Control plane to manage domain-based security and mobility in an information centric network

US 9,253,215 B2
Filed: 09/19/2014
Issued: 02/02/2016
Est. Priority Date: 02/04/2011
Status: Active Grant

First Claim

Patent Images

1. A networking system comprising:

a virtual group controller in an information centric network configured to enable mobility and security for a plurality of users groups of the information centric network;

a plurality of user groups coupled to the virtual group controller and associated with users;

a plurality of agents that are each associated with one of the user groups;

a database for trusted service profiles coupled to the virtual group controller, wherein the virtual group controller is configured to interact with the agents to enable mobility for the user groups using a server-less domain-based naming scheme;

a plurality of proxy nodes that are associated with one of the user groups and coupled to one of the agents; and

a plurality of access points (APs) coupled to the proxy nodes and associated with the user groups, wherein the plurality of APs are configured to provide an attachment point to a plurality of mobile devices assigned to the user groups and to facilitate communication between the mobile devices, and wherein the proxy nodes are configured to handle mobility for the mobile devices using prefix mapping for incoming messages for the mobile devices at serving APs from the plurality of APs to indicate target APs from the plurality of APs when the mobile devices start a move from the serving APs to the target APs and forwarding the incoming messages with the prefix mapping to the target APs until the move to the target APs is completed.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A networking system comprising a virtual group controller in an information centric network configured to enable mobility and security for a plurality of users groups of the information centric network, a plurality of user groups coupled to the virtual group controller and associated with the users, a plurality of agents that are each associated with one of the user groups, and a database for trusted service profile coupled to the virtual group controller, wherein the virtual group controller is configured to interact with the agents to enable mobility for the user groups using a server-less domain-based naming scheme.

Citations

20 Claims

1. A networking system comprising:
- a virtual group controller in an information centric network configured to enable mobility and security for a plurality of users groups of the information centric network;
  
  a plurality of user groups coupled to the virtual group controller and associated with users;
  
  a plurality of agents that are each associated with one of the user groups;
  
  a database for trusted service profiles coupled to the virtual group controller, wherein the virtual group controller is configured to interact with the agents to enable mobility for the user groups using a server-less domain-based naming scheme;
  
  a plurality of proxy nodes that are associated with one of the user groups and coupled to one of the agents; and
  
  a plurality of access points (APs) coupled to the proxy nodes and associated with the user groups, wherein the plurality of APs are configured to provide an attachment point to a plurality of mobile devices assigned to the user groups and to facilitate communication between the mobile devices, and wherein the proxy nodes are configured to handle mobility for the mobile devices using prefix mapping for incoming messages for the mobile devices at serving APs from the plurality of APs to indicate target APs from the plurality of APs when the mobile devices start a move from the serving APs to the target APs and forwarding the incoming messages with the prefix mapping to the target APs until the move to the target APs is completed.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The networking system of claim 1 further comprising a plurality of local access profile databases that are associated with one of the user groups and coupled to one of the agents.
  - 3. The networking system of claim 1, wherein the virtual group controller is further configured to interact with the proxy nodes to enable mobility for the user groups using the server-less domain-based naming scheme.
  - 4. The networking system of claim 1 further comprising:
    - a plurality of content routers coupled to the virtual group controller and the user groups and configured to route and cache content data.
  - 5. The networking system of claim 1, wherein the virtual group controller and one or more user groups are located in a common domain, and wherein the virtual group controller, the agents, and the proxy nodes enable intra-domain security, mobility, and social grouping services for the user groups.
  - 6. The networking system of claim 1, wherein the virtual group controller and one or more user groups are located in different domains, and wherein the virtual group controller, the agents, and the proxy nodes enable inter-domain security, mobility, and social grouping services for the user groups.
  - 7. The networking system of claim 6, wherein the one or more user groups that are located in the different domains than the virtual group controller are also associated with a plurality of corresponding local domain controllers that are located in the different domains than the virtual group controller.
  - 8. The networking system of claim 6, wherein the virtual group controller is coupled to a peering database that is used to obtained information about the one or more user groups in the different domains.
  - 9. The networking system of claim 6, wherein the one or more user groups that are located in the different domains than the virtual group controller are also located in separate networks than a home domain controller.
  - 10. The networking system of claim 1, wherein the virtual group controller, Secured Mobile Virtual Group (SMVG) agents, and the proxy nodes are configured to provide an integrated and collaborated service control plane that is separate from a content data transport plane.
  - 11. The networking system of claim 1, wherein the virtual group controller is coupled to a third party content provider that provides content data to the user groups.
  - 12. The network system of claim 1, wherein the virtual group controller comprises a home domain Secured Mobile Virtual Group (SMVG) controller.
  - 13. The networking system of claim 1, wherein the proxy nodes comprise Content Oriented Network (CON) proxy nodes.
  - 14. The networking system of claim 1, wherein the virtual group controller, the agents, and the proxy nodes are jointly configured to enable security and social grouping to manage trusted service profiles for the user groups using the server-less domain-based naming scheme, and to associate the trusted service profiles with network service connectivity resources comprising a link bandwidth, a storage capacity, content caching, a topology, computing power, a service access point interface, and user devices.

15. A method implemented in a networking system comprising:
- enabling mobility and security for a plurality of users groups of an information centric network through a virtual group controller in the information centric network;
  
  associating a plurality of user groups coupled to the virtual group controller with users;
  
  associating each of a plurality of agents with one of the user groups;
  
  coupling a database to the virtual group controller, wherein the database comprises trusted service profiles;
  
  associating the trusted service profiles with network service connectivity resources;
  
  configuring the virtual group controller to interact with the agents to enable mobility for the user groups using a server-less domain-based naming scheme;
  
  associating a plurality of proxy nodes with one of the user groups;
  
  coupling each of the proxy nodes to one of the agents;
  
  coupling a plurality of access points (APs) to the proxy nodes; and
  
  associating each of the APs with the user groups,wherein the plurality of APs are configured to provide an attachment point to a plurality of mobile devices assigned to the user groups and to facilitate communication between the mobile devices, and wherein the proxy nodes are configured to handle mobility for the mobile devices using prefix mapping for incoming messages for the mobile devices at serving APs from the plurality of APs to indicate target APs from the plurality of APs when the mobile devices start a move from the serving APs to the target APs and forwarding the incoming messages with the prefix mapping to the target APs until the move to the target APs is completed.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The method claim 15, wherein the virtual group controller and one or more user groups are located in a common domain, and wherein the virtual group controller, the agents, and the proxy nodes enable intra-domain security, mobility, and social grouping services for the user groups.
  - 17. The method claim 15, wherein the virtual group controller and one or more user groups are located in different domains, and wherein the virtual group controller, the agents, and the proxy nodes enable inter-domain security, mobility, and social grouping services for the user groups.
  - 18. The method claim 17, wherein the one or more user groups that are located in the different domains than the virtual group controller are also associated with a plurality of corresponding local domain controllers that are located in the different domains than the virtual group controller.
  - 19. The method claim 17, wherein the virtual group controller is coupled to a peering database that is used to obtained information about the one or more user groups in the different domains.
  - 20. The networking system of claim 17, wherein the one or more user groups that are located in the different domains than the virtual group controller are also located in separate networks than a home domain controller.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Futurewei Technologies Incorporated (Huawei Investment & Holding Co., Ltd.)
Original Assignee
Futurewei Technologies Incorporated (Huawei Investment & Holding Co., Ltd.)
Inventors
Wang, Guoqiang, Zhang, Xinwen, Ravindran, Ravishankar
Primary Examiner(s)
DADA, BEEMNET W

Application Number

US14/490,868
Publication Number

US 20150007287A1
Time in Patent Office

501 Days
Field of Search
US Class Current

1/1
CPC Class Codes

H04L 61/10   of different types

H04L 63/20   for managing network securi...

H04L 67/564   Enhancement of application ...

H04L 67/63   Routing a service request d...

H04W 36/06   Reselecting a communication...

H04W 4/08   User group management

Control plane to manage domain-based security and mobility in an information centric network

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Control plane to manage domain-based security and mobility in an information centric network

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links