Electrical computers and digital processing systems: multicomput – Computer-to-computer session/connection establishing
Reexamination Certificate
1998-08-03
2003-05-27
Burgess, Glenton B. (Department: 2153)
Electrical computers and digital processing systems: multicomput
Computer-to-computer session/connection establishing
C709S238000, C709S245000
Reexamination Certificate
active
06571289
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Field of the Invention
The invention relates generally to the field of communications. More specifically, the invention relates to computer networking.
2. Description of the Related Art
For mobile access, particularly where a laptop or other mobile information device is used, a designation known as “Mobile IP (Internet Protocol)” has been developed. The Mobiles IP protocol allows a user to “roam” from IP location to IP location by leaving a “forwarding” address where the user may be reached (i.e. where IP packets may be forwarded to), but currently ignores firewalls. Currently, Mobile IP defines three entities—a mobile node, a home agent and a foreign agent. The mobile node is the roaming client that seeks access into the network as if the mobile node were still within its confines in terms of its IP address. Through Mobile IP, the mobile node will be able to use a permanent IP address that it is assigned within the intranet when it is physically “home” regardless of where in terms of actual IP address the mobile node may have moved. Through a process known as registration, a forwarding address is left with the home agent. The home agent intercepts all packets destined for the mobile node and sends them to a “foreign agent” that is currently being visited by the mobile node. By adding another IP header to packets bound for the mobile node, the routing system will view the home agent as the. source and the foreign agent as the destination. Once at the foreign agent the packet can be delivered directly via data link mechanisms to the mobile node without resorting to resolving IP headers and without having to perform ordinary network layer routing.
In order for the home agent to have such a relationship with the foreign agent, the home agent and foreign agent must be directly reachable (i.e. without having to first traverse through a firewall or other impeding node). In many instances, such direct access is not desirable or not possible. For instance, if a mobile node is connecting (gaining Internet access) through an ISP (Internet Service Provider) which acts as the foreign agent, then it may be a breach of security to allow the ISP direct access to the home agent which presumably is located in the premises of a private network or intranet. From the standpoint of the private network, granting such access becomes cumbersome since a mobile node may connect through multiple and different ISPs. The problem is magnified when considering that more than one user may be mobile and attempting to gain remote access via a Mobile IP technique.
Mobile IP, as employed in the current state of the art, assumes that a single registration sets up a “tunnel” (i.e., data pathway) between the mobile node and the home agent Mobile IP assumes that the endpoints of the tunnel are mutually-trusting entities that can and are willing to share registration packets. It also assumes that the mobile node initiates the registration request.
However, in the remote access situation where the access is by a mobile node that has migrated outside a firewall, there may be several intervening entities, such as an ISP, which are not secure, trusting entities. Thus, there is a need for a mechanism that can allow a mobile node, regardless of the number, type of intermediary entities to the private network, to obtain a secure registration. Further, in a mobile node that normally obtains its “home” address, i.e., its IP address when within the private network through assignment by a server (such as DHCP), there is needed a home address discovery mechanism when the mobile node migrates beyond the private network.
SUMMARY OF THE INVENTION
A tunneling set-up protocol is defined so that the registration process may be chained in a compound tunnel which is composed of a plurality of segments. Each tunnel segment composes a registration request passing this along to the next tunnel segment until the endpoint is reached, at which point the registration request of a mobile node may be authenticated for data access to the endpoint. Further, a home address discovery mechanism provides a mobile node with the ability to discover its intranet IP address even though it has migrated beyond the intranet.
REFERENCES:
patent: 5822303 (1998-10-01), Carter et al.
patent: 6052725 (2000-04-01), McCann et al.
patent: 6055575 (2000-04-01), Paulsen et al.
patent: 6061650 (2000-05-01), Malkin et al.
patent: 6101543 (2000-08-01), Alden et al.
patent: 6137791 (2000-10-01), Frid et al.
patent: 6163843 (2000-12-01), Inoue et al.
patent: 6233688 (2001-05-01), Montenegro
patent: 6253326 (2001-06-01), Lincke et al.
patent: 6266704 (2001-07-01), Reed et al.
patent: 6487605 (2002-11-01), Leung
patent: 2001/0041571 (2001-11-01), Yuan
patent: WO 98 32301 (1998-07-01), None
patent: WO 98/32301 (1998-07-01), None
Perkins, Charles E. “Mobile-IP, Ad-Hoc Networking, and Nomadicity”, IEEE 0730-3157/96, pp. 472-476, 1996.*
Perkins, Charles E. “Mobile IP”, IEEE Communications Magazine, pp. 84-99, May 1997.*
Inoue A et al., IP Layer Security and Mobility Support Design Policy and an Implementation, pp. 571-577.
Giovanardi A et al, Transparent Mobile IP: An Approach and Implementation, p. 1861-1865.
Li Y et al, Protocol Architecture for Universal Personal Computing, IEEE Journal on Selected Areas in Communications, vol. 15, No. 8, pp. 1467-1476.
Blakely & Sokoloff, Taylor & Zafman
Burgess Glenton B.
Edelman Bradley
Sun Microsystems Inc.
LandOfFree
Chained registrations for mobile IP does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Chained registrations for mobile IP, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Chained registrations for mobile IP will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3011663