公开(公告)号：US07587598B2

公开(公告)日：2009-09-08

申请号：US10609685

申请日：2003-07-01

申请人： Yoshihiro Ohba ,  Yashuhiro Katsube ,  Shinichi Baba ,  Anthony McAuley ,  Subir Das

发明人： Yoshihiro Ohba ,  Yashuhiro Katsube ,  Shinichi Baba ,  Anthony McAuley ,  Subir Das

IPC分类号： H04L9/32

CPC分类号： H04L63/08 ,  H04L63/16 ,  H04L63/162 ,  H04L63/166

摘要： A system and method are provided for establishing a network communication session using fast authentication. In a network system a client or user device may establish a communication session with a server using full authentication. If the session is interrupted or discontinued and resumption of the session is requested, a session identifier of the previously established session may be compared to the session identifier of the requested session. If a match is detected, the session may be resumed using a fast authentication (or re-authentication) procedure such that the session is resumed more efficiently and expediently. Fast authentication may be performed, for example, even when the first session and the resumed second session are of different authentication layers, different types of network interfaces and/or different locations. Thus, a session, such as a TLS session, may resume functionality among multiple defined authentication protocols or technologies such as 802.1X, PANA or cellular based systems.

摘要翻译： 提供了一种用于使用快速认证建立网络通信会话的系统和方法。 在网络系统中，客户机或用户设备可以使用完全认证与服务器建立通信会话。 如果会话被中断或中止，并且请求恢复会话，则可以将先前建立的会话的会话标识符与所请求会话的会话标识符进行比较。 如果检测到匹配，则可以使用快速认证（或重新认证）过程恢复会话，使得会话更有效和方便地恢复。 例如，即使当第一会话和恢复的第二会话具有不同的认证层，不同类型的网络接口和/或不同的位置时，也可以执行快速认证。 因此，诸如TLS会话的会话可以在诸如802.1X，PANA或基于蜂窝的系统的多个定义的认证协议或技术中恢复功能。

公开(公告)号：US07505433B2

公开(公告)日：2009-03-17

申请号：US11096722

申请日：2005-04-01

申请人： Raziq Yaqub ,  Tao Zhang

发明人： Raziq Yaqub ,  Tao Zhang

IPC分类号： H04Q7/00

CPC分类号： H04W48/16 ,  H04W36/0083

摘要： In some embodiments, a method is disclosed involving a mobile device discovery and use of target wireless networks which are at least partly within a coverage area of another wireless network which provides location information which includes: acquiring data from a plurality of said target wireless networks; acquiring location information from said another wireless network; mapping said data from said plurality of said target wireless networks with said location information; and selecting one of said plurality of target wireless networks based on said mapped data.

摘要翻译： 在一些实施例中，公开了一种涉及移动设备发现和使用目标无线网络的方法，所述目标无线网络至少部分地在提供位置信息的另一无线网络的覆盖区域内，所述位置信息包括：从多个所述目标无线网络获取数据; 从所述另一无线网络获取位置信息; 使用所述位置信息将来自所述多个所述目标无线网络的所述数据映射; 以及基于所述映射数据选择所述多个目标无线网络中的一个。

公开(公告)号：US20090022127A1

公开(公告)日：2009-01-22

申请号：US12172388

申请日：2008-07-14

申请人： Patrick Traynor ,  Byungsuk Kim ,  Farooq Anjum

发明人： Patrick Traynor ,  Byungsuk Kim ,  Farooq Anjum

IPC分类号： H04Q7/00

CPC分类号： H04W64/00 ,  G01S5/02 ,  G01S5/0252 ,  G01S5/14 ,  H04L63/10 ,  H04L63/107 ,  H04W12/08 ,  H04W88/08

摘要： A system and method that uses wireless-capable desktop computers in a vicinity such as to enable one to securely determine the location of an untrusted user with office level granularity.

摘要翻译： 在附近使用无线能力的台式计算机的系统和方法，以使得人们可以安全地确定具有办公级别粒度的不受信任的用户的位置。

公开(公告)号：US20080310366A1

公开(公告)日：2008-12-18

申请号：US12135194

申请日：2008-06-08

申请人： Yoshihiro Oba ,  Subir Das

发明人： Yoshihiro Oba ,  Subir Das

IPC分类号： H04Q7/00 ,  H04L9/32

CPC分类号： H04W12/06 ,  H04L63/0823 ,  H04W36/0011 ,  H04W36/005 ,  H04W60/005

摘要： A system and method for performing MIH pre-authentication, which includes providing support for both direct and/or indirect pre-authentication and providing support for both network-initiated and mobile-initiated pre-authentication.

