Method, System and Apparatus for Implementing Data Service Security in Mobile Communication System
First Claim
1. A method for implementing data service security in a mobile communication system, comprising:
- obtaining security-relevant configuration information of a user terminal;
determining a security policy for the user terminal based on the security-relevant configuration information of the user terminal and security policy information stored, and sending the security policy determined to a packet service support node and/or the user terminal;
upon the receipt of the security policy, implementing, by the packet service support node and/or the user terminal, a control process based on the security policy.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for implementing data service security in a mobile communication system includes: obtaining security condition of a user terminal based on security-relevant configuration information reported by the user terminal; determining a security policy for the user terminal based on the security-relevant configuration information of the user terminal and security policy information stored, and sending the security policy determined to a packet service support node and/or the user terminal; implementing, by the packet service support node and/or the user terminal, a control process based on the security policy. The method, system and apparatus provided by the embodiments of the present invention introduce a security mechanism cooperated by the mobile communication network and a user terminal to effectively prevent the mobile communication network against viruses.
-
Citations
19 Claims
-
1. A method for implementing data service security in a mobile communication system, comprising:
-
obtaining security-relevant configuration information of a user terminal;
determining a security policy for the user terminal based on the security-relevant configuration information of the user terminal and security policy information stored, and sending the security policy determined to a packet service support node and/or the user terminal;
upon the receipt of the security policy, implementing, by the packet service support node and/or the user terminal, a control process based on the security policy. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for implementing data service security in a mobile communication system, comprising:
-
a packet service support node;
a user terminal, communicating with the packet service support node through the mobile communication network;
a policy service entity, connected to the packet service support node, and configured to obtain security-relevant configuration information of the user terminal, determine a security policy for the user terminal and distribute the security policy to the packet service support node and/or the user terminal. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
-
17. An apparatus for implementing data service security in a mobile communication system, comprising:
-
a security information obtaining module, configured to communicate with a user terminal, obtain security-relevant configuration information of the user terminal and send the security-relevant configuration information obtained to a security policy determination module;
the security policy determination module, configured to determine a security policy according to the security-relevant configuration information and security policy information stored in a security policy storage module, and send the security policy determined to a security policy distribution module;
the security policy storage module, configured to store the security policy information;
the security policy distribution module, configured to send the security policy received to a designated network entity. - View Dependent Claims (18, 19)
-
Specification