ACCESS CONTROL IN A MOBILE COMMUNICATION SYSTEM
1 Assignment
0 Petitions
Accused Products
Abstract
A method and radio network controller (RNC) in a radio access network (RAN) for controlling access to a cellular telecommunication system. Upon receiving an access request from a given user equipment (UE) through a given radio base station (RBS), the RNC retrieves authorization information from an access control database within the RAN. The authorization information indicates whether the given UE is authorized to access the system through the given RBS. The RNC alternatively grants access or denies access to the UE based on the retrieved authorization information. The RBS is particularly useful for controlling access through small cells with limited capacity.
-
Citations
43 Claims
-
1-21. -21. (canceled)
-
22. A method of controlling access in a cellular telecommunication system having a radio access network (RAN) in communication with a core network (CN), said method comprising:
-
implementing access logic within the RAN for determining whether a given mobile user equipment (UE) is authorized to access the CN through a given radio base station (RBS); implementing an access control database within the RAN, said database associating RBS identifiers with International Mobile Subscriber Identities (IMSIs) of UEs authorized to access the CN through associated RBSs; receiving by the RAN, a Location Update Request message from the given UE, said Location Update Request message including a Temporary Mobile Subscriber Identity (TMSI) assigned to the UE; in response to receiving the Location Update Request message, triggering an Identification procedure in which the RAN requests the given UE to send the given UE'"'"'s International Mobile Subscriber Identity (IMSI) to the RAN; receiving by the RAN, an uplink message from the given UE with the given UE'"'"'s IMSI, wherein the uplink message includes a next uplink message sequence number from the given UE; determining by the access logic in the RAN, whether the given UE'"'"'s IMSI is associated with the given RBS'"'"'s identifier in the access control database; alternatively granting or denying the given UE access to the CN based on a determination by the access logic in the RAN; and when the UE is granted access to the CN, correcting by the RAN, uplink message sequence numbers between the given UE and the CN to provide uplink sequence numbers expected by the CN. - View Dependent Claims (23, 24, 25, 26, 27, 28)
-
-
29. An apparatus for controlling access in a cellular telecommunication system having a radio access network (RAN) in communication with a core network (CN), said apparatus comprising:
-
access logic within the RAN configured to determine whether a given mobile user equipment (UE) is authorized to access the CN through a given radio base station (RBS); an access control database within the RAN for associating RBS identifiers with International Mobile Subscriber Identities (IMSIs) of UEs authorized to access the CN through associated RBSs; a radio link between the RAN and the given UE for receiving a Location Update Request message from the given UE, said Location Update Request message including a Temporary Mobile Subscriber Identity (TMSI) assigned to the UE; wherein in response to receiving the Location Update Request message, the access logic is configured to trigger an Identification procedure in which the RAN requests the given UE to send the given UE'"'"'s International Mobile Subscriber Identity (IMSI) to the RAN; wherein the radio link is configured to receive an uplink message from the given UE with the given UE'"'"'s IMSI, the uplink message including a next uplink message sequence number from the given UE; wherein in response to receiving the given UE'"'"'s IMSI, the access logic in the RAN is configured to determine whether the given UE'"'"'s IMSI is associated with the given RBS'"'"'s identifier in the access control database, and to alternatively grant or deny the given UE access to the CN based on a resulting determination; and wherein when the UE is granted access to the CN, the access logic in the RAN is configured to correct uplink message sequence numbers between the given UE and the CN to provide uplink sequence numbers expected by the CN. - View Dependent Claims (30, 31, 32, 33, 34, 35, 36)
-
-
37. In a radio access network (RAN), a RAN-based access control node for controlling access to a core network (CN) in communication with the RAN, said RAN-based access control node comprising:
-
a first communication link for receiving from a given mobile user equipment (UE) through a given radio base station (RBS), an access request to access the CN, the access request including a Temporary Mobile Subscriber Identity (TMSI) assigned to the UE; access logic, responsive to receiving the access request, configured to trigger an Identification procedure in which the RAN requests the given UE to send the given UE'"'"'s International Mobile Subscriber Identity (IMSI) and the RAN receives the given UE'"'"'s IMSI in an uplink message that includes a next uplink message sequence number from the given UE; wherein the access logic, responsive to receiving the given UE'"'"'s IMSI, is configured to retrieve authorization information from an access control database within the RAN, the database associating RBS identifiers with IMSIs of UEs authorized to access the CN through associated RBSs; wherein the access logic is configured to alternatively grant or deny the given UE access to the CN based on the retrieved authorization information; and a second communication link for forwarding the access request to the CN, responsive to authorization information that indicates the given UE is authorized to access the system through the given RBS, wherein the access logic is configured to decrease the sequence numbers of subsequent uplink messages from the given UE to the CN in order to synchronize the sequence numbers of uplink messages sent over the second communication link with sequence numbers expected by the CN. - View Dependent Claims (38, 39)
-
-
40. In a radio access network (RAN) in a cellular telecommunication system, a RAN-based access control node for controlling access to a core network (CN) in communication with the RAN, wherein the cellular telecommunication system includes macrocells and smaller femtocells, said RAN-based access control node comprising:
-
first access logic configured to control access to the CN through the macrocells, wherein access requests are forwarded to the CN for access decisions; and second access logic configured to control access to the CN through the femtocells, wherein access decisions are made in the RAN-based access control node, the second access logic being configured to; receive an access request to access the CN from a given mobile user equipment (UE) through a given radio base station (RBS), said access request including a Temporary Mobile Subscriber Identity (TMST) assigned to the given UE; trigger an Identification procedure in response to receiving the access request, wherein the RAN requests the given UE to send the given UE'"'"'s International Mobile Subscriber Identity (IMSI), and the RAN receives the given UE'"'"'s IMSI in an uplink message that includes a next uplink message sequence number from the given UE; retrieve authorization information from an access control database within the RAN in response to receiving the given UE'"'"'s IMSI, the database associating RBS identifiers with International Mobile Subscriber Identities (IMSIs) of UEs authorized to access the CN through associated RBSs; alternatively grant or deny the given UE access to the CN based on the retrieved authorization information; and forward the access request to the CN, responsive to authorization information that indicates the given UE is authorized to access the system through the given RBS, wherein the second access logic is configured to decrease the sequence numbers of subsequent uplink messages from the given UE to the CN in order to synchronize the sequence numbers with sequence numbers expected by the CN. - View Dependent Claims (41, 42, 43)
-
Specification