公开(公告)号：WO2010052514A3

公开(公告)日：2010-07-01

申请号：PCT/IB2008002973

申请日：2008-11-05

Applicant: ERICSSON TELEFON AB L M ,  LINDHOLM FREDRIK ,  BLOM ROLF

Inventor： LINDHOLM FREDRIK ,  BLOM ROLF

IPC: H04W12/02 ,  H04L29/06 ,  H04W12/04

CPC classification number: H04W12/02 ,  H04L63/0435 ,  H04L63/062 ,  H04L63/0876 ,  H04L63/18 ,  H04L65/1016 ,  H04W12/04

Abstract: Aspects of the present invention provide a mechanism to utilize IMS media security mechanisms in a CS network and, thereby, provide end-to-end media security in the case where the media traffic travels across both a CS network and a PS network.

Abstract translation: 本发明的各方面提供了一种机制，用于在CS网络中利用IMS媒体安全机制，并由此在媒体业务跨CS网络和PS网络两者传播的情况下提供端到端媒体安全性。

公开(公告)号：WO2007062882A3

公开(公告)日：2007-12-13

申请号：PCT/EP2006064107

申请日：2006-07-11

Applicant: ERICSSON TELEFON AB L M ,  NORRMAN KARL ,  BLOM ROLF ,  LINDHOLM FREDRIK

Inventor： NORRMAN KARL ,  BLOM ROLF ,  LINDHOLM FREDRIK

IPC: H04W12/02 ,  H04W12/04

CPC classification number: H04W12/02 ,  H04L63/0272 ,  H04L63/062 ,  H04L63/08 ,  H04L63/164 ,  H04L65/1016 ,  H04W12/04

Abstract: A method of delivering an application key or keys to an application server for use in securing data exchanged between the application server and a user equipment, the user equipment accessing a communications network via an access domain. The method comprises running an Authentication and Key Agreement procedure between the user equipment and a home domain in order to make keying material available to the user equipment and to an access enforcement point. At least a part of said keying material is used to secure a communication tunnel between the user equipment and the access enforcement point, and one or more application keys are derived within the home domain using at least part of said keying material. Said application key(s) is(are) provided to said application server, and the same application key(s) derived at the user equipment, wherein said access enforcement point is unable to derive or have access to said application key(s).

Abstract translation: 一种向应用服务器传递一个或多个应用密钥以用于保护在应用服务器和用户设备之间交换的数据的方法，该用户设备经由接入域接入通信网络。 该方法包括在用户设备和归属域之间运行认证和密钥协商程序，以便使密钥材料对于用户设备和访问执行点可用。 所述密钥资料的至少一部分用于保护用户设备和接入强制执行点之间的通信隧道，并且使用所述密钥资料的至少一部分在本地域内导出一个或多个应用密钥。 所述应用密钥被提供给所述应用服务器，并且在用户设备处导出相同的应用密钥，其中所述接入实施点不能导出或访问所述应用密钥。

公开(公告)号：WO2009068985A3

公开(公告)日：2009-11-26

申请号：PCT/IB2008003288

申请日：2008-12-01

Applicant: ERICSSON TELEFON AB L M ,  BARRIGA LUIS ,  BLOM ROLF ,  CHENG YI ,  NÄSLUND MATS ,  NORRMAN KARL ,  LINDHOLM FREDRIK

Inventor： BARRIGA LUIS ,  BLOM ROLF ,  CHENG YI ,  NÄSLUND MATS ,  NORRMAN KARL ,  LINDHOLM FREDRIK

IPC: H04L29/06

CPC classification number: H04W76/02 ,  H04L63/0428 ,  H04L65/1016 ,  H04L65/1069 ,  H04W12/02 ,  H04W12/04

Abstract: An IMS system includes an IMS initiator user entity. The system includes an IMS responder user entity that is called by the initiator user entity. The system includes a calling side S-CSCF in communication with the caller entity which receives an INVITE having a first protection offer and parameters for key establishment from the caller entity, removes the first protection offer from the INVITE and forwards the INVITE without the first protection offer. The system includes a receiving end S-CSCF in communication with the responder user entity and the calling side S-CSCF which receives the INVITE without the first protection offer and checks that the responder user entity supports the protection, inserts a second protection offer into the INVITE and forwards the INVITE to the responder user entity, wherein the responder user entity accepts the INVITE including the second protection offer and answers with an acknowledgment having a first protection accept. A method for supporting a call by a telecommunications node.

