-
公开(公告)号:US20120087312A1
公开(公告)日:2012-04-12
申请号:US13332210
申请日:2011-12-20
申请人: Rajiv LAROIA , Pablo Anigstein , David R. Mazik , Vladimir Parizhsky , Vincent Park , Murari Srinivasan , George Tsirtsis
发明人: Rajiv LAROIA , Pablo Anigstein , David R. Mazik , Vladimir Parizhsky , Vincent Park , Murari Srinivasan , George Tsirtsis
IPC分类号: H04W4/00
摘要: Methods and apparatus for using end nodes, e.g., wireless terminals, to discover base stations and communicate information about discovered access nodes, e.g., base stations, to other access nodes in a system are described. As the wireless terminal roams in the system and new access nodes are encountered, one or more physically adjacent access nodes will be informed of the presence of the new access node as a result of communications with the wireless terminal. A message indicating an access node's inability to route a message to another access node which is known to a wireless terminal may trigger the wireless terminal to begin the process of updating access node routing and neighbor information.
摘要翻译: 描述了使用终端节点(例如无线终端)发现基站并将关于已发现的接入节点(例如基站)的信息传送到系统中的其他接入节点的方法和装置。 当无线终端在系统中漫游并且遇到新的接入节点时,作为与无线终端的通信的结果,一个或多个物理上相邻的接入节点将被通知新的接入节点的存在。 指示接入节点不能将消息路由到无线终端已知的另一接入节点的消息可以触发无线终端开始更新接入节点路由和邻居信息的过程。
-
62.发明授权Method and apparatus for providing authentication, authorization and accounting to roaming nodes 有权用于向漫游节点提供认证,授权和计费的方法和装置公开(公告)号:US07882346B2
公开(公告)日:2011-02-01
申请号:US10435622
申请日:2003-05-09
CPC分类号: H04W12/06 , H04L63/061 , H04L63/08 , H04L63/0869 , H04L63/0892 , H04W12/04
摘要: This invention proposes an integrated process for AAA (Authentication, Authorisation, and Accounting) with the order reversed whereby L2 follows L3. The L3 process treats the wireless link as any normal IP access link, and the L3 authorisation provides L3 processing, but also includes the L2 terminal authentication identifiers so that the L2 security parameters can also be returned. This means that the wireless link and the IP layer are not secured until after the L3 authorisation has completed and therefore the first IP messages that trigger authorisation are sent insecurely. This invention also provides methods to avoid these insecure messages presenting any opportunities to an attacker. Finally, the inventions include methods to enable L3 before L2 authorisation when a user is roaming in a foreign network.
摘要翻译: 本发明提出了一种用于AAA(认证,授权和计费)的整合过程,其顺序颠倒,其中L2遵循L3。 L3过程将无线链路视为任何正常的IP接入链路,L3授权提供L3处理,但也包括L2终端认证标识符,从而也可以返回L2安全参数。 这意味着在L3授权完成之后,无线链路和IP层不被保护,因此触发授权的第一个IP消息被不安全地发送。 本发明还提供了避免这些不安全的消息向攻击者提供任何机会的方法。 最后,本发明包括当用户在外部网络中漫游时在L2授权之前启用L3的方法。
-
公开(公告)号:US20100083354A1
公开(公告)日:2010-04-01
申请号:US12241399
申请日:2008-09-30
申请人: George Tsirtsis
发明人: George Tsirtsis
CPC分类号: H04L29/12783 , H04L29/12915 , H04L29/12952 , H04L61/35 , H04L61/6059 , H04L61/6077 , H04L63/0807 , H04L63/0823 , H04L63/1466
摘要: A device can connect to a network over a first interface to configure and obtain an IP address. To communicate with nodes in a second network, over a second interface, the IP address can be validated by a trusted third party. The validation can include conducting a return routability test to validate a Prefix of the IP address. Cryptographically Generated Address verification can be utilized to verify the validity of an Interface Identifier included in the IP address. If the IP address is validated, the trusted third party can include the address in a verification ticket, which can also include a signature of the trusted third party. The device can provide the verification ticket to nodes in the second network as authentication of the device.
