CN118612735A - A method for fast data transmission of smart watches based on communication protocol adaptation - Google Patents

Abstract

The present application provides a method for fast data transmission of smart watches based on communication protocol adaptation, which belongs to the communication field of the Internet of Things, and is used to enable IoT devices to quickly access the network, so as to reduce access delay and achieve fast data transmission. The method includes: when the IoT device requests to access the network where the AMF network element is located through the access network RAN device, if the AMF network element determines that the IoT device shares a secure communication protocol with the user equipment UE, the AMF network element determines that the IoT device does not need to perform a security authentication process for access, and the IoT device is a smart wearable device; in response to the IoT device not needing to perform a security authentication process for access, the AMF network element triggers the IoT device to synchronize the UE's security context with the RAN device, and the UE's security context is used for secure data transmission between the IoT device and the RAN.

Description

A method for fast data transmission of smart watches based on communication protocol adaptation

Technical Field

The present application relates to the field of Internet of Things communication technology, and in particular to a method for quickly transmitting data of a smart watch based on communication protocol adaptation.

Background Art

With the rapid development of information technology, the Internet of Things (IoT) has become an important part of global information construction. The core of IoT technology is to achieve seamless connection between the physical world and the digital world through various sensors and network connections. Among IoT devices, smart watches are a typical example. They are not only a time display device, but also a multi-functional personal assistant.

The emergence of smart watches has greatly enriched people's daily lives and working methods. They usually have the following functions: Time display: The most basic function of a smart watch is to display the time. Users can adjust the time by touching the screen or the side button. Notification reminder: Smart watches can be synchronized with smartphones to display information such as incoming calls, text messages, and social media notifications, so that users do not miss any important information. Health monitoring: Modern smart watches are usually equipped with health-related functions such as heart rate monitoring, pedometers, and sleep monitoring to help users better understand their physical condition. Mobile payment: Some smart watches support NFC function, which can realize short-range wireless payment and simplify the payment process. Applications: Smart watches can install various applications, such as weather forecast, map navigation, music playback, etc., to meet the needs of different scenarios. Voice assistant: With the integrated voice assistant function, users can perform voice operations, such as sending messages, setting reminders, etc.

With the advancement of IoT technology, terminal devices such as smart watches can directly access mobile communication networks instead of relying on other devices such as mobile phones. This ability to directly access the network makes smart watches more independent and more powerful. For example, users can make calls, send text messages, or use mobile data for network operations directly through smart watches without a mobile phone. This design not only improves user convenience, but also provides technical support for the popularization and application of smart watches. In addition, the rapid development of 5G networks provides smart watches with faster data transmission capabilities, enabling smart watches to support more complex application scenarios, such as high-definition video calls and real-time location sharing. At the same time, the application of edge computing technology also enables smart watches to process data more quickly and improve user experience.

However, the computing power of smart watches is usually relatively small. If they are used as normal terminals to access the network, the access delay will be relatively large due to their computing power. Therefore, how to reduce the access delay and achieve fast data transmission in this case is a hot topic of current research.

Summary of the invention

The embodiment of the present application provides a method for rapid data transmission of a smart watch based on communication protocol adaptation, so as to enable IoT devices to quickly access the network, thereby reducing access delay and achieving rapid data transmission.

In order to achieve the above purpose, this application adopts the following technical solutions:

In a first aspect, a method for fast data transmission of a smart watch based on communication protocol adaptation is provided, which is applied to an access and mobility management function AMF network element. The method includes: when an Internet of Things (IoT) device requests access to the network where the AMF network element is located through an access network RAN device, if the AMF network element determines that the IoT device shares a secure communication protocol with a user device UE, the AMF network element determines that the IoT device does not need to perform a security authentication process for access, and the IoT device is a smart wearable device; in response to the IoT device not needing to perform a security authentication process for access, the AMF network element triggers the IoT device to synchronize the UE's security context with the RAN device, and the UE's security context is used for secure data transmission between the IoT device and the RAN.

In a possible design scheme, the AMF network element determines that the IoT device and the UE share a secure communication protocol, including: the AMF network element determines that the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE; the user identifier is used to uniquely identify the user who uses the IoT device or UE to obtain services from the network; the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE, indicating that the IoT device and the user equipment UE share a secure communication protocol.

In a possible design scheme, the AMF network element determines that the IoT device and the UE use the same user identifier, and the IoT device supports the security communication algorithm used by the UE, including: the AMF network element receives a registration request message from the IoT device through the RAN device, the registration request message carries the user identifier of the IoT device, the security communication algorithm supported by the IoT device, and indication information, the indication information is used to indicate that the user identifier of the IoT device is a shared identifier; the AMF network element determines the context of the UE based on the indication information, the context of the UE includes the user identifier of the UE, and the user identifier of the UE is the same as the user identifier of the IoT device; the AMF network element determines that the IoT device supports the security communication algorithm used by the UE based on the security communication algorithm supported by the IoT device and the context of the UE.

In a possible design scheme, the AMF network element determines the context of the UE based on the indication information, the context of the UE includes the user identifier of the UE, and the user identifier of the UE is the same as the user identifier of the IoT device, including: the AMF network element traverses the UE context locally stored in the AMF network element according to the indication information to obtain the UE context including the user identifier of the IoT device, and the UE context including the user identifier of the IoT device is the context of the UE; the AMF network element determines that the IoT device supports the security communication algorithm used by the UE based on the security communication algorithm supported by the IoT device and the context of the UE, including: the AMF network element obtains the security communication algorithm used by the UE in the context of the UE; the AMF network element determines that the security communication algorithm supported by the IoT device includes the security communication algorithm used by the UE, and the security communication algorithm supported by the IoT device includes the security communication algorithm used by the UE, which means that the IoT device supports the security communication algorithm used by the UE.

In a possible design scheme, the secure communication algorithm used by the UE includes at least one of the following: SNOW-3G integrity protection algorithm, AES-128 integrity protection algorithm, ZUC-128 integrity protection algorithm, SNOW-3G confidentiality protection algorithm, AES-128 confidentiality protection algorithm, ZUC-128 confidentiality protection algorithm, and the context of the UE is the context of the access layer AS.

