IP security and mobile networking

Number of patents in Portfolio can not be more than 2000

United States of America Patent

APP PUB NO 20020161905A1
SERIAL NO

10119509

Stats

ATTORNEY / AGENT: (SPONSORED)

Importance

Loading Importance Indicators... loading....

Abstract

See full text

The invention discloses a method transferring packets between a mobile host device (100) and a source node via a number of independent data networks while maintaining a secure connection. The independent networks may include, for example, the Internet (120), localized Access Zones (110, 140), a Corporate Intranets, a Home Network (130) etc. Problems may occur, for example, when the mobile node is using a co-located care-of address, in which case both IP-in-IP and IPsec tunneling transformations are performed, and the current IPsec and IP-in-IP implementations cannot perform the required tunneling operations on the mobile host. This is because the IP-in-IP and IPsec tunneling when the IP-in-IP tunnel is not the outermost transformation. In an embodiment of the invention, the security policy operated by the mobile host includes a primary security policy and a dynamic secondary security policy that selectively apply specified transformations to certain packets in the data transfer.

Loading the Abstract Image... loading....

First Claim

See full text

Family

Loading Family data... loading....

Patent Owner(s)

Patent OwnerAddressTotal Patents
NOKIA CORPORATIONESPOO564

International Classification(s)

Inventor(s)

Inventor Name Address # of filed Patents Total Citations
Haverinen, Henry Tampere, FI 52 1501
Honkanen, Jukka-Pekka Tampere, FI 11 343
Kuikka, Antti J Toijah, FI 1 76

Cited Art Landscape

Patent Info (Count) # Cites Year
 
TREND MICRO INCORPORATED (1)
* 6330562 System and method for managing security objects 190 1999
 
NATIONAL SECURITY AGENCY (1)
* 6141755 Firewall security apparatus for high-speed circuit switched networks 50 1998
 
HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP (2)
* 6055236 Method and system for locating network services with distributed network address translation 444 1999
* 7028335 Method and system for controlling attacks on distributed network address translation enabled networks 58 1999
 
TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) (1)
* 6061346 Secure access method, and associated apparatus, for accessing a private IP network 246 1997
 
KABUSHIKI KAISHA TOSHIBA (2)
* 6170057 Mobile computer and method of packet encryption and authentication in mobile computing based on security policy of visited network 97 1997
* 6163843 Packet inspection device, mobile computer and packet transfer method in mobile computing with improved mobile computer authenticity check scheme 52 1997
 
FUJITSU LIMITED (1)
* 2002/0006,133 Communications service providing system, and mobile terminal device, address server device, and router device for use therewith 55 2001
 
MCAFEE, INC. (2)
* 5950195 Generalized security policy management system and method 291 1996
* 5983350 Secure firewall supporting different levels of authentication based on address or encryption status 294 1996
* Cited By Examiner

Patent Citation Ranking

Forward Cite Landscape

Patent Info (Count) # Cites Year
 
TROPOS NETWORKS, INC. (4)
* 7649866 Method of subnet roaming within a network 18 2004
* 2005/0074,015 Method of subnet roaming within a network 94 2004
* 8064404 Method of subnet roaming within a network 0 2009
* 2010/0085,920 Method of Subnet Roaming within a Network 7 2009
 
Other [Check patent profile for assignment information] (2)
* 2009/0138,619 METHOD AND APPARATUS FOR ASSIGNING NETWORK ADDRESSES BASED ON CONNECTION AUTHENTICATION 7 2009
* 2010/0269,155 Method and Apparatus for Registering Auto-Configured Network Addresses Based On Connection Authentication 10 2010
 
ROSALIND FRANKLIN UNIVERSITY OF MEDICINE AND SCIENCE (1)
* 2004/0107,345 System and methodology providing automation security protocols and intrusion detection in an industrial controller environment 49 2003
 
ROCKWELL AUTOMATION TECHNOLOGIES, INC. (5)
8909926 System and methodology providing automation security analysis, validation, and learning in an industrial controller environment 2 2003
* 2004/0153,171 System and methodology providing automation security architecture in an industrial controller environment 65 2003
* 2008/0077,976 CRYPTOGRAPHIC AUTHENTICATION PROTOCOL 10 2006
9009084 System and methodology providing automation security analysis and network intrusion protection in an industrial environment 1 2012
9412073 System and methodology providing automation security analysis and network intrusion protection in an industrial environment 1 2015
 
ROCKSTAR BIDCO, LP (1)
* 2010/0290,621 TUNNELING SUPPORT FOR MOBILE IP USING A KEY FOR FLOW IDENTIFICATION 13 2008
 
SONY ELECTRONICS INC. (4)
* 2005/0135,628 System and method for authenticating components in wireless home entertainment system 6 2004
* 2005/0102,652 System and method for building software suite 12 2004
7640577 System and method for authenticating components in wireless home entertainment system 0 2006
* 2007/0192,488 System and method for authenticating components in wireless home entertainment system 4 2006
 
