Invention Grant
- Patent Title: Method and apparatus for providing authentication, authorization and accounting to roaming nodes
- Patent Title (中): 用于向漫游节点提供认证,授权和计费的方法和装置
-
Application No.: US10435622Application Date: 2003-05-09
-
Publication No.: US07882346B2Publication Date: 2011-02-01
- Inventor: Alan O'Neill , Michaela Vanderveen , George Tsirtsis , Vincent Park
- Applicant: Alan O'Neill , Michaela Vanderveen , George Tsirtsis , Vincent Park
- Applicant Address: US CA San Diego
- Assignee: QUALCOMM Incorporated
- Current Assignee: QUALCOMM Incorporated
- Current Assignee Address: US CA San Diego
- Agent Won Tae C Kim
- Main IPC: H04L9/32
- IPC: H04L9/32 ; H04L29/06 ; H04L9/00 ; H04K1/00 ; H04M1/66 ; H04W4/00
Abstract:
This invention proposes an integrated process for AAA (Authentication, Authorisation, and Accounting) with the order reversed whereby L2 follows L3. The L3 process treats the wireless link as any normal IP access link, and the L3 authorisation provides L3 processing, but also includes the L2 terminal authentication identifiers so that the L2 security parameters can also be returned. This means that the wireless link and the IP layer are not secured until after the L3 authorisation has completed and therefore the first IP messages that trigger authorisation are sent insecurely. This invention also provides methods to avoid these insecure messages presenting any opportunities to an attacker. Finally, the inventions include methods to enable L3 before L2 authorisation when a user is roaming in a foreign network.
Public/Granted literature
- US20040073786A1 Method and apparatus for providing authentication, authorization and accounting to roaming nodes Public/Granted day:2004-04-15
Information query
