Method for Authenticating a Mobile Node in a Communication Network

US 20080294891A1
Filed: 08/07/2008
Published: 11/27/2008
Est. Priority Date: 03/10/2006
Status: Abandoned Application

First Claim

Patent Images

1. A method for authenticating a mobile node in a communication network, the communication network comprising at least one proxy server, and a home server, the mobile node and the home server comprising a shared key, the shared key uniquely associating the mobile node with the home server, the method at the mobile node comprising:

sending a request for an Internet Protocol (IP) address to the at least one proxy server;

receiving a nonce in response to the request, from a proxy server of the at least one proxy server; and

deriving a session key based on the nonce and the shared key, wherein the session key authenticates the mobile node to initiate a secure communication session with the proxy server.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for authenticating a mobile node (102) in a communication network (100) is provided. The communication network includes at least one proxy server and a home server. The mobile node and the home server include a shared key. The shared key uniquely associates the mobile node with the home server. The method at the mobile node includes sending (204) a request for an Internet Protocol (IP) address to at least one proxy server. Further, the method includes receiving (206) a nonce in response to the request, from a proxy server of the at least one proxy server. The method also includes deriving (208) a session key, based on the nonce and the shared key. The session key authenticates the mobile node to initiate a secure communication session with the proxy server.

38 Citations

View as Search Results

12 Claims

1. A method for authenticating a mobile node in a communication network, the communication network comprising at least one proxy server, and a home server, the mobile node and the home server comprising a shared key, the shared key uniquely associating the mobile node with the home server, the method at the mobile node comprising:
- sending a request for an Internet Protocol (IP) address to the at least one proxy server;
  
  receiving a nonce in response to the request, from a proxy server of the at least one proxy server; and
  
  deriving a session key based on the nonce and the shared key, wherein the session key authenticates the mobile node to initiate a secure communication session with the proxy server.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method as recited in claim 1 further comprising sending a Network Access Identifier (NAI) to the at least one proxy server, wherein the NAI enables the at least one proxy server to identify the mobile node.
  - 3. The method as recited in claim 1 further comprising receiving authorized configuration options for the mobile node from the at least one proxy server.
  - 4. The method as recited in claim 3 further comprising storing the authorized configuration options.
  - 5. The method as recited in claim 1 further comprising receiving an authentication certificate from the proxy server, the authentication certificate validating the proxy server.
  - 6. The method as recited in claim 1 further comprising receiving a notification from the proxy server when one or more parameters of the session key expire.

7. A method for authenticating a mobile node in a communication network, the communication network comprising at least one proxy server, and a home server, the mobile node and the home server comprising a shared key, the shared key uniquely associating the mobile node with the home server, the method at a proxy server of the at least one proxy server comprising:
- receiving a request for an Internet Protocol (IP) address from the mobile node;
  
  sending the request to the home server;
  
  receiving a nonce from the home server;
  
  providing the nonce to the mobile node; and
  
  receiving a session key from the home server, wherein the session key authenticates the mobile node to initiate a secure communication session with the proxy server.
- View Dependent Claims (8, 9, 10)
- - 8. The method as recited in claim 7 further comprising sending a message to the home server for validating the mobile node.
  - 9. The method as recited in claim 7 further comprising:
    - providing at least one parameter to the home server; and
      
      receiving one or more parameters of the session key from the home server, wherein the one or more parameters of the session key are determined based on the at least one parameter.
  - 10. The method as recited in claim 9 further comprising:
    - maintaining the one or more parameters of the session key;
      
      communicating to the mobile node when the one or more parameters of the session key expire; and
      
      terminating services to the mobile node when the one or more parameters of the session key expire.

11. A system for authentication in a communication network, the system comprising:
- a mobile node communicatively coupled via the communication network to one or more proxy servers and to a home server, wherein the mobile node is configured to send a request for an Internet Protocol (IP) address to the one or more proxy servers, and to receive in response to the request a nonce from a first proxy server of the one or more proxy servers;
  
  a shared key stored by the mobile node and by the home server, the shared key uniquely associating the mobile node with the home server; and
  
  a session key derived by the mobile node based on the nonce and the shared key, wherein the session key authenticates the mobile node to initiate a secure communication session with the proxy server.

12. A system for authenticating a mobile node in a communication network, the system comprising:
- a proxy server communicatively coupled via the communication network to a home server and to the mobile node, the proxy server being configured to receive a request for an Internet Protocol (IP) address from the mobile node, to send the request to the home server, to receive a nonce from the home server, to provide the nonce to the mobile node, and to receive from the home server a session key;
  
  wherein the mobile node and the home server store a shared key, the shared key uniquely associating the mobile node with the home server; and
  
  wherein the session key authenticates the mobile node to initiate a secure communication session with the proxy server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Motorola Mobility, Inc. (Lenovo Group Ltd.)
Original Assignee
Motorola, Inc. (Motorola Solutions, Inc.)
Inventors
Kamble, Vihang G. Gangaram, Upadhyaya, Saumya G., Ram OV, Vishnu

Application Number

US12/187,431
Publication Number

US 20080294891A1
Time in Patent Office

Days
Field of Search
US Class Current

713/158
CPC Class Codes

H04W 12/069 using certificates or pre-s...

Method for Authenticating a Mobile Node in a Communication Network

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

38 Citations

12 Claims

Specification

Use Cases

Quick Links

Others

Method for Authenticating a Mobile Node in a Communication Network

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

38 Citations

12 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others