NOKIA TECHNOLOGIES OY (1)
* 2005/0198,306 System, method and computer program product for accessing at least one virtual private network 58 2004
 
SONUS NETWORKS, INC. (34)
7996009 Method for authenticating access to an unlicensed wireless communications system using a licensed wireless communications system authentication process 0 2002
* 2011/0149,838 METHOD AND SYSTEM FOR SIGNALING TRAFFIC AND MEDIA TYPES WITHIN A COMMUNICATIONS NETWORK SWITCHING SYSTEM 9 2005
7957348 Method and system for signaling traffic and media types within a communications network switching system 10 2005
7606190 Apparatus and messages for interworking between unlicensed access network and GPRS network for data services 37 2005
7843900 Mechanisms to extend UMA or GAN to inter-work with UMTS core network 8 2005
7606568 Messaging for registration in an unlicensed wireless communication system 18 2005
* 2006/0009,202 Messaging for release of radio resources in an unlicensed wireless communication system 65 2005
7634270 GPRS data protocol architecture for an unlicensed wireless communication system 5 2005
7634271 GSM signaling protocol architecture for an unlicensed wireless communication system 3 2005
* 7283822 Service access control interface for an unlicensed wireless communication system 52 2006
* 7272397 Service access control interface for an unlicensed wireless communication system 48 2006
* 2006/0223,497 Service access control interface for an unlicensed wireless communication system 11 2006
7885644 Method and system of providing landline equivalent location information over an integrated communication system 50 2007
* 2007/0238,448 METHOD AND SYSTEM OF PROVIDING LANDLINE EQUIVALENT LOCATION INFORMATION OVER AN INTEGRATED COMMUNICATION SYSTEM 117 2007
8165086 Method of providing improved integrated communication system data service 1 2007
7912004 Generic access to the Iu interface 11 2007
7852817 Generic access to the Iu interface 13 2007
7454207 Service access control interface for an unlicensed wireless communication system 21 2007
8204502 Method and apparatus for user equipment registration 17 2007
8073428 Method and apparatus for securing communication between an access point and a network controller 48 2007
8036664 Method and apparatus for determining rove-out 37 2007
7995994 Method and apparatus for preventing theft of service in a communication system 86 2007
8150397 Method and apparatus for establishing transport channels for a femtocell 22 2007
8005076 Method and apparatus for activating transport channels in a packet switched communication system 13 2007
8019331 Femtocell integration into the macro network 20 2008
8090371 Network controller messaging for release in an unlicensed wireless communication system 4 2008
7773993 Network controller messaging for channel activation in an unlicensed wireless communication system 11 2008
7668558 Network controller messaging for paging in an unlicensed wireless communication system 4 2008
7684803 Network controller messaging for ciphering in an unlicensed wireless communication system 9 2008
7818007 Mobile station messaging for ciphering in an unlicensed wireless communication system 5 2008
7769385 Mobile station messaging for registration in an unlicensed wireless communication system 11 2008
8041335 Method and apparatus for routing of emergency services for unauthorized user equipment in a home Node B system 64 2009
8130703 Apparatus and messages for interworking between unlicensed access network and GPRS network for data services 2 2009
8045493 Mechanisms to extend UMA or GAN to inter-work with UMTS core network 0 2010
 
HITACHI, LTD. (2)
* 8437345 Terminal and communication system 1 2004
* 2007/0081,512 Terminal and communication system 29 2004
 
BIRDSTEP TECHNOLOGY ASA (2)
* 2004/0078,600 Seamless IP mobility across security boundaries 20 2003
* 2008/0040,793 Seamless IP mobility across security boundaries 7 2007
 
RAPPORE TECHNOLOGIES (1)
7308703 Protection of data accessible by a mobile device 117 2003
 
MOTOROLA SOLUTIONS, INC. (3)
8677114 Application steering and application blocking over a secure tunnel 1 2007
* 2008/0165,964 APPLICATION STEERING AND APPLICATION BLOCKING OVER A SECURE TUNNEL 7 2007
* 2012/0254,615 USING A DYNAMICALLY-GENERATED SYMMETRIC KEY TO ESTABLISH INTERNET PROTOCOL SECURITY FOR COMMUNICATIONS BETWEEN A MOBILE SUBSCRIBER AND A SUPPORTING WIRELESS COMMUNICATIONS NETWORK 0 2011
 
APPLE INC. (4)
7353533 Administration of protection of data accessible by a mobile device 340 2003
* 2004/0123,153 Administration of protection of data accessible by a mobile device 159 2003
9237514 System and method for filtering access points presented to a user and locking onto an access point 0 2005
* 2006/0094,400 System and method for filtering access points presented to a user and locking onto an access point 106 2005
 
