Multiplex communications – Communication over free space – Having a plurality of contiguous regions served by...
Reexamination Certificate
2008-05-13
2008-05-13
Kizou, Hassan (Department: 2619)
Multiplex communications
Communication over free space
Having a plurality of contiguous regions served by...
C370S224000, C370S228000, C370S352000, C370S353000, C709S224000, C709S229000, C709S230000
Reexamination Certificate
active
07372840
ABSTRACT:
Methods and correspondent nodes to filter IP communications through firewalls in scenarios where dynamic pinholes are created to ensure an appropriate level of security is disclosed. The invention is based on creating a secure and authorized anchor for communications where all the communications are routed through before a firewall performs the packet filtering. A Translator Gateway (TrGW) switches addresses in the header according to a stored Mapping Table and an interface between a CPS (or a SIP proxy) and the TrGW. This interface allows the CPS to request the TrGW to provide bindings data between IP addresses upon session initiation, the TrGW to provide the bindings data to the CPS and the CPS to release the bindings at session release. The firewall accepts incoming packets whose IP address belongs to the pool of addresses of the TrGW. Thus any incoming packet that does not correspond to an existing call will be dropped at the TrGW, and a valid packet will go through the firewall which will verify that the packet is not a malformed message or other attack.
REFERENCES:
patent: 6789112 (2004-09-01), Freeman et al.
patent: 6954790 (2005-10-01), Forslow
patent: 7072332 (2006-07-01), D'Souza
patent: 7146418 (2006-12-01), Bahl
patent: 2002/0151312 (2002-10-01), Rosemarjin Bos et al.
patent: 2003/0217096 (2003-11-01), McKelvie et al.
patent: WO 02/103981 (2002-12-01), None
patent: WO 2004/114631 (2004-12-01), None
3GPP TS 23.228 V6.3.0 “3rdGeneration Partnership Project; Technical Specification Group Services and System Aspects; IP Multimedia Subsystem (IMS); Stage 2” Sep. 2003; pp. 1-158.
3GPP TSG SA WG2 Meeting #33 “Correction of WLAN Tunneling Requirements” Sophia-Antipolis, France, Jul. 7-11, 2003; S2-032347; 1 page.
Srisuresh P. et al., “Middlebox Communication Architecture and Framework”, RFC 3303, IETF Network Working Group, August 2002, XP015009080, pp. 1-35.
El Malki K. et al., “IPv6-IPv4 Translators in 3GPP Networks”, Internet Draft, IETF Network Working Group, Jun. 17, 2003, XP015000808, pp. 166.
“Digital cellular telecommunications system(phase 2+);Universal Mobile Telecommunications System (UMTS); Achitectural requirements(3GPP TS 23.221 v5.7.0 Release 5)”, ETSI TS 123 221 v5.7.0, Dec 2002, pp. 1-20.
Stiemerling, M., “Middlebox Configuration Protocol Design”, IP Operations and Management, 2002 IEEE Workshop, Oct. 29, 2002, pp. 222-226.
Umschaden, K., “End to End Security for Firewall/NAT Traversal within the Session Initiation Protocol(SIP)”, Internet Engineering Task Force, Oct. 2003, pp. 1-37.
“3rdGeneration Partnership Project; Technical Specification Group Services and System Aspects; IP Multimedia Subsystem (IMS); Stage 2 (Release 6)” (3GPP TS 23.228 v6.3.0 (Sep. 2003)).
Faccin Stefano
Le Frank
Haliyur Venkatesh
Kizou Hassan
Nokia Corporation
Squire Sanders & Dempsey L.L.P.
LandOfFree
Filtering of dynamic flows does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Filtering of dynamic flows, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Filtering of dynamic flows will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2807273