In a possible design scheme, the AMF network element triggers the IoT device to synchronize the UE's security context with the RAN device, including: the AMF network element sends the UE's latest next-hop chain calculated NCC value to the IoT device, and the NCC value is used by the IoT device to determine the UE's security context; the AMF network element sends the UE's security context to the RAN device.

In a possible design scheme, the NCC value is carried in a registration acceptance message, and the registration acceptance message is used to indicate that the IoT device has successfully registered with the network. The NCC value is used by the IoT device to determine the update value of the next hop parameter NH based on the difference between the NCC value and the local NCC=0 of the IoT device, and to derive the AS key Kgnb based on the NH value and the key Kasme derived in advance by the IoT device. The key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE. The security context of the UE includes the AS key Kgnb, and the AS key Kgnb is used for secure data transmission between the IoT device and the RAN.

In a possible design scheme, the NCC value is carried in a registration acceptance message, and the registration acceptance message is used to indicate that the IoT device has successfully registered with the network. The registration acceptance message also includes the UE's non-access layer NAS uplink count value, and the NAS uplink count value is used by the IoT device to derive the NAS key based on the key Kamf derived in advance by the IoT device. The key Kamf derived in advance by the IoT device is the same as the key Kamf generated by the UE. The NCC value is used by the IoT device to determine the NH value based on the difference between the NCC value and the local NCC=0 of the IoT device, and to derive the AS key Kgnb based on the NH value and the key Kasme derived in advance by the IoT device and the NAS key. The key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE. The security context of the UE includes the AS key Kgnb, and the AS key Kgnb is used for secure data transmission between the IoT device and the RAN.

In one possible design scheme, the IoT device is a smart wearable device, specifically the IoT device is a smart watch.

On the second aspect, a smart watch data fast transmission system based on communication protocol adaptation is provided, the system includes an access and mobility management function AMF network element, and the system is configured as follows: when an Internet of Things (IoT) device requests access to the network where the AMF network element is located through an access network RAN device, if the AMF network element determines that the IoT device shares a secure communication protocol with the UE, the AMF network element determines that the IoT device does not need to perform a security authentication process for access, and the IoT device is a smart wearable device; in response to the IoT device not needing to perform a security authentication process for access, the AMF network element triggers the IoT device to synchronize the UE's security context with the RAN device, and the UE's security context is used for secure data transmission between the IoT device and the RAN.

In a possible design scheme, the AMF network element determines that the IoT device and the UE share a secure communication protocol, including: the AMF network element determines that the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE; the user identifier is used to uniquely identify the user who uses the IoT device or UE to obtain services from the network; the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE, indicating that the IoT device and the user equipment UE share a secure communication protocol.

In a possible design scheme, the AMF network element determines that the IoT device and the UE use the same user identifier, and the IoT device supports the security communication algorithm used by the UE, including: the AMF network element receives a registration request message from the IoT device through the RAN device, the registration request message carries the user identifier of the IoT device, the security communication algorithm supported by the IoT device, and indication information, the indication information is used to indicate that the user identifier of the IoT device is a shared identifier; the AMF network element determines the context of the UE based on the indication information, the context of the UE includes the user identifier of the UE, and the user identifier of the UE is the same as the user identifier of the IoT device; the AMF network element determines that the IoT device supports the security communication algorithm used by the UE based on the security communication algorithm supported by the IoT device and the context of the UE.

In a possible design scheme, the AMF network element determines the context of the UE based on the indication information, the context of the UE includes the user identifier of the UE, and the user identifier of the UE is the same as the user identifier of the IoT device, including: the AMF network element traverses the UE context locally stored in the AMF network element according to the indication information to obtain the UE context including the user identifier of the IoT device, and the UE context including the user identifier of the IoT device is the context of the UE; the AMF network element determines that the IoT device supports the security communication algorithm used by the UE based on the security communication algorithm supported by the IoT device and the context of the UE, including: the AMF network element obtains the security communication algorithm used by the UE in the context of the UE; the AMF network element determines that the security communication algorithm supported by the IoT device includes the security communication algorithm used by the UE, and the security communication algorithm supported by the IoT device includes the security communication algorithm used by the UE, which means that the IoT device supports the security communication algorithm used by the UE.

In a possible design scheme, the secure communication algorithm used by the UE includes at least one of the following: SNOW-3G integrity protection algorithm, AES-128 integrity protection algorithm, ZUC-128 integrity protection algorithm, SNOW-3G confidentiality protection algorithm, AES-128 confidentiality protection algorithm, ZUC-128 confidentiality protection algorithm, and the context of the UE is the context of the access layer AS.

In a possible design scheme, the AMF network element triggers the IoT device to synchronize the UE's security context with the RAN device, including: the AMF network element sends the UE's latest next-hop chain calculated NCC value to the IoT device, and the NCC value is used by the IoT device to determine the UE's security context; the AMF network element sends the UE's security context to the RAN device.

In a possible design scheme, the NCC value is carried in a registration acceptance message, and the registration acceptance message is used to indicate that the IoT device has successfully registered with the network. The NCC value is used by the IoT device to determine the update value of the next hop parameter NH based on the difference between the NCC value and the local NCC=0 of the IoT device, and to derive the AS key Kgnb based on the NH value and the key Kasme derived in advance by the IoT device. The key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE. The security context of the UE includes the AS key Kgnb, and the AS key Kgnb is used for secure data transmission between the IoT device and the RAN.

In a possible design scheme, the NCC value is carried in a registration acceptance message, and the registration acceptance message is used to indicate that the IoT device has successfully registered with the network. The registration acceptance message also includes the UE's non-access layer NAS uplink count value, and the NAS uplink count value is used by the IoT device to derive the NAS key based on the key Kamf derived in advance by the IoT device. The key Kamf derived in advance by the IoT device is the same as the key Kamf generated by the UE. The NCC value is used by the IoT device to determine the NH value based on the difference between the NCC value and the local NCC=0 of the IoT device, and to derive the AS key Kgnb based on the NH value and the key Kasme derived in advance by the IoT device and the NAS key. The key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE. The security context of the UE includes the AS key Kgnb, and the AS key Kgnb is used for secure data transmission between the IoT device and the RAN.