摘要翻译: 设备可以通过第一个接口连接到网络,以配置和获取IP地址。 为了与第二网络中的节点进行通信,通过第二个接口,IP地址可由可靠的第三方验证。 验证可以包括执行返回可路由性测试来验证IP地址的前缀。 密码生成地址验证可用于验证IP地址中包含的接口标识符的有效性。 如果IP地址被验证,则可信任的第三方可以将该地址包括在验证票据中,该证书还可以包括可信第三方的签名。 设备可以向第二网络中的节点提供验证票据作为设备的认证。
-
公开(公告)号:US20100069067A1
公开(公告)日:2010-03-18
申请号:US12209440
申请日:2008-09-12
IPC分类号: H04W4/00
CPC分类号: H04W12/06 , H04L63/0807 , H04L63/0823 , H04W28/18 , H04W74/00 , H04W76/14 , H04W84/18 , H04W92/18
摘要: Aspects describe spectrum authorization, access control, and configuration parameters validation. Devices in an ad-hoc or peer-to-peer configuration can utilize a licensed spectrum if the devices are authorized to use the spectrum, which can be determined automatically. Aspects relate to distribution of authorization tickets by an authorization server as a result of validating a device's credentials and services to which the device is entitled. An exchange and verification of authorization tickets can be performed by devices as a condition for enabling a validated wireless link using the spectrum.
摘要翻译: 方面描述频谱授权,访问控制和配置参数验证。 如果设备被授权使用频谱(可以自动确定),则自组织或对等配置中的设备可以使用许可频谱。 方面涉及授权服务器作为验证设备授权的设备的凭据和服务的结果来分发授权票据。 授权票证的交换和验证可以由设备执行,作为启用使用频谱的经过验证的无线链路的条件。
-
公开(公告)号:US07460504B2
公开(公告)日:2008-12-02
申请号:US11249014
申请日:2005-10-12
CPC分类号: H04W60/00 , H04L63/0892 , H04W12/06 , H04W28/06 , H04W80/04 , H04W88/08 , H04W88/182
摘要: Methods and apparatus for establishing communication links, used to support communications sessions with one or more end nodes, e.g., mobile devices, are described. Various features are directed to a mobile node controlling the establishment of initial links to a first access node and the establishment of new links from a first access node to a second access node during a handoff operation using highly efficient messages and signal.
摘要翻译: 描述了用于建立用于支持与一个或多个终端节点(例如,移动设备)的通信会话的通信链路的方法和装置。 各种特征针对控制建立到第一接入节点的初始链路的移动节点以及在使用高效消息和信号的切换操作期间从第一接入节点到第二接入节点建立新链路。
-
公开(公告)号:US20080170517A1
公开(公告)日:2008-07-17
申请号:US11624185
申请日:2007-01-17
申请人: George Tsirtsis
发明人: George Tsirtsis
IPC分类号: H04B7/00
摘要: Described herein are mechanisms and methods that facilitate enabling a first network module to “take over” for a second network module. For instance, an access router can he configured to act as a regional mobility agent with respect to a wireless terminal. The wireless terminal can then identify a different access router that is to act as a regional mobility agent, and transmit such request to a mobility agent. The mobility agent can create a tunnel with the access router that is acting as the mobility agent, and such access router can create an add message and transmit such message to other access routers associated with the wireless terminal. The add message informs the access routers that a particular access router is acting as a regional mobility agent and aids in creating tunnels between access routers.
摘要翻译: 这里描述了促进使第一网络模块“接管”第二网络模块的机制和方法。 例如,接入路由器可以被配置为相对于无线终端充当区域移动性代理。 然后,无线终端可以识别要用作区域移动代理的不同的接入路由器,并将该请求发送到移动代理。 移动代理可以与作为移动代理的接入路由器建立隧道,并且这样的接入路由器可以创建一个添加消息,并将这样的消息发送到与无线终端相关联的其他接入路由器。 添加消息通知接入路由器特定接入路由器充当区域移动代理,并且有助于在接入路由器之间创建隧道。
-
公开(公告)号:US20080089339A1
公开(公告)日:2008-04-17
申请号:US11581214
申请日:2006-10-13
申请人: George Tsirtsis , Vincent Park , Hesham Soliman
发明人: George Tsirtsis , Vincent Park , Hesham Soliman
IPC分类号: H04L12/56
摘要: Methods and apparatus for compressing messages used to support mobile communications are described. After transmission of a first mobile IP message which may be a conventional mobile IP message, a compressed mobile IP message is transmitted. The compressed message includes a new “compressed message” indicator and information which is to replace information in the previous message or to be added to the previous message to construct a new message. In some embodiments, the compressed message includes a mask field, e.g., a sequence of bits, each bit corresponding to one field of a standard registration request message or binding update message. If the mask flag bit corresponding to a field is set, it indicates that the compressed message includes information to replace the content in the corresponding field of the previous message or to be added to the previous message as a field corresponding to the asserted bit.
