SYSTEM FOR DISTRIBUTED ARCHITECTURE FOR MULTICAST ACCESS CONTROL

Abstract

A method of multicast access control in an IP multicast system is disclosed. The method provides a distributed architecture separating a session control in a service stratum from an access control in a transport stratum.

Description

BRIEF DESCRIPTION OF THE DRAWINGS

For a more complete understanding of the present disclosure and its advantages, reference is now made to the following description taken in conjunction with the accompanying drawings, in which like reference numerals represent like parts:

FIG. 1 is a diagram depicting a system for a distributed architecture design in multicast access control according to the present invention.

DETAILED DESCRIPTION

The following discussion is presented to enable a person skilled in the art to make and use the invention. The general principles described herein may be applied to embodiments and applications other than those detailed below without departing from the spirit and scope of the present invention as defined herein. The present invention is not intended to be limited to the embodiments shown, but is to be accorded the widest scope consistent with the principles and features disclosed herein.

Certain aspects of the present invention are illustrated and describe now with reference to FIG. 1, a system 100 for a distributed architecture design in multicast access control according to the present invention is depicted. System 100 comprises a Service Stratum 180 and a Transport Stratum 190. Service Stratum 180 comprises a Proxy Call Session Control Function (P-CSCF) 121, an Interrogating Call Session Control Function (I-CSCF) 122, a Serving Call Session Control Function (S-CSCF) 123, a Home Subscriber Server (HSS) 130, and an Internet Protocol Television Application Service (IP-TV AS) 140. Transport Stratum 190 comprises an user (UE) 111, an access node or an access Border Gateway Function (AN/A-BGF) 151, an Interconnect Border Gateway Function (I-BGF) 152, a Resource and Admission control (RACS) 160, and an Media Resource Function Server (MRF) 170.

In FIG. 1, as UE 111 initiates an operation (e.g., turns on a TV), a Set-Top Box (STB) then sends a Session Initiation Protocol (SIP) INVITE request 101 to P-CSCF 121. This initiation communication may indicate the type of service required or requested by UE 111. For example, SIP INVITE request 101 may be sent with a Public Service Identifier (PSI) identifying an IP-TV Application Service (AS).

P-CSCF 121 forwards a corresponding indication communication (i.e., SIP INVITE request 102) to I-CSCF 122. I-CSCF 122 determines a serving node for a user/session and forwards SIP INVITE request 102 to S-CSCF 123.

S-CSCF 123 authenticates UE 111, and forwards a SIP INVITE request 103 to an IP-TV AS 140, based on initial filter criteria. Upon receiving SIP INVITE request 103, IP-TV AS 140 communicates a SIP INVITE request 104 with MRF 170, to determine whether content is being served by MRF 170, or another associated content server.

Then, IP-TV AS 140 attaches a new Content-Type fragment in a SIP response 105 indicating channels (multicast ports) that UE 111 has subscribed to. SIP response 105 may be a profiled group of channels/ports. Upon receiving SIP response 105 from IP-TV AS 140, S-CSCF 123 determines that no other applications apply in the initial filters, and forwards a SIP response 106 to I-CSCF 122, and then to P-CSCF 121.

P-CSCF 121 processes this information, and requests a Quality of Service (QoS) 107 for a session, via an interface to RACS 160. In addition, P-CSCF 121 conveys a list of multicast ports that UE 111 has permission to access. This process may be accomplished by extending a DIAMETER protocol or other protocols at the interface. P-CSCF 121 also communicates a response 108, including a program guide (multicast channels), over to UE 111.

When UE 111 selects a channel during communication with AN/A-BGF 151, AN/A-BGF 151 communicates 110 with RACS 160, and checks to ensure that UE 111 has appropriate access authorization or permissions. Then AN/A-BGF 151 constructs a multicast tree and forwards a channel to UE 111.

In certain embodiments, multicast access control decision information per subscriber may be maintained or kept in a service stratum. In an IP-TV application, for example, this may be addressed through the use of an IP-TV application server (AS). Other embodiments may convey access control information, from an application server, to a session control server in charge of proxying for resources using a new Session Initiation Protocol (SIP) fragment. Other embodiments may implement DIAMETER or other protocols so that when a session control proxy receives an access control list, the session control proxy conveys the access control list to a resource control subsystem. In various embodiments, an IPv4 or an IPv6 multicast may be applied in the distributed architecture as depicted in FIG. 1. Moreover, extensions to DIAMETER protocol may be implemented to support transferring of multicast access control information.

The previous description of the disclosed embodiments is provided to enable those skilled in the art to make or use the present invention. Various modifications to these embodiments will be readily apparent to those skilled in the art and generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the invention. Thus, the present invention is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims

1. A method of providing multicast access control in an IP multicast system, comprising the steps of: providing a system architecture having a service stratum and a transport stratum;providing session control in the service stratum; andproviding access control in the transport stratum.

2. The method according to claim 1, wherein the step of providing session control in the service stratum further comprises providing an application server communicating access control, related to a plurality of multicast addresses, to the transport stratum.

3. The method according to claim 2, wherein the plurality of multicast addresses comprise a Session Initiation Protocol fragment.

4. The method according to claim 3, wherein the Session Initiation Protocol fragment comprises an IPv4 multicast address information.

5. The method according to claim 3, wherein the Session Initiation Protocol fragment comprises an IPv6 multicast address information.

6. The method according to claim 1, wherein a resource and access control protocol is utilized to support transfer of access control information.

7. The method according to claim 6, wherein the resource and access control protocol is a DIAMETER protocol.

8. A system for multicast access control in an IP multicast system, comprising: a service stratum;a transport stratum;a session control operable in the service stratum; andan access control operable in the transport stratum.

9. The system according to claim 8, wherein the service stratum comprises an application server, communicating access control related to a plurality of multicast addresses, to the transport stratum.

10. The system according to claim 9, wherein the plurality of multicast addresses comprise a Session Initiation Protocol fragment.

11. The method according to claim 10, wherein the Session Initiation Protocol fragment comprises an IPv4 multicast address information.

12. The method according to claim 10, wherein the Session Initiation Protocol fragment comprises an IPv6 multicast address information.

13. The method according to claim 8, wherein a resource and access control protocol is utilized to support transfer of access control information.

14. The method according to claim 13, wherein the resource and access control protocol is a DIAMETER protocol.

15. A method of separating a session control in a service stratum from an access control in a transport stratum in an IP-TV system, comprising the steps of: sending an SIP INVITE request to a Proxy Call Session Control Function from a Set-Top Box by a user;forwarding the SIP INVITE request to an Interrogating Call Session Control Function from the Proxy Call Session Control Function;forwarding the SIP INVITE request to an Serving Call Session Control Function from the Interrogating Call Session Control Function;authenticating the user in the Serving Call Session Control Function;ensuring content is being served by a content server in an IP-TV Application Server;forming an SIP response indicating channels that the user has subscribed to in the IP-TV Application Server;forwarding the SIP response to the Proxy Call Session Control Function the Serving Call Session Control Function;requesting a Quality of Service (QoS) and an admission control in the Proxy Call Session Control Function;sending the SIP response to the user by Proxy Call Session Control Function; andforwarding a channel to the user from an access node.

16. The method according to claim 15, wherein a resource and access control protocol is utilized to support transfer of access control information.

17. The method according to claim 16, wherein the resource and access control protocol is a DIAMETER protocol.