公开(公告)号：US08688970B2

公开(公告)日：2014-04-01

申请号：US12665006

申请日：2008-06-12

申请人： Jens Bachmann ,  Kilian Weniger ,  Takashi Aramaki ,  Jon Schuringa ,  Jun Hirano ,  Shinkichi Ikeda

发明人： Jens Bachmann ,  Kilian Weniger ,  Takashi Aramaki ,  Jon Schuringa ,  Jun Hirano ,  Shinkichi Ikeda

IPC分类号： H04L29/06

CPC分类号： H04L63/164 ,  H04L63/029 ,  H04L63/0428 ,  H04L63/0471 ,  H04W12/02 ,  H04W36/0011 ,  H04W60/00 ,  H04W80/04 ,  H04W88/16

摘要： The invention provides a method for trust relationship detection between a core and access network for a user equipment. The gist is that a security tunnel establishment procedure is used so one entity, be it part of the core network or be it the user equipment itself, is provided with information to determine whether the access network is trusted or untrusted. The information may comprise a first IP address/prefix, which is initially assigned to the user equipment, upon attaching to the access network. The necessary information may further comprise a second IP address/prefix, which is an address/prefix that is allocated at a trusted entity of the core network. Depending which entity determines the trust relationship of the access network, it might be necessary to transmit either the first IP address/prefix or the second IP address/prefix or the first and the second IP address/prefix using the security tunnel establishment procedure.

摘要翻译： 本发明提供了一种用于用户设备的核心和接入网络之间的信任关系检测的方法。 要点是使用安全隧道建立过程，因此一个实体（作为核心网络的一部分，或者是用户设备本身）被提供有用于确定接入网络是可信任还是不受信任的信息。 信息可以包括在附接到接入网络时最初分配给用户设备的第一IP地址/前缀。 必要的信息还可以包括第二IP地址/前缀，其是在核心网络的可信实体处分配的地址/前缀。 根据哪个实体确定接入网络的信任关系，可能需要使用安全隧道建立过程来发送第一IP地址/前缀或第二IP地址/前缀或第一和第二IP地址/前缀。

公开(公告)号：US20110110334A1

公开(公告)日：2011-05-12

申请号：US13001009

申请日：2009-06-22

申请人： Jun Hirano ,  Takashi Aramaki ,  Shinkichi Ikeda ,  Takahisa Aoyama

发明人： Jun Hirano ,  Takashi Aramaki ,  Shinkichi Ikeda ,  Takahisa Aoyama

IPC分类号： H04W36/00 ,  G06F17/30

CPC分类号： H04W12/06 ,  H04W36/0016

摘要： Disclosed is a technique to enable a session handover between devices with different key generation functions in an authentication protocol. According to the technique, when a session where a UE (200) receives contents from a contents server (700) is to be handed over to a target node (300), the UE firstly transfers information (session HO information) necessary to the session handover to the target node (Step S1001). The target node performs authentication processing with an authentication server (600) of the network to which the UE is connected and notifies the authentication server of the session HO information transferred from the UE (Step S1003). The authentication server performs authentication for the session handover based on the session HO information, and when the authentication succeeds, the session is handed over from the contents server to the target node, and the contents are distributed to the target node (Step S1005).

摘要翻译： 公开了一种能够在认证协议中具有不同密钥生成功能的设备之间进行会话切换的技术。 根据该技术，当UE（200）从内容服务器（700）接收内容的会话被切换到目标节点（300）时，UE首先传送会话所需的信息（会话HO信息） 切换到目标节点（步骤S1001）。 目标节点与UE所连接的网络的认证服务器（600）进行认证处理，向认证服务器通知从UE传送的会话HO信息（步骤S1003）。 认证服务器根据会话HO信息对会话切换进行认证，当认证成功时，会话从内容服务器切换到目标节点，并将内容分发给目标节点（步骤S1005）。

公开(公告)号：US20110103348A1

公开(公告)日：2011-05-05

申请号：US13001542

申请日：2009-07-03

申请人： Takako Hori ,  Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

发明人： Takako Hori ,  Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

IPC分类号： H04W4/00

CPC分类号： H04W36/0055 ,  H04W36/14

摘要： Provided is a technique to provide a handover processing method that allows a mobile terminal to be handed over seamlessly while preventing occurrence of double reservation. The method includes a step where a mobile terminal (100) decides to connect to a desired access network (113) and detects the possibility of occurrence of a network-initiated handover processing performed by a predetermined device of the communication network as one of the controlling entities, and a step where the mobile terminal transmits a connection request message requesting a connection to the desired access network, the connection request message including information to maintain the connection with the access network with which the mobile terminal is currently connecting, to a base station disposed in the desired access network based on a detection result of the detection step.

摘要翻译： 提供了一种提供切换处理方法的技术，其允许移动终端无缝地切换，同时防止双重保留的发生。 该方法包括步骤，其中移动终端（100）决定连接到期望的接入网络（113），并且检测由通信网络的预定设备执行的网络发起的切换处理的发生的可能性，作为控制 实体，以及移动终端发送请求到期望接入网络的连接的连接请求消息的步骤，连接请求消息包括维持与移动终端正在连接的接入网络的连接的信息到基站 基于检测步骤的检测结果，设置在期望的接入网络中。

公开(公告)号：US20100199332A1

公开(公告)日：2010-08-05

申请号：US12665006

申请日：2008-06-12

申请人： Jens Bachmann ,  Kilian Weniger ,  Takashi Aramaki ,  Jon Schuringa ,  Jun Hirano ,  Shinkichi Ikeda

发明人： Jens Bachmann ,  Kilian Weniger ,  Takashi Aramaki ,  Jon Schuringa ,  Jun Hirano ,  Shinkichi Ikeda

IPC分类号： G06F17/30 ,  H04J1/16 ,  H04L12/56

CPC分类号： H04L63/164 ,  H04L63/029 ,  H04L63/0428 ,  H04L63/0471 ,  H04W12/02 ,  H04W36/0011 ,  H04W60/00 ,  H04W80/04 ,  H04W88/16

摘要： The invention provides a method for trust relationship detection between a core and access network for a user equipment. The gist is that a security tunnel establishment procedure is used so one entity, be it part of the core network or be it the user equipment itself, is provided with information to determine whether the access network is trusted or untrusted. The information may comprise a first IP address/prefix, which is initially assigned to the user equipment, upon attaching to the access network. The necessary information may further comprise a second IP address/prefix, which is an address/prefix that is allocated at a trusted entity of the core network. Depending which entity determines the trust relationship of the access network, it might be necessary to transmit either the first IP address/prefix or the second IP address/prefix or the first and the second IP address/prefix using the security tunnel establishment procedure.

摘要翻译： 本发明提供了一种用于用户设备的核心和接入网络之间的信任关系检测的方法。 要点是使用安全隧道建立过程，因此一个实体（作为核心网络的一部分，或者是用户设备本身）被提供有用于确定接入网络是可信任还是不受信任的信息。 信息可以包括在附接到接入网络时最初分配给用户设备的第一IP地址/前缀。 必要的信息还可以包括第二IP地址/前缀，其是在核心网络的可信实体处分配的地址/前缀。 根据哪个实体确定接入网络的信任关系，可能需要使用安全隧道建立过程来发送第一IP地址/前缀或第二IP地址/前缀或第一和第二IP地址/前缀。

公开(公告)号：US09148826B2

公开(公告)日：2015-09-29

申请号：US13126375

申请日：2009-11-06

申请人： Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

发明人： Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

IPC分类号： H04W4/00 ,  H04W36/00 ,  H04W80/04

CPC分类号： H04W36/0011 ,  H04W80/045

摘要： Disclosed is a technique to provide a handover method that can improve the communication efficiency by reducing tunnel overhead between a mobile node and a home agent. When the mobile node (UE) (107) performs handover (HO) from a first access router (104) to a second access router (105) and if the IP versions supported by the networks before and after the HO are different, the UE transmits a first message including an allocation request for a home address of the HO target to the home agent (HA) and a second message including an address allocation request. The HA transmits to the UE, a third message including the home address of the HO target based on the allocation request and transmits to the UE, a fourth message including the home address based on the address allocation request.

摘要翻译： 公开了一种提供切换方法的技术，其可以通过减少移动节点和归属代理之间的隧道开销来提高通信效率。 当移动节点（UE）（107）从第一接入路由器（104）到第二接入路由器（105）执行切换（HO）时，如果在HO之前和之后由网络支持的IP版本不同，则UE 向归属代理（HA）发送包括对HO目标的归属地址的分配请求的第一消息和包括地址分配请求的第二消息。 基于分配请求，HA向UE发送包括HO目标的归属地址的第三消息，并且向UE发送包括基于地址分配请求的归属地址的第四消息。

公开(公告)号：US20110211558A1

公开(公告)日：2011-09-01

申请号：US13126375

申请日：2009-11-06

申请人： Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

发明人： Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

IPC分类号： H04W36/00

CPC分类号： H04W36/0011 ,  H04W80/045

摘要： Disclosed is a technique to provide a handover method that can improve the communication efficiency by reducing tunnel overhead between a mobile node and a home agent. When the mobile node (UE) (107) performs handover (HO) from a first access router (104) to a second access router (105) and if the IP versions supported by the networks before and after the HO are different, the UE transmits a first message including an allocation request for a home address of the HO target to the home agent (HA) and a second message including an address allocation request. The HA transmits to the UE, a third message including the home address of the HO target based on the allocation request and transmits to the UE, a fourth message including the home address based on the address allocation request.

摘要翻译： 公开了一种提供切换方法的技术，其可以通过减少移动节点和归属代理之间的隧道开销来提高通信效率。 当移动节点（UE）（107）从第一接入路由器（104）到第二接入路由器（105）执行切换（HO）时，如果在HO之前和之后由网络支持的IP版本不同，则UE 向归属代理（HA）发送包括对HO目标的归属地址的分配请求的第一消息和包括地址分配请求的第二消息。 基于分配请求，HA向UE发送包括HO目标的归属地址的第三消息，并且向UE发送包括基于地址分配请求的归属地址的第四消息。

公开(公告)号：US08761119B2

公开(公告)日：2014-06-24

申请号：US13126682

申请日：2009-11-06

申请人： Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

发明人： Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

IPC分类号： H04W4/00

CPC分类号： H04W36/0016 ,  H04L69/167 ,  H04W40/36 ,  H04W80/045

摘要： A technology is disclosed that provides a handover method and the like capable of improving communication efficiency by reducing tunnel overhead between a mobile node and a home agent. The technology includes: a step of transmitting, by a mobile node (UE) 107, a message including a home address allocation request in a network 102 of the handover destination and an allocated first address, to a home agent (HA) via an access router 104 before a handover; and a step of performing, by the HA, a predetermined process based on the received message and transmitting to the UE, a response message including a home address in response to the allocation request.

摘要翻译： 公开了一种技术，其提供能够通过减少移动节点和归属代理之间的隧道开销来提高通信效率的切换方法等。 该技术包括：通过移动节点（UE）107将包括切换目的地的网络102中的归属地址分配请求和所分配的第一地址的消息经由接入发送到归属代理（HA）的步骤 路由器104在切换之前; 以及基于所述接收到的消息，由HA执行预定处理并向所述UE发送响应于所述分配请求的响应消息，所述响应消息包括归属地址。

公开(公告)号：US20110002248A1

公开(公告)日：2011-01-06

申请号：US12920440

申请日：2009-03-03

申请人： Jun Hirano ,  Takashi Aramaki ,  Shinkichi Ikeda

发明人： Jun Hirano ,  Takashi Aramaki ,  Shinkichi Ikeda

IPC分类号： H04L12/56 ,  H04B7/00

CPC分类号： H04W8/26 ,  H04W8/04 ,  H04W80/04

摘要： Disclosed is a technique to enable a mobile terminal to grasp an address handling method used for each service and hence to achieve more efficient communication. According to this technique, a mobile terminal (UE) 15 inquires a home PMIPv6 domain 10 about a method of handling each address currently maintained by the mobile terminal (e.g., which address should be used as an MIPv6 home address (HoA)) in a state of being attached to the home PMIPv6 domain 10 before starting MIPv6 as a mobile management protocol, and acquires and stores the inquiry result in advance. Then, for example, when moving to a foreign network 20 and starting MIPv6, the stored inquiry result is referred to select an address appropriate as an HoA in order to perform a search for a HA (Home Agent) and BU (Binding Update) transmission.

