-
公开(公告)号:US09380071B2
公开(公告)日:2016-06-28
申请号:US14363484
申请日:2012-04-02
申请人: Michael Liljenstam , András Méhes , Patrik Salmela
发明人: Michael Liljenstam , András Méhes , Patrik Salmela
CPC分类号: H04L63/1441 , G06F21/56 , H04L43/16 , H04L63/1425 , H04L63/145 , H04W12/12
摘要: The present invention relates to methods and devices for detecting persistency of a first network node (12). In a first aspect of the invention, a method is provided comprising the steps of monitoring (S101), during a specified observation period, whether the first network node has established a connection to a second network node (13), and determining (S102) a total number of sessions of connectivity occurring during said specified observation period in which the first network node connects to the second network node. Further, the method comprises the steps of determining (S103), from the total number of sessions, a number of sessions comprising at least one communication flow between the first network node and the second network node, and determining (S104) inter-session persistence of the first network node on the basis of the total number of sessions and the number of sessions comprising at least one communication flow.
摘要翻译: 本发明涉及用于检测第一网络节点(12)的持续性的方法和设备。 在本发明的第一方面中,提供了一种方法,包括以下步骤:在指定的观察期间,监视(S101)第一网络节点是否建立了与第二网络节点(13)的连接,并且确定(S102) 在第一网络节点连接到第二网络节点的所述指定观察期期间发生的连接会话的总数。 此外,该方法包括以下步骤:从总会话数量确定(S103)包括第一网络节点和第二网络节点之间的至少一个通信流的会话数,并且确定(S104)会话间持续性 基于会话的总数和包括至少一个通信流的会话的数量的第一网络节点。
-
公开(公告)号:US20150180898A1
公开(公告)日:2015-06-25
申请号:US14363484
申请日:2012-04-02
申请人: Michael Liljenstam , András Méhes , Patrik Salmela
发明人: Michael Liljenstam , András Méhes , Patrik Salmela
CPC分类号: H04L63/1441 , G06F21/56 , H04L43/16 , H04L63/1425 , H04L63/145 , H04W12/12
摘要: The present invention relates to methods and devices for detecting persistency of a first network node (12). In a first aspect of the invention, a method is provided comprising the steps of monitoring (S101), during a specified observation period, whether the first network node has established a connection to a second network node (13), and determining (S102) a total number of sessions of connectivity occurring during said specified observation period in which the first network node connects to the second network node. Further, the method comprises the steps of determining (S103), from the total number of sessions, a number of sessions comprising at least one communication flow between the first network node and the second network node, and determining (S104) inter-session persistence of the first network node on the basis of the total number of sessions and the number of sessions comprising at least one communication flow.
摘要翻译: 本发明涉及用于检测第一网络节点(12)的持续性的方法和设备。 在本发明的第一方面中,提供了一种方法,包括以下步骤:在指定的观察期间,监视(S101)第一网络节点是否建立了与第二网络节点(13)的连接,并确定(S102) 在第一网络节点连接到第二网络节点的所述指定观察期期间发生的连接会话的总数。 此外,该方法包括以下步骤:从总会话数量确定(S103)包括第一网络节点和第二网络节点之间的至少一个通信流的会话数量,并且确定(S104)会话间持续性 基于会话的总数和包括至少一个通信流的会话的数量的第一网络节点。
-
3.发明申请公开(公告)号:US20140373012A1
公开(公告)日:2014-12-18
申请号:US14369455
申请日:2011-12-29
申请人: Jukka Ylitalo , András Méhes , Patrik Salmela , Kristian Slavov
发明人: Jukka Ylitalo , András Méhes , Patrik Salmela , Kristian Slavov
CPC分类号: G06F9/45533 , G06F9/45558 , G06F2009/45595 , H04W4/60 , H04W4/70 , H04W12/04
摘要: A method is presented of establishing communications with a Virtual Machine, VM, in a virtualised computing environment using a 3GPPcommunications network. The method includes establishing a Machine-to-Machine Equipment Platform, M2MEP, which comprises a Communications Module, CM, providing an end-point of a communication channel between the 3GPP network and the VM. A virtual Machine-to-Machine Equipment is established that comprises a VM running on the M2MEP and a downloadable Subscriber Identity Module, associated with the CM. The Subscriber Identity Module includes security data and functions for enabling access via the 3GPP network. The CM utilises data in the Subscriber Identity Module for controlling communication over the communication channel between the VM and the 3GPP network.