摘要翻译: 描述用于压缩用于支持移动通信的消息的方法和装置。 在传输可能是常规移动IP消息的第一移动IP消息之后,发送压缩的移动IP消息。 压缩消息包括一个新的“压缩消息”指示符和信息,该信息将替换先前消息中的信息或被添加到先前消息中以构建新消息。 在一些实施例中,压缩消息包括掩码字段,例如位序列,每个位对应于标准注册请求消息或绑定更新消息的一个字段。 如果设置了对应于字段的掩码标志位,则表示压缩消息包括用于替换先前消息的相应字段中的内容或被添加到先前消息中的信息作为对应于被断言位的字段。
-
68.发明授权Methods and apparatus for the utilization of multiple uplinks in reverse tunneling 有权在反向隧道中利用多个上行链路的方法和装置公开(公告)号:US07342903B2
公开(公告)日:2008-03-11
申请号:US10413415
申请日:2003-04-14
申请人: Alan O'Neill , George Tsirtsis , Matthew Impett , Vincent Park
发明人: Alan O'Neill , George Tsirtsis , Matthew Impett , Vincent Park
IPC分类号: H04J3/24
CPC分类号: H04L12/4633 , H04L29/12311 , H04L61/2084 , H04L67/325 , H04L67/327 , H04L69/08 , H04W8/02 , H04W8/26 , H04W36/0016 , H04W36/18 , H04W40/00 , H04W80/00 , H04W80/04
摘要: Methods and apparatus for improving tunneling techniques and reducing packet loss in mobile communications systems are described. The methods and apparatus are well suited for use with Mobile IP and can facilitate handoff operations. A mobile node establishes multiple tunnels, representing downlinks, from the mobile node perspective. The different downlink tunnels are through different access nodes but terminate at the same home agent. The mobile node maintains, at most, a single uplink tunnel at any given time with the home agent. Tunnels representing uplinks and downlinks are managed independently. Thus, each of the uplink and downlink tunnels can have different lifetimes and can be created/removed independently allowing for flexibility in handoff operations.
摘要翻译: 描述了用于改善移动通信系统中的隧道技术和减少分组丢失的方法和装置。 该方法和装置非常适合与移动IP一起使用,并且可以促进切换操作。 移动节点从移动节点的角度建立了表示下行链路的多个隧道。 不同的下行隧道通过不同的接入节点,但终止于同一个归属代理。 在任何给定的时间,移动节点至多维护一个单一的上行链路隧道与归属代理。 代表上行链路和下行链路的隧道独立管理。 因此,每个上行链路和下行链路隧道可以具有不同的寿命,并且可以独立地创建/移除允许在切换操作中的灵活性。
-
公开(公告)号:US20070298788A1
公开(公告)日:2007-12-27
申请号:US11742586
申请日:2007-04-30
IPC分类号: H04Q7/20
摘要: The claimed subject matter relates to systems and methods for roaming in a wireless communications environment. A method for roaming between networks is provided in one aspect. This includes receiving a request for network access at a visited network and receiving a profile from a home network in response to the request. Upon receiving the profile, selectively offering services to one or more access terminals based at least in part on the profile.
摘要翻译: 所要求保护的主题涉及用于在无线通信环境中漫游的系统和方法。 在一个方面提供了一种在网络之间漫游的方法。 这包括在拜访网络处接收网络接入请求,并响应该请求从归属网络接收简档。 在接收到配置文件时,至少部分地基于配置文件选择性地向一个或多个接入终端提供服务。
-
公开(公告)号:US20070147283A1
公开(公告)日:2007-06-28
申请号:US11316603
申请日:2005-12-22
申请人: Rajiv Laroia , Pablo Anigstein , David Mazik , Vladimir Parizhsky , Vincent Park , Murari Srinivasan , George Tsirtsis
发明人: Rajiv Laroia , Pablo Anigstein , David Mazik , Vladimir Parizhsky , Vincent Park , Murari Srinivasan , George Tsirtsis
CPC分类号: H04W8/005 , H04L41/069 , H04L45/02 , H04L45/28
摘要: Methods and apparatus for using end nodes, e.g., wireless terminals, to discover base stations and communicate information about discovered access nodes, e.g., base stations, to other access nodes in a system are described. As the wireless terminal roams in the system and new access nodes are encountered, one or more physically adjacent access nodes will be informed of the presence of the new access node as a result of communications with the wireless terminal. A message indicating an access node's inability to route a message to another access node which is known to a wireless terminal may trigger the wireless terminal to begin the process of updating access node routing and neighbor information.
摘要翻译: 描述了使用终端节点(例如无线终端)发现基站并将关于已发现的接入节点(例如基站)的信息传送到系统中的其他接入节点的方法和装置。 当无线终端在系统中漫游并且遇到新的接入节点时,作为与无线终端的通信的结果,一个或多个物理上相邻的接入节点将被通知新的接入节点的存在。 指示接入节点不能将消息路由到无线终端已知的另一接入节点的消息可以触发无线终端开始更新接入节点路由和邻居信息的过程。
-
-
-
-
-
-
-
-
-
搜索结果
75 条记录 (耗时 0.033 秒)