In one possible design scheme, the IoT device is a smart wearable device, specifically the IoT device is a smart watch.

In summary:

In IoT devices, such as smart wearable devices, when their computing power is limited, the IoT device can share a secure communication protocol with a UE. In this way, if the UE has accessed the network in advance, the AMF network element in the network can share a secure communication protocol with the UE based on the IoT device, without executing the access security authentication process, and directly trigger the IoT device to synchronize the UE's security context with the RAN device, thereby avoiding the delay caused by executing the access security authentication process, enabling the IoT device to quickly access the network, thereby transmitting data quickly and securely.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG1 is a schematic diagram of the architecture of a smart watch data rapid transmission system based on communication protocol adaptation provided in an embodiment of the present application;

FIG2 is a flow chart of a method for fast data transmission of a smart watch based on communication protocol adaptation provided in an embodiment of the present application;

FIG3 is a schematic diagram of the structure of a control device provided in an embodiment of the present application.

DETAILED DESCRIPTION

In the embodiment of the present application, "indication" may include direct indication and indirect indication, and may also include explicit indication and implicit indication. The information indicated by a certain information (such as the first indication information, the second indication information, or the third indication information, etc. below) is called information to be indicated. In the specific implementation process, there are many ways to indicate the information to be indicated, such as but not limited to, the information to be indicated can be directly indicated, such as the information to be indicated itself or the index of the information to be indicated. The information to be indicated can also be indirectly indicated by indicating other information, wherein there is an association relationship between the other information and the information to be indicated. It is also possible to indicate only a part of the information to be indicated, while the other parts of the information to be indicated are known or agreed in advance. For example, the indication of specific information can also be realized by means of the arrangement order of each information agreed in advance (such as specified by the protocol), thereby reducing the indication overhead to a certain extent. At the same time, the common parts of each information can also be identified and uniformly indicated to reduce the indication overhead caused by indicating the same information separately.

In addition, the specific indication method can also be various existing indication methods, such as but not limited to the above-mentioned indication methods and various combinations thereof. The specific details of the various indication methods can refer to the prior art and will not be repeated herein. As can be seen from the above, for example, when it is necessary to indicate multiple information of the same type, different indication methods may be used for different information. In the specific implementation process, the desired indication method can be selected according to specific needs. The embodiment of the present application does not limit the selected indication method. In this way, the indication method involved in the embodiment of the present application should be understood to cover various methods that can enable the party to be indicated to obtain the information to be indicated.

"Pre-definition" or "pre-configuration" can be implemented by pre-saving corresponding codes, tables or other methods that can be used to indicate relevant information in the device, and the embodiments of the present application do not limit the specific implementation method. Among them, "saving" can mean saving in one or more memories. The one or more memories can be set separately or integrated in an encoder or decoder, a processor, or a communication device. The one or more memories can also be partially set separately and partially integrated in a decoder, a processor, or a communication device. The type of memory can be any form of storage medium, which is not limited by the embodiments of the present application.

The "protocol" involved in the embodiments of the present application may refer to a protocol family in the communication field, a standard protocol with a similar protocol family frame structure, or a related protocol used in future communication systems, and the embodiments of the present application do not make specific limitations on this.

In the embodiments of the present application, descriptions such as "when...", "in the case of...", "if" and "if" all mean that the device will make corresponding processing under certain objective circumstances. It does not limit the time, nor does it require the device to have a judgment action when implementing it, nor does it mean that there are other limitations.

In the description of the embodiments of the present application, unless otherwise specified, "/" indicates that the objects associated before and after are in an "or" relationship, for example, A/B can represent A or B; "and/or" in the embodiments of the present application is only a description of the association relationship of the associated objects, indicating that there can be three relationships, for example, A and/or B can represent: A exists alone, A and B exist at the same time, and B exists alone, where A and B can be singular or plural. In addition, in the description of the embodiments of the present application, unless otherwise specified, "multiple" refers to two or more than two. "At least one of the following" or similar expressions refers to any combination of these items, including any combination of single items or plural items. For example, at least one of a, b, or c can represent: a, b, c, a-b, a-c, b-c, or a-b-c, where a, b, c can be single or multiple. In addition, in order to facilitate the clear description of the technical solutions of the embodiments of the present application, in the embodiments of the present application, the words "first", "second" and the like are used to distinguish the same items or similar items with substantially the same functions and effects. Those skilled in the art will understand that the words "first", "second" and the like do not limit the quantity and execution order, and the words "first", "second" and the like do not necessarily limit the differences. At the same time, in the embodiments of the present application, the words "exemplary" or "for example" are used to indicate examples, illustrations or explanations. Any embodiment or design described as "exemplary" or "for example" in the embodiments of the present application should not be interpreted as being more preferred or more advantageous than other embodiments or design solutions. Specifically, the use of words such as "exemplary" or "for example" is intended to present related concepts in a concrete manner for easy understanding.

The network architecture and business scenarios described in the embodiments of the present application are intended to more clearly illustrate the technical solutions of the embodiments of the present application, and do not constitute a limitation on the technical solutions provided in the embodiments of the present application. A person of ordinary skill in the art can appreciate that with the evolution of the network architecture and the emergence of new business scenarios, the technical solutions provided in the embodiments of the present application are also applicable to similar technical problems.

To facilitate understanding of the embodiments of the present application, the control system applicable to the embodiments of the present application is first described in detail by taking the dynamic update system of the wireless communication configuration shown in Figure 1 as an example. For example, Figure 1 is a schematic diagram of the architecture of a smart watch data rapid transmission system based on communication protocol adaptation to which the method provided in the embodiments of the present application is applicable.

As shown in FIG. 1 , the smart watch data rapid transmission system based on communication protocol adaptation may include: a terminal device and a network device.

