Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Certificate authorization method of separation-mechanism mobile management system

A management system and separation mechanism technology, applied in the field of authentication and authorization, can solve the problems of not considering the re-authentication process, reducing signaling interaction and authentication delay, and not considering the scenarios of MN cross-domain authentication

Inactive Publication Date: 2013-01-09
BEIJING JIAOTONG UNIV
View PDF4 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0010] In the mobility management process of PMIPv6, the LMA is not only the control gateway for processing mobility control signaling, the data gateway for forwarding MN data, but also the client for authorization interaction with HAAA. single failure node
[0011] The authentication interaction between MAG and HAAA in PMIPv6 only considers the intra-domain scenario, and does not consider the cross-domain authentication scenario after the MN cross-domain handover; at the same time, when the MN continuously switches between different access gateways, it needs to perform a complete initial authentication process. Does not consider the use of re-authentication process to reduce signaling interaction and authentication delay

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Certificate authorization method of separation-mechanism mobile management system
  • Certificate authorization method of separation-mechanism mobile management system
  • Certificate authorization method of separation-mechanism mobile management system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0082] The invention combines the separation mechanism mobility management system with the authentication and authorization to the mobile node, and describes a separation mechanism-based authentication and authorization design scheme. In this solution, the mobile node of the access separation mechanism mobility management system is first authenticated. After the authentication is successful, each functional entity implements the addition of routes and the establishment of tunnels through the interaction of mobile signaling. The mobile node obtains the home network stored on the server. Prefix information, at this time, the mobile node can obtain network services, thereby realizing the authorization of the separation mechanism mobility management to the mobile node. AAA servers (including home AAA server (HAAA) and foreign AAA server (Foreign AAA, FAAA)) are added in the access network of the mobility management system of the separation mechanism, which can realize the mobile no...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a certificate authorization method of a separation-mechanism mobile management system. The method comprises the steps of: firstly, carrying out identity authentication on a moving node accessed into the separation-mechanism mobile management system, after successful authentication, adding routs and establishing a tunnel by all functional entities in the system through mobile signaling interaction, acquiring home network prefix information stored in a server by the mobile node, and acquiring a network service by the mobile node at the moment so as to realize the authorization of the separation mechanism mobile management to the mobile node. The method comprises home domain initial authentication, home domain reauthentication, foreign domain initial authentication, foreign domain reauthentication and authentication to the mobile node. According to the invention, an AGW (Access Gateway), a CGW (Customer GateWay), a DGW (Data Gateway) and an AAA (Authentication, Authorization and Accounting) server are taken as main functional entities, and a series message interaction among the AGW, CGW, DGW and AAA server is used to complete the authentication of the legality of the mobile node so as to guarantee network safety.

Description

technical field [0001] The invention relates to an authentication authorization method of a separation mechanism mobility management system. Background technique [0002] The literature (application number: 201110152731.4) proposes a network model of mobility management under the separation mechanism. This scheme makes full use of the separation mechanism address mapping and the separation of mobile node (Mobile Node, MN) identity and location in Proxy MobileIPv6 (Proxy MobileIPv6, PMIPv6) At the same time, it also solves the problem that the local mobility anchor point of PMIPv6 is not only a control gateway for processing mobility control signaling, but also a data gateway for forwarding MN data, which causes it to become a single fault node in the PMIPv6 network structure. Separation mechanism The mobility management system realizes the separation of identity and location, data forwarding and control signaling, and separation of access network and core network. The acces...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04W8/08H04W12/06
Inventor 周华春吕建华任飞易李张宏科张天园
Owner BEIJING JIAOTONG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com