摘要翻译: 提出了一种使用3GPP通信网络在虚拟化计算环境中与虚拟机VM建立通信的方法。 该方法包括建立一个机器到机器设备平台,M2MEP,其包括通信模块CM,其提供3GPP网络和VM之间的通信信道的端点。 建立了虚拟机对机器设备,其包括在M2MEP上运行的VM和与CM相关联的可下载的订户身份模块。 订户身份模块包括用于通过3GPP网络访问的安全数据和功能。 CM利用订户身份模块中的数据来控制在VM与3GPP网络之间的通信信道上的通信。
-
4.发明授权公开(公告)号:US09569237B2
公开(公告)日:2017-02-14
申请号:US14369455
申请日:2011-12-29
申请人: Jukka Ylitalo , András Méhes , Patrik Salmela , Kristian Slavov
发明人: Jukka Ylitalo , András Méhes , Patrik Salmela , Kristian Slavov
IPC分类号: G06F15/173 , G06F15/16 , G06F9/455 , H04W4/00
CPC分类号: G06F9/45533 , G06F9/45558 , G06F2009/45595 , H04W4/60 , H04W4/70 , H04W12/04
摘要: A method is presented of establishing communications with a Virtual Machine, VM, in a virtualized computing environment using a 3GPPcommunications network. The method includes establishing a Machine-to-Machine Equipment Platform, M2MEP, which comprises a Communications Module, CM, providing an end-point of a communication channel between the 3GPP network and the VM. A virtual Machine-to-Machine Equipment is established that comprises a VM running on the M2MEP and a downloadable Subscriber Identity Module, associated with the CM. The Subscriber Identity Module includes security data and functions for enabling access via the 3GPP network. The CM utilizes data in the Subscriber Identity Module for controlling communication over the communication channel between the VM and the 3GPP network.
摘要翻译: 提出了一种使用3GPP通信网络在虚拟化计算环境中与虚拟机VM建立通信的方法。 该方法包括建立一个机器到机器设备平台,M2MEP,其包括通信模块CM,其提供3GPP网络和VM之间的通信信道的端点。 建立了虚拟机对机器设备,其包括在M2MEP上运行的VM和与CM相关联的可下载的订户身份模块。 订户身份模块包括用于通过3GPP网络访问的安全数据和功能。 CM利用订户身份模块中的数据来控制在VM与3GPP网络之间的通信信道上的通信。
-
公开(公告)号:US09286100B2
公开(公告)日:2016-03-15
申请号:US14368360
申请日:2011-12-29
申请人: Patrik Salmela , Kristian Slavov , Jukka Ylitalo
发明人: Patrik Salmela , Kristian Slavov , Jukka Ylitalo
CPC分类号: G06F9/45533 , G06F9/4856
摘要: A method of migrating a virtual machine comprises a first manager, managing a first computing environment (such as a computing cloud), initiates migration of a virtual machine currently executing on a first vM2ME (virtual machine-to-machine equipment) in the first computing environment to a second computing environment (such as another computing cloud). Once the VM has migrated, the first manager disables execution of the first vM2ME.
摘要翻译: 迁移虚拟机的方法包括:管理第一计算环境(例如计算云)的第一管理器,在第一计算中启动当前在第一vM2ME(虚拟机对机器设备)上执行的虚拟机的迁移 环境到第二计算环境(例如另一计算云)。 VM迁移之后,第一个管理员将禁用第一个vM2ME的执行。
-
6.发明申请Remote Provisioning of 3GPP Downloadable Subscriber Identity Module for Virtual Machine Applications 有权用于虚拟机应用的3GPP可下载用户身份模块的远程配置公开(公告)号:US20140337940A1
公开(公告)日:2014-11-13
申请号:US14369538
申请日:2011-12-29
申请人: Kristian Slavov , Patrik Salmela , Jukka Ylitalo
发明人: Kristian Slavov , Patrik Salmela , Jukka Ylitalo
摘要: A method is presented of providing a subscriber identity for the provision of services on behalf of the subscriber in a virtual computing environment. The method includes receiving a request to establish an execution environment for a virtual machine-to-machine equipment, vM2 M E. The vM2ME is provided, comprising software for execution in the virtual computing environment and a downloadable Subscriber Identity Module. A Communications Module, CM, is set up for execution in a domain of a virtualisation platform. The CM provides an end-point for communications between the vM2ME and a 3GPP network. The Subscriber Identity Module is installed for execution together with the CM, the Subscriber Identity Module including a 3GPP identity of the subscriber, security data and functions for enabling access to the vM2ME via the 3GPP network.
