Security management according to location change in proximity based services

1 . A server comprising: monitor means for monitoring locations of UEs (more than one article of User Equipment) that are grouped to conduct direct communication with each other; and management means for managing security of the direct communication based on the locations. 2 . The server according to claim 1 , wherein the management means is configured to: instruct, when it is detected as a result of the monitoring that one or more first UEs among the UEs have moved out of a range of the direct communication, the first UEs to remove a session key that has been used for the direct communication; and instruct a second UE among remaining UEs to update the session key between the remaining UEs. 3 . The server according to claim 2 , wherein the management means is configured to determine, in response to requests from the first UEs, whether the first UEs are allowed to continue conducting direct communication with each other. 4 . The server according to claim 3 , wherein the management means is configured to instruct, when it is determined that the first UEs are allowed to continue conducting the direct communication, the first UEs to derive a new session key. 5 . The server according to claim 2 , wherein the management means is configured not to issue the instruction when it is determined as the result of the monitoring that none of the UEs has changed the location, or that all of the UEs have changed the location but stay within the group range. 6 . The server according to claim 1 , wherein the monitor means is configured to: periodically acquire information on the locations; and compare currently acquired information with previously acquired information to determine whether or not any one of the UEs has moved out of the group range. 7 . The server according to claim 6 , wherein the monitor means is configured to acquire the information from a GMLC (Gateway Mobile Location Centre). 8 . The server according to claim 1 , wherein the direct communication comprises ProSe (Proximity based Services) communication. 9 . The server according to claim 1 , comprising a ProSe server. 10 . A UE that is grouped with different UEs to conduct direct communication with each other, the UE comprising: update means for updating a session key used for the direct communication in response to reception of an instruction from a server, the instruction being issued when the server detects that one or more UEs among the different UEs have moved out of a range of the group; and request means for requesting remaining UEs to update the session key. 11 . The UE according to claim 10 , wherein until a predetermined time elapses from the reception of the instruction, the update means is configured to wait the update and the request means is configured to wait the request. 12 . A UE that is grouped with different UEs to conduct direct communication with each other, the UE comprising: removal means for removing a session key used for the direct communication in response to reception of an instruction from a server, the instruction being issued when the server detects that the UE has moved out of a range of the group. 13 . The UE according to claim 12 , further comprising: request means for requesting the server to continue conducting direct communication with one or more UEs that have moved out of the group range together with the UE. 14 . The UE according to claim 13 , further comprising: derivation means for deriving a new session key when the server determines that the UE is allowed to continue conducting the direct communication. 15 . A communication system comprising: a plurality of UEs that are grouped to conduct direct communication with each other; and a server that monitors locations of the plurality of UEs, and manages security of the direct communication based on the locations. 16 . A method of controlling operations in a server, the method comprising: monitoring locations of UEs that are grouped to conduct direct communication with each other; and managing security of the direct communication based on the locations. 17 . A method of controlling operations in a UE that is grouped with different UEs to conduct direct communication with each other, the method comprising: updating a session key used for the direct communication in response to reception of an instruction from a server, the instruction being issued when the server detects that one or more UEs among the different UEs have moved out of a range of the group; and requesting remaining UEs to update the session key. 18 . A method of controlling operations in a UE that is grouped with different UEs to conduct direct communication with each other, the method comprising: removing a session key used for the direct communication in response to reception of an instruction from a server, the instruction being issued when the server detects that the UE has moved out of a range of the group.