摘要翻译： 一种用于执行MIH预认证的系统和方法，其包括为直接和/或间接预认证提供支持，并且为网络启动和移动发起的预认证提供支持。

公开(公告)号：US07463892B2

公开(公告)日：2008-12-09

申请号：US11161709

申请日：2005-08-12

申请人： Martin Eiger ,  Moncef Elaoud ,  Raquel Morera

发明人： Martin Eiger ,  Moncef Elaoud ,  Raquel Morera

IPC分类号： H04L12/28 ,  H04L12/56

CPC分类号： H04W72/1221 ,  H04L47/10 ,  H04L47/14 ,  H04L47/50 ,  H04L47/564

摘要： Traffic flows of data packets from respective packet queues in wireless stations to a shared transmission medium of a wireless network are scheduled in accordance with Hybrid Controlled Channel Access (HCCA) and Enhanced Distributed Channel Access (EDCA). HCCA is applied by eliminating from consideration for HCCA access flows for which the sum of a desired minimum age of an oldest data packet in the respective packet queue and the time of creation of the oldest data packet is greater than the present time. For flows that are not eliminated from consideration, HCCA access is granted to the flow having a smallest sum of the desired maximum age of the oldest data packet and the time of creation of the oldest data packet. When all traffic flows are eliminated from consideration for HCCA access, EDCA is applied so that traffic flows compete for access to the medium.

摘要翻译： 根据混合控制信道接入（HCCA）和增强分布式信道接入（EDCA）调度数据分组从无线站中的相应分组队列到无线网络的共享传输介质的业务流。 通过消除对HCCA访问流的考虑来应用HCCA，对于HCCA访问流，相应分组队列中期望最小数据分组的期望最小年龄的和与最旧数据分组的创建时间之和大于当前时间。 对于没有从考虑中消除的流，HCCA访问被授予具有最旧数据分组的期望最大年龄的最小和和最早数据分组的创建时间的流。 当从HCCA接入考虑中消除所有业务流时，应用EDCA，以便流量竞争访问媒体。

公开(公告)号：US20080141031A1

公开(公告)日：2008-06-12

申请号：US11867659

申请日：2007-10-04

申请人： Yoshihiro Oba ,  Subir Das

发明人： Yoshihiro Oba ,  Subir Das

IPC分类号： G06F21/00 ,  H04L9/00

CPC分类号： H04W12/06 ,  H04L63/08 ,  H04L63/162 ,  H04L63/205

摘要： This document describes an EAP method used for extending EAP functionality. The extended functionality includes channel binding and re-authentication. The EAP method also allows sequencing of multiple EAP methods inside it.

摘要翻译： 本文档描述了用于扩展EAP功能的EAP方法。 扩展功能包括通道绑定和重新认证。 EAP方法还允许对其内的多种EAP方法进行排序。

公开(公告)号：US20080062926A1

公开(公告)日：2008-03-13

申请号：US11828878

申请日：2007-07-26

申请人： Yoshihiro Oba

发明人： Yoshihiro Oba

IPC分类号： H04Q7/00

CPC分类号： H04W36/0011 ,  H04L69/28 ,  H04W36/005 ,  H04W80/04

摘要： The preferred embodiments relate to, among other things, systems and methods for a media-independent-handover (MIH) Protocol State Machine. The present application provides, among other things, a MIH protocol state machine system and method for both source and receiver nodes. A system and/or method is described for facilitating media independent handover of a mobile node within or between network infrastructure, comprising: a media independent handover protocol state machine configured to provide states of a source node or a destination node during a transaction, said state machine addressing requests or responses both with and without an AckReq.

摘要翻译： 除了别的以外，优选实施例涉及用于媒体无关切换（MIH）协议状态机的系统和方法。 除了别的以外，本申请提供了用于源和接收器节点的MIH协议状态机系统和方法。 描述了用于促进移动节点在网络基础设施内或网络基础设施之间的媒体独立切换的系统和/或方法，包括：媒体独立切换协议状态机，被配置为在事务期间提供源节点或目的地节点的状态，所述状态 机器寻址有无AckReq的请求或响应。

公开(公告)号：US20080031194A1

公开(公告)日：2008-02-07

申请号：US11694983

申请日：2007-03-31

申请人： Raziq Yaqub

发明人： Raziq Yaqub

IPC分类号： H04Q7/00

CPC分类号： H04W12/04 ,  G01S5/02 ,  G01S19/14 ,  H04L63/062 ,  H04L63/107 ,  H04W36/0016 ,  H04W84/12 ,  H04W88/08

摘要： In the public WLAN systems, reliable user re-authentication for mobility support is an essential step. However, re-authentication during handoff procedures causes long handoff latency which deteriorates the quality of service specifically for real-time multimedia applications. One possible solution is to authenticate the Mobile Node (MN) in advance with all the neighboring Access Points (APs) and distribute the Session Keys to them. However, the key issue is how to optimally and efficiently select the neighboring APs. In the preferred embodiments, we propose a system that takes into account the user current “Geo-Location”, “Mobility Pattern” and “Application Running on MN”; estimates the “Expected Mobility Zone” (EMZ) and selects an appropriate set of candidate APs corresponding to the MN's geo-location. The EMZ may comprise of APs belonging to “Intra-domain”, “Inter-domain” or “Inter-technology Networks” (e.g., WLAN, WiMAX, and Cellular etc). The system assumes that not only the Mobile Nodes but also the Fixed Nodes (APs or Base Stations) are capable of knowing their Geo-Location Coordinates X, Y, Z. This capability may come either by integrating GPS receiver or through any other alternate, state of the art or future positioning technologies in the APs.

