-
公开(公告)号:US09602332B2
公开(公告)日:2017-03-21
申请号:US12131801
申请日:2008-06-02
CPC分类号: H04L29/12056 , H04L29/12301 , H04L29/1232 , H04L61/1505 , H04L61/2076 , H04L61/2092
摘要: In a 3GPP2 Converged Access Network (CAN), IPv6 stateless auto configuration can be used to configure an IPv6 address of an access terminal (AT) for Simple IPv6 operation. A domain name system (DNS) update is triggered by IPv6 Neighbor Advertisement addresses a need for a DNS update when the full IPv6 address (128 bits) has not yet been sent in IPv6 packets from the AT. Upon receipt of the full address in response to the IPv6 Neighbor Advertisement, provision is made for prompting this DNS update even when the requesting network entity (e.g., access gateway (AGW) or home agent (HA)) does not have security authentication with a responsible home DNS server by utilizing access to an authentication, authorization, and accounting (AAA) function, perhaps via a local visited AAA, to submit an Accounting Request (Start) message that prompts the home DNS server to perform the DNS update.
-
2.发明授权Methods and apparatus for providing PMIP key hierarchy in wireless communication networks 有权在无线通信网络中提供PMIP密钥层次的方法和装置公开(公告)号:US08769611B2
公开(公告)日:2014-07-01
申请号:US12131039
申请日:2008-05-31
申请人: Vidya Narayanan , Fatih Ulupinar , Jun Wang , Lakshminath Reddy Dondeti , Raymond Tah-Sheng Hsu
发明人: Vidya Narayanan , Fatih Ulupinar , Jun Wang , Lakshminath Reddy Dondeti , Raymond Tah-Sheng Hsu
IPC分类号: G06F7/04
CPC分类号: H04L63/06 , H04L9/0836 , H04L2209/76 , H04L2209/80 , H04W12/04 , H04W12/06 , H04W80/04 , H04W88/02
摘要: A method is provided for securing a PMIP tunnel between a serving gateway and a new access node through which an access terminal communicates. A PMIP key hierarchy unique to each access terminal is maintained by the gateway. The gateway uses a first node key to secure PMIP tunnels when authentication of the access terminal has been performed. A PMIP key is generated based on the first node key and the PMIP key is sent to the new access node to assist in establishing and securing a PMIP tunnel between the gateway and the new access node. Otherwise, when authentication of the access terminal has not been performed, the gateway generates a second node key and sends it to an intermediary network node which then generates and sends a PMIP key to the new access node. This second key is then used to secure the PMIP tunnel.
摘要翻译: 提供了一种用于保护服务网关和接入终端通过的新接入节点之间的PMIP隧道的方法。 每个接入终端唯一的PMIP密钥层级由网关维护。 当已经执行接入终端的认证时,网关使用第一节点密钥来保护PMIP隧道。 基于第一节点密钥生成PMIP密钥,并将PMIP密钥发送到新的接入节点,以协助建立和保护网关与新接入节点之间的PMIP隧道。 否则,当接入终端的认证尚未被执行时,网关生成第二节点密钥并将其发送到中间网络节点,然后生成PMIP密钥并将其发送到新的接入节点。 然后第二个密钥用于保护PMIP隧道。
-
3.发明授权Method and apparatus for verification of dynamic host configuration protocol (DHCP) release message 有权用于验证动态主机配置协议(DHCP)释放消息的方法和装置公开(公告)号:US08606887B2
公开(公告)日:2013-12-10
申请号:US12130028
申请日:2008-05-30
IPC分类号: G06F15/177 , G06F7/04
CPC分类号: H04L29/12311 , H04L61/2015 , H04L61/2084 , H04L63/1466 , H04W8/26 , H04W88/16
摘要: An apparatus and method for verification of a DHCPRELEASE message comprising extracting a IP address from the ciaddr field of the DHCPRELEASE message, determining a tunnel-associated IP address, comparing the IP address and the tunnel-associated IP address to determine if there is a match, and releasing the IP address if there is a match, and wherein the tunnel-associated IP address is the IP address associated with the tunnel from which the server receives the DHCPRELEASE message.
摘要翻译: 一种用于验证DHCPRELEASE消息的装置和方法,包括从所述DHCPRELEASE消息的ciaddr字段中提取IP地址,确定隧道相关联的IP地址,比较所述IP地址和所述隧道相关联的IP地址以确定是否存在匹配 并且如果存在匹配则释放所述IP地址,并且其中所述隧道相关联的IP地址是与所述服务器从其接收所述DHCPRELEASE消息的所述隧道相关联的IP地址。
-
公开(公告)号:US08145905B2
公开(公告)日:2012-03-27
申请号:US12113860
申请日:2008-05-01
申请人: Ravindra Patwardhan , Fatih Ulupinar , Jun Wang , Lakshminath Reddy Dondeti , Parag Arun Agashe , Peerapol Tinnakornsrisuphap , Raymond Tah-Sheng Hsu , Vidya Narayanan
发明人: Ravindra Patwardhan , Fatih Ulupinar , Jun Wang , Lakshminath Reddy Dondeti , Parag Arun Agashe , Peerapol Tinnakornsrisuphap , Raymond Tah-Sheng Hsu , Vidya Narayanan
IPC分类号: H04L29/06
CPC分类号: H04L63/06 , H04L63/08 , H04L63/105 , H04W12/04 , H04W12/06
摘要: Disclosed is a method for multiple EAP-based authentications in a wireless communication system. In the method, a first master session key (MSK) is generated in a first EAP-based authentication for a first-type access. A first temporal session key (TSK) is generated from the first master session key (MSK). A second EAP-based authentication is performed, using the first temporal session key (TSK), for a second-type access. First-type access and second-type access are provided after the first and second EAP-based authentications are successfully completed.
摘要翻译: 公开了一种在无线通信系统中用于多个基于EAP的认证的方法。 在该方法中,在第一类型访问的第一基于EAP的认证中生成第一主会话密钥(MSK)。 从第一主会话密钥(MSK)生成第一时间会话密钥(TSK)。 使用第一时间会话密钥(TSK)对第二类型访问执行第二基于EAP的认证。 在第一次和第二次基于EAP的验证成功完成后提供第一类访问和第二类访问。
-
公开(公告)号:US20080310303A1
公开(公告)日:2008-12-18
申请号:US12136538
申请日:2008-06-10
申请人: Jun Wang , Faith Ulupinar , Haipeng Jin , Parag Arun Agashe , Peerapol Tinnakornsrisuphap , Raymond Tah-Sheng Hsu , Arungundram C. Mahendran
发明人: Jun Wang , Faith Ulupinar , Haipeng Jin , Parag Arun Agashe , Peerapol Tinnakornsrisuphap , Raymond Tah-Sheng Hsu , Arungundram C. Mahendran
IPC分类号: H04L29/08
摘要: Quality of service information can be used to facilitate wireless communication. A network entity, such as a terminal, as well as a network can initialize an authorization to establish a link using quality of service information. Various features can be integrated with the use of quality of service information, such as having quality of service reservation before a call and supplying a permanent identity for use in correlation.
摘要翻译: 可以使用服务质量信息来促进无线通信。 诸如终端的网络实体以及网络可以使用服务质量信息初始化建立链接的授权。 各种特征可以与使用服务质量信息相结合,例如在通话之前具有服务质量保留并提供用于相关性的永久身份。
-
公开(公告)号:US09681336B2
公开(公告)日:2017-06-13
申请号:US12136538
申请日:2008-06-10
申请人: Jun Wang , Faith Ulupinar , Haipeng Jin , Parag Arun Agashe , Peerapol Tinnakornsrisuphap , Raymond Tah-Sheng Hsu , Arungundram C. Mahendran
发明人: Jun Wang , Faith Ulupinar , Haipeng Jin , Parag Arun Agashe , Peerapol Tinnakornsrisuphap , Raymond Tah-Sheng Hsu , Arungundram C. Mahendran
摘要: Quality of service information can be used to facilitate wireless communication. A network entity, such as a terminal, as well as a network can initialize an authorization to establish a link using quality of service information. Various features can be integrated with the use of quality of service information, such as having quality of service reservation before a call and supplying a permanent identity for use in correlation.
-
公开(公告)号:US08144593B2
公开(公告)日:2012-03-27
申请号:US11941792
申请日:2007-11-16
申请人: Vidya Narayanan , Jun Wang , Lakshminath Reddy Dondeti , Arungundram C. Mahendran , Raymond Tah-Sheng Hsu
发明人: Vidya Narayanan , Jun Wang , Lakshminath Reddy Dondeti , Arungundram C. Mahendran , Raymond Tah-Sheng Hsu
IPC分类号: H04J1/16
摘要: Methods and apparatus for efficient routing in communication networks. In an aspect, a method is provided for traffic routing between first and second nodes in a communication network. The method includes detecting traffic transmitted between the first and second nodes, transmitting a request to a mobility agent associated with the first node to request authorization for a route optimization between the first and second nodes, receiving a response that authorizes the route optimization, and establishing an optimized route. In an aspect, an apparatus includes detector logic for detecting traffic transmitted between the first and second nodes, transmitting logic for transmitting a request to a mobility agent associated with the first node to request authorization for a route optimization between the first and second nodes, receiving logic for receiving a response that authorizes the route optimization, and connection logic for establishing an optimized route.
摘要翻译: 通信网络中有效路由的方法和装置。 在一方面,提供了一种用于通信网络中的第一和第二节点之间的业务路由的方法。 该方法包括检测在第一和第二节点之间传输的业务,向与第一节点相关联的移动性代理发送请求以请求对第一和第二节点之间的路由优化的授权,接收授权路由优化的响应,以及建立 优化的路线。 一方面,一种装置包括用于检测在第一和第二节点之间传输的业务的检测器逻辑,用于向与第一节点相关联的移动性代理发送请求的请求的逻辑,以请求第一和第二节点之间的路由优化的授权,接收 用于接收授权路由优化的响应的逻辑,以及用于建立优化路由的连接逻辑。
-
公开(公告)号:US08042170B2
公开(公告)日:2011-10-18
申请号:US11180131
申请日:2005-07-12
CPC分类号: H04L63/0428 , H04L63/164
摘要: In a communication session in which data flows with encrypted data packets pass through a monitoring intermediary for data traffic control. The encrypted data packets include SPIs (Secured Parameter Indexes) which are used to identify SAs (Security Associations) for data decryption. During the initial signaling process for the communication session, the nodes seeking the communication session include the SPIs in the signaling messages and send the signaling messages through the monitoring intermediary which in turn matches the SPIs of the signaling messages with the corresponding SPIs extracted from the data packets. In enforcing data traffic control, the monitoring intermediary allows data flows to pass through if comparison matches in the SPIs are found. Otherwise, the data flows are rejected.
摘要翻译: 在具有加密数据分组的数据流通过用于数据业务控制的监视中介的通信会话中。 加密的数据包包括用于识别用于数据解密的SA(安全关联)的SPI(安全参数索引)。 在通信会话的初始信令过程期间,寻求通信会话的节点包括信令消息中的SPI,并通过监控中介发送信令消息,监控中介又将信令消息的SPI与从数据中提取的对应的SPI进行匹配 数据包 在执行数据流量控制时,监控中介允许数据流通过,如果发现SPI中的比较匹配。 否则,数据流将被拒绝。
-
公开(公告)号:US20110182226A1
公开(公告)日:2011-07-28
申请号:US12757733
申请日:2010-04-09
IPC分类号: H04H20/71
CPC分类号: H04L12/1877 , H04L12/189 , H04L69/04 , H04W28/06 , H04W72/005
摘要: Methods and apparatus for compression of headers in broadcasting BCMCS services in a wireless communication system are described. Techniques used in BCMCS systems without feedback include sending static context information during BCMCS service initialization for use in a decompressor in a mobile station. Techniques used in BCMCS systems with feedback include receiving feedback from distributed mobile station decompressors and adjusting the broadcasting compressor in response to the feedback. Techniques that reduce the number of operating states in both the compressor and the decompressor are described. Techniques to classify flows so that a reduced number of contexts are used to compress/decompress session packet headers in a push-to-talk service are described.
摘要翻译: 描述了用于在无线通信系统中广播BCMCS服务中的报头压缩的方法和装置。 在没有反馈的BCMCS系统中使用的技术包括在BCMCS服务初始化期间发送静态上下文信息以用于移动站中的解压缩器。 在具有反馈的BCMCS系统中使用的技术包括从分布式移动台解压缩器接收反馈并响应于反馈调整广播压缩器。 描述了减少压缩机和解压缩器中的操作状态数量的技术。 描述用于对流进行分类的技术,以便使用减少数量的上下文来压缩/解压缩一键通服务中的会话分组报头。
-
10.发明授权Determining a session encryption key during a broadcast/multicast service session using secure real-time transport protocol 有权在使用安全实时传输协议的广播/多播服务会话期间确定会话加密密钥公开(公告)号:US07657036B2
公开(公告)日:2010-02-02
申请号:US10946961
申请日:2004-09-21
申请人: Raymond Tah-Sheng Hsu , Jun Wang
发明人: Raymond Tah-Sheng Hsu , Jun Wang
IPC分类号: H04L9/00
CPC分类号: H04L63/0428 , H04L9/0861 , H04L9/0891 , H04L63/06 , H04L63/068 , H04L2209/80 , H04L2463/061
摘要: Techniques are provided for determining an updated session encryption key. According to one embodiment, a packet index can be computed using a sequence number received in a session data packet during a SRTP session and a predetermined value. The predetermined value can be, for example, a non-zero value from a roll-over-counter that has been set to the non-zero value. The updated session encryption key can then be determined using a master key received from a BCMCS controller and the packet index. The determined updated session key is used to encrypt or de-encrypt content provided by a content server.
摘要翻译: 提供了用于确定更新的会话加密密钥的技术。 根据一个实施例,可以使用在SRTP会话期间在会话数据分组中接收的序列号和预定值来计算分组索引。 预定值可以是例如已经被设置为非零值的翻转计数器的非零值。 然后可以使用从BCMCS控制器接收的主密钥和分组索引来确定更新的会话加密密钥。 确定的更新的会话密钥用于加密或解密由内容服务器提供的内容。
-
-
-
-
-
-
-
-
-
搜索结果
713 条记录 (耗时 0.034 秒)
