WO2003084177B1 - Security transmission protocol for a mobility ip network - Google Patents

Security transmission protocol for a mobility ip network

Info

Publication number
WO2003084177B1
WO2003084177B1 PCT/US2003/007156 US0307156W WO03084177B1 WO 2003084177 B1 WO2003084177 B1 WO 2003084177B1 US 0307156 W US0307156 W US 0307156W WO 03084177 B1 WO03084177 B1 WO 03084177B1
Authority
WO
WIPO (PCT)
Prior art keywords
mobile node
secure
packet
foreign agent
wireless communication
Prior art date
Application number
PCT/US2003/007156
Other languages
French (fr)
Other versions
WO2003084177A1 (en
Inventor
Jerry Mizell
David Lauson
Peter Wenzel
Steven Currin
Original Assignee
Nortel Networks Ltd
Jerry Mizell
David Lauson
Peter Wenzel
Steven Currin
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nortel Networks Ltd, Jerry Mizell, David Lauson, Peter Wenzel, Steven Currin filed Critical Nortel Networks Ltd
Priority to EP03745528A priority Critical patent/EP1495621B1/en
Priority to DE60302882T priority patent/DE60302882T2/en
Priority to AU2003225716A priority patent/AU2003225716A1/en
Publication of WO2003084177A1 publication Critical patent/WO2003084177A1/en
Publication of WO2003084177B1 publication Critical patent/WO2003084177B1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/164Implementing security features at a particular protocol layer at the network layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W80/00Wireless network protocols or protocol adaptations to wireless operation
    • H04W80/04Network layer protocols, e.g. mobile IP [Internet Protocol]

Abstract

The present invention supports a secure transmissions protocol for information packet transmission between a Mobile Node and a Foreign Agent. The information packets are encrypted and decrypted using an integrated software client that combines mobile IP communication support and encrypting and decrypting protocols.

Claims

26
AMENDED CLAIMS
[received by the International Bureau on 29 September 2003 (29.09.03); original claims 1, 6 and 15 amended; remaining claims unchanged.
1. A secure packet-based wireless communication system, comprising: a foreign agent on the foreign network wirelessly linked to a mobile node, wherein the foreign agent routes infoπnation packets for the mobile node; and an integrated software program having an integrated secure transmission protocol operating on the foreign agent and the mobile node, said protocol operating on the mobile node and foreign agent and supporting the trans- mission of encrypted information packets between the mobile node and the foreign agent.
2. The secure packet-based wireless communication system of Claim 1 wherein the integrated secure transmission protocol includes a security initialization procedure to negotiate encryption algorithms used to encrypt information packets for transmission for the mobile node.
3. The secure packet-based wireless communication system of Claim 1 wherein the integrated secure transmission protocol includes a security initialization procedure to exchange encryption keys used in the encryption algorithms to encrypt information packets for transmission for the mobile node.
4. The secure packet-based wireless communication system of Claim 1 wherein the integrated secure transmission protocol further comprises communication support for the transmission of encrypted information packets.
5. The secure packet-based wireless communication system of Claim 1 wherein the communication system may comprise a general packet radio service, a universal mobile telecommunication system, or a code division multiple ac- cess system.
6. A method of securing information packet transmissions between a mo bile node and a foreign network comprising the steps of: providing a foreign network with a foreign agent supporting information packet transmission over a wireless communication link to the mobile node; providing a communication link from the foreign network; establishing a secure communication link between the foreign agent and the mobile node; initiating an integrated security transmission protocol using an inte- grated software application on the foreign agent and the mobile node; and transmitting an encrypted information packet formed under the integrated security transmission protocol to the mobile node.
7. The method of securing information packet transmissions between a mobile node and a foreign network of Claim 6 further comprising the step of: exchanging authenticated and secure information packets between the foreign agent and the mobile node containing encryption algorithm information formed under the integrated security transmission protocol.
8. The method of securing information packet transmissions between a mobile node and a foreign network of Claim 6 further comprising the step of: exchanging authenticated and secure information packets between the foreign agent and mobile node containing encryption keys for use by the integrated security transmission protocol.
28
15. A method for secure packet-based wireless communication comprising the steps of: providing a foreign agent on a foreign network coupled over a wireless link to a mobile node, wherein the foreign agent supports transmission of in- formation packets for the mobile node; initializing a secure VPN connection between the foreign agent and the mobile node, operating a communication application having an integrated security transmission protocol to transmit and receive secure information packet transmissions over the VPN connection, and transmitting an encrypted information packet formed by the integrated security transmission protocol.
16. The method for secure packet-based wireless communication of Claim 15 wherein the encrypted information packet is decrypted using said integrated security transmission protocol.
17. The method for secure packet-based wireless communication of Claim 15 wherein said encrypted information packet has an encrypted address used by the foreign agent to route information packets, encrypted data, and an unencrypted encapsulating address header used to route the information packet.
18. The method for secure packet-based wireless communication of Claim 15 wherein the initialization step is controlled by software subroutines that estab- lishes the communication link for the mobile node.
19. The method for secure packet-based wireless communication of Claim 15 wherein the initialization step includes a subroutine that controls encryption and decryption of said information packets.
PCT/US2003/007156 2002-03-28 2003-03-10 Security transmission protocol for a mobility ip network WO2003084177A1 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
EP03745528A EP1495621B1 (en) 2002-03-28 2003-03-10 Security transmission protocol for a mobility ip network
DE60302882T DE60302882T2 (en) 2002-03-28 2003-03-10 SECURITY TRANSFER PROTOCOL FOR A MOBILITY IP NETWORK
AU2003225716A AU2003225716A1 (en) 2002-03-28 2003-03-10 Security transmission protocol for a mobility ip network