Abstract translation: IMS系统包括IMS发起者用户实体。 该系统包括由发起者用户实体调用的IMS应答器用户实体。 该系统包括与主叫实体进行通信的主叫侧S-CSCF，其从呼叫方实体接收具有第一保护报价的INVITE和用于密钥建立的参数，从INVITE中移除第一保护报价并转发INVITE而没有第一保护 提供。 该系统包括与响应者用户实体通信的接收端S-CSCF，以及在没有第一保护提供的情况下接收INVITE的主叫侧S-CSCF，并检查响应者用户实体是否支持保护，将第二保护请求插入到 INVITE并将INVITE转发到响应者用户实体，其中响应者用户实体接受包括第二保护提议的INVITE和具有第一保护接受的确认的应答。 一种用于支持电信节点的呼叫的方法。

公开(公告)号：WO2009087186A8

公开(公告)日：2010-07-15

申请号：PCT/EP2009050157

申请日：2009-01-08

Applicant: ERICSSON TELEFON AB L M ,  LINDHOLM FREDRIK ,  KELLER RALF

Inventor： LINDHOLM FREDRIK ,  KELLER RALF

IPC: H04L29/06 ,  H04W36/00

CPC classification number: H04L65/1069 ,  H04L65/1016 ,  H04L65/1073 ,  H04L65/80 ,  H04W60/005 ,  H04W80/10

Abstract: A method of ensuring that a currently reachable contact address is registered for a user terminal within an IP Multimedia Subsystem, the method comprising registering a first contact address for said terminal with the IP Multimedia Subsystem, subsequently determining on a network side that said terminal is no longer reachable via said first contact address, and as a consequence of such a determination, registering on the network side a second reachable contact address on behalf of the user terminal, with the IP Multimedia Subsystem.

Abstract translation: 一种确保向IP多媒体子系统内的用户终端注册当前可达到的联系人地址的方法，所述方法包括：向IP多媒体子系统注册所述终端的第一联系人地址，随后在网络侧确定所述终端不是 通过所述第一联系人地址更长可达，并且作为这种确定的结果，在IP多媒体子系统上，在网络侧注册代表用户终端的第二可达到的联系人地址。

公开(公告)号：WO2011003943A3

公开(公告)日：2011-03-10

申请号：PCT/EP2010059738

申请日：2010-07-07

Applicant: ERICSSON TELEFON AB L M ,  KELLER RALF ,  HALLENSTAL MAGNUS ,  OLSSON MAGNUS ,  LINDHOLM FREDRIK

Inventor： KELLER RALF ,  HALLENSTAL MAGNUS ,  OLSSON MAGNUS ,  LINDHOLM FREDRIK

IPC: H04W36/00 ,  H04L29/06 ,  H04L29/12

CPC classification number: H04W36/0022 ,  H04L65/1016 ,  H04L65/1083 ,  H04W36/0011 ,  H04W80/10

Abstract: A method for improving session continuity for a terminal (204`) in a serving communication network (202`) distinct from a home communication network (200`) of the terminal (204`), wherein the serving communication network (202`) comprises a session transfer node (208`) for transferring sessions each comprising signaling data and media data from a first access network (210`) of the serving communication network (202`) to a second access network (212`) of the serving communication network (202`) comprises the following: Routing signaling data of a session of the terminal (204`) between the first access network (210`) and the home communication network (200`) via the session transfer node (208`) in the serving communication network (202`), receiving a session transfer request requesting the transfer of the session from the first access network (210`) to the second access network (212`) for the terminal (204`), and transferring the session from the first access network (210`) to the second access network (212`), and routing the signaling data of the session of the terminal (204`) between the second access network (210`) and the home communication network (200`) via the session transfer node (208`).

