-
公开(公告)号:KR1020050034842A
公开(公告)日:2005-04-15
申请号:KR1020030070552
申请日:2003-10-10
Applicant: 한국전자통신연구원 , 삼성전자주식회사 , 주식회사 케이티 , 에스케이브로드밴드주식회사 , 주식회사 케이티프리텔 , 에스케이텔레콤 주식회사
IPC: H04L9/32
Abstract: 본 발명은 RADIUS 또는 다이아미터와 같은 서로 다른 인증 프로토콜을 사용하는 무선랜망 또는 휴대 인터넷망간이 적절하게 인증 처리를 수행하는 방법 및 이 방법을 수행할 수 있는 라우터를 제공한다.
본 발명에 따른 인증 처리 방법은, 방문망에 접속된 사용자의 이동단말로부터 인증을 요청하는 인증요청메시지를 수신하여 인증요청메시지의 유형이 핵심망에서 정의된 메시지의 유형과 동일한지 여부를 판단한다. 그 판단 결과, 동일하지 않는 경우, 인증요청메시지를 핵심망에서 처리될 수 있는 메시지로 변환하고, 이 변환된 메시지를 핵심망 내의 인증서버로 라우팅하고, 동일한 경우, 인증요청메시지를 기초로 사용자의 네트워크접근식별자를 분석하여 이동단말의 홈망을 확인하고 이 홈망의 인증서버가 수신할 수 있는 인증처리메시지를 생성하고, 인증처리메시지가 홈망의 인증서버로 전송되도록 라우팅한다.-
公开(公告)号:KR100470071B1
公开(公告)日:2005-02-05
申请号:KR1020020082872
申请日:2002-12-23
Applicant: 한국전자통신연구원
IPC: H04L12/46
Abstract: PURPOSE: An AAA(Authentication, Authorization and Accounting) server system having an integrated information management function in an interworking system between wireless LANs is provided to present and manage information elements required for an interworking system between wireless LANs. CONSTITUTION: An AAA server(200) comprises an MIP(Mobile IP) server control part, an NASREQ(Network Access Server Requirements) server control part(202), an information management part(203), a charging control part(204), an authentication part(205), a key management part(206), an inter-network protocol conversion part(207), a diameter protocol processing part(208), an address management part(209), an operation and management part(210), a UDP(220), an SCTP(230), and an IP(240). The MIP server control part(201) executes an MIP user session management function related to a mobile IP and a handoff processing function. The NASREQ server control part(202) executes a wireless LAN session management function for wireless LAN access users. The information management part(203) executes a user information management function, a system configuration information management function, a user address information management function, and a billing information storage function. The charging control part(204) executes a wireless LAN charging collection function and an MIP charging collection function. The authentication part(205) processes a user authentication function. The key management part(206) creates a session key necessary for authentication, and covers SA(Security Association) management. The inter-network protocol conversion part(207) executes interworking with an existing radius system. The diameter protocol processing part(208) processes a diameter message, and executes routing. The address management part(209) executes a user IP address allocation/release function, an HA(Home Agent) address allocation/release function, etc. The operation and management part(210) covers an SNMP-associated MIB(Management Information Base) contents and message processing function.
Abstract translation: 目的:提供在无线LAN之间的互通系统中具有集成信息管理功能的AAA(认证,授权和计费)服务器系统,以呈现和管理无线LAN之间的互配系统所需的信息元素。 本发明的AAA服务器(200)包括MIP(移动IP)服务器控制部分,NASREQ(网络访问服务器要求)服务器控制部分(202),信息管理部分(203),充电控制部分(204) (205),密钥管理部(206),网络间协议转换部(207),直径协议处理部(208),地址管理部(209),操作管理部(210 ),UDP(220),SCTP(230)和IP(240)。 MIP服务器控制部(201)执行与移动IP有关的MIP用户会话管理功能和越区切换处理功能。 NASREQ服务器控制部分(202)执行用于无线LAN接入用户的无线LAN会话管理功能。 信息管理部分(203)执行用户信息管理功能,系统配置信息管理功能,用户地址信息管理功能和记帐信息存储功能。 充电控制部(204)执行无线LAN充电收集功能和MIP收费收集功能。 认证部分(205)处理用户认证功能。 密钥管理部分(206)创建验证所需的会话密钥,并且覆盖SA(安全关联)管理。 网络间协议转换部分(207)执行与现有的半径系统的互配。 直径协议处理部分(208)处理直径消息,并执行路由。 地址管理部分209执行用户IP地址分配/释放功能,HA(本地代理)地址分配/释放功能等。操作和管理部分(210)覆盖SNMP相关的MIB(管理信息库) 内容和消息处理功能。
-
公开(公告)号:KR100438189B1
公开(公告)日:2004-07-02
申请号:KR1020000080597
申请日:2000-12-22
Applicant: 한국전자통신연구원
IPC: G06K19/07
Abstract: PURPOSE: A smart card is provided to improve performance such as a process speed using an auxiliary processor in order to execute byte code and support the execution. CONSTITUTION: A storing unit(301) stores programs and data. An encryption unit(303) performs encryption for protecting the programs and data. An input/output unit(370) transmits the data encrypted by the encryption unit(303) to the outside, and receives data from the outside. An auxiliary processor(310) performs a Java card byte code function. A CPU(302) controls an entire smart card system and performs a desired operation.
Abstract translation: 目的:提供智能卡以提高性能,例如使用辅助处理器执行处理速度以执行字节码并支持执行。 组成:存储单元(301)存储程序和数据。 加密单元(303)执行加密以保护程序和数据。 输入/输出单元(370)将由加密单元(303)加密的数据发送到外部,并从外部接收数据。 辅助处理器(310)执行Java卡字节码功能。 CPU(302)控制整个智能卡系统并执行期望的操作。
-
公开(公告)号:KR1020040026056A
公开(公告)日:2004-03-27
申请号:KR1020020056572
申请日:2002-09-17
Applicant: 한국전자통신연구원
IPC: H04L12/46
CPC classification number: H04W36/14 , H04L61/2592 , H04W36/0038 , H04W36/0055 , H04W84/12
Abstract: PURPOSE: A handoff method between DSs(Distribution Systems) in a wireless LAN is provided to transmit user information to a mobile AP by using an IAPP(Inter-Access Point Protocol) and a message of a mobile IP, thereby preventing a new authentication procedure and minimizing user data loss. CONSTITUTION: A mobile station performs a re-association process(301). A new AP transmits an access request message to a local RADIUS server(LR1)(302). The local RADIUS server(LR1) returns an access accept message to an AP(303). The AP performs a TCP connection setup with a received FA(Foreign Agent)(304). The new AP transmits a send-security-block packet(307), receives an acknowledgement-security-block packet(308), and transmits a move-notify message to the FA(309). A wideband RADIUS server returns an IP address and security information as an access accept message(311). The FA transmits a binding update message(312). If security relation information does not exist, the FA transmits an access request message(313), receives an access response message from the wideband RADIUS server(314), and transmits an access request message to the local RADIUS server(LR1)(315). The local RADIUS server(LR1) returns an access response message(316). If a TCP connection setup is not performed, a TCP connection setup is carried out between a previous AP and a previous FA(317). The previous FA transmits a send-security-block packet(320), and transmits a move-notify message to the previous AP(322). The new AP returns a re-association response message to the mobile station(326). A packet is transmitted to the new FA(329), and is reversely capsulated(330). The new FA reversely capsulates the received packet, and transmits the packet to the new AP(332).
