[특허]Method and apparatus for authentication in a wireless telecommunications system

Method and apparatus for authentication in a wireless telecommunications system 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	G06F-011/30 H04L-009/00
출원번호	US-0453612 (1999-12-03)
발명자 / 주소	Abrol, Nischal Lioy, Marcello
출원인 / 주소	Qualcomm Incorporated
대리인 / 주소	Wadsworth Philip R.
인용정보	피인용 횟수 : 50 인용 특허 : 4

초록 ▼

A method and apparatus for allowing a mobile station in a wireless network to perform network authentication in association with mobile packet data services. The packet data serving node (PDSN) does not authenticate the mobile station with an authentication server prior to sending a CHAP success message. Rather, a mobile station is authenticated via an authentication server after the PDSN receives an IPCP message indicating whether the mobile station desires to use Mobile IP in the current session. If the mobile station desires to use Mobile IP, the PDSN uses authentication techniques in accordance with Mobile IP protocols. In the preferred embodiment, if the mobile station does not desire to use Mobile IP, the PDSN authenticates the mobile station querying an authentication server with the buffered contents of a previously received CHAP challenge response.

대표청구항 ▼

1. A method of establishing a communication link with a remote station comprising the steps of:generating an authentication challenge message;sending said authentication challenge message to the remote station;receiving an authentication challenge response message from the remote station, wherein said authentication challenge response message corresponds to said authentication challenge message;spoofing an authentication success message based on said challenge response message;sending said authentication success message to the remote station;receiving a second message from the remote station; andsending an authentication request message to an authentication server based on said second message. 2. The method of claim 1 further comprising the step of storing information from said authentication challenge response message in a buffer, wherein said authentication request message is based on the contents of said buffer. 3. The method of claim 1 wherein said authentication request message is based on said authentication challenge response message. 4. The method of claim 3 wherein said authentication server is a Remote Authentication Dial In User Service (RADIUS) server. 5. The method of claim 3 wherein said authentication server is a home agent server. 6. The method of claim 5 wherein said home agent server is a Mobile Internet Protocol (IP) server. 7. The method of claim 1 further comprising the steps of:receiving from said authentication server an authentication response message corresponding to said authentication request message, and indicating authentication failure of the remote station; andterminating transmissions to the remote station based on said authentication response message. 8. The method of claim 1 further comprising the steps of:receiving from said authentication server an authentication response message corresponding to said authentication request message, and indicating authentication failure of the remote station; andsending a second authentication challenge message to the remote station based on said authentication response message. 9. The method of claim 1 further comprising the steps of:receiving from said authentication server an authentication response message corresponding to said authentication request message; andsending a message containing a network address to the remote station. 10. The method of claim 9 wherein said authentication server is a Remote Authentication Dial In User Service (RADIUS) server. 11. The method of claim 9 further comprising the step of generating said network address. 12. The method of claim 9 wherein said authentication response message is a Mobile IP Registration Reply. 13. The method of claim 9 wherein said authentication response message is an Internet Protocol Control Protocol (IPCP) Registration Reply message. 14. The method of claim 9 wherein said authentication response message is a message from the subset of RADIUS protocol messages comprising the Access-Accept message and the Access-Reject message. 15. The method of claim 1 wherein said authentication challenge message is a Challenge Handshake Authentication Protocol (CHAP) Challenge message, said authentication challenge response message is a CHAP Response Message, and said authentication success message is a CHAP Success Message. 16. The method of claim 15 wherein said authentication challenge response message comprises a Challenge Handshake Authentication Protocol (CHAP) usemame, and wherein said authentication request message comprises said CHAP username. 17. The method of claim 15 wherein said authentication challenge response message comprises a Challenge Handshake Authentication Protocol (CHAP) identifier (ID), and wherein said authentication request message comprises said CHAP ID. 18. The method of claim 15 wherein said authentication challenge response message comprises a Challenge Handshake Authentication Protocol (CHAP) response value, and wherein said authentication request message comprises said CHAP respo nse value. 