Return routability optimisation
First Claim
1. A method of managing switching of a virtual private network (VPN) tunnel termination point from a first address to a second address, wherein the VPN operates between a fixed network node and a mobile node which defines the termination point, the method comprising the steps of:
- Requesting that a third party, which is trusted by the fixed network node, allocate an address to the mobile node using an identity used by the mobile node for the VPN tunnel with the fixed network node;
Allocating the second address as a new address to the mobile node by the trusted third party;
Providing the mobile node with a certificate, containing the second address and the identity, by the trusted third party;
switching an address of the mobile node from the first address to the second address;
sending a notification containing the certificate from the mobile node to the fixed network node that the address of the mobile node has changed from the first address to the second address; and
verifying from the certificate that the second address has been allocated to the mobile node by the trusted third party.
3 Assignments
0 Petitions
Accused Products
Abstract
A method of managing switching of a virtual private network (VPN) tunnel termination point from a first address to a second address. The VPN operates between a fixed network node and a mobile node which defines the termination point. The address of the mobile mode is switched from the first address to the second address and a notification from the mobile node to the fixed node is sent to indicate that the address of the mobile has changed from the first address to the second address. Verification of the trustworthiness of the second address is also then made. A searching manager for performing the method is also disclosed.
28 Citations
13 Claims
-
1. A method of managing switching of a virtual private network (VPN) tunnel termination point from a first address to a second address, wherein the VPN operates between a fixed network node and a mobile node which defines the termination point, the method comprising the steps of:
-
Requesting that a third party, which is trusted by the fixed network node, allocate an address to the mobile node using an identity used by the mobile node for the VPN tunnel with the fixed network node; Allocating the second address as a new address to the mobile node by the trusted third party; Providing the mobile node with a certificate, containing the second address and the identity, by the trusted third party; switching an address of the mobile node from the first address to the second address; sending a notification containing the certificate from the mobile node to the fixed network node that the address of the mobile node has changed from the first address to the second address; and verifying from the certificate that the second address has been allocated to the mobile node by the trusted third party. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 12, 13)
-
-
10. A virtual private network (VPN) tunnel termination point switching system for switching from a first address to a second address, wherein the VPN tunnel operates between a fixed node and a mobile node which defines the termination point, the switching system comprising:
-
Requesting means arranged to request a third party, which is trusted by the fixed network node, to allocate an address to the mobile node using an identity used by the mobile node for the VPN tunnel with the fixed network node; Allocating means arranged to allocate the second address as a new address to the mobile node by the trusted third party; Providing means arranged to provide the mobile node with a certificate, containing the second address and the identity, by the trusted third party; switching means arranged to switch the address of the mobile node from the first address to the second address; notification sending means arranged to send a notification containing the certificate from the mobile node to the fixed network node, the notification indicating that the address of the mobile node has changed from the first address to the second address; and verification means arranged to verify from the certificate that the second address has been allocated to the mobile node by the trusted third party. - View Dependent Claims (11)
-
Specification