-
公开(公告)号:US20100208663A1
公开(公告)日:2010-08-19
申请号:US12738972
申请日:2008-10-22
申请人: Jun Hirano , Takashi Aramaki , Chun Keong Benjamin Lim , Chan Wah Ng , Tien Ming Benjamin Koh , Pek Yew Tan , Keigo Aso
发明人: Jun Hirano , Takashi Aramaki , Chun Keong Benjamin Lim , Chan Wah Ng , Tien Ming Benjamin Koh , Pek Yew Tan , Keigo Aso
IPC分类号: H04W40/00
CPC分类号: H04W40/02 , H04L45/308 , H04W80/04 , H04W88/06
摘要: The invention discloses a technique to efficiently realize a routing based on preference of a mobile terminal in case the mobile terminal is connected to a mobility management domain of network base different from a home network domain. According to this technique, a mobile terminal (mobile node; MN) 101 has two interfaces, and these interfaces are connected to a mobility management domain (local mobility domain) 11 under the condition that these interfaces are connected to MAG 111 and MAG 112 respectively. In case MN itself decides one of the interfaces to be used for a specific packet flow communication, a routing preference to instruct that the packet flow is to be sent on a routing via the interface is notified to MAG. When MAG notifies the routing preference to LMA (filtering agent) 110, filtering based on the routing preference is carried out.
摘要翻译: 本发明公开了一种在移动终端连接到不同于家庭网络域的网络基地的移动性管理域的情况下,基于移动终端的偏好来有效地实现路由的技术。 根据该技术,移动终端(移动节点; MN)101具有两个接口,并且这些接口在这些接口分别连接到MAG 111和MAG 112的条件下连接到移动性管理域(本地移动性域)11 。 在MN本身决定要用于特定分组流通信的接口之一的情况下,通知经由接口在路由上发送分组流的路由选择。 当MAG向LMA(过滤代理)110通知路由选择时,执行基于路由选择的过滤。
-
公开(公告)号:US08731547B2
公开(公告)日:2014-05-20
申请号:US12678729
申请日:2008-09-19
申请人: Keigo Aso , Jun Hirano , Chan Wah Ng , Pek Yew Tan , Chun Keong Benjamin Lim , Tien Ming Benjamin Koh
发明人: Keigo Aso , Jun Hirano , Chan Wah Ng , Pek Yew Tan , Chun Keong Benjamin Lim , Tien Ming Benjamin Koh
IPC分类号: H04W36/34
CPC分类号: H04W36/14 , H04L45/22 , H04W12/08 , H04W28/08 , H04W36/0055 , H04W36/36 , H04W60/005 , H04W76/20 , H04W88/06 , H04W92/02
摘要: A technique is disclosed, according to which a mobile node, having a plurality of interfaces and performing communication according to flow information when an operator is performing communication based on the flow information as defined by a policy, can select an interface suitable for the flow and can perform communication. According to this technique, a mobile node (MN 10) having a plurality of interfaces has a list to indicate domain limited flows to be transmitted only within a specific network (a trusted network), and a list to indicate the trusted networks. When a certain interface performs handover, and in case there is a domain limited flow that uses the interface, it is decided whether the network of handover destination is a trusted network or not, and in case the network of the handover destination is not a trusted network, it is decided whether it is possible or not to transmit and receive the domain limited flow via another interface that is connected to the trusted network.
摘要翻译: 公开了一种技术,根据该技术,根据该技术,具有多个接口的移动节点并且当运营商基于由策略定义的流信息进行通信时根据流信息执行通信,可以选择适合于流的接口,以及 可以进行通信。 根据该技术,具有多个接口的移动节点(MN 10)具有列表,用于指示仅在特定网络(可信网络)内发送的域限制流,以及用于指示可信网络的列表。 当某个接口执行切换时,在存在使用该接口的域限制流的情况下,确定切换目的地的网络是否为可信网络,并且在切换目的地的网络不是可信任的情况下 网络,决定是否可能通过连接到可信网络的另一接口来发送和接收域限制流。
-
23.发明授权Mobile network managing apparatus and mobile information managing apparatus for controlling access requests 有权用于控制访问请求的移动网络管理装置和移动信息管理装置公开(公告)号:US08539554B2
公开(公告)日:2013-09-17
申请号:US12158968
申请日:2006-12-26
申请人: Jun Hirano , Keigo Aso , Chun Keong Benjamin Lim , Chan Wah Ng , Tien Ming Benjamin Koh , Pek Yew Tan
发明人: Jun Hirano , Keigo Aso , Chun Keong Benjamin Lim , Chan Wah Ng , Tien Ming Benjamin Koh , Pek Yew Tan
IPC分类号: G06F7/04
CPC分类号: H04W12/08 , H04L12/2818 , H04L12/283 , H04L12/2898 , H04L12/4633 , H04L63/0272 , H04L63/104 , H04L63/20 , H04W76/10 , H04W80/04 , H04W84/005
摘要: Disclosed is a technique capable of proper execution of access control based on various security policies set by a home user with regards to a packet sent from a visitor node. According to the technique, a MR (Mobile Router) 10 which manages a mobile PAN 30 determines whether a sender of a packet from a communication terminal connected to the mobile PAN is a home user's node which is allowed direct access into a home network or a visitor node (VN 31), and forwards the packet from the home user's node to an HA 20 while forwarding the packet from the visitor node to a policy server 36 located in a DMZ 35. This allows the policy server to perform access control on every packet from a visitor node which attempts to gain access into the home network based on a security policy 36a.
摘要翻译: 公开了一种能够基于由用户对由访问者节点发送的分组设置的各种安全策略来适当地执行访问控制的技术。 根据该技术,管理移动PAN30的MR(移动路由器)10确定来自连接到移动PAN的通信终端的分组的发送者是否是被允许直接访问家庭网络的家庭用户节点,或者 访问节点(VN31),并且将分组从归属用户节点转发到HA 20,同时将分组从访问节点转发到位于DMZ 35中的策略服务器36.这允许策略服务器对每个 来自访问节点的分组,其尝试基于安全策略36a来访问归属网络。
-
公开(公告)号:US08249086B2
公开(公告)日:2012-08-21
申请号:US12302845
申请日:2007-06-14
申请人: Jun Hirano , Keigo Aso , Chun Keong Benjamin Lim , Chan Wah Ng , Tien Ming Benjamin Koh , Pek Yew Tan
发明人: Jun Hirano , Keigo Aso , Chun Keong Benjamin Lim , Chan Wah Ng , Tien Ming Benjamin Koh , Pek Yew Tan
IPC分类号: H04L12/56
CPC分类号: H04L47/2491 , H04L12/66 , H04L29/12226 , H04L45/38 , H04L61/2015 , H04L61/2061 , H04W8/26 , H04W28/10 , H04W60/005 , H04W80/04 , H04W84/005
摘要: Disclosed is a technique which enables a mobile node (MN) connected to a mobile router (MR) to carry out flow filtering in a mobile network. This technique allows an MN 25 in a mobile network 24 to set a policy needed for the flow filtering in an MR 10 and, in the present invention, an MR inserts an egress characteristic thereof into, for example, a router advertisement message so that the egress characteristic, a node in a mobile network cannot grasp originally, can be advertised to the interior of the mobile network. Thus, the MN can grasp a characteristic of an access network (characteristic of access system 20) even in a case in which it is connected to the MR, which achieves intelligent flow filtering.
摘要翻译: 公开了一种使与移动路由器(MR)连接的移动节点(MN)能够在移动网络中进行流量过滤的技术。 该技术允许移动网络24中的MN 25设置MR 10中的流量过滤所需的策略,并且在本发明中,MR将其出口特性插入到例如路由器通告消息中,使得 出口特性,移动网络中的一个节点最初无法掌握,可以通告给移动网络的内部。 因此,即使在连接到MR的情况下,MN也可以掌握接入网络的特性(接入系统20的特性),从而实现智能流量过滤。
-
公开(公告)号:US20100067381A1
公开(公告)日:2010-03-18
申请号:US12531861
申请日:2008-03-13
CPC分类号: H04W8/12 , H04W60/005 , H04W76/15 , H04W80/04
摘要: A technology is disclosed for appropriately providing a certain service desired by a mobile node, even in an environment including overlay network nodes providing different functions. In the technology, a mobile node (MN) 110 implements Monami6 protocol and transmits a binding update message requesting a service based on the Monami6 protocol. On the other hand, an overlay network is present on a network, the overlay network in which a home agent (MCHA) implementing the Monami6 protocol and a home agent (MSHA) not implementing the Monami6 protocol cooperate to provide functions of an HA. In this instance, for example, an MSHA 150 that receives a message from the mobile node via a path 112 sends the request to an MCHA implementing the Monami6 protocol (such as an MCHA 130) and makes the MCHA process the request.
摘要翻译: 公开了一种用于适当地提供移动节点期望的特定服务的技术,即使在包括提供不同功能的覆盖网络节点的环境中也是如此。 在该技术中,移动节点(MN)110实现Monami6协议,并且基于Monami6协议传送请求服务的绑定更新消息。 另一方面,在网络上存在覆盖网络,其中实现Monami6协议的归属代理(MCHA)和不实现Monami6协议的归属代理(MSHA)协作以提供HA的功能的覆盖网络。 在这种情况下,例如,经由路径112从移动节点接收消息的MSHA 150将请求发送到实施Monami6协议(例如MCHA 130)的MCHA,并使得MCHA处理请求。
-
公开(公告)号:US20090285103A1
公开(公告)日:2009-11-19
申请号:US12307559
申请日:2007-07-06
IPC分类号: H04L12/26
CPC分类号: H04L12/4633 , H04L45/00 , H04L45/18 , H04L2212/00
摘要: Disclosed is a technique whereby a packet transferring apparatus (particularly, a tunnel entry point made to carry out packet encapsulation) becomes capable of detecting a tunneling loop signifying that a packet loops along the same route while undergoing encapsulation. With this technique, at packet transfer, a loop detection module of a router according to the present invention stores a TEL value (value of tunnel encapsulation limit for limiting the number of times of duplication of tunnel) set in an encapsulation header of this packet or stores a TEL value set in an encapsulation header of a packet sent back as an ICMP error In addition, the loop detection module analyzes an increase/decrease variation pattern of the stored TEL value relative to time and, in a case in which the pattern agrees with a unique pattern (sawtooth-like pattern) appearing at the occurrence of a tunneling loop, estimates that a tunneling loop has occurred.
摘要翻译: 公开了一种技术,其中分组传送装置(特别是用于执行分组封装的隧道入口点)变得能够检测表示分组在进行封装时沿着相同路线循环的隧道循环。 利用这种技术,在分组传送中,根据本发明的路由器的环路检测模块存储设置在该分组的封装头部中的TEL值(用于限制隧道复制次数的隧道封装限制值) 存储在作为ICMP错误发回的分组的封装头部中设置的TEL值。此外,循环检测模块分析存储的TEL值相对于时间的增加/减少变化模式,并且在模式一致的情况下 在出现隧道循环时出现了独特的模式(锯齿状模式),估计已经发生了隧道循环。
-
公开(公告)号:US20100208706A1
公开(公告)日:2010-08-19
申请号:US12676847
申请日:2008-09-19
IPC分类号: H04W36/00
CPC分类号: H04W60/005 , H04W36/0027 , H04W36/0033 , H04W76/20 , H04W80/04
摘要: Disclosed is a technique of, in a network conducting network based local mobility management, suppressing generation of signaling and an increase of processing load on a network entity and preventing a delay. According to this technique, a mobile node (MN 130) receives specific information (a token) including an interface identifier and a binding identifier, for example, from a network side (MAG 120) when connecting therewith first. When the mobile node conducts a handover, the mobile node notifies a next connecting MAG 122 of the token. The MAG receiving the token can judge based on this token whether the connection by the mobile node is due to a handover changing a connection point for a certain interface or due to a new connection using a different interface without making an inquiry to other network nodes.
摘要翻译: 本发明公开了一种在进行基于网络的本地移动性管理的网络中抑制信令的产生和网络实体上的处理负荷的增加并防止延迟的技术。 根据该技术,移动节点(MN 130)首先从网络侧(MAG 120)接收包括接口标识符和绑定标识符的特定信息(令牌)。 当移动节点进行切换时,移动节点通知令牌的下一个连接MAG 122。 接收令牌的MAG可以基于该令牌判断移动节点的连接是否由于切换改变特定接口的连接点,或者由于使用不同接口的新连接而不对其他网络节点进行查询。
-
公开(公告)号:US20090238080A1
公开(公告)日:2009-09-24
申请号:US12090972
申请日:2006-10-30
IPC分类号: H04L12/26
CPC分类号: H04L12/4633 , H04L45/00 , H04L45/18
摘要: Disclosed is a technique whereby a tunnel entry point, which encapsulates a packet (generates a tunnel packet), can detect the presence of a tunneling loop causing a packet to loop the same path while encapsulated. According to this technique, upon receipt of a packet from a source node (source) 1100, TEP (tunnel entry point) 1120 inserts it into a tunnel packet header for encapsulation. Upon receipt of tunnel packets from TEP 1120 and TEP 1140, each of TEP 1140 and TEP 1160 copies the identifier of the original tunnel packet header to a new tunnel packet header for encapsulation. When this tunnel packet returns to TEP 1120 due to a tunneling loop, the tunneling loop is detected by referring to the identifier in the received tunnel packet.
