-
11.发明授权Method and system for ensuring authorized operation of a communication system as a secondary user 有权确保作为次要用户的通信系统的授权操作的方法和系统公开(公告)号:US08832797B2
公开(公告)日:2014-09-09
申请号:US12394561
申请日:2009-02-27
CPC分类号: H04W12/06 , H04L63/0823 , H04W16/14 , H04W28/18 , H04W52/367
摘要: A communication system (100) is facilitated by an access node (102) to support communication with subscriber units (104, 106) as secondary users of a regulated spectrum portion. The access node requests permission to operate as a secondary user from an authorization server (118). The authorization server provides authorized transmission parameters based on characteristics of the access node. The access node operates according to the authorized transmission parameters and provides the parameters to eligible subscriber units.
摘要翻译: 通信系统(100)由接入节点(102)促进,以支持与订户单元(104,106)的通信,作为受限频谱部分的次要用户。 访问节点请求从授权服务器(118)作为次要用户操作的许可。 授权服务器根据接入节点的特性提供授权的传输参数。 接入节点根据授权的传输参数进行操作,并向符合条件的用户单元提供参数。
-
12.发明申请METHOD AND SYSTEM FOR ENSURING AUTHORIZED OPERATION OF A COMMUNICATION SYSTEM AS A SECONDARY USER 有权用于确保作为第二用户的通信系统的授权操作的方法和系统公开(公告)号:US20100223659A1
公开(公告)日:2010-09-02
申请号:US12394561
申请日:2009-02-27
IPC分类号: H04L9/00
CPC分类号: H04W12/06 , H04L63/0823 , H04W16/14 , H04W28/18 , H04W52/367
摘要: A communication system (100) is facilitated by an access node (102) to support communication with subscriber units (104, 106) as secondary users of a regulated spectrum portion. The access node requests permission to operate as a secondary user from an authorization server (118). The authorization server provides authorized transmission parameters based on characteristics of the access node. The access node operates according to the authorized transmission parameters and provides the parameters to eligible subscriber units.
摘要翻译: 通信系统(100)由接入节点(102)促进,以支持与订户单元(104,106)的通信,作为受限频谱部分的次要用户。 访问节点请求从授权服务器(118)作为次要用户操作的许可。 授权服务器根据接入节点的特性提供授权的传输参数。 接入节点根据授权的传输参数进行操作,并向符合条件的用户单元提供参数。
-
公开(公告)号:US07562148B2
公开(公告)日:2009-07-14
申请号:US11018301
申请日:2004-12-21
IPC分类号: G06F15/16
CPC分类号: H04L61/1511 , H04L29/12018 , H04L29/12066 , H04L61/10
摘要: Distributed DNS in a wireless communication network comprising broadcasting by a first node a request message to a second node is disclosed. The request message comprises a hostname of the second node. The first node forwards the request message to the second node through intermediate nodes in the wireless communication network and the second node transmits a response message to the first node. The response message comprises a MAC address of the second node.
摘要翻译: 公开了一种在无线通信网络中的分布式DNS,包括由第一节点广播向第二节点的请求消息。 请求消息包括第二节点的主机名。 第一节点通过无线通信网络中的中间节点将请求消息转发到第二节点,而第二节点向第一节点发送响应消息。 响应消息包括第二节点的MAC地址。
-
14.发明申请METHOD AND DEVICE FOR DYNAMICALLY UPDATING AND MAINTAINING CERTIFICATE PATH DATA ACROSS REMOTE TRUST DOMAINS 审中-公开用于通过远程信任域动态更新和维护证书路径数据的方法和设备公开(公告)号:US20140068251A1
公开(公告)日:2014-03-06
申请号:US13601214
申请日:2012-08-31
IPC分类号: H04L29/06
CPC分类号: H04L63/0823 , H04L9/006 , H04L9/3265
摘要: A method and device is provided for dynamically maintaining and updating public key infrastructure (PKI) certificate path data across remote trusted domains to enable relying parties to efficiently authenticate other nodes in an autonomous ad-hoc network. A certificate path management unit (CPMU) monitors a list of sources for an occurrence of a life cycle event capable of altering an existing PKI certificate path data. Upon determining that the life cycle event has occurred, the CPMU calculates a new PKI certificate path data to account for the occurrence of the life cycle event and provides the new PKI certificate path data to at least one of a relying party in a local domain or a remote CPMU in a remote domain.
摘要翻译: 提供了一种方法和设备,用于在远程可信域之间动态地维护和更新公共密钥基础设施(PKI)证书路径数据,以使依赖方有效地认证自治自组织网络中的其他节点。 证书路径管理单元(CPMU)监视能够改变现有PKI证书路径数据的生命周期事件发生的源的列表。 在确定生命周期事件已经发生时,CPMU计算新的PKI证书路径数据以考虑生命周期事件的发生,并将新的PKI证书路径数据提供给本地域中的依赖方中的至少一个或 远程域中的远程CPMU。
-
15.发明授权Method and device for distributing public key infrastructure (PKI) certificate path data 有权用于分发公钥基础设施(PKI)证书路径数据的方法和设备公开(公告)号:US08595484B2
公开(公告)日:2013-11-26
申请号:US12181694
申请日:2008-07-29
IPC分类号: H04L9/00
CPC分类号: H04L9/3268 , H04L9/007 , H04L9/3265 , H04L2209/80
摘要: A method and device for distributing public key infrastructure (PKI) certificate path data enables relying nodes to efficiently authenticate other nodes in an autonomous ad-hoc network. The method includes compiling, at a certificate path management unit (CPMU), the PKI certificate path data (step 405). One or more available certificate paths are then determined at the CPMU for at least one relying node (step 410). Next, the PKI certificate path data are distributed by transmitting a certificate path data message from the CPMU to the at least one relying node (step 415). The certificate path data message includes information identifying one or more trusted certification authorities associated with the one or more available certificate paths.
摘要翻译: 用于分发公共密钥基础设施(PKI)证书路径数据的方法和设备使得依赖节点有效地认证自治自组织网络中的其他节点。 该方法包括在证书路径管理单元(CPMU)下编译PKI证书路径数据(步骤405)。 然后在CPMU为至少一个依赖节点确定一个或多个可用证书路径(步骤410)。 接下来,通过从CPMU向至少一个依赖节点发送证书路径数据消息来分发PKI证书路径数据(步骤415)。 证书路径数据消息包括标识与一个或多个可用证书路径相关联的一个或多个可信证书颁发机构的信息。
-
16.发明申请METHOD AND APPARATUS FOR EXTERNAL ORGANIZATION PATH LENGTH VALIDATION WITHIN A PUBLIC KEY INFRASTRUCTURE (PKI) 有权公共关键基础设施(PKI)中外部组织路线长度验证的方法和装置公开(公告)号:US20120210129A1
公开(公告)日:2012-08-16
申请号:US13452408
申请日:2012-04-20
IPC分类号: H04L9/30
CPC分类号: G06F21/33 , G06F2221/2145 , H04L9/007 , H04L9/3265 , H04L63/064 , H04L63/0823
摘要: A method for external organization path length (EOPL) validation is provided. A relying party node of an organization receives an authentication request from a subject node of an external organization. The relying party node then obtains and evaluates certificates from a chain of certificates that link the subject node to a trust anchor of the relying party node wherein, at least one certificate from the chain of certificates comprises an enabled external organization flag (EOF) and/or an external organization path length constraint (EOPLC). The relying party node invalidates authentication of the subject node when the relying party node determines that a total number of enabled EOFs from certificates in the chain of certificates exceeds the lowest EOPLC value from certificates in the chain of certificates.
摘要翻译: 提供了外部组织路径长度(EOPL)验证的方法。 组织的依赖方节点从外部组织的主题节点接收认证请求。 然后,依赖方节点从证书链中获得并评估证书,所述证书链将主体节点链接到依赖方节点的信任锚点,其中,来自证书链的至少一个证书包括启用的外部组织标志(EOF)和/ 或外部组织路径长度约束(EOPLC)。 当依赖方节点确定从证书链中的证书中启用的EOF的总数量超过证书链中的证书的最低EOPLC值时,依赖方节点使主体节点的认证无效。
-
公开(公告)号:US08204034B2
公开(公告)日:2012-06-19
申请号:US11621803
申请日:2007-01-10
申请人: Ramandeep Ahuja , Narayanan Venkitaraman , Mario F. Derango , Surender Kumar , Anthony R. Metke , Vidya Narayanan
发明人: Ramandeep Ahuja , Narayanan Venkitaraman , Mario F. Derango , Surender Kumar , Anthony R. Metke , Vidya Narayanan
CPC分类号: H04W40/246 , H04L45/00 , H04W80/04
摘要: A method for transmitting a packet from a transmitting node to a destination node in a communication network can enable improved network efficiency. The method includes receiving and storing identification information concerning at least one foreign node that is directly reachable in the communication network (block 505). It is then determined, using the identification information, whether the destination node is directly reachable in the communication network (block 510). Based on whether the destination node is directly reachable in the communication network, it is then determined whether to transmit the packet to the destination node using a tunneling protocol or without using a tunneling protocol (block 515). The packet is then transmitted from the transmitting node to the destination node (block 520).
