-
公开(公告)号:US20100208706A1
公开(公告)日:2010-08-19
申请号:US12676847
申请日:2008-09-19
IPC分类号: H04W36/00
CPC分类号: H04W60/005 , H04W36/0027 , H04W36/0033 , H04W76/20 , H04W80/04
摘要: Disclosed is a technique of, in a network conducting network based local mobility management, suppressing generation of signaling and an increase of processing load on a network entity and preventing a delay. According to this technique, a mobile node (MN 130) receives specific information (a token) including an interface identifier and a binding identifier, for example, from a network side (MAG 120) when connecting therewith first. When the mobile node conducts a handover, the mobile node notifies a next connecting MAG 122 of the token. The MAG receiving the token can judge based on this token whether the connection by the mobile node is due to a handover changing a connection point for a certain interface or due to a new connection using a different interface without making an inquiry to other network nodes.
摘要翻译: 本发明公开了一种在进行基于网络的本地移动性管理的网络中抑制信令的产生和网络实体上的处理负荷的增加并防止延迟的技术。 根据该技术,移动节点(MN 130)首先从网络侧(MAG 120)接收包括接口标识符和绑定标识符的特定信息(令牌)。 当移动节点进行切换时,移动节点通知令牌的下一个连接MAG 122。 接收令牌的MAG可以基于该令牌判断移动节点的连接是否由于切换改变特定接口的连接点,或者由于使用不同接口的新连接而不对其他网络节点进行查询。
-
公开(公告)号:US20100046419A1
公开(公告)日:2010-02-25
申请号:US12595231
申请日:2008-04-09
申请人: Jun Hirano , Chan Wah Ng , Mohana Dhamayanthi Jeyatharan , Tien Ming Benjamin Koh , Pek Yew Tan
发明人: Jun Hirano , Chan Wah Ng , Mohana Dhamayanthi Jeyatharan , Tien Ming Benjamin Koh , Pek Yew Tan
CPC分类号: H04W8/082 , H04W40/248 , H04W80/04 , H04W84/005
摘要: A technique is disclosed, by which generation of redundant signaling caused by processing to establish route optimization can be suppressed. According to this technique, an overlay network is formed on a network, and an overlay network service of home agent is provided by a pHA (proxy home agent) 124. An MR (mobile router) 130 and a VMN (visiting mobile node) 140 connected to the mobile network are both subscribed in the overlay network service. In this case, when MR is going to perform optimization processing of a route to a home agent of VMN, pHA transmits change-HA messages 216 and 218 to notify VMN to change the home agent to the home agent of MR. When VMN changes the home agent to the home agent of MR, MR recognizes that processing of route optimization to the home agent of VMN is not needed.
摘要翻译: 公开了一种技术,可以抑制由建立路由优化的处理引起的冗余信令的生成。 根据该技术,在网络上形成覆盖网络,并且通过pHA(代理归属代理)124提供归属代理的覆盖网络服务.MR(移动路由器)130和VMN(访问移动节点)140 连接到移动网络都在覆盖网络服务中被订阅。 在这种情况下,当MR要执行到VMN的归属代理的路由的优化处理时,pHA发送改变HA消息216和218以通知VMN将归属代理更改为MR的归属代理。 当VMN将归属代理更改为MR的归属代理时,MR认识到不需要对VMN的归属代理进行路由优化处理。
-
13.发明申请公开(公告)号:US20100014464A1
公开(公告)日:2010-01-21
申请号:US12521291
申请日:2007-12-19
IPC分类号: H04W8/00
CPC分类号: H04W8/065 , H04W40/36 , H04W60/00 , H04W80/04 , H04W88/182
摘要: The present invention provides a technique to prevent the generation of a large number of binding update messages in an overlay network when a mobile node changes connection points. According to this technique, in a communication system where a home agent HA 1210 for holding BCE (Binding Cache Entry) of a mobile node MN 1220 and a plurality of proxy home agents pHA 1212, pHA 1214 and pHA 1216 each capable to operate as a proxy of HA 1210 are overlaid on a global communication network 1200, and BCE of MN 1220 held by HA 1210 is delegated to pHA 1214 where MN 1220 is connected. Further, when MN 1220 is re-connected to pHA 1216 of move destination different from pHA 114 of move source, BCE of MN 1220 delegated to pHA 1214 of move source is re-delegated to pHA 1216 of move destination.