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/109,422 US7380124B1 (en) 2002-03-28 2002-03-28 Security transmission protocol for a mobility IP network
US10/109,422 2002-03-28

Publications (2)

Publication Number Publication Date
WO2003084177A1 WO2003084177A1 (en) 2003-10-09
WO2003084177B1 true WO2003084177B1 (en) 2003-12-31

Family

ID=28673626

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2003/007156 WO2003084177A1 (en) 2002-03-28 2003-03-10 Security transmission protocol for a mobility ip network

Country Status (5)

Country Link
US (1) US7380124B1 (en)
EP (1) EP1495621B1 (en)
AU (1) AU2003225716A1 (en)
DE (1) DE60302882T2 (en)
WO (1) WO2003084177A1 (en)

Families Citing this family (40)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7539164B2 (en) * 2002-06-14 2009-05-26 Nokia Corporation Method and system for local mobility management
EP1527648A1 (en) * 2002-08-05 2005-05-04 Nokia Corporation A method of speeding up the registration procedure in a cellular network
US7916701B1 (en) * 2002-08-27 2011-03-29 Cisco Technology, Inc. Virtual addressing to support wireless access to data networks
US7793098B2 (en) * 2003-05-20 2010-09-07 Nokia Corporation Providing privacy to nodes using mobile IPv6 with route optimization
GB2403097A (en) * 2003-06-16 2004-12-22 Orange Personal Comm Serv Ltd Communicating internet packets having care-of-address as destination address to a mobile node
US7916739B2 (en) * 2003-06-24 2011-03-29 Ntt Docomo, Inc. Location privacy for internet protocol networks using cryptographically protected prefixes
GB0314971D0 (en) * 2003-06-27 2003-07-30 Ericsson Telefon Ab L M Method for distributing passwords
US8296558B1 (en) 2003-11-26 2012-10-23 Apple Inc. Method and apparatus for securing communication between a mobile node and a network
US20050176431A1 (en) * 2004-02-11 2005-08-11 Telefonaktiebolaget L M Ericsson (Publ) Method for handling key sets during handover
EP1735990B1 (en) 2004-04-14 2018-05-30 Microsoft Technology Licensing, LLC Mobile ipv6 authentication and authorization
KR100651716B1 (en) * 2004-10-11 2006-12-01 한국전자통신연구원 Bootstrapping method in mobile network based on Diameter protocol and system therein
EP1839424A1 (en) * 2005-01-07 2007-10-03 Alcatel Lucent Method and apparatus for providing low-latency secure session continuity between mobile nodes
DE102005037874B4 (en) * 2005-08-10 2008-07-24 Nokia Siemens Networks Gmbh & Co.Kg Method and arrangement for controlling and charging peer-to-peer services in an IP-based communication network
DE102005043364B4 (en) * 2005-09-12 2007-07-05 Siemens Ag Telecommunication system and method for controlling a change of a subscriber terminal between two networks
US20070127496A1 (en) * 2005-12-05 2007-06-07 Paula Tjandra Method, system and apparatus for creating a reverse tunnel
US20070127420A1 (en) * 2005-12-05 2007-06-07 Paula Tjandra Method, system and apparatus for creating a reverse tunnel
US7890096B2 (en) 2006-03-02 2011-02-15 Tango Networks, Inc. System and method for enabling call originations using SMS and hotline capabilities
