Signalling delegation in a moving network
Реферат: A Mobile Node arranged in use to communicate with a Mobile Router provisioning a wireless moving network and a Mobile Router for provisioning a wireless moving network to Mobile Nodes are disclosed. The Mobile Node comprises means for establishing a first security association with a Peer Node; means for establishing a second security association with the Mobile Router and means for delegating location update signalling rights for the Mobile Node to the Mobile Router. The first security association comprises a first symmetric key and the second security association comprises an authorisation ticket. The means for delegating is arranged to provide the Mobile Router with the authorisation ticket containing a second symmetric key derived from the first symmetric key, and authorisation information identifying the second symmetric key and confirming the authenticity of the second symmetric key using the first symmetric key. The Mobile Router comprises means for establishing a security association with a Mobile Node. The security association comprises an authorisation ticket. The Mobile Router further comprises means for receiving from the Mobile Node the authorisation ticket and means for sending a location update message to the Peer Node of behalf of the Mobile Node. The authorisation ticket contains a second symmetric key derived from a first symmetric key known to the Mobile Node and to a Peer Node with which the Mobile Node has established a security association, and authorisation information identifying the second symmetric key and confirming the authenticity of the second symmetric key using the first symmetric key. The message contains a new location of the Mobile Node and the authorisation information and a signature generated using the second symmetric key. A method of delegating location update signalling rights from a Mobile Node to a Mobile Router provisioning a wireless moving network is also disclosed.