摘要翻译: 本发明提供了一种当移动节点改变连接点时防止在覆盖网络中产生大量绑定更新消息的技术。 根据该技术,在用于保持移动节点MN 1220的BCE(绑定缓存输入)和多个代理归属代理PHA 1212,pHA 1214和pHA 1216的归属代理HA 1210的通信系统中,每个能够作为 HA 1210的代理覆盖在全局通信网络1200上,并且由HA 1210保持的MN 1220的BCE被委派到pHA 1214,其中MN 1220被连接。 此外,当MN 1220重新连接到不同于移动源的pHA 114的移动目的地的pHA 1216时,委托给移动源的pHA 1214的MN 1220的BCE被重新委托到移动目的地的pHA 1216。
-
公开(公告)号:US20100002668A1
公开(公告)日:2010-01-07
申请号:US12559468
申请日:2009-09-14
申请人: Pek-Yew Tan , Hong Cheng , Chee Bing Tan
发明人: Pek-Yew Tan , Hong Cheng , Chee Bing Tan
IPC分类号: H04W72/00
CPC分类号: H04W8/26 , H04L12/4633 , H04L29/12311 , H04L61/2038 , H04L61/2084 , H04L63/0428 , H04W8/183 , H04W12/02 , H04W12/06 , H04W12/08 , H04W72/04 , H04W74/00 , H04W76/12 , H04W84/12
摘要: The present invention provides a solution to the mobile terminal address management in the WLAN inter-working. By using the access control framework, the mobile terminal could obtain the address, and setup the tunnel together with the granting of service access. The management process would be shielded by the inherent encryption and protection of the access control process, and thus does not need extra security setup procedures to be performed. The invention also provides a method for the terminal to obtain address that binds to the session, using a fine grain service authorization procedure. The terminal could maintain multiple addresses when accessing multiple parallel sessions. The address management is also integrated with the policy control mechanisms. The policy control would provide means for the terminal and its home network to configure the WLAN when necessary after an address alternation. QoS, or tunnelling information would be modified and provisioned according to the new status using channels available in the existing policy control procedures. By this, a smooth address transition in the roaming time could be achieved, and QoS interruption could be minimized.
摘要翻译: 本发明提供了WLAN互通中移动终端地址管理的解决方案。 通过使用访问控制框架,移动终端可以获得地址,并设置隧道以及授予服务访问权限。 管理过程将被访问控制过程的固有加密和保护屏蔽,因此不需要执行额外的安全设置过程。 本发明还提供了一种使用细粒度服务授权过程来终端获取绑定到会话的地址的方法。 当访问多个并行会话时,终端可以维护多个地址。 地址管理也与政策控制机制相结合。 策略控制将为终端及其归属网络在地址交替之后必要时配置WLAN提供手段。 QoS或隧道信息将使用现有策略控制过程中可用的信道根据新状态进行修改和配置。 由此可以实现漫游时间的平滑地址转换,可以最大限度地减少QoS中断。
-
公开(公告)号:US20090319774A1
公开(公告)日:2009-12-24
申请号:US12542487
申请日:2009-08-17
申请人: Pek Yew TAN , Hong CHENG , Toyoki UE
发明人: Pek Yew TAN , Hong CHENG , Toyoki UE
CPC分类号: H04W12/06 , H04L9/0825 , H04L9/0891 , H04L9/3273 , H04L63/0414 , H04L63/0428 , H04L2209/80 , H04W12/02 , H04W84/12
摘要: By introducing a hierarchical encryption scheme and the use of asymmetric cryptography, the critical information in message exchanges is concealed from unauthorized entities. This helps greatly in preventing man-in-the-middle attacks faced by inter-working. In addition, access control is conducted by introducing a network structure having a rule interpreter that is capable of mapping general rules to WLAN specific commands. It obviates the needs for mobile user's home network to understand information about every WLAN it is inter-worked with. A common interface independent of WLAN technologies could be used by the home network for all the WLANs. The above conception provides a solution to the problems of the protection of user identification information and access control in the inter-working of WLAN.