Abstract translation: 目的:提供无线LAN中的DS(分发系统)之间的切换方法,通过使用IAPP(接入点间协议)和移动IP的消息将移动AP发送用户信息,从而防止新的认证过程 并最大限度地减少用户数据丢失。 构成:移动台执行重新关联处理(301)。 新的AP向本地RADIUS服务器(LR1)发送访问请求消息(302)。 本地RADIUS服务器(LR1)向AP返回访问接受消息(303)。 AP利用接收到的FA(Foreign Agent)(304)进行TCP连接建立。 新AP发送发送安全块分组(307),接收确认安全块分组(308),并向FA发送移动通知消息(309)。 宽带RADIUS服务器作为访问接受消息返回IP地址和安全信息(311)。 FA发送绑定更新消息(312)。 如果不存在安全关系信息,FA发送接入请求消息(313),从宽带RADIUS服务器(314)接收接入响应消息,并向本地RADIUS服务器(LR1)发送接入请求消息(315) 。 本地RADIUS服务器(LR1)返回访问响应消息(316)。 如果没有执行TCP连接设置,则在先前的AP和之前的FA(317)之间执行TCP连接建立。 先前的FA发送发送安全块分组(320),并向前一AP发送移动通知消息(322)。 新的AP向移动台返回重新关联响应消息(326)。 分组被发送到新的FA(329),并且被反向封装(330)。 新的FA反向封装接收的分组,并将分组发送到新的AP(332)。
-
公开(公告)号:KR1020020051115A
公开(公告)日:2002-06-28
申请号:KR1020000080597
申请日:2000-12-22
Applicant: 한국전자통신연구원
IPC: G06K19/07
Abstract: PURPOSE: A smart card is provided to improve performance such as a process speed using an auxiliary processor in order to execute byte code and support the execution. CONSTITUTION: A storing unit(301) stores programs and data. An encryption unit(303) performs encryption for protecting the programs and data. An input/output unit(370) transmits the data encrypted by the encryption unit(303) to the outside, and receives data from the outside. An auxiliary processor(310) performs a Java card byte code function. A CPU(302) controls an entire smart card system and performs a desired operation.
Abstract translation: 目的:提供智能卡以提高性能,例如使用辅助处理器的处理速度,以便执行字节码并支持执行。 构成:存储单元(301)存储程序和数据。 加密单元(303)执行用于保护程序和数据的加密。 输入/输出单元(370)将由加密单元(303)加密的数据发送到外部,并从外部接收数据。 辅助处理器(310)执行Java卡字节码功能。 CPU(302)控制整个智能卡系统并执行所需的操作。
-
Patent Agency Ranking
公开(公告)号:KR1020010009725A
公开(公告)日:2001-02-05
申请号:KR1019990028260
申请日:1999-07-13
Applicant: 한국전자통신연구원
IPC: H04L9/00
CPC classification number: H04L9/0625 , H04W12/02 , H04W12/06
Abstract: PURPOSE: A data encoding method is provided to encode data efficiently in view of stability such as a data security and a subscriber authentication, to carry out a high speed of operation, and to allow to apply in a radio communication environment. CONSTITUTION: In a data encoding method of a radio communication environment, messages are input, and the messages are divided into two and the divided messages are input to a left block and a right block respectively. A bit stream input to the right block is input to an F function and the left block of the next round. After a bit exclusive OR operation of the bit stream in which the F function is input to the bit stream of the right block and the bit stream input to the left block is carried out, the result values are input to the right block of the next round. After the above operations are carried out repeatedly by a described times, the result values are transposed and the finally encoded stream is output.
Abstract translation: 目的:提供一种数据编码方法,以便从诸如数据安全性和用户认证的稳定性的角度有效地编码数据,以执行高速操作,并允许在无线电通信环境中应用。 构成:在无线电通信环境的数据编码方法中,输入消息,并将消息分成两部分,分割的消息分别输入到左块和右块。 输入到右块的比特流被输入到F函数和下一轮的左块。 在将F功能输入到右块的比特流并输入到左块的比特流的比特流进行了异或运算之后,将结果值输入到下一个块的右侧块 回合。 在通过描述的时间重复执行上述操作之后,转换结果值并输出最终编码的流。
-
-
-
-
公开(公告)号:KR1020170136996A
公开(公告)日:2017-12-12
申请号:KR1020170067927
申请日:2017-05-31
Applicant: 한국전자통신연구원
Abstract: 특별서브프레임의 UpPTS의지속기간동안기지국으로상향링크신호를송신하는단계, 그리고상향링크송신이후에, 기지국으로부터하향링크신호를수신하기전까지보호시간동안대기하는단계를통해신호송수신을수행하는, 고속으로이동하는, 이동통신시스템의단말및 신호송수신방법이제공된다.
Abstract translation: 在特殊子帧的上行链路时段期间向基站发送上行链路信号的步骤以及在上行链路发送之后等待从基站接收下行链路信号的保护时间的步骤, 提供了移动通信系统的终端和信号发送/接收方法。
-
-
-
-
-
-
-
-
-
Search Results
274
records
(took 0.028 seconds)
