Methods, systems, and computer readable media for providing access network protocol interworking and authentication proxying
First Claim
1. A method for access network protocol interworking and authentication proxying comprising:
- in a Diameter signaling router (DSR) including at least one processor;
receiving, on a first interface of the DSR that supports extensible authentication protocol (EAP), a message requesting authentication from a node in an access network, wherein receiving the message requesting authentication information includes receiving a Diameter SWa, STa, or SWm message requesting authentication information and including an EAP payload;
terminating the EAP on the first interface;
using a native protocol of a cellular network to obtain authentication challenge information from the cellular network, wherein using a native protocol to obtain authentication challenge information from the cellular network includes formulating and transmitting, on a second interface of the DSR that does not support the EAP, a Diameter S6a or SWx message to obtain the authentication challenge information;
communicating the authentication challenge information to the node in the access network, wherein communicating the authentication challenge information to the node in the access network includes using the Diameter protocol;
receiving an authentication response from the node in the access network;
determining whether the authentication response matches an expected response; and
in response to determining that the authentication response matches an expected response, sending a message to the node in the access network indicating successful authentication.
0 Assignments
0 Petitions
Accused Products
Abstract
The subject matter described herein includes methods, systems, and computer readable media for access network protocol interworking and authentication proxying. One method includes receiving an authentication request from a node in an access network for authenticating a user using cellular network authentication. The method further includes, in response to the request, using a native protocol of the cellular network to obtain an authentication challenge from a node in the cellular network. The method further includes communicating the authentication challenge to the node in the access network. The method further includes receiving a response to the authentication challenge from the node in the access network. The method further includes determining whether the response matches an expected response. The method further includes, in response to determining that the response matches the expected response, communicating an indication of successful authentication to the node in the access network.
-
Citations
10 Claims
-
1. A method for access network protocol interworking and authentication proxying comprising:
in a Diameter signaling router (DSR) including at least one processor; receiving, on a first interface of the DSR that supports extensible authentication protocol (EAP), a message requesting authentication from a node in an access network, wherein receiving the message requesting authentication information includes receiving a Diameter SWa, STa, or SWm message requesting authentication information and including an EAP payload; terminating the EAP on the first interface; using a native protocol of a cellular network to obtain authentication challenge information from the cellular network, wherein using a native protocol to obtain authentication challenge information from the cellular network includes formulating and transmitting, on a second interface of the DSR that does not support the EAP, a Diameter S6a or SWx message to obtain the authentication challenge information; communicating the authentication challenge information to the node in the access network, wherein communicating the authentication challenge information to the node in the access network includes using the Diameter protocol; receiving an authentication response from the node in the access network; determining whether the authentication response matches an expected response; and in response to determining that the authentication response matches an expected response, sending a message to the node in the access network indicating successful authentication. - View Dependent Claims (2, 3, 4, 5)
-
6. A system for interworking and authentication proxying, the system comprising:
-
a Diameter signaling router (DSR) including at least one message processor; an authentication and internetworking proxy implemented by the at least one message processor and configured for; receiving, on a first interface of the DSR that supports extensible authentication protocol (EAP), a message requesting authentication from a node in an access network, wherein receiving the message requesting authentication information includes receiving a Diameter SWa, STa, or SWm message requesting authentication information and including an EAP payload; using a native protocol of a cellular network to obtain authentication challenge information from the cellular network, wherein using a native protocol to obtain authentication challenge information from the cellular network includes formulating and transmitting, on a second interface of the DRS that does not support the EAP, a Diameter S6a or SWx message to obtain the authentication challenge information; communicating the authentication challenge information to the node in the access network, wherein communicating the authentication challenge information to the node in the access network includes using the Diameter protocol; receiving an authentication response from the node in the access network; determining whether the authentication response matches an expected response; and in response to determining that the authentication response is equal to an expected response, sending a message to the node in the access network indicating successful authentication. - View Dependent Claims (7, 8, 9)
-
-
10. A non-transitory computer readable medium having stored thereon executable instructions that when executed by the processor on a computer control the computer to perform steps comprising:
in a Diameter signaling router (DSR) including at least one processor; receiving, on a first interface of the DSR that supports extensible authentication protocol (EAP), a message requesting authentication from a node in an access network, wherein receiving the message requesting authentication information includes receiving a Diameter SWa, STa, or SWm message requesting authentication information and including an EAP payload; terminating the EAP on the first interface; using a native protocol of a cellular network to obtain authentication challenge information from the cellular network, wherein using a native protocol to obtain authentication challenge information from the cellular network includes formulating and transmitting on a second interface of the DSR that does not support the EAP, a Diameter S6a or SWx message to obtain the authentication challenge information; communicating the authentication challenge information to the node in the access network, wherein communicating the authentication challenge information to the node in the access network includes using the Diameter protocol; receiving an authentication response from the node in the access network; determining whether the authentication response matches an expected response; and in response to determining that the authentication response matches an expected response, sending a message to the node in the access network indicating successful authentication.
Specification