Abstract:
There is provided an intra-realm AAA (authentication, authorization and accounting) fallback mechanism, wherein the single global realm may be divided in one or more sub-realms. The thus presented mechanism exemplarily comprises detecting a failure of an authentication server serving at least one authentication client within a first sub-realm of a single-realm authentication system, and routing authentication messages of the at least one authentication client to a fallback authentication server within a second sub-realm of the single-realm authentication system, wherein routing may exemplarily comprise sub-realm based source routing.
Abstract:
A second internet protocol network is logically connected to a packet data network connection provided between a user equipment and a first internet protocol network over a radio access network, the second internet protocol network located on a data path from the first internet protocol network to the user equipment. The first internet protocol network represents the highest level internet protocol point of attachment to the packet data network connection. Router advertisements are sent from the second internet protocol network to the user equipment over the radio access network via the packet data network connection.
Abstract:
It is provided a method, comprising providing a non 3GPP network access to a user equipment (S10); connecting an apparatus performing the method via an interface to a packet data network gateway of a packet core network (S20); indicating, to the packet data network gateway via the interface, an indication whether the non 3GPP network access is a trusted access (S30).
Abstract:
There are provided measures for supporting an authentication to an external packet data network over an untrusted access network, said measures exemplarily comprising authenticating a user equipment to a communication network providing connectivity for the user equipment across an unsecured access network in response to a first authentication request, wherein the authentication request is an authentication request of a key information exchange mechanism and includes authentication data, receiving a second authentication request for authenticating the user equipment towards a packet data network external to the communications network. The measures may further comprise creating a binding update message including the authentication data and identity information of the user received from the user equipment.
Abstract:
Apparatus, method, system and computer program product for server failure handling A mechanism for a first apparatus is described. The mechanism comprising receiving, from a first apparatus, a first authentication request comprising an user identity and an identity of said first apparatus, wherein said first apparatus being capable for provide authentication related service with respect to said user identity; determining if a third apparatus, originally associated with said user identity for providing authentication related service, is available for providing said service; registering said first apparatus as the server associated with said user identity for providing authentication related service, if said third apparatus is not available; sending a response to said first apparatus to acknowledge the first authentication request.
Abstract:
Apparatus, method, system and computer program product for server failure handling A mechanism for a first apparatus is described. The mechanism comprising receiving, from a first apparatus, a first authentication request comprising an user identity and an identity of said first apparatus, wherein said first apparatus being capable for provide authentication related service with respect to said user identity; determining if a third apparatus, originally associated with said user identity for providing authentication related service, is available for providing said service; registering said first apparatus as the server associated with said user identity for providing authentication related service, if said third apparatus is not available; sending a response to said first apparatus to acknowledge the first authentication request.