摘要翻译: 通过引入分层加密方案和使用非对称密码术,消息交换中的关键信息被隐藏来自未经授权的实体。 这大大有助于防止互相间工作中遇到的中间人的中间人的攻击。 此外,通过引入具有能够将通用规则映射到WLAN特定命令的规则解释器的网络结构来进行访问控制。 它消除了移动用户家庭网络需要了解每个与其互动的WLAN的信息。 无线WLAN技术的通用接口可以由家庭网络用于所有的WLAN。 以上概念提供了在WLAN互操作中保护用户识别信息和访问控制问题的解决方案。
-
公开(公告)号:US20090300357A1
公开(公告)日:2009-12-03
申请号:US12159892
申请日:2007-01-31
CPC分类号: H04L41/042 , H04L41/28 , H04L63/08 , H04L63/102 , H04W8/26 , H04W12/08 , H04W74/00
摘要: A method for accessing a Personal Network (PN) from a Guest device. In this method, the Guest device (18) receives a service key from a Master device (16) of the Personal Network (15) to which the Guest device wishes to access. The Guest device (18) then sends the Device ID of the Master device (16) to a Proxy (12) The Proxy (12) associates a route for accessing the Master device (16) from the Guest device (18) based on the Device ID of the Master device (16) and the Device ID of the Guest device (18), and sends an acknowledgement to the Guest device (13). The Proxy (12) may use its Proxy data to further filter requests based on pre-registration status of requesting Guest Devices (18). If already pre-registered, the Proxy (12) routes the PN request of the Guest Device (18) to the Personal Network Management (11). The Personal Network Management (11) verifies the service key to authenticate the Guest device (18).
摘要翻译: 一种从Guest设备访问个人网络(PN)的方法。 在该方法中,访客设备(18)从客户设备希望访问的个人网络(15)的主设备(16)接收服务密钥。 客户设备(18)然后将主设备(16)的设备ID发送到代理(12)。代理(12)基于客户设备(18)将来自客户设备(18)的访问主设备(16)的路由相关联 主设备(16)的设备ID和来宾设备(18)的设备ID,并将确认发送给访客设备(13)。 代理(12)可以使用其代理数据来基于请求访客设备(18)的预注册状态进一步过滤请求。 如果已经预先注册,则代理(12)将访客设备(18)的PN请求路由到个人网络管理(11)。 个人网络管理(11)验证服务密钥来验证访客设备(18)。
-
公开(公告)号:US20090238080A1
公开(公告)日:2009-09-24
申请号:US12090972
申请日:2006-10-30
IPC分类号: H04L12/26
CPC分类号: H04L12/4633 , H04L45/00 , H04L45/18
摘要: Disclosed is a technique whereby a tunnel entry point, which encapsulates a packet (generates a tunnel packet), can detect the presence of a tunneling loop causing a packet to loop the same path while encapsulated. According to this technique, upon receipt of a packet from a source node (source) 1100, TEP (tunnel entry point) 1120 inserts it into a tunnel packet header for encapsulation. Upon receipt of tunnel packets from TEP 1120 and TEP 1140, each of TEP 1140 and TEP 1160 copies the identifier of the original tunnel packet header to a new tunnel packet header for encapsulation. When this tunnel packet returns to TEP 1120 due to a tunneling loop, the tunneling loop is detected by referring to the identifier in the received tunnel packet.
摘要翻译: 公开了一种技术,其中封装分组(生成隧道分组)的隧道入口点可以检测出存在引导分组在封装时循环相同路径的隧道循环。 根据该技术,当从源节点(源)1100接收到分组时,TEP(隧道入口点)1120将其插入隧道分组报头以进行封装。 在接收到来自TEP 1120和TEP 1140的隧道分组时,TEP 1140和TEP 1160中的每一个将原始隧道分组报头的标识符复制到新的隧道分组报头以进行封装。 当该隧道报文由于隧道循环而返回给TEP 1120时,通过参考接收到的隧道报文中的标识符来检测隧道环路。
-
公开(公告)号:US20080259848A1
公开(公告)日:2008-10-23
申请号:US11817643
申请日:2006-03-03
申请人: Keigo Aso , Jun Hirano , Tien-Ming Benjamin Koh , Chan Wah Ng , Pek Yew Tan
发明人: Keigo Aso , Jun Hirano , Tien-Ming Benjamin Koh , Chan Wah Ng , Pek Yew Tan
IPC分类号: H04Q7/00
CPC分类号: H04L29/12311 , H04L29/12952 , H04L61/2084 , H04L61/6077 , H04W8/10 , H04W80/04
摘要: A technique is disclosed whereby, in the case of wherein a communication node includes both a mobility management function and a multihoming function, based on a condition that occurs due to moving, an appropriate address can be selected from multiple addresses in a multihomed state. According to the technique, a mobility condition determination unit 126, provided in an MIP controller 120 that manages moving of a communication node, obtains and examines various conditions that has occurred as a communication node is moving, selects an appropriate HoA (e.g., the home address of an MN1) for the current connection situation, and transmits, to a multihoming controller 130, a notification indicating that a set of the selected HoA and a CoA is appropriate addresses to be used. Upon receiving the notification from the mobility condition determination unit, the multihoming controller transmits, to the MIP controller, an address (Addr2) consonant with the received HoA, and the MIP controller performs packet communication using the HoA or the CoA consonant with the address.
