WO2011000168A1 - 一种获取本地域名的方法、装置及*** - Google Patents
一种获取本地域名的方法、装置及*** Download PDFInfo
- Publication number
- WO2011000168A1 WO2011000168A1 PCT/CN2009/072618 CN2009072618W WO2011000168A1 WO 2011000168 A1 WO2011000168 A1 WO 2011000168A1 CN 2009072618 W CN2009072618 W CN 2009072618W WO 2011000168 A1 WO2011000168 A1 WO 2011000168A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- server
- user equipment
- domain name
- dhcp
- local domain
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0892—Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/50—Address allocation
- H04L61/5007—Internet protocol [IP] addresses
- H04L61/5014—Internet protocol [IP] addresses using dynamic host configuration protocol [DHCP] or bootstrap protocol [BOOTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/062—Pre-authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W88/00—Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
- H04W88/02—Terminal devices
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W88/00—Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
- H04W88/14—Backbone network devices
Definitions
- the present invention relates to the field of communications, and in particular, to a method, device, and system for obtaining a local domain name. Background technique
- Extensible Authentication Protocol defines the authentication and key management architecture.
- the EAP authentication method is the end-to-end authentication between the EAP Client and the EAP Server.
- the EAP ⁇ ⁇ Gen text can be carried by different protocols between different network entities on the authentication path, for example, the AAA protocol is used between the Authenticator and the EAP Server. , Can be Diameter, Radius, etc.
- FIG. 2 shows an EAP authentication model: Extensible Authentication Protocol-Client EAP Client, also known as peer, requester (Supplicant ), they can be used interchangeably, they are the functional entity of the user terminal, used to respond to the EAP authentication initiated by the authenticator on the link, and complete the authentication with the Extensible Authentication Protocol-Server EAP Server.
- Authenticator generally located in the network access server NAS, is used to initiate the EAP authentication process on the link to complete the authentication between EAP Client and EAP Server. During the authentication process, the Authenticator forwards the EAP message and performs low-level protocol conversion.
- EAP Server server also known as backend authentication server (backend authentication server), AAA server, or re-authentication server (when performing re-authentication), or domain server for short, is used to provide authenticator Authentication service, that is, authentication of EAP Client.
- DSRK Doma in Spec if ic Root Key
- KDF EMSK, Doma in—ID I NULL I Peer— ID I Key-leng th
- KDF stands for key derivation function, which is usually a one-way Hash function.
- EMSK is the extended master session key.
- Doma in-ID is the domain name of the local domain
- Peer_ID is the user's identification
- Key_length is the key length.
- the acquisition process can be divided into two types: implicit and explicit: One is: the implicit ERP startup process, which is included in the full authentication process, where the local domain server requests DSRK and other related key materials from the home domain server; For the explicit ERP startup process, when the EAP client does not have a local domain name, it is initiated by the EAP client. In this process, the local domain server can also request related key materials such as DSRK from the home domain server.
- the inventor found that there are at least the following problems in the prior art:
- the current Some EAP architectures require the node to perform a complete EAP process with the authentication server in the home domain.
- a complete EAP authentication requires multiple rounds of EAP authentication message interaction, and the distance from the current authenticator to the home authentication server is relatively long, and there are multiple hops.
- the EAP client does not know the local domain name described by the client, and must perform a full authentication process again. Therefore, it takes a long time to perform a complete authentication when the node leaves the home domain.
- the network access authentication and key management during the handover are one of the main factors that cause the handover delay, and the handover delay for the node to re-authenticate It is one of the biggest problems of mobile networks. Summary of the invention
- the main purpose of the embodiments of the present invention is to provide a method, device, and system for obtaining a local domain name, so as to solve the problem that the user cannot obtain the local domain name after full authentication, so that the user equipment can quickly re-authenticate when switching.
- the handover delay is reduced, and the user experience is improved.
- An embodiment of the present invention provides a method for obtaining a local domain name, the method comprising: receiving a dynamic host configuration protocol DHCP request of a user equipment, the request carrying an option for instructing to return the domain name of the local domain where the user equipment is located ;
- the domain name of the local domain where the user equipment is located is obtained, and the domain name of the local domain where the user equipment is located is carried in a DHCP response message and returned to the user equipment.
- An embodiment of the present invention provides a device for obtaining a local domain name, the device including:
- the first receiving unit is configured to receive a dynamic host configuration protocol DHCP request of the user equipment, where the request carries an option for instructing to return the domain name of the local domain where the user equipment is located;
- the obtaining unit is configured to obtain the domain name of the local domain where the user equipment is located according to the DHCP request; the first sending unit is configured to carry the domain name of the local domain where the user equipment is obtained by the obtaining unit in a DHCP response message To the user equipment.
- An embodiment of the present invention provides another device for obtaining a local domain name
- the device includes: a second sending unit, which sends a dynamic host configuration protocol DHCP request to a first server, and the request carries an instruction to return to the user Option of the domain name of the local domain where the device is located;
- the second receiving unit is configured to receive a DHCP response message returned by the first server, and obtain the domain name of the local domain where the user equipment is located from the response message.
- An embodiment of the present invention provides a system for obtaining a local domain name, and the system includes:
- the user equipment is used to send a dynamic host configuration protocol DHCP request to the first server, where the request carries an option for instructing to return the domain name of the local domain where the user equipment is located; and receiving the DHCP response returned by the first server Message, and obtain the locality of the user equipment from the response message Geographical domain name;
- the first server is configured to receive a dynamic host configuration protocol DHCP request of the user equipment; obtain the domain name of the local domain where the user equipment is located according to the DHCP request, and carry the domain name of the local domain where the user equipment is located in the DHCP response message To the user equipment.
- a dynamic host configuration protocol DHCP request of the user equipment obtains the domain name of the local domain where the user equipment is located according to the DHCP request, and carry the domain name of the local domain where the user equipment is located in the DHCP response message To the user equipment.
- the user equipment sends a dynamic host configuration protocol DHCP request to the first server, and the request carries information indicating to return the domain name of the local domain where the user equipment is located.
- the first server carries the domain name of the local domain where the user equipment is located in a DHCP response message and returns it to the user equipment to perform fast re-authentication, reduce handover delay, and improve The degree of user experience.
