DE60317332D1 - Verfahren zum einrichten einer sicherheitsassoziation - Google Patents

Verfahren zum einrichten einer sicherheitsassoziation

Info

Publication number
DE60317332D1
DE60317332D1 DE60317332T DE60317332T DE60317332D1 DE 60317332 D1 DE60317332 D1 DE 60317332D1 DE 60317332 T DE60317332 T DE 60317332T DE 60317332 T DE60317332 T DE 60317332T DE 60317332 D1 DE60317332 D1 DE 60317332D1
Authority
DE
Germany
Prior art keywords
node
setting
safety association
security association
association
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
DE60317332T
Other languages
English (en)
Other versions
DE60317332T2 (de
Inventor
Bajko Gabor
Tao Haukka
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nokia Oyj
Original Assignee
Nokia Oyj
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nokia Oyj filed Critical Nokia Oyj
Publication of DE60317332D1 publication Critical patent/DE60317332D1/de
Application granted granted Critical
Publication of DE60317332T2 publication Critical patent/DE60317332T2/de
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/164Implementing security features at a particular protocol layer at the network layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • H04L63/205Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1069Session establishment or de-establishment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1101Session protocols
    • H04L65/1104Session initiation protocol [SIP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/12Detection or prevention of fraud
    • H04W12/121Wireless intrusion detection systems [WIDS]; Wireless intrusion prevention systems [WIPS]
    • H04W12/122Counter-measures against attacks; Protection against rogue devices
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/35Network arrangements, protocols or services for addressing or naming involving non-standard use of addresses for implementing network functionalities, e.g. coding subscription information within the address or functional addressing, i.e. assigning an address to a function
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/10Architectures or entities
    • H04L65/1016IP multimedia subsystem [IMS]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Business, Economics & Management (AREA)
  • General Business, Economics & Management (AREA)
  • Multimedia (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Alarm Systems (AREA)
  • Burglar Alarm Systems (AREA)
  • Air Bags (AREA)
  • Sewing Machines And Sewing (AREA)
DE60317332T 2002-07-10 2003-07-08 Verfahren zum einrichten einer sicherheitsassoziation Expired - Lifetime DE60317332T2 (de)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
GB0216000 2002-07-10
GBGB0216000.0A GB0216000D0 (en) 2002-07-10 2002-07-10 A method for setting up a security association
PCT/IB2003/003317 WO2004008712A1 (en) 2002-07-10 2003-07-08 A method for setting up a security association

Publications (2)

Publication Number Publication Date
DE60317332D1 true DE60317332D1 (de) 2007-12-20
DE60317332T2 DE60317332T2 (de) 2008-08-28

Family

ID=9940202

Family Applications (1)

Application Number Title Priority Date Filing Date
DE60317332T Expired - Lifetime DE60317332T2 (de) 2002-07-10 2003-07-08 Verfahren zum einrichten einer sicherheitsassoziation

Country Status (7)

Country Link
US (1) US20040117657A1 (de)
EP (1) EP1520393B1 (de)
AT (1) ATE377895T1 (de)
AU (1) AU2003249429A1 (de)
DE (1) DE60317332T2 (de)
GB (1) GB0216000D0 (de)
WO (1) WO2004008712A1 (de)

