End-to-end M2M service layer sessions

US 10,530,757 B2
Filed: 07/25/2014
Issued: 01/07/2020
Est. Priority Date: 07/25/2013
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, by a service layer session management function, a session request to create a communication session;

determining, based on the session request, a first application, a second application, and at least a first service layer instance for the communication session, the communication session comprising multiple hops, wherein the session request comprises an indication of whether the first application and the second application support end-to-end secured communications;

providing a session credential to the first application, the second application, and the at least first service layer instance of the communication session,wherein the session credential is used to provide multi-hop, end-to-end secured communications between the first application and the second application through the at least first service layer instance,wherein the session credential is bootstrapped to the first application, the second application and the at least first service layer instance;

maintaining, by the service layer session management function, session state information indicating current state of the communication session, the session state information including at least a parameter indicating the communication session is in an online mode or an offline mode;

based on the session credential, the session request, and the session state information, managing the communication session;

maintaining, by the service layer session management function, session description information indicating a description of the communication session; and

based on the session description information, supporting discovery of the communication session by a third application.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Mechanisms support machine-to-machine service layer sessions that can span multiple service layer hops where a machine-to-machine service layer hop is a direct machine-to-machine service layer communication session between two machine-to-machine service layer instances or between a machine-to-machine service layer instance and a machine-to-machine application. Mechanisms are also disclosed that illustrate machine-to-machine session establishment procedures for oneM2M Session Management Service supporting multiple resources.

61 Citations

View as Search Results

20 Claims

1. A method comprising:
- receiving, by a service layer session management function, a session request to create a communication session;
  
  determining, based on the session request, a first application, a second application, and at least a first service layer instance for the communication session, the communication session comprising multiple hops, wherein the session request comprises an indication of whether the first application and the second application support end-to-end secured communications;
  
  providing a session credential to the first application, the second application, and the at least first service layer instance of the communication session,wherein the session credential is used to provide multi-hop, end-to-end secured communications between the first application and the second application through the at least first service layer instance,wherein the session credential is bootstrapped to the first application, the second application and the at least first service layer instance;
  
  maintaining, by the service layer session management function, session state information indicating current state of the communication session, the session state information including at least a parameter indicating the communication session is in an online mode or an offline mode;
  
  based on the session credential, the session request, and the session state information, managing the communication session;
  
  maintaining, by the service layer session management function, session description information indicating a description of the communication session; and
  
  based on the session description information, supporting discovery of the communication session by a third application.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, wherein, the session credential is adapted to allow the first service layer instance to compress and decompress application data of the communication session flowing through the first service layer instance.
  - 3. The method of claim 1, wherein the session credential is periodically refreshed based on a lifetime of the session credential.
  - 4. The method of claim 3, wherein the session credential is adapted to allow the first service layer instance to encrypt and decrypt application data of the communication session flowing through the first service layer instance.
  - 5. The method of claim 1, further comprising receiving a service layer session response to create a communication, wherein the response comprises a list of application identifiers, end-to-end service layer session identifier, or end-to-end service layer session credentials for the communication session.
  - 6. The method of claim 1, further comprising authenticating the first application with the first service layer instance based on the session credential.
  - 7. The method of claim 1, further comprising:
    - interfacing with one or more other functions in the first service layer instance to provide value-added data services for messages flowing through the at least first service layer instance, the value-added data services comprise whether data of the communication session flowing through the first service layer instance can be aggregated with other data; and
      
      storing a session state of the communication session.
  - 8. The method of claim 7, wherein the session state is stored as a session cookie.

9. An apparatus comprising:
- a processor; and
  
  a memory coupled with the processor, the memory having stored thereon executable instructions that when executed by the processor cause the processor to effectuate operations comprising;
  
  receiving a session request to create a communication session;
  
  determining, based on the session request, a first application, a second application, and at least a first service layer instance for the communication session, the communication session comprising multiple hops, wherein the session request comprises an indication of whether the first application and the second application support end-to-end secured communications;
  
  providing a session credential to the first application, the second application, and the at least first service layer instance of the communication session,wherein the session credential is used to provide multi-hop, end-to-end secured communications between the first application and the second application through the at least first service layer instance,wherein the session credential is bootstrapped to the first application, the second application and the at least first service layer instance;
  
  maintaining, by a service layer session management function, session state information indicating current state of the communication session, the session state information including at least a parameter indicating the communication session is in an online mode or an offline mode;
  
  based on the session credential, the session request, and the session state information, managing the communication sessions;
  
  maintaining, by the service layer session management function, session description information indicating a description of the communication session; and
  
  based on the session description information, supporting discovery of the communication session by a third application.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The apparatus of claim 9, wherein, the session credential is adapted to allow the first service layer instance to compress and decompress application data of the communication session flowing through the first service layer instance.
  - 11. The apparatus of claim 9, wherein the session credential is periodically refreshed based on a lifetime of the session credential.
  - 12. The apparatus of claim 11, wherein the session credential is adapted to allow the first service layer instance to encrypt and decrypt application data of the communication session flowing through the first service layer instance.
  - 13. The apparatus of claim 9, further comprising receiving a service layer session response to create a communication session, wherein the response comprises a list of application identifiers, end-to-end service layer session identifier, or end-to-end service layer session credentials for the communication session.
  - 14. The apparatus of claim 9, further operations comprising authenticating the first application with the first service layer instance based on the session credential.
  - 15. The apparatus of claim 9, further operations comprising storing a session state of the communication session.
  - 16. The apparatus of claim 15, wherein the session state is stored as a session cookie.

17. A computer readable storage medium that is not a signal comprising computer executable instructions that when executed by a computing device cause said computing device to perform the instructions comprising:
- receiving a session request to create a communication session;
  
  determining, based on the session request, a first application, a second application, and at least a first service layer instance for the communication session, the communication session comprising multiple hops, wherein the session request comprises an indication of whether the first application and the second application support end-to-end secured communications;
  
  providing a session credential to the first application, the second application, and the at least first service layer instance of the communication session,wherein the session credential is used to provide multi-hop, end-to-end secured communications between the first application and the second application through the at least first service layer instance,wherein the session credential is bootstrapped to the first application, the second application and the at least first service layer instance;
  
  maintaining, by a service layer session management function, session state information indicating current state of the communication session, the session state information including at least a parameter indicating the communication session is in an online mode or an offline mode;
  
  based on the session credential, the session request, and the session state information, managing the communication session,maintaining, by the service layer session management function, session description information indicating a description of the communication session; and
  
  based on the session description information, supporting discovery of the communication session by a third application.
- View Dependent Claims (18, 19, 20)
- - 18. The computer readable storage medium that is not a signal of claim 17, further instructions comprising:
    - retrieving, by the first service layer instance, a session cookie from the first application, wherein the session cookie includes historical activity of the first application.
  - 19. The computer readable storage medium that is not a signal of claim 17, wherein, the session credential is adapted to allow the first service layer instance to compress and decompress application data of the communication session flowing through the first service layer instance.
  - 20. The computer readable storage medium that is not a signal of claim 17, further instructions comprising authenticating the first application with the first service layer instance based on the session credential.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Convida Wireless LLC
Original Assignee
Convida Wireless LLC
Inventors
Seed, Dale N., Dong, Lijun, Lu, Guang, Starsinic, Michael F.
Primary Examiner(s)
Siddiqi, Mohammad A

Application Number

US14/341,479
Publication Number

US 20150033311A1
Time in Patent Office

1,992 Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/0428   wherein the data content is...

H04L 63/062   for key distribution, e.g. ...

H04L 63/08   for authentication of entit...

H04L 67/10   in which an application is ...

H04L 67/12   specially adapted for propr...

H04L 67/14   Session management for real...

H04L 67/141   Setup of application sessio...

H04L 67/142   Managing session states for...

H04L 67/56   Provisioning of proxy servi...

H04L 69/08   Protocols for interworking;...

H04L 69/18   Multiprotocol handlers, e.g...

H04L 69/321   Interlayer communication pr...

H04W 12/02   Protecting privacy or anony...

H04W 12/033   of the user plane, e.g. use...

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 4/60   Subscription-based services...

H04W 4/70   Services for machine-to-mac...

H04W 76/10   Connection setup

End-to-end M2M service layer sessions

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

61 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

End-to-end M2M service layer sessions

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

61 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links