The network device may include a radio access network (RAN) device. The RAN device is also called a target RAN device, and the RAN device may be a device that provides access to a terminal. For example, the RAN device may include: The RAN device may also include 5G, such as a gNB in a new radio (NR) system, or one or a group of antenna panels (including multiple antenna panels) of a base station in 5G, or a network node constituting a gNB, a transmission point (TRP or transmission point, TP) or a transmission measurement function (TMF), such as a baseband unit (building base band unit, BBU), or a centralized unit (CU) or a distributed unit (DU), an RSU with a base station function, or a wired access gateway, or a core network element of 5G. Alternatively, the RAN device may also include an access point (AP) in a wireless fidelity (WiFi) system, a wireless relay node, a wireless backhaul node, various forms of macro base stations, micro base stations (also called small stations), relay stations, access points, wearable devices, vehicle-mounted devices, and the like. Alternatively, the RAN device may also include a next-generation mobile communication system, such as a 6G access network device, such as a 6G base station, or in the next-generation mobile communication system, the network device may also have other naming methods, which are all included in the protection scope of the embodiments of the present application, and the present application does not impose any limitations on this.

The network equipment may also include access and mobility management function (AMF) network elements. AMF network elements are mainly used for mobility management in mobile networks, such as user location update, user registration network, user switching, etc.

The terminal device may be a terminal having a function of communicating with a network (mobile communication network), or a chip or chip system that can be set in the terminal. The terminal device may also be referred to as a user equipment (UE), an access terminal, a user unit, a user station, a mobile station, a mobile station, a remote station, a remote terminal, a mobile device, a user terminal, a terminal, a wireless communication device, a user agent or a user device. The terminal device in the embodiment of the present application may be a mobile phone, a tablet computer (Pad), a computer with a wireless transceiver function, a virtual reality (VR) terminal device, an augmented reality (AR) terminal device, a wireless terminal in industrial control, a wireless terminal in self-driving, a wireless terminal in remote medical, a wireless terminal in smart grid, a wireless terminal in transportation safety, a wireless terminal in smart city, a wireless terminal in smart home, a vehicle-mounted terminal, an RSU with terminal function, etc. The terminal device of the present application may also be a vehicle-mounted module, a vehicle-mounted module, a vehicle-mounted component, a vehicle-mounted chip or a vehicle-mounted unit built into the vehicle as one or more components or units, and the vehicle may implement the method provided by the present application through the built-in vehicle-mounted module, vehicle-mounted module, vehicle-mounted component, vehicle-mounted chip or vehicle-mounted unit. The communication between terminals may be communication between terminals, which may also be called side communication.

The terminal device of the embodiment of the present application may also be an Internet of Things (IoT) device, such as ambient IoT (A-IoT). A-IoT is based on the cellular network communication infrastructure, and is composed of a reader (such as a base station) and a passive/semi-passive/active A-IoT terminal (A-IoT terminal is a terminal in a cellular network, which is understood as an IoT terminal with extremely low power consumption and extremely low complexity). A-IoT includes network equipment and a first-class terminal device, or in other words, a communication system based on A-IoT includes a network device and a first-class terminal device. Among them, the first-class terminal device may be a device having the functions of an A-IoT terminal device. In this case, both the reader and the A-IoT terminal device can be implemented based on the infrastructure in the cellular network. In other words, both the reader and the A-IoT terminal device can be devices in the cellular network. For example, the functions of the reader and the writer can be implemented by a network device, such as a base station. The A-IoT terminal device can be implemented by a terminal in a cellular network, such as an IoT terminal with extremely low power consumption and extremely low complexity, i.e., a first-class terminal. The network device can perform contactless data communication with the first type terminal, thereby reading information from the first type terminal and/or writing information to be stored into the first type terminal.

In the embodiment of the present application, a terminal device is an intelligent wearable device in an IoT device as an example. Specifically, the terminal device is an intelligent wearable device, and the terminal device may be a smart watch.

It can be understood that the embodiments of the present application are uniformly described using beams, but beams can be replaced by other equivalent concepts and are not limited to the concepts mentioned above.

It can also be understood that the embodiment of the present application is introduced by taking the terminal device in the form of a bonding silver wire device as an example.

The following will be combined with Figure 2 to specifically introduce the interaction process between the devices in the above system through a method embodiment. The smart watch data fast transmission method based on communication protocol adaptation provided in the embodiment of the present application can be applied to the above system, which is described in detail below.

FIG2 is a flow chart of a method for fast data transmission of a smart watch based on communication protocol adaptation provided in an embodiment of the present application. The flow chart of the method for fast data transmission of a smart watch based on communication protocol adaptation is as follows:

S201, when the IoT device requests to access the network where the AMF network element is located through the RAN device, if the AMF network element determines that the IoT device shares a secure communication protocol with the user equipment UE, the AMF network element determines that the IoT device does not need to perform a security authentication process for access.

The network where the AMF network element is located can be a mobile communication network, specifically a core network. IoT devices, such as smart watches, can be installed with a SIM (subscriber Identity Module) card. The information in the SIM is the same as the information in the SIM of a certain UE. In this service scenario, the watch is used by user A and the UE is used by user B. User A and user B can be the same UE or related users, such as members of a family. This service scenario can be provided or completed by the operator.

Normally, the UE can first access and register with the network. In other words, the AMF network element stores the UE context.

On this basis, the AMF network element determines that the IoT device and the UE share a secure communication protocol, including: the AMF network element determines that the IoT device and the UE use the same user identity, and the IoT device supports the secure communication algorithm used by the UE; the user identity is used to uniquely identify the user who uses the IoT device or UE to obtain services from the network. For example, the user identity can be a subscription permanent identifier (SUPI), which is stored in the SIM card of the IoT device and the UE respectively. Among them, the IoT device and the UE use the same user identity, and the IoT device supports the secure communication algorithm used by the UE, which means that the IoT device and the user equipment UE share a secure communication protocol.