19. A packet data serving node (PDSN) for communicating with a wireless telecommunications serving network, the PDSN comprising:a control processor for:generating an authentication challenge message;sending said authentication challenge message to a remote station;receiving an authentication challenge response message from the remote station, wherein said authentication challenge response message corresponds to said authentication challenge message;spoofing an authentication success message based on said challenge response message;sending said authentication success message to the remote station;receiving a second message from the remote station; andsending an authentication request message to an authentication server based on said second message. 20. The PDSN of claim 19 wherein said control processor is further for storing information from said authentication challenge response message, wherein said authentication request message is based on the stored authentication challenge response message information. 21. The PDSN of claim 20 wherein said control processor is further forreceiving from said authentication server an authentication response message corresponding to said authentication request message, and indicating authentication failure of the remote station; andsending one or more messages to the wireless telecommunications serving network to indicate that the wireless telecommunications system should terminate the packet data connection with the remote station. 22. The PDSN of claim 21 wherein said control processor is further for:receiving from said authentication server an authentication response message corresponding to said authentication request message, and indicating authentication failure of the remote station, andsending a second authentication challenge message to the remote station based on said authentication response message. 23. The PDSN of claim 22 wherein said control processor is further forreceiving from said authentication server an authentication response message corresponding to said authentication request message, andsending a message containing a network address to the remote station. 24. The PDSN of claim 23 further comprising:an interface for generating signals for communicating with a radio network; andan interface for generating signals for communicating with an Internet Protocol (IP) network. 25. The PDSN of claim 24 further comprising a network packet switch for routing packets between a variety of interfaces. 26. The PDSN of claim 24 wherein said control processor is further for routing packets between a variety of interfaces. 27. The PDSN of claim 23 further comprising a single interface for generating signals to communicate with a radio network and for generating signals for communicating with an Internet Protocol (IP) network. 28. The PDSN of claim 27 further comprising a network packet switch for routing packets between a variety of interfaces. 29. The PDSN of claim 27 wherein said control processor is further for routing packets between a variety of interfaces. 30. A wireless packet data communication system comprising:a wireless telecommunications serving network for communicating wirelessly with a remote station; anda serving node (PDSN) for communicating with said wireless telecommunications serving network, the PDSN further comprising a control processor for:generating an authentication challenge message;sending said authentication challenge message to a remote station;receiving an authentication challenge response message from the remote station, wherein said authentication challenge response message corresponds to said authentication challenge message;spoofing an authentication success message based on said challenge response message;sending said authentication success message to the remote station;receiving a second message from the remote station; andsending an authentication request message to an authentication server based on said second message. 31. The PDSN of c laim 30 wherein the wireless telecommunications serving network is a CDMA wireless network. 32. The PDSN of claim 30 wherein the wireless telecommunications serving network is a cdma2000 wireless network. 33. A method of establishing a communication link with a remote station comprising the steps of:sending an authentication challenge message to the remote station;receiving an authentication challenge response message from the remote station, wherein said authentication challenge response message corresponds to said authentication challenge message;sending, to the remote station, an authentication success message after receiving the authentication challenge response message without waiting for authentication verification;receiving a second message from the remote station; andsending an authentication request message to an authentication server based on said second message.

이 특허에 인용된 특허 (4)

Michael M. Swift ; Bharat Shah, Challenge-response authentication and key exchange for a connectionless security protocol.
상세보기
Luneau Greg,CAX ITX R3T 3M3 ; Remillard Jason,CAX ITX R2J 2L4 ; King Thomas, Method for providing secured commerical transactions via a networked communications system.
상세보기
Gilhousen Klein S. (San Diego CA) Jacobs Irwin M. (La Jolla CA) Weaver ; Jr. Lindsay A. (San Diego CA), Spread spectrum multiple access communication system using satellite or terrestrial repeaters.
상세보기
Holden James M. ; Levin Stephen E. ; Nickel James O. ; Wrench ; Jr. Edwin H., Stand alone device for providing security within computer networks.
상세보기

이 특허를 인용한 특허 (50)

