专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2012173627A1 DYNAMIC TRAFFIC OFFLOADING 审中-公开
标题翻译：动态交通运输
公开(公告)号：WO2012173627A1
公开(公告)日：2012-12-20
申请号：PCT/US2011/040659
申请日：2011-06-16
申请人： NOKIA SIEMENS NETWORKS OY , YE, Yinghua , NARAYANAN, Ram Gopal, Lakshmi
发明人： YE, Yinghua , NARAYANAN, Ram Gopal, Lakshmi
IPC分类号： G01R31/08
CPC分类号： H04W28/0247 , H04L12/5692 , H04L47/11 , H04L47/122 , H04W24/00
摘要： Data services may be enhanced by mitigating the need for unplanned core network capacity expansion or network element upgrades and reconfiguration, by offloading data to an alternative network, such as Exchange Point (IΧΡ) or other operator network. A method can include monitoring a status of a transit network. The method can also include offloading traffic to the transit network from a transport network when a predetermined condition is met. The predetermined condition includes the status of the transit network indicating that the transit network is operational.
摘要翻译：通过将数据卸载到诸如Exchange Point（I ??）或其他运营商网络的替代网络，可以减轻对计划外的核心网络容量扩展或网元升级和重新配置的需求来增强数据服务。一种方法可以包括监视运输网络的状态。该方法还可以包括在满足预定条件时从传输网络卸载到转接网络的业务。预定条件包括运输网络的状态，指示运输网络运行。

2. 发明申请

WO2005004436A1 SYSTEMS AND METHODS FOR A SECURITY GATEWAY 审中-公开
标题翻译：安全网关的系统和方法
公开(公告)号：WO2005004436A1
公开(公告)日：2005-01-13
申请号：PCT/US2004/020495
申请日：2004-06-25
申请人： NOKIA CORPORATION , NARAYANAN, Ram, Gopal, Lakshmi
发明人： NARAYANAN, Ram, Gopal, Lakshmi
IPC分类号： H04L29/06
CPC分类号： H04L63/06 , H04L63/102 , H04L63/164
摘要： A system, method, security gateway and computer program product are provided for creating and maintaining a centralized key store. The system includes a first security gateway and a second security gateway. The first security gateway is capable of applying a security service associated with an application instance identifier to at least one packet of data to thereby transform the at least one packet of data. In this regard, the first security gateway can apply the security service to the packet based upon at least one security policy and at least one security association. The second security gateway, in turn, is capable of applying the security service associated with the application instance identifier to the transformed packet of data to thereby generate a representation of the packet of data.
摘要翻译：提供了一种用于创建和维护集中式密钥存储的系统，方法，安全网关和计算机程序产品。该系统包括第一安全网关和第二安全网关。第一安全网关能够将与应用实例标识符相关联的安全服务应用于至少一个数据分组，从而变换至少一个数据分组。在这方面，第一安全网关可以基于至少一个安全策略和至少一个安全关联将安全服务应用于分组。第二安全网关又能够将与应用实例标识符相关联的安全服务应用于经变换的数据分组，从而生成数据分组的表示。

3. 发明申请

WO2004114627A1 APPARATUS AND METHOD FOR SECURITY MANAGEMENT IN WIRELESS IP NETWORKS 审中-公开
标题翻译：无线IP网络安全管理的设备和方法
公开(公告)号：WO2004114627A1
公开(公告)日：2004-12-29
申请号：PCT/IB2004/001571
申请日：2004-05-17
申请人： NOKIA CORPORATION , NARAYANAN, Ram Gopal Lakshmi
发明人： NARAYANAN, Ram Gopal Lakshmi
IPC分类号： H04L29/06
CPC分类号： H04W40/02 , H04L45/04 , H04L63/0218 , H04L63/101 , H04W12/02 , H04W12/08 , H04W40/36 , H04W80/00
摘要： According to one embodiment of the invention, a distributed routing device for routing subscriber traffic flow between at least two wireless access networks and an IP network is described. The distributed routing device includes at least one instance for executing a security function on the subscriber traffic flow, so that physically one security instance for subscribers of the at least two wireless access networks is present and logically each of the at least two wireless access networks has its own security instance.
摘要翻译：根据本发明的一个实施例，描述了用于在至少两个无线接入网络和IP网络之间路由用户业务流的分布式路由设备。分布式路由设备包括用于在订户业务流上执行安全功能的至少一个实例，使得对于至少两个无线接入网络的用户的物理一个安全实例是存在的，并且在逻辑上存在至少两个无线接入网络中的每一个具有自己的安全实例。

4. 发明申请

WO2014189521A1 AUTOMATIC CORRELATION AND PREVENTION OF IMPROPER USER PLANE TRAFFIC WIRELESS NETWORKS 审中-公开
标题翻译：用户平面交通无线网络的自动关联和防范
公开(公告)号：WO2014189521A1
公开(公告)日：2014-11-27
申请号：PCT/US2013/042616
申请日：2013-05-24
申请人： NOKIA SIEMENS NETWORKS OY , NARAYANAN, Ram, Gopal Lakshmi
发明人： NARAYANAN, Ram, Gopal Lakshmi
IPC分类号： H04W24/08
CPC分类号： H04L43/028 , H04L41/0893 , H04L63/1425 , H04L63/20 , H04M15/60 , H04M15/66 , H04M2207/187
摘要： Various communication systems may benefit from systems and methods for handling user plane traffic. For example, automatic correlation and prevention of improper user plane traffic may be beneficial to wireless communication systems. A method may include, for example, receiving a user plane packet corresponding to a first class of a plurality of traffic classes. The method may also include cross-correlating data in the user plane packet. The method may further include treating the user plane packet negatively when a negative result of cross-correlation is obtained.
摘要翻译：各种通信系统可能受益于用于处理用户平面业务的系统和方法。例如，自动相关和防止不正当的用户平面通信对于无线通信系统可能是有益的。方法可以包括例如接收对应于多个业务类别的第一类的用户平面分组。该方法还可以包括用户平面分组中的相互关联数据。该方法还可以包括当获得负相关的结果时，负面地处理用户平面分组。

5. 发明申请

WO2004114631A1 SYSTEM AND METHOD FOR DYNAMICALLY CREATING PINHOLES IN A FIREWALL OF A SIP-BASED 审中-公开
标题翻译：用于在基于SIP的防火墙中动态创建引导体的系统和方法
公开(公告)号：WO2004114631A1
公开(公告)日：2004-12-29
申请号：PCT/US2004/018078
申请日：2004-06-08
申请人： NOKIA CORPORATION , CHAN, Tat, Keung , NARAYANAN, Ram, Gopal, Lakshmi
发明人： CHAN, Tat, Keung , NARAYANAN, Ram, Gopal, Lakshmi
IPC分类号： H04L29/06
CPC分类号： H04L63/0218 , H04L29/06027 , H04L63/0263 , H04L63/0281 , H04L63/029 , H04L63/0428 , H04L65/1006
摘要： A communications system (10) and method for dynamically creating at least one pinhole in a firewall (22a, 22b) are provided. The communications system includes a protected node (12a, 12b)capable of initiating a communication session with an outside node. In this regard, the protected node (12a, 12b) is capable of receiving flow parameters regarding the communication session as the communication session is setup. The system also includes a firewall (22a, 22b) disposed along a communications path between the protected node and the outside node. The protected node is capable of sending at least a portion of the flow parameters to a firewall-controlled proxy (24a, 24b), which in turn, is capable of forwarding the portion of the flow parameters to the firewall. Thereafter, the firewall is capableof creating at least one pinhole based upon the portion of the flow parameters to thereby permit the transmission of information between the outside node and the protected node during the communication session.
摘要翻译：提供了一种在防火墙（22a，22b）中动态创建至少一个针孔的通信系统（10）和方法。通信系统包括能够发起与外部节点的通信会话的受保护节点（12a，12b）。在这方面，当建立通信会话时，受保护节点（12a，12b）能够接收关于通信会话的流量参数。该系统还包括沿着受保护节点和外部节点之间的通信路径设置的防火墙（22a，22b）。被保护节点能够将至少一部分流参数发送到防火墙控制的代理（24a，24b），其又能将流参数的一部分转发到防火墙。此后，防火墙能够基于流参数的一部分创建至少一个针孔，从而允许在通信会话期间在外部节点和受保护节点之间传输信息。

6. 发明申请

WO2004036335A2 METHOD AND APPARATUS FOR PROVIDING AUTOMATIC INGRESS FILTERING 审中-公开
标题翻译：提供自动生成过滤的方法和装置
公开(公告)号：WO2004036335A2
公开(公告)日：2004-04-29
申请号：PCT/IB0304582
申请日：2003-10-13
申请人： NOKIA CORP , NOKIA INC , NARAYANAN RAM GOPAL LAKSHMI
发明人： NARAYANAN RAM GOPAL LAKSHMI
IPC分类号： G06F20060101 , G06F15/173 , H04L12/28 , H04L29/06 , G06F
CPC分类号： H04L63/0236 , H04L45/742 , H04L63/1466
摘要： Disclosed is a method for routing data packets, as is a data packet router (10) that operates in accordance with the invention. The method includes establishing an ingress filter (20) in individual ones of a plurality of line cards (14) installed within a router and automatically maintaining a content of an ingress filter table (20A) of each ingress filter in each line card at least partially in accordance with data packets passing through individual ones of the line cards, where the content includes an identification of source addresses of hosts (16) coupled to the router. The method further compares a source address of an incoming packet to a line card to the content of the ingress filter table of that line card, and is thus enabled to detect the presence of an IP packet containing a spoofed IP host address. For a first occurrence of a packet having an IP source address that is not found in the ingress filter table, the packet is forwarded to a route processor (12) for analysis. The method further includes changing the content of the ingress filter table based on a result of the analysis to add the source address to the content of the ingress filter table, if the route processor has knowledge that the EP source address is associated with a valid host. At least some of the packets are Internet Protocol control packets, such as Routing Protocol Update packets, Dynamic Host Configuration Protocol packets, BootTP packets and Address Resolution Protocol packets. At least some of the hosts may be mobile hosts capable of connection and disconnection at different points in a subnet (22).
摘要翻译：公开了一种用于路由数据分组的方法，以及根据本发明操作的数据分组路由器（10）。该方法包括在安装在路由器内的多个线路卡（14）中的各个线路卡（14）中建立入口滤波器（20），并自动维护每条线路卡中的每个入口滤波器的入口滤波器表（20A）的内容，至少部分地根据通过单个线路卡的数据分组，其中内容包括耦合到路由器的主机（16）的源地址的标识。该方法进一步将输入分组的源地址与线路卡的入口过滤表的内容进行比较，从而能够检测到包含欺骗性IP主机地址的IP分组的存在。对于具有在入口过滤表中未找到的IP源地址的分组的第一次出现，将分组转发到路由处理器（12）以进行分析。该方法还包括：如果路由处理器知道EP源地址与有效主机相关联，则基于分析结果改变入口过滤表的内容以将源地址添加到入口过滤表的内容。至少一些数据包是互联网协议控制数据包，如路由协议更新数据包，动态主机配置协议数据包，BootTP数据包和地址解析协议数据包。至少一些主机可以是能够在子网（22）中的不同点处能够连接和断开连接的移动主机。

7. 发明申请

WO2006043143A3 TERMINAL, METHOD AND COMPUTER PROGRAM PRODUCT FOR VALIDATING A SOFTWARE APPLICATION 审中-公开
公开(公告)号：WO2006043143A3
公开(公告)日：2006-04-27
申请号：PCT/IB2005/003077
申请日：2005-10-14
申请人： NOKIA CORPORATION , KOTAMARTHI, Padmajabala , NARAYANAN, Ram, Gopal, Lakshmi
发明人： KOTAMARTHI, Padmajabala , NARAYANAN, Ram, Gopal, Lakshmi
IPC分类号： G06F9/50
摘要： A terminal for validating a software application includes a processor capable of operating an operating system (OS) platform (e.g., Symbian TM OS platform), and capable of operating at least one software application above the OS platform. The software application(s) are associated with a permission record that includes permissions identifying services the software application is authorized to receive from the OS platform. The OS platform is capable of receiving a request, from a software application, for a service of the OS platform. The OS platform can determine if the software application is authorized to receive the requested service based upon the associated permission record. And if the software application is authorized, the OS platform is capable of providing the requested service to the software application.