摘要翻译： 在公共WLAN系统中，可靠的用户重新认证用于移动性支持是必不可少的一步。 然而，在切换过程中的重新认证导致长的切换等待时间，这恶化了专门用于实时多媒体应用的服务质量。 一个可能的解决方案是提前与所有相邻接入点（AP）认证移动节点（MN），并将会话密钥分发给他们。 然而，关键问题是如何优化和有效地选择相邻的AP。 在优选实施例中，我们提出考虑用户当前的“地理位置”，“移动模式”和“在MN上运行的应用”的系统。 估计“预期移动区域”（EMZ），并选择对应于MN的地理位置的适当的候选AP集合。 EMZ可以包括属于“域内”，“域间”或“技术间网络”（例如，WLAN，WiMAX和蜂窝等）的AP。 该系统假设不仅移动节点，而且固定节点（AP或基站）能够知道其地理位置坐标X，Y，Z.该能力可以通过集成GPS接收机或通过任何其他替代， AP中的最新技术或未来定位技术。

公开(公告)号：US20070171870A1

公开(公告)日：2007-07-26

申请号：US11405039

申请日：2006-04-17

申请人： Yoshihiro Oba ,  Shinichi Baba

发明人： Yoshihiro Oba ,  Shinichi Baba

IPC分类号： H04Q7/00

CPC分类号： H04W12/06 ,  H04L63/08 ,  H04W8/12 ,  H04W8/26 ,  H04W36/0016 ,  H04W36/14 ,  H04W80/04

摘要： In some illustrative embodiments, a novel system and method is provided that can, for example, extend concepts of pre-authentication (such as, e.g., IEEE 802.11i pre-authentication) so as to operate across networks or subnetworks (such as, e.g., IP subnets). In preferred embodiments, a novel architecture includes one or both of two new mechanisms that substantially improve, e.g., higher-layer handoff performance. A first mechanism is referred to as “pre-configuration,” which allows a mobile to pre-configure higher-layer information effective in candidate IP subnets to handoff. A second mechanism is referred to as “virtual soft-handoff,” which allows a mobile to send or receive packets through the candidate IP subnets even before it is actually perform a handoff to any of the candidate IP subnets.

摘要翻译： 在一些说明性实施例中，提供了一种新颖的系统和方法，其可以例如扩展预认证（例如，IEEE 802.11i预认证）的概念，以便跨网络或子网（例如， ，IP子网）。 在优选实施例中，新颖的架构包括两个新的机制中的一个或两个，其基本上改善了例如较高层切换性能。 第一种机制被称为“预配置”，其允许移动台预先配置在候选IP子网中有效的更高层信息进行切换。 第二种机制被称为“虚拟软切换”，其允许移动台甚至在它实际上对任何候选IP子网进行切换之前通过候选IP子网发送或接收分组。

公开(公告)号：US20070036116A1

公开(公告)日：2007-02-15

申请号：US11161709

申请日：2005-08-12

申请人： Martin Eiger ,  Moncef Elaoud ,  Raquel Morera

发明人： Martin Eiger ,  Moncef Elaoud ,  Raquel Morera

IPC分类号： H04Q7/24

CPC分类号： H04W72/1221 ,  H04L47/10 ,  H04L47/14 ,  H04L47/50 ,  H04L47/564

摘要： Traffic flows of data packets from respective packet queues in wireless stations to a shared transmission medium of a wireless network are scheduled in accordance with Hybrid Controlled Channel Access (HCCA) and Enhanced Distributed Channel Access (EDCA). HCCA is applied by eliminating from consideration for HCCA access flows for which the sum of a desired minimum age of an oldest data packet in the respective packet queue and the time of creation of the oldest data packet is greater than the present time. For flows that are not eliminated from consideration, HCCA access is granted to the flow having a smallest sum of the desired maximum age of the oldest data packet and the time of creation of the oldest data packet. When all traffic flows are eliminated from consideration for HCCA access, EDCA is applied so that traffic flows compete for access to the medium.

摘要翻译： 根据混合控制信道接入（HCCA）和增强分布式信道接入（EDCA）调度数据分组从无线站中的相应分组队列到无线网络的共享传输介质的业务流。 通过消除对HCCA访问流的考虑来应用HCCA，对于HCCA访问流，相应分组队列中期望最小数据分组的期望最小年龄的和与最旧数据分组的创建时间之和大于当前时间。 对于没有从考虑中消除的流，HCCA访问被授予具有最旧数据分组的期望最大年龄的最小和和最早数据分组的创建时间的流。 当从HCCA接入考虑中消除所有业务流时，应用EDCA，以便流量竞争访问媒体。