, MME is responsible for mobility management, non-access stratum signaling processing, user mobility management context management and other control plane related work; S-GW is an access gateway device connected to E-UTRAN, between E-UTRAN and PDN The GWs forward data and are responsible for caching the paging waiting data. The P-GW is the border gateway between the 3GPP Evolved Pac...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04W12/06H04L9/32H04W12/08
Inventor 宗在峰王卫斌刘霖方敏朱进国
Owner ZTE CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap