公开(公告)号：US07907948B2

公开(公告)日：2011-03-15

申请号：US11396706

申请日：2006-04-04

Applicant: Wassim Haddad ,  Suresh Krishnan

Inventor： Wassim Haddad ,  Suresh Krishnan

IPC: H04W36/00

CPC classification number: H04W12/02 ,  H04L63/0407 ,  H04L63/0414 ,  H04L63/0421 ,  H04L63/0823 ,  H04L63/083 ,  H04L63/126 ,  H04W8/26 ,  H04W12/06 ,  H04W80/04

Abstract: A method, a correspondent node and a mobile node provide anonymity and unlinkability to a mobile node in a session with a correspondent node. Sequence values, calculated based on secret data, are added to updates sent from the mobile node towards the correspondent node and are used by the correspondent node to authenticate updates from the mobile node. A home address of the mobile node is not explicitly disclosed. An expected care-of address is calculated at the correspondent node and used by the correspondent node to send data packets to the mobile node.

Abstract translation: 方法，对应节点和移动节点在与通信节点的会话中向移动节点提供匿名和不可链接性。 基于秘密数据计算的序列值被添加到从移动节点向对应节点发送的更新，并由通信节点用于对来自移动节点的更新进行认证。 移动节点的归属地址没有明确公开。 在对端节点处计算预期转交地址，并由通信节点用于向移动节点发送数据分组。

公开(公告)号：US07848280B2

公开(公告)日：2010-12-07

申请号：US11846347

申请日：2007-08-28

Applicant: Suresh Krishnan ,  Laurent Marchand

Inventor： Suresh Krishnan ,  Laurent Marchand

IPC: H04W4/00

CPC classification number: H04W28/06 ,  H04W8/26 ,  H04W80/04

Abstract: Reduction of overhead normally caused by the addition of a second IP header in case of tunneling between a home agent and a mobile node located in a foreign network is achieved by replacing an encapsulated first IP header by a tunnel identifier. The home agent and the mobile node agree on a tunnel identifier value at the time of binding update and acknowledgement. The tunnel identifier may be used independently at the home agent and at the mobile node to reconstruct the first IP header, which identifies a correspondent node. Because the encapsulated first IP header is not terminated at either of the home agent or mobile node, overhead reduction is not impacted by eventual transmission error or loss between these two nodes.

Abstract translation: 通过在归属代理和位于外部网络中的移动节点之间的隧道的情况下通过添加第二IP报头而引起的开销的减少是通过用隧道标识符替换封装的第一IP报头来实现的。 归属代理和移动节点在绑定更新和确认时同意隧道标识符值。 隧道标识符可以在归属代理和移动节点处独立地使用，以重建标识通信节点的第一IP报头。 由于封装的第一个IP报头没有在归属代理或移动节点的任何一个终止，所以开销降低不会受到这两个节点之间的最终传输错误或丢失的影响。

公开(公告)号：US20100296420A1

公开(公告)日：2010-11-25

申请号：US12471050

申请日：2009-05-22

Applicant: Desire Oulai ,  Suresh Krishnan

Inventor： Desire Oulai ,  Suresh Krishnan

IPC: H04B7/00

CPC classification number: H04W60/06 ,  H04W60/005 ,  H04W80/04

Abstract: A method for revoking a binding from a mobile node, having a least one binding, comprises providing a target binding with the binding revocation message, so that after the revocation, the mobile node can be reached through the target binding.