Abstract translation: 一种用于改善与终端（204'）的归属通信网络（200'）不同的服务通信网络（202'）中的终端（204'）的会话连续性的方法，其中服务通信网络（202'）包括 会话转移节点（208`），用于将每个包括来自服务通信网络（202`）的第一接入网络（210`）的信令数据和媒体数据的会话转移到服务通信网络（212`）的第二接入网络 （202'）包括：经由所述会话转移节点（208'）在所述第一接入网络（210`）和所述归属通信网络（200`）之间路由终端（204`）的会话的信令数据 服务通信网络（202'）;接收请求将会话从第一接入网络（210`）转移到用于终端（204`）的第二接入网络（212`）的会话转移请求;以及将会话从 第一个接入网（210'）到第二个接入网 接入网络（212'），并且经由会话转移节点（208'）在第二接入网络（210`）与归属通信网络（200`）之间路由终端（204`）的会话的信令数据。

公开(公告)号：WO2010114475A2

公开(公告)日：2010-10-07

申请号：PCT/SE2010050366

申请日：2010-03-31

Applicant: ERICSSON TELEFON AB L M ,  LEHTOVIRTA VESA ,  LINDHOLM FREDRIK

Inventor： LEHTOVIRTA VESA ,  LINDHOLM FREDRIK

IPC: H04L29/06

CPC classification number: H04L63/062 ,  H04L12/189 ,  H04L65/1016 ,  H04L65/4076 ,  H04W12/04 ,  H04W88/14

Abstract: A system, method, and nodes for managing shared security keys between a User Equipment, UE, an authentication node such as an SCF/NAF, and a service node such as a BM-SC or AS. The SCF/NAF allocates to each BM-SC, a different SCF/NAF identifier such as a fully qualified domain name, FQDN, from the FQDN space the SCF/NAF administers. The SCF/NAF then locally associates these allocated FQDNs with the connected BM-SCs and with different services. The network sends the correct FQDN to the UE in a service description for a desired service, and the UE is able to derive a security key using the FQDN. When the UE requests the desired service, the SCF/NAF is able to associate the service identifier with the correct FQDN and an associated BM-SC. The SCF/NAF uses the FQDN to obtain the security key from a bootstrapping server and sends it to the associated BM-SC.As a result, the UE and the associated BM-SC share a specific security key.

Abstract translation: 用于管理用户设备，UE，诸如SCF / NAF之类的认证节点与诸如BM-SC或AS之类的服务节点之间的共享安全密钥的系统，方法和节点。 SCF / NAF从SCF / NAF管理的FQDN空间向每个BM-SC分配不同的SCF / NAF标识符，例如完全合格的域名FQDN。 然后，SCF / NAF在本地将这些分配的FQDN与所连接的BM-SC和不同的服务相关联。 网络在用于期望服务的服务描述中向UE发送正确的FQDN，并且UE能够使用FQDN导出安全密钥。 当UE请求期望的服务时，SCF / NAF能够将服务标识符与正确的FQDN和相关联的BM-SC相关联。 SCF / NAF使用FQDN从自举服务器获得安全密钥并将其发送到相关联的BM-SC。结果，UE和相关联的BM-SC共享特定的安全密钥。

公开(公告)号：WO2008101838A2

公开(公告)日：2008-08-28

申请号：PCT/EP2008051676

申请日：2008-02-12

Applicant: ERICSSON TELEFON AB L M ,  VAN ELBURG HANS-ERIK ,  LINDHOLM FREDRIK ,  TIMMER PATRICK

Inventor： VAN ELBURG HANS-ERIK ,  LINDHOLM FREDRIK ,  TIMMER PATRICK

IPC: H04L29/06 ,  H04L29/12

CPC classification number: H04L67/306 ,  H04L65/1016 ,  H04L65/1073

Abstract: A method of facilitating access to services of an IP Multimedia Subsystem,by users groups that require alternative handling in relation to the standard handling of IP Multimedia Subsystemusers. Functioning instructions are added to the user group s subscription maintained in the IP Multimedia Subsystem, instructing nodes in the IP Multimedia Subsystemto adapt their standard functioning for this specific group of users. The instructionsin a subscription of a specific user group, providea node of the IP Multimedia Subsystemthat does no longer need to be specific for certain types of users,but has a standard way of operation,that is modified by instructions for dedicated operation for only that specific user group. In further aspect embodiments are disclosed providing improved solutions for known problems of IP Multimedia Subsystems making use of functioning instructions included in the subscription.

