Providing anonymity to a mobile node in a session with a correspondent node
First Claim
1. A method of providing unlinkability to a mobile node in a session with a correspondent node, the method comprising the steps of:
- sending a first update from said mobile node towards said correspondent node, said first update comprising a first sequence value;
calculating at said correspondent node an expected sequence value based at least in part on said first sequence value, using a first hashing mechanism;
creating at said correspondent node a table entry for said session, said table entry for storing said expected sequence value;
calculating at said mobile node a second sequence value based at least in part on said first sequence value, using said first hashing mechanism;
sending from said mobile node towards said correspondent node a second update comprising said second sequence value; and
identifying at said correspondent node said table entry by looking through said table for a match between said expected sequence value and said second sequence value.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, a correspondent node and a mobile node provide anonymity and unlinkability to a mobile node in a session with a correspondent node. Sequence values, calculated based on secret data, are added to updates sent from the mobile node towards the correspondent node and are used by the correspondent node to authenticate updates from the mobile node. A home address of the mobile node is not explicitly disclosed. An expected care-of address is calculated at the correspondent node and used by the correspondent node to send data packets to the mobile node.
-
Citations
19 Claims
-
1. A method of providing unlinkability to a mobile node in a session with a correspondent node, the method comprising the steps of:
-
sending a first update from said mobile node towards said correspondent node, said first update comprising a first sequence value;
calculating at said correspondent node an expected sequence value based at least in part on said first sequence value, using a first hashing mechanism;
creating at said correspondent node a table entry for said session, said table entry for storing said expected sequence value;
calculating at said mobile node a second sequence value based at least in part on said first sequence value, using said first hashing mechanism;
sending from said mobile node towards said correspondent node a second update comprising said second sequence value; and
identifying at said correspondent node said table entry by looking through said table for a match between said expected sequence value and said second sequence value. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A mobile node, comprising:
-
a memory for storing a first sequence value and a second sequence value;
a processor for calculating said first sequence value, for storing said first sequence value in said memory, for reading said first sequence value from said memory, for calculating said second sequence value by use of a first hashing mechanism, based at least in part on said first sequence value, and for storing in said memory said second sequence value;
an access interface for sending towards a corresponderit node a first update comprising said first sequence value and a second update comprising said second sequence value; and
a communication logic for controlling a session with said correspondent node, said communication logic requesting said processor to calculate said first and said second sequence values and requesting said access interface to send said first and said second updates. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A correspondent node comprising:
-
an input port for receiving a first update comprising a first address and a first sequence value, said first update being for a session with a mobile node, and for receiving a second update for said session, said second update comprising a second address and a second sequence value;
a processor for calculating an expected sequence value based at least in part on said first sequence value, using a first hashing mechanism, and for calculating a new expected sequence value based at least in part on said second sequence value;
a table for storing a table entry for said session with said mobile node, wherein said table entry comprises said first address and a pointer for said table entry, said pointer being equal to said expected sequence value, for overwriting in said table entry said pointer with said new expected sequence value, and for overwriting in said table entry said first address with an expected care-of address based at least in part on said second address; and
a communication logic for controlling said session, said communication logic for looking through said table for an entry comprising a value of said pointer equal to said first sequence value, for creating said table entry if no value of said pointer equal to said first sequence value is found in said table, for requesting said processor to calculate said expected sequence value, for finding said table entry comprising said pointer equal to said second sequence value, and for requesting said processor to calculate said new expected sequence value. - View Dependent Claims (17, 18, 19)
-
Specification