-
公开(公告)号:US07788493B2
公开(公告)日:2010-08-31
申请号:US11060374
申请日:2005-02-17
申请人: Risto Mononen , Nadarajah Asokan , Pekka Laitinen
发明人: Risto Mononen , Nadarajah Asokan , Pekka Laitinen
IPC分类号: H04L9/32
CPC分类号: H04L63/0421 , G06F21/335 , H04L63/0815 , H04L63/0823 , H04L63/083
摘要: A method of authenticating a user seeking access to a service from a service provider in a communication network, the method comprising: allocating to a user a plurality of service-specific identities for accessing respective services; issuing a request from the user, the request identifying the service to be accessed and including a public key of the user; at a certification authority, authenticating the request and issuing a public key certificate for binding the service-specific identity with the public key in the request, and returning the public key certificate to the user.
摘要翻译: 一种认证在通信网络中从服务提供商寻求对服务的访问的用户的方法,所述方法包括:向用户分配用于访问相应服务的多个服务特定身份; 从所述用户发出请求,所述请求标识要访问的服务并且包括所述用户的公钥; 在认证机构认证请求,并发出公钥证书,用于在请求中与公钥绑定服务特定身份,并将公开密钥证书返回给用户。
-
公开(公告)号:US20050287990A1
公开(公告)日:2005-12-29
申请号:US11060374
申请日:2005-02-17
申请人: Risto Mononen , Nadarajah Asokan , Pekka Laitinen
发明人: Risto Mononen , Nadarajah Asokan , Pekka Laitinen
CPC分类号: H04L63/0421 , G06F21/335 , H04L63/0815 , H04L63/0823 , H04L63/083
摘要: A method of authenticating a user seeking access to a service from a service provider in a communication network, the method comprising: allocating to a user a plurality of service-specific identities for accessing respective services; issuing a request from the user, the request identifying the service to be accessed and including a public key of the user; at a certification authority, authenticating the request and issuing a public key certificate for binding the service-specific identity with the public key in the request, and returning the public key certificate to the user.
摘要翻译: 一种认证在通信网络中从服务提供商寻求对服务的访问的用户的方法,所述方法包括:向用户分配用于访问相应服务的多个服务特定身份; 从所述用户发出请求,所述请求标识要访问的服务并且包括所述用户的公钥; 在认证机构认证请求,并发出公钥证书,用于在请求中与公钥绑定服务特定身份,并将公开密钥证书返回给用户。
-
公开(公告)号:US20060059344A1
公开(公告)日:2006-03-16
申请号:US10984902
申请日:2004-11-10
申请人: Risto Mononen
发明人: Risto Mononen
IPC分类号: H04L9/00
CPC分类号: H04L63/061 , H04L9/0891 , H04L9/3228 , H04L63/0428 , H04L63/083 , H04L2209/76 , H04L2209/80 , H04W4/00 , H04W12/04 , H04W12/06 , H04W74/00
摘要: A system and method of receiving key information for calculating at least one password by a user equipment from a communication network system via a secure channel, generating at least one password on the basis of the key information in the user equipment, and performing authentication between the user equipment and the communication network system using the at least one password.
摘要翻译: 一种系统和方法,用于接收用户设备经由安全信道从通信网络系统计算至少一个密码的密钥信息,根据所述用户设备中的密钥信息生成至少一个密码,并在所述用户设备之间执行认证 用户设备和通信网络系统使用至少一个密码。
-
公开(公告)号:US20050055576A1
公开(公告)日:2005-03-10
申请号:US10689851
申请日:2003-10-22
申请人: Risto Mononen , Sandro Grech
发明人: Risto Mononen , Sandro Grech
IPC分类号: H04L20060101 , H04L9/00 , H04L12/56 , H04L29/06
CPC分类号: H04L63/0407 , H04L63/0442 , H04L63/061 , H04L63/0823 , H04L63/20 , H04W8/082 , H04W8/16 , H04W8/26 , H04W80/04
摘要: A mechanism for providing a mobile node with reliable information for location privacy decisions in connection with an address update process that gives the correspondent node a chance to deduce the location of the mobile node is provided. According to one embodiment of the invention, an indication is given when an address update process needs to be performed for optimizing routing between a mobile node and a correspondent node. In response to the indicating step, the correspondent node may be authenticated, the authentication yielding identity information about the correspondent node. Based on the identity information, a route optimization decision may be made based on whether or not the address update process is to be performed, and the address update process may be carried out depending on the decision.
摘要翻译: 提供了一种机制,用于向移动节点提供与给予对端节点有机会推断移动节点的位置的地址更新过程相关的位置隐私决定的可靠信息。 根据本发明的一个实施例,当需要执行地址更新处理以优化移动节点和通信节点之间的路由时给出指示。 响应于指示步骤,通信节点可以被认证,认证产生关于对端节点的身份信息。 基于身份信息,可以基于是否要执行地址更新处理来进行路由优化决定,并且可以根据决定来执行地址更新处理。
-
5.发明授权Method and system for communicating data between a mobile communications architecture and a packet switched architecture 有权用于在移动通信体系结构和分组交换架构之间传送数据的方法和系统公开(公告)号:US07307968B2
公开(公告)日:2007-12-11
申请号:US09784954
申请日:2001-02-16
IPC分类号: H04Q7/00
CPC分类号: H04W92/14 , H04L12/4633 , H04W28/06 , H04W80/00
摘要: The method and system provides a data packet encapsulated with protocol data according to an embodiment of the invention. A data packet for communication may be associated with a TLLI and a NSAPI identifying a communications path between a BSS and a SGSN. The method and system provides a BVC associated with the BSS and the SGSN and a NSE that provides communication service to the BVC over NS-VC. The BVC, NSE and NS-VC may be associated with the TLLI and NSAPI. The encapsulated protocol data comprises UDP and IP. UDP provides UDP ports associated with NS-VC. The UDP ports identified as data designated as either real time or non-real time services. IP provides an IP address identifying the NSE providing service to the BVC. The data packet encapsulated with UDP and IP provides for more efficient, flexible and reliable communications between a BSS and a SGSN.
摘要翻译: 该方法和系统提供根据本发明实施例的用协议数据封装的数据分组。 用于通信的数据分组可以与标识BSS和SGSN之间的通信路径的TLLI和NSAPI相关联。 该方法和系统提供与BSS和SGSN相关联的BVC以及通过NS-VC向BVC提供通信服务的NSE。 BVC,NSE和NS-VC可能与TLLI和NSAPI相关联。 封装的协议数据包括UDP和IP。 UDP提供与NS-VC相关联的UDP端口。 标识为被指定为实时或非实时服务的数据的UDP端口。 IP提供了一个IP地址,用于标识向BVC提供服务的NSE。 用UDP和IP封装的数据包提供了BSS和SGSN之间更有效,灵活和可靠的通信。
-
公开(公告)号:US07050403B2
公开(公告)日:2006-05-23
申请号:US09970754
申请日:2001-10-03
申请人: Risto Mononen
发明人: Risto Mononen
IPC分类号: H04J1/16
摘要: The present invention discloses a method for classifying packets in a packet network. The method comprises the steps of detecting (S1) the length of a packet and classifying (S2, S3, S4) the packets depending on the detected length. By this method, it is possible to easily determine the different classes of packets by referring to the length of a packet. Hence, no special control data fields have to be generated and added to the packets in order to provide them with different transmission qualities in dependence on their class or type. Furthermore, the present invention also discloses a routing device adapted to carry out the method.
摘要翻译: 本发明公开了一种在分组网络中对分组进行分类的方法。 该方法包括以下步骤:检测(S 1)分组的长度,并根据检测到的长度对分组进行分类(S 2,S 3,S 4)。 通过这种方法,可以通过参考分组的长度容易地确定不同类别的分组。 因此,不需要生成特殊的控制数据字段并将其添加到数据包中,以便根据其类别或类型向他们提供不同的传输质量。 此外,本发明还公开了一种适用于执行该方法的路由设备。
-
公开(公告)号:US07426746B2
公开(公告)日:2008-09-16
申请号:US10689851
申请日:2003-10-22
申请人: Risto Mononen , Sandro Grech
发明人: Risto Mononen , Sandro Grech
IPC分类号: G06F9/00
CPC分类号: H04L63/0407 , H04L63/0442 , H04L63/061 , H04L63/0823 , H04L63/20 , H04W8/082 , H04W8/16 , H04W8/26 , H04W80/04
摘要: A mechanism for providing a mobile node with reliable information for location privacy decisions in connection with an address update process that gives the correspondent node a chance to deduce the location of the mobile node is provided. According to one embodiment of the invention, an indication is given when an address update process needs to be performed for optimizing routing between a mobile node and a correspondent node. In response to the indicating step, the correspondent node may be authenticated, the authentication yielding identity information about the correspondent node. Based on the identity information, a route optimization decision may be made based on whether or not the address update process is to be performed, and the address update process may be carried out depending on the decision.
摘要翻译: 提供了一种机制,用于向移动节点提供与给予对端节点有机会推断移动节点的位置的地址更新过程相关的位置隐私决定的可靠信息。 根据本发明的一个实施例,当需要执行地址更新处理以优化移动节点和通信节点之间的路由时给出指示。 响应于指示步骤,通信节点可以被认证,认证产生关于对端节点的身份信息。 基于身份信息,可以基于是否要执行地址更新处理来进行路由优化决定,并且可以根据决定来执行地址更新处理。
-
公开(公告)号:US20060272025A1
公开(公告)日:2006-11-30
申请号:US11441122
申请日:2006-05-26
申请人: Risto Mononen
发明人: Risto Mononen
IPC分类号: H04N7/16
CPC分类号: H04L63/1416 , H04L47/15 , H04L47/24 , H04L63/1458 , H04L2463/141
摘要: Processing of packet data in a communication system supporting at least packet data transfer involves the following. Packet data is received from a source. It is determined, based on the received packet data, whether there is anomalous behaviour of the packet data source. Data transmission resources for a communications device are limited in response to determining anomalous behaviour of the source, and transmission of packet data for the communications device is provided using the limited transmission resources. The communications device is either the source or a destination of at least part of the packet data received from the source. In the communication system, access to a set of services from the communications device may furthermore be blocked.
摘要翻译: 支持至少分组数据传输的通信系统中的分组数据的处理涉及以下。 从源接收分组数据。 基于接收的分组数据确定分组数据源是否存在异常行为。 响应于确定源的异常行为而限制通信设备的数据传输资源,并且使用有限的传输资源提供用于通信设备的分组数据的传输。 通信设备是从源接收的分组数据的至少一部分的源或目的地。 在通信系统中,还可以阻止从通信设备访问一组服务。
-
公开(公告)号:US20060010226A1
公开(公告)日:2006-01-12
申请号:US10934559
申请日:2004-09-07
IPC分类号: G06F15/16
CPC分类号: H04L63/1408 , H04L63/145 , H04L65/605
摘要: A method controls content communication between a communication device and another communicating party in a communication system. The method includes providing a first network entity with device information relating to the communication device. Furthermore, the method includes receiving in the first network entity content to be delivered to or from the communication device. Furthermore, the method includes controlling delivery of the content based on the communication device information. A network entity in a communication system is configured to execute the method.
摘要翻译: 一种方法控制通信系统中通信设备与另一通信方之间的内容通信。 该方法包括向第一网络实体提供与通信设备相关的设备信息。 此外,该方法包括在第一网络实体中接收要传送到通信设备或从通信设备发送的内容。 此外,该方法包括基于通信设备信息来控制内容的传送。 通信系统中的网络实体被配置为执行该方法。
-
-
-
-
-
-
-
-
搜索结果
9 条记录 (耗时 0.019 秒)