Abstract translation: 由IP多媒体子系统的标准处理需要替代处理的用户组促进对IP多媒体子系统的服务的访问的方法。 功能指令被添加到维护在IP多媒体子系统中的用户组订阅中，指示IP多媒体子系统中的节点适应该特定用户组的标准功能。 特定用户组的订阅中的指令提供IP多媒体子系统的节点不再需要对特定类型的用户是特定的，而是具有标准的操作方式，其被专门操作的指令修改为只有特定的用户组 用户组。 在另一方面，公开了一种使用包含在订阅中的功能指令的IP多媒体子系统的已知问题的改进解决方案。

公开(公告)号：WO2010034332A8

公开(公告)日：2010-08-19

申请号：PCT/EP2008008265

申请日：2008-09-29

Applicant: ERICSSON TELEFON AB L M ,  KELLER RALF ,  HEIDERMARK ALF ,  LINDHOLM FREDRIK

Inventor： KELLER RALF ,  HEIDERMARK ALF ,  LINDHOLM FREDRIK

IPC: H04W8/26 ,  H04L29/08

CPC classification number: H04L65/1016 ,  H04L65/1083 ,  H04W36/0022 ,  H04W76/021

Abstract: The invention relates to session control in an IMS domain of a communications network and more particularly to techniques for performing session transfer in an IMS control node (SCC AS) for controlling centralized services in an IMS domain. One embodiment of an SCC AS (200) may be adapted to store, for each of a plurality of ongoing communication sessions, a session information item (218) comprising a user identity (222) identifying a user device involved in the session and a first identifier (216) of the user device in a CS domain of the communications network, wherein the user identity is associated with multiple user devices and the first identifier comprises at least one of an MSISDN (216), an IMSI, and a GRUU.

Abstract translation: 本发明涉及通信网络的IMS域中的会话控制，更具体地涉及用于在IMS控制节点（SCC AS）中执行会话传输以控制IMS域中的集中式服务的技术。 SCC AS（200）的一个实施例可以适于为多个正在进行的通信会话中的每一个存储包括标识会话中涉及的用户设备的用户标识（222）的会话信息项（218）和第一 在通信网络的CS域中的用户设备的标识符（216），其中所述用户身份与多个用户设备相关联，并且所述第一标识符包括MSISDN（216），IMSI和GRUU中的至少一个。

公开(公告)号：WO2010055012A2

公开(公告)日：2010-05-20

申请号：PCT/EP2009064841

申请日：2009-11-09

Applicant: ERICSSON TELEFON AB L M ,  KELLER RALF ,  OLSSON MAGNUS ,  WANG JIAN ,  LINDHOLM FREDRIK

Inventor： KELLER RALF ,  OLSSON MAGNUS ,  WANG JIAN ,  LINDHOLM FREDRIK

IPC: H04W36/14

CPC classification number: H04W48/18 ,  H04L65/1016 ,  H04L65/1073 ,  H04W92/24

Abstract: A method of registering a subscriber in an IP Multimedia Subsystem (IMS) is provided, wherein the method is executed by a call control node (800), wherein the method comprises receiving (402) an access request of the subscriber for circuit switched accessing the IMS, the access request being received via an access, determining (404) an access type of the access, and sending (406) a registration request for circuit switched registering the subscriber in the IMS depending on the determined access type.

Abstract translation: 提供了一种在IP多媒体子系统（IMS）中注册用户的方法，其中所述方法由呼叫控制节点（800）执行，其中所述方法包括：接收（402）所述用户的接入请求，用于电路交换接入 IMS，通过接入接收访问请求，确定（404）访问的访问类型，以及根据确定的访问类型发送（406）电路交换注册用户在IMS中的注册请求。

公开(公告)号：WO2010004411A3

公开(公告)日：2010-03-25

申请号：PCT/IB2009006188

申请日：2009-07-07

Applicant: ERICSSON TELEFON AB L M ,  SCHNEYER SEAN KENDALL ,  LINDHOLM FREDRIK ,  HEIDERMARK ALF

Inventor： SCHNEYER SEAN KENDALL ,  LINDHOLM FREDRIK ,  HEIDERMARK ALF

IPC: H04L29/12 ,  H04L29/06

CPC classification number: H04W12/02 ,  H04L29/12594 ,  H04L29/12801 ,  H04L61/30 ,  H04L61/6004 ,  H04L65/1073 ,  H04L2463/061

Abstract: A method and apparatus for use in a communications network whereby an Instance Identifier (ID) is created to uniquely identify a device such as a mobile device or User Equipment (UE) in the communications network.

Abstract translation: 一种用于通信网络中的方法和设备，其中创建实例标识符（ID）以唯一地标识通信网络中的设备，例如移动设备或用户设备（UE）。