US7873032B2 (en) 2006-03-02 2011-01-18 Tango Networks, Inc. Call flow system and method use in VoIP telecommunication system
US8023479B2 (en) * 2006-03-02 2011-09-20 Tango Networks, Inc. Mobile application gateway for connecting devices on a cellular network with individual enterprise and data networks
US11405846B2 (en) 2006-03-02 2022-08-02 Tango Networks, Inc. Call flow system and method for use in a legacy telecommunication system
US8583929B2 (en) * 2006-05-26 2013-11-12 Alcatel Lucent Encryption method for secure packet transmission
US9083683B2 (en) * 2007-01-30 2015-07-14 Harris Corporation Encryption/decryption device for secure communications between a protected network and an unprotected network and associated methods
US8605662B2 (en) * 2007-07-20 2013-12-10 Cisco Technology, Inc. Intelligent real access point name (APN) selection using virtual APNS
CN101965722B (en) * 2008-03-12 2013-06-26 艾利森电话股份有限公司 Re-establishment of a security association
KR20100064585A (en) * 2008-12-05 2010-06-15 삼성전자주식회사 Data transmitting/receiving apparatus and method thereof
CN101562807B (en) 2009-05-27 2011-04-20 华为技术有限公司 Mobile virtual private network (VPN) communication method and device and system thereof
US20110286597A1 (en) * 2009-11-17 2011-11-24 Qualcomm Incorporated HOME AGENT PROXIED MIPv6 ROUTE OPTIMIZATION MODE
JP5625703B2 (en) * 2010-10-01 2014-11-19 富士通株式会社 Mobile communication system, communication control method, and radio base station
US8862869B1 (en) * 2010-11-30 2014-10-14 Tellabs Operations, Inc. Method and apparatus for providing network initiated session encryption
US8619986B2 (en) 2011-07-21 2013-12-31 Patton Protection Systems LLC Systems and methods for secure communication using a communication encryption bios based upon a message specific identifier
GB2493349A (en) * 2011-07-29 2013-02-06 Intellectual Ventures Holding 81 Llc Mobile communications network with simplified handover
US9225806B2 (en) * 2012-06-15 2015-12-29 Citrix Systems, Inc. Systems and methods for generating IPID across a cluster network
US9722789B2 (en) 2013-04-29 2017-08-01 Hughes Network Systems, Llc Method and system for providing enhanced data encryption protocols in a mobile satellite communications system
US9807057B1 (en) 2013-12-17 2017-10-31 Amazon Technologies, Inc. Private network peering in virtual network environments
US10212161B1 (en) 2014-11-19 2019-02-19 Amazon Technologies, Inc. Private network layering in provider network environments
US10567347B2 (en) * 2015-07-31 2020-02-18 Nicira, Inc. Distributed tunneling for VPN
US10044502B2 (en) 2015-07-31 2018-08-07 Nicira, Inc. Distributed VPN service
US10498810B2 (en) * 2017-05-04 2019-12-03 Amazon Technologies, Inc. Coordinating inter-region operations in provider network environments
US10986075B2 (en) * 2017-11-02 2021-04-20 Arista Networks, Inc. Distributing packets across processing cores
US11190490B2 (en) 2018-10-02 2021-11-30 Allstate Insurance Company Embedded virtual private network

