Patent Grant
11196776
This invention is directed to proximity services. More particularly, the invention relates to User Entities, UE's, systems and methods where UEs do direct communication UE to UE by using a radio channel based on Long term evolution, LTE, technology.
3GPP specifies from Release 12, the functionality called Proximity Services, ProSe. This functionality includes methods for the User entities, UEs, to do direct communication from UE to UE by using a new radio channel based on LTE technology. For Public Safety (PS) users, it is allowed for two UEs to communicate directly between each other when there is no network coverage, i.e. when there is no radio base station in reach.
Proximity Services (ProSe) are services that can be provided by the 3GPP system based on UEs being in proximity to each other.
The 3GPP system enablers for ProSe include the following functions:
When one of the Public Safety, PS UEs is within the coverage of an eNodeB radio base station and the other Public Safety, PS, UE is out of radio coverage from the NW, the first UE may act as a relay station between the out-of-coverage UE and the eNodeB. In this way the out-of-coverage UE will be able to communicate towards the PLMN without being in direct radio contact with a base station.
In the following, the out-of-coverage UE using a relaying UE for communicating towards the PLMN will be called the Remote UE. And the relaying UE will be called the UE-to-NW Relay UE.
The Lawful Interception, LI, method in 3GPP EPS (Evolved Packet System) systems is however only specified for intercept on non-ProSe enabled UEs, c.f. 3GPP TS 33.107 V12.11.0 (2015-06). It consists of an Evolved Packet Core, EPC, external entity called the Administration Function, ADMF.
The Lawful Interception, LI, method in 3GPP EPS systems is specified for intercept on non-ProSe enabled UEs. It consists of an Evolved Packet Core, EPC, external entity called the Administration Function, ADMF.
AMDF can interface the EPC nodes and send requests towards the EPC nodes on an interface called the X1_1 interface in order to activate LI. It is activated for certain user identified by identities, e.g. International Mobile Subscriber Identity, IMSI, Mobile Station International Subscriber Directory Number, MSDISDN, or International Mobile Equipment Identity, IMEI. The EPC nodes reports LI information such as control information and/or user data payload on the X2 and X3 interfaces towards the EPC external LI system.
It is object of the invention to be able to perform Lawful Intercept, LI, on UEs in a Proximity Services, ProSe, enabled Evolved Packet System, EPS.
This object has been accomplished by a method for a system comprising a remote User Entity, UE, being connected to a relay UE, the system moreover comprising, a Mobility Management Entity, MME, serving the relay UE and a Gateway, GW.
The method comprises the steps of
According to a further aspect there is provided a method for a User Entity, UE, acting as a relay UE for a remote UE. The method comprises
According to a still further aspect there is set forth a method for Mobility Management Entity, MME, serving a User Entity, UE, which is acting as a relay UE for a remote UE, the method comprising
The object above has further been accomplished by a system comprising a remote UE being connected to a relay UE, the system moreover comprising, a MME serving the relay UE and a GW, the system being adapted for
It is noted that the definition of the ProSe enabled EPS as of current 3GPP Rel. 13 specifications does not provide the basic functionality for enabling LI.
Further objects and advantages will appear from the following detailed description of embodiments of the invention.
According to an embodiment of the invention there is provided a method for performing LI on ProSe enabled Remote UEs consists of two phases:
The ADMF receives a request from an external authority to do LI on a particular IMSI identifying a subscriber. If the intercepted subscriber is using a UE currently acting as a Remote UE, the ADMF needs to get to know:
A first embodiment is shown in
Phase 1: The ADMF seeks to perform LI on a given UE. In the following examples the LI concerns the remote UE with an International Mobile Subscription Identity, IMSI, denoted IMSI_1. In order for the ADMF to carry oy the LI, a certain information exchange take place:
11. the Relay UE starts to provide proximity service to a Remote UE as a UE-to-NW (Network) Relay.
12, the Relay UE shall report the Remote UE IMSI (IMSI_1) and IP address information of the remote UE to the MME serving the Relay UE.
13 The MME extracts the Mobile National Code, MNC, and the Mobile Country Code, MCC, from the IMSI (IMSI_1) of the remote UE.
14. The Relay UE MME updates in an Update Record message having the Remote UE ID (value IMSI_1) as key, the HSS of the Remote UE with the Relay UE ID (IMSI_2) and the MME ID serving the Relay UE. An existing message such as the Update Location Request message from MME to HSS, or a new message, may be used. The information is used to update a record in the HSS with the remote UE ID as key. Additional information may be included in this message 14. For instance, all the data shown RECORD in
It is noted that this requires that the Remote and Relay UEs operators have a roaming agreement.
The procedure is undertaken for a large portion of UE's as it cannot be known which particular UE's will be subject to LI.