Families Citing this family (36)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4380198B2 (ja) * 2003-03-31 2009-12-09 株式会社日立製作所 ストレージ装置でアクセス制御を行う計算機システム
GB2413462A (en) * 2004-04-23 2005-10-26 Matsushita Electric Ind Co Ltd Duplicate Address Detection Optimisation
GB2413461B (en) * 2004-04-23 2006-05-10 Matsushita Electric Ind Co Ltd Crytographic optimisation for duplicate address detection
WO2005107145A1 (en) * 2004-05-03 2005-11-10 Nokia Corporation Handling of identities in a trust domain of an ip network
US20060047840A1 (en) * 2004-08-31 2006-03-02 Peter Postmus Method and session initiation protocol (SIP) server for the exchange of end-point capabilities
GB2423220B (en) * 2005-02-11 2009-10-07 Ericsson Telefon Ab L M Method and apparatus for ensuring privacy in communications between parties
US8407240B2 (en) 2006-01-03 2013-03-26 International Business Machines Corporation Autonomic self-healing network
US20070300067A1 (en) * 2006-06-03 2007-12-27 Roselyn, Llc Notice of Revocation System for Revocable or Modifiable Documents
CN101090562B (zh) * 2006-06-15 2012-05-02 华为技术有限公司 在ip多媒体子***中传递用户终端位置信息的方法及装置
US20080002710A1 (en) * 2006-06-29 2008-01-03 Motorola, Inc. System and method for routing communications to mobile stations
CN101102185B (zh) * 2006-07-06 2012-03-21 朗迅科技公司 Ims会话的媒体安全
JP4866802B2 (ja) * 2006-09-11 2012-02-01 Kddi株式会社 セキュリティ最適化システムおよびセキュリティ最適化方法
US8046820B2 (en) * 2006-09-29 2011-10-25 Certes Networks, Inc. Transporting keys between security protocols
FR2908540A1 (fr) * 2006-11-15 2008-05-16 France Telecom Deploiement de bases dnssec
ATE480086T1 (de) * 2006-12-11 2010-09-15 Ericsson Telefon Ab L M Dienstanpassung in einem ip-multimedia-subsystem- netz
JP4445516B2 (ja) * 2007-04-27 2010-04-07 株式会社東芝 情報処理装置
US8295486B2 (en) 2007-09-28 2012-10-23 Research In Motion Limited Systems, devices, and methods for outputting alerts to indicate the use of a weak hash function
WO2009051528A1 (en) * 2007-10-17 2009-04-23 Telefonaktiebolaget Lm Ericsson (Publ). Method and arragement for deciding a security setting
US7944854B2 (en) * 2008-01-04 2011-05-17 Cisco Technology, Inc. IP security within multi-topology routing
CN101478755B (zh) 2009-01-21 2011-05-11 中兴通讯股份有限公司 一种网络安全的http协商的方法及其相关装置
US8327228B2 (en) 2009-09-30 2012-12-04 Intel Corporation Home agent data and memory management
US8799586B2 (en) 2009-09-30 2014-08-05 Intel Corporation Memory mirroring and migration at home agent
GB201015324D0 (en) * 2010-09-14 2010-10-27 Vodafone Ip Licensing Ltd Secure association
US9027088B2 (en) * 2012-06-14 2015-05-05 Ericsson Modems Sa Systems and methods for protection of a SIP back-to-back user agent on modems
US9438507B2 (en) 2013-05-31 2016-09-06 Cisco Technology, Inc. Routing aggregation and prefix delegation
US9647981B2 (en) * 2013-10-02 2017-05-09 Sony Corporation Network discovery and connection using device addresses not correlated to a device
US20160142219A1 (en) * 2014-11-13 2016-05-19 Qualcomm Incorporated eMBMS Multicast Routing for Routers
KR102240727B1 (ko) * 2015-01-28 2021-04-15 삼성전자주식회사 통신 시스템에서 보안 연계를 설정하기 위한 장치 및 방법
US20160373405A1 (en) * 2015-06-16 2016-12-22 Amazon Technologies, Inc. Managing dynamic ip address assignments
US10397779B2 (en) * 2015-11-20 2019-08-27 Qualcomm Incorporated Secure fine timing measurement protocol
US10341979B2 (en) * 2015-11-20 2019-07-02 Qualcomm Incorporated Secure fine timing measurement protocol
US10091243B2 (en) * 2016-02-24 2018-10-02 Qualcomm Incorporated Apparatus and method for securely connecting to a remote server
US10306468B2 (en) 2016-06-29 2019-05-28 T-Mobile Usa, Inc. Internet protocol multimedia system session resurrection
US11165744B2 (en) 2018-12-27 2021-11-02 Juniper Networks, Inc. Faster duplicate address detection for ranges of link local addresses
US10965637B1 (en) * 2019-04-03 2021-03-30 Juniper Networks, Inc. Duplicate address detection for ranges of global IP addresses
US11582331B2 (en) * 2020-08-10 2023-02-14 T-Mobile Usa, Inc. Handling SIP messages with malformed header fields