- Fig. 1 is an extended authentication protocol EAP authentication model in the prior art provided in an embodiment of the present invention
- Fig. 2 is a flowchart of a method for obtaining a local domain name provided in an embodiment of the present invention
- Fig. 3 is a flowchart of another method for obtaining a local domain name provided in an embodiment of the present invention
- Fig. 4 is a flowchart of a specific implementation manner for obtaining a local domain name provided in an embodiment of the present invention
- Fig. 4a is an embodiment of the present invention
- FIG. 4b is a schematic diagram of the structure of a local domain name option of a dynamic host configuration protocol version 6 DHCPv 6 message provided in an embodiment of the present invention
- FIG. 5 is a flowchart of another specific implementation manner for obtaining a local domain name provided in an embodiment of the present invention
- Fig. 6 is a schematic structural diagram of an apparatus for obtaining a local domain name provided in an embodiment of the present invention
- Fig. ⁇ is an embodiment of the present invention
- FIG. 8 is a schematic structural diagram of a system for obtaining a local domain name provided in an embodiment of the present invention.
- FIG. 2 is a flowchart of a method for obtaining a local domain name provided in an embodiment of the present invention, and the method includes:
- Step S200 Receive a dynamic host configuration protocol DHCP request from the user equipment, where the request carries an option for instructing to return the domain name of the local domain where the user equipment is located.
- the user equipment may be a user, a user terminal, an ERP client, a DHCP client, a peer peer, a suppli cant requester, etc., which have the same physical meaning in this solution.
- the domain name of the local domain where the user equipment is located is the domain where the current network to which the user equipment is attached is located.
- the current network mainly refers to the visiting network, but it can also be the home network.
- Step S202 Obtain the domain name of the local domain where the user equipment is located according to the DHCP request, and carry the domain name of the local domain where the user equipment is located in a DHCP response message and return it to the user equipment.
- the obtaining the domain name of the local domain where the user equipment is located specifically includes:
- the second server receives the DHCP request and inserts the domain name of the local domain where the user equipment is located in the DHCP request, the insertion forwarded from the second server
- the domain name of the local domain where the user equipment is located is acquired in the DHCP request of the domain name of the local domain where the user equipment is located, where the domain name of the local domain where the user equipment is located is obtained by the second server from a third server.
- the first server may be a dynamic host configuration protocol DHCP server, the DHCP server is preferably located in the local network, or may be located in the home network; the second server may be a network access server NAS, used as a relay for the DHCP server Or the proxy can also be a DHCP relay or a DHCP proxy, or the relay or proxy function of the DHCP server can be realized through the existence of an internal module interface between the authenticator Authent i ca tor and the DHCP relay/agent.
- the second server and the first The server is physically available In order to separate or coexist;
- the third server is a local EAP server, or a home EAP server, or an AAA server with EAP function, or an AAA server with ERP function.
- the carrying the domain name of the local domain where the user equipment is located in a DHCP response message and returning it to the user equipment specifically includes: setting the domain name of the local domain where the user equipment is located in a local domain name option, and setting the local domain name option Encapsulated in a DHCP response message and sent to the user equipment.
- a dynamic host configuration protocol DHCP request from a user equipment is received, and the request carries an option for instructing to return the domain name of the local domain where the user equipment is located;
- the domain name of the local domain where the user equipment is located is obtained, and the domain name of the local domain where the user equipment is located is carried in a DHCP response message and returned to the user equipment to solve the problem that the user cannot obtain the local domain name after full authentication.
- the problem is that the user equipment can perform rapid re-authentication during handover, which reduces the handover delay and improves the user experience.
- Figure 3 is a flowchart of another method for obtaining a local domain name provided in an embodiment of the present invention.
- step S300 the dynamic host configuration protocol DHCP request is sent to the first server, and the request carries an option for instructing to return the domain name of the local domain where the user equipment is located.
- the sending a dynamic host configuration protocol DHCP request to the first server specifically includes:
- the domain name of the local domain where the user equipment is located is the domain where the current network to which the user equipment is attached is located.
- the current network mainly refers to the visiting network, but it can also be the home network.
- Step S302 Receive a DHCP response message returned by the first server, and obtain the domain name of the local domain where the user equipment is located from the response message.
- the sending of the dynamic host configuration protocol DHCP request to the first server specifically includes: through the second service
- the device sends a dynamic host configuration protocol DHCP request to the first server, where the first server and the second server are integrated on the same server, or set separately.
- the user equipment may be a user, a user terminal, an ERP client, a DHCP client, a peer peer, a suppli cant requester, etc., which have the same physical meaning in this solution.
- the first server may be a dynamic host configuration protocol DHCP server, the DHCP server is preferably located in the local network, or may be located in the home network; the second server may be a network access server NAS, used as a relay for the DHCP server Or a proxy, it can also be a DHCP relay or a DHCP proxy, or the authenticator Authent i ca tor has an internal module interface with the DHCP relay/agent to realize the relay or proxy function of the DHCP server, or it has the Authent i ca tor Both functions and DHCP relay/agent function servers are acceptable, and the second server and the first server can be physically separated or coexist.
- NAS network access server
- the authenticator Authent i ca tor has an internal module interface with the DHCP relay/agent to realize the relay or proxy function of the DHCP server, or it has the Authent i ca tor
- the DHCP request is sent to the first server through a dynamic host configuration protocol, and the request carries an option for instructing to return the domain name of the local domain where the user equipment is located.
- Figure 4 is a flowchart of a specific implementation method for obtaining a local domain name provided in an embodiment of the present invention.
- Step S400 After the user equipment is connected to the network, perform Extensible Authentication Protocol EAP full authentication.
- the user equipment may be a user, a user terminal, an ERP client, a DHCP client, a peer peer, a suppli cant requester, etc., which have the same physical meaning in this solution.
- the third server is a local EAP server, or a home EAP server, or an AAA server with EAP function, or an AAA server with ERP function.
- Step S402 The user equipment initiates a DHCP request message, and the request carries a message for instructing to return to the Describes the options of the domain name of the local domain where the user equipment is located.
- the domain name of the local domain where the user equipment is located is the domain where the current network to which the user equipment is attached is located.
- the current network mainly refers to the visiting network, but it can also be the home network.
- the DHCP request message may be a dynamic host configuration protocol version 4 (DHCPv4) DHCP discovery DHCP DISCOVERY message, a DHCP request DHCPREQUEST message, or a dynamic host configuration protocol version 6 DHCPv6 DHCP request DHCP Sol ic it message, a DHCP request DHCP Reques t
- the DHCP Information Request message carries the requested local domain name option information in the foregoing request message. For DHCPv4, it is the encoding of the local domain name option in the Parameter Request List (Parameter Request List); for DHCPv6, it is the encoding of the local domain name option in the Option Request Option (Opt ion Reques t Opt ion). Encoding.
- FIG. 4a and FIG. 4b For specific structural diagrams of options in the DHCP request message used to indicate the return of the information of the domain name of the local domain where the user equipment is located, please refer to FIG. 4a and FIG. 4b.
- Fig. 4a is a schematic structural diagram of a local domain name option of a dynamic host configuration protocol version 4 DHCPv4 message.
- This option is used to indicate or carry information that returns the domain name of the local domain where the user equipment is located,
- the code Code represents the number of the option, Used to distinguish from other options, for example, when the code is "100", it means the local domain name option (you can also define the specified value as the value of the code), for example, when the code value is "101" (you can also define the specified
- the value is the value of the code)
- this option can also be expressed as a sub-option of the relay agent information option relay-agent-information option, which is used for the DHCP relay/agent to insert local domain name information.
- Length Length Indicates the length of the option.
- Local domain name Loca l Doma in Name The domain name used to indicate the local domain where the user's device is located.
- the encoding format is the same as the ordinary i or name, such as www. example, com.
- Fig. 4b is a schematic diagram of the structure of the local domain name option of a dynamic host configuration protocol version 6 DHCPv6 message (DHCPv6 Loca l Doma in Name Option).
- 0PTI0N_L0CAL_D0MAIN_NAME represents the encoding value of the DHCPv6 local domain name option. For example, when “0PTI0N_L0CAL_D0MAIN_NAME is "103", it represents the local domain name option; (you can also define the specified value as the value of the code).
- Length Length Indicates the length of the option.
- Local domain name Loca l Doma in Name The domain name used to indicate the local domain where the user device is located.
- the coding format is the same as that of a normal domain name.
- Step S404 The first server receives the DHCP request, and obtains the domain name of the local domain where the user equipment is located according to the request.
- Step S406 The domain name of the local domain where the user equipment is located is carried in a DHCP response message and returned to the user equipment.
- the first server for example, a DHCP server, sets the local domain name in the local domain name option according to the DHCP request, and then includes the local domain name option in the DHCP response message and sends it to the user equipment.
- a DHCP server sets the local domain name in the local domain name option according to the DHCP request, and then includes the local domain name option in the DHCP response message and sends it to the user equipment.
- the response message may be a DHCPv4 DHCP response DHCPDISOFFER message, a DHCP confirmation DHCPACK message, or a DHCPv6 DHCP announcement DHCP Adver t i se message, a DHCP response DHCP Reply message, a DHCP notification response DHCP Information Rep ly and other messages.
- the first server may be located in a local network or a home network.
- Step S408 The user equipment receives a DHCP response message, and obtains the local domain name from the message.
- the user equipment after the EAP full authentication performed by the user equipment is passed, the user equipment initiates a DHCP request, and the request carries the domain name indicating the local domain where the user equipment is located.
- the first server receives the DHCP request, carries the domain name of the local domain where the user equipment is located, and returns it to the user equipment in a DHCP response message, thereby solving the problem that the user cannot obtain the local domain name after full authentication , Enabling the user equipment to perform rapid re-authentication during handover, reducing handover delay and improving user experience.
- Figure 5 is another specific implementation of obtaining a local domain name provided in an embodiment of the present invention Way flow chart.
- Step S500 After the user equipment is connected to the network, perform Extensible Authentication Protocol EAP full authentication.
- the user equipment may be a user, a user terminal, an ERP client, a DHCP client, a peer peer, a supplicant requester, etc., which have the same physical meaning in this solution.
- the user equipment performs EAP access full authentication with the third server. After the authentication is passed, the following steps are executed.
- Step S502 The third server sends an access success message including the local domain name information to the second server.
- the third server is a local EAP server, or a home EAP server, or an AAA server with EAP function, or an AAA server with ERP function;
- the second server may be a network access server NAS, which acts as a relay for the DHCP server Or a proxy, or an internal module interface between an authenticator and a DHCP relay/agent is used to implement the relay or proxy function of the DHCP server, or a server with an authenticator function or a DHCP relay/agent function can be used, the second server It can physically separate or coexist with the first server.
- Step S504 The second server receives and saves the domain name of the local domain where the user equipment is located.
- Step S506 The user equipment initiates a DHCP request message, and the request carries an option for instructing to return the domain name of the local domain where the user equipment is located.
- the DHCP request message may be a DHCP discovery DHCP DISCOVERY message and a DHCP request DHCPREQUEST message of the Dynamic Host Configuration Protocol version 4 DHCPv4, or a DHCP request DHCP Solicit message of the Dynamic Host Configuration Protocol version 6 DHCPv6, a DHCP request DHCP Request message, a DHCP notification request DHCP
- the Information Request message carries the requested local domain name option information in the above request message. For DHCPv4, it is with the encoding of the local domain name option in the Parameter Request List (Parameter Request List); for DHCPv6, it is the encoding with the local domain name option in the Option Request Option (Option Request Option).
- the specific DHCP request message is used to indicate the return of the domain name of the local domain where the user equipment is located.
- FIG. 4a and FIG. 4b which have been described in detail in the above description of FIG. 4, and will not be repeated here.
- Step S508 The second server receives the DHCP request, inserts the domain name of the local domain where the user equipment is located in the request, and forwards the DHCP request to the first server.
- the second server may also not insert the domain name of the local domain where the user equipment is located in forwarding the DHCP request.
- the DHCP server sends a DHCP response message, so The second server forwards the DHCP response message, inserts the acquired domain name of the local domain where the user equipment is located in the response message, and sends it to the user equipment through the DHCP response message.
- Step S512 The user equipment receives a DHCP response message, and obtains the local domain name from the message.
- the second server After the second server passes the EAP full authentication of the user equipment, it obtains and stores the domain name of the local domain where the user equipment is located from the third server.
- the second server inserts the local domain name information into the DHCP request message and sends it to the first server. After being received by the first server, it obtains the local domain name information, and carries the local domain name.
- the DHCP response message is sent to the user equipment, thereby solving the problem that the user cannot obtain the local domain name after full authentication, enabling the user equipment to perform rapid re-authentication during handover, reducing the handover delay, and improving the user experience.
- FIG. 6 is a schematic structural diagram of an apparatus for obtaining a local domain name provided in an embodiment of the present invention.
- a device for obtaining a local domain name comprising:
- the first receiving unit 600 is configured to receive a dynamic host configuration protocol DHCP request of the user equipment, where the request carries an option used to instruct to return the domain name of the local domain where the user equipment is located;
- the obtaining unit 602 is configured to obtain the domain name of the local domain where the user equipment is located according to the DHCP request;
- the first sending unit 604 is configured to carry the domain name of the local domain where the user equipment is located obtained by the obtaining unit in a DHCP response message and return it to the user equipment.
- the obtaining unit 602 is specifically configured to obtain the domain name of the local domain where the user equipment is located from itself; or, after the second server receives the DHCP request and inserts the domain name of the local domain where the user equipment is located in the DHCP request Obtain the domain name of the local domain where the user equipment is located from the DHCP request forwarded by the second server inserted into the domain name of the local domain where the user equipment is located, where the domain name of the local domain where the user equipment is located is obtained by the second server from Obtained on the third server
- the domain name of the local domain where the user equipment is located is the domain where the current network to which the user equipment is attached is located.
- the current network mainly refers to the visiting network, but it can also be the home network.
- the user equipment may be a user, a user terminal, an ERP client, a DHCP client, a peer peer, a supplicant requester, etc., which have the same physical meaning in this solution.
- the first server may be a dynamic host configuration protocol DHCP server.
- the DHCP server is preferably located in the local network or the home network;
- the second server may be a network access server NAS, used as a relay for the DHCP server Or the proxy can also be a DHCP relay or a DHCP proxy, or the relay or proxy function of the DHCP server can be realized through the presence of an internal module interface between the Authenticator and the DHCP relay/proxy.
- the second server and the first server are physically It may be separated or coexisted, and the third server is a local EAP server, or a home EAP server, or an AAA server with EAP function, or an AAA server with ERP function.
- the DHCP request message may be a DHCP discovery DHCP DISCOVERY message of Dynamic Host Configuration Protocol version 4 DHCPv4, a DHCP request DHCPREQUEST message, or a DHCP Request DHCP Solicit message of Dynamic Host Configuration Protocol version 6 DHCPv6, a DHCP request DHCP Request message, a DHCP notification request DHCP
- the Information Request message carries the requested local domain name option information in the above request message. For DHCPv4, it is the encoding of the local domain name option in the parameter request list (Parameter Request List); for DHCPv6, it is the encoding of the local domain name option (Option Request List). Encoding with local domain name option in Reques t Opt ion).
- the dynamic host configuration protocol DHCP request of the user equipment is received, and the request carries instructions for indicating Return the domain name information of the local domain where the user equipment is located; the obtaining unit obtains the domain name of the local domain where the user equipment is located according to the DHCP request; the first sending unit transmits the local domain where the user equipment is located obtained by the obtaining unit The domain name is carried in the DHCP response message, so that the user equipment can perform fast re-authentication during handover, which reduces the handover delay and improves the user experience.
- FIG. 7 is a schematic structural diagram of another apparatus for obtaining a local domain name provided in an embodiment of the present invention.
- a device for obtaining a local domain name comprising:
- the second sending unit 702 sends a dynamic host configuration protocol DHCP request to the first server, and the request carries an option for instructing to return the domain name of the local domain where the user equipment is located;
- the second receiving unit 704 is configured to receive a DHCP response message returned by the first server, and obtain the domain name of the local domain where the user equipment is located from the response message.
- the second sending unit is specifically configured to directly send a DHCP request to the first server; or, send a DHCP request to a second server, where the second server receives the DHCP request and inserts all the DHCP requests into the DHCP request.
- the domain name of the local domain where the user equipment is located forwards the DHCP request to the first server through the second server; wherein, the domain name of the local domain where the user equipment is located is the second server from the third server Acquired.
- the first server may be a dynamic host configuration protocol DHCP server, the DHCP server is preferably located in the local network, or may be located in the home network; the second server may be a network access server NAS, used as a relay for the DHCP server Or proxy, it can also be a DHCP relay or DHCP proxy, or through the authenticator Authent i ca tor and DHCP
- the relay/agent has an internal module interface to implement the relay or proxy function of the DHCP server, and the second server and the first server can be physically separated or coexist.
- the domain name of the local domain where the user equipment is located is the domain where the current network to which the user equipment is attached is located.
- the current network mainly refers to the visiting network, but it can also be the home network.
- the device may be a DHCP server, where the DHCP request message may be a DHCP discovery DHCP DI SCOVERY message of Dynamic Host Configuration Protocol version 4 DHCPv4, a DHCP request DHCPREQUEST message, or a DHCP Request DHCP So licit message of Dynamic Host Configuration Protocol version 6 DHCPv6, DHCP
- the request DHCP Request message and the DHCP notification request DHCP Information Request message carry the requested local domain name option information in the above request message. For DHCPv4, it is with the encoding of the local domain name option in the parameter request list (Parame ter Reques t L ist); for DHCPv6, it is with the local The encoding of the domain name option.
- the dynamic host configuration protocol DHCP request sent to the first server is carried, and the request carries Instructing to return the information of the domain name of the local domain where the user equipment is located; the second receiving unit receives the DHCP response message returned by the first server, and obtains the domain name of the local domain where the user equipment is located from the response message, thereby
- the problem that the user cannot obtain the local domain name after full authentication is solved, and the user's device can be quickly re-authenticated when switching, which reduces the switching delay and improves the user experience.
- FIG. 8 is a schematic structural diagram of a system for obtaining a local domain name provided in an embodiment of the present invention.
- a system for obtaining a local domain name including:
- the user equipment 802 is configured to send a dynamic host configuration protocol DHCP request to the first server after completing the Extensible Authentication Protocol EAP full authentication, and the request carries an option for instructing to return the domain name of the local domain where the user equipment is located; receiving The DHCP response message returned by the first server, and from the response Obtain the domain name of the local domain where the user equipment is located in the answer message;
- the first server 804 is configured to receive a dynamic host configuration protocol DHCP request of the user equipment after completing the Extensible Authentication Protocol EAP full authentication; obtain the domain name of the local domain where the user equipment is located according to the DHCP request, and send the user equipment The domain name of the local domain is carried in a DHCP response message and returned to the user equipment.
- a dynamic host configuration protocol DHCP request of the user equipment after completing the Extensible Authentication Protocol EAP full authentication
- the domain name of the local domain is carried in a DHCP response message and returned to the user equipment.
- the system also includes a second server
- the second server 806 is configured to obtain and store the domain name of the local domain where the user equipment is located from a third server; receiving the DHCP request and inserting the domain name of the local domain where the user equipment is located in the DHCP request Afterwards, forward the DHCP request to the first server.
- the first server 804 is specifically configured to obtain the domain name of the local domain where the user equipment is located from the DHCP request forwarded by the second server, or obtain the domain name of the local domain where the user equipment is located from itself.
- the user equipment may be a user, a user terminal, an ERP client, a DHCP client, a peer peer, a suppli cant requester, etc., which have the same physical meaning in this solution.
- the domain name of the local domain where the user equipment is located is the domain where the current network to which the user equipment is attached is located.
- the current network mainly refers to the visiting network, but it can also be the home network.
- the first server may be a dynamic host configuration protocol DHCP server, the DHCP server is preferably located in the local network, or may be located in the home network; the second server may be a network access server NAS, used as a relay for the DHCP server Or a proxy, it can also be a DHCP relay or a DHCP proxy, or the authenticator Authent i ca tor has an internal module interface with the DHCP relay/agent to realize the relay or proxy function of the DHCP server, or it has the Authent i ca tor Servers with functions and DHCP relay/proxy functions are acceptable.
- the second server and the first server can be physically separated or coexist; the third server is a local EAP server, or a home EAP server, or an AAA server with EAP function , Or AAA server with ERP function.
- the system for obtaining a local domain name provided by the above-mentioned embodiment of the present invention and the interaction between each user equipment in the system and the first server solves the problem that the user cannot obtain the local domain name after full authentication.
- the problem of the domain name enables the user device to perform rapid re-authentication during switching, reduces the switching delay, and improves the user experience.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Mobile Radio Communication Systems (AREA)
- Computer And Data Communications (AREA)
Description
Claims
Priority Applications (11)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020137032311A KR101359600B1 (ko) | 2009-07-03 | 2009-07-03 | 로컬 도메인 네임을 취득하기 위한 방법, 장치 및 시스템 |
EP20172865.6A EP3758401A1 (en) | 2009-07-03 | 2009-07-03 | Method and device for obtaining local domain name |
CN200980154810.XA CN102449973B (zh) | 2009-07-03 | 2009-07-03 | 一种获取本地域名的方法、装置及*** |
EP16202805.4A EP3226594B1 (en) | 2009-07-03 | 2009-07-03 | Method, device and system for obtaining local domain name |
PCT/CN2009/072618 WO2011000168A1 (zh) | 2009-07-03 | 2009-07-03 | 一种获取本地域名的方法、装置及*** |
JP2012515309A JP5494995B2 (ja) | 2009-07-03 | 2009-07-03 | ローカルドメイン名を取得するための方法、装置、およびシステム |
EP09846697.2A EP2451131B1 (en) | 2009-07-03 | 2009-07-03 | Method, apparatus and system for obtaining local domain name |
KR1020117029011A KR101353371B1 (ko) | 2009-07-03 | 2009-07-03 | 로컬 도메인 네임을 취득하기 위한 방법, 장치 및 시스템 |
US13/339,943 US9602463B2 (en) | 2009-07-03 | 2011-12-29 | Method, device and system for obtaining local domain name |
US15/428,335 US10601830B2 (en) | 2009-07-03 | 2017-02-09 | Method, device and system for obtaining local domain name |
US16/803,698 US11363023B2 (en) | 2009-07-03 | 2020-02-27 | Method, device and system for obtaining local domain name |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/CN2009/072618 WO2011000168A1 (zh) | 2009-07-03 | 2009-07-03 | 一种获取本地域名的方法、装置及*** |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US13/339,943 Continuation US9602463B2 (en) | 2009-07-03 | 2011-12-29 | Method, device and system for obtaining local domain name |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2011000168A1 true WO2011000168A1 (zh) | 2011-01-06 |
Family
ID=43410469
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2009/072618 WO2011000168A1 (zh) | 2009-07-03 | 2009-07-03 | 一种获取本地域名的方法、装置及*** |
Country Status (6)
Country | Link |
---|---|
US (3) | US9602463B2 (zh) |
EP (3) | EP2451131B1 (zh) |
JP (1) | JP5494995B2 (zh) |
KR (2) | KR101353371B1 (zh) |
CN (1) | CN102449973B (zh) |
WO (1) | WO2011000168A1 (zh) |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101353371B1 (ko) | 2009-07-03 | 2014-01-20 | 후아웨이 테크놀러지 컴퍼니 리미티드 | 로컬 도메인 네임을 취득하기 위한 방법, 장치 및 시스템 |
US9521108B2 (en) * | 2011-03-29 | 2016-12-13 | Intel Corporation | Techniques enabling efficient synchronized authenticated network access |
EP2864875B1 (en) * | 2012-06-20 | 2019-08-07 | FusionLayer Oy | Method and apparatus for ip commissioning and decom-missioning in orchestrated computing environments |
US11157905B2 (en) * | 2015-08-29 | 2021-10-26 | Mastercard International Incorporated | Secure on device cardholder authentication using biometric data |
EP3157223A1 (en) * | 2015-10-14 | 2017-04-19 | Alcatel Lucent | Method and systems for associating subscriber identification information with a subscriber-side network termination identifier |
CN108540493B (zh) * | 2018-04-28 | 2021-05-04 | 深圳佰才邦技术有限公司 | 认证方法、用户设备、网络实体以及业务侧服务器 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070213053A1 (en) * | 2006-03-03 | 2007-09-13 | Samsung Electronics Co., Ltd. | Comprehensive registration method for wireless communication system |
CN101136746A (zh) * | 2006-08-31 | 2008-03-05 | 华为技术有限公司 | 一种认证方法及*** |
CN101459666A (zh) * | 2008-05-22 | 2009-06-17 | 中兴通讯股份有限公司 | 在异构网络中实现用户路由的方法 |
Family Cites Families (69)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7103834B1 (en) * | 1997-06-25 | 2006-09-05 | Samsung Electronics Co., Ltd. | Method and apparatus for a home network auto-tree builder |
KR100371613B1 (ko) * | 1997-06-25 | 2003-02-11 | 삼성전자주식회사 | 브라우저 기반의 명령 및 제어 홈 네트웍 |
US7039688B2 (en) * | 1998-11-12 | 2006-05-02 | Ricoh Co., Ltd. | Method and apparatus for automatic network configuration |
US6614774B1 (en) * | 1998-12-04 | 2003-09-02 | Lucent Technologies Inc. | Method and system for providing wireless mobile server and peer-to-peer services with dynamic DNS update |
US7194554B1 (en) * | 1998-12-08 | 2007-03-20 | Nomadix, Inc. | Systems and methods for providing dynamic network authorization authentication and accounting |
US6496505B2 (en) * | 1998-12-11 | 2002-12-17 | Lucent Technologies Inc. | Packet tunneling optimization to wireless devices accessing packet-based wired networks |
DE69935138T2 (de) * | 1999-08-20 | 2007-11-22 | International Business Machines Corp. | System und Verfahren zur Optimierung der Leistung und der Verfügbarkeit eines DHCP Dienstes |
US6857009B1 (en) * | 1999-10-22 | 2005-02-15 | Nomadix, Inc. | System and method for network access without reconfiguration |
US7184418B1 (en) * | 1999-10-22 | 2007-02-27 | Telcordia Technologies, Inc. | Method and system for host mobility management protocol |
US6684243B1 (en) * | 1999-11-25 | 2004-01-27 | International Business Machines Corporation | Method for assigning a dual IP address to a workstation attached on an IP data transmission network |
JP2001313672A (ja) * | 2000-04-28 | 2001-11-09 | Toshiba Corp | ネットワークシステム、パケット中継装置、無線端末及びパケット処理方法 |
KR20020022317A (ko) * | 2000-09-19 | 2002-03-27 | 윤종용 | 홈 게이트웨이 및 그 운용방법 |
US7089334B2 (en) * | 2000-12-14 | 2006-08-08 | Mindspeed Technologies, Inc. | Intelligent network interface port for visiting computers |
US6865192B1 (en) * | 2000-12-22 | 2005-03-08 | Sprint Communications Company L.P. | Integrated services hub self configuration |
US6798783B1 (en) * | 2001-01-23 | 2004-09-28 | Cisco Technology, Inc. | Method and apparatus for handling out of inverse multiplexing for asynchronous transfer mode frame error conditions |
US6879690B2 (en) * | 2001-02-21 | 2005-04-12 | Nokia Corporation | Method and system for delegation of security procedures to a visited domain |
US7096273B1 (en) * | 2001-04-25 | 2006-08-22 | Cisco Technology, Inc. | DHCP over mobile IP |
US7788345B1 (en) * | 2001-06-04 | 2010-08-31 | Cisco Technology, Inc. | Resource allocation and reclamation for on-demand address pools |
US7106739B2 (en) * | 2001-06-27 | 2006-09-12 | Intel Corporation | Method enabling network address translation of incoming session initiation protocol connections based on dynamic host configuration protocol address assignments |
JP2003086233A (ja) | 2001-09-07 | 2003-03-20 | Mitsubishi Electric Corp | 平板型電池およびその製法 |
AU2003217301A1 (en) * | 2002-02-04 | 2003-09-02 | Flarion Technologies, Inc. | A method for extending mobile ip and aaa to enable integrated support for local access and roaming access connectivity |
US8090828B2 (en) * | 2002-03-05 | 2012-01-03 | Cisco Technology, Inc. | Method and apparatus for reusing DHCP addresses in home addresses of mobile IP clients |
CN1650598A (zh) * | 2002-03-18 | 2005-08-03 | 松下电器产业株式会社 | Ddns服务器、ddns客户终端和ddns***以及万维网服务器终端、其网络***和访问控制方法 |
GB0206849D0 (en) | 2002-03-22 | 2002-05-01 | Nokia Corp | Communication system and method |
US20030204744A1 (en) * | 2002-04-26 | 2003-10-30 | Robert-Claude Maltais | Network access control |
AU2003230389A1 (en) * | 2002-05-13 | 2003-11-11 | Thomson Licensing S.A. | Seamless public wireless local area network user authentication |
US7143435B1 (en) * | 2002-07-31 | 2006-11-28 | Cisco Technology, Inc. | Method and apparatus for registering auto-configured network addresses based on connection authentication |
US7734745B2 (en) * | 2002-10-24 | 2010-06-08 | International Business Machines Corporation | Method and apparatus for maintaining internet domain name data |
US7475240B2 (en) | 2002-11-06 | 2009-01-06 | Symantec Corporation | System and method for add-on services, secondary authentication, authorization and/or secure communication for dialog based protocols and systems |
CN1505345A (zh) | 2002-12-02 | 2004-06-16 | 深圳市中兴通讯股份有限公司上海第二 | 一种接入用户强制访问认证服务器的方法 |
US20040224681A1 (en) * | 2003-02-27 | 2004-11-11 | Interactive People Unplugged Ab | Routed home network |
US7849217B2 (en) * | 2003-04-30 | 2010-12-07 | Cisco Technology, Inc. | Mobile ethernet |
US7453852B2 (en) * | 2003-07-14 | 2008-11-18 | Lucent Technologies Inc. | Method and system for mobility across heterogeneous address spaces |
US7523484B2 (en) | 2003-09-24 | 2009-04-21 | Infoexpress, Inc. | Systems and methods of controlling network access |
BRPI0513195A (pt) * | 2004-07-09 | 2008-04-29 | Matsushita Electric Ind Co Ltd | sistemas para administrar autenticação e autorização de usuário, e para suportar o usuário, métodos para administrar autenticação e autorização de usuário, para acessar serviços de múltiplas redes, para o controlador de autenticação processar uma mensagem de pedido de autenticação, selecionar a combinação de controladores de autenticação do resultado de busca, autenticar um usuário, e descobrir o caminho a um domìnio tendo relação empresarial com o domìnio doméstico, para o controlador de autorização processar a mensagem de pedido de autorização de serviço, e executar autorização de serviço, para um controlador de autenticação e autorização executar autenticação e autorização de serviço, para proteger o sìmbolo de usuário, e para a autoridade de controle de acesso no domìnio doméstico do usuário prover ao controlador de autenticação uma informação de perfil de assinatura limitada do usuário, para alcançar autenticação e autorização rápidas, e para alcançar registro único para acessar múltiplas redes, e, formatos para informação de capacidade de assinatura, para um sìmbolo de usuário, para um domìnio tendo relação empresarial com o domìnio doméstico de um usuário para pedir afirmação de autenticação e de autorização, e para um terminal de usuário indicar suas credenciais para acessar múltiplas redes em múltiplos domìnios administrativos |
JP4672670B2 (ja) * | 2004-09-30 | 2011-04-20 | パナソニック株式会社 | 通信システム及び移動端末並びに認証サーバ |
US20060130136A1 (en) * | 2004-12-01 | 2006-06-15 | Vijay Devarapalli | Method and system for providing wireless data network interworking |
US7885231B2 (en) | 2005-04-14 | 2011-02-08 | Lg Electronics Inc. | Method of reconfiguring an internet protocol address in handover between heterogeneous networks |
US8296824B2 (en) * | 2005-06-10 | 2012-10-23 | Microsoft Corporation | Replicating selected secrets to local domain controllers |
US20070002833A1 (en) * | 2005-06-30 | 2007-01-04 | Symbol Technologies, Inc. | Method, system and apparatus for assigning and managing IP addresses for wireless clients in wireless local area networks (WLANs) |
US7590733B2 (en) | 2005-09-14 | 2009-09-15 | Infoexpress, Inc. | Dynamic address assignment for access control on DHCP networks |
US7788405B2 (en) * | 2005-10-06 | 2010-08-31 | Samsung Electronics Co., Ltd. | Method for automatic configuration of prefixes at maps in HMIPv6 |
US7729314B2 (en) * | 2005-10-24 | 2010-06-01 | Cisco Technology, Inc. | Method for supporting mobility for dynamic windows clients in a wireless LAN network |
KR100656358B1 (ko) | 2005-10-25 | 2006-12-11 | 한국전자통신연구원 | Mobile IP 환경에서의 핸드오버 수행 방법 |
WO2007078663A2 (en) | 2005-12-16 | 2007-07-12 | Interdigital Technology Corporation | Mobility middleware architecture for multiple radio access technology apparatus |
KR100739807B1 (ko) | 2006-02-06 | 2007-07-13 | 삼성전자주식회사 | Dhcp를 이용한 핸드오버 정보 검색 및 획득 방법 및장치 |
US20070214232A1 (en) * | 2006-03-07 | 2007-09-13 | Nokia Corporation | System for Uniform Addressing of Home Resources Regardless of Remote Clients Network Location |
CN101072229B (zh) * | 2006-05-14 | 2012-08-08 | 华为技术有限公司 | 一种基于客户移动IPv4的配置信息获取方法 |
US8625609B2 (en) * | 2006-05-19 | 2014-01-07 | Futurewei Technologies Inc. | Using DHCPv6 and AAA for mobile station prefix delegation and enhanced neighbor discovery |
US7804806B2 (en) * | 2006-06-30 | 2010-09-28 | Symbol Technologies, Inc. | Techniques for peer wireless switch discovery within a mobility domain |
JP2008035250A (ja) * | 2006-07-28 | 2008-02-14 | Fujitsu Ltd | 情報提供サービス制御システム |
US7707313B2 (en) * | 2006-08-14 | 2010-04-27 | Motorola, Inc. | System and method for routing and domain name system support of a mobile node |
EP2111585B1 (en) * | 2006-12-22 | 2015-02-18 | Telcordia Technologies, Inc. | Flexible mobility framework for heterogeneous roaming in next generation wireless networks |
EP2122982B1 (en) * | 2007-01-18 | 2016-08-10 | Telefonaktiebolaget LM Ericsson (publ) | Lightweight mobility architecture |
US8792450B2 (en) * | 2007-05-10 | 2014-07-29 | Starhome Gmbh | System and method for providing local IP connectivity for a roaming mobile subscriber |
US8644215B2 (en) * | 2007-06-14 | 2014-02-04 | Intel Corporation | Generic wireless services discovery |
WO2008156782A2 (en) * | 2007-06-19 | 2008-12-24 | Sand Holdings, Llc | Devices and methods for automatic reset of monitored network network equipment |
US8289862B2 (en) * | 2007-06-27 | 2012-10-16 | Futurewei Technologies, Inc. | Method and apparatus for dynamic LMA assignment in proxy mobile IPv6 protocol |
US20090007393A1 (en) * | 2007-07-03 | 2009-01-08 | Gregory Regis Feuerborn | Collar Gem Array |
EP2015535A1 (en) * | 2007-07-10 | 2009-01-14 | Panasonic Corporation | Detection of mobility functions implemented in a mobile node |
US8239549B2 (en) * | 2007-09-12 | 2012-08-07 | Microsoft Corporation | Dynamic host configuration protocol |
ATE518397T1 (de) * | 2007-09-14 | 2011-08-15 | Huawei Tech Co Ltd | Verfahren, vorrichtung und system zum erhalten von mih-serviceinformationen |
EP2201724B1 (de) * | 2007-09-25 | 2013-06-12 | Gigaset Communications GmbH | Identifikation und/oder adressierung einer datenendeinrichtung eines lokalen netzwerkes |
US7910504B2 (en) | 2007-10-22 | 2011-03-22 | Her Majesty The Queen As Represented By The Minister Of National Defense Of Her Majesty's Canadian Government | Desert camouflage |
EP2056558A1 (en) * | 2007-10-31 | 2009-05-06 | Panasonic Corporation | Server discovery in a neighbour network of an IP node |
EP2207391A1 (en) | 2007-11-02 | 2010-07-14 | Panasonic Corporation | Mobile terminal, network node, and packet transfer management node |
EP2091204A1 (en) * | 2008-02-18 | 2009-08-19 | Panasonic Corporation | Home agent discovery upon changing the mobility management scheme |
DE202009000525U1 (de) | 2009-01-16 | 2009-04-30 | Flühs Drehtechnik GmbH | Elektronisch regelbare Mischvorrichtung für Leitungswasser |
KR101353371B1 (ko) * | 2009-07-03 | 2014-01-20 | 후아웨이 테크놀러지 컴퍼니 리미티드 | 로컬 도메인 네임을 취득하기 위한 방법, 장치 및 시스템 |
-
2009
- 2009-07-03 KR KR1020117029011A patent/KR101353371B1/ko active IP Right Grant
- 2009-07-03 EP EP09846697.2A patent/EP2451131B1/en active Active
- 2009-07-03 EP EP20172865.6A patent/EP3758401A1/en not_active Withdrawn
- 2009-07-03 JP JP2012515309A patent/JP5494995B2/ja active Active
- 2009-07-03 EP EP16202805.4A patent/EP3226594B1/en active Active
- 2009-07-03 WO PCT/CN2009/072618 patent/WO2011000168A1/zh active Application Filing
- 2009-07-03 CN CN200980154810.XA patent/CN102449973B/zh active Active
- 2009-07-03 KR KR1020137032311A patent/KR101359600B1/ko active IP Right Grant
-
2011
- 2011-12-29 US US13/339,943 patent/US9602463B2/en active Active
-
2017
- 2017-02-09 US US15/428,335 patent/US10601830B2/en active Active
-
2020
- 2020-02-27 US US16/803,698 patent/US11363023B2/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070213053A1 (en) * | 2006-03-03 | 2007-09-13 | Samsung Electronics Co., Ltd. | Comprehensive registration method for wireless communication system |
CN101136746A (zh) * | 2006-08-31 | 2008-03-05 | 华为技术有限公司 | 一种认证方法及*** |
CN101459666A (zh) * | 2008-05-22 | 2009-06-17 | 中兴通讯股份有限公司 | 在异构网络中实现用户路由的方法 |
Non-Patent Citations (1)
Title |
---|
See also references of EP2451131A4 * |
Also Published As
Publication number | Publication date |
---|---|
JP5494995B2 (ja) | 2014-05-21 |
EP3758401A1 (en) | 2020-12-30 |
US20120102146A1 (en) | 2012-04-26 |
US20170155650A1 (en) | 2017-06-01 |
US10601830B2 (en) | 2020-03-24 |
JP2012530413A (ja) | 2012-11-29 |
US11363023B2 (en) | 2022-06-14 |
EP2451131A4 (en) | 2013-02-27 |
EP3226594B1 (en) | 2020-06-03 |
US9602463B2 (en) | 2017-03-21 |
CN102449973B (zh) | 2014-12-24 |
EP2451131B1 (en) | 2017-09-27 |
KR20120014578A (ko) | 2012-02-17 |
US20200195646A1 (en) | 2020-06-18 |
EP2451131A1 (en) | 2012-05-09 |
KR101359600B1 (ko) | 2014-02-07 |
CN102449973A (zh) | 2012-05-09 |
KR101353371B1 (ko) | 2014-01-20 |
EP3226594A1 (en) | 2017-10-04 |
KR20130140914A (ko) | 2013-12-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP7035163B2 (ja) | ネットワークセキュリティ管理方法および装置 | |
US9654907B2 (en) | System, method and apparatus for wireless network connection using near field communication | |
CN110035037B (zh) | 安全认证方法、相关设备及*** | |
EP2469961B1 (en) | Method, apparatus and network system for tunnel establishment | |
US11363023B2 (en) | Method, device and system for obtaining local domain name | |
US9918353B2 (en) | 802.1X access session keepalive method, device, and system | |
US9226153B2 (en) | Integrated IP tunnel and authentication protocol based on expanded proxy mobile IP | |
WO2009152749A1 (zh) | 一种绑定认证的方法、***和装置 | |
JP2008236754A (ja) | 移動通信ネットワークと移動通信ネットワークにおける移動ノードの認証を遂行する方法及び装置 | |
WO2010130191A1 (zh) | 一种切换接入网的认证方法、***和装置 | |
JP2015502701A (ja) | ワイヤレスリンクのセットアップのために鍵のライフタイムへのアクセスを可能にすること | |
WO2015123953A1 (zh) | 一种密钥生成的方法、设备及*** | |
WO2016029854A1 (zh) | 一种无线网络连接方法、设备及*** | |
US10270747B2 (en) | Methods and devices having a key distributor function for improving the speed and quality of a handover | |
WO2014124561A1 (zh) | 实现在wlan中的通信的方法和*** | |
EP2477429B1 (en) | Method, apparatus and system for home agent obtaining mobile node-home agent key in proxy mobile internet protocol | |
WO2014032225A1 (zh) | 服务质量控制的方法、装置及*** | |
CN102420799B (zh) | 一种用户认证方法、装置及*** | |
JP2008199137A (ja) | ハンドオーバ時のネットワーク接続方法、移動端末及びプログラム | |
JP5733645B2 (ja) | ローカルドメイン名を取得するための方法、デバイス、およびシステム | |
WO2013166909A1 (zh) | Eap认证触发方法及***、接入网设备、终端设备 | |
CN106162632B (zh) | 一种密钥传输方法和装置 | |
JP2011049689A (ja) | 通信システム、通信システムに用いられるセンタ側ゲートウェイ、および、通信方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 200980154810.X Country of ref document: CN |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 09846697 Country of ref document: EP Kind code of ref document: A1 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 4831/KOLNP/2011 Country of ref document: IN |
|
REEP | Request for entry into the european phase |
Ref document number: 2009846697 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2009846697 Country of ref document: EP |
|
ENP | Entry into the national phase |
Ref document number: 20117029011 Country of ref document: KR Kind code of ref document: A |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2012515309 Country of ref document: JP |
|
NENP | Non-entry into the national phase |
Ref country code: DE |