Specifically, it can include the following 3 steps:

s1: The AMF network element receives a registration request message from the IoT device through the RAN device. The registration request message carries the user ID of the IoT device (obtained by the IoT device from the SIM card), the secure communication algorithm supported by the IoT device (obtained by the IoT device from its own system layer), and indication information. The indication information is used to indicate that the user ID of the IoT device is a shared ID, that is, the indication information can be a newly defined information to inform the network side that the registered IoT device is a special device and needs to execute the process of this application, namely, the following S2-S3 and S202. Otherwise, if there is no such indication information, the AMF network element executes the registration process of the prior art.

s2: The AMF network element determines the UE context according to the indication information. The UE context includes the UE user identity. The UE user identity is the same as the user identity of the IoT device. For example, the AMF network element traverses the UE context stored locally in the AMF network element according to the indication information to obtain the UE context including the user identity of the IoT device. The UE context including the user identity of the IoT device is the UE context.

s3: The AMF network element determines that the IoT device supports the secure communication algorithm used by the UE based on the secure communication algorithm supported by the IoT device and the context of the UE. For example, the AMF network element obtains the secure communication algorithm used by the UE in the context of the UE. The AMF network element determines that the secure communication algorithm supported by the IoT device includes the secure communication algorithm used by the UE. The secure communication algorithm supported by the IoT device includes the secure communication algorithm used by the UE, which means that the IoT device supports the secure communication algorithm used by the UE. If the IoT device does not support the secure communication algorithm used by the UE, it means that the UE's information cannot be used for secure communication in the future, or even if the key is derived, the network side and the IoT device cannot be synchronized during subsequent encryption. In this case, the IoT device can be subjected to a security authentication process for access to derive a new key for the IoT device to communicate with the network instead of reusing the UE's key.

Among them, the security communication algorithm used by the UE (or the security communication algorithm used by the UE to access the network and communicate with the network (such as AS layer communication)) includes at least one of the following: SNOW-3G integrity protection algorithm, AES-128 integrity protection algorithm, ZUC-128 integrity protection algorithm, SNOW-3G confidentiality protection algorithm, AES-128 confidentiality protection algorithm, ZUC-128 confidentiality protection algorithm, the context of the UE is the context of the access layer AS, or it can be any other possible algorithm.

S202, in response to the IoT device not needing to perform a security authentication process for access, the AMF network element triggers the IoT device to synchronize the UE's security context with the RAN device. The UE's security context is used for secure data transmission between the IoT device and the RAN.

S202 is triggered based on the fact that the IoT device does not need to perform a security authentication process for access, otherwise the existing process can be executed.

In S202, the AMF network element may send the UE's latest next-hop chain calculation (NCC) value to the IoT device, and the NCC value is used by the IoT device to determine the UE's security context.

In case 1, the NCC value is carried in the registration acceptance message, which is used to indicate that the IoT device has successfully registered with the network. The registration acceptance message also indicates the secure communication algorithm used by the UE. The NCC value is used by the IoT device to determine the updated next hop parameter (NH) value based on the difference between the NCC value and the local NCC=0 of the IoT device, that is, vertical derivation, and derive the AS key Kgnb based on the NH value and the key Kasme derived in advance by the IoT device. For details, please refer to the key derivation process in the standard, which will not be repeated here. In short, after obtaining the NCC value, since the information in the SIM card of the IoT device and the UE is the same, the IoT device can also perform the same derivation as the UE based on the root key in the SIM card, that is, the key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE, so that the UE's AS key Kgnb can be derived. The security context of the UE contains the AS key Kgnb, which is used for secure data transmission between the IoT device and the RAN.

In case 2, the NCC value is carried in the registration acceptance message, which is used to indicate that the IoT device has successfully registered with the network. The registration acceptance message also contains the UE's non-access stratum (NAS) uplink count value, and the registration acceptance message also indicates the secure communication algorithm used by the UE. On this basis, the NAS uplink count value is used by the IoT device to derive the NAS key based on the key Kamf derived in advance by the IoT device. The key Kamf derived in advance by the IoT device is the same as the key Kamf generated by the UE. The NCC value is used by the IoT device to determine the NH value based on the difference between the NCC value and the local NCC=0 of the IoT device, and derive the AS key Kgnb based on the NH value and the key Kasme derived in advance by the IoT device and the NAS key. The key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE. The security context of the UE contains the AS key Kgnb, which is used for secure data transmission between the IoT device and the RAN. In other words, the existing process is different. In this case, the AS key, i.e., the AS key Kgnb, can be derived based on the NAS key to further improve security.

The AMF network element sends the UE's security context to the RAN device. For case 1, the UE's security context can be the context originally saved by the AMF network element. For case 2, the UE's security context can be the AMF network element replacing the key in the original saved context with the AS key derived from the NAS key.

In summary, in the case of IoT devices, such as smart wearable devices, when their computing power is limited, the IoT device can share a secure communication protocol with a UE. In this way, when the UE has accessed the network in advance, the AMF network element in the network can share a secure communication protocol with the UE based on the IoT device, without the need to perform the access security authentication process, and directly trigger the IoT device to synchronize the UE's security context with the RAN device, thereby avoiding the delay caused by the access security authentication process, enabling the IoT device to quickly access the network, thereby transmitting data quickly and securely.

The above is a detailed description of the smart watch data fast transmission method based on communication protocol adaptation provided in the embodiment of the present application in combination with Figure 2. The following describes a smart watch data fast transmission system based on communication protocol adaptation for executing the smart watch data fast transmission method based on communication protocol adaptation provided in the embodiment of the present application.

The system includes an access and mobility management function AMF network element, and the system is configured as follows: when an Internet of Things (IoT) device requests access to the network where the AMF network element is located through an access network RAN device, if the AMF network element determines that the IoT device shares a secure communication protocol with the UE, the AMF network element determines that the IoT device does not need to perform a security authentication process for access, and the IoT device is a smart wearable device; in response to the IoT device not needing to perform a security authentication process for access, the AMF network element triggers the IoT device to synchronize the UE's security context with the RAN device, and the UE's security context is used for secure data transmission between the IoT device and the RAN.