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3651721B2 (en) * 1996-11-01 2005-05-25 株式会社東芝 Mobile computer device, packet processing device, and communication control method
US6507908B1 (en) * 1999-03-04 2003-01-14 Sun Microsystems, Inc. Secure communication with mobile hosts
US6466964B1 (en) * 1999-06-15 2002-10-15 Cisco Technology, Inc. Methods and apparatus for providing mobility of a node that does not support mobility
GB2364477B (en) 2000-01-18 2003-11-05 Ericsson Telefon Ab L M Virtual private networks
US6839338B1 (en) * 2002-03-20 2005-01-04 Utstarcom Incorporated Method to provide dynamic internet protocol security policy service

Also Published As

Publication number Publication date
EP1495621B1 (en) 2005-12-21
DE60302882T2 (en) 2006-06-29
EP1495621A1 (en) 2005-01-12
US7380124B1 (en) 2008-05-27
AU2003225716A1 (en) 2003-10-13
DE60302882D1 (en) 2006-01-26
WO2003084177A1 (en) 2003-10-09

Similar Documents

Publication Publication Date Title
WO2003084177B1 (en) Security transmission protocol for a mobility ip network
US7876897B2 (en) Data security in wireless network system
EP1178644B1 (en) Key management methods for wireless lans
US9300634B2 (en) Mobile IP over VPN communication protocol
US7310424B2 (en) Encryption key distribution and network registration system, apparatus and method
JP3730480B2 (en) Gateway device
KR100480225B1 (en) Data-securing communication apparatus and method therefor
US20100119069A1 (en) Network relay device, communication terminal, and encrypted communication method
US20070271606A1 (en) Apparatus and method for establishing a VPN tunnel between a wireless device and a LAN
EP2061200B1 (en) Method and device for binding update between mobile node and correspondent node
US7107051B1 (en) Technique to establish wireless session keys suitable for roaming
JPH10178421A (en) Packet processor, mobile computer, packet transferring method and packet processing method
JP2003051818A (en) Method for implementing ip security in mobile ip networks
JP2004304824A (en) Authentication method and authentication apparatus in wireless lan system
CA2650050A1 (en) Method and system for providing cellular assisted secure communications of a plurality of ad hoc devices
US20100042831A1 (en) Method and System for Secure Transmission of Data in an Ad Hoc Network
WO2006098116A1 (en) Authentication method in radio communication system, radio terminal device and radio base station using the method, radio communication system using them, and program
JP2006101051A (en) Server, vpn client, vpn system, and software
US20060233371A1 (en) Roaming encryption key rekeying apparatus and method
KR100948604B1 (en) Security method of mobile internet protocol based server
CN112600802B (en) SRv6 encrypted message and SRv6 message encryption and decryption methods and devices
MXPA05009804A (en) Wlan session management techniques with secure rekeying and logoff.
Barton et al. Integration of IP mobility and security for secure wireless communications
JP2007043566A (en) Encryption control device and encryption system of wireless lan
JP2005244379A (en) Vpn system, vpn apparatus, and encryption key distribution method used for them

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SC SD SE SG SK SL TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
WWE Wipo information: entry into national phase

Ref document number: 2003745528

Country of ref document: EP

WWP Wipo information: published in national office

Ref document number: 2003745528

Country of ref document: EP

WWG Wipo information: grant in national office

Ref document number: 2003745528

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP