AAA broker specification and protocol
First Claim
Patent Images
1. The method of establishing a connection for a mobile node on a communication system having a home network for the mobile node and at least one foreign network comprising the steps of:
- receiving a registration request message at a foreign network Authentication, Authorization, Accounting server;
transmitting a request to an Authentication, Authorization, Accounting broker server to obtain service level agreement information to establish a secure connection between the foreign and home networks;
receiving at the foreign network Authentication, Authorization, Accounting server a response transmitted from the Authentication, Authorization, Accounting broker server containing service level agreement information stored on the Authentication, Authorization, Accounting broker server, wherein the response transmitted from the Authentication, Authorization, Accounting broker server contains the Internet Protocol address of the home network to which the request should be directly forwarded and one or more instances of a first value to indicate that one or more different host networks can be contacted.
3 Assignments
0 Petitions
Accused Products
Abstract
In an IP-based mobile communications system, the Mobile Node changes its point of attachment to the network while maintaining network connectivity. The present invention improves the attachment of the Mobile Node to the IP mobile communications system by allowing a AAA Broker Server to maintain client information necessary to establish the a secure Mobile Node connection to the home network.
175 Citations
39 Claims
-
1. The method of establishing a connection for a mobile node on a communication system having a home network for the mobile node and at least one foreign network comprising the steps of:
-
receiving a registration request message at a foreign network Authentication, Authorization, Accounting server;
transmitting a request to an Authentication, Authorization, Accounting broker server to obtain service level agreement information to establish a secure connection between the foreign and home networks;
receiving at the foreign network Authentication, Authorization, Accounting server a response transmitted from the Authentication, Authorization, Accounting broker server containing service level agreement information stored on the Authentication, Authorization, Accounting broker server, wherein the response transmitted from the Authentication, Authorization, Accounting broker server contains the Internet Protocol address of the home network to which the request should be directly forwarded and one or more instances of a first value to indicate that one or more different host networks can be contacted. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 18, 19)
-
-
17. The method of establishing a connection for a mobile node on a communication system having a home network for the mobile node and at least one foreign network comprising the steps of:
-
receiving a registration request message at a foreign network Authentication, Authorization, Accounting server;
transmitting a request to an Authentication, Authorization, Accounting broker server to obtain service level agreement information to establish a secure connection between the foreign and home networks;
receiving at the foreign network Authentication, Authorization, Accounting server a response transmitted from the Authentication, Authorization, Accounting broker server containing service level agreement information stored on the Authentication, Authorization, Accounting broker server, wherein the response transmitted from the Authentication, Authorization, Accounting broker server contains the Internet Protocol address of the home network to which the request should be directly forwarded, and one or more instances of a first value to indicate that one or more different host networks can be contacted; and
contacting a second Authentication, Authorization, Accounting broker server after a rejection response is received from the Authentication, Authorization, Accounting broker server.
-
-
20. A system for establishing a home network connection of a mobile node on a foreign network in a wireless communications network comprising:
-
a home network having a home agent coupled to a home Authentication, Authorization, Accounting server;
a foreign network having a foreign agent coupled to a foreign Authentication, Authorization, Accounting server;
a mobile node transmitting a request to the foreign Authentication, Authorization, Accounting server in a request to establish a secure connection between the mobile node and the home network;
an Authentication, Authorization, Accounting broker server coupled to the foreign Authentication, Authorization, Accounting server transmitting a request to the Authentication, Authorization, Accounting broker server to determine the location of the home network and security association information for establishing the secure connection between the mobile node and the home network according to a security protocol specified in the Authentication, Authorization, Accounting broker server; and
the foreign Authentication, Authorization, Accounting server receives a response from the Authentication, Authorization, Accounting broker server with the Internet Protocol address of the home network to which the request should be directly forwarded and one or more instances of a first value to indicate that one or more different host networks can be contacted. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
-
-
39. A method for establishing a connection for a mobile node on a communication system having a home network for the mobile node and at least one foreign network comparing the steps of:
-
receiving a registration request message at a foreign Authentication, Authorization, Accounting server;
transmitting a request to an Authentication, Authorization, Accounting broker server to obtain service level agreement information to establish a secure connection between the foreign and home network;
receiving at the foreign network Authentication, Authorization, Accounting server a response from the Authentication, Authorization, Accounting broker server containing service level agreement information wherein the response transmitted from Authentication, Authorization, Accounting broker server contains the Internet Protocol address of the home network to which the request should be directly forwarded and one or more instances of a first value to indicate that one or more different host networks can be contacted; and
establishing a secure connection with an Authentication, Authorization, Accounting server on the home network based upon the service level agreement information received from the Authentication, Authorization, Accounting broker server to encrypt information packets transmitted between the home network and the mobile node.
-
Specification