专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07174018B1 Security framework for an IP mobility system using variable-based security associations and broker redirection 有权
标题翻译：使用基于变量的安全关联和代理重定向的IP移动系统的安全框架
公开(公告)号：US07174018B1
公开(公告)日：2007-02-06
申请号：US09595551
申请日：2000-06-16
申请人： Basavaraj B. Patil , Raja P. Narayanan , Haseeb Akhtar , Emad A. Qaddoura
发明人： Basavaraj B. Patil , Raja P. Narayanan , Haseeb Akhtar , Emad A. Qaddoura
IPC分类号： H04K1/00 , H04L9/00
CPC分类号： H04L63/0442 , H04L63/02 , H04L63/0892 , H04L63/164 , H04L63/205 , H04W12/02 , H04W12/12 , H04W80/04
摘要： In an IP-based mobile communications system, the Mobile Node changes its point of attachment to the network while maintaining network connectivity. Security concerns arise in the mobile system because authorized users are subject to the following forms of attack: (1) session stealing where a hostile node hijacks session from mobile node by redirecting packets, (2) spoofing where the identity of an authorized user is utilized in an unauthorized manner to obtain access to the network, and (3) eavesdropping and stealing of data during session with authorized user. No separate secure network exists in the IP-based mobility communications system, and therefore, it is necessary to protect information transmitted in the mobile system from the above-identified security attacks.The present invention improves the security of communications in a IP mobile communications system by creating variable-based Security Associations between various nodes on the system, a Virtual Private Network supported by an Service Level Agreement between various foreign networks and a home network, and an SLA Broker to promote large-scale roaming among different SLAs supported by the SLA Broker or agreements with other SLA Brokers.
摘要翻译：在基于IP的移动通信系统中，移动节点在维护网络连接的同时改变其对网络的附着点。安全问题出现在移动系统中，因为授权用户受到以下形式的攻击：（1）会话窃取，敌对节点通过重定向报文来劫持来自移动节点的会话，（2）欺骗授权用户的身份被利用以未授权的方式获取对网络的访问，以及（3）在与授权用户进行会话期间窃听和窃取数据。在基于IP的移动通信系统中不存在单独的安全网络，因此，有必要保护在移动系统中发送的信息免受上述安全攻击。本发明通过在系统上的各个节点之间创建基于变量的安全关联，由各种外部网络和家庭网络之间的服务水平协议支持的虚拟专用网以及SLA来改善IP移动通信系统中的通信的安全性经纪人促进SLA经纪人支持的不同SLA之间的大规模漫游或与其他SLA经纪商的协议。

2. 发明授权

US08505088B2 Key exchange for a network architecture 有权
标题翻译：网络架构的密钥交换
公开(公告)号：US08505088B2
公开(公告)日：2013-08-06
申请号：US12546282
申请日：2009-08-24
申请人： Mohamed Khalil , Raja P. Narayanan , Haseeb Akhtar , Emad A. Qaddoura
发明人： Mohamed Khalil , Raja P. Narayanan , Haseeb Akhtar , Emad A. Qaddoura
IPC分类号： G06F17/00
CPC分类号： H04L9/0841 , H04L9/083 , H04L63/0428 , H04L63/062 , H04L63/205 , H04L2209/80 , H04W4/12 , H04W12/04 , H04W60/00 , H04W80/04
摘要： Provided is a method of providing secure communication between an initiator and a responder in a communication network. The method includes presenting a registration request with one or more proposals for dynamically establishing a security association between the initiator and the responder, and receiving a registration response indicating whether any of the one or more proposals have been accepted for the security association.
摘要翻译：提供了一种在通信网络中的发起者和应答者之间提供安全通信的方法。该方法包括向注册请求提供一个或多个提案，用于动态地建立发起者和应答者之间的安全关联，以及接收指示是否已经接受了安全关联的一个或多个提案中的任一个的注册响应。

3. 发明申请

US20090313692A1 KEY EXCHANGE FOR A NETWORK ARCHITECTURE 有权
标题翻译：网络架构的关键交换
公开(公告)号：US20090313692A1
公开(公告)日：2009-12-17
申请号：US12546282
申请日：2009-08-24
申请人： Mohamed Khalil , Raja P. Narayanan , Haseeb Akhtar , Emad A. Qaddoura
发明人： Mohamed Khalil , Raja P. Narayanan , Haseeb Akhtar , Emad A. Qaddoura
IPC分类号： H04L9/00
CPC分类号： H04L9/0841 , H04L9/083 , H04L63/0428 , H04L63/062 , H04L63/205 , H04L2209/80 , H04W4/12 , H04W12/04 , H04W60/00 , H04W80/04
摘要： Provided is a method of providing secure communication between an initiator and a responder in a communication network. The method includes presenting a registration request with one or more proposals for dynamically establishing a security association between the initiator and the responder, and receiving a registration response indicating whether any of the one or more proposals have been accepted for the security association.
摘要翻译：提供了一种在通信网络中的发起者和应答者之间提供安全通信的方法。该方法包括向注册请求提供一个或多个提案，用于动态地建立发起者和应答者之间的安全关联，以及接收指示是否已经接受了安全关联的一个或多个提案中的任一个的注册响应。

4. 发明授权

US07173917B1 Unicast agent advertisement based on layer 2 and layer 3 motion detection 有权
标题翻译：基于第2层和第3层运动检测的单播代理广告
公开(公告)号：US07173917B1
公开(公告)日：2007-02-06
申请号：US09540362
申请日：2000-03-31
申请人： Raja P. Narayanan , Mohamed Khalil , Haseeb Akhtar , Emad A. Qaddoura
发明人： Raja P. Narayanan , Mohamed Khalil , Haseeb Akhtar , Emad A. Qaddoura
IPC分类号： H04Q7/00 , H04Q7/20 , H04B7/216 , H04L12/66 , H04J3/16
CPC分类号： H04W48/08 , H04W8/04 , H04W36/0011 , H04W76/11 , H04W80/04
摘要： An improved wireless mobile IP system including an apparatus and method for managing transmission of information. Agent advertisements are used to detect movement of the mobile node and derive care-of addressing information for the Home Agent. Foreign Agents and Home Agents currently periodically broadcast an agent advertisement on the data channel. The claimed system reduces the need for agent advertisements by detecting movement of a mobile user into a new network using either the mobile node or a routine on a low-level protocol layer. After detection of movement, an agent solicitation message is transmitted from the mobile node or from the cell-site transmitter. The mobility agent then transmits a single agent advertisement in response. Derived care-of addressing information will then be registered with the Home Agent to support “tunneling” of communications to the mobile node through the foreign network. Transmission of agent advertisements and associated non-data traffic on the data channels will be reduced.
摘要翻译：一种改进的无线移动IP系统，包括用于管理信息传输的装置和方法。代理广告用于检测移动节点的移动并导出归属代理的转交寻址信息。外国代理和家庭代理商目前在数据频道上定期广播代理广告。所要求保护的系统通过使用移动节点或低级协议层上的例程来检测移动用户进入新网络的移动来减少代理广告的需要。在移动检测之后，从移动节点或小区现场发射机发送代理请求消息。移动代理然后响应地发送单个代理广告。然后将派生护理寻址信息注册到归属代理，以支持通过外部网络将通信“隧道化”到移动节点。数据通道上的代理广告和关联的非数据流量的传输将会减少。

5. 发明授权

US06922404B1 Mobile IP extensions rationalization (MIER) 有权
标题翻译：移动IP分机合理化（MIER）
公开(公告)号：US06922404B1
公开(公告)日：2005-07-26
申请号：US09687486
申请日：2000-10-13
申请人： Raja P. Narayanan , Mohamed Khalil , Emad A. Qaddoura , Haseeb Akhtar
发明人： Raja P. Narayanan , Mohamed Khalil , Emad A. Qaddoura , Haseeb Akhtar
IPC分类号： H04L29/06 , H04L12/28 , G06F15/16 , H04L12/56 , H04L12/66 , H04M3/16
CPC分类号： H04W80/04 , H04L69/03 , H04L69/161
摘要： A new extensions structure for mobile IP control message extensions is employed to conserve the type field. Certain types of extensions, such as network access identifiers, are initially aggregated and subtypes are employed to identify the precise content of the extension (e.g., mobile node network access identifier, home agent network access identifier, foreign agent network access identifier, etc.). Long and short formats for the new extension structure are defined, with the long format applicable to nonskippable extensions carrying more than 256 bytes and the short format backwards compatible with currently defined skippable extensions with less than 256 bytes of data. This will greatly reduce usage of the type field.
摘要翻译：采用移动IP控制消息扩展的新扩展结构来节省类型字段。最初聚合某些类型的扩展，例如网络访问标识符，并且使用子类型来标识扩展的精确内容（例如，移动节点网络接入标识符，归属代理网络接入标识符，外部代理网络接入标识符等）。定义了新的扩展结构的长格式和短格式，长格式适用于携带多于256字节的不可扩展扩展，而短格式向后兼容于具有少于256字节数据的当前定义的可跳过扩展。这将大大减少类型字段的使用。

6. 发明授权

US06819652B1 Method and apparatus for processing control messages in a communications system 有权
标题翻译：用于在通信系统中处理控制消息的方法和装置
公开(公告)号：US06819652B1
公开(公告)日：2004-11-16
申请号：US09598565
申请日：2000-06-21
申请人： Haseeb Akhtar , Lakshminarasimhan Aravamudhan , Emad A. Qaddoura , Raja P. Narayanan , Akram Hosain
发明人： Haseeb Akhtar , Lakshminarasimhan Aravamudhan , Emad A. Qaddoura , Raja P. Narayanan , Akram Hosain
IPC分类号： H04J326
CPC分类号： H04L47/10 , H04L41/08 , H04L41/0896 , H04L47/2408 , H04L47/2416 , H04L47/2441 , H04L47/245
摘要： A method and apparatus in a communications system for processing control messages for a session in a packet-based network within the communications system. A first indicator is set in a control message for handling a session within the communications system through the packet-based network. The control message is sent to a destination within the packet-based network. The control message is provided priority processing within the packet-based network based on the presence of the first indicator. A second indicator is set in a header of a packet used to transport the control message, such that nodes within the packet based network, which do not examine the control message, provide priority processing of the packet in sending the packet through the packet-based network to the destination.
摘要翻译：一种用于处理通信系统内基于分组的网络中的会话的控制消息的通信系统中的方法和装置。在控制消息中设置第一指示符，用于通过基于分组的网络处理通信系统内的会话。控制消息被发送到基于分组的网络内的目的地。基于第一指示符的存在，在基于分组的网络内提供控制消息的优先级处理。在用于传输控制消息的分组的报头中设置第二指示符，使得不检查控制消息的基于分组的网络内的节点在通过基于分组的分组发送分组时提供分组的优先处理网络到目的地。

7. 发明授权

US07590843B1 Key exchange for a network architecture 有权
标题翻译：网络架构的密钥交换
公开(公告)号：US07590843B1
公开(公告)日：2009-09-15
申请号：US10089752
申请日：2000-10-04
申请人： Mohamed Khalil , Raja P. Narayanan , Haseeb Akhtar , Emad A. Qaddoura
发明人： Mohamed Khalil , Raja P. Narayanan , Haseeb Akhtar , Emad A. Qaddoura
IPC分类号： H04K1/00
CPC分类号： H04L9/0841 , H04L9/083 , H04L63/0428 , H04L63/062 , H04L63/205 , H04L2209/80 , H04W4/12 , H04W12/04 , H04W60/00 , H04W80/04
摘要： A key exchange for a network architecture. A mobile node that roams over a foreign domain transmits a registration request to a home domain using the foreign domain. The identity of the mobile node within the registration request is encrypted. The home domain receives the registration request and decrypts the mobile node identity. The home domain generates a registration reply that includes encryption keys for encrypting information to be transmitted between and among the home domain, the foreign domain, and the mobile node.
摘要翻译：网络架构的关键交换。漫游在外部域的移动节点使用外部域将注册请求发送到归属域。注册请求内的移动节点的身份被加密。归属域接收注册请求并解密移动节点身份。归属域生成一个注册答复，其中包含加密密钥，用于加密在归属域，外部域和移动节点之间以及之间传送的信息。

