-
公开(公告)号:US06973068B2
公开(公告)日:2005-12-06
申请号:US10193272
申请日:2002-07-12
CPC分类号: G06F21/33 , G06Q20/3224 , H04L63/0428 , H04L63/083 , H04L63/0838 , H04L67/00 , H04L67/04 , H04L69/40 , H04W8/04 , H04W12/06 , H04W80/04
摘要: A mobile IP communication scheme capable of authenticating an individual user who is operating the mobile computer when the mobile computer is connected to a visited site network and transmits a current location registration message to the home agent is disclosed. A user authentication to judge a properness of a user of the mobile computer is carried out according to a user input based information, and the current location of the mobile computer is registered at the mobile computer management device (home agent) when the user is judged as a proper user. The user authentication can be carried out either at the mobile computer management device according to a user input based information received from the mobile computer, or at the mobile computer according to an information entered by the user at the mobile computer.
-
公开(公告)号:US07123604B2
公开(公告)日:2006-10-17
申请号:US11106602
申请日:2005-04-15
IPC分类号: H04L12/22
CPC分类号: G06F21/33 , G06Q20/3224 , H04L63/0428 , H04L63/083 , H04L63/0838 , H04L67/00 , H04L67/04 , H04L69/40 , H04W8/04 , H04W12/06 , H04W80/04
摘要: A mobile IP communication scheme capable of authenticating an individual user who is operating the mobile computer when the mobile computer is connected to a visited site network and transmits a current location registration message to the home agent is disclosed. A user authentication to judge a properness of a user of the mobile computer is carried out according to a user input based information, and the current location of the mobile computer is registered at the mobile computer management device (home agent) when the user is judged as a proper user. The user authentication can be carried out either at the mobile computer management device according to a user input based information received from the mobile computer, or at the mobile computer according to an information entered by the user at the mobile computer.
-
3.发明申请公开(公告)号:US20050281285A1
公开(公告)日:2005-12-22
申请号:US11194612
申请日:2005-08-02
IPC分类号: G06F13/00 , G09C1/00 , H04B7/26 , H04L9/14 , H04L12/70 , H04L29/06 , H04L29/12 , H04W4/00 , H04W8/02 , H04W8/26 , H04W12/02 , H04W80/04 , H04L12/56
CPC分类号: H04L63/0442 , H04L29/12009 , H04L29/12311 , H04L29/12367 , H04L29/12556 , H04L61/2015 , H04L61/2084 , H04L61/2514 , H04L61/2585 , H04L63/0464 , H04W4/18 , H04W8/26 , H04W12/02 , H04W60/00 , H04W80/04 , H04W88/04 , H04W88/06
摘要: A mobile IP communication scheme for supporting a mobile computer moving over different address spaces is disclosed. A packet relay device for relaying packets having an address of the mobile computer device as a destination or source is provided at a border between a private address space and a global address space, where the packet relay device has a packet receiving unit for receiving a packet in a first format using a global address which is transmitted by the mobile computer for a location registration from a visited site managed by a global address system, and checking a content of the packet, and a packet transfer unit for transferring the packet in a second format using a private address, to a correspondent computer in a home network of the mobile computer managed by a private address system, according to the content of the packet.
