专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

71. 发明申请

WO2010151182A1 A METHOD AND AN ARRANGEMENT FOR HANDLING SECURITY IN A TELECOMMUNICATIONS SYSTEM 审中-公开
标题翻译：一种在电信系统中处理安全的方法和装置
公开(公告)号：WO2010151182A1
公开(公告)日：2010-12-29
申请号：PCT/SE2009/050777
申请日：2009-06-22
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , NÄSLUND, Mats , THAKARE, Kiran
发明人： NÄSLUND, Mats , THAKARE, Kiran
IPC分类号： H04W12/04 , H04W36/00
CPC分类号： H04W12/04 , H04L63/062 , H04L63/104 , H04L63/20 , H04W36/0038
摘要： The embodiments of the present invention relate to an arrangement in a network node and to a method for handling security in a communications system wherein a plurality of network groups are provided, each group comprising at least one radio base station, and wherein a UE served by a first base station performs a handover to a second base station. If the first and second base stations belong to the same network group, a first AA policy is performed between the UE and the second base station independently of the access technology user by the second base station. If the first and second base station belong to different groups, a second AA policy is applied independently of the access technology used by the second base station.
摘要翻译：本发明的实施例涉及一种网络节点中的布置以及用于处理通信系统中的安全性的方法，其中提供多个网络组，每个组包括至少一个无线电基站，并且其中UE由第一基站执行到第二基站的切换。如果第一和第二基站属于相同的网络组，则第二基站独立于接入技术用户，在UE和第二基站之间执行第一AA策略。如果第一和第二基站属于不同的组，则独立于第二基站使用的接入技术应用第二AA策略。

72. 发明申请

WO2010050861A1 A METHOD AND AN APPARATUS FOR KEY MANAGEMENT IN A COMMUNICATION NETWORK 审中-公开
标题翻译：一种通信网络中密钥管理的方法和装置
公开(公告)号：WO2010050861A1
公开(公告)日：2010-05-06
申请号：PCT/SE2008/051240
申请日：2008-10-30
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , CARVALHO, Tereza Cristina Melo de Brito , COROAMA, Vlad Constantin , NÄSLUND, Mats , POURZANDI, Makan , SIMPLICIO JUNIOR, Marcos Antonio , VENTURINI, Yeda Regina
发明人： CARVALHO, Tereza Cristina Melo de Brito , COROAMA, Vlad Constantin , NÄSLUND, Mats , POURZANDI, Makan , SIMPLICIO JUNIOR, Marcos Antonio , VENTURINI, Yeda Regina
IPC分类号： H04L29/06 , H04L9/08 , H04N7/173
CPC分类号： H04L63/065 , H04L9/0833 , H04L63/10 , H04L65/4076 , H04L2209/60 , H04L2209/80 , H04N7/162 , H04N21/26613 , H04N21/4383 , H04N21/63345 , H04N21/6405
摘要： The present invention relates to a method of key management and to an apparatus (200) of communication network (100) comprising a plurality of groups (141, 142, 143), each group (141) including one or several members (132A, 132B, 132C) authorized to have access to key-protected services provided by the apparatus. According to the method, it is determined when a member (132A) starts a switching action from one service to another and it is determined a time dependent quantity starting from the switching action. The method further comprises, determining that the member (132A) is a member of a switching group (150) when the quantity is less thana threshold value, and when the quantity is larger than the threshold, determining that the member (132A) has decided to join a new group(142), and changing the appropriate access key(s).
摘要翻译：本发明涉及密钥管理方法和通信网络（100）的装置（200），包括多个组（141,142,143），每个组（141）包括一个或多个成员（132A，132B），132C）被授权访问由该设备提供的密钥保护服务。根据该方法，确定成员（132A）何时开始从一个服务到另一个服务的切换动作，并且从切换动作开始确定时间相关量。该方法还包括：当所述数量小于阈值时，确定所述构件（132A）是切换组（150）的成员，并且当所述数量大于所述阈值时，确定所述构件（132A）已经决定加入新组（142），并更改适当的访问密钥。

73. 发明申请

WO2009142561A1 METHOD AND APPARATUS FOR CONTROLLING THE ROUTING OF DATA PACKETS 审中-公开
标题翻译：控制数据包路由的方法和装置
公开(公告)号：WO2009142561A1
公开(公告)日：2009-11-26
申请号：PCT/SE2008/050599
申请日：2008-05-22
申请人： Telefonaktiebolaget LM Ericsson , WESTBERG, Lars , CSÁSZÁR, András , NÄSLUND, Mats
发明人： WESTBERG, Lars , CSÁSZÁR, András , NÄSLUND, Mats
IPC分类号： H04L29/06 , H04L12/56
CPC分类号： H04L45/00 , H04L47/20 , H04L61/1511 , H04L63/0227 , H04L63/0428 , H04L63/104
摘要： Method and apparatus for controlling the routing of data packets in an IP network (200). A DNS system (202) stores a packet admission policy configured for a first end- host (B) that dictates conditions for allowing other end- hosts to get across data packets to the first end-host or not. A routing voucher is defined which is required for routing data packets to the first end-host. The routing voucher is distributed to routers (R) in the IP network. When an address query is received at the DNS system (202) from a second end-host, the voucher is supplied to the second end-host if the configured policy allows the second end-host to convey data packets. Otherwise, the voucher is not supplied. If allowed, the second end-host will add the routing voucher to any data packets directed to the first end-host. When a valid routing voucher is present in a packet at a router (204) in the network, the packet will be forwarded to the next router in the IP network. The router will otherwise discard the packet.
摘要翻译：控制IP网络中数据分组路由的方法和装置（200）。 DNS系统（202）存储为第一终端主机（B）配置的分组准入策略，其指示允许其他终端主机跨数据分组到达第一终端主机的条件。定义了路由凭证，用于将数据包路由到第一个终端主机。路由凭证分配给IP网络中的路由器（R）。当从第二终端主机在DNS系统（202）处接收到地址查询时，如果所配置的策略允许第二终端主机传送数据分组，则将凭证提供给第二终端主机。否则，不提供凭证。如果允许，则第二个终端主机会将路由凭证添加到指向第一个终端主机的任何数据包。当在网络中的路由器（204）的分组中存在有效的路由凭证时，分组将被转发到IP网络中的下一个路由器。否则路由器将丢弃该数据包。

74. 发明申请

WO2009126083A1 ACCESS THROUGH NON-3GPP ACCESS NETWORKS 审中-公开
标题翻译：通过非3GPP接入网络访问
公开(公告)号：WO2009126083A1
公开(公告)日：2009-10-15
申请号：PCT/SE2008/051261
申请日：2008-11-05
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , NÄSLUND, Mats , ARKKO, Jari , BLOM, Rolf , LEHTOVIRTA, Vesa , NORRMAN, Karl , ROMMER, Stefan , SAHLIN, Bengt
发明人： NÄSLUND, Mats , ARKKO, Jari , BLOM, Rolf , LEHTOVIRTA, Vesa , NORRMAN, Karl , ROMMER, Stefan , SAHLIN, Bengt
IPC分类号： H04W12/06 , H04L29/06 , H04W76/02
CPC分类号： H04W12/06 , G06F21/30 , H04L63/0272 , H04L63/08 , H04L63/0892 , H04L63/1433 , H04L63/162 , H04L63/164 , H04L63/20 , H04W60/00 , H04W72/0493
摘要： When setting up communication from a user equipment UE (1), such as for providing IP access for the UE in order to allow it to use some service, information or an indication of at least one network property relatin g to a first network, e.g. the current access networ k (3, 3'), is sent to the UE from a node (13) in a sec ond network such as the home ne twork (5) of the subscriber of the UE. The information or indication can be sent in a first stage of an authentication procedure being part of the setting up of a connection from the UE. In particular, the network property can indicate whether the access networ k (3, 3') is trusted or not.
摘要翻译：当从用户设备UE（1）建立通信时，诸如用于为UE提供IP接入以允许其使用一些服务，信息或至少一个网络属性的指示与第一网络相关的信息，例如，当前接入网（3,3'）从诸如UE的用户的归属网（5）的秒网络中的节点（13）发送到UE。可以在认证过程的第一阶段中发送信息或指示，这是作为来自UE的连接的建立的一部分。特别地，网络属性可以指示访问网络（3,3'）是否被信任。

75. 发明申请

WO2013081521A1 MONITORING TRAFFIC IN A COMMUNICATION NETWORK 审中-公开
标题翻译：监测交通网络中的交通运输
公开(公告)号：WO2013081521A1
公开(公告)日：2013-06-06
申请号：PCT/SE2012/050361
申请日：2012-04-02
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , LILJENSTAM, Michael , NÄSLUND, Mats
发明人： LILJENSTAM, Michael , NÄSLUND, Mats
IPC分类号： H04L29/06
CPC分类号： H04L63/1425
摘要： A method of monitoring traffic in a communication network(101) is provided. The method comprises analyzing, at a network node(105/106), network traffic which is associated with a client device(102–104) of the communication network, and, if suspect network traffic behavior is detected, requesting information from the client device, which information pertains to software components which are executed on the client device, receiving the information from the client device, and analyzing the information. An embodiment of the invention provides mechanisms to relate traffic observed from a certain client device in the communication network to an application which is executed on the client device. Further, a computer program, a computer program product, a client security module, and a network security module, are provided.
摘要翻译：提供一种监视通信网络（101）中的业务的方法。该方法包括在网络节点（105/106）处分析与通信网络的客户端设备（102-104）相关联的网络流量，并且如果检测到可疑网络流量行为，则从客户端设备请求信息该信息涉及在客户端设备上执行的软件组件，从客户端设备接收信息，并分析该信息。本发明的实施例提供了将从通信网络中的特定客户端设备观察到的业务与在客户端设备上执行的应用相关联的机制。此外，还提供了计算机程序，计算机程序产品，客户端安全模块和网络安全模块。

76. 发明申请

WO2012171946A1 SERVICE ACCESS AUTHENTICATION METHOD AND SYSTEM 审中-公开
标题翻译：服务访问认证方法与系统
公开(公告)号：WO2012171946A1
公开(公告)日：2012-12-20
申请号：PCT/EP2012/061176
申请日：2012-06-13
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , NÄSLUND, Mats , SMEETS, Bernard
发明人： NÄSLUND, Mats , SMEETS, Bernard
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/0815 , H04L63/0884
摘要： An access authentication system for authenticating a subscriber of a service, the access authentication system comprising an operator access authentication system and one or more private access authentication systems, each private access authentication system being communicatively connectable with the operator access authentication system, the operator access authentication system being adapted to provide one or more authentication functions for facilitating authentication of subscribers of the service based on respective subscriber authentication data items associated with credentials of the subscriber; wherein each private access authentication system is adapted to communicate one or more subscriber authentication data items to said operator access authentication system; and wherein each private access authentication system is further adapted to communicate one or more verification data items indicative of the private access authentication system operating in at least one predetermined state.
摘要翻译：一种用于认证服务订户的接入认证系统，所述接入认证系统包括操作者接入认证系统和一个或多个专用接入认证系统，每个专用接入认证系统与所述接入认证系统可通信地连接，所述接入认证系统系统适于提供一个或多个认证功能，用于基于与所述订户的凭证相关联的相应订户认证数据项促进所述服务的订户的认证; 其中每个专用接入认证系统适于将一个或多个用户认证数据项传送到所述操作员接入认证系统; 并且其中每个专用接入认证系统进一步适于通信指示在至少一个预定状态下操作的私有接入认证系统的一个或多个验证数据项。

77. 发明申请

WO2010041991A1 DIGITAL RIGHTS MANAGEMENT IN USER-CONTROLLED ENVIRONMENT 审中-公开
标题翻译：用户控制环境中的数字权限管理
公开(公告)号：WO2010041991A1
公开(公告)日：2010-04-15
申请号：PCT/SE2008/051131
申请日：2008-10-06
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , NÄSLUND, Mats , GALLO, Diego Sanchez , VENTURINI, Yeda Regina , SIMPLICIO JUNIOR, Marcos Antonio , POURZANDI, Makan , CARVALHO, Tereza Cristina Melo de Brito
发明人： NÄSLUND, Mats , GALLO, Diego Sanchez , VENTURINI, Yeda Regina , SIMPLICIO JUNIOR, Marcos Antonio , POURZANDI, Makan , CARVALHO, Tereza Cristina Melo de Brito
IPC分类号： G06F21/00 , H04L9/00 , H04L29/00
CPC分类号： H04N21/63345 , G06F21/10 , G06F2221/0706 , G06F2221/2149 , H04N21/2541 , H04N21/43615 , H04N21/64322 , H04N21/8355
摘要： A method of controlling access to content comprises receiving, at a domain gateway (3) of a domain (4), a request from a device (5) in the domain for access to the content. It is determined at the domain gateway whether the number of devices in the domain currently accessing the content is equal to a specified maximum number of devices that may simultaneously access the content. The maximum number of devices that may simultaneously access the content is independent of the number of devices in the domain. If the determination is that the number of devices in the domain currently accessing the content is less than the specified maximum number the request is allowed, otherwise it is refused.
摘要翻译：控制对内容的访问的方法包括在域的域网关（3）处接收来自域中的用于访问内容的设备（5）的请求。在域网关确定当前正在访问内容的域中的设备的数量是否等于可以同时访问内容的指定的最大数量的设备。可以同时访问内容的最大设备数量与域中的设备数量无关。如果确定当前正在访问内容的域中的设备数量小于指定的最大数量，则允许该请求，否则将被拒绝。

78. 发明申请

WO2009116927A1 EARTHQUAKE AND TSUNAMI CELLULAR WARNING SYSTEM 审中-公开
标题翻译：地震和TSUNAMI细胞警告系统
公开(公告)号：WO2009116927A1
公开(公告)日：2009-09-24
申请号：PCT/SE2009/050118
申请日：2009-02-05
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , BLECKERT, Peter , NÄSLUND, Mats , OLSSON, Magnus , RUNE, Göran
发明人： BLECKERT, Peter , NÄSLUND, Mats , OLSSON, Magnus , RUNE, Göran
IPC分类号： H04W4/06
CPC分类号： H04W12/06 , G08B27/006 , H04L63/083 , H04W4/06 , H04W4/12 , H04W4/90 , H04W76/50
摘要： A method (700) for use in a cellular system (100), comprising the step of transmitting a predefined message (705) comprising a primary warning notification (710) and verification information (715) related to the primary warning notification to user terminals in one or more cells of the system. The predefined message is transmitted simultaneously to a plurality of user terminals (740) in the system (100) on a physical channel (745) in the system which is dedicated to messages to single users. Suitably, the physical channel used is a paging channel (750) in the system (100), and also suitably, the predefined message causes the user terminals to listen (720) for a secondary warning notification in subsequent messages on the same channel.
摘要翻译：一种在蜂窝系统（100）中使用的方法（700），包括以下步骤：向用户终端发送包括主要警告通知（710）和与主要警告通知相关的验证信息（715）的预定义消息（705）系统的一个或多个单元。预定义消息同时发送到系统（100）中的多个用户终端（740），系统中的物理信道（745）专用于向单个用户发送消息。适当地，所使用的物理信道是系统（100）中的寻呼信道（750），并且还适当地，预定义消息使得用户终端在相同信道上的后续消息中监听（720）二次警告通知。

79. 发明申请

WO2009093194A1 METHOD AND APPARATUS FOR AUTHENTICATION SERVICE APPLICATION PROCESSES DURING SERVICE REALLOCATION IN HIGH AVAILABILITY CLUSTERS 审中-公开
标题翻译：在高可用性集群中的服务重新认证过程中的认证服务应用程序的方法和装置
公开(公告)号：WO2009093194A1
公开(公告)日：2009-07-30
申请号：PCT/IB2009/050244
申请日：2009-01-22
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , POURZANDI, Makan , ROSSI, Frederic , NÄSLUND, Mats
发明人： POURZANDI, Makan , ROSSI, Frederic , NÄSLUND, Mats
IPC分类号： G06F9/50 , H04L9/32
CPC分类号： G06F11/1482 , G06F9/468 , G06F11/2025 , G06F11/203
摘要： A method and communication node for providing secure communications and services in a High Availability (HA) cluster. The communication node comprises an Operating System (OS) that detects an unavailability of a first service application process and switches a second service application process from the first state to the second state, the second service application being selected for taking over service currently provided from the first service application process, the first state and the second state each being associated to a set of rights in the cluster. The OS generates a private key for the second service application process based on its second state. The set of rights associated to the second state allows the OS to replace the first service application process with the second service application process for providing secure communications between the second service application and other service application processes in the HA cluster.
摘要翻译：一种用于在高可用性（HA）集群中提供安全通信和服务的方法和通信节点。通信节点包括检测第一服务应用进程的不可用性的操作系统（OS），并且将第二服务应用进程从第一状态切换到第二状态，第二服务应用被选择用于接管当前从第一服务应用进程，第一状态和第二状态各自与集群中的一组权限相关联。操作系统基于其第二状态为第二服务应用进程生成私钥。与第二状态相关联的一组权限允许OS用第二服务应用进程替换第一服务应用进程，以在第二服务应用和HA群集中的其他服务应用进程之间提供安全通信。

80. 发明申请

WO2004098144A1 AN ARRANGEMENT AND A METHOD RELATING TO SECURE COMMUNICATION 审中-公开
标题翻译：安全和安全通信的方法
公开(公告)号：WO2004098144A1
公开(公告)日：2004-11-11
申请号：PCT/EP2003/004350
申请日：2003-04-25
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (publ) , BOMAN, Krister , NÄSLUND, Mats
发明人： BOMAN, Krister , NÄSLUND, Mats
IPC分类号： H04L29/06
CPC分类号： H04L63/0428 , H04L63/20 , H04W12/02 , H04W12/12
摘要： The present invention relates to increasing the security for communication in a communication system, particularly for protection algorithms negotiation between a user station and a switching serving node supporting a first and a second set of protection algorithms respectively information about the first set (for the user station) received in a first message is stored in the switching serving node, which selects common algorithms fulfilling a given security policy, and returns a message to the user station, which obtains/provides a response, encrypts at least the information in the first message and sends it as a third message to the node, which decrypts said third message.
摘要翻译：本发明涉及增加通信系统中通信的安全性，特别是用于在用户站和支持第一和第二组保护算法的切换服务节点之间的保护算法协商，分别关于第一组（对于用户站）存储在切换服务节点中，该切换服务节点选择满足给定安全策略的公共算法，并且向获得/提供响应的用户站返回消息，至少加密第一消息中的信息，以及将其作为第三消息发送到节点，该节点解密所述第三消息。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式