Performing deep packet inspection for a communication session
First Claim
Patent Images
1. A method for performing deep packet inspection (DPI) for a communication session, comprising:
- receiving a registration request from an access terminal, the registration request indicating that the access terminal has requested an application;
receiving one or more DPI facets from an application manager in a home network, the application manager configured to select the DPI facets based on the requested application, a DPI facet of the one or more DPI facets comprising a packet classifier;
authorizing the DPI facets at a home policy server;
communicating the DPI facets to a visited policy server, the visited policy server configured to;
determine whether the DPI facets are acceptable;
if the DPI facets are not acceptable to the visited policy server, communicate a notification to the home policy server that identifies an adjustment of the DPI facets and the home policy server determines whether the adjusted DPI facets are acceptable; and
if the DPI facets are acceptable to the visited policy server, selectively push the DPI facets from the visited policy server to an edge router of a visited network, the edge router configured to;
perform deep packet inspection of the plurality of packets in accordance with the one or more DPI facets; and
select an action to perform in response to detecting whether the packets include content that the packets are supposed to include according to the requested application;
wherein the visited network manages a bearer path of the communication session and the home network provides the application independently of the visited network.
1 Assignment
0 Petitions
Accused Products
Abstract
Performing deep packet inspection (DPI) includes facilitating a communication session for an access terminal. The access terminal is associated with a home network. A DPI policy is installed at an edge router. The DPI policy includes one or more DPI facets, where a DPI facet comprises a packet classifier. Packets that match the packet classifier are detected and inspected in accordance with the DPI facets.
194 Citations
20 Claims
-
1. A method for performing deep packet inspection (DPI) for a communication session, comprising:
-
receiving a registration request from an access terminal, the registration request indicating that the access terminal has requested an application; receiving one or more DPI facets from an application manager in a home network, the application manager configured to select the DPI facets based on the requested application, a DPI facet of the one or more DPI facets comprising a packet classifier; authorizing the DPI facets at a home policy server; communicating the DPI facets to a visited policy server, the visited policy server configured to; determine whether the DPI facets are acceptable; if the DPI facets are not acceptable to the visited policy server, communicate a notification to the home policy server that identifies an adjustment of the DPI facets and the home policy server determines whether the adjusted DPI facets are acceptable; and if the DPI facets are acceptable to the visited policy server, selectively push the DPI facets from the visited policy server to an edge router of a visited network, the edge router configured to; perform deep packet inspection of the plurality of packets in accordance with the one or more DPI facets; and select an action to perform in response to detecting whether the packets include content that the packets are supposed to include according to the requested application; wherein the visited network manages a bearer path of the communication session and the home network provides the application independently of the visited network. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An edge router, comprising:
-
a memory operable to; store one or more deep packet inspection (DPI) facets associated with an access terminal, a DPI facet of the one or more DPI facets comprising a packet classifier; and a processor in communication with the memory and operable to; receive a registration request from an access terminal, the registration request indicating that the access terminal has requested an application; receive one or more DPI facets, the DPI facets selected by an application manger in a home network, the application manager configured to select the DPI facets based on the requested application, the one or more DPI facets selectively pushed to the edge router by a visited policy server configured to; receive the DPI facets from a home policy server; determine whether the DPI facets are acceptable; if the DPI facets are not acceptable to the visited policy server, communicate a notification to the home policy server that identifies an adjustment of the DPI facets and the home policy server determines whether the adjusted DPI facets are acceptable; and if the DPI facets are acceptable to the visited policy server, selectively push the DPI facets from the visited policy server to the edge router; the processor further operable to; install the DPI facets at the edge router; perform deep packet inspection of the plurality of packets in accordance with the one or more DPI facets; and select an action to perform in response to detecting whether the packets include content that the packets are supposed to include according to the requested application; wherein the edge router manages a bearer path of the communication session in a visited network and the home network provides the application independently of the visited network. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A non-transitory computer readable medium encoded with logic for performing deep packet inspection (DPI) for a communication session, the logic embodied in the computer-readable medium and operable to:
-
receive a registration request from an access terminal, the registration request indicating that the access terminal has requested an application; receive one or more DPI facets from an application manager in a home network, the application manager configured to select the DPI facets based on the requested application, a DPI facet of the one or more DPI facets comprising a packet classifier; authorize the DPI facets; and communicate the DPI facets to a visited policy server, the visited policy server configured to; determine whether the DPI facets are acceptable; if the DPI facets are not acceptable to the visited policy server, communicate a notification to the logic that identifies an adjustment of the DPI facets and the logic determines whether the adjusted DPI facets are acceptable; and if the DPI facets are acceptable to the visited policy server, selectively push the DPI facets from the visited policy server to an edge router of a visited network, the edge router configured to; perform deep packet inspection of the plurality of packets in accordance with the one or more DPI facets; and select an action to perform in response to detecting whether the packets include content that the packets are supposed to include according to the requested application; wherein the visited network manages a bearer path of the communication session and the home network provides the application independently of the visited network. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A system for performing deep packet inspection (DPI) for a communication session, comprising:
-
means for receiving a registration request from an access terminal, the registration request indicating that the access terminal has requested an application; means for receiving one or more DPI facets from an application manager in a home network, the application manager configured to select the DPI facets based on the requested application, a DPI facet of the one or more DPI facets comprising a packet classifier; means for authorizing the DPI facets at a home policy server; means for communicating the DPI facets to a visited policy server, the visited policy server configured to; determine whether the DPI facets are acceptable; if the DPI facets are not acceptable to the visited policy server, communicate a notification to the home policy server that identifies an adjustment of the DPI facets and the home policy server determines whether the adjusted DPI facets are acceptable; and if the DPI facets are acceptable to the visited policy server, selectively push the DPI facets from the visited policy server to an edge router of a visited network; means for performing deep packet inspection of the plurality of packets in accordance with the one or more DPI facets; and means for selecting an action to perform in response to detecting whether the packets include content that the packets are supposed to include according to the requested application; wherein the visited network manages a bearer path of the communication session and the home network provides the application independently of the visited network.
-
Specification