Processing

Please wait...

Settings

Settings

Goto Application

1. WO2005101753 - IDENTIFICATION METHOD AND APPARATUS FOR ESTABLISHING HOST IDENTITY PROTOCOL (HIP) CONNECTIONS BETWEEN LEGACY AND HIP NODES

Publication Number WO/2005/101753
Publication Date 27.10.2005
International Application No. PCT/EP2004/050533
International Filing Date 15.04.2004
IPC
H04L 12/56 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
54Store-and-forward switching systems
56Packet switching systems
H04L 29/06 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04L 29/08 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
08Transmission control procedure, e.g. data link level control procedure
CPC
H04L 29/12018
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/00 - H04L27/00
12characterised by the data terminal
12009Arrangements for addressing and naming in data networks
12018Mapping of addresses of different types; address resolution
H04L 29/12066
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/00 - H04L27/00
12characterised by the data terminal
12009Arrangements for addressing and naming in data networks
12047Directories; name-to-address mapping
12056involving standard directories and standard directory access protocols
12066using Domain Name System [DNS]
H04L 61/10
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
10Mapping of addresses of different types; Address resolution
H04L 61/1511
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
15Directories; Name-to-address mapping
1505involving standard directories or standard directory access protocols
1511using domain name system [DNS]
H04L 63/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
08for supporting authentication of entities communicating through a packet data network
H04L 63/164
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
16Implementing security features at a particular protocol layer
164at the network layer
Applicants
  • TELEFONAKTIEBOLAGET LM ERICSSON (publ) [SE]/[SE] (AllExceptUS)
  • JOKELA, Petri Aulis [FI]/[FI] (UsOnly)
  • NIKANDER, Pekka [FI]/[FI] (UsOnly)
  • SALMELA, Patrik Mikael [FI]/[FI] (UsOnly)
  • ARKKO, Jari [FI]/[FI] (UsOnly)
  • YLITALO, Jukka [FI]/[FI] (UsOnly)
Inventors
  • JOKELA, Petri Aulis
  • NIKANDER, Pekka
  • SALMELA, Patrik Mikael
  • ARKKO, Jari
  • YLITALO, Jukka
Agents
  • BREWER, Michael
Priority Data
Publication Language English (EN)
Filing Language English (EN)
Designated States
Title
(EN) IDENTIFICATION METHOD AND APPARATUS FOR ESTABLISHING HOST IDENTITY PROTOCOL (HIP) CONNECTIONS BETWEEN LEGACY AND HIP NODES
(FR) PROCEDE ET APPAREIL D'IDENTIFICATION PERMETTANT D'ETABLIR LES CONNEXIONS DU PROTOCOLE D'IDENTITE DE L'HOTE (PIH) ENTRE LES NOEUDS EXISTANTS ET LES NOEUDS PIH
Abstract
(EN)
A method is provided of using the Host Identity Protocol (HIP) to at least partially secure communications between a first host (102) operating in a first network environment and a second, HIP-enabled, host (122) operating in a second network environment, with a gateway node (114) forming a gateway between the two environments. In the method, an identifier is associated with the first host (102), stored at the gateway node (114), and sent to the first host (102). The identifier is then used as a source address in a subsequent session initiation message sent from the first host (102) to the gateway node (114), having an indication that the destination of the message is the second host (122). The stored identifier at the gateway node is then used to negotiate a secure HIP connection to the second host. The first network environment may bc a UMTS or GPRS environment, in which case the gateway node may be a Gateway GPRS Support Node (GGSN).
(FR)
La présente invention concerne un procédé d'utilisation du protocole d'identité de l'hôte (PIH) en vue de permettre de sécuriser au moins partiellement les communications entre un premier hôte (102) à l'oeuvre dans un premier environnement de réseau et un deuxième hôte (122), habilité par PIH, à l'oeuvre dans un deuxième environnement de réseau, avec un noeud passerelle (114) qui forme une passerelle entre les deux environnements. Dans le procédé, un identificateur est associé au premier hôte (102), stocké dans le noeud passerelle (114) et envoyé au premier hôte (102). L'identificateur est ensuite utilisé en tant qu'adresse source dans un message d'initiation de session suivante qui est envoyé par le premier hôte (102) au noeud passerelle (114) et qui comporte une indication désignant le deuxième hôte (122) comme étant le destinataire du message. L'identificateur stocké au niveau du noeud passerelle est ensuite utilisé pour négocier une connexion PIH sécurisée pour le deuxième hôte. Le premier environnement de réseau peut être un environnement UMTS ou GPRS, dans ce cas le noeud passerelle pouvant être un noeud (GGSN) de support GPRS de passerelle.
Latest bibliographic data on file with the International Bureau