McCann, Stephen; Hancock, Robert; May, John; Hook, Michael, Access authentication system.
상세보기
Wada,Mitsuhiro; Nakazawa,Hiroaki; Sueyoshi,Noriyuki; Murakami,Yasuo; Miyata,Hiroaki, Access server with function of collecting communication statistics information.
상세보기
Mukherjee, Arghya; Bhupalam, Bhaskar; Kabadi, Ashwin Anilkumar; Muppala, Venkatanarayana, Allowing network access for proxy mobile IP cases for nodes that do not support CHAP authentication.
상세보기
Pecen, Mark; Andersen, Niels Peter Skov; Periyalwar, Shalini Suresh; Campagna, Matthew, Authentication procedures for managing mobile device applications.
상세보기
Quayle, Roger Phillip; Jones, William John; Jones, Alan Edward, Cellular wireless internet access system using spread spectrum and internet protocol.
상세보기
Bluestone, Derek; Adams, Clint; Yalamarti, Srinivas; Lebel, Pierre-Philippe, Client-side network access policies and management applications.
상세보기
Kurita, Shigetaka; Hirose, Norihiko; Nakatsuchi, Masaharu; Sasaki, Keizaburo, Communication system for mobile devices.
상세보기
Halme,Matti, Data transmission control and performance monitoring method of an IPSec link in a virtual private network.
상세보기
Chowdhury,Kuntal; Wenzel,Peter W., Discovering an address of a name server.
상세보기
Patel, Alpesh S.; Leung, Kent K.; Salowey, Joseph A.; Shao, Yu Cheng, EAP/SIM authentication for mobile IP to leverage GSM/SIM authentication infrastructure.
상세보기
Kwak, Seunghwan; Park, Jonghoon; Han, Jungpyo; Lee, Sangyun; Oh, Sehyun; Kim, Sung; Lee, Myungsung; Kim, Namgyu; Yang, Hojin; Ha, Seongho; Ihm, Jongtae, Fast data-link connection method for saving connection time in CDMA 2000 network.
상세보기
Tan, Pek Yew; Cheng, Hong; Ue, Toyoki, Identification information protection method in WLAN inter-working.
상세보기
Wenzel,Peter; Chowdhury,Kuntal, Identification of unused resources in a packet data network.
상세보기
Dommety, Gopal; Patel, Alpesh, Infrastructure-less bootstrapping: trustless bootstrapping to enable mobility for mobile devices.
상세보기
Dommety,Gopal; Patel,Alpesh, Infrastructure-less bootstrapping: trustless bootstrapping to enable mobility for mobile devices.
상세보기
Pecen, Mark; Andersen, Niels Peter Skov; Periyalwar, Shalini Suresh; Campagna, Matthew, Managing mobile device applications.
상세보기
Pecen, Mark; Andersen, Niels Peter Skov; Periyalwar, Shalini Suresh; Campagna, Matthew, Managing mobile device applications in a wireless network.
상세보기
Pecen, Mark; Andersen, Niels Peter Skov; Periyalwar, Shalini Suresh; Campagna, Matthew, Managing mobile device applications on a mobile device.
상세보기
Raphaeli,Dan; Bassin,Evgeny; Mushkin,Mordechai; Kaufman,Oren; Rosing,Tanya, Mechanism for detecting intrusion and jamming attempts in a shared media based communications network.
상세보기
Chowdhury,Kuntal; Manning,Serge; Boulos,Pierre, Method and apparatus for dynamically assigning a home agent.
상세보기
Boehmer, Bernhard; Leitgeb, Manfred, Method and arrangement for controlling access to data in mobile communications networks.
상세보기
Edgett,Jeff Steven; Sunder,Singam, Method and system for associating a plurality of transaction data records generated in a service access system.
상세보기
Lim,Byung Keun, Method and system for packet data transmission.
상세보기
Kupsh, Jerry; Chen, Xuming, Method and system for securely delivering authentication-related data.
상세보기
Edgett, Jeff Steven; Nelson, Barbara; Vollbrecht, John Robert; Albert, Roy David; Underwood, James Marion; Bullock, Blair Thomas, Method and system for verifying and updating the configuration of an access device during authentication.
상세보기
Sunder, Singam; Edgett, Jeff Steven; Albert, Roy David, Method and system of providing access point data associated with a network access point.
상세보기
Cao, Wenli, Method for preventing IP address from unexpected dispersion when using point-to-point protocol.
