[go: up one dir, main page]

MX2017006164A - Procesamiento de mensajes para sesiones de suscriptor que se extienden a traves de diferentes dominios de red. - Google Patents

Procesamiento de mensajes para sesiones de suscriptor que se extienden a traves de diferentes dominios de red.

Info

Publication number
MX2017006164A
MX2017006164A MX2017006164A MX2017006164A MX2017006164A MX 2017006164 A MX2017006164 A MX 2017006164A MX 2017006164 A MX2017006164 A MX 2017006164A MX 2017006164 A MX2017006164 A MX 2017006164A MX 2017006164 A MX2017006164 A MX 2017006164A
Authority
MX
Mexico
Prior art keywords
message
identifier
fqdn
domain
message processing
Prior art date
Application number
MX2017006164A
Other languages
English (en)
Other versions
MX366459B (es
Inventor
Essigmann Kurt
DIMITRIADIS Gerasimos
KLEINFELD Volker
Original Assignee
ERICSSON TELEFON AB L M (publ)
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ERICSSON TELEFON AB L M (publ) filed Critical ERICSSON TELEFON AB L M (publ)
Publication of MX2017006164A publication Critical patent/MX2017006164A/es
Publication of MX366459B publication Critical patent/MX366459B/es

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0407Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the identity of one or more communicating identities is hidden
    • H04L63/0414Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the identity of one or more communicating identities is hidden during transmission, i.e. party's identity is protected against eavesdropping, e.g. by using temporary identifiers, but is known to the other party or parties involved in the communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0471Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload applying encryption by an intermediary, e.g. receiving clear information at the intermediary and encrypting the received information at the intermediary before forwarding
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3239Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/48Secure or trusted billing, e.g. trusted elements or encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/55Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP for hybrid networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/62Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP based on trigger specification
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/66Policy and charging system
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/82Criteria or parameters used for performing billing operations
    • H04M15/8221Message based
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/82Criteria or parameters used for performing billing operations
    • H04M15/8228Session based
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/24Accounting or billing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/14Charging, metering or billing arrangements for data wireline or wireless communications
    • H04L12/1403Architecture for metering, charging or billing

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Computer And Data Communications (AREA)

Abstract

Se presenta una técnica para ocultar información topológica en un mensaje que deja un dominio de red confiable. El mensaje pertenece a una sesión del subscriptor y comprende un Nombre de Dominio Completamente Calificado (FQDN) de un iniciador u originador de mensajes. El iniciador u originador está situado en un primer dominio de red, y el mensaje se dirige hacia un destino en un segundo dominio de red. Un aspecto del método comprende los pasos de recibir el mensaje, determinar el FQDN comprendido en el mensaje y determinar un identificador asociado con el mensaje. El identificador comprende al menos uno de un identificador de subscriptor, un identificador de sesión y un identificador de destino. Además, el método comprende aplicar una operación criptográfica sobre el FQDN y el identificador, o sobre la información derivada de la misma, para generar un valor criptográfico. El mensaje se procesa entonces sustituyendo al menos una porción del FQDN con el valor criptográfico antes de enviar el mensaje hacia el segundo dominio de red.
MX2017006164A 2014-12-08 2014-12-08 Procesamiento de mensajes para sesiones de suscriptor que se extienden a traves de diferentes dominios de red. MX366459B (es)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/EP2014/076900 WO2016091279A1 (en) 2014-12-08 2014-12-08 Message processing for subscriber sessions which stretch over different network domains

Publications (2)

Publication Number Publication Date
MX2017006164A true MX2017006164A (es) 2017-07-27
MX366459B MX366459B (es) 2019-07-10

Family

ID=52144647

Family Applications (1)

Application Number Title Priority Date Filing Date
MX2017006164A MX366459B (es) 2014-12-08 2014-12-08 Procesamiento de mensajes para sesiones de suscriptor que se extienden a traves de diferentes dominios de red.

Country Status (7)

Country Link
US (2) US10491573B2 (es)
EP (1) EP3231202B1 (es)
AR (1) AR102945A1 (es)
BR (1) BR112017007974B1 (es)
MX (1) MX366459B (es)
TR (1) TR201811991T4 (es)
WO (1) WO2016091279A1 (es)

