-
公开(公告)号:US20110296027A1
公开(公告)日:2011-12-01
申请号:US13147250
申请日:2009-02-05
申请人: Patrik Salmela , Jan Melen , Jukka Ylitalo
发明人: Patrik Salmela , Jan Melen , Jukka Ylitalo
IPC分类号: G06F15/173
CPC分类号: H04W8/08 , H04L29/12028 , H04L29/12103 , H04L29/12283 , H04L29/12933 , H04L61/103 , H04L61/1535 , H04L61/2061 , H04L61/6068 , H04W80/04 , H04W84/005 , H04W88/182
摘要: A method of facilitating access to a Host Identity Protocol security procedure by a host connected to a moving network, where the moving network comprises a Host Identity Protocol server responsible for allocating local IP addresses to attached hosts. The method comprises registering at a rendezvous server an IP address prefix for use by said Host Identity Protocol server in allocating said local addresses, together with an externally reachable IP address of the Host Identity Protocol server. The registered IP address prefix is used at the rendezvous server to forward received I1 messages to the Host Identity Protocol server. The rendezvous server controls the allocation and registration of address prefixes to Host Identity Protocol servers in order to prevent collision of local IP addresses.
摘要翻译: 一种促进由连接到移动网络的主机访问主机身份协议安全过程的方法,其中移动网络包括负责为本地IP地址分配给主机的主机身份协议服务器。 该方法包括在会合服务器上注册所述主机标识协议服务器在分配所述本地地址时使用的IP地址前缀,以及主机标识协议服务器的外部可达IP地址。 注册的IP地址前缀在会合服务器上使用,将接收到的I1消息转发到主机标识协议服务器。 会合服务器控制地址前缀的分配和注册到主机身份协议服务器,以防止本地IP地址的冲突。
-
公开(公告)号:US20110055570A1
公开(公告)日:2011-03-03
申请号:US12674020
申请日:2008-08-22
申请人: Petri Jokela , Jan Melen , Patrik Salmela , Jukka Ylitalo
发明人: Petri Jokela , Jan Melen , Patrik Salmela , Jukka Ylitalo
CPC分类号: H04W8/06 , H04W36/0011 , H04W80/04 , H04W88/182
摘要: A method of facilitating location update signalling within a communication network between a mobile node and an end host includes establishing a trust relationship between one or more end hosts (1) and a proxy (3). When a mobile node (2) is handed-off, a location update is performed between the mobile node (2) and the proxy (3), and a location update message is sent from the proxy to the end host(s) having the trust relationship with the proxy. Multiple end hosts may authorise the same proxy to perform location update signalling on their behalf. The number of signalling messages required to perform the location update may be reduced, compared to a legacy method in which the mobile node is required to perform location update signalling with each end host.
摘要翻译: 促进移动节点和终端主机之间的通信网络内的位置更新信令的方法包括建立一个或多个终端主机(1)和代理(3)之间的信任关系。 当移动节点(2)被切换时,在移动节点(2)和代理(3)之间执行位置更新,并且将位置更新消息从代理发送到具有 与代理人的信任关系。 多个终端主机可以授权相同的代理来代表它们执行位置更新信令。 与需要移动节点与每个终端主机执行位置更新信令的传统方法相比,执行位置更新所需的信令消息的数量可以减少。
-
公开(公告)号:US09286100B2
公开(公告)日:2016-03-15
申请号:US14368360
申请日:2011-12-29
申请人: Patrik Salmela , Kristian Slavov , Jukka Ylitalo
发明人: Patrik Salmela , Kristian Slavov , Jukka Ylitalo
CPC分类号: G06F9/45533 , G06F9/4856
摘要: A method of migrating a virtual machine comprises a first manager, managing a first computing environment (such as a computing cloud), initiates migration of a virtual machine currently executing on a first vM2ME (virtual machine-to-machine equipment) in the first computing environment to a second computing environment (such as another computing cloud). Once the VM has migrated, the first manager disables execution of the first vM2ME.
摘要翻译: 迁移虚拟机的方法包括:管理第一计算环境(例如计算云)的第一管理器,在第一计算中启动当前在第一vM2ME(虚拟机对机器设备)上执行的虚拟机的迁移 环境到第二计算环境(例如另一计算云)。 VM迁移之后,第一个管理员将禁用第一个vM2ME的执行。
-
4.发明申请公开(公告)号:US20140373012A1
公开(公告)日:2014-12-18
申请号:US14369455
申请日:2011-12-29
申请人: Jukka Ylitalo , András Méhes , Patrik Salmela , Kristian Slavov
发明人: Jukka Ylitalo , András Méhes , Patrik Salmela , Kristian Slavov
CPC分类号: G06F9/45533 , G06F9/45558 , G06F2009/45595 , H04W4/60 , H04W4/70 , H04W12/04
摘要: A method is presented of establishing communications with a Virtual Machine, VM, in a virtualised computing environment using a 3GPPcommunications network. The method includes establishing a Machine-to-Machine Equipment Platform, M2MEP, which comprises a Communications Module, CM, providing an end-point of a communication channel between the 3GPP network and the VM. A virtual Machine-to-Machine Equipment is established that comprises a VM running on the M2MEP and a downloadable Subscriber Identity Module, associated with the CM. The Subscriber Identity Module includes security data and functions for enabling access via the 3GPP network. The CM utilises data in the Subscriber Identity Module for controlling communication over the communication channel between the VM and the 3GPP network.
摘要翻译: 提出了一种使用3GPP通信网络在虚拟化计算环境中与虚拟机VM建立通信的方法。 该方法包括建立一个机器到机器设备平台,M2MEP,其包括通信模块CM,其提供3GPP网络和VM之间的通信信道的端点。 建立了虚拟机对机器设备,其包括在M2MEP上运行的VM和与CM相关联的可下载的订户身份模块。 订户身份模块包括用于通过3GPP网络访问的安全数据和功能。 CM利用订户身份模块中的数据来控制在VM与3GPP网络之间的通信信道上的通信。
-
5.发明申请Remote Provisioning of 3GPP Downloadable Subscriber Identity Module for Virtual Machine Applications 有权用于虚拟机应用的3GPP可下载用户身份模块的远程配置公开(公告)号:US20140337940A1
公开(公告)日:2014-11-13
申请号:US14369538
申请日:2011-12-29
申请人: Kristian Slavov , Patrik Salmela , Jukka Ylitalo
发明人: Kristian Slavov , Patrik Salmela , Jukka Ylitalo
摘要: A method is presented of providing a subscriber identity for the provision of services on behalf of the subscriber in a virtual computing environment. The method includes receiving a request to establish an execution environment for a virtual machine-to-machine equipment, vM2 M E. The vM2ME is provided, comprising software for execution in the virtual computing environment and a downloadable Subscriber Identity Module. A Communications Module, CM, is set up for execution in a domain of a virtualisation platform. The CM provides an end-point for communications between the vM2ME and a 3GPP network. The Subscriber Identity Module is installed for execution together with the CM, the Subscriber Identity Module including a 3GPP identity of the subscriber, security data and functions for enabling access to the vM2ME via the 3GPP network.
摘要翻译: 提出了一种提供用于在虚拟计算环境中代表用户提供服务的订户身份的方法。 该方法包括接收建立用于虚拟机对机器设备vM2M E的执行环境的请求。提供vM2ME,其包括用于在虚拟计算环境中执行的软件和可下载的订户身份模块。 通信模块CM设置为在虚拟化平台的域中执行。 CM为vM2ME和3GPP网络之间的通信提供了一个端点。 用户身份模块被安装为与CM一起执行,订户身份模块包括用户的3GPP身份,安全数据和用于通过3GPP网络访问vM2ME的功能。
-
6.发明申请IDENTIFICATION METHOD AND APPARATUS FOR ESTABLISING HOST IDENTITY PROTOCOL (HIP) CONNECTIONS BETWEEN LEGACY AND HIP NODES 有权识别方法和设备用于打开主机身份协议(HIP)之间的联系和盗用代码公开(公告)号:US20070204150A1
公开(公告)日:2007-08-30
申请号:US10599761
申请日:2004-04-15
申请人: Petri Jokela , Pekka Nikander , Patrik Salmela , Jari Arkko , Jukka Ylitalo
发明人: Petri Jokela , Pekka Nikander , Patrik Salmela , Jari Arkko , Jukka Ylitalo
IPC分类号: G06F21/20
CPC分类号: H04L29/12018 , H04L29/12066 , H04L61/10 , H04L61/1511 , H04L63/08 , H04L63/164 , H04L69/24 , H04L69/329 , H04W8/04 , H04W80/04
摘要: A method is provided of using the Host Identity Protocol (HIP) to at least partially secure communications between a first host (102) operating in a first network environment and a second, HIP-enabled host (122) operating in a second network environment, with a gateway node (114) forming a gateway between the two environments. In the method, an identifier is associated with the first host (102), stored at the gateway node (114), and sent to the first host (102). The identifier is then used as a source address in a subsequent session initiation message sent from the first host (102) to the gateway node (114), having an indication that the destination of the message is the second host (122). The stored identifier at the gateway node is then used to negotiate a secure HIP connection to the second host. The first network environment may be a UMTS or GPRS environment, in which case the gateway node may be a Gateway GPRS Support Node (GGSN).
摘要翻译: 提供了一种使用主机身份协议(HIP)至少部分地保护在第一网络环境中操作的第一主机(102)和在第二网络环境中操作的第二启用HIP的主机(122)之间的通信的方法, 网关节点(114)在两个环境之间形成网关。 在该方法中,将标识符与存储在网关节点(114)处的第一主机(102)相关联,并发送到第一主机(102)。 然后,该标识符用作从第一主机(102)发送到网关节点(114)的后续会话发起消息中的源地址,其具有消息的目的地是第二主机(122)的指示。 网关节点处的存储的标识符然后用于协商到第二主机的安全HIP连接。 第一网络环境可以是UMTS或GPRS环境,在这种情况下,网关节点可以是网关GPRS支持节点(GGSN)。
-
公开(公告)号:US20140325515A1
公开(公告)日:2014-10-30
申请号:US14368360
申请日:2011-12-29
申请人: Patrik Salmela , Kristian Slavov , Jukka Ylitalo
发明人: Patrik Salmela , Kristian Slavov , Jukka Ylitalo
IPC分类号: G06F9/455
CPC分类号: G06F9/45533 , G06F9/4856
摘要: A method of migrating a virtual machine comprises a first manager, managing a first computing environment (such as a computing cloud), initiates migration of a virtual machine currently executing on a first vM2ME (virtual machine-to-machine equipment) in the first computing environment to a second computing environment (such as another computing cloud). Once the VM has migrated, the first manager disables execution of the first vM2ME.
摘要翻译: 迁移虚拟机的方法包括:管理第一计算环境(例如计算云)的第一管理器,在第一计算中启动当前在第一vM2ME(虚拟机对机器设备)上执行的虚拟机的迁移 环境到第二计算环境(例如另一计算云)。 VM迁移之后,第一个管理员将禁用第一个vM2ME的执行。
-
8.发明授权公开(公告)号:US09569237B2
公开(公告)日:2017-02-14
申请号:US14369455
申请日:2011-12-29
申请人: Jukka Ylitalo , András Méhes , Patrik Salmela , Kristian Slavov
发明人: Jukka Ylitalo , András Méhes , Patrik Salmela , Kristian Slavov
IPC分类号: G06F15/173 , G06F15/16 , G06F9/455 , H04W4/00
CPC分类号: G06F9/45533 , G06F9/45558 , G06F2009/45595 , H04W4/60 , H04W4/70 , H04W12/04
摘要: A method is presented of establishing communications with a Virtual Machine, VM, in a virtualized computing environment using a 3GPPcommunications network. The method includes establishing a Machine-to-Machine Equipment Platform, M2MEP, which comprises a Communications Module, CM, providing an end-point of a communication channel between the 3GPP network and the VM. A virtual Machine-to-Machine Equipment is established that comprises a VM running on the M2MEP and a downloadable Subscriber Identity Module, associated with the CM. The Subscriber Identity Module includes security data and functions for enabling access via the 3GPP network. The CM utilizes data in the Subscriber Identity Module for controlling communication over the communication channel between the VM and the 3GPP network.
摘要翻译: 提出了一种使用3GPP通信网络在虚拟化计算环境中与虚拟机VM建立通信的方法。 该方法包括建立一个机器到机器设备平台,M2MEP,其包括通信模块CM,其提供3GPP网络和VM之间的通信信道的端点。 建立了虚拟机对机器设备,其包括在M2MEP上运行的VM和与CM相关联的可下载的订户身份模块。 订户身份模块包括用于通过3GPP网络访问的安全数据和功能。 CM利用订户身份模块中的数据来控制在VM与3GPP网络之间的通信信道上的通信。
-
公开(公告)号:US08665782B2
公开(公告)日:2014-03-04
申请号:US12443624
申请日:2006-09-29
申请人: Jukka Ylitalo , Patrik Salmela , Teemu Rinta-Aho , Johan Rune
发明人: Jukka Ylitalo , Patrik Salmela , Teemu Rinta-Aho , Johan Rune
IPC分类号: H04L12/28
CPC分类号: H04L45/18 , H04L45/04 , H04W40/36 , H04W48/12 , H04W84/005
摘要: A method of generating network identifiers for use by mobile routers of a moving network is provided which enables fast and efficient routing loop avoidance and detection. The method comprises receiving at a mobile router of a sub-network chain, a beacon from a preceding mobile router in the chain, the beacon containing a network identifier of the preceding mobile router, generating a new network identifier by applying a pre-defined function to the received network identifier, and including the new network identifier in beacons broadcast by the receiving mobile router. When preparing for a handover, a mobile router compares the network identifier contained in a received beacon with values generated by applying said function against its own network identifier. This allows the mobile router to identify beacons originating from mobile routers that are downstream in the same chain.
摘要翻译: 提供了一种生成移动网络的移动路由器使用的网络标识符的方法,其实现快速且有效的路由环路回避和检测。 该方法包括在子网链路的移动路由器处接收来自链路中的先前移动路由器的信标,所述信标包含前一移动路由器的网络标识符,通过应用预定义功能来生成新的网络标识符 到接收到的网络标识符,并且在接收移动路由器广播的信标中包括新的网络标识符。 当准备切换时,移动路由器将包含在接收的信标中的网络标识符与通过根据其自己的网络标识符应用所述功能而生成的值进行比较。 这允许移动路由器识别源自同一链路下游的移动路由器的信标。
-
10.发明授权Remote provisioning of 3GPP downloadable subscriber identity module for virtual machine applications 有权用于虚拟机应用的3GPP可下载的用户识别模块的远程配置公开(公告)号:US09549321B2
公开(公告)日:2017-01-17
申请号:US14369538
申请日:2011-12-29
申请人: Kristian Slavov , Patrik Salmela , Jukka Ylitalo
发明人: Kristian Slavov , Patrik Salmela , Jukka Ylitalo
摘要: A method is presented of providing a subscriber identity for the provision of services on behalf of the subscriber in a virtual computing environment. The method includes receiving a request to establish an execution environment for a virtual machine-to-machine equipment, vM2 M E. The vM2ME is provided, comprising software for execution in the virtual computing environment and a downloadable Subscriber Identity Module. A Communications Module, CM, is set up for execution in a domain of a virtualization platform. The CM provides an end-point for communications between the vM2ME and a 3GPP network. The Subscriber Identity Module is installed for execution together with the CM, the Subscriber Identity Module including a 3GPP identity of the subscriber, security data and functions for enabling access to the vM2ME via the 3GPP network.
摘要翻译: 提出了一种提供用于在虚拟计算环境中代表用户提供服务的订户身份的方法。 该方法包括接收建立用于虚拟机对机器设备vM2M E的执行环境的请求。提供vM2ME,其包括用于在虚拟计算环境中执行的软件和可下载的订户身份模块。 通信模块CM设置为在虚拟化平台的域中执行。 CM为vM2ME和3GPP网络之间的通信提供了一个端点。 用户身份模块被安装为与CM一起执行,订户身份模块包括用户的3GPP身份,安全数据和用于通过3GPP网络访问vM2ME的功能。
-
-
-
-
-
-
-
-
-
搜索结果
27 条记录 (耗时 0.021 秒)