Phase 2: Later on, when a LI event is triggered, 15 in the ADMF for a given UE (here IMSI_1 as example), the following is carried out:
21. ADMF requests the HSS of the intercepted subscriber using the Remote UE IMSI and the ADMF to get the Record of the Remote UE identifying the Relay UE ID and the MME ID of the Relay UE.
22. The HSS transmits a response back to the ADMF including the Record of the remote UE (in a database entry, the key is IMSI_1).
23a. The ADMF request an update from the MME serving the Relay UE.
23. The Relay UE MME can optionally provide missing entries in the record such as GW-ID (or APN) of the Relay UE to the ADMF. The Relay UE MME can also provide to the ADMF, IMSI of the Relay UE (IMSI_2) currently serving the Remote UE (and also the remote UE IP address) and security credentials for the Relay UE.
24. The ADMF triggers the GW of the Relay UE to intercept the data payload of the Relay UE identified by its IMSI, IMSI_2.
25. All Relay UE traffic (IMSI_2) is reported to Delivery Function 3. This traffic may include traffic for IMSI_1 and IMSI_2.
26. ADMF instructs the Delivery Function 3 to extract the remote UE traffic based on the IP address of the remote UE (IMSI_1) based on the IP address of the Remote UE.
It is noted that if more than one Remote UE is using the same Relay UE, the payload for all these Remote UEs may be reported by the GW, and it will be necessary to extract the payload of the UE triggering the intercept. This can be done in the external LI node after reporting, by using the IP address. It would also be possible for the GW of the Relay UE to extract the remote UE traffic itself and send this to the Delivery Function 3 even if it makes GW more complex (see below).
In
The Record in the HSS of the remote UE contains with Key IMSI_1:
Also all information may be included in message 14.
The method above depends on that the LI system correlates the MME data with existing GW user plane data. An alternative method according to the invention is to transfer the information from the MME to GWs for the GW triggered events, i.e. that the MME sends the information correlating the Remote UE ID with the Relay UE ID to the S-GW and the P-GW (this would be sent in additional messages 15 (from MME to S-GW) and 16 (from S-GW to P-GW) at the end of phase 1 as described above). The LI system can trigger the LI in the GW by using the Remote UE ID (IMSI 1) as identifier, and it is up to the GW to find out which is the corresponding Relay UE, which PDN connection shall be intercepted and reported.
An alternative implementation of the storing of the relation between the Remote UE ID and the Relay UE ID would be in the ProSe Function (PF) where the ADMF could get the relation between the two.
In
In this embodiment, after message 14, the Gateway, GW, is notified by the MME of message 14a containing IMSI_1; the IMSI_2; the IP address of the remote UE; the security credentials for the Relay UE.
Later, in step 27, following the intercept message 24 from ADMF (containing IMSI_1), the Gateway extracts the Remote UE data using the IP address of the Remote UE and reports all UE traffic to Delivery Function 3 concerning IMSI_1. Thereby, the ADMF action 26 can be avoided.
In this embodiment, message 23 is optional.
As mentioned in connection with
It is noted that the remote UE may have a dual MME registration in the HSS. First, in a MME where it was registered before connecting to the Relay UE; and also to the MME of the Relay UE as described here. With specific parameter names in the HSS for the two registered MMEs, this can avoid any confusion with having two MME registrations.
The UE comprises a processor PCU_U, a memory MEM_U, the processor PCU_U being configured to carry out instructions contained in the memory MEM_U, and an interface IF_U though which the UE communicates. The instructions reflect the method or method steps described above.
The HSS comprises a processor PCU_H, a memory MEM_H, the processor PCU_H being configured to carry out instructions contained in the memory MEM_H, and an interface IF_H though which the HSS communicates. The instructions contained in the memory MEM_H reflect the method or method steps described above. The memory MEM_H moreover comprises a database concerning data described above.
The MME comprises a processor PCU_M, a memory MEM_M, the processor PCU_M being configured to carry out instructions contained in the memory MEM_M, and an interface IF_U though which the MME communicates. The instructions reflect the method or method steps described above. The memory MEM_M moreover comprises a database concerning data described above.
The ADMF comprises a processor PCU_A, a memory MEM_A, the processor PCU_A being configured to carry out instructions contained in the memory MEM_U, and an interface IF_A though which the ADMF communicates. The instructions reflect the method or method steps described above. The memory MEM_A moreover comprises a database concerning data described above.
The GW comprises a processor PCU_G, a memory MEM_G, the processor PCU_G being configured to carry out instructions contained in the memory MEM_G, and an interface IF_G though which the GW communicates. The instructions reflect the method or method steps described above. The memory MEM_G moreover comprises a database concerning data described above.
