公开(公告)号：US20070198735A1

公开(公告)日：2007-08-23

申请号：US11649158

申请日：2007-01-04

申请人： Bong-Chan Kim ,  Sun-Gi Kim ,  Jae-Hwoon Lee ,  Kang-Young Moon

发明人： Bong-Chan Kim ,  Sun-Gi Kim ,  Jae-Hwoon Lee ,  Kang-Young Moon

IPC分类号： G06F15/16

CPC分类号： H04L61/251 ,  H04L29/12358 ,  H04L47/70 ,  H04L47/724 ,  H04L47/783 ,  H04L69/16 ,  H04L69/167

摘要： In a method and system for supporting resource reservation protocol (RSVP) in an Internet protocol version 4 (IPv4)/Internet protocol version 6 (IPv6) hybrid network, the method includes the steps of: transmitting, from a dual stack host in an IPv6 network, an end-to-end quality of service (QoS) session establishment request message to an IPv4 server through a dual stack transition mechanism tunnel end point (DSTM TEP); transmitting, from the IPv4 server, an end-to-end path message to the dual stack host through the DSTM TEP; transmitting, from the DSTM TEP to the dual stack host, a path message for reserving resources in the IPv6 network; transmitting, from the dual stack host, an end-to-end resource reservation request message to the IPv4 server through the DSTM TEP, and making a resource reservation in an IPv4 network; and transmitting, from the dual stack host to the DSTM TEP, a resource reservation request message, and making a resource reservation in the IPv6 network.

摘要翻译： 在用于在互联网协议版本4（IPv4）/互联网协议版本6（IPv6）混合网络中支持资源预留协议（RSVP）的方法和系统中，该方法包括以下步骤：从IPv6中的双栈主机 网络，通过双栈转换机制隧道终点（DSTM TEP）向IPv4服务器提供端到端服务质量（QoS）会话建立请求消息; 从IPv4服务器通过DSTM TEP向双栈主机发送端到端路径消息; 从DSTM TEP向双栈主机发送用于在IPv6网络中预留资源的路径消息; 从双栈主机通过DSTM TEP向IPv4服务器发送端到端资源预留请求消息，并在IPv4网络中进行资源预留; 并从双栈主机向DSTM TEP发送资源预约请求消息，并在IPv6网络中进行资源预留。

公开(公告)号：US20080089294A1

公开(公告)日：2008-04-17

申请号：US11890521

申请日：2007-08-07

申请人： Tae-Shik Shon ,  Sun-Woong Choi ,  Sun-Gi Kim ,  Kang-Young Moon

发明人： Tae-Shik Shon ,  Sun-Woong Choi ,  Sun-Gi Kim ,  Kang-Young Moon

IPC分类号： H04Q7/00

CPC分类号： H04W12/06 ,  H04L63/0823 ,  H04L63/0869 ,  H04W8/26 ,  H04W36/08

摘要： A method and system to perform a handover using mutual authentication in a Wireless Broadband (WiBro) network includes: generating a temporary number of a mobile station needing handover from a first base station to a second base station and requesting a handover from the first base station; transferring a handover request message, including a field for storing the temporary number of the mobile station, from the first base station to the second base station according to the handover request of the mobile station; transferring a handover response message, including respective fields for storing the mobile station's temporary number and the second base station's certification encoded using an authentication key received from an authentication server, from the second base station to the first base station; verifying the encoded temporary number of the mobile station and the encoded certification of the second base station in the handover response message transferred from the second base station, and transferring a handover acknowledge (ACK) message including a field for storing an authentication result for the second base station, from the first base station to the second base station; transmitting an initial communication request message, including a Control Mobile Attenuation Code (CMAC) value to be authenticated by the second base station, from the mobile station to the second base station; and authenticating the mobile station and transmitting a response message to the initial communication request message, from the second base station to the mobile station in response to the CMAC value transmitted from the mobile station being the same as a CMAC value of the second base station.

摘要翻译： 一种在无线宽带（WiBro）网络中使用相互认证执行切换的方法和系统包括：产生需要从第一基站到第二基站的切换的移动台的临时号码，并请求从第一基站 ; 根据移动台的切换请求，从第一基站向第二基站传送包括用于存储移动台的临时号码的字段的切换请求消息; 传送切换响应消息，包括用于存储移动台的临时号码的各个字段和使用从认证服务器接收的认证密钥编码的第二基站的认证从第二基站到第一基站; 在从第二基站传送的切换响应消息中验证移动台的编码临时号码和第二基站的编码认证，以及传送包括用于存储第二基站的认证结果的字段的切换确认（ACK）消息 基站，从第一基站到第二基站; 从所述移动台向所述第二基站发送包括要由所述第二基站认证的控制移动衰减码（CMAC）值的初始通信请求消息; 以及响应于与所述第二基站的CMAC值相同的从所述移动站发送的CMAC值，从所述第二基站向所述移动站认证所述移动台并向所述初始通信请求消息发送响应消息。

公开(公告)号：US20070160064A1

公开(公告)日：2007-07-12

申请号：US11645636

申请日：2006-12-27

申请人： Dae-Hyung Kwon ,  Kang-Young Moon ,  Hye-Sook Lim ,  Hye-Ran Kim ,  Sun-Gi Kim ,  Ju-Hyoung Mun ,  Won-Jung Kim ,  Suh-Young Jhee ,  Ha-Neul Chu

发明人： Dae-Hyung Kwon ,  Kang-Young Moon ,  Hye-Sook Lim ,  Hye-Ran Kim ,  Sun-Gi Kim ,  Ju-Hyoung Mun ,  Won-Jung Kim ,  Suh-Young Jhee ,  Ha-Neul Chu

IPC分类号： H04L12/28

CPC分类号： H04W80/04 ,  H04L69/12

摘要： A device supporting Mobile Internet Protocol version 6 (IPv6) includes: a mobile reception processor outputting home addresses of a mobile node and a correspondent node or mobility relevant header information according to whether a received packet is a Binding packet or a data packet; a binding cache storing Binding information that the mobile node has received; a binding update list storing Binding information that the mobile node has transmitted; a binding receiver receiving a Binding message that the correspondent node has created, receiving information on the home addresses of the mobile node and the correspondent node from the mobile reception processor, and providing information related to the Binding message to the binding cache and the binding update list; a binding transmitter receiving a request for creation of the Binding message, combining data using a calculated checksum, and creating and outputting a requested Binding message; and a mobile transmission processor determining a type of a header for Binding Update or Binding Acknowledgment through a Care-of Address (CoA) obtained by retrieving at least one of the binding cache and the binding update list, and creating and outputting a Mobile IPv6 header using the home addresses of the mobile node and the correspondent node received from the binding transmitter.

摘要翻译： 支持移动互联网协议版本6（IPv6）的设备包括：移动接收处理器，根据所接收的分组是绑定分组还是数据分组，输出移动节点和对端节点的归属地址或移动性相关的头信息; 存储移动节点已经接收的绑定信息的绑定高速缓存; 存储移动节点发送的绑定信息的绑定更新列表; 接收对方节点已经创建的绑定消息的绑定接收者，从移动接收处理器接收关于移动节点和通信节点的归属地址的信息，并将与绑定消息相关的信息提供给绑定高速缓存和绑定更新 名单 接收用于创建绑定消息的请求的绑定发送器，使用计算的校验和组合数据，以及创建并输出所请求的绑定消息; 以及移动传输处理器，其通过通过检索绑定高速缓存和绑定更新列表中的至少一个获得的转交地址（CoA）来确定用于绑定更新或绑定确认的报头的类型，以及创建和输出移动IPv6报头 使用移动节点的归属地址和从绑定发射机接收到的通信节点。

公开(公告)号：US20070162746A1

公开(公告)日：2007-07-12

申请号：US11640924

申请日：2006-12-19

申请人： Taek-Jung Kwon ,  Kang-Young Moon ,  Sou-Hwan Jung

发明人： Taek-Jung Kwon ,  Kang-Young Moon ,  Sou-Hwan Jung

IPC分类号： G06F21/06

CPC分类号： H04L29/12358 ,  H04L29/125 ,  H04L61/251 ,  H04L61/2564 ,  H04L63/06 ,  H04L63/164

摘要： An Internet Protocol version 4/Internet Protocol version 6 (IPv4/IPv6) integrated network system includes at least one first node for creating identification information capable of identifying each secret key shared with at least one second node, and for exchanging the created identification information with each second node in a secure negotiating process. Each second node creates identification information capable of identifying each secret key shared with each first node, and performs the secure negotiating process based on the secret keys corresponding to the identification information exchanged through the secure negotiating process. Thereby, secure communication complying with Security Architecture for the Internet Protocol (IPSec) can be implemented based on the secret keys in the IPv4/IPv6 integrated network system of a Network Address Translation-Protocol Translation (NAT-PT) environment.

摘要翻译： 互联网协议版本4 /互联网协议版本6（IPv4 / IPv6）集成网络系统包括至少一个第一节点，用于创建能够识别与至少一个第二节点共享的每个秘密密钥的标识信息，并且用于将所创建的标识信息与 每个第二节点处于安全协商过程。 每个第二节点创建能够识别与每个第一节点共享的每个秘密密钥的识别信息，并且基于与通过安全协商过程交换的识别信息相对应的秘密密钥执行安全协商过程。 因此，可以基于网络地址转换协议转换（NAT-PT）环境的IPv4 / IPv6综合网络系统中的秘密密钥来实现符合因特网协议（IPSec）安全体系结构的安全通信。

公开(公告)号：US08266428B2

公开(公告)日：2012-09-11

申请号：US11640924

申请日：2006-12-19

申请人： Taek-Jung Kwon ,  Kang-Young Moon ,  Sou-Hwan Jung

发明人： Taek-Jung Kwon ,  Kang-Young Moon ,  Sou-Hwan Jung

IPC分类号： G06F21/06

CPC分类号： H04L29/12358 ,  H04L29/125 ,  H04L61/251 ,  H04L61/2564 ,  H04L63/06 ,  H04L63/164

摘要： An Internet Protocol version 4/Internet Protocol version 6 (IPv4/IPv6) integrated network system includes at least one first node for creating identification information capable of identifying each secret key shared with at least one second node, and for exchanging the created identification information with each second node in a secure negotiating process. Each second node creates identification information capable of identifying each secret key shared with each first node, and performs the secure negotiating process based on the secret keys corresponding to the identification information exchanged through the secure negotiating process. Thereby, secure communication complying with Security Architecture for the Internet Protocol (IPSec) can be implemented based on the secret keys in the IPv4/IPv6 integrated network system of a Network Address Translation-Protocol Translation (NAT-PT) environment.

摘要翻译： 互联网协议版本4 /互联网协议版本6（IPv4 / IPv6）集成网络系统包括至少一个第一节点，用于创建能够识别与至少一个第二节点共享的每个秘密密钥的标识信息，并且用于将所创建的标识信息与 每个第二节点处于安全协商过程。 每个第二节点创建能够识别与每个第一节点共享的每个秘密密钥的识别信息，并且基于与通过安全协商过程交换的识别信息相对应的秘密密钥执行安全协商过程。 因此，可以基于网络地址转换协议转换（NAT-PT）环境的IPv4 / IPv6综合网络系统中的秘密密钥来实现符合因特网协议（IPSec）安全体系结构的安全通信。

公开(公告)号：US07424468B2

公开(公告)日：2008-09-09

申请号：US10462778

申请日：2003-06-17

申请人： Young-Keun Park ,  Kang-Young Moon ,  Byung-Chang Kang ,  Byung-Gu Choe

发明人： Young-Keun Park ,  Kang-Young Moon ,  Byung-Chang Kang ,  Byung-Gu Choe

IPC分类号： G06F17/30

CPC分类号： H04L45/7457 ,  G11C15/00 ,  H04L45/7453 ,  H04L69/12 ,  H04L69/22 ,  Y10S707/99933 ,  Y10S707/99934 ,  Y10S707/99935 ,  Y10S707/99936

摘要： An IP address look-up device is for looking up an IP address of an IP packet in order to forward the IP packet. The device includes a ternary CAM including pairs of data string and mask string, with the data string having a prefix of an IP address and the mask string representing a length of the prefix, and having routing entries stored in physical segments, respectively, without regard to order of prefix length, the ternary CAM functioning to compare a search key as a destination address of the IP packet to be forwarded, with the routing entries, set a match line of a matching routing entry, and output a mask string of the matching routing entry; and a priority encoder functioning to compare prefix lengths of mask strings outputted in correspondence to set match lines when at least one match line is set in the ternary CAM, determine, as an LPM entry, a routing entry corresponding to a longest mask string, and output a physical address of the LPM entry on the basis of a match line of the LPM entry.

摘要翻译： IP地址查找设备用于查找IP包的IP地址，以转发IP包。 该设备包括三进制CAM，包括数据串和掩码字符串对，数据串具有IP地址的前缀，掩码字符串表示前缀的长度，并且分别存储在物理段中的路由条目，而不考虑 按照前缀长度的顺序，将用于将搜索密钥作为要转发的IP分组的目的地地址的三进制CAM与路由条目进行比较，设置匹配路由条目的匹配行，并输出匹配的掩码字符串 路由条目; 以及优先编码器，用于当在所述三进制CAM中设置至少一个匹配行时，对应于与所述匹配行相对应地输出的掩码列的前缀长度，将与最长掩码串相对应的路由条目确定为LPM条目，以及 根据LPM条目的匹配行输出LPM条目的物理地址。

公开(公告)号：US07079542B2

公开(公告)日：2006-07-18

申请号：US10462739

申请日：2003-06-17

申请人： Young-Keun Park ,  Kang-Young Moon ,  Byung-Chang Kang ,  Byung-Gu Choe

发明人： Young-Keun Park ,  Kang-Young Moon ,  Byung-Chang Kang ,  Byung-Gu Choe

IPC分类号： H04L12/28

CPC分类号： H04L45/7457 ,  G11C15/00 ,  H04L45/7453 ,  H04L69/12 ,  H04L69/22 ,  Y10S707/99933 ,  Y10S707/99934 ,  Y10S707/99935 ,  Y10S707/99936

摘要： An Internet Protocol address look-up method for looking up an Internet Protocol address of an Internet Protocol packet in order to forward the Internet Protocol packet uses a ternary content addressable memory (CAM) which has routing entries, each including a pair of data strings having a prefix of an Internet Protocol address and a mask string representing a length of the prefix, which compares a search key as a destination address of the Internet Protocol packet to be forwarded with the routing entries, which sets a match line of a matching routing entry, and which outputs a mask string of the matching routing entry. The method comprises the steps of: comparing prefix lengths of mask strings outputted in correspondence to set match lines when at least one match line is set in the ternary content addressable memory (CAM); and determining, as a longest prefix matching (LPM) entry, a routing entry corresponding to a mask string having the longest prefix length.

摘要翻译： 用于查找因特网协议分组的因特网协议地址以便转发因特网协议分组的因特网协议地址查找方法使用具有路由条目的三元内容可寻址存储器（CAM），每个内容可寻址存储器（CAM）包括一对数据串， 互联网协议地址的前缀和表示前缀长度的掩码字符串，其将搜索关键字作为要转发的因特网协议分组的目的地地址与路由条目进行比较，所述路由条目设置匹配路由条目的匹配行 并且其输出匹配路由条目的掩码字符串。 该方法包括以下步骤：当在三元内容可寻址存储器（CAM）中设置至少一个匹配行时，比较输出对应于设置匹配行的掩码列的前缀长度; 并且确定与最长前缀长度相对应的路由条目作为最长前缀匹配（LPM）条目。