-
11.发明申请
公开(公告)号:WO2004112347B1
公开(公告)日:2005-06-16
申请号:PCT/SE2004000945
申请日:2004-06-15
Applicant: ERICSSON TELEFON AB L M , OYAMA JOHNSON , KATO RYOJI , RUNE JOHAN , LARSSON TONY
Inventor: OYAMA JOHNSON , KATO RYOJI , RUNE JOHAN , LARSSON TONY
CPC classification number: H04L63/08 , H04L63/0892 , H04L63/164 , H04W8/04 , H04W12/06 , H04W80/04 , H04W84/00
Abstract: A basic feature of the invention is to rely on an AAA infrastructure to "bootstrap" the HMIPv6 service for a mobile node (130) that "roams" in a visited network or the home network. In accordance with a preferred embodiment of the invention, bootstrapping the HMIPv6 service involves authenticating and authorizing the mobile node (130) for HMIPv6 service based on an AAA infrastructure. In an important scenario, the mobile node is roaming in a visited network, and the AAA infrastructure (110, 120, 122) links the visited network with the home network of the mobile node. The invention also supports the possibility of having the MAP (125) located in the home network or other network than the visited network. The reliance on the AAA infrastructure preferably involves transferring HMIPv6-related information required for authenticating and authorizing the mobile node for HMIPv6 service over the AAA infrastructure.
Abstract translation: 本发明的一个基本特征是依靠AAA基础设施来为在受访网络或家庭网络中“漫游”的移动节点(130)“引导”HMIPv6服务。 根据本发明的优选实施例,引导HMIPv6服务包括基于AAA基础设施来认证和授权用于HMIPv6服务的移动节点(130)。 在重要的情况下,移动节点在受访网络中漫游,并且AAA基础设施(110,120,122)将受访网络与移动节点的归属网络链接。 本发明还支持使MAP(125)位于家庭网络或其他网络中比被访问网络的可能性。 对AAA基础设施的依赖优选涉及传送HMIPv6相关信息,用于通过AAA基础设施认证和授权用于HMIPv6服务的移动节点所需的信息。
-
公开(公告)号:ES2304165T3
公开(公告)日:2008-09-16
申请号:ES04800396
申请日:2004-11-24
Applicant: ERICSSON TELEFON AB L M
Inventor: OYAMA JOHNSON , KATO RYOJI
IPC: H04L29/06 , H04L12/28 , H04L12/56 , H04W8/18 , H04W12/06 , H04W28/06 , H04W40/02 , H04W74/00 , H04W80/04 , H04W84/00 , H04W88/14
Abstract: Un método de control de acceso para una red móvil (15) gestionada por un enrutador móvil (10), en la que dicho enrutador móvil está interconectado, a través de un enlace bidireccional (40), con un agente (20) de anclaje de movilidad que bloquea la movilidad de la red para el enrutador móvil, comprendiendo dicho método la operación de: ejercer el control de acceso en dicho enrutador móvil para filtrar paquetes ascendentes dirigidos a dicho agente de anclaje de movilidad, estando caracterizado el método adicionalmente por las siguientes operaciones: ejercer el control de acceso en el agente de anclaje de movilidad para filtrar paquetes descendentes dirigidos a dicho enrutador móvil; y transferir información de aprovisionamiento desde una fuente de control de acceso para acceder a un módulo de control de acceso en dicho agente de anclaje de movilidad y a un módulo de control de acceso en dicho enrutador móvil.
-
公开(公告)号:BRPI0722012A2
公开(公告)日:2014-03-18
申请号:BRPI0722012
申请日:2007-09-20
Applicant: ERICSSON TELEFON AB L M
Inventor: SUGIMOTO SHINTA , ODA TOSHIKANE , KATO RYOJI
Abstract: A Gateway node for use in a Proxy Mobile IP network. The Gateway node is provided with a receiver for receiving a registration request sent from an Authentication, Authorization and Accounting server in a visited network. The request comprises an identifier of a home network or a Mobile Node. The receiver is also arranged to receive a binding update message sent from a Proxy Mobile Agent in the visited network, the binding update message comprising an identifier of the home network or Mobile Node. A processor is also provided for associating the registration request with the binding update message using the identifier of the home network or Mobile Node.
-
公开(公告)号:GB2429381B
公开(公告)日:2007-11-14
申请号:GB0617265
申请日:2004-12-10
Applicant: ERICSSON TELEFON AB L M
Inventor: OYAMA JOHNSON , KATO RYOJI
Abstract: A basic idea is to use the AAA infrastructure to assign (S3) an appropriate DHCP server to DHCP client for the DHCP service, and transferring DHCP-related information over the AAA infrastructure for authenticating (S1) and authorizing (S4) the DHCP client for DHCP service with the assigned DHCP server. Instead of the more complex DHCP server discovery process known from the prior art, the AAA infrastructure, and more particularly a suitable AAA server or equivalent AAA component, is used for assigning an appropriate DHCP server to the DHCP client. Consequently, there is no longer any mandatory dependency on the DHCP discovery-related messages. The invention preferably provides AAA protocol support for facilitating assignment of appropriate DHCP servers and providing an out-of-band key agreement protocol for DHCP clients and servers by carrying DHCP related information facilitating the bootstrapping of DHCP authentication extension (RFC3118).
-
公开(公告)号:CA2696988C
公开(公告)日:2016-05-10
申请号:CA2696988
申请日:2007-08-20
Applicant: ERICSSON TELEFON AB L M
Inventor: SUGIMOTO SHINTA , KATO RYOJI , ODA TOSHIKANE
Abstract: There is provided a Local Breakout Gateway node for use in a hierarchical mobile network. The node comprises a database, which stores a plurality of Local Breakout Policy rules. The node further comprises a receiver for receiving an IP packet from a Mobile Node attached to the network at which the node is located, the network being a visited network for the Mobile Node. The node further comprises means for selecting a Local Breakout Policy from the plurality of Local Breakout Policy rules, and means to apply the selected Local Breakout Policy to the received IP packet. The node further comprises a Network Address translation function to apply a Network Address Translation to the received IP packet, and a transmitter for sending the IP packet to a destination according to the applied Local Breakout Policy.
-
Patent Agency Ranking
公开(公告)号:GB2429381A
公开(公告)日:2007-02-21
申请号:GB0617265
申请日:2004-12-10
Applicant: ERICSSON TELEFON AB L M
Inventor: OYAMA JOHNSON , KATO RYOJI
Abstract: A basic idea is to use the AAA infrastructure to assign (S3) an appropriate DHCP server to DHCP client for the DHCP service, and transferring DHCP-related information over the AAA infrastructure for authenticating (S1) and authorizing (S4) the DHCP client for DHCP service with the assigned DHCP server. Instead of the more complex DHCP server discovery process known from the prior art, the AAA infrastructure, and more particularly a suitable AAA server or equivalent AAA component, is used for assigning an appropriate DHCP server to the DHCP client. Consequently, there is no longer any mandatory dependency on the DHCP discovery-related messages. The invention preferably provides AAA protocol support for facilitating assignment of appropriate DHCP servers and providing an out-of-band key agreement protocol for DHCP clients and servers by carrying DHCP related informaion facilitating the bootstrapping of DHCP authentication extension (RFC3118).
-
公开(公告)号:CA2528787A1
公开(公告)日:2004-12-23
申请号:CA2528787
申请日:2004-06-15
Applicant: ERICSSON TELEFON AB L M
Inventor: OYAMA JOHNSON , RUNE JOHAN , KATO RYOJI , LARSSON TONY
Abstract: For establishing a MIPv6 security association between the mobile node (10) roaming in a foreign network (20) and a home agent (36) and for simplifying MIPv6-related configuration, MIPv6-related information is transferred in an end-to-end procedure over an AAA infrastructure by means of an, preferably extended, authentication protocol. A preferred embodiment uses EAP as basis for the extended authentication protocol, creating EAP extensions by incorporating the MIPv6-related information as additional data in the EAP protocol stack, for example as EAP attributes in the EAP method layer of the EAP protocol stack or transferred in a generic container attribute on the EA P layer or the EAP method layer. A major advantage of the proposed MIPv6 authentication/authorization mechanism lies in the fact that it is transpare nt to the visited domain (20), allowing AAA client (22) and AAAv (24) to act as mere pass-through agents during the procedure.
-
公开(公告)号:AT493828T
公开(公告)日:2011-01-15
申请号:AT07802716
申请日:2007-08-20
Applicant: ERICSSON TELEFON AB L M
Inventor: SUGIMOTO SHINTA , KATO RYOJI , ODA TOSHIKANE
IPC: H04L29/06
-
公开(公告)号:AU2007359104A1
公开(公告)日:2009-03-26
申请号:AU2007359104
申请日:2007-09-20
Applicant: ERICSSON TELEFON AB L M
Inventor: SUGIMOTO SHINTA , ODA TOSHIKANE , KATO RYOJI
Abstract: A Gateway node for use in a Proxy Mobile IP network. The Gateway node is provided with a receiver for receiving a registration request sent from an Authentication, Authorization and Accounting server in a visited network. The request comprises an identifier of a home network or a Mobile Node. The receiver is also arranged to receive a binding update message sent from a Proxy Mobile Agent in the visited network, the binding update message comprising an identifier of the home network or Mobile Node. A processor is also provided for associating the registration request with the binding update message using the identifier of the home network or Mobile Node.
-
公开(公告)号:DE602004013377D1
公开(公告)日:2008-06-05
申请号:DE602004013377
申请日:2004-11-24
Applicant: ERICSSON TELEFON AB L M
Inventor: OYAMA JOHNSON , KATO RYOJI
IPC: H04L29/06 , H04L12/28 , H04L12/56 , H04W8/18 , H04W12/06 , H04W28/06 , H04W40/02 , H04W74/00 , H04W80/04 , H04W84/00 , H04W88/14
Abstract: The invention relates to access control for a movable network (15) managed by a mobile router (10), wherein said mobile route is interconnected through a bi-directional link (40) with a mobility anchoring agent (20) that anchors the network mobility for the mobile router. According to the invention, access control enforcement points (11, 21) are located at both the mobile router (10) and the mobility anchoring agent (20). Access control is exercised at the mobility agent (20) to filter downlink packets to the mobile router (10) and access control is exercised at the mobile router (10) to filter uplink packets to the mobility anchoring agent (20). In this way, unauthorized packets, both uplink and downlink, do not have to cross the air interface before being filtered away, thereby preventing waste of valuable radio resources. The access control modules are typically provisioned with access control filter information, preferably by means of a hierarchical provisioning structure.
-
-
-
-
-
-
-
-
-
Search Results
27
records
(took 0.026 seconds)
