CN1337134A - 重新使用安全关联以改善切换性能 - Google Patents

重新使用安全关联以改善切换性能 Download PDF

Info

Publication number
CN1337134A
CN1337134A CN00802626A CN00802626A CN1337134A CN 1337134 A CN1337134 A CN 1337134A CN 00802626 A CN00802626 A CN 00802626A CN 00802626 A CN00802626 A CN 00802626A CN 1337134 A CN1337134 A CN 1337134A
Authority
CN
China
Prior art keywords
fixed cell
security association
mobile unit
attribute
attributes
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN00802626A
Other languages
English (en)
Chinese (zh)
Inventor
M·林曼
D·杰雷斯塔姆
Y·程
L·比鲁普
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Telefonaktiebolaget LM Ericsson AB
Original Assignee
Telefonaktiebolaget LM Ericsson AB
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Telefonaktiebolaget LM Ericsson AB filed Critical Telefonaktiebolaget LM Ericsson AB
Publication of CN1337134A publication Critical patent/CN1337134A/zh
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/0005Control or signalling for completing the hand-off
    • H04W36/0011Control or signalling for completing the hand-off for data sessions of end-to-end connection
    • H04W36/0033Control or signalling for completing the hand-off for data sessions of end-to-end connection with transfer of context information
    • H04W36/0038Control or signalling for completing the hand-off for data sessions of end-to-end connection with transfer of context information of security context information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/033Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/041Key generation or derivation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0433Key management protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/062Pre-authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/164Implementing security features at a particular protocol layer at the network layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W80/00Wireless network protocols or protocol adaptations to wireless operation
    • H04W80/04Network layer protocols, e.g. mobile IP [Internet Protocol]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)
  • Transceivers (AREA)
CN00802626A 1999-01-08 2000-01-07 重新使用安全关联以改善切换性能 Pending CN1337134A (zh)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US11534999P 1999-01-08 1999-01-08
US60/115,349 1999-01-08
US09/234,512 1999-01-21
US09/234,512 US6418130B1 (en) 1999-01-08 1999-01-21 Reuse of security associations for improving hand-over performance

Publications (1)

Publication Number Publication Date
CN1337134A true CN1337134A (zh) 2002-02-20

Family

ID=26813098

Family Applications (1)

Application Number Title Priority Date Filing Date
CN00802626A Pending CN1337134A (zh) 1999-01-08 2000-01-07 重新使用安全关联以改善切换性能

Country Status (7)

Country Link
US (1) US6418130B1 (https=)
EP (1) EP1142400B1 (https=)
JP (2) JP2002534930A (https=)
CN (1) CN1337134A (https=)
AU (1) AU2335300A (https=)
DE (1) DE60035953T2 (https=)
WO (1) WO2000041427A2 (https=)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007033548A1 (en) * 2005-09-19 2007-03-29 Huawei Technologies Co., Ltd. A method and device for obtaining the security association information during the mobile terminal handoff procedure
CN1988716B (zh) * 2005-12-21 2010-05-05 华为技术有限公司 保证移动台和基站之间通讯安全的方法
CN101022418B (zh) * 2007-03-14 2010-05-26 华为技术有限公司 Hmip认证方法、设备及系统
CN101022647B (zh) * 2006-02-15 2010-09-08 华为技术有限公司 切换处理过程中确定安全协商参数的实现方法及装置
CN1937840B (zh) * 2005-09-19 2011-04-13 华为技术有限公司 一种移动终端切换过程中获得安全联盟信息的方法及装置
CN102546154A (zh) * 2011-12-19 2012-07-04 上海顶竹通讯技术有限公司 移动通信网络以及终端的切换方法
CN102843368A (zh) * 2004-03-03 2012-12-26 北方电讯网络有限公司 维持安全网络连接的技术
CN104780540A (zh) * 2008-03-28 2015-07-15 爱立信电话股份有限公司 切换期间被操纵或有缺陷基站的识别

