会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 2. 发明授权
    • System and method for ensuring persistent communications between a client and an authentication server
    • 确保客户端和认证服务器之间持久通信的系统和方法
    • US08555350B1
    • 2013-10-08
    • US11473767
    • 2006-06-23
    • Kevin ShatzkamerAnand K. OswalChris O'RourkeMark GraysonJayaraman Iyer
    • Kevin ShatzkamerAnand K. OswalChris O'RourkeMark GraysonJayaraman Iyer
    • G06F7/00
    • H04L67/1027H04L63/0428H04L63/0853H04L63/0892
    • A system for facilitating persistent communications between entities in a network. In a specific embodiment, the system is adapted to facilitate fast reauthentication of a client performed by a server, such as an Authentication, Authorization, and Accounting (AAA) server, that is coupled to the client via a load balancer. The system includes a first message to be exchanged between the server and the client, wherein the first message includes a field identifying the server and/or the client. A matching module communicates with or is otherwise incorporated within the load balancer. The matching module includes one or more routines for employing the field to selectively route the first message to the client and/or server. In a more specific embodiment, the server a fast reauthentication module adapted to append the field in the message. The field includes sub-realm information identifying the server.
    • 用于促进网络中的实体之间的持久通信的系统。 在特定实施例中,该系统适于促进由诸如认证,授权和计费(AAA)服务器的服务器执行的客户端的快速重新认证,所述服务器经由负载平衡器耦合到客户端。 该系统包括要在服务器和客户端之间交换的第一消息,其中第一消息包括标识服务器和/或客户端的字段。 匹配模块与负载均衡器通信或以其他方式并入其中。 匹配模块包括用于使用该字段选择性地将第一消息路由到客户端和/或服务器的一个或多个例程。 在更具体的实施例中,服务器是适于将字段附加到消息中的快速重新认证模块。 该字段包括标识服务器的子域信息。
    • 4. 发明授权
    • System and method for implementing fast reauthentication
    • 实现快速重新认证的系统和方法
    • US08356171B2
    • 2013-01-15
    • US11411482
    • 2006-04-26
    • Kevin ShatzkamerAnand K. OswalMark GraysonJayaraman IyerNavan Narang
    • Kevin ShatzkamerAnand K. OswalMark GraysonJayaraman IyerNavan Narang
    • G06F21/00
    • H04L63/0892H04L63/08H04L63/164H04W12/06H04W88/16
    • A system for efficiently reauthenticating a client of a network. In a specific embodiment, the system includes an authentication server and a Security GateWay (SGW) in communication with the client. The SGW includes reauthentication information associated with the client. In a more specific embodiment, the authentication server includes an Authentication, Authorization, and Accounting (AAA) server. The SGW further includes one or more routines for employing the reauthentication information to reauthenticate the client. The AAA server performs initial authentication of the client to enable client access to the network, which yields the reauthentication information. The reauthentication information includes one or more keys and/or counters, such as an authorization key, an encryption key, and a master key, which is/are predetermined by the AAA server.
    • 一种用于有效地重新认证网络客户端的系统。 在具体实施例中,系统包括与客户端通信的认证服务器和安全门禁(SGW)。 SGW包括与客户端相关联的重新认证信息。 在更具体的实施例中,认证服务器包括认证,授权和计费(AAA)服务器。 SGW还包括用于使用重新认证信息重新认证客户端的一个或多个例程。 AAA服务器执行客户端的初始认证,以使客户端能够访问网络,从而产生重新认证信息。 重新认证信息包括由AAA服务器预先确定的一个或多个密钥和/或计数器,例如授权密钥,加密密钥和主密钥。
    • 10. 发明申请
    • Blacklisting of unlicensed mobile access (UMA) users via AAA policy database
    • 通过AAA策略数据库将未经授权的移动接入(UMA)用户列入黑名单
    • US20080220740A1
    • 2008-09-11
    • US11716267
    • 2007-03-09
    • Kevin ShatzkamerAnand K. OswalCasey YoonMark Grayson
    • Kevin ShatzkamerAnand K. OswalCasey YoonMark Grayson
    • H04M1/66
    • H04W8/06H04L63/101H04W12/08H04W12/12H04W88/14
    • In one embodiment, while being connected to the network, a security issue may be detected and associated with the device. The device may be placed on a blacklist for the security issue. The blacklist is a list that is used to deny service for the device when it attempts to connect. Thus, the device is disconnected from the network. Identification information for the device is added to the blacklist at the authentication server. If the device attempts to reconnect to the network, the request is received at the authentication server. The authentication server can then check the blacklist and deny the request for access to the network if the identification information is on the blacklist. This denial is determined without sending the request to the HLR. Accordingly, the HLR is protected in that requests from a device that may be considered a security issue are not sent to the HLR.
    • 在一个实施例中,当连接到网络时,可以检测安全问题并与设备相关联。 为了安全问题,设备可能被放置在黑名单上。 黑名单是用于在尝试连接时拒绝该设备的服务的列表。 因此,设备与网络断开连接。 设备的识别信息被添加到认证服务器的黑名单。 如果设备尝试重新连接到网络,则在认证服务器处接收到请求。 然后,如果识别信息在黑名单上,认证服务器可以检查黑名单并拒绝接入网络的请求。 确定此拒绝,而不向HLR发送请求。 因此,HLR受到保护,因为来自可能被认为是安全问题的设备的请求不被发送到HLR。