To summarize, according to embodiments of the invention there is provided:
A method for a system comprising a remote User Entity, UE, being connected to a relay UE, the system moreover comprising, a Mobility Management Entity, MME, serving the relay UE and a Gateway, GW.
The method comprises the steps of
The system moreover may moreover comprise a Home Subscriber Server, HSS, of the remote UE, an Administration Function, ADMF, and a Delivery Function 3, and the method may further comprise
There is also provided a method for a User Entity, UE, acting as a relay UE for a remote UE, the method comprising
Prior to acting as a relay UE for the remote UE, the Relay UE is
According to another aspect, there is provided a method for Mobility Management Entity, MME, serving a User Entity, UE, which is acting as a relay UE for a remote UE, the method comprising
For the MME serving a relay UE, the method may also comprise the step of
The MME is moreover being adapted for communicating with a Home Subscription Server, HSS. The method further comprises
There is moreover provided a method for an Administration Function, ADMF, the method comprising
There is also provided, for still further embodiments, a method for a Home Subscriber Server, HSS, the method comprising
The method for the HSS may further comprise transmitting in the record at least one of
There is moreover provided a method for a Gateway, GW, according to another aspect of the invention, the method comprising
following an intercept message (24) from an Administration Function, ADMF, comprising an identity of a remote UE, either
According to some embodiments, the identity of the UE is an International Mobile Subscriber Identity, IMSI; Mobile Station International Subscriber Directory Number, MSDISDN; or International Mobile Equipment Identity, IMEI.
An administration Function, AMDF, is provided according to which the AMDF is
According to a further embodiment of the invention there is provided a system comprising a remote UE being connected to a relay UE, the system moreover comprising, a MME serving the relay UE and a GW, the system being adapted for
The system above may moreover comprise a HSS of the re-mote UE, an Administration Function, ADMF, and a Delivery Function 3, and the system further be adapted for
In some embodiments of the system above, the UE may comprises an interface (IF_UE), a processor (PCU_UE) and a memory (MEM_UE); the MME may comprise an interface (IF_M), a processor (PCU_M) and a memory (MEM_M); and the GW may comprises an interface (IF_G), a processor (PCU_G) and a memory (MEM_G).
Alternatively, the MME and the GW may be instantiated in a cloud computing environment as virtual nodes, the cloud environment comprising at least a processor unit and memory unit.
The ProSe methods, functions and apparatuses described above provide valuable public safety functions and requirements in a 3GPP EPS system.
This application is a 35 U.S.C. § 371 National Stage of International Patent Application No. PCT/EP2016/070212, filed Aug. 26, 2016, designating the United States and claiming priority to U.S. provisional application No. 62/210,051, filed on Aug. 26, 2015. The above identified applications are incorporated by this reference.
| Filing Document | Filing Date | Country | Kind |
|---|---|---|---|
| PCT/EP2016/070212 | 8/26/2016 | WO | 00 |
| Publishing Document | Publishing Date | Country | Kind |
|---|---|---|---|
| WO2017/032884 | 3/2/2017 | WO | A |
| Number | Name | Date | Kind |
|---|---|---|---|
| 10015718 | Jin et al. | Jul 2018 | B2 |
| 20100312841 | Doken et al. | Dec 2010 | A1 |
| 20140043980 | Anthony, Jr. et al. | Feb 2014 | A1 |
| 20140044019 | Anthony, Jr. | Feb 2014 | A1 |
| 20140213250 | Baek | Jul 2014 | A1 |
| 20150009864 | Kim | Jan 2015 | A1 |
| 20150326302 | Stojanovski | Nov 2015 | A1 |
| Number | Date | Country |
|---|---|---|
| 101945429 | Jan 2011 | CN |
| 102422615 | Apr 2012 | CN |
| 102752830 | Oct 2012 | CN |
| 103228004 | Jul 2013 | CN |
| 2 629 482 | Aug 2013 | EP |
| 2014198063 | Dec 2014 | WO |
| Entry |
|---|
| International Search Report and Written Opinion issued in application No. PCT/EP2016/070212 dated Nov. 10, 2016, 10 pages. |
| 3GPP TSG-SA WG3 LI Meeting #58, S2-152724, “LS on Requirement for Identifying Remote ProSe UE and its Subscriber in EPC”, Revision of S3i1501228, Singapore, Singapore, Jul. 14-16, 2015, 1 page. |
| 3GPP, 3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; 3G Security; Lawful interception architecture and functions (Release 12), 3GPP TS 33.107, V12.11.0, Jun. 2015, 234 pages. |
| Number | Date | Country | |
|---|---|---|---|
| 20180248919 A1 | Aug 2018 | US |
| Number | Date | Country | |
|---|---|---|---|
| 62210051 | Aug 2015 | US |