摘要翻译: 在通信网络中从发送节点向目的地节点发送分组的方法可以提高网络效率。 该方法包括接收和存储关于在通信网络中可直接到达的至少一个外来节点的标识信息(方框505)。 然后,使用识别信息确定目的地节点是否可直接到达通信网络(方框510)。 基于目的地节点在通信网络中是否可直接到达,然后确定是否使用隧道协议向目的地节点发送分组,或者不使用隧道协议(框515)。 然后从发送节点向目的地节点发送分组(框520)。
-
公开(公告)号:US20110154024A1
公开(公告)日:2011-06-23
申请号:US12644977
申请日:2009-12-22
申请人: Ananth Ignaci , Adam C. Lewis , Anthony R. Metke
发明人: Ananth Ignaci , Adam C. Lewis , Anthony R. Metke
IPC分类号: H04L29/06
CPC分类号: H04L63/102 , H04L9/3268 , H04L63/0823
摘要: A certificate authority selection unit implements a method for selecting one of a plurality of certificate authorities servicing a plurality of administrative domains in a communication system. The method includes: receiving, from an end-entity via an interface, a certificate service request associated with an identifier; selecting, based on the identifier, one of the plurality of administrative domains in the communication system, wherein the plurality of administrative domains are serviced by a plurality of certificate authorities; retrieving a security profile for the end-entity; and selecting, based on the security profile for the end-entity, one of the plurality of certificate authorities to process the certificate service request.
摘要翻译: 认证机构选择单元实现在通信系统中选择服务于多个管理域的多个证书机构中的一个的方法。 该方法包括:从终端实体经由接口接收与标识符相关联的证书服务请求; 基于所述标识符来选择所述通信系统中的所述多个管理域中的一个,其中所述多个管理域由多个证书颁发机构提供服务; 检索终端实体的安全配置文件; 以及基于所述终端实体的安全简档来选择所述多个证书颁发机构之一来处理所述证书服务请求。
-
19.发明申请METHOD AND SYSTEM FOR DISTRIBUTED ADMISSION CONTROL IN MOBILE AD HOC NETWORKS (MANETS) 有权移动通信网络中分布式接入控制的方法与系统(MANETS)公开(公告)号:US20090109891A1
公开(公告)日:2009-04-30
申请号:US11877778
申请日:2007-10-24
IPC分类号: H04B7/14
CPC分类号: H04W28/16 , H04L47/70 , H04L47/805 , H04L47/824 , H04W84/18
摘要: Techniques are provided for distributed admission control (AC) in a mobile ad hoc network (MANET). When the source node transmits a new communication stream (NCS) toward a destination node, other nodes allow transmission of the NCS during a temporary admission period even though the NCS has not yet been admitted. The nodes can determine whether the NCS causes degradation of any existing communication stream(s) (ECSs) supported by that node based on existing QoS requirements associated with the ECSs. In some implementations, nodes which determine that they are unable to support ECSs transmit an indicator which notifies other nodes that admission of the NCS is denied by that node. By contrast, if none of the nodes transmit an indicator during the temporary admission period, then the NCS is “admitted” to the MANET and the source node is permitted to keep transmitting the NCS, a variation thereof or another new communication stream.
摘要翻译: 为移动自组织网络(MANET)中的分布式准入控制(AC)提供技术。 当源节点向目的地节点发送新的通信流(NCS)时,即使NCS尚未被允许,其他节点允许在临时准入期间传送NCS。 节点可以基于与ECS相关联的现有QoS要求来确定NCS是否导致由该节点支持的任何现有通信流(ECS)的降级。 在一些实现中,确定它们不能支持ECS的节点传送通知其他节点的指示符,该节点拒绝接纳NCS。 相比之下,如果在临时准入期间没有节点发送指示符,则NCS被“允许”到MANET,并且源节点被允许继续发送NCS,其变体或另一新的通信流。
-
公开(公告)号:US09306932B2
公开(公告)日:2016-04-05
申请号:US13328334
申请日:2011-12-16
IPC分类号: H04L29/06
CPC分类号: H04L63/0823
摘要: A certificate issuer (210) can periodically request, receive, and store current server-based certificate validation protocol (SCVP) staples (225) for supported relying parties (205) from at least one server-based certificate validation protocol (SCVP) responder (215). The certificate issuer (210) can receive a contact initiation request (220) from one of the relying parties (205). Responsive to receiving the contact initiation request (220), the certificate issuer (210) can identify a current SCVP staple from the saved staples that is applicable to the relying party (205). The certificate issuer (210) can conveying a response to the contact initiation request (220) to the relying party (205). The response can comprise the identified SCVP staple and a public key infrastructure (PKI) certificate (230) of the certificate issuer. The SCVP staple can validate a certification path between the PKI certificate (230) and a different certificate trusted by the relying party (205).
-
-
-
-
-
-
-
-
-
搜索结果
61 条记录 (耗时 0.035 秒)
