Adaptive IPsec processing in mobile-enhanced virtual private networks
First Claim
Patent Images
1. A method providing secure mobility for a terminal in a mobile system comprising at least two IP based sub-networks, the method comprising:
- detecting a change of an IP based sub-network by the terminal;
updating connection parameters of the terminal so as to be connected with a new IP based sub-network;
detecting security requirements of the new IP based sub-network; and
adapting security associations of the terminal connected to the new IP based sub-network to the security requirements of the new IP based sub-network.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed is a method providing secure mobility for a terminal in a mobile system comprising at least two IP based sub-networks. The method comprises to detect a change of the IP based sub-network by the terminal. The connection parameters of the terminal are updated so as to be connected with a new IP based sub-network. Further, the security requirements of the new IP based sub-network are detected, and the security associations of the terminal to the new IP based sub-network are adapted to the security requirements of the new IP based sub-network.
35 Citations
20 Claims
-
1. A method providing secure mobility for a terminal in a mobile system comprising at least two IP based sub-networks, the method comprising:
-
detecting a change of an IP based sub-network by the terminal;
updating connection parameters of the terminal so as to be connected with a new IP based sub-network;
detecting security requirements of the new IP based sub-network; and
adapting security associations of the terminal connected to the new IP based sub-network to the security requirements of the new IP based sub-network. - View Dependent Claims (2, 3, 4)
-
-
5. A system comprising:
-
a terminal; and
a mobile system comprising at least two IP based sub-networks and a gateway node;
wherein the system is configured to detect a change of an IP based sub-network by the terminal, update connection parameters of the terminal so as to be connected with a new IP based sub-network, detect security requirements of the new IP based sub-network, and adapt security associations of the terminal connected to the new IP based sub-network to the security requirements of the new IP based sub-network. - View Dependent Claims (6, 7, 8)
-
-
9. A gateway node of a mobile system, wherein the gateway node is configured to
detect a change of an IP based sub-network by the terminal, update connection parameters of the terminal so as to be connected with a new IP based sub-network, detect security requirements of the new IP based sub-network, and adapt security associations of the terminal connected to the new IP based sub-network to the security requirements of the new IP based sub-network.
-
13. A terminal configured to change a connection between IP based sub-networks of a mobile system, and configured to
detect a change of an IP based sub-network by the terminal, update connection parameters of the terminal so as to be connected with a new IP based sub-network, detect security requirements of the new IP based sub-network, and adapt security associations of the terminal connected to the new IP based sub-network to the security requirements of the new IP based sub-network.
-
17. A computer program product, comprising processor implementable instruction portions, wherein, when the computer program product is run on a computer, the following steps are performed:
-
detecting a change of an IP based sub-network by the terminal;
updating connection parameters of the terminal so as to be connected with a new IP based sub-network;
detecting security requirements of the new IP based sub-network; and
adapting security associations of the terminal connected to the new IP based sub-network to the security requirements of the new IP based sub-network. - View Dependent Claims (18, 19)
-
-
20. A signal for carrying processor implementable instructions for controlling a computer to perform the following steps:
-
detecting a change of an IP based sub-network by the terminal;
updating connection parameters of the terminal so as to be connected with a new IP based sub-network;
detecting security requirements of the new IP based sub-network; and
adapting security associations of the terminal connected to the new IP based sub-network to the security requirements of the new IP based sub-network.
-
Specification