摘要翻译: 公开了一种技术,其中封装分组(生成隧道分组)的隧道入口点可以检测出存在引导分组在封装时循环相同路径的隧道循环。 根据该技术,当从源节点(源)1100接收到分组时,TEP(隧道入口点)1120将其插入隧道分组报头以进行封装。 在接收到来自TEP 1120和TEP 1140的隧道分组时,TEP 1140和TEP 1160中的每一个将原始隧道分组报头的标识符复制到新的隧道分组报头以进行封装。 当该隧道报文由于隧道循环而返回给TEP 1120时,通过参考接收到的隧道报文中的标识符来检测隧道环路。
-
公开(公告)号:US07969892B2
公开(公告)日:2011-06-28
申请号:US12090972
申请日:2006-10-30
IPC分类号: H04L12/26
CPC分类号: H04L12/4633 , H04L45/00 , H04L45/18
摘要: Disclosed is a technique whereby a tunnel entry point, which encapsulates a packet (generates a tunnel packet), can detect the presence of a tunneling loop causing a packet to loop the same path while encapsulated. According to this technique, upon receipt of a packet from a source node (source) 1100, TEP (tunnel entry point) 1120 inserts it into a tunnel packet header for encapsulation. Upon receipt of tunnel packets from TEP 1120 and TEP 1140, each of TEP 1140 and TEP 1160 copies the identifier of the original tunnel packet header to a new tunnel packet header for encapsulation. When this tunnel packet returns to TEP 1120 due to a tunneling loop, the tunneling loop is detected by referring to the identifier in the received tunnel packet.
摘要翻译: 公开了一种技术,其中封装分组(生成隧道分组)的隧道入口点可以检测出存在引导分组在封装时循环相同路径的隧道循环。 根据该技术,当从源节点(源)1100接收到分组时,TEP(隧道入口点)1120将其插入隧道分组报头以进行封装。 在接收到来自TEP 1120和TEP 1140的隧道分组时,TEP 1140和TEP 1160中的每一个将原始隧道分组报头的标识符复制到新的隧道分组报头以进行封装。 当该隧道报文由于隧道循环而返回给TEP 1120时,通过参考接收到的隧道报文中的标识符来检测隧道环路。
-
30.发明申请METHOD AND APPARATUS FOR ADDRESS VERIFICATION DURING MULTIPLE ADDRESSES REGISTRATION 审中-公开在多地址注册过程中的地址验证方法和装置公开(公告)号:US20100241737A1
公开(公告)日:2010-09-23
申请号:US12438484
申请日:2007-08-24
IPC分类号: G06F15/177
CPC分类号: H04W12/10 , H04L63/126 , H04W8/04 , H04W8/26 , H04W36/0011 , H04W80/04
摘要: In this present invention, when the HA is performing Bulk Registration for a Multimode Node, the HA will tagged those CoAs specified within the single BU as unverified. A verification mechanism implemented at the HA will be triggered to test the addressability of the unverified CoA before using the said unverified CoA. The method of verification involves the HA to send an acknowledgment message to an unverified CoA of the Multimode Node to test the said unverified CoA for its addressability. When the Multimode Node receives the acknowledgment message from the HA, the Multimode Node replies the HA with another single BU. Upon the receipt of the second single BU from the Multimode Node, the HA can then verify that the said unverified CoA of the Multimode Node.
摘要翻译: 在本发明中,当HA正在执行多模式节点的批量注册时,HA将在单个BU内指定的那些CoAs标记为未经验证。 在使用所述未经验证的CoA之前,将触发在医管局实施的验证机制,以测试未经验证的CoA的可寻址性。 验证方法涉及HA向多模节点的未经验证的CoA发送确认消息,以测试所述未验证的CoA的可寻址性。 当多模式节点收到HA的确认消息时,多模式节点将HA与另一个单独的BU回复。 当从多模节点接收到第二单个BU时,HA然后可以验证多模节点的所述未验证的CoA。
-
-
-
-
-
-
-
-
-
搜索结果
105 条记录 (耗时 0.04 秒)
