ATE377895T1 - Verfahren zum einrichten einer sicherheitsassoziation - Google Patents

Verfahren zum einrichten einer sicherheitsassoziation

Info

Publication number
ATE377895T1
ATE377895T1 AT03764074T AT03764074T ATE377895T1 AT E377895 T1 ATE377895 T1 AT E377895T1 AT 03764074 T AT03764074 T AT 03764074T AT 03764074 T AT03764074 T AT 03764074T AT E377895 T1 ATE377895 T1 AT E377895T1
Authority
AT
Austria
Prior art keywords
security association
node
procedure
setting
prefix value
Prior art date
Application number
AT03764074T
Other languages
English (en)
Inventor
Bajko Gabor
Tao Haukka
Original Assignee
Nokia Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nokia Corp filed Critical Nokia Corp
Application granted granted Critical
Publication of ATE377895T1 publication Critical patent/ATE377895T1/de

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/164Implementing security features at a particular protocol layer at the network layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • H04L63/205Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1069Session establishment or de-establishment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1101Session protocols
    • H04L65/1104Session initiation protocol [SIP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/12Detection or prevention of fraud
    • H04W12/121Wireless intrusion detection systems [WIDS]; Wireless intrusion prevention systems [WIPS]
    • H04W12/122Counter-measures against attacks; Protection against rogue devices
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/35Network arrangements, protocols or services for addressing or naming involving non-standard use of addresses for implementing network functionalities, e.g. coding subscription information within the address or functional addressing, i.e. assigning an address to a function
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/10Architectures or entities
    • H04L65/1016IP multimedia subsystem [IMS]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Business, Economics & Management (AREA)
  • General Business, Economics & Management (AREA)
  • Multimedia (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Alarm Systems (AREA)
  • Burglar Alarm Systems (AREA)
  • Air Bags (AREA)
  • Sewing Machines And Sewing (AREA)
AT03764074T 2002-07-10 2003-07-08 Verfahren zum einrichten einer sicherheitsassoziation ATE377895T1 (de)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
GBGB0216000.0A GB0216000D0 (en) 2002-07-10 2002-07-10 A method for setting up a security association

Publications (1)

Publication Number Publication Date
ATE377895T1 true ATE377895T1 (de) 2007-11-15

Family

ID=9940202

Family Applications (1)

Application Number Title Priority Date Filing Date
AT03764074T ATE377895T1 (de) 2002-07-10 2003-07-08 Verfahren zum einrichten einer sicherheitsassoziation

Country Status (7)

Country Link
US (1) US20040117657A1 (de)
EP (1) EP1520393B1 (de)
AT (1) ATE377895T1 (de)
AU (1) AU2003249429A1 (de)
DE (1) DE60317332T2 (de)
GB (1) GB0216000D0 (de)
WO (1) WO2004008712A1 (de)

Families Citing this family (37)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4380198B2 (ja) * 2003-03-31 2009-12-09 株式会社日立製作所 ストレージ装置でアクセス制御を行う計算機システム
GB2413462A (en) * 2004-04-23 2005-10-26 Matsushita Electric Ind Co Ltd Duplicate Address Detection Optimisation
GB2413461B (en) * 2004-04-23 2006-05-10 Matsushita Electric Ind Co Ltd Crytographic optimisation for duplicate address detection
JP4806400B2 (ja) 2004-05-03 2011-11-02 ノキア コーポレイション Ipネットワークの信頼できるドメインにおけるアイデンティティの処理
US20060047840A1 (en) * 2004-08-31 2006-03-02 Peter Postmus Method and session initiation protocol (SIP) server for the exchange of end-point capabilities
GB2423220B (en) * 2005-02-11 2009-10-07 Ericsson Telefon Ab L M Method and apparatus for ensuring privacy in communications between parties
US8407240B2 (en) 2006-01-03 2013-03-26 International Business Machines Corporation Autonomic self-healing network
US20070300067A1 (en) * 2006-06-03 2007-12-27 Roselyn, Llc Notice of Revocation System for Revocable or Modifiable Documents
CN101090562B (zh) * 2006-06-15 2012-05-02 华为技术有限公司 在ip多媒体子系统中传递用户终端位置信息的方法及装置
US20080002710A1 (en) * 2006-06-29 2008-01-03 Motorola, Inc. System and method for routing communications to mobile stations
CN101102185B (zh) * 2006-07-06 2012-03-21 朗迅科技公司 Ims会话的媒体安全
JP4866802B2 (ja) * 2006-09-11 2012-02-01 Kddi株式会社 セキュリティ最適化システムおよびセキュリティ最適化方法
US8046820B2 (en) * 2006-09-29 2011-10-25 Certes Networks, Inc. Transporting keys between security protocols
FR2908540A1 (fr) * 2006-11-15 2008-05-16 France Telecom Deploiement de bases dnssec
EP2090070B1 (de) * 2006-12-11 2010-09-01 Telefonaktiebolaget LM Ericsson (publ) Dienstanpassung in einem IP-Multimedia-Subsystem-Netz
JP4445516B2 (ja) * 2007-04-27 2010-04-07 株式会社東芝 情報処理装置
US8295486B2 (en) * 2007-09-28 2012-10-23 Research In Motion Limited Systems, devices, and methods for outputting alerts to indicate the use of a weak hash function
JP5096588B2 (ja) * 2007-10-17 2012-12-12 テレフオンアクチーボラゲット エル エム エリクソン(パブル) セキュリティ設定を決定するための方法及び構成
US7944854B2 (en) * 2008-01-04 2011-05-17 Cisco Technology, Inc. IP security within multi-topology routing
CN101478755B (zh) * 2009-01-21 2011-05-11 中兴通讯股份有限公司 一种网络安全的http协商的方法及其相关装置
US8799586B2 (en) * 2009-09-30 2014-08-05 Intel Corporation Memory mirroring and migration at home agent
US8327228B2 (en) 2009-09-30 2012-12-04 Intel Corporation Home agent data and memory management
GB201015324D0 (en) * 2010-09-14 2010-10-27 Vodafone Ip Licensing Ltd Secure association
US9027088B2 (en) * 2012-06-14 2015-05-05 Ericsson Modems Sa Systems and methods for protection of a SIP back-to-back user agent on modems
US9438507B2 (en) 2013-05-31 2016-09-06 Cisco Technology, Inc. Routing aggregation and prefix delegation
US9647981B2 (en) 2013-10-02 2017-05-09 Sony Corporation Network discovery and connection using device addresses not correlated to a device
US20160142219A1 (en) * 2014-11-13 2016-05-19 Qualcomm Incorporated eMBMS Multicast Routing for Routers
KR102240727B1 (ko) * 2015-01-28 2021-04-15 삼성전자주식회사 통신 시스템에서 보안 연계를 설정하기 위한 장치 및 방법
US20160373405A1 (en) * 2015-06-16 2016-12-22 Amazon Technologies, Inc. Managing dynamic ip address assignments
US10341979B2 (en) * 2015-11-20 2019-07-02 Qualcomm Incorporated Secure fine timing measurement protocol
US10397779B2 (en) * 2015-11-20 2019-08-27 Qualcomm Incorporated Secure fine timing measurement protocol
US10091243B2 (en) * 2016-02-24 2018-10-02 Qualcomm Incorporated Apparatus and method for securely connecting to a remote server
US10306468B2 (en) 2016-06-29 2019-05-28 T-Mobile Usa, Inc. Internet protocol multimedia system session resurrection
US11165744B2 (en) 2018-12-27 2021-11-02 Juniper Networks, Inc. Faster duplicate address detection for ranges of link local addresses
US10965637B1 (en) * 2019-04-03 2021-03-30 Juniper Networks, Inc. Duplicate address detection for ranges of global IP addresses
US20210377296A1 (en) * 2020-05-29 2021-12-02 Avaya Management L.P. Method and system for discovering, reporting, and preventing duplicate address detection attacks
US11582331B2 (en) * 2020-08-10 2023-02-14 T-Mobile Usa, Inc. Handling SIP messages with malformed header fields

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7032242B1 (en) * 1998-03-05 2006-04-18 3Com Corporation Method and system for distributed network address translation with network security features
US6992994B2 (en) * 2000-04-17 2006-01-31 Telcordia Technologies, Inc. Methods and systems for a generalized mobility solution using a dynamic tunneling agent
WO2002009387A1 (en) * 2000-07-21 2002-01-31 Nokia Corporation Sip sessions between ipv4 and ipv6 clients and sip based call setup in 3gpp ip multimedia subsystem with nat in place
WO2002032170A1 (en) * 2000-10-09 2002-04-18 Nokia Corporation Address de-registration in ip multimedia networks
JP4491980B2 (ja) * 2001-03-05 2010-06-30 ソニー株式会社 通信処理システム、通信処理方法、および通信端末装置、並びにプログラム
JP4572476B2 (ja) * 2001-03-13 2010-11-04 ソニー株式会社 通信処理システム、通信処理方法、および通信端末装置、データ転送制御装置、並びにプログラム
US20020157024A1 (en) * 2001-04-06 2002-10-24 Aki Yokote Intelligent security association management server for mobile IP networks
US20040255039A1 (en) * 2001-05-10 2004-12-16 Bernard Honeisen Method, system and network element device for controlling sessions between terminals
FI116027B (fi) * 2001-09-28 2005-08-31 Netseal Mobility Technologies Menetelmä ja järjestelmä viestien turvallisen lähettämisen varmistamiseksi
US7159109B2 (en) * 2001-11-07 2007-01-02 Intel Corporation Method and apparatus to manage address translation for secure connections
US7574735B2 (en) * 2002-02-13 2009-08-11 Nokia Corporation Method and network element for providing secure access to a packet data network
US7373660B1 (en) * 2003-08-26 2008-05-13 Cisco Technology, Inc. Methods and apparatus to distribute policy information

Also Published As

Publication number Publication date
EP1520393B1 (de) 2007-11-07
AU2003249429A1 (en) 2004-02-02
US20040117657A1 (en) 2004-06-17
DE60317332D1 (de) 2007-12-20
WO2004008712A1 (en) 2004-01-22
DE60317332T2 (de) 2008-08-28
EP1520393A1 (de) 2005-04-06
GB0216000D0 (en) 2002-08-21

Similar Documents

Publication Publication Date Title
ATE377895T1 (de) Verfahren zum einrichten einer sicherheitsassoziation
EP1578068A4 (de) Kommunikationsmodell, signal, verfahren und einrichtung zum bestätigen der erreichbarkeit in einem netzwerk, wobei host-erreichbarkeit durch inbeziehungsetzen einer statischen kennung mit dynamischer adresseerreicht wird
ATE289137T1 (de) Verfahren zur synchronisation von knoten eines kommunikationssystems
DE69911264D1 (de) Verfahren und netzelement zum weiterleiten von mehrfachnachrichten
BRPI0413953A (pt) aparelhos e métodos para controle central de redes entrelaçadas
AU2003222452A8 (en) Mobile node, router, server and method for mobile communications under ip version 6 (ipv6) protocol
WO2006062770A3 (en) A scheme for mac address privacy in infrastructure-based multi-hop wireless networks
ATE472219T1 (de) Ip-mobilität
DE60202491D1 (de) Verfahren und System zum Steuern eines Kommunikationsnetzes und eines im Netz angewandten Routers
WO2003001717A3 (en) Multicast in a point-to-point oriented packet-switched telecommunication network
DE60208373D1 (de) Polyaryleneether-polyolefinzusammensetzung, verfahren zu deren herstellung und formassen daraus
DE60323040D1 (de) Funkzugangsnetzwerk, Funkkommunikationsverfahren, synchroner Server und Netzwerkknoten
ATE481851T1 (de) Netzwerk und verfahren zum gemeinsamen benutzen von funkzugriffsknoten zwischen kernnetzwerken
DE602006004845D1 (de) Verfahren und knoten zur durchführung einer überbrückung von datenverkehr über eine zugangsdomäne
ATE366018T1 (de) Identifizierungs-verfahren und -vorrichtung zum aufbau von hip-verbindungen zwischen gewöhnlichen und hip-fähigen netzknoten
ATE471621T1 (de) Verteilter mobilagent
PL1829256T3 (pl) Synchronizacja w sieci komunikacyjnej
GB2440884A (en) Method apparatus and system for establishing a direct route between agents of a sender node and a receiver node
DE60332306D1 (de) Paketkommunikationsendgerät, -system, -verfahren und -programm
WO2007133880A3 (en) System and method for groupcast packet forwarding in a wireless network
DE60209430D1 (de) Router, Endgerät, Kommunikationssytem und Routing-verfahren
EP1326387A4 (de) Wegelenkverfahren, knoten, paketkommunikationssystem, programm und aufzeichnungsmedium
AU2002356440A1 (en) Router, network system, and network setup method
DE60328288D1 (de) Errichten eines ad-hoc-netzes
ATE319250T1 (de) Verfahren und vorrichtung zur effizienten hashing in netze

Legal Events

Date Code Title Description
RER Ceased as to paragraph 5 lit. 3 law introducing patent treaties