상세보기
Leung, Kent K.; Gundavelli, Srinath, Methods and apparatus for authenticating mobility entities using kerberos.
상세보기
Gundavelli, Srinath; Leung, Kent; Patel, Alpesh, Methods and apparatus for bootstrapping Mobile-Foreign and Foreign-Home authentication keys in Mobile IP.
상세보기
Gundavelli, Srinath; Leung, Kent; Patel, Alpesh, Methods and apparatus for bootstrapping mobile-foreign and foreign-home authentication keys in mobile IP.
상세보기
Patel,Alpesh; Leung,Kent K.; Raab,Stefan; Dommety,Gopal, Methods and apparatus for dynamic session key generation and rekeying in mobile IP.
상세보기
Narayanan, Vidya; Ulupinar, Fatih; Wang, Jun; Dondeti, Lakshminath Reddy; Hsu, Raymond Tah-Sheng, Methods and apparatus for providing PMIP key hierarchy in wireless communication networks.
상세보기
Nicodemus, Blair Gaver; Stephens, Billy Edison, Methods and systems for controlling access to computing resources based on known security vulnerabilities.
상세보기
Nicodemus, Blair; Stephens, Billy Edison, Methods and systems for controlling access to computing resources based on known security vulnerabilities.
상세보기
Nicodemus, Blair; Stephens, Billy Edison, Methods and systems for controlling access to computing resources based on known security vulnerabilities.
상세보기
Vashi, Prashant H.; Elangovan, Thanigaivelu; Yerrabommanahalli, Vikram Bhaskara, Negotiating a session personality based at least in part on a roaming agreement.
상세보기
Teraoka, Hitomi; Nakahara, Naruhito, Packet data serving node and communication method using the same.
상세보기
Young,Albert; O'Hara,Bob; Nessett,Danny M.; Tsai,Joe; Chen,BoFu, Protected mutual authentication over an unsecured wireless communication channel.
상세보기
Dyck,Jeffrey Alan; Lioy,Marcello, Proxy authentication for tethered devices.
상세보기
Sharma, Shshank; Dyck, Jeffrey Alan; Lloy, Marcello, Proxy-encrypted authentication for tethered devices.
상세보기
Jing,Dongfeng; Perkins,Charles E., Secure key distribution protocol in AAA for mobile IP.
상세보기
Nikander, Pekka; Arkko, Jari, Secure traffic redirection in a mobile communication system.
상세보기
Carroll,Christopher; Clare,Varsha; Flynn,Gerry; Green,Brian; Rados,Steve; Thomas,Steve, Secure, efficient, and mutually authenticated cryptographic key distribution.
상세보기
Costa Requena,Jose; Immonen,Jukka; Aholainen,Markus; Hietasarka,Juha; Korhonen,Ossi; Ruutu,Jussi, System, apparatus, and method for providing generic internet protocol authentication.
상세보기
Nicodemus,Blair Gaver; Bluestone,Derek; Adams,Clinton; Pappano,Joseph E.; Pressman,Howard M., System, method, apparatus and computer program product for facilitating digital communications.
상세보기
Nicodemus, Blair Gaver; Bluestone, Derek; Adams, Clinton; Pappano, Joseph E.; Pressman, Howard M., System, method, apparatus, and computer program product for facilitating digital communications.
상세보기
Jones, William John; Bowring, Michael, Use of internet web technology to register wireless access customers.
상세보기
Williams, Andrew, Use of radius in UMTS to perform accounting functions.
상세보기
Porozni, Barry Ian; Nicodemus, Blair Gaver; Schille, Glenn Alan, Wireless access system, method, signal, and computer program product.
상세보기
King, Chao; Christ, John R., Wireless communication authentication process and system.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

Method and apparatus for authentication in a wireless telecommunications system 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (4)

이 특허를 인용한 특허 (50)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

Method and apparatus for authentication in a wireless telecommunications system 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (4)

이 특허를 인용한 특허 (50)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트