Families Citing this family (63)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB9922847D0 (en) * 1999-09-27 1999-11-24 Simoco Int Ltd Radio communications
US7590843B1 (en) * 1999-10-05 2009-09-15 Nortel Networks Limited Key exchange for a network architecture
US6721291B1 (en) * 1999-10-19 2004-04-13 Nokia Ip Anycast binding mobile communication method and system
US7486952B1 (en) * 2000-02-09 2009-02-03 Alcatel-Lucent Usa Inc. Facilitated security for handoff in wireless communications
CN1247036C (zh) * 2000-03-03 2006-03-22 高通股份有限公司 在现有的通信系统中参与小组通信服务的方法和设备
US7480939B1 (en) * 2000-04-28 2009-01-20 3Com Corporation Enhancement to authentication protocol that uses a key lease
US6978382B1 (en) * 2000-08-14 2005-12-20 Qualcomm Incorporated Method and an apparatus for granting use of a session of a packet data transmission standard designated by an identifier
US6947483B2 (en) * 2000-08-18 2005-09-20 Nortel Networks Limited Method, apparatus, and system for managing data compression in a wireless network
GB0020443D0 (en) * 2000-08-18 2000-10-04 Nokia Networks Oy Controlling communication between stations
US6691227B1 (en) * 2000-09-08 2004-02-10 Reefedge, Inc. Location-independent packet routing and secure access in a short-range wireless networking environment
FI111423B (fi) * 2000-11-28 2003-07-15 Nokia Corp Järjestelmä kanavanvaihdon jälkeen tapahtuvan tietoliikenteen salauksen varmistamiseksi
US7123719B2 (en) 2001-02-16 2006-10-17 Motorola, Inc. Method and apparatus for providing authentication in a communication system
US7266687B2 (en) * 2001-02-16 2007-09-04 Motorola, Inc. Method and apparatus for storing and distributing encryption keys
WO2002096151A1 (en) * 2001-05-22 2002-11-28 Flarion Technologies, Inc. Authentication system for mobile entities
GB2377589B (en) * 2001-07-14 2005-06-01 Motorola Inc Ciphering keys for different cellular communication networks
US20030016819A1 (en) * 2001-07-20 2003-01-23 Lebin Cheng Secure socket layer (SSL) load generation with handshake replay
FI116027B (fi) * 2001-09-28 2005-08-31 Netseal Mobility Technologies Menetelmä ja järjestelmä viestien turvallisen lähettämisen varmistamiseksi
FI116025B (fi) * 2001-09-28 2005-08-31 Netseal Mobility Technologies Menetelmä ja verkko viestien turvallisen lähettämisen varmistamiseksi
US7028183B2 (en) * 2001-11-13 2006-04-11 Symantec Corporation Enabling secure communication in a clustered or distributed architecture
SE0104325D0 (sv) 2001-12-20 2001-12-20 Ericsson Telefon Ab L M A method and apparatus for switching access between mobile networks
FI118170B (fi) 2002-01-22 2007-07-31 Netseal Mobility Technologies Menetelmä ja järjestelmä viestin lähettämiseksi turvallisen yhteyden läpi
JP3789374B2 (ja) * 2002-03-22 2006-06-21 Necインフロンティア株式会社 電話システム
US7103359B1 (en) * 2002-05-23 2006-09-05 Nokia Corporation Method and system for access point roaming
FR2840499B1 (fr) * 2002-05-30 2004-12-10 Cit Alcatel Procede et dispositif de controle d'acces a un reseau local de communications sans fil
KR100888471B1 (ko) 2002-07-05 2009-03-12 삼성전자주식회사 링크 접속권한을 등급화 한 암호화 키 차등분배방법 및이를 이용한 로밍방법
US7130286B2 (en) 2002-10-02 2006-10-31 Nokia Corporation System and method for resource authorizations during handovers
KR100480258B1 (ko) * 2002-10-15 2005-04-07 삼성전자주식회사 무선 근거리 네트워크에서 고속 핸드오버를 위한 인증방법
US20040088550A1 (en) * 2002-11-01 2004-05-06 Rolf Maste Network access management
US7489667B2 (en) * 2002-11-08 2009-02-10 Faccin Stefano M Dynamic re-routing of mobile node support in home servers
EP1597898A2 (en) * 2003-02-26 2005-11-23 Nokia Corporation A method of reducing denial-of-service attacks and a system as well as an access router therefor
WO2004095863A1 (en) 2003-03-27 2004-11-04 Thomson Licensing S.A. Secure roaming between wireless access points
JP4303752B2 (ja) * 2003-09-12 2009-07-29 株式会社エヌ・ティ・ティ・ドコモ 安全なドメイン内およびドメイン間ハンドオーバ
US7826614B1 (en) * 2003-11-05 2010-11-02 Globalfoundries Inc. Methods and apparatus for passing initialization vector information from software to hardware to perform IPsec encryption operation
US7574603B2 (en) * 2003-11-14 2009-08-11 Microsoft Corporation Method of negotiating security parameters and authenticating users interconnected to a network
KR100523058B1 (ko) * 2003-11-18 2005-10-24 한국전자통신연구원 무선랜 시스템에서의 동적 그룹키 관리 장치 및 그 방법
EP1578059A1 (en) * 2004-03-19 2005-09-21 Swisscom Mobile AG WLAN handover
US7596226B2 (en) * 2004-07-19 2009-09-29 Nokia Corporation Mobile terminal, method and computer program product for storing and retrieving network parameters
JP2006080981A (ja) * 2004-09-10 2006-03-23 Fujitsu Ltd ハンドオーバ方法並びにこれを適用した移動通信システムおよび移動端末
US7643451B2 (en) * 2004-10-15 2010-01-05 Nortel Networks Limited Method and apparatus for extending a mobile unit data path between access points
US7835722B2 (en) * 2004-11-04 2010-11-16 Research In Motion Limited System and method for over the air provisioning of a mobile communications device
US7669230B2 (en) * 2005-03-30 2010-02-23 Symbol Technologies, Inc. Secure switching system for networks and method for securing switching
US20060240802A1 (en) * 2005-04-26 2006-10-26 Motorola, Inc. Method and apparatus for generating session keys
US20070011448A1 (en) * 2005-07-06 2007-01-11 Microsoft Corporation Using non 5-tuple information with IPSec
US8559921B2 (en) * 2005-08-17 2013-10-15 Freescale Semiconductor, Inc. Management of security features in a communication network
KR101137340B1 (ko) * 2005-10-18 2012-04-19 엘지전자 주식회사 릴레이 스테이션의 보안 제공 방법
JP5238141B2 (ja) 2006-04-25 2013-07-17 トヨタ自動車株式会社 液圧式ユニットの支持構造
KR101196100B1 (ko) * 2006-05-13 2012-11-02 삼성전자주식회사 통신 시스템에서 인증 방법 및 그 장치
US8086216B2 (en) * 2007-01-31 2011-12-27 Alcatel Lucent Mobility aware policy and charging control in a wireless communication network
KR101341720B1 (ko) * 2007-05-21 2013-12-16 삼성전자주식회사 이동통신 시스템에서 프록시 이동 인터넷 프로토콜을 이용한 단말의 이동성 관리 방법 및 시스템과 이를 위한 단말의 홈 주소 할당 방법
JP4964683B2 (ja) 2007-06-18 2012-07-04 株式会社リコー 通信装置およびプログラム
US8667151B2 (en) * 2007-08-09 2014-03-04 Alcatel Lucent Bootstrapping method for setting up a security association
JP4586075B2 (ja) * 2008-02-06 2010-11-24 株式会社エヌ・ティ・ティ・ドコモ 無線端末及び無線通信方法
DE602009000944D1 (de) * 2008-04-11 2011-05-05 Innovative Sonic Ltd Verfahren und Vorrichtung zur Handhabung des Weiterleitungsverfahrens
CN101321395B (zh) * 2008-06-24 2012-01-11 中兴通讯股份有限公司 下一代网络中支持移动性安全的方法与系统
WO2010151182A1 (en) * 2009-06-22 2010-12-29 Telefonaktiebolaget L M Ericsson (Publ) A method and an arrangement for handling security in a telecommunications system
BR112012018268B1 (pt) * 2010-03-17 2021-02-02 Telefonaktiebolaget Lm Ericsson (Publ) métodos, nó que serve um terminal móvel e terminal móvel
CN103888941B (zh) 2012-12-20 2018-03-06 新华三技术有限公司 一种无线网络密钥协商的方法及装置
PT3360359T (pt) * 2015-10-08 2019-09-26 Ericsson Telefon Ab L M Nós para utilização numa rede de comunicação e seus métodos de funcionamento
US10390277B2 (en) * 2016-11-30 2019-08-20 Samsung Electronics Co., Ltd. MOBIKE aware LTE to Wi-Fi handoff optimization
CN110637451B (zh) * 2017-03-17 2022-04-01 瑞典爱立信有限公司 用在通信网络中的网络节点、通信设备和操作其的方法
US11196726B2 (en) * 2019-03-01 2021-12-07 Cisco Technology, Inc. Scalable IPSec services
US11146959B2 (en) * 2019-10-29 2021-10-12 Arista Networks, Inc. Security association reuse for multiple connections
US12289600B2 (en) 2019-10-29 2025-04-29 Arista Networks, Inc. Establishing multiple security associations in a connection operation

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5293423A (en) 1989-09-12 1994-03-08 Telefonaktiebolaget L M Ericsson Synchronizing method in a mobile radio system
US5081679A (en) 1990-07-20 1992-01-14 Ericsson Ge Mobile Communications Holding Inc. Resynchronization of encryption systems upon handoff
US5243653A (en) 1992-05-22 1993-09-07 Motorola, Inc. Method and apparatus for maintaining continuous synchronous encryption and decryption in a wireless communication system throughout a hand-off
JPH06351062A (ja) * 1993-06-10 1994-12-22 Fujitsu Ltd ハンドオーバー時の秘話機能継続方式
US5444766A (en) * 1993-10-01 1995-08-22 At&T Corp. Mobile-synchronized handoff in a wireless communications system
US5546464A (en) 1994-09-16 1996-08-13 Ericsson Inc. Method of and apparatus for selective resynchronization in a digital cellular communications system
US5778075A (en) * 1996-08-30 1998-07-07 Telefonaktiebolaget, L.M. Ericsson Methods and systems for mobile terminal assisted handover in an private radio communications network
US6253321B1 (en) * 1998-06-19 2001-06-26 Ssh Communications Security Ltd. Method and arrangement for implementing IPSEC policy management using filter code
US6587680B1 (en) * 1999-11-23 2003-07-01 Nokia Corporation Transfer of security association during a mobile terminal handover

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102843368A (zh) * 2004-03-03 2012-12-26 北方电讯网络有限公司 维持安全网络连接的技术
WO2007033548A1 (en) * 2005-09-19 2007-03-29 Huawei Technologies Co., Ltd. A method and device for obtaining the security association information during the mobile terminal handoff procedure
CN1937840B (zh) * 2005-09-19 2011-04-13 华为技术有限公司 一种移动终端切换过程中获得安全联盟信息的方法及装置
CN1988716B (zh) * 2005-12-21 2010-05-05 华为技术有限公司 保证移动台和基站之间通讯安全的方法
CN101022647B (zh) * 2006-02-15 2010-09-08 华为技术有限公司 切换处理过程中确定安全协商参数的实现方法及装置
CN101022418B (zh) * 2007-03-14 2010-05-26 华为技术有限公司 Hmip认证方法、设备及系统
CN104780540A (zh) * 2008-03-28 2015-07-15 爱立信电话股份有限公司 切换期间被操纵或有缺陷基站的识别
CN104780540B (zh) * 2008-03-28 2018-12-14 爱立信电话股份有限公司 切换期间被操纵或有缺陷基站的识别
CN102546154A (zh) * 2011-12-19 2012-07-04 上海顶竹通讯技术有限公司 移动通信网络以及终端的切换方法
CN102546154B (zh) * 2011-12-19 2015-09-16 上海顶竹通讯技术有限公司 移动通信网络中终端的切换方法

Also Published As

Publication number Publication date
EP1142400A2 (en) 2001-10-10
WO2000041427A3 (en) 2000-11-02
JP2002534930A (ja) 2002-10-15
DE60035953T2 (de) 2008-05-08
AU2335300A (en) 2000-07-24
WO2000041427A2 (en) 2000-07-13
JP2006319971A (ja) 2006-11-24
JP4515411B2 (ja) 2010-07-28
EP1142400B1 (en) 2007-08-15
DE60035953D1 (de) 2007-09-27
US6418130B1 (en) 2002-07-09

Similar Documents

Publication Publication Date Title
CN1337134A (zh) 重新使用安全关联以改善切换性能
US7181012B2 (en) Secured map messages for telecommunications networks
JP5597676B2 (ja) 鍵マテリアルの交換
US6976177B2 (en) Virtual private networks
KR100480258B1 (ko) 무선 근거리 네트워크에서 고속 핸드오버를 위한 인증방법
TWI394415B (zh) 於無線通信網路中用於提供代理行動網際網路協定金鑰階層之方法及裝置
US8127136B2 (en) Method for security association negotiation with extensible authentication protocol in wireless portable internet system
KR101438243B1 (ko) Sim 기반 인증방법
US8186026B2 (en) Technique for maintaining secure network connections
US7130286B2 (en) System and method for resource authorizations during handovers
EP1374533B1 (en) Facilitating legal interception of ip connections
US20240365112A1 (en) Method and apparatus for security context handling during inter-system change
CN101610507A (zh) 一种接入3g-wlan互联网络的方法
CN1254143C (zh) 一种移动终端在无线局域网接入站间安全切换的方法
US7895648B1 (en) Reliably continuing a secure connection when the address of a machine at one end of the connection changes
JP4305087B2 (ja) 通信ネットワークシステム及びそのセキュリティ自動設定方法
CN109361684B (zh) 一种vxlan隧道的动态加密方法和系统
CN1225871C (zh) 一种无线局域网内加密密钥的分发方法
JP2004135134A (ja) 無線通信用アダプタ
KR20110030126A (ko) 심리스한 fmc 서비스 제공 방법
HK40129936A (en) Method and apparatus for security context handling during intersystem change
WO2024231424A1 (en) Secure delivery in mobile network access
CN1650580A (zh) 保证数据终端与数据处理局域网之间链路安全的方法及实现该方法的数据终端

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C02 Deemed withdrawal of patent application after publication (patent law 2001)
WD01 Invention patent application deemed withdrawn after publication