Access control method and related device

By introducing security management functions and configuring access permission keys and data packet formats, the problem of data security in wireless communication is solved, secure access control of data packets is realized, and transmission performance and security are improved.

CN115603927BActive Publication Date: 2026-07-10CHINA MOBILE COMM LTD RES INST +1

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
CHINA MOBILE COMM LTD RES INST
Filing Date
2021-07-07
Publication Date
2026-07-10

AI Technical Summary

Technical Problem

In wireless communication, due to the instability of wireless links, the transmission control protocol layer may misjudge congestion, leading to unnecessary congestion control mechanisms, affecting transmission performance, and making it difficult to effectively protect data security in a flat network architecture.

Method used

By introducing security management functions, and configuring access permission keys and packet format modifications, only authorized network functions are allowed to perform corresponding read and write operations on packets, thus ensuring data security.

Benefits of technology

This effectively prevents unauthorized access to data by either trusted or untrusted network functions, ensuring data security and transmission performance.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN115603927B_ABST
    Figure CN115603927B_ABST
Patent Text Reader

Abstract

An access control method and related device, the method comprising: a security management function receiving a first configuration request message sent by a user plane management function, the first configuration request message being used to request configuration of access rights of a first service / first service instance on a first processing link to data packets on the first processing link; the security management function determining first access rights of the first service / first service instance to the data packets on the first processing link, and sending configuration information of the first access rights to a first node, the first node being a node on which the first service / first service instance is deployed. The present application can avoid data information being obtained by an untrusted network function or being obtained by a trusted network function for illegal purposes, effectively ensuring the security of data.
Need to check novelty before this filing date? Find Prior Art