WO2006037864A3 - Method for controlling access of an originating terminal to a network using a blocking-mode tunnel, and computer programmes for implementing same - Google Patents

Method for controlling access of an originating terminal to a network using a blocking-mode tunnel, and computer programmes for implementing same Download PDF

Info

Publication number
WO2006037864A3
WO2006037864A3 PCT/FR2005/001881 FR2005001881W WO2006037864A3 WO 2006037864 A3 WO2006037864 A3 WO 2006037864A3 FR 2005001881 W FR2005001881 W FR 2005001881W WO 2006037864 A3 WO2006037864 A3 WO 2006037864A3
Authority
WO
WIPO (PCT)
Prior art keywords
originating terminal
blocking
controlling access
network
tunnel
Prior art date
Application number
PCT/FR2005/001881
Other languages
French (fr)
Other versions
WO2006037864A2 (en
Inventor
Laurent Butti
Olivier Charles
Franck Veysset
Original Assignee
France Telecom
Laurent Butti
Olivier Charles
Franck Veysset
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by France Telecom, Laurent Butti, Olivier Charles, Franck Veysset filed Critical France Telecom
Publication of WO2006037864A2 publication Critical patent/WO2006037864A2/en
Publication of WO2006037864A3 publication Critical patent/WO2006037864A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/164Implementing security features at a particular protocol layer at the network layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/166Implementing security features at a particular protocol layer at the transport layer

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)

Abstract

The invention concerns in particular a method for controlling access of an originating terminal (T_SOUR) comprising a firewall (PF) and an authentication portal, said portal setting and maintaining the firewall in an access-authorizing state in response to a valid initial access request in basic mode coming from the originating terminal, and to the subsequent periodic supply of a valid authentication token, the originating terminal being further capable of communicating in tunnel mode with a destination terminal of the network via a blocking tunnel (M_BLQ). The invention is characterized in that the periodic supply of the authentication token is performed by transmission on an unblocked port of the level 3 layer of the OSI model, such that the token continues to be supplied during a communication in blocking tunnel mode.
PCT/FR2005/001881 2004-10-01 2005-07-21 Method for controlling access of an originating terminal to a network using a blocking-mode tunnel, and computer programmes for implementing same WO2006037864A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
FR0410398 2004-10-01
FR0410398 2004-10-01

Publications (2)

Publication Number Publication Date
WO2006037864A2 WO2006037864A2 (en) 2006-04-13
WO2006037864A3 true WO2006037864A3 (en) 2007-04-05

Family

ID=34952474

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/FR2005/001881 WO2006037864A2 (en) 2004-10-01 2005-07-21 Method for controlling access of an originating terminal to a network using a blocking-mode tunnel, and computer programmes for implementing same

Country Status (1)

Country Link
WO (1) WO2006037864A2 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6317838B1 (en) * 1998-04-29 2001-11-13 Bull S.A. Method and architecture to provide a secured remote access to private resources
US20030055990A1 (en) * 2001-08-23 2003-03-20 Hughes Electronics Corporation, Single-modem multi-user virtual private network

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6317838B1 (en) * 1998-04-29 2001-11-13 Bull S.A. Method and architecture to provide a secured remote access to private resources
US20030055990A1 (en) * 2001-08-23 2003-03-20 Hughes Electronics Corporation, Single-modem multi-user virtual private network

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
TANEMBAUM A S: "Computer Networks,Fourth Edition, passage", COMPUTER NETWORKS, NORTH HOLLAND, AMSTERDAM,, NL, 2003, XP002325798, ISSN: 0376-5075 *

Also Published As

Publication number Publication date
WO2006037864A2 (en) 2006-04-13

Similar Documents

Publication Publication Date Title
WO2004077848A3 (en) Key control with real time communications to remote locations
WO2005029215A3 (en) Method of controlling communication between devices in a network and apparatus for the same
WO2003100990A3 (en) Method and system for access point roaming
WO2001065769A3 (en) Network resource control system
WO2005072107A3 (en) System and method of network congestion control by udp source throttling
WO2001031855A3 (en) Establishing dynamic tunnel access sessions in a communication network
WO2007087608A3 (en) System, method, and interface for segregation of a session controller and a security gateway
WO2008036311A3 (en) Direct link setup mechanisms for wireless lans
WO2006114701A3 (en) Method, apparatus and software product for combination of ul dpcch gating and enhanced ul dch to improve capacity
EP1775903A3 (en) A dynamic tunnel construction method for secure access to a private LAN and apparatus therefor
WO2006028674A3 (en) A system and method for sharing an ip address
WO2005104425A3 (en) Method and system for verifying and updating the configuration of an access device during authentication
WO2001095562A3 (en) Method for ensuring access to a transmission medium
AU2003301157A1 (en) Apparatus and method for controlling and managing individual directed sessions in a communications system
WO2002073883A3 (en) Method and apparatus for establishing a protocol proxy for a mobile host terminal in a multimedia session
WO2006017756A3 (en) Method and system for controlling access to a wireless client device
WO2006113525A3 (en) Method and apparatus for authenticating a mobile station in a wireless communication network
ATE387669T1 (en) TECHNOLOGY TO IMPROVE ANNOUNCINGS IN MOBILE-ORIGINATED CALLS
WO2005091218A3 (en) Premises management system
WO2003093951A3 (en) Improved access point and wireless network controller
WO2007130006A3 (en) System and method for remotely assigning and revoking access credentials using a near field communication equipped mobile phone
EP1363428A3 (en) In-band flow control methods for communications systems
WO2005065133A3 (en) Communication system with adopted remote identity
WO2006071501A3 (en) Authentication for ad hoc network setup
WO2005036321A3 (en) A system and method for accessing network and data services

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU LV MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase