CA2414830A1 - Proxy method and system for secure wireless administration of managed entities - Google Patents

Proxy method and system for secure wireless administration of managed entities Download PDF

Info

Publication number
CA2414830A1
CA2414830A1 CA002414830A CA2414830A CA2414830A1 CA 2414830 A1 CA2414830 A1 CA 2414830A1 CA 002414830 A CA002414830 A CA 002414830A CA 2414830 A CA2414830 A CA 2414830A CA 2414830 A1 CA2414830 A1 CA 2414830A1
Authority
CA
Canada
Prior art keywords
managed entities
wid
security
web
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CA002414830A
Other languages
French (fr)
Other versions
CA2414830C (en
Inventor
Kevin Kerstens
Allan Van Schaick
Jim Doree
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Avocent Huntsville LLC
Original Assignee
Sonic Mobility Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sonic Mobility Inc filed Critical Sonic Mobility Inc
Priority to CA002414830A priority Critical patent/CA2414830C/en
Priority to JP2004560973A priority patent/JP4538325B2/en
Priority to PCT/CA2003/002036 priority patent/WO2004057823A2/en
Priority to AU2003289796A priority patent/AU2003289796A1/en
Priority to EP03782045A priority patent/EP1576783A2/en
Publication of CA2414830A1 publication Critical patent/CA2414830A1/en
Application granted granted Critical
Publication of CA2414830C publication Critical patent/CA2414830C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0464Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload using hop-by-hop encryption, i.e. wherein an intermediate entity decrypts the information and re-encrypts it before forwarding it
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/04Protocols specially adapted for terminals or networks with limited capabilities; specially adapted for terminal portability
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/037Protecting confidentiality, e.g. by encryption of the control plane, e.g. signalling traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • H04W12/082Access security using revocation of authorisation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/30Definitions, standards or architectural aspects of layered protocol stacks
    • H04L69/32Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
    • H04L69/322Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
    • H04L69/329Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

A method, system and apparatus are described for avoiding the use of a web- server or generic security when providing network administration services remotely to managed entities using wireless technology. Instead a true Proxy device, not operating as a web-server, is used to pre-process all command traffic from wireless input devices (WID). The intervention between the WID and the managed entities of the Proxy isolating the managed entities from the WID, enhanced by encoding using a novel messaging protocol, further enhanced by a novel security model based on multiple pre-shared keys and algorithms together with identifiers and passwords that are not transmitted, achieves several bandwidth and security advantages including the ability to deliver TELNET services across the Internet and behind a firewall.
CA002414830A 2002-12-19 2002-12-19 Proxy method and system for secure wireless administration of managed entities Expired - Fee Related CA2414830C (en)

Priority Applications (5)

Application Number Priority Date Filing Date Title
CA002414830A CA2414830C (en) 2002-12-19 2002-12-19 Proxy method and system for secure wireless administration of managed entities
JP2004560973A JP4538325B2 (en) 2002-12-19 2003-12-19 Proxy method and system for secure radio management of multiple managed entities
PCT/CA2003/002036 WO2004057823A2 (en) 2002-12-19 2003-12-19 Proxy method and system for secure wireless administration of managed entities
AU2003289796A AU2003289796A1 (en) 2002-12-19 2003-12-19 Proxy method and system for secure wireless administration of managed entities
EP03782045A EP1576783A2 (en) 2002-12-19 2003-12-19 Proxy method and system for secure wireless administration of managed entities

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CA002414830A CA2414830C (en) 2002-12-19 2002-12-19 Proxy method and system for secure wireless administration of managed entities

Publications (2)

Publication Number Publication Date
CA2414830A1 true CA2414830A1 (en) 2004-06-19
CA2414830C CA2414830C (en) 2009-08-18

Family

ID=32514090

Family Applications (1)

Application Number Title Priority Date Filing Date
CA002414830A Expired - Fee Related CA2414830C (en) 2002-12-19 2002-12-19 Proxy method and system for secure wireless administration of managed entities

Country Status (1)

Country Link
CA (1) CA2414830C (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112235184A (en) * 2020-09-08 2021-01-15 北京首钢自动化信息技术有限公司 Event-driven information pushing method and device and electronic equipment

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112235184A (en) * 2020-09-08 2021-01-15 北京首钢自动化信息技术有限公司 Event-driven information pushing method and device and electronic equipment
CN112235184B (en) * 2020-09-08 2023-02-10 北京首钢自动化信息技术有限公司 Event-driven information pushing method and device and electronic equipment

Also Published As

Publication number Publication date
CA2414830C (en) 2009-08-18

Similar Documents

Publication Publication Date Title
EP3369235B1 (en) Data compression for communications signalling
CN106685992B (en) Cross-network security switching and interactive application system and method based on unidirectional transmission technology
EP3369240B1 (en) Protocol fallback during call signaling
US20060031936A1 (en) Encryption security in a network system
AU2002212908A1 (en) Securing voice over ip traffic
WO2004051964A3 (en) Tunneled authentication protocol for preventing man-in-the-middle attacks
WO2002025962A3 (en) Secured map messages for telecommunications networks
CA2467988A1 (en) System and method for initiating secure network connection from a client to a network host
WO2003015360A3 (en) System and method for secure network roaming
WO2002056569A3 (en) Telecommunication data compression apparatus and method
CA2327078A1 (en) Secure session management and authentication for web sites
WO1998032065A3 (en) Improved network security device
JP2005525758A5 (en)
CA2296223A1 (en) Method, apparatus and communication system for exchange of information in pervasive environments
ATE381196T1 (en) A PERSISTENT AND RELIABLE SESSION THAT SECURELY PASSES NETWORK COMPONENTS USING AN ENCAPSULATION PROTOCOL
WO2002082767A3 (en) System and method for distributing security processing functions for network applications
WO2018226154A1 (en) Secure and encrypted heartbeat protocol
CA2486690A1 (en) Association of security parameters for a collection of related streaming protocols
CN107749863B (en) Method for network security isolation of information system
WO2006006321A1 (en) Communication system, key distribution control device, and radio lan base station device
CN109561087A (en) Method for penetrating through firewall and system
Xu et al. Research on network security of VPN technology
CN1406005A (en) Safety-alliance (SA) generation method for safety communication between nodes of network area
CA2414830A1 (en) Proxy method and system for secure wireless administration of managed entities
CN110417706B (en) Switch-based secure communication method

Legal Events

Date Code Title Description
EEER Examination request
MKLA Lapsed

Effective date: 20151221