In a possible design scheme, the AMF network element determines that the IoT device and the UE share a secure communication protocol, including: the AMF network element determines that the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE; the user identifier is used to uniquely identify the user who uses the IoT device or UE to obtain services from the network; the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE, indicating that the IoT device and the user equipment UE share a secure communication protocol.

In a possible design scheme, the AMF network element determines that the IoT device and the UE use the same user identifier, and the IoT device supports the security communication algorithm used by the UE, including: the AMF network element receives a registration request message from the IoT device through the RAN device, the registration request message carries the user identifier of the IoT device, the security communication algorithm supported by the IoT device, and indication information, the indication information is used to indicate that the user identifier of the IoT device is a shared identifier; the AMF network element determines the context of the UE based on the indication information, the context of the UE includes the user identifier of the UE, and the user identifier of the UE is the same as the user identifier of the IoT device; the AMF network element determines that the IoT device supports the security communication algorithm used by the UE based on the security communication algorithm supported by the IoT device and the context of the UE.

In a possible design scheme, the AMF network element determines the context of the UE based on the indication information, the context of the UE includes the user identifier of the UE, and the user identifier of the UE is the same as the user identifier of the IoT device, including: the AMF network element traverses the UE context locally stored in the AMF network element according to the indication information to obtain the UE context including the user identifier of the IoT device, and the UE context including the user identifier of the IoT device is the context of the UE; the AMF network element determines that the IoT device supports the security communication algorithm used by the UE based on the security communication algorithm supported by the IoT device and the context of the UE, including: the AMF network element obtains the security communication algorithm used by the UE in the context of the UE; the AMF network element determines that the security communication algorithm supported by the IoT device includes the security communication algorithm used by the UE, and the security communication algorithm supported by the IoT device includes the security communication algorithm used by the UE, which means that the IoT device supports the security communication algorithm used by the UE.

In a possible design scheme, the secure communication algorithm used by the UE includes at least one of the following: SNOW-3G integrity protection algorithm, AES-128 integrity protection algorithm, ZUC-128 integrity protection algorithm, SNOW-3G confidentiality protection algorithm, AES-128 confidentiality protection algorithm, ZUC-128 confidentiality protection algorithm, and the context of the UE is the context of the access layer AS.

In a possible design scheme, the AMF network element triggers the IoT device to synchronize the UE's security context with the RAN device, including: the AMF network element sends the UE's latest next-hop chain calculated NCC value to the IoT device, and the NCC value is used by the IoT device to determine the UE's security context; the AMF network element sends the UE's security context to the RAN device.

In a possible design scheme, the NCC value is carried in a registration acceptance message, and the registration acceptance message is used to indicate that the IoT device has successfully registered with the network. The NCC value is used by the IoT device to determine the update value of the next hop parameter NH based on the difference between the NCC value and the local NCC=0 of the IoT device, and to derive the AS key Kgnb based on the NH value and the key Kasme derived in advance by the IoT device. The key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE. The security context of the UE includes the AS key Kgnb, and the AS key Kgnb is used for secure data transmission between the IoT device and the RAN.

In a possible design scheme, the NCC value is carried in a registration acceptance message, and the registration acceptance message is used to indicate that the IoT device has successfully registered with the network. The registration acceptance message also includes the UE's non-access layer NAS uplink count value, and the NAS uplink count value is used by the IoT device to derive the NAS key based on the key Kamf derived in advance by the IoT device. The key Kamf derived in advance by the IoT device is the same as the key Kamf generated by the UE. The NCC value is used by the IoT device to determine the NH value based on the difference between the NCC value and the local NCC=0 of the IoT device, and to derive the AS key Kgnb based on the NH value and the key Kasme derived in advance by the IoT device and the NAS key. The key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE. The security context of the UE includes the AS key Kgnb, and the AS key Kgnb is used for secure data transmission between the IoT device and the RAN.

In one possible design scheme, the IoT device is a smart wearable device, specifically the IoT device is a smart watch.

FIG3 is a schematic diagram of the structure of an electronic device provided in an embodiment of the present application. Exemplarily, the electronic device may be a terminal, or a chip (system) or other component or assembly that may be provided in a terminal. As shown in FIG3 , the electronic device 400 may include a processor 401. Optionally, the electronic device 400 may further include a memory 402 and/or a transceiver 403. The processor 401 is coupled to the memory 402 and the transceiver 403, such as by a communication bus.

The following is a detailed introduction to the various components of the electronic device 400 in conjunction with FIG. 3 :

The processor 401 is the control center of the electronic device 400, and may be a processor or a general term for multiple processing elements. For example, the processor 401 is one or more central processing units (CPUs), or may be application specific integrated circuits (ASICs), or may be one or more integrated circuits configured to implement the embodiments of the present application, such as one or more microprocessors (digital signal processors, DSPs), or one or more field programmable gate arrays (FPGAs).

Optionally, the processor 401 can execute various functions of the electronic device 400 by running or executing a software program stored in the memory 402 and calling data stored in the memory 402, such as executing the smart watch data fast transmission method based on communication protocol adaptation shown in FIG. 2 above.

In a specific implementation, as an embodiment, the processor 401 may include one or more CPUs, such as CPU0 and CPU1 shown in FIG. 3 .

In a specific implementation, as an embodiment, the electronic device 400 may also include multiple processors. Each of these processors may be a single-core processor (single-CPU) or a multi-core processor (multi-CPU). The processor here may refer to one or more devices, circuits, and/or processing cores for processing data (such as computer program instructions).

The memory 402 is used to store the software program for executing the solution of the present application, and the execution is controlled by the processor 401. The specific implementation method can refer to the above method embodiment, which will not be repeated here.

