Methods, systems, and computer readable media for providing access network protocol interworking and authentication proxying
First Claim
1. A method for access network protocol interworking and authentication proxying comprising:
- in a Diameter signaling router (DSR) including at least one processor;
receiving, from a remote authentication dial in user service (RADIUS) client in an access network that supports extensible authentication protocol (EAP) authentication, a RADIUS access request message with an EAP payload;
using a native protocol of a cellular network to obtain authentication challenge information from the cellular network, wherein the native protocol comprises Diameter and wherein using the native protocol comprises sending a first Diameter message to a home subscriber server (HSS) supporting Diameter authentication;
receiving, from the HSS, a second Diameter message including the authentication challenge information;
storing state information for determining an expected response to the authentication challenge information;
communicating the authentication challenge information to the RADIUS client in the access network by transmitting a RADIUS access challenge message to the RADIUS client;
receiving an authentication response from the RADIUS client in the access network;
determining whether the authentication response matches the expected response using the stored state information; and
in response to determining that the authentication response matches the expected response, sending a message to the RADIUS client in the access network indicating successful authentication.
1 Assignment
0 Petitions
Accused Products
Abstract
The subject matter described herein includes methods, systems, and computer readable media for access network protocol interworking and authentication proxying. One method includes receiving an authentication request from a node in an access network for authenticating a user using cellular network authentication. The method further includes, in response to the request, using a native protocol of the cellular network to obtain an authentication challenge from a node in the cellular network. The method further includes communicating the authentication challenge to the node in the access network. The method further includes receiving a response to the authentication challenge from the node in the access network. The method further includes determining whether the response matches an expected response. The method further includes, in response to determining that the response matches the expected response, communicating an indication of successful authentication to the node in the access network.
-
Citations
7 Claims
-
1. A method for access network protocol interworking and authentication proxying comprising:
in a Diameter signaling router (DSR) including at least one processor; receiving, from a remote authentication dial in user service (RADIUS) client in an access network that supports extensible authentication protocol (EAP) authentication, a RADIUS access request message with an EAP payload; using a native protocol of a cellular network to obtain authentication challenge information from the cellular network, wherein the native protocol comprises Diameter and wherein using the native protocol comprises sending a first Diameter message to a home subscriber server (HSS) supporting Diameter authentication; receiving, from the HSS, a second Diameter message including the authentication challenge information; storing state information for determining an expected response to the authentication challenge information; communicating the authentication challenge information to the RADIUS client in the access network by transmitting a RADIUS access challenge message to the RADIUS client; receiving an authentication response from the RADIUS client in the access network; determining whether the authentication response matches the expected response using the stored state information; and in response to determining that the authentication response matches the expected response, sending a message to the RADIUS client in the access network indicating successful authentication. - View Dependent Claims (2, 3)
-
4. A system for interworking and authentication proxying, the system comprising:
-
a Diameter signaling router (DSR) including at least one message processor; an authentication and internetworking proxy implemented by the at least one message processor and configured for; receiving, from a remote authentication dial in user service (RADIUS) client in an access network that supports extensible authentication protocol (EAP) authentication, a RADIUS access request message with an EAP payload; using a native protocol of a cellular network to obtain authentication challenge information from the cellular network, wherein the native protocol comprises Diameter and wherein using the native protocol comprises sending a first Diameter message to a home subscriber server (HSS) supporting Diameter authentication; receiving, from the HSS, a second Diameter message including the authentication challenge information; storing state information for determining an expected response to the authentication challenge information; communicating the authentication challenge information to the RADIUS client in the access network by transmitting a RADIUS access challenge message to the RADIUS client; receiving an authentication response from the RADIUS client in the access network; determining whether the authentication response matches the expected response using the stored state information; and in response to determining that the authentication response matches the expected response, sending a message to the RADIUS client in the access network indicating successful authentication. - View Dependent Claims (5, 6)
-
-
7. A non-transitory computer readable medium having stored thereon executable instructions that when executed by the processor on a computer control the computer to perform steps comprising:
-
receiving, from a remote authentication dial in user service (RADIUS) client in an access network that supports extensible authentication protocol (EAP) authentication, a RADIUS access request message with an EAP payload; using a native protocol of a cellular network to obtain authentication challenge information from the cellular network, wherein the native protocol comprises Diameter and wherein using the native protocol comprises sending a first Diameter message to a home subscriber server (HSS) supporting Diameter authentication; receiving, from the HSS, a second Diameter message including the authentication challenge information; storing state information for determining an expected response to the authentication challenge information; communicating the authentication challenge information to the RADIUS client in the access network by transmitting a RADIUS access challenge message to the RADIUS client; receiving an authentication response from the RADIUS client in the access network; determining whether the authentication response matches the expected response using the stored state information; and in response to determining that the authentication response matches the expected response, sending a message to the RADIUS client in the access network indicating successful authentication.
-
Specification