Methods and systems for distributed authentication and caching for internet protocol multimedia subsystem and other session initiation protocol systems
First Claim
1. A method for distributing authentication in Internet Protocol Multimedia Subsystem and other Session Initiation Protocol systems, the method comprising the steps of:
- loading a local database copy of user profiles in an edge element in a network from a remotely located master user database, wherein the edge element provides network access, and wherein the local database copy of the user profiles comprises one of a full copy of all user profiles known in a control entity and a partial copy of only user profiles known to access the edge element;
pre-authenticating Session Initiation Protocol requests by service requestors utilizing the local database copy of the user profiles at the edge element without involvement of the remotely located master user database, wherein the pre-authenticating comprises partial or full authentication of the Session Initiation Protocol requests, and wherein the pre-authenticating is performed by the edge element concurrently while the edge element provides the network access to the service requestors; and
providing services to the service requestors responsive to the Session Initiation Protocol requests;
wherein the edge element is configured to cache network resources comprising content and software responsive to the Session Initiation Protocol requests in a predictive manner.
6 Assignments
0 Petitions
Accused Products
Abstract
Network elements in IMS or other SIP systems are configured to pre-authenticate SIP requests either as proxy or by snooping. One or more of these network elements are pre-loaded with a local database copy of the user profiles as typically contained in the HSS inside of the IMS control structures. A master database, such as the one typically contained in the HSS, is distributed to all network elements using database distribution methods. Advantageously, pre-authentication solves bottleneck issues in the SIP mechanism by allowing an end user device to use fully authenticated SIP requests. This prevents the requirement to perform authentication, authorization, and accounting (AAA) all the way back to the core IMS network, alleviating lag and scaling issues. Additionally, network elements including can become aware of the services requested through SIP requests, and track these requests for optimization. Specifically, resources requested based upon SIP requests can be cached.
-
Citations
17 Claims
-
1. A method for distributing authentication in Internet Protocol Multimedia Subsystem and other Session Initiation Protocol systems, the method comprising the steps of:
-
loading a local database copy of user profiles in an edge element in a network from a remotely located master user database, wherein the edge element provides network access, and wherein the local database copy of the user profiles comprises one of a full copy of all user profiles known in a control entity and a partial copy of only user profiles known to access the edge element; pre-authenticating Session Initiation Protocol requests by service requestors utilizing the local database copy of the user profiles at the edge element without involvement of the remotely located master user database, wherein the pre-authenticating comprises partial or full authentication of the Session Initiation Protocol requests, and wherein the pre-authenticating is performed by the edge element concurrently while the edge element provides the network access to the service requestors; and providing services to the service requestors responsive to the Session Initiation Protocol requests; wherein the edge element is configured to cache network resources comprising content and software responsive to the Session Initiation Protocol requests in a predictive manner. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for resource caching in Internet Protocol Multimedia Subsystem and other Session Initiation Protocol systems, the method comprising the steps of:
-
observing a user'"'"'s request for services at an edge node or switch node of a network, wherein a user generating the user'"'"'s request is known to access the edge node or switch node in advance, and wherein the user is pre-authenticated at the edge node or switch node without involvement of a Home Subscriber System, wherein the pre-authentication is perform at the edge node or the switch node while concurrently providing network access to the user; loading a caching mechanism and caching services comprising network resources comprising content and software responsive to the user'"'"'s request for services in a predictive manner, wherein the user'"'"'s request for services comprises a Session Initiation Protocol request or an Extensible Mark-up Language request; and providing the services to the user responsive to the user'"'"'s request for services. - View Dependent Claims (12, 13)
-
-
14. An enterprise private network or service provider network utilizing Internet Protocol Multimedia Subsystem or Session Initiation Protocol comprising:
-
a plurality of edge elements; a plurality of switch elements, wherein the plurality of edge elements and plurality of switch elements are interconnected; and a local database comprising user profiles, wherein the local database is pre-loaded on one or more of the plurality of edge elements from a remotely located master user database, and wherein the local database is a copy of a Home Subscriber Service database, and wherein the local database comprises one of a full copy of all user profiles known in a control entity and a partial copy of only user profiles known to access the one or more of the plurality of edge elements; wherein the one or more of the plurality of edge elements are configured to pre-authenticate, authorize, and account for Session Initiation Protocol requests utilizing the local database without involvement of the remotely located master user database, and wherein the pre-authenticating is performed by the one or more of the plurality edge elements concurrently while providing network access to service requestors associated with the requests; and wherein the edge element is configured to cache network resources comprising content and software responsive to the Session Initiation Protocol requests in a predictive manner. - View Dependent Claims (15, 16, 17)
-
Specification