SG11201802845YA - Certificate management method and apparatus in network functions virtualization architecture - Google Patents

Certificate management method and apparatus in network functions virtualization architecture

Info

Publication number
SG11201802845YA
SG11201802845YA SG11201802845YA SG11201802845YA SG11201802845YA SG 11201802845Y A SG11201802845Y A SG 11201802845YA SG 11201802845Y A SG11201802845Y A SG 11201802845YA SG 11201802845Y A SG11201802845Y A SG 11201802845YA SG 11201802845Y A SG11201802845Y A SG 11201802845YA
Authority
SG
Singapore
Prior art keywords
management method
network functions
certificate management
functions virtualization
virtualization architecture
Prior art date
Application number
SG11201802845YA
Other languages
English (en)
Inventor
Wenji Liu
Jiangsheng Wang
Original Assignee
Huawei Tech Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Tech Co Ltd filed Critical Huawei Tech Co Ltd
Publication of SG11201802845YA publication Critical patent/SG11201802845YA/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/28Restricting access to network management systems or functions, e.g. using authorisation function to access network configuration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0894Policy-based network configuration management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0895Configuration of virtualised networks or elements, e.g. virtualised network function or OpenFlow elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • G06F2009/45595Network integration; Enabling network access in virtual machine instances

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
SG11201802845YA 2015-10-21 2015-10-21 Certificate management method and apparatus in network functions virtualization architecture SG11201802845YA (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2015/092386 WO2017066931A1 (fr) 2015-10-21 2015-10-21 Procédé et dispositif de gestion de certificat dans une architecture de virtualisation de fonction de réseau

Publications (1)

Publication Number Publication Date
SG11201802845YA true SG11201802845YA (en) 2018-05-30

Family

ID=58556615

Family Applications (1)

Application Number Title Priority Date Filing Date
SG11201802845YA SG11201802845YA (en) 2015-10-21 2015-10-21 Certificate management method and apparatus in network functions virtualization architecture

Country Status (6)

Country Link
US (1) US11070541B2 (fr)
EP (1) EP3355543B1 (fr)
KR (1) KR20180066148A (fr)
CN (1) CN108028827B (fr)
SG (1) SG11201802845YA (fr)
WO (1) WO2017066931A1 (fr)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP3380940A1 (fr) * 2015-11-24 2018-10-03 NEC Laboratories Europe GmbH Procédé et réseau pour gérer et orchestrer des fonctions de réseau virtuel et des applications de réseau
EP3440824B1 (fr) * 2016-04-25 2020-06-03 Huawei Technologies Co., Ltd. Serveur de bordure et procédé d'exploitation d'un serveur de bordure
US10318723B1 (en) * 2016-11-29 2019-06-11 Sprint Communications Company L.P. Hardware-trusted network-on-chip (NOC) and system-on-chip (SOC) network function virtualization (NFV) data communications
JP7208707B2 (ja) * 2017-02-17 2023-01-19 キヤノン株式会社 情報処理装置及びその制御方法とプログラム
CN109756356B (zh) * 2017-11-07 2021-09-21 华为技术有限公司 设备升级方法及装置
CN112688904A (zh) * 2019-10-18 2021-04-20 中兴通讯股份有限公司 一种安全通道建立方法、电子设备及存储介质
US20210377054A1 (en) * 2020-05-26 2021-12-02 Verizon Patent And Licensing Inc. Systems and methods for managing public key infrastructure certificates for components of a network
US12010510B2 (en) * 2021-07-02 2024-06-11 Commscope Technologies Llc Systems and methods for secure virtualized base station orchestration
CN113746802B (zh) * 2021-08-02 2022-12-09 北京邮电大学 网络功能虚拟化中的方法以及本地状态和远程状态全存储的vnf装置
US11743106B2 (en) 2021-10-08 2023-08-29 Dell Products L.P. Rapid appraisal of NIC status for high-availability servers
CN117318970A (zh) * 2022-06-23 2023-12-29 中兴通讯股份有限公司 安全通道建立方法、系统及存储介质