-
4.发明授权Packet processing device and mobile computer with reduced packet processing overhead 失效分组处理设备和移动计算机具有减少的分组处理开销公开(公告)号:US06240514B1
公开(公告)日:2001-05-29
申请号:US08954631
申请日:1997-10-20
申请人: Atsushi Inoue , Masahiro Ishiyama , Atsushi Fukumoto , Yoshiyuki Tsuda , Atsushi Shimbo , Toshio Okamoto
发明人: Atsushi Inoue , Masahiro Ishiyama , Atsushi Fukumoto , Yoshiyuki Tsuda , Atsushi Shimbo , Toshio Okamoto
IPC分类号: H04L900
CPC分类号: H04W12/02 , H04L9/0822 , H04L63/0464 , H04L63/123 , H04L2209/80 , H04L2463/062 , H04W12/10 , H04W88/04
摘要: A packet processing and packet transfer scheme capable of reducing the packet processing overhead by eliminating a need to decrypt and re-encrypt the entire packet at a time of relaying encrypted packets. In a packet processing device for relaying encrypted packets, a packet transferred to the packet processing device is received, where the packet has a packet processing key to be used in a prescribed packet processing with respect to a data portion of the packet, and the packet processing key is encrypted by using a first master key shared between a last device that applied a cipher communication related processing to the packet and the packet processing device. Then, the packet processing key in the received packet is decrypted, without carrying out the prescribed packet processing with respect to the data portion of the packet, and the decrypted packet processing key is re-encrypted by using a second master key shared between a next device to apply the cipher communication related processing to the packet and the packet processing device. Then, the packet with the re-encrypted packet processing key encoded therein is transmitted toward a destination of the received packet.
摘要翻译: 一种分组处理和分组传输方案,其能够通过在中继加密的分组时消除对整个分组的解密和重新加密的需要来减少分组处理开销。 在用于中继加密分组的分组处理装置中,接收到传送到分组处理装置的分组,其中分组具有关于分组的数据部分的规定分组处理中使用的分组处理密钥,并且分组 处理密钥通过使用应用与分组的密码通信相关处理的最后设备与分组处理设备之间共享的第一主密钥进行加密。 然后,对接收到的分组中的分组处理密钥进行解密,而不对分组的数据部分执行规定的分组处理,并且通过使用下一个共享的第二主密钥来重新加密解密的分组处理密钥 将密码通信相关处理应用于分组和分组处理设备。 然后,将其中编码的重新加密的分组处理密钥的分组发送到接收分组的目的地。
-
5.发明授权Packet inspection device, mobile computer and packet transfer method in mobile computing with improved mobile computer authenticity check scheme 失效移动计算中的分组检测设备,移动计算机和分组传输方法,具有改进的移动计算机真实性检查方案
公开(公告)号:US6163843A
公开(公告)日:2000-12-19
申请号:US957773
申请日:1997-10-24
申请人: Atsushi Inoue , Masahiro Ishiyama , Atsushi Fukumoto , Yoshiyuki Tsuda , Atsushi Shimbo , Toshio Okamoto
发明人: Atsushi Inoue , Masahiro Ishiyama , Atsushi Fukumoto , Yoshiyuki Tsuda , Atsushi Shimbo , Toshio Okamoto
IPC分类号: G06F13/00 , G09C1/00 , H04L12/66 , H04L12/70 , H04L12/701 , H04L12/741 , H04L29/06 , G06F11/00
CPC分类号: H04L63/0227 , H04L63/0428 , H04L63/08
摘要: A packet transfer scheme for realizing a control of a packet inspection device to pass only packets from those mobile computers that can be recognized as authenticated among non-management target mobile computers that had moved inside the network, to outside the network. A packet inspection device judges whether a passing of a packet transmitted from a mobile computer other than own management target computers to outside the own network is permitted or not, according to a mobile computer identification information contained in the packet, and sends a message indicating a refusal of the passing of the packet to the mobile computer when the passing of the packet is judged to be not permitted; and then transfers the packet when the passing of the packet is judged to be permitted; and also checks whether a user information regarding a user of the mobile computer satisfies a prescribed condition or not, upon receiving a message requesting a key information for generating the mobile computer identification information from the mobile computer, and returns a requested key information to the mobile computer when the user information satisfies the prescribed condition.
摘要翻译: 一种用于实现分组检查装置的控制的分组传送方案,仅将来自可以被识别为在网络内移动的非管理目标移动计算机之间被认证的那些移动计算机的分组传递到网络外部。 分组检查装置根据分组中包含的移动计算机识别信息判断是否允许从自己的管理目标计算机以外的移动计算机发送的分组传送到自身网络外部,并发送指示 拒绝通过该数据包时不允许将数据包传给移动计算机; 然后当分组的通过被判断为允许时传送分组; 并且还在从移动计算机接收到请求用于生成移动计算机识别信息的密钥信息的消息时,检查关于移动计算机的用户的用户信息是否满足规定条件,并将所请求的密钥信息返回给移动台 当用户信息满足规定条件时,计算机。
-
6.发明授权公开(公告)号:US07586939B2
公开(公告)日:2009-09-08
申请号:US11194612
申请日:2005-08-02
IPC分类号: H04L12/56
CPC分类号: H04L63/0442 , H04L29/12009 , H04L29/12311 , H04L29/12367 , H04L29/12556 , H04L61/2015 , H04L61/2084 , H04L61/2514 , H04L61/2585 , H04L63/0464 , H04W4/18 , H04W8/26 , H04W12/02 , H04W60/00 , H04W80/04 , H04W88/04 , H04W88/06
摘要: A mobile IP communication scheme for supporting a mobile computer moving over different address spaces is disclosed. A packet relay device for relaying packets having an address of the mobile computer device as a destination or source is provided at a border between a private address space and a global address space, where the packet relay device has a packet receiving unit for receiving a packet in a first format using a global address which is transmitted by the mobile computer for a location registration from a visited site managed by a global address system, and checking a content of the packet, and a packet transfer unit for transferring the packet in a second format using a private address, to a correspondent computer in a home network of the mobile computer managed by a private address system, according to the content of the packet.
-
公开(公告)号:US20060034238A1
公开(公告)日:2006-02-16
申请号:US11255881
申请日:2005-10-24
CPC分类号: G06F21/33 , G06Q20/3224 , H04L63/0428 , H04L63/083 , H04L63/0838 , H04L67/00 , H04L67/04 , H04L69/40 , H04W8/04 , H04W12/06 , H04W80/04
摘要: A mobile IP communication scheme capable of authenticating an individual user who is operating the mobile computer when the mobile computer is connected to a visited site network and transmits a current location registration message to the home agent is disclosed. A user authentication to judge a properness of a user of the mobile computer is carried out according to a user input based information, and the current location of the mobile computer is registered at the mobile computer management device (home agent) when the user is judged as a proper user. The user authentication can be carried out either at the mobile computer management device according to a user input based information received from the mobile computer, or at the mobile computer according to an information entered by the user at the mobile computer.
-
8.发明授权Mobile IP communication scheme for supporting mobile computer move over different address spaces 失效用于支持移动计算机的移动IP通信方案移动到不同的地址空间公开(公告)号:US06944181B2
公开(公告)日:2005-09-13
申请号:US10206364
申请日:2002-07-29
IPC分类号: G06F13/00 , G09C1/00 , H04B7/26 , H04L9/14 , H04L12/70 , H04L29/06 , H04L29/12 , H04W4/00 , H04W8/02 , H04W8/26 , H04W12/02 , H04W80/04 , H04J3/16 , H04J3/22
CPC分类号: H04L63/0442 , H04L29/12009 , H04L29/12311 , H04L29/12367 , H04L29/12556 , H04L61/2015 , H04L61/2084 , H04L61/2514 , H04L61/2585 , H04L63/0464 , H04W4/18 , H04W8/26 , H04W12/02 , H04W60/00 , H04W80/04 , H04W88/04 , H04W88/06
摘要: A mobile IP communication scheme for supporting a mobile computer moving over different address spaces is disclosed. A packet relay device for relaying packets having an address of the mobile computer device as a destination or source is provided at a border between a private address space and a global address space, where the packet relay device has a packet receiving unit for receiving a packet in a first format using a global address which is transmitted by the mobile computer for a location registration from a visited site managed by a global address system, and checking a content of the packet, and a packet transfer unit for transferring the packet in a second format using a private address, to a correspondent computer in a home network of the mobile computer managed by a private address system, according to the content of the packet.
摘要翻译: 公开了用于支持在不同地址空间上移动的移动计算机的移动IP通信方案。 用于中继具有作为目的地或源的移动计算机设备的地址的分组的分组中继设备被提供在专用地址空间和全局地址空间之间的边界处,其中分组中继设备具有用于接收分组的分组接收单元 以第一格式使用由移动计算机发送的用于从全局地址系统管理的访问站点进行位置注册并检查分组的内容的全局地址,以及分组传送单元,用于在第二格式中传送分组 根据分组的内容,使用专用地址的格式到由专用地址系统管理的移动计算机的家庭网络中的通信计算机。
-
9.发明授权Mobile computer and method of packet encryption and authentication in mobile computing based on security policy of visited network 失效基于访问网络安全策略的移动计算机和移动计算中的分组加密和认证方法公开(公告)号:US06170057A
公开(公告)日:2001-01-02
申请号:US08951297
申请日:1997-10-16
申请人: Atsushi Inoue , Masahiro Ishiyama , Atsushi Fukumoto , Yoshiyuki Tsuda , Atsushi Shimbo , Toshio Okamoto
发明人: Atsushi Inoue , Masahiro Ishiyama , Atsushi Fukumoto , Yoshiyuki Tsuda , Atsushi Shimbo , Toshio Okamoto
IPC分类号: H04L900
CPC分类号: H04L63/0428 , G06Q20/367 , G06Q20/3674 , G06Q20/382 , H04L63/102 , H04W80/04
摘要: A mobile computer and a packet encryption and authentication method which are capable of controlling an activation of a packet encryption and authentication device belonging to the mobile computer according to the security policy at the visited network of the mobile computer. The mobile computer is provided with a packet encryption and authentication unit having an ON/OFF switchable function for applying an encryption and authentication processing on input/output packets of the mobile computer. Then, one of the packet encryption and authentication unit and an external packet processing device is selectively controlled to carry out the encryption and authentication processing on the input/output packets, where the external packet processing device being provided in a visited network at which the mobile computer is located and having a function for relaying packets transferred between a computer located in the visited network and a computer located in another network by applying the encryption and authentication processing.
摘要翻译: 一种能够根据移动计算机的访问网络的安全策略来控制属于移动计算机的分组加密和认证装置的激活的移动计算机和分组加密和认证方法。 移动计算机设置有具有ON / OFF切换功能的分组加密和认证单元,用于对移动计算机的输入/输出分组进行加密和认证处理。 然后,选择性地控制分组加密和认证单元和外部分组处理设备中的一个,对输入/输出分组执行加密和认证处理,其中外部分组处理设备被提供在访问网络中,移动台 计算机具有通过应用加密和认证处理来中继在位于被访问网络中的计算机和位于另一网络中的计算机之间传送的分组的功能。
-
公开(公告)号:US07020120B2
公开(公告)日:2006-03-28
申请号:US10184880
申请日:2002-07-01
申请人: Atsushi Inoue , Masahiro Ishiyama , Atsushi Fukumoto , Yoshiyuki Tsuda , Toshio Okamoto , Masataka Goto , Yoshinari Kumaki
发明人: Atsushi Inoue , Masahiro Ishiyama , Atsushi Fukumoto , Yoshiyuki Tsuda , Toshio Okamoto , Masataka Goto , Yoshinari Kumaki
CPC分类号: H04L29/12216 , H04L29/12264 , H04L29/12311 , H04L61/2015 , H04L61/2046 , H04L61/2084 , H04L69/16 , H04L69/163 , H04W8/06 , H04W8/26 , H04W60/04 , H04W80/04 , H04W88/182
摘要: A mobile IP communication scheme in which the mobile computer can be operated using the mobile communication protocol such as Mobile IP even in the case where the home network is operated by the dynamic address allocation protocol such as DHCP is disclosed. The current location registration message to be transmitted by the mobile computer from the visited site to the mobile computer management device contains an information indicating that the dynamic address allocation has been received at the home network and an information capable of identifying the mobile computer, and the mobile computer management device carries out exchanges with the dynamic address management server on behalf of the mobile computer, so that the mobile computer which has received the dynamic address allocation at the home network can be operated at the visited site by using the mobile communication protocol.
-
-
-
-
-
-
-
-
-
搜索结果
269 条记录 (耗时 0.026 秒)