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7032242B1 (en) * 1998-03-05 2006-04-18 3Com Corporation Method and system for distributed network address translation with network security features
US6992994B2 (en) * 2000-04-17 2006-01-31 Telcordia Technologies, Inc. Methods and systems for a generalized mobility solution using a dynamic tunneling agent
AU2000262769A1 (en) * 2000-07-21 2002-02-05 Bertenyi, Balazs Sip sessions between ipv4 and ipv6 clients and sip based call setup in 3gpp ip multimedia subsystem with nat in place
WO2002032170A1 (en) * 2000-10-09 2002-04-18 Nokia Corporation Address de-registration in ip multimedia networks
JP4491980B2 (ja) * 2001-03-05 2010-06-30 ソニー株式会社 通信処理システム、通信処理方法、および通信端末装置、並びにプログラム
JP4572476B2 (ja) * 2001-03-13 2010-11-04 ソニー株式会社 通信処理システム、通信処理方法、および通信端末装置、データ転送制御装置、並びにプログラム
US20020157024A1 (en) * 2001-04-06 2002-10-24 Aki Yokote Intelligent security association management server for mobile IP networks
US20040255039A1 (en) * 2001-05-10 2004-12-16 Bernard Honeisen Method, system and network element device for controlling sessions between terminals
FI116027B (fi) * 2001-09-28 2005-08-31 Netseal Mobility Technologies Menetelmä ja järjestelmä viestien turvallisen lähettämisen varmistamiseksi
US7159109B2 (en) * 2001-11-07 2007-01-02 Intel Corporation Method and apparatus to manage address translation for secure connections
US7574735B2 (en) * 2002-02-13 2009-08-11 Nokia Corporation Method and network element for providing secure access to a packet data network
US7373660B1 (en) * 2003-08-26 2008-05-13 Cisco Technology, Inc. Methods and apparatus to distribute policy information

Also Published As

Publication number Publication date
EP1520393A1 (de) 2005-04-06
GB0216000D0 (en) 2002-08-21
ATE377895T1 (de) 2007-11-15
EP1520393B1 (de) 2007-11-07
AU2003249429A1 (en) 2004-02-02
DE60317332T2 (de) 2008-08-28
WO2004008712A1 (en) 2004-01-22
US20040117657A1 (en) 2004-06-17

Similar Documents

Publication Publication Date Title
DE60317332D1 (de) Verfahren zum einrichten einer sicherheitsassoziation
DK1540490T3 (da) Fremgangsmåde og system til brugerinitieret inter-device, iter-system og inter-internet protokoladresse handoff
ATE289137T1 (de) Verfahren zur synchronisation von knoten eines kommunikationssystems
DE60202491D1 (de) Verfahren und System zum Steuern eines Kommunikationsnetzes und eines im Netz angewandten Routers
EP1596534A4 (de) Netzwerksystem, spanning-tree-konfigurationsverfahren, konfigurationsprogramm und spanning-tree-konfigurationsknoten
BRPI0413953A (pt) aparelhos e métodos para controle central de redes entrelaçadas
DE60333862D1 (de) Verfahren und Vorrichtung zur Protokollübersetzung in einem modularen System bestehend aus Netzwerkknoten und einem Koppelfeld
AU2003255044A1 (en) Network system, spanning tree structuring method, spanning tree structure node, and spanning tree structure program
ATE366018T1 (de) Identifizierungs-verfahren und -vorrichtung zum aufbau von hip-verbindungen zwischen gewöhnlichen und hip-fähigen netzknoten
FI20040514A0 (fi) Menetelmä ja laite solmuturvallisuuden tuottamiseksi pakettiverkon reitittimelle
WO2003001717A3 (en) Multicast in a point-to-point oriented packet-switched telecommunication network
AU2003283444A1 (en) Method, network nodes and system for selecting network nodes
WO2004062191A3 (en) Method and apparatus for implementing call processing in packet telephony networks
AU2003212470A8 (en) Method and process for signaling, communication and administration of networked objects
ATE514954T1 (de) Verfahren und system zur bereitstellung von ausfallschutz in einem ringnetzwerk mit label- wechsel
DE60307937D1 (de) Verfahren zum Garantieren der Anonymität von Benutzern sowie Drahtloses lokales Netzwerksystem (LAN)
GB2440884A (en) Method apparatus and system for establishing a direct route between agents of a sender node and a receiver node
DE60332306D1 (de) Paketkommunikationsendgerät, -system, -verfahren und -programm
DE60330925D1 (de) Kommunikationssystem, -gerät und -verfahren
WO2004075575A3 (en) Method and apparatus for establishing an invite-first communication session
AU2002356440A1 (en) Router, network system, and network setup method
DE60209430D1 (de) Router, Endgerät, Kommunikationssytem und Routing-verfahren
ATE322782T1 (de) Netzwerk und verfahren zum austausch von botschaften
TR199800608A3 (tr) Propanolamin türevleri, bunlarin üretim usulü.
AU2001271689A1 (en) Apparatus and method for efficient hashing in networks

Legal Events

Date Code Title Description
8364 No opposition during term of opposition