-
1.发明授权公开(公告)号:US07793098B2
公开(公告)日:2010-09-07
申请号:US10443125
申请日:2003-05-20
IPC分类号: H04L29/06
CPC分类号: H04L63/0414 , H04L63/06 , H04L63/12 , H04L63/1441 , H04L63/164 , H04W8/082 , H04W8/16 , H04W80/04
摘要: The present invention provides location privacy against third parties while allowing route-optimized communication between the correspondent node and the mobile node. The mobile node's home address is hidden from an external observer thereby thwarting traffic analysis based attacks where a Home Address is correlated with a Care of Address of a mobile node (MN). A “privacy label” is used in place of a home address associated with the mobile node. The privacy label is supplied by the mobile node to the correspondent node in a way that that allows the privacy label to be bound to the home address, but does not allow the home address to be visible during the exchange. The privacy label may be also used to help prevent against replay attacks.
摘要翻译: 本发明提供了针对第三方的位置隐私,同时允许通信节点和移动节点之间的路由优化通信。 移动节点的归属地址被外部观察者隐藏,从而阻止基于业务分析的攻击,其中归属地址与移动节点(MN)的地址关联相关联。 使用“隐私标签”代替与移动节点相关联的归属地址。 隐私标签由移动节点以允许隐私标签绑定到家庭地址的方式提供给通信节点,但是不允许家庭地址在交换期间可见。 隐私标签也可用于帮助防止重放攻击。
-
公开(公告)号:US07130286B2
公开(公告)日:2006-10-31
申请号:US10264285
申请日:2002-10-02
IPC分类号: H04Q7/00
CPC分类号: H04L47/824 , H04L47/14 , H04L47/15 , H04L47/70 , H04L47/767 , H04L47/785 , H04W28/00 , H04W36/0033 , H04W36/12
摘要: A system and method is provided that enables the transfer of policy resource tokens (PRT) in the process of a handover of a mobile node in a wireless network. The system includes a granting agent that grants the PRT to a first access router to enable the mobile node to access network resources. In one embodiment, in the process of handing over the mobile node, the first access router provides the PRT to the second access router, thereby reducing data latency, and a disruption for an application executing on the mobile node. In another embodiment, the mobile node provides the PRT to the second access router after connectivity is established. A PRT data structure also is provided that includes a data field of profile types. A profile type describes context authorization information for granting access to a network resource.
摘要翻译: 提供了一种系统和方法,其能够在无线网络中的移动节点的切换过程中传送策略资源标记(PRT)。 该系统包括授权代理,其将PRT授予第一接入路由器以使得移动节点能够访问网络资源。 在一个实施例中,在移交移动节点的过程中,第一接入路由器将PRT提供给第二接入路由器,由此减少数据等待时间,以及对在移动节点上执行的应用的中断。 在另一个实施例中,移动节点在建立连接之后将PRT提供给第二接入路由器。 还提供了包括简档类型的数据字段的PRT数据结构。 配置文件类型描述用于授予对网络资源的访问权限的上下文授权信息。
-
公开(公告)号:US07099326B2
公开(公告)日:2006-08-29
申请号:US10084003
申请日:2002-02-25
申请人: Hannu Flinck , Charles E. Perkins , Hossam Afifi
发明人: Hannu Flinck , Charles E. Perkins , Hossam Afifi
IPC分类号: H04L12/56
CPC分类号: H04W8/26 , H04W40/248 , H04W48/16 , H04W80/04 , H04W92/02
摘要: A system and method for fast GPRS for IPv6 may improve data transfer efficiency in mobile networks, for example, in networks that relay on the GPRS infrastructure as defined and standardized in the European Telecommunications Standards Institute (ETSI), and on mobile IPv6 as standardized in the IETF. Mobile IPv6 techniques may be applied in the context of GPRS to transform mobility management into a routing problem, for example, by translating the routing area identifier into a part of the routing prefix in IPv6. Similar mobile IPv6 techniques also may provide an evolution path toward internetworking using native mobile IPv6.
-
公开(公告)号:US07995533B1
公开(公告)日:2011-08-09
申请号:US09616221
申请日:2000-07-14
申请人: Rajeev Koodli , Charles E. Perkins , Manish Tiwari
发明人: Rajeev Koodli , Charles E. Perkins , Manish Tiwari
IPC分类号: H04Q7/00
CPC分类号: H04W36/0011 , H04W28/06
摘要: A system and method for efficient state transfer in mobile networks provides improved performance by providing seamless transfer of updated reference state information across network access points during mobile node hand-off. This state transfer processing may be used in an Internet Protocol (IP) network and may include seamless transfer of header compression state.