Families Citing this family (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP5988447B2 (ja) * 2014-08-28 2016-09-07 インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Machines Corporation ログメッセージのフォーマットを推定する方法、並びに、その為のコンピュータ及びコンピュータ・プログラム
US9967148B2 (en) 2015-07-09 2018-05-08 Oracle International Corporation Methods, systems, and computer readable media for selective diameter topology hiding
US10033736B2 (en) * 2016-01-21 2018-07-24 Oracle International Corporation Methods, systems, and computer readable media for remote authentication dial-in user service (radius) topology hiding
US11030618B1 (en) 2016-09-30 2021-06-08 Winkk, Inc. Authentication and personal data sharing for partner services using out-of-band optical mark recognition
WO2020018454A1 (en) * 2018-07-16 2020-01-23 Islamov Rustam Cryptography operations for secure post-quantum communications
US12052659B2 (en) 2019-06-10 2024-07-30 Telefonaktiebolaget Lm Ericsson (Publ) Network nodes and methods performed therein for handling network functions
US11553337B2 (en) 2019-12-10 2023-01-10 Winkk, Inc. Method and apparatus for encryption key exchange with enhanced security through opti-encryption channel
US12341790B2 (en) 2019-12-10 2025-06-24 Winkk, Inc. Device behavior analytics
US12153678B2 (en) 2019-12-10 2024-11-26 Winkk, Inc. Analytics with shared traits
US12335399B2 (en) 2019-12-10 2025-06-17 Winkk, Inc. User as a password
US11574045B2 (en) 2019-12-10 2023-02-07 Winkk, Inc. Automated ID proofing using a random multitude of real-time behavioral biometric samplings
US11558737B2 (en) 2021-01-08 2023-01-17 Oracle International Corporation Methods, systems, and computer readable media for preventing subscriber identifier leakage
US11888894B2 (en) 2021-04-21 2024-01-30 Oracle International Corporation Methods, systems, and computer readable media for mitigating network function (NF) update and deregister attacks
US11627467B2 (en) 2021-05-05 2023-04-11 Oracle International Corporation Methods, systems, and computer readable media for generating and using single-use OAuth 2.0 access tokens for securing specific service-based architecture (SBA) interfaces
US11695563B2 (en) 2021-05-07 2023-07-04 Oracle International Corporation Methods, systems, and computer readable media for single-use authentication messages
US11570689B2 (en) 2021-05-07 2023-01-31 Oracle International Corporation Methods, systems, and computer readable media for hiding network function instance identifiers
US11638155B2 (en) 2021-05-07 2023-04-25 Oracle International Corporation Methods, systems, and computer readable media for protecting against mass network function (NF) deregistration attacks
US11843943B2 (en) 2021-06-04 2023-12-12 Winkk, Inc. Dynamic key exchange for moving target
US12395353B2 (en) 2022-09-21 2025-08-19 Winkk, Inc. Authentication process with an exposed and unregistered public certificate
US12341765B2 (en) 2022-11-15 2025-06-24 Oracle International Corporation Methods, systems, and computer readable media for detecting stolen access tokens

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008127662A1 (en) * 2007-04-12 2008-10-23 Marvell World Trade Ltd. Packet data network connectivity domain selection and bearer setup
JP4128610B1 (ja) * 2007-10-05 2008-07-30 グローバルサイン株式会社 サーバ証明書発行システム
US9253163B2 (en) * 2011-12-12 2016-02-02 Tekelec, Inc. Methods, systems, and computer readable media for encrypting diameter identification information in a communication network
US10084595B2 (en) * 2012-08-24 2018-09-25 At&T Intellectual Property I, L.P. Algorithm-based anonymous customer references
US10924895B2 (en) * 2013-01-22 2021-02-16 Blackberry Limited Enhancing short message service addressing and routing
US20150046826A1 (en) * 2013-08-08 2015-02-12 Alcatel Lucent Canada, Inc. Visual Rendering of Diameter Network Topology
US9350550B2 (en) * 2013-09-10 2016-05-24 M2M And Iot Technologies, Llc Power management and security for wireless modules in “machine-to-machine” communications
US9397891B2 (en) * 2014-04-25 2016-07-19 Cellco Partnership Geo-redundant PCRF MRA with MPE allocation via IMSI hashing and IP indexed table

Also Published As

Publication number Publication date
US11546308B2 (en) 2023-01-03
EP3231202A1 (en) 2017-10-18
US10491573B2 (en) 2019-11-26
AR102945A1 (es) 2017-04-05
TR201811991T4 (tr) 2018-09-21
BR112017007974B1 (pt) 2022-12-06
MX366459B (es) 2019-07-10
US20200067893A1 (en) 2020-02-27
US20160352696A1 (en) 2016-12-01
BR112017007974A2 (pt) 2018-01-16
EP3231202B1 (en) 2018-06-13
WO2016091279A1 (en) 2016-06-16

Similar Documents

Publication Publication Date Title
MX366459B (es) Procesamiento de mensajes para sesiones de suscriptor que se extienden a traves de diferentes dominios de red.
EP4271121A3 (en) Method and apparatus for multiple registrations
ZA202004255B (en) System and method for securely sharing cryptographic material
WO2015139630A3 (en) Fast authentication for inter-domain handovers
SG10202108677WA (en) Trusted login method, server, and system
MY195132A (en) Multi-Blockchain Network Data Processing Method, Apparatus, and Server
EP3148112A4 (en) Information processing method, network node, authentication method and server
EP3300331A4 (en) Response method, apparatus and system in virtual network computing authentication, and proxy server
MX357219B (es) Metodo y dispositivo de interaccion de informacion, dispositivo electronico.
MX2018001498A (es) Control de una nube de dispositivos.
IL248306B (en) System and method for creating data sets for learning to recognize user actions
MX2016012639A (es) Tecnicas para operar un servicio con señales de autentificacion generadas por maquina.
HK1250187A1 (zh) 用於电子地提供法律文书的系统和方法
MY182770A (en) Wireless device, network node, and methods therein for sending a message comprising one or more populated fields
PH12019501801A1 (en) Apparatuses and methods of switching between different numerologies
EP3316544A4 (en) Token generation and authentication method, and authentication server
GB2535264A (en) Methods and systems for transmitting packets through an aggregated connection
WO2011094096A3 (en) Establishing, at least in part, secure communication channel between nodes so as to permit inspection, at least in part, of encrypted communication carried out, at least in part, between the nodes
MX2021003896A (es) Metodo, aparato y medio legible por computadora para la distribucion de mensajes por el sistema de transporte inteligente (its).
MY184704A (en) A system and method for authenticating a user based on user behaviour and environmental factors
MX2016012503A (es) Aparato de recepcion, metodo de recepcion, aparato de transmision y metodo de transmision.
SG11202104481UA (en) Trusted computing method, and server
PH12018501015B1 (en) Ip address acquisition method and apparatus
TW201613310A (en) Method, appliance, and computer program product of translating network attributes of packets in a multi-tenant environment
TW201613307A (en) Instant messaging

Legal Events

Date Code Title Description
FG Grant or registration