摘要翻译： 公开了一种使移动终端能够掌握用于每个服务的地址处理方法并因此实现更有效的通信的技术。 根据该技术，移动终端（UE）15向家庭PMIPv6域10询问处理移动终端当前维护的每个地址的方法（例如，哪个地址应该用作MIPv6归属地址（HoA）） 在启动MIPv6作为移动管理协议之前附接到家庭PMIPv6域10的状态，并且预先获取并存储查询结果。 然后，例如，当移动到外部网络20并启动MIPv6时，参考所存储的查询结果来选择适合作为HoA的地址，以便执行对HA（归属代理）和BU（绑定更新）传输的搜索 。

公开(公告)号：US08964694B2

公开(公告)日：2015-02-24

申请号：US13001009

申请日：2009-06-22

申请人： Jun Hirano ,  Takashi Aramaki ,  Shinkichi Ikeda ,  Takahisa Aoyama

发明人： Jun Hirano ,  Takashi Aramaki ,  Shinkichi Ikeda ,  Takahisa Aoyama

IPC分类号： H04W4/00 ,  H04W12/06 ,  H04W36/00

CPC分类号： H04W12/06 ,  H04W36/0016

摘要： Disclosed is a technique to enable a session handover between devices with different key generation functions in an authentication protocol. According to the technique, when a session where a UE (200) receives contents from a contents server (700) is to be handed over to a target node (300), the UE firstly transfers information (session HO information) necessary to the session handover to the target node (Step S1001). The target node performs authentication processing with an authentication server (600) of the network to which the UE is connected and notifies the authentication server of the session HO information transferred from the UE (Step S1003). The authentication server performs authentication for the session handover based on the session HO information, and when the authentication succeeds, the session is handed over from the contents server to the target node, and the contents are distributed to the target node (Step S1005).

摘要翻译： 公开了一种能够在认证协议中具有不同密钥生成功能的设备之间进行会话切换的技术。 根据该技术，当UE（200）从内容服务器（700）接收内容的会话被切换到目标节点（300）时，UE首先传送会话所需的信息（会话HO信息） 切换到目标节点（步骤S1001）。 目标节点与UE所连接的网络的认证服务器（600）进行认证处理，向认证服务器通知从UE传送的会话HO信息（步骤S1003）。 认证服务器根据会话HO信息对会话切换进行认证，当认证成功时，会话从内容服务器切换到目标节点，并将内容分发给目标节点（步骤S1005）。

公开(公告)号：US20110211557A1

公开(公告)日：2011-09-01

申请号：US13061676

申请日：2009-09-01

申请人： Hong Cheng ,  Tien Ming Benjamin Koh ,  Pek Yew Tan ,  Takako Hori ,  Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

发明人： Hong Cheng ,  Tien Ming Benjamin Koh ,  Pek Yew Tan ,  Takako Hori ,  Shinkichi Ikeda ,  Jun Hirano ,  Takashi Aramaki

IPC分类号： H04W36/14

CPC分类号： H04W36/0055 ,  H04W36/26 ,  H04W80/045

摘要： Disclosed is a technique which provides a handover processing method and the like which enable a smooth handover without service interruption and allow a desired handover to be performed. The technique includes the steps of: generating by a mobile node 100 a message including certain information to prioritize a connection of the mobile node to a desired access network among multiple access networks; transmitting the generated message from the mobile node to a base station located in the desired access network or a base station located in a currently-connected access network; and rejecting by a connection managing apparatus 104 for managing connections of the mobile node a path switching request from a base station of an access network other than the desired access network, the rejection being made according to certain information acquired through a base station that receives the transmitted message.

摘要翻译： 公开了一种技术，其提供切换处理方法等，其能够在没有服务中断的情况下进行平滑切换，并且允许执行期望的切换。 该技术包括以下步骤：由移动节点100生成包括某些信息的消息，以将移动节点的连接优先于多个接入网络中的所需接入网络; 将所生成的消息从所述移动节点发送到位于期望接入网络中的基站或位于当前连接的接入网络中的基站; 并且由连接管理装置104拒绝来自用于管理移动节点的连接的路由切换请求的路由切换请求，所述路由切换请求来自除所述接入网络之外的接入网络的基站，所述拒绝是根据通过接收到所述接入网络的基站获取的某些信息进行的 传输的消息。