8. 发明授权

US06711147B1 Merged packet service and mobile internet protocol 失效
标题翻译：合并数据包服务和移动互联网协议
公开(公告)号：US06711147B1
公开(公告)日：2004-03-23
申请号：US09333841
申请日：1999-06-15
申请人： Mary H. Barnes , Akram Hosain , Emad A. Qaddoura , Haseeb Akhtar
发明人： Mary H. Barnes , Akram Hosain , Emad A. Qaddoura , Haseeb Akhtar
IPC分类号： H04L1266
CPC分类号： H04L12/6418
摘要： A network, system and method for merging a packet service such as GPRS with a mobile IP is disclosed. The GPRS network includes a first base station for providing wireless access to a mobile node, a GPRS support node (GSN) connected to the base station, and a security gateway for connecting the GPRS network to a second network that may use mobile IP. The GSN is capable of creating an IP tunnel connecting it to the second network through the security gateway. The GSN is also capable of handling mobile IP specific messaging and converting the wireless access to mobile IP specific messaging.
摘要翻译：公开了一种用于将诸如GPRS的分组服务与移动IP合并的网络，系统和方法。 GPRS网络包括用于向移动节点提供无线接入的第一基站，连接到基站的GPRS支持节点（GSN）以及用于将GPRS网络连接到可以使用移动IP的第二网络的安全网关。 GSN能够创建通过安全网关将其连接到第二个网络的IP隧道。 GSN还能够处理移动IP专用消息，并将无线接入转换为移动IP专用消息。

9. 发明授权

US06769000B1 Unified directory services architecture for an IP mobility architecture framework 有权
标题翻译：用于IP移动性架构框架的统一目录服务架构
公开(公告)号：US06769000B1
公开(公告)日：2004-07-27
申请号：US09656850
申请日：2000-09-07
申请人： Haseeb Akhtar , Emad A. Qaddoura , Russell C. Coffin , Liem Q. Le , Zemin Zhu
发明人： Haseeb Akhtar , Emad A. Qaddoura , Russell C. Coffin , Liem Q. Le , Zemin Zhu
IPC分类号： G06F1730
CPC分类号： H04L63/0272 , H04L29/06 , H04L29/12311 , H04L41/08 , H04L61/2015 , H04L61/2084 , H04L67/306 , H04L69/329 , H04W8/26 , H04W36/0011 , H04W80/04 , Y10S707/99944
摘要： A communications architecture for enabling IP-based mobile communications includes a Local Service Function (LSF) component configured to serve as an IP-based serving area network for a set of x-Access Networks, and a Network Service Function (NSF) component configured to serve as an IP-based home network by managing a MN's subscription and associated profile so that the MN is authorized to use the resources of the LSF. An x-Access Network (xAN) is interconnected to the LSF and NSF for providing heterogeneous Layer 2 access for MNs irrespective of access technology.
摘要翻译：用于启用基于IP的移动通信的通信架构包括被配置为用作一组x接入网络的基于IP的服务区域网络的本地服务功能（LSF）组件，以及被配置为通过管理MN的订阅和关联配置文件，作为基于IP的家庭网络，以便MN被授权使用LSF的资源。 x-Access网络（xAN）与LSF和NSF互连，用于为MN提供异构的二层接入，无论接入技术如何。

10. 发明授权

US06219547B1 System and method for routing in a cellular digital packet data network 失效
标题翻译：用于在蜂窝数字分组数据网络中路由的系统和方法
公开(公告)号：US06219547B1
公开(公告)日：2001-04-17
申请号：US08741460
申请日：1996-10-31
申请人： Emad A. Qaddoura , Haseeb Akhtar
发明人： Emad A. Qaddoura , Haseeb Akhtar
IPC分类号： H04Q722
CPC分类号： H04W76/20 , H04W92/02
摘要： Routing of data in a mobile radiotelephone system to an intended recipient roaming mobile end station (M-ES) is facilitated by determining if the M-ES is within the same geographic area of the originating data source. If the M-ES is within the same geographic area as verified by interrogation of the local mobile data interface station, then data is sent directly to the intended M-ES without transmission to the mobile end station's home mobile data interface station. If the intended recipient M-ES is not currently located within the same geographic area served by the originating data source, then the data is transmitted to the M-ES's home mobile data intermediate station where the last known location of the roaming M-ES is stored and then on to the appropriate mobile data intermediate station for transmission to the intended M-ES.
摘要翻译：通过确定M-ES是否在始发数据源的相同地理区域内，将移动无线电话系统中的数据路由到预定的接收者漫游移动终端站（M-ES）。如果M-ES与通过询问本地移动数据接口站所验证的相同的地理区域内，则将数据直接发送到预期的M-ES，而不发送到移动终端的归属移动数据接口站。如果预期的接收者M-ES当前不在起始数据源所服务的同一地理区域内，那么该数据被发送到M-ES家庭移动数据中间站，其中漫游M-ES的最后一个已知位置是存储，然后连接到适当的移动数据中间站，以传输到预期的M-ES。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式