8. 发明申请

WO2004045133A1 KEY DISTRIBUTION ACROSS NETWORKS 审中-公开
标题翻译：关键分销网络
公开(公告)号：WO2004045133A1
公开(公告)日：2004-05-27
申请号：PCT/IB2003/004997
申请日：2003-11-05
申请人： NOKIA CORPORATION , NARAYANAN, Ram, Gopal, Lakshmi
发明人： NARAYANAN, Ram, Gopal, Lakshmi
IPC分类号： H04L9/00
CPC分类号： H04L9/0827 , H04L9/0825 , H04L63/045 , H04L63/06 , H04L63/0823
摘要： Systems and methods are provided for managing and distributing keys between routers (100) using protocol exchange messages between routers as key distribution vehicles. According to one embodiment of the invention, a router of an autonomous system uses its private key to send cryptographic information associated with another router to a peer router as part of its protocol exchange messages. The peer router is able to extract the cryptographic information and store it in a look-up table. Such protocol exchange messages may occur as part of an Interior Gateway Protocol or an Exterior Gateway Protocol. According to another embodiment of the invention, a chain authentication system is created as boundary routers of autonomous systems having a trust relationship share cryptographic information for other autonomous systems as part of protocol exchange messages for the exterior gateway protocol.
摘要翻译：提供了系统和方法，用于在路由器之间使用路由器之间的协议交换消息来管理和分发路由器（100）之间的密钥，作为关键配送车辆。根据本发明的一个实施例，自治系统的路由器使用其专用密钥将作为其协议交换消息的一部分的与另一路由器相关联的加密信息发送到对等路由器。对等路由器能够提取加密信息并将其存储在查找表中。这样的协议交换消息可以作为内部网关协议或外部网关协议的一部分而发生。根据本发明的另一个实施例，创建链认证系统作为具有信任关系的自治系统的边界路由器，该信任关系共享用于其他自主系统的密码信息作为用于外部网关协议的协议交换消息的一部分。

9. 发明申请

WO2004036335A3 METHOD AND APPARATUS FOR PROVIDING AUTOMATIC INGRESS FILTERING 审中-公开
公开(公告)号：WO2004036335A3
公开(公告)日：2004-04-29
申请号：PCT/IB2003/004582
申请日：2003-10-13
申请人： NOKIA CORPORATION , NOKIA, INC. , NARAYANAN, Ram, Gopal, Lakshmi
发明人： NARAYANAN, Ram, Gopal, Lakshmi
IPC分类号： G06F15/173
摘要： Disclosed is a method for routing data packets, as is a data packet router (10) that operates in accordance with the invention. The method includes establishing an ingress filter (20) in individual ones of a plurality of line cards (14) installed within a router and automatically maintaining a content of an ingress filter table (20A) of each ingress filter in each line card at least partially in accordance with data packets passing through individual ones of the line cards, where the content includes an identification of source addresses of hosts (16) coupled to the router. The method further compares a source address of an incoming packet to a line card to the content of the ingress filter table of that line card, and is thus enabled to detect the presence of an IP packet containing a spoofed IP host address. For a first occurrence of a packet having an IP source address that is not found in the ingress filter table, the packet is forwarded to a route processor (12) for analysis. The method further includes changing the content of the ingress filter table based on a result of the analysis to add the source address to the content of the ingress filter table, if the route processor has knowledge that the EP source address is associated with a valid host. At least some of the packets are Internet Protocol control packets, such as Routing Protocol Update packets, Dynamic Host Configuration Protocol packets, BootTP packets and Address Resolution Protocol packets. At least some of the hosts may be mobile hosts capable of connection and disconnection at different points in a subnet (22).

10. 发明申请

WO2006043143A2 TERMINAL, METHOD AND COMPUTER PROGRAM PRODUCT FOR VALIDATING A SOFTWARE APPLICATION 审中-公开
标题翻译：用于验证软件应用程序的终端，方法和计算机程序产品
公开(公告)号：WO2006043143A2
公开(公告)日：2006-04-27
申请号：PCT/IB2005003077
申请日：2005-10-14
申请人： NOKIA CORP , KOTAMARTHI PADMAJABALA , NARAYANAN RAM GOPAL LAKSHMI
发明人： KOTAMARTHI PADMAJABALA , NARAYANAN RAM GOPAL LAKSHMI
CPC分类号： G06F21/6281 , G06F21/52
摘要： A terminal for validating a software application includes a processor capable of operating an operating system (OS) platform (e.g., Symbian TM OS platform), and capable of operating at least one software application above the OS platform. The software application(s) are associated with a permission record that includes permissions identifying services the software application is authorized to receive from the OS platform. The OS platform is capable of receiving a request, from a software application, for a service of the OS platform. The OS platform can determine if the software application is authorized to receive the requested service based upon the associated permission record. And if the software application is authorized, the OS platform is capable of providing the requested service to the software application.
摘要翻译：用于验证软件应用的终端包括能够操作操作系统（OS）平台（例如，Symbian OS OS平台）并且能够操作OS平台之上的至少一个软件应用的处理器。软件应用程序与许可记录相关联，该许可记录包括识别软件应用程序被授权从OS平台接收的服务的许可。 OS平台能够从软件应用程序接收用于OS平台服务的请求。 OS平台可以基于相关的权限记录来确定软件应用程序是否被授权接收所请求的服务。如果软件应用程序被授权，则操作系统平台能够向软件应用程序提供所请求的服务。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式