摘要翻译: 提出了一种提供用于在虚拟计算环境中代表用户提供服务的订户身份的方法。 该方法包括接收建立用于虚拟机对机器设备vM2M E的执行环境的请求。提供vM2ME,其包括用于在虚拟计算环境中执行的软件和可下载的订户身份模块。 通信模块CM设置为在虚拟化平台的域中执行。 CM为vM2ME和3GPP网络之间的通信提供了一个端点。 用户身份模块被安装为与CM一起执行,订户身份模块包括用户的3GPP身份,安全数据和用于通过3GPP网络访问vM2ME的功能。
-
公开(公告)号:US08788629B2
公开(公告)日:2014-07-22
申请号:US12599714
申请日:2008-05-08
申请人: Patrik Salmela , Petri Jokela , Raimo Vuopionperë , Jan Melén
发明人: Patrik Salmela , Petri Jokela , Raimo Vuopionperë , Jan Melén
IPC分类号: G06F15/177
CPC分类号: H04L45/04 , H04L29/12066 , H04L29/12103 , H04L61/1511 , H04L61/1535 , H04L67/04
摘要: A method of configuring a plurality of rendezvous servers to provide a Host Identity Protocol, HIP, based mobility service to HIP nodes, where the servers are arranged in a hierarchical branching structure. For each HIP node, a Host Identity Tag, HIT, and contact address mapping is registered with a rendezvous server. That server then identifies itself and the HIT to each higher level server within the same branch, without explicitly identifying the contact address to those higher level servers wherein, in use, when a first rendezvous server receives a HIP contact message addressed to a given HIT, if that first server is unaware of the destination HIT, it forwards the message to a higher level server within the same branch and if the first server is not the server at which the HIT is registered but is aware of the HIT, it forwards the contact message to the neighbouring rendezvous server corresponding to the HIT.
摘要翻译: 配置多个会合服务器以向HIP节点提供基于主机标识协议,基于HIP的移动性服务的方法,其中服务器以分层分支结构排列。 对于每个HIP节点,向集合服务器注册主机标识标签,HIT和联系人地址映射。 然后,该服务器将自身和HIT识别到同一分支内的每个较高级服务器,而不明确地识别到那些较高级服务器的联系人地址,其中在使用时,当第一会合服务器接收到给定HIT的HIP联系人消息时, 如果第一个服务器不知道目的地HIT,则将消息转发到同一分支中的较高级别的服务器,如果第一个服务器不是HIT注册但知道HIT的服务器,则转发该联系人 消息发送到对应于HIT的相邻会合服务器。
-
8.发明授权Addressing method and method and apparatus for establishing host identity protocol (HIP) connections between legacy and HIP nodes 有权用于建立传统和HIP节点之间的主机身份协议(HIP)连接的寻址方法和方法和装置公开(公告)号:US07827313B2
公开(公告)日:2010-11-02
申请号:US10589238
申请日:2004-02-13
申请人: Patrik Salmela , Jorma Wall , Petri Jokela
发明人: Patrik Salmela , Jorma Wall , Petri Jokela
CPC分类号: H04L29/12018 , H04L29/12009 , H04L61/10 , H04L63/0281 , H04L63/0428 , H04L69/16 , H04L69/163 , H04W8/26 , H04W80/04
摘要: A method is provided of at least partially securing communications, via a HIP proxy (16), between a first host (12) which is not HIP enabled and a second host (14) which is HIP enabled, the method comprising: sending (A) a query from the first host (12) to resolve the IP address of the second host (14); in response to said query, retrieving (B, C) an IP address (IPfa) and HIT (HIThip) associated with the second host (14), returning (E) from the proxy (16) a substitute IP address (IPres) associated with the second host (14), and maintaining (D) at the proxy (16) a mapping between the substitute IP address (IPres), the retrieved IP address (IPfa) and the retrieved HIT (HIThip); and upon receipt (F) of a session initiation message (TCP SYN) at the proxy (16) from the first host (12) including as its destination address the substitute IP address (IPres), using the mapping to negotiate a secure HIP connection (22) between the proxy (16) and the second host (14).