SENFORCE TECHNOLOGIES (2)
7526800 Administration of protection of data accessible by a mobile device 96 2004
* 2005/0055,578 Administration of protection of data accessible by a mobile device 259 2004
 
MICROSOFT TECHNOLOGY LICENSING, LLC (6)
7991854 Dynamic session maintenance for mobile computing devices 54 2004
7457626 Virtual private network structure reuse for mobile computing devices 18 2004
* 2005/0210,150 Dynamic session maintenance for mobile computing devices 78 2004
* 2005/0208,947 Virtual private network structure reuse for mobile computing devices 55 2004
8909743 Dynamic session maintenance for mobile computing devices 0 2011
* 2011/0238,801 DYNAMIC SESSION MAINTENANCE FOR MOBILE COMPUTING DEVICES 0 2011
 
AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD. (4)
* 8418241 Method and system for traffic engineering in secured networks 2 2007
* 2008/0115,203 METHOD AND SYSTEM FOR TRAFFIC ENGINEERING IN SECURED NETWORKS 3 2007
9185097 Method and system for traffic engineering in secured networks 1 2013
9461975 Method and system for traffic engineering in secured networks 0 2015
 
NETOCTAVE, INC. (1)
* 2003/0195,973 Methods, systems, and computer program products for processing a packet with layered headers using a data structure that positionally relates the layered headers 6 2002
 
MICRO FOCUS SOFTWARE INC. (3)
8566571 Pre-boot securing of operating system (OS) for endpoint evaluation 2 2008
* 2010/0153,696 Pre-boot securing of operating system (OS) for endpoint evaluation 27 2008
* 8838804 Securing a network connection by way of an endpoint computing device 0 2009
 
NOKIA SIEMENS NETWORKS OY (1)
* 2004/0268,124 Systems and methods for creating and maintaining a centralized key store 22 2003
 
NOVELL, INC. (2)
9197668 Access control to files based on source information 0 2006
* 2006/0120,526 Access control to files based on source information 126 2006
 
CISCO TECHNOLOGY, INC. (7)
7502929 Method and apparatus for assigning network addresses based on connection authentication 15 2001
* 7143435 Method and apparatus for registering auto-configured network addresses based on connection authentication 34 2002
8122136 Methods and apparatus for providing security to a computerized device 6 2002
* 7577837 Method and apparatus for encrypted unicast group communication 3 2003
* 7752653 Method and apparatus for registering auto-configured network addresses based on connection authentication 2 2006
7886149 Method and apparatus for assigning network addresses based on connection authentication 1 2009
8291489 Method and apparatus for registering auto-configured network addresses based on connection authentication 3 2010
 
Check Point Software Technologies, Inc. (1)
* 2004/0266,420 System and method for secure mobile connectivity 15 2003
 
COMCAST CABLE COMMUNICATIONS, LLC (1)
9648644 Determining a location of a device for calling via an access point 0 2015
 
FUJITSU LIMITED (1)
8752131 Facilitating protection of a maintenance entity group 0 2008
 
TELCORDIA TECHNOLOGIES, INC. (2)
* 8565186 Methods of mitigation of trombone routing in an IMS/MMD network 0 2007
* 2008/0070,573 Methods of mitigation of trombone routing in an IMS/MMD network 16 2007
 
INTEL CORPORATION (2)
* 7039404 Continuous mobility across wireless networks by integrating mobile IP and GPRS mobility agents 31 2002
* 2004/0025,051 Secure roaming using distributed security gateways 5 2002
 
HARRIS CORPORATION (13)
8935780 Mission management for dynamic computer networks 0 2012
8898795 Bridge for communicating with a dynamic computer network 0 2012
8819818 Dynamic computer network with variable identity parameters 0 2012
9154458 Systems and methods for implementing moving target technology in legacy hardware 0 2012
9130907 Switch for communicating data in a dynamic computer network 0 2012
9075992 Systems and methods for identifying, deterring and/or delaying attacks to a network using shadow networking techniques 0 2012
8966626 Router for communicating data in a dynamic computer network 0 2012
8959573 Noise, encryption, and decoys for communications in a dynamic computer network 6 2012
8935786 Systems and methods for dynamically changing network states 0 2012
8898782 Systems and methods for spontaneously configuring a computer network 0 2012
9503324 Systems and methods for enterprise mission management of a computer network 0 2013
9338183 Session hopping 0 2013
9264496 Session hopping 0 2014
 
GEORGIA TECH RESEARCH CORPORATION (2)
* 9621384 Systems and methods for communicating data over parallel data paths 0 2005
* 2005/0185,621 Systems and methods for parallel communication 15 2005
 
NOKIA CORPORATION (1)
* 2006/0111,113 Virtual private network with mobile nodes 42 2002
* Cited By Examiner