摘要翻译: 用于移动网络中的有效状态转移的系统和方法通过在移动节点切换期间跨越网络接入点提供更新的参考状态信息的无缝传送来提供改进的性能。 该状态转移处理可以在因特网协议(IP)网络中使用,并且可以包括报头压缩状态的无缝传送。
-
公开(公告)号:US07515561B2
公开(公告)日:2009-04-07
申请号:US10293952
申请日:2002-11-12
申请人: Rajeev Koodli , Charles E. Perkins
发明人: Rajeev Koodli , Charles E. Perkins
CPC分类号: H04W36/12 , H04L45/00 , H04L69/24 , H04W36/0011 , H04W36/26 , H04W40/36 , H04W48/00 , H04W48/14 , H04W80/04
摘要: A system and method for discovering capabilities of a network interface prior to a handover. The mobile node detects a beacon with a radio interface identifier that identifies a new access router (NR). Using the radio interface identifier, the mobile node obtains interface information on the NR through a current access router (CR). The interface information identifies the capabilities of the NR.
摘要翻译: 一种用于在切换之前发现网络接口的能力的系统和方法。 移动节点检测具有标识新的接入路由器(NR)的无线接口标识符的信标。 使用无线接口标识符,移动节点通过当前接入路由器(CR)获得关于NR的接口信息。 接口信息标识NR的功能。
-
公开(公告)号:US06930988B2
公开(公告)日:2005-08-16
申请号:US10282926
申请日:2002-10-28
申请人: Rajeev Koodli , Charles E. Perkins
发明人: Rajeev Koodli , Charles E. Perkins
CPC分类号: H04W36/0016 , H04L29/12264 , H04L61/2046 , H04W8/26 , H04W80/04
摘要: An apparatus, system, and method are directed to managing connectivity in a network by expediting the ability of a mobile node to send Internet Protocol (IP) packets subsequent to a handover. The mobile node is configured to determine an unconfirmed address for use on an access router. Upon establishing a link-layer connection, and before establishing a network-layer connection with the access router, the mobile node employs the unconfirmed address to send an IP packet to the access router. Employing the unconfirmed address prior to network-layer connectivity enables the reduction of handover latencies. If the access router determines that the unconfirmed address conflicts with an existing address, the access router provides a message to the mobile node indicating the conflict in addresses. In response to the message, the mobile node performs actions to resolve the address conflict.
摘要翻译: 设备,系统和方法旨在通过加速移动节点在切换之后发送因特网协议(IP)分组的能力来管理网络中的连接性。 移动节点被配置为确定在接入路由器上使用的未确认地址。 在建立链路层连接之后,在与接入路由器建立网络层连接之前,移动节点采用未确认地址向接入路由器发送IP分组。 在网络层连接之前采用未确认的地址,可以减少切换延迟。 如果接入路由器确定未确认地址与现有地址冲突,则接入路由器向移动节点提供指示地址冲突的消息。 响应该消息,移动节点执行解决地址冲突的动作。
-
公开(公告)号:US08705522B2
公开(公告)日:2014-04-22
申请号:US11907116
申请日:2007-10-09
申请人: Outi Elisa Markki , Timothy J. Kniveton , Jari T. Malinen , Vijay Devarapalli , Charles E. Perkins
发明人: Outi Elisa Markki , Timothy J. Kniveton , Jari T. Malinen , Vijay Devarapalli , Charles E. Perkins
IPC分类号: H04L12/28
CPC分类号: H04W8/04 , H04L69/16 , H04L69/167 , H04W8/26 , H04W60/00 , H04W80/04 , H04W84/005
摘要: A method and system for supporting mobile routers in Internet Protocol version 6 (IPv6) is provided. A mobile router obtains a care-of-address associated with an address configuration. The mobile router registers the care-of-address with a home agent. A bi-directional tunnel is established between the mobile router and the home agent. Packets are then forwarded via the bi-directional tunnel.
摘要翻译: 提供了一种在互联网协议版本6(IPv6)中支持移动路由器的方法和系统。 移动路由器获得与地址配置相关联的转交地址。 移动路由器向归属代理注册转交地址。 在移动路由器和归属代理之间建立双向隧道。 然后通过双向隧道转发数据包。
-
公开(公告)号:US07298743B2
公开(公告)日:2007-11-20
申请号:US10295014
申请日:2002-11-14
申请人: Outi Elisa Markki , Timothy J. Kniveton , Jari T. Malinen , Vijay Devarapalli , Charles E. Perkins
发明人: Outi Elisa Markki , Timothy J. Kniveton , Jari T. Malinen , Vijay Devarapalli , Charles E. Perkins
CPC分类号: H04W8/04 , H04L69/16 , H04L69/167 , H04W8/26 , H04W60/00 , H04W80/04 , H04W84/005
摘要: A method and system for supporting mobile routers in Internet Protocol version 6 (IPv6) is provided. A mobile router obtains a care-of-address associated with an address configuration. The mobile router registers the care-of-address with a home agent. A bi-directional tunnel is established between the mobile router and the home agent. Packets are then forwarded via the bi-directional tunnel.
摘要翻译: 提供了一种在互联网协议版本6(IPv6)中支持移动路由器的方法和系统。 移动路由器获得与地址配置相关联的转交地址。 移动路由器向归属代理注册转交地址。 在移动路由器和归属代理之间建立双向隧道。 然后通过双向隧道转发数据包。
-
公开(公告)号:US08942233B2
公开(公告)日:2015-01-27
申请号:US13011435
申请日:2011-01-21
申请人: Charles E. Perkins
发明人: Charles E. Perkins
CPC分类号: H04L61/1511 , H04L29/12066 , H04L29/12367 , H04L29/1249 , H04L43/028 , H04L61/2514 , H04L61/256
摘要: An embodiment of the invention is a method and corresponding system for improved network address translation (NAT) operation, to enable efficient translation for packets destined for communication systems within a domain utilizing network addresses that are incompatible with source and destination addresses indicated in packets delivered from the global Internet. Since the addresses are not compatible with global Internet addresses, delivery cannot be accomplished except by some method of address translation. Traditional systems have not been constructed to enable such inbound translations, providing, instead, only communication outbound from the incompatibly addressed domain towards the global Internet. The example embodiment employs history and pattern matching between observable characteristics of the inbound payload, associated over time with specific destinations. The example embodiment may also employ DPI search techniques known from widely deployed systems in use today, to identify a field on which the pattern matching may operate.
摘要翻译: 本发明的一个实施例是一种用于改进的网络地址转换(NAT)操作的方法和相应的系统,以使得能够对目的地在域内的通信系统的分组进行有效的转换,利用与从从 全球互联网。 由于地址与全球互联网地址不兼容,除非通过一些地址转换方法,否则无法实现传送。 传统的系统还没有被构建成能够进行这样的入站翻译,而只是将来自不兼容地址的域外的通信提供给全球因特网。 示例性实施例使用与特定目的地相关联的入站有效载荷的可观察特征之间的历史和模式匹配。 该示例性实施例还可以采用从当今使用的广泛部署的系统中已知的DPI搜索技术来识别模式匹配可以在其上操作的字段。
-
公开(公告)号:US20110185085A1
公开(公告)日:2011-07-28
申请号:US13012523
申请日:2011-01-24
申请人: Charles E. Perkins
发明人: Charles E. Perkins
IPC分类号: G06F15/16
CPC分类号: H04L61/2514 , H04L29/12066 , H04L29/12367 , H04L29/1249 , H04L47/19 , H04L47/2483 , H04L61/1511 , H04L61/256
摘要: A method and system for improved NAT operation enable efficient translation for packets destined for communication systems within a domain utilizing network addresses that are incompatible with source and destination addresses indicated in packets delivered from the global Internet. Since the addresses are not compatible with global Internet addresses, delivery cannot be accomplished except by some method of address translation. Traditional systems have not been constructed to enable such inbound translations, providing, instead, only communication outbound from the incompatibly addressed domain towards the global Internet. Embodiments may employ application-specific knowledge for peer-to-peer based applications, associated over time with specific destinations. Embodiments may further employ an application-specific state machine in the NAT function to trace the development of the application protocol so that the resource identifier can be observed.
摘要翻译: 用于改进NAT操作的方法和系统使得能够利用与从全球因特网递送的分组中指示的分组中指示的源和目的地地址不兼容的网络地址,有效地转换目的地在域内的通信系统的分组。 由于地址与全球互联网地址不兼容,除非通过一些地址转换方法,否则无法实现传送。 传统的系统还没有被构建成能够进行这样的入站翻译,而只是将来自不兼容地址的域外的通信提供给全球因特网。 实施例可以针对与特定目的地随时间相关联的基于点对点的应用来应用特定于应用的知识。 实施例还可以在NAT功能中采用特定于应用的状态机来跟踪应用协议的开发,以便可以观察资源标识符。
-
-
-
-
-
-
-
-
-
搜索结果
22 条记录 (耗时 0.021 秒)