Optionally, the memory 402 may be a read-only memory (ROM) or other types of static storage devices that can store static information and instructions, a random access memory (RAM) or other types of dynamic storage devices that can store information and instructions, or an electrically erasable programmable read-only memory (EEPROM), a compact disc read-only memory (CD-ROM) or other optical disc storage, optical disc storage (including compressed optical disc, laser disc, optical disc, digital versatile disc, Blu-ray disc, etc.), a magnetic disk storage medium or other magnetic storage device, or any other medium that can be used to carry or store the desired program code in the form of an instruction or data structure and can be accessed by a computer, but is not limited thereto. The memory 402 may be integrated with the processor 401, or may exist independently and be coupled to the processor 401 through an interface circuit (not shown in FIG. 3 ) of the electronic device 400, which is not specifically limited in the embodiments of the present application.

The transceiver 403 is used for communication with other electronic devices. For example, if the electronic device 400 is a terminal, the transceiver 403 can be used to communicate with a network device, or with another terminal device. For another example, if the electronic device 400 is a network device, the transceiver 403 can be used to communicate with a terminal, or with another network device.

Optionally, the transceiver 403 may include a receiver and a transmitter (not shown separately in FIG. 3 ), wherein the receiver is used to implement a receiving function, and the transmitter is used to implement a sending function.

Optionally, the transceiver 403 may be integrated with the processor 401 or exist independently and be coupled to the processor 401 via an interface circuit (not shown in FIG. 3 ) of the electronic device 400 , which is not specifically limited in the embodiment of the present application.

It is understandable that the structure of the electronic device 400 shown in FIG. 3 does not constitute a limitation on the electronic device, and the actual electronic device may include more or fewer components than shown in the figure, or combine certain components, or arrange the components differently.

In addition, the technical effects of the electronic device 400 can refer to the technical effects of the methods described in the above method embodiments, which will not be repeated here.

It should be understood that the processor in the embodiments of the present application may be a central processing unit (CPU), and the processor may also be other general-purpose processors, digital signal processors (DSP), application specific integrated circuits (ASIC), field programmable gate arrays (FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, etc. The general-purpose processor may be a microprocessor or the processor may also be any conventional processor, etc.

It should also be understood that the memory in the embodiments of the present application may be a volatile memory or a non-volatile memory, or may include both volatile and non-volatile memories. Among them, the non-volatile memory may be a read-only memory (ROM), a programmable read-only memory (PROM), an erasable programmable read-only memory (EPROM), an electrically erasable programmable read-only memory (EEPROM), or a flash memory. The volatile memory may be a random access memory (RAM), which is used as an external cache. By way of example and not limitation, many forms of random access memory (RAM) are available, such as static RAM (SRAM), dynamic random access memory (DRAM), synchronous DRAM (SDRAM), double data rate SDRAM (DDR SDRAM), enhanced SDRAM (ESDRAM), synchronous link DRAM (SLDRAM), and direct rambus RAM (DR RAM).

The above embodiments can be implemented in whole or in part by software, hardware (such as circuits), firmware or any other combination. When implemented using software, the above embodiments can be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions or computer programs. When the computer instructions or computer programs are loaded or executed on a computer, the process or function described in the embodiment of the present application is generated in whole or in part. The computer can be a general-purpose computer, a special-purpose computer, a computer network, or other programmable device. The computer instructions can be stored in a computer-readable storage medium, or transmitted from one computer-readable storage medium to another computer-readable storage medium. For example, the computer instructions can be transmitted from one website, computer, server or data center to another website, computer, server or data center by wired (such as infrared, wireless, microwave, etc.). The computer-readable storage medium can be any available medium that can be accessed by a computer or a data storage device such as a server or data center that contains one or more available media sets. The available medium can be a magnetic medium (for example, a floppy disk, a hard disk, a tape), an optical medium (for example, a DVD), or a semiconductor medium. The semiconductor medium can be a solid-state hard disk.

It should be understood that the term "and/or" in this article is only a description of the association relationship of associated objects, indicating that there can be three relationships. For example, A and/or B can represent: A exists alone, A and B exist at the same time, and B exists alone. A and B can be singular or plural. In addition, the character "/" in this article generally indicates that the associated objects before and after are in an "or" relationship, but it may also indicate an "and/or" relationship. Please refer to the context for specific understanding.

In this application, "at least one" means one or more, and "plurality" means two or more. "At least one of the following" or similar expressions refers to any combination of these items, including any combination of single or plural items. For example, at least one of a, b, or c can mean: a, b, c, a-b, a-c, b-c, or a-b-c, where a, b, and c can be single or multiple.

It should be understood that in the various embodiments of the present application, the size of the serial numbers of the above-mentioned processes does not mean the order of execution. The execution order of each process should be determined by its function and internal logic, and should not constitute any limitation on the implementation process of the embodiments of the present application.

Those of ordinary skill in the art will appreciate that the units and algorithm steps of each example described in conjunction with the embodiments disclosed herein can be implemented in electronic hardware, or a combination of computer software and electronic hardware. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the technical solution. Professional and technical personnel can use different methods to implement the described functions for each specific application, but such implementation should not be considered to be beyond the scope of this application.

Those skilled in the art can clearly understand that, for the convenience and brevity of description, the specific working processes of the systems, devices and units described above can refer to the corresponding processes in the aforementioned method embodiments and will not be repeated here.

In the several embodiments provided in the present application, it should be understood that the disclosed systems, devices and methods can be implemented in other ways. For example, the device embodiments described above are only schematic. For example, the division of the units is only a logical function division. There may be other division methods in actual implementation, such as multiple units or components can be combined or integrated into another system, or some features can be ignored or not executed. Another point is that the mutual coupling or direct coupling or communication connection shown or discussed can be through some interfaces, indirect coupling or communication connection of devices or units, which can be electrical, mechanical or other forms.

The units described as separate components may or may not be physically separated, and the components shown as units may or may not be physical units, that is, they may be located in one place or distributed on multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.

In addition, each functional unit in each embodiment of the present application may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit.

If the functions are implemented in the form of software functional units and sold or used as independent products, they can be stored in a computer-readable storage medium. Based on this understanding, the technical solution of the present application can be essentially or partly embodied in the form of a software product that contributes to the prior art. The computer software product is stored in a storage medium and includes several instructions for a computer device (which can be a personal computer, server, or network device, etc.) to perform all or part of the steps of the methods described in each embodiment of the present application. The aforementioned storage medium includes: various media that can store program codes, such as USB flash drives, mobile hard disks, read-only memories (ROM), random access memories (RAM), magnetic disks or optical disks.