摘要翻译: 公开了一种技术,其中,在通信节点同时包括移动性管理功能和多重归属功能的情况下,基于由于移动而发生的状况,可以从多宿主状态中的多个地址中选择适当的地址。 根据该技术,设置在管理移动通信节点的MIP控制器120中的移动性条件确定单元126获取并检查通信节点正在移动时已经发生的各种状况,选择适当的HoA(例如,家庭 MN1的地址),并且向多重控制器130发送指示所选HoA和CoA的集合是要被使用的适当地址的通知。 在从移动性条件确定单元接收到通知的情况下,多宿主控制器向MIP控制器发送与所接收的HoA协调的地址(Addr2),并且MIP控制器使用HoA或与该地址的CoA辅音进行分组通信。
-
19.发明申请Communication Method, Communication Message Processing Method, Program For Executing These Methods On Computer 有权通信方法,通信消息处理方法,计算机上执行这些方法的程序公开(公告)号:US20080186925A1
公开(公告)日:2008-08-07
申请号:US11577178
申请日:2005-10-17
申请人: Hong Cheng , Pek Yew Tan , Takako Hori , Toyoki Ue
发明人: Hong Cheng , Pek Yew Tan , Takako Hori , Toyoki Ue
IPC分类号: H04Q7/24
CPC分类号: H04L45/302 , H04W80/04
摘要: A technique for flexibly performing processes depending on the type of a path for providing an additional service when there are a plurality of paths for providing additional services for the same session between terminals communicating with each other over a network is disclosed. According to the technique, when a mobile terminal (MN 100) establishes a QoS path using NSIS to a corresponding node (CN 124) on different types of data communication paths, a signaling message including information (MIE) representing the path type is created and transmitted. Each node (QNE) with an NSIS QoS function, which has received the message, identifies a plurality of QoS paths by comparing the MIE, a session identifier and a flow identifier, and performs processing of the QoS paths according to control information (CI) from MNs or/and the policy which the QNE has.
摘要翻译: 公开了一种用于在存在用于通过网络彼此通信的终端之间的相同会话提供附加服务的多个路径时根据用于提供附加服务的路径的类型灵活地执行处理的技术。 根据该技术,当移动终端(MN 100)在不同类型的数据通信路径上向对应节点(CN 124)建立使用NSIS的QoS路径时,创建包括表示路径类型的信息(MIE)的信令消息, 传输。 已经接收到消息的具有NSIS QoS功能的每个节点(QNE)通过比较MIE,会话标识符和流标识符来识别多个QoS路径,并且根据控制信息(CI)执行QoS路径的处理, 来自MNs或/和QNE的策略。
-
公开(公告)号:US20080141343A1
公开(公告)日:2008-06-12
申请号:US11840072
申请日:2007-08-16
IPC分类号: G06F15/16
CPC分类号: H04L63/101
摘要: A system of access control in a data communication network comprising of a privacy unaware Guest Device, a privacy unaware Slave device, a PN Server and a Master Device wherein the access of a privacy unaware Slave device by a privacy unaware Guest Device is restricted by a PN Server, which intercepts all session initiations concerned with the Slave Device. A method of access control of the system comprises the steps of Access request by Guest Device privacy mode processing by PN Server privacy decision processing by Master Device; and privacy response processing by PN Server.
摘要翻译: 一种数据通信网络中的访问控制系统,包括隐私不知道的Guest设备,隐私不知道的从设备,PN服务器和主设备,其中隐私不知道的客户设备对隐私不知道的从设备的访问受到 PN服务器拦截与从设备相关的所有会话启动。 系统的访问控制方法包括由主设备通过PN服务器隐私决策处理由Guest Device隐私模式处理的访问请求步骤; 和PN服务器的隐私响应处理。
-
-
-
-
-
-
-
-
-
搜索结果
160 条记录 (耗时 0.042 秒)