Abstract translation: 用于从具有至少一个绑定的移动节点撤销绑定的方法包括：提供与绑定撤消消息的目标绑定，使得在撤销之后，可以通过目标绑定来到达移动节点。

公开(公告)号：US07779136B2

公开(公告)日：2010-08-17

申请号：US12036757

申请日：2008-02-25

Applicant: Suresh Krishnan

Inventor： Suresh Krishnan

IPC: G06F15/16

CPC classification number: H04L63/0281 ,  H04L63/0823 ,  H04L63/126 ,  H04L63/1441 ,  H04L63/162 ,  H04W8/26 ,  H04W12/10 ,  H04W80/04 ,  H04W88/182

Abstract: A method, a proxy and a host are provided for securing neighbor discovery (ND) signaling between hosts when the hosts are connected through the proxy. A first host sends an original ND message comprising a first signature based on an address of the first host. The proxy removes the address of the first host and substitutes its own address in a modified ND message. The proxy then places a copy of the address of the first host in a new field and builds a proxy signature based on the own address of the proxy and on the new field. The new field and the proxy signature are added to the modified ND message. A second host receives the modified ND message from the proxy and verifies the proxy signature. The second host reconstructs the original ND message content and then verifies the first signature.

Abstract translation: 提供了一种方法，代理和主机，用于在主机通过代理连接时，保护主机之间的邻居发现（ND）信令。 第一主机基于第一主机的地址发送包括第一签名的原始ND消息。 代理删除第一个主机的地址，并将其自己的地址替换为修改后的ND消息。 然后，代理将第一个主机的地址的副本放置在新的字段中，并根据代理的自己的地址和新的字段构建代理签名。 新的字段和代理签名被添加到修改的ND消息中。 第二主机从代理接收修改的ND消息并验证代理签名。 第二个主机重建原始的ND消息内容，然后验证第一个签名。

公开(公告)号：US20090292712A1

公开(公告)日：2009-11-26

申请号：US12124633

申请日：2008-05-21

Applicant: Per Andersson ,  Jon Paul Maloy ,  Suresh Krishnan

Inventor： Per Andersson ,  Jon Paul Maloy ,  Suresh Krishnan

IPC: G06F17/30

CPC classification number: G06F9/5088 ,  G06F2209/463

Abstract: Devices, systems, methods and software are described which provide identity assignment and redistribution capabilities for software components of a distributed application. Identity value ranges can be fixed or variable. Identity assignment schemes according to exemplary embodiments facilitate the continuation of traffic between the components and clients during redistribution of the identities.

Abstract translation: 描述了为分布式应用的软件组件提供身份分配和再分配能力的设备，系统，方法和软件。 身份值范围可以是固定的或可变的。 根据示例性实施例的身份分配方案有助于在身份重新分配期间在组件和客户端之间继续流量。

公开(公告)号：US20090119407A1

公开(公告)日：2009-05-07

申请号：US12036757

申请日：2008-02-25

Applicant: Suresh Krishnan

Inventor： Suresh Krishnan

IPC: G06F15/16

CPC classification number: H04L63/0281 ,  H04L63/0823 ,  H04L63/126 ,  H04L63/1441 ,  H04L63/162 ,  H04W8/26 ,  H04W12/10 ,  H04W80/04 ,  H04W88/182

Abstract: A method, a proxy and a host are provided for securing neighbor discovery (ND) signaling between hosts when the hosts are connected through the proxy. A first host sends an original ND message comprising a first signature based on an address of the first host. The proxy removes the address of the first host and substitutes its own address in a modified ND message. The proxy then places a copy of the address of the first host in a new field and builds a proxy signature based on the own address of the proxy and on the new field. The new field and the proxy signature are added to the modified ND message. A second host receives the modified ND message from the proxy and verifies the proxy signature. The second host reconstructs the original ND message content and then verifies the first signature.

Abstract translation: 提供了一种方法，代理和主机，用于在主机通过代理连接时，保护主机之间的邻居发现（ND）信令。 第一主机基于第一主机的地址发送包括第一签名的原始ND消息。 代理删除第一个主机的地址，并将其自己的地址替换为修改后的ND消息。 然后，代理将第一个主机的地址的副本放置在新的字段中，并根据代理的自己的地址和新的字段构建代理签名。 新的字段和代理签名被添加到修改的ND消息中。 第二主机从代理接收修改的ND消息并验证代理签名。 第二个主机重建原始的ND消息内容，然后验证第一个签名。