Family Cites Families (27)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7047415B2 (en) * 1997-09-22 2006-05-16 Dfs Linkages, Inc. System and method for widely witnessed proof of time
AU2003213910A1 (en) * 2002-03-20 2003-09-29 Research In Motion Limited Certificate information storage system and method
KR100501172B1 (ko) * 2003-07-31 2005-07-18 에스케이 텔레콤주식회사 무선 인터넷을 위한 무선 인증서 상태 관리 시스템 및방법과 이를 이용한 무선 인증서 상태 검증 방법
KR100730164B1 (ko) * 2005-11-18 2007-06-19 삼성에스디아이 주식회사 디스플레이 패널의 구동장치
JP4915182B2 (ja) 2006-09-12 2012-04-11 コニカミノルタホールディングス株式会社 情報の管理方法及び情報処理装置
US9003201B2 (en) 2008-02-26 2015-04-07 David Pohm Hardware protection for encrypted strings and protection of security parameters
US20090239503A1 (en) * 2008-03-20 2009-09-24 Bernard Smeets System and Method for Securely Issuing Subscription Credentials to Communication Devices
JP4342595B1 (ja) * 2008-05-09 2009-10-14 株式会社東芝 情報処理装置、情報処理システム、および暗号化情報管理方法
US8341625B2 (en) 2008-05-29 2012-12-25 Red Hat, Inc. Systems and methods for identification and management of cloud-based virtual machines
CN101572707B (zh) 2009-05-31 2012-08-08 成都市华为赛门铁克科技有限公司 一种证书状态的验证方法、装置和系统
US20120054486A1 (en) * 2010-08-31 2012-03-01 MindTree Limited Securing A Virtual Environment And Virtual Machines
US20140052877A1 (en) * 2012-08-16 2014-02-20 Wenbo Mao Method and apparatus for tenant programmable logical network for multi-tenancy cloud datacenters
EP2939368A4 (fr) * 2012-12-31 2016-01-13 Aastra Technologies Ltd Approvisionnement vpn à distance d'un point terminal
KR101438104B1 (ko) * 2013-01-28 2014-09-24 이니텍(주) 인증서를 클라우드 저장소 서버가 관리하는 방법
US9237021B2 (en) * 2013-03-15 2016-01-12 Hewlett Packard Enterprise Development Lp Certificate grant list at network device
EP2782291A1 (fr) * 2013-03-20 2014-09-24 Wolting Holding B.V. Compilateur et procédé de réseautage défini par logiciel
CN103257934B (zh) * 2013-04-12 2016-02-10 广东数字证书认证中心有限公司 数字证书的存储、获取方法和装置
US9973375B2 (en) * 2013-04-22 2018-05-15 Cisco Technology, Inc. App store portal providing point-and-click deployment of third-party virtualized network functions
WO2015031512A1 (fr) * 2013-08-27 2015-03-05 Huawei Technologies Co., Ltd. Système et procédé de virutalisation de fonction de réseau mobile
US9158909B2 (en) * 2014-03-04 2015-10-13 Amazon Technologies, Inc. Authentication of virtual machine images using digital certificates
US11294698B2 (en) * 2014-03-10 2022-04-05 Nokia Solutions And Networks Oy Waiting a host determined specific amount of time before performing virtual network function migration
CN105122738B (zh) 2014-03-26 2018-06-15 华为技术有限公司 基于网络功能虚拟化的证书配置方法、装置和系统
EP3133768B1 (fr) 2014-05-08 2019-07-31 Huawei Technologies Co. Ltd. Procédé et dispositif d'acquisition de certificat
EP3770781B1 (fr) * 2014-09-30 2022-06-08 Citrix Systems, Inc. Connexion rapide par carte à puce et connexion par domaine complet fédéré
CN104636184B (zh) 2014-12-29 2018-05-01 上海华为技术有限公司 虚拟机实例的部署方法和装置及设备
CN104580208B (zh) * 2015-01-04 2018-11-30 华为技术有限公司 一种身份认证方法及装置
CN104980438B (zh) 2015-06-15 2018-07-24 中国科学院信息工程研究所 一种虚拟化环境中数字证书撤销状态检查的方法和系统

Also Published As

Publication number Publication date
WO2017066931A1 (fr) 2017-04-27
KR20180066148A (ko) 2018-06-18
CN108028827B (zh) 2020-09-29
EP3355543A1 (fr) 2018-08-01
US20180248867A1 (en) 2018-08-30
EP3355543B1 (fr) 2019-08-28
CN108028827A (zh) 2018-05-11
EP3355543A4 (fr) 2018-10-24
US11070541B2 (en) 2021-07-20

Similar Documents

Publication Publication Date Title
HK1224043A1 (zh) 用於在網絡交互系統中識別用戶可信行為的方法及裝置
SG11201802845YA (en) Certificate management method and apparatus in network functions virtualization architecture
EP3041179B8 (fr) Procédé et appareil destinés à être utilisés dans la gestion de réseau
EP3092779A4 (fr) Système et procédé pour le zonage dans les réseaux sdn
EP3404878C0 (fr) Appareil de réseau virtuel, et procédé associé
EP3082314A4 (fr) Procédé et appareil de gestion de ressources
EP3082307A4 (fr) Procédé et appareil de calcul de chemin de réseau
EP3101935A4 (fr) Procédé et appareil pour appliquer des ressources dans un système de réseau hétérogène
GB201417565D0 (en) Identity and risk management system and method
EP3389313A4 (fr) Appareil de gestion de tranche de réseau, et procédé de gestion de tranche de réseau
KR101461202B9 (ko) 가상 현실용 운동기구 시스템 및 운용방법
EP3196797A4 (fr) Procédé et dispositif de réseau pour authentifier une intégrité de programme d'application
EP3200393A4 (fr) Procédé et dispositif de gestion de fonctions de réseau virtuel
HK1213111A1 (zh) 種網絡應用中訪問功能的方法和設備
EP3016316A4 (fr) Procédé et appareil de commande de réseau
EP3057348A4 (fr) Procédé et appareil de gestion pour partage de réseau
EP3101933A4 (fr) Procédé et appareil d'attribution d'identifiants de cellules physiques
GB2540804B (en) Hardware power management apparatus and methods
EP3063910A4 (fr) Système et procédé de création de chaînes de service et de réseaux virtuels sur un cloud
GB201301659D0 (en) Network method and apparatus
EP3267654A4 (fr) Procédé et appareil de gestion de fonction de réseau virtualisé
GB201514461D0 (en) Apparatus and method for communications management
HK1231638A1 (zh) 充電管理裝置、充電裝置以及充電管理方法
EP3062480A4 (fr) Procédé et appareil de traitement de services en réseau
EP2985954A4 (fr) Procédé et appareil de traitement d'accès à un réseau sécurisé