Method and apparatus for providing low-latency secure session continuity between mobile nodes
First Claim
1. A method comprising:
- establishing a first internal communication tunnel between a first mobile node and a first internal home agent via a security gateway;
establishing a second internal communication tunnel between a second mobile node and a second internal home agent via the security gateway;
bridging, at the security gateway, the communication between the first mobile node and the second mobile node such that the first internal communication tunnel and the second internal communication tunnel are not needed to convey the communication between the first mobile node and the second mobile node.
4 Assignments
0 Petitions
Accused Products
Abstract
In accordance with at least one embodiment of the present invention, IP application traffic can be provided confidentiality to and from one or more mobile nodes (MNs) belonging to the same domain even when such MNs are remotely located. It is possible to provide, preferably at all times, a similar level of confidentiality and integrity in communications between MNs as is typically provided within a corporate environment (e.g., within a secured intranet). Secure and efficient communication is provided when one or more MNs is communicating via a connection that cannot be presumed to be inherently secure, for example, a connection to a public network such as the internet or a network outside of a secured intranet.
-
Citations
20 Claims
-
1. A method comprising:
-
establishing a first internal communication tunnel between a first mobile node and a first internal home agent via a security gateway;
establishing a second internal communication tunnel between a second mobile node and a second internal home agent via the security gateway;
bridging, at the security gateway, the communication between the first mobile node and the second mobile node such that the first internal communication tunnel and the second internal communication tunnel are not needed to convey the communication between the first mobile node and the second mobile node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. Apparatus comprising:
-
a first mobile node;
a first home agent coupled to the first mobile node via a first internal communication tunnel;
a second mobile node;
a second home agent coupled to the second mobile node via a second internal communication tunnel;
a security gateway coupled to the first internal communication tunnel and the second internal communication tunnel, wherein the security gateway bridges communication between the first mobile node and the second mobile node such that the first internal communication tunnel and the second internal communication tunnel are not needed to convey the communication between the first mobile node and the second mobile node. - View Dependent Claims (18, 19, 20)
-
Specification