摘要翻译: 提供了一种方法,至少部分地通过HIP代理(16)在不启用HIP的第一主机(12)和启用HIP的第二主机(14)之间进行通信,所述方法包括:发送(A )来自所述第一主机(12)的用于解析所述第二主机(14)的IP地址的查询; 响应于所述查询,检索(B,C)与第二主机(14)相关联的IP地址(IPfa)和HIT(HIThip),从代理(16)返回(E)与之相关联的替代IP地址(IPres) 并且在代理(16)处维护(D)代替IP地址(IPres),检索到的IP地址(IPfa)和检索到的HIT(HIThip)之间的映射; 并且在代理(16)从第一主机(12)收到(F)会话发起消息(TCP SYN)时,使用映射来协商安全的HIP连接,该第一主机包括作为其目标地址的替代IP地址(IPres) (22)在代理(16)和第二主机(14)之间。
-
9.发明申请IDENTIFICATION METHOD AND APPARATUS FOR ESTABLISING HOST IDENTITY PROTOCOL (HIP) CONNECTIONS BETWEEN LEGACY AND HIP NODES 有权识别方法和设备用于打开主机身份协议(HIP)之间的联系和盗用代码公开(公告)号:US20070204150A1
公开(公告)日:2007-08-30
申请号:US10599761
申请日:2004-04-15
申请人: Petri Jokela , Pekka Nikander , Patrik Salmela , Jari Arkko , Jukka Ylitalo
发明人: Petri Jokela , Pekka Nikander , Patrik Salmela , Jari Arkko , Jukka Ylitalo
IPC分类号: G06F21/20
CPC分类号: H04L29/12018 , H04L29/12066 , H04L61/10 , H04L61/1511 , H04L63/08 , H04L63/164 , H04L69/24 , H04L69/329 , H04W8/04 , H04W80/04
摘要: A method is provided of using the Host Identity Protocol (HIP) to at least partially secure communications between a first host (102) operating in a first network environment and a second, HIP-enabled host (122) operating in a second network environment, with a gateway node (114) forming a gateway between the two environments. In the method, an identifier is associated with the first host (102), stored at the gateway node (114), and sent to the first host (102). The identifier is then used as a source address in a subsequent session initiation message sent from the first host (102) to the gateway node (114), having an indication that the destination of the message is the second host (122). The stored identifier at the gateway node is then used to negotiate a secure HIP connection to the second host. The first network environment may be a UMTS or GPRS environment, in which case the gateway node may be a Gateway GPRS Support Node (GGSN).
摘要翻译: 提供了一种使用主机身份协议(HIP)至少部分地保护在第一网络环境中操作的第一主机(102)和在第二网络环境中操作的第二启用HIP的主机(122)之间的通信的方法, 网关节点(114)在两个环境之间形成网关。 在该方法中,将标识符与存储在网关节点(114)处的第一主机(102)相关联,并发送到第一主机(102)。 然后,该标识符用作从第一主机(102)发送到网关节点(114)的后续会话发起消息中的源地址,其具有消息的目的地是第二主机(122)的指示。 网关节点处的存储的标识符然后用于协商到第二主机的安全HIP连接。 第一网络环境可以是UMTS或GPRS环境,在这种情况下,网关节点可以是网关GPRS支持节点(GGSN)。
-
公开(公告)号:US20100284400A1
公开(公告)日:2010-11-11
申请号:US12738258
申请日:2007-10-15
申请人: Jan Melén , Patrik Salmela
发明人: Jan Melén , Patrik Salmela
IPC分类号: H04L12/56
CPC分类号: H04W60/00 , H04L63/0281 , H04W80/04 , H04W88/182
摘要: A method of facilitating access to a Host Identity Protocol security procedure by a legacy host (100) connected to a moving network (101). The method comprises registering a local IP address or temporary Host Identity Tag of the legacy host (100) with a rendezvous server (111) together with an IP address of a Host Identity Protocol proxy (102) within said moving network, and using the registered IP address or temporary Host Identity Tag at the rendezvous server to forward received I1 packets to the Host Identity Protocol proxy.
摘要翻译: 一种便于由连接到移动网络(101)的传统主机(100)访问主机身份协议安全性过程的方法。 所述方法包括将遗留主机(100)的本地IP地址或临时主机标识标签与所述移动网络内的主机标识协议代理(102)的IP地址一起注册到会合服务器(111),并且使用所述注册 IP地址或临时主机身份标签,以将接收的I1数据包转发到主机身份协议代理。
-
-
-
-
-
-
-
-
-
搜索结果
23 条记录 (耗时 0.027 秒)