The above is only a specific implementation of the present application, but the protection scope of the present application is not limited thereto. Any person skilled in the art who is familiar with the present technical field can easily think of changes or substitutions within the technical scope disclosed in the present application, which should be included in the protection scope of the present application. Therefore, the protection scope of the present application should be based on the protection scope of the claims.

Claims (10)

1. A method for fast data transmission of a smart watch based on communication protocol adaptation, characterized in that it is applied to an access and mobility management function AMF network element, and the method comprises: In the case where the Internet of Things IoT device requests access to the network where the AMF network element is located through the access network RAN device, if the AMF network element determines that the IoT device shares a secure communication protocol with the user equipment UE, the AMF network element determines that the IoT device does not need to perform a security authentication process for access, and the IoT device is a smart wearable device; In response to the IoT device not needing to perform a security authentication process for access, the AMF network element triggers the IoT device to synchronize the security context of the UE with the RAN device, and the security context of the UE is used for secure data transmission between the IoT device and the RAN. 2. The method according to claim 1, wherein the AMF network element determines that the IoT device shares a secure communication protocol with the UE, comprising: The AMF network element determines that the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE; the user identifier is used to uniquely identify a user who uses the IoT device or the UE to obtain services from the network; the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE, indicating that the IoT device and the user equipment UE share a secure communication protocol. 3. The method according to claim 2 is characterized in that the AMF network element determines that the IoT device and the UE use the same user identifier, and the IoT device supports the secure communication algorithm used by the UE, including: The AMF network element receives a registration request message from the IoT device through the RAN device, where the registration request message carries a user identifier of the IoT device, a secure communication algorithm supported by the IoT device, and indication information, where the indication information is used to indicate that the user identifier of the IoT device is a shared identifier; The AMF network element determines the context of the UE according to the indication information, where the context of the UE includes a user identifier of the UE, and the user identifier of the UE is the same as the user identifier of the IoT device; The AMF network element determines that the IoT device supports the security communication algorithm used by the UE based on the security communication algorithm supported by the IoT device and the context of the UE. 4. The method according to claim 3 is characterized in that the AMF network element determines the context of the UE according to the indication information, the context of the UE includes a user identifier of the UE, and the user identifier of the UE is the same as the user identifier of the IoT device, including: The AMF network element traverses the UE context locally stored by the AMF network element according to the indication information to obtain a UE context including the user identifier of the IoT device, where the UE context including the user identifier of the IoT device is the context of the UE; The AMF network element determines, according to the secure communication algorithm supported by the IoT device and the context of the UE, that the IoT device supports a secure communication algorithm used by the UE, including: The AMF network element obtains a security communication algorithm used by the UE in the context of the UE; The AMF network element determines that the secure communication algorithm supported by the IoT device includes the secure communication algorithm used by the UE. The secure communication algorithm supported by the IoT device includes the secure communication algorithm used by the UE, which means that the IoT device supports the secure communication algorithm used by the UE. 5. The method according to claim 4 is characterized in that the secure communication algorithm used by the UE includes at least one of the following: SNOW-3G integrity protection algorithm, AES-128 integrity protection algorithm, ZUC-128 integrity protection algorithm, SNOW-3G confidentiality protection algorithm, AES-128 confidentiality protection algorithm, ZUC-128 confidentiality protection algorithm, and the context of the UE is the context of the access layer AS. 6. The method according to claim 1, characterized in that the AMF network element triggers the IoT device to synchronize the security context of the UE with the RAN device, comprising: The AMF network element sends the latest next hop chain calculation NCC value of the UE to the IoT device, and the NCC value is used by the IoT device to determine the security context of the UE; The AMF network element sends the security context of the UE to the RAN device. 7. The method according to claim 6 is characterized in that the NCC value is carried in a registration acceptance message, the registration acceptance message is used to indicate that the IoT device has successfully registered with the network, the NCC value is used by the IoT device to determine the update next hop parameter NH value according to the difference between the NCC value and the local NCC=0 of the IoT device, and derive the AS key Kgnb according to the NH value and the key Kasme derived in advance by the IoT device, the key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE, the security context of the UE includes the AS key Kgnb, and the AS key Kgnb is used for secure data transmission between the IoT device and the RAN. 8. The method according to claim 6 is characterized in that the NCC value is carried in a registration acceptance message, the registration acceptance message is used to indicate that the IoT device has successfully registered with the network, and the registration acceptance message also includes the non-access layer NAS uplink count value of the UE, the NAS uplink count value is used by the IoT device to derive the NAS key according to the key Kamf derived in advance by the IoT device, the key Kamf derived in advance by the IoT device is the same as the key Kamf generated by the UE, the NCC value is used by the IoT device to determine the NH value according to the difference between the NCC value and the local NCC=0 of the IoT device, and derive the AS key Kgnb according to the NH value and the key Kasme derived in advance by the IoT device and the NAS key, the key Kasme derived in advance by the IoT device is the same as the key Kasme generated by the UE, the security context of the UE includes the AS key Kgnb, and the AS key Kgnb is used for secure data transmission between the IoT device and the RAN. 9. The method according to claim 1 is characterized in that the IoT device is a smart wearable device, specifically the IoT device is a smart watch. 10. A smart watch data fast transmission system based on communication protocol adaptation, characterized in that the system includes an access and mobility management function AMF network element, and the system is configured as follows: In the case where the Internet of Things IoT device requests access to the network where the AMF network element is located through the access network RAN device, if the AMF network element determines that the IoT device shares a secure communication protocol with the UE, the AMF network element determines that the IoT device does not need to perform a security authentication process for access, and the IoT device is a smart wearable device; In response to the IoT device not needing to perform a security authentication process for access, the AMF network element triggers the IoT device to synchronize the security context of the UE with the RAN device, and the security context of the UE is used for secure data transmission between the IoT device and the RAN.