Capability exchange during an authentication process for an access terminal

Abstract

In one embodiment, during an authentication process between a network device and an access terminal, an authentication message for access to the network is received. The network device is configured to allow access to an IP network. The network device determines one or more capabilities of the access terminal from the authentication message. An action is then performed based on the one or more capabilities of the access terminal. The action may include using the capabilities to set up a session with the access terminal. Also, the network device may send its own capabilities to the access terminal in an authentication response. Accordingly, a capability negotiation between the access terminal and network device may be provided during an authentication process. This may facilitate a faster session setup as capabilities are exchanged during authentication can be used in the configuration of the session.

Description

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 shows an example of a system for providing a capability exchange.

FIG. 2 depicts a more detailed example of an access terminal and an IP gateway.

FIG. 3 depicts an example of a method for initiating the authentication process.

FIG. 4 depicts an example of a method for performing an authentication process at the access terminal.

FIG. 5 depicts an example of a method for exchanging capabilities during an authentication process at the IP gateway.

Claims

1. A method comprising: during an authentication process with an access terminal, receiving an authentication message for access to a network;determining one or more capabilities of the access terminal, wherein information for the one or more capabilities is included in the authentication message received during the authentication process; andperforming an action based on the one or more capabilities of the access terminal.

2. The method of claim 1, wherein performing the action comprises using the one or more capabilities in a setup of a session with the access terminal.

3. The method of claim 1, further comprising sending a second authentication message to the access terminal, the second authentication message including one or more capabilities for the network.

4. The method of claim 1, wherein the authentication message comprises an extensible authentication protocol (EAP) message that is used in the authentication process for access to the network.

5. The method of claim 1, wherein the one or more capabilities comprise capabilities for layer 3 access.

6. A method comprising: during an authentication process with a network device, determining, at an access terminal, one or more capabilities for the access terminal;generating an authentication message for access to a network, wherein information for the one or more capabilities is included in the authentication message; andsending the authentication message to the network device, wherein the one or more capabilities of the access terminal are useable to set up a session between the network device and the access terminal.

7. The method of claim 6, further comprising receiving a second authentication message to the access terminal, the second authentication message including one or more capabilities for the network.

8. The method of claim 7, further comprising using the one or more capabilities for the network to set up a session with the network device.

9. The method of claim 6, wherein the authentication message comprises an extensible authentication protocol (EAP) message that is used in the authentication process for access to the network.

10. The method of claim 6, wherein the one or more capabilities comprise capabilities for layer 3 access.

11. An apparatus comprising: one or more processors; andlogic encoded in one or more tangible media for execution by the one or more processors and when executed operable to:receive an authentication message for access to a network during an authentication process with an access terminal;determine one or more capabilities of the access terminal, wherein information for the one or more capabilities is included in the authentication message received during the authentication process; andperform an action based on the one or more capabilities of the access terminal.

12. The apparatus of claim 11, wherein the logic when executed is further operable to use the one or more capabilities in a setup of a session with the access terminal.

13. The apparatus of claim 11, wherein the logic when executed is further operable to send a second authentication message to the access terminal, the second authentication message including one or more capabilities for the network.

14. The apparatus of claim 11, wherein the authentication message comprises an extensible authentication protocol (EAP) message that is used in the authentication process for access to the network.

15. The apparatus of claim 11, wherein the one or more capabilities comprise capabilities for layer 3 access.

16. An apparatus comprising: one or more processors; andlogic encoded in one or more tangible media for execution by the one or more processors and when executed operable to:determine one or more capabilities for the apparatus during an authentication process with a network device;generate an authentication message for access to a network, wherein information for the one or more capabilities is included in the authentication message; andsend the authentication message to the network device, wherein the one or more capabilities of the apparatus are useable to set up a session between the apparatus and the network device.

17. The apparatus of claim 16, wherein the logic when executed is further operable to receive a second authentication message to the access terminal, the second authentication message including one or more capabilities for the network.

18. The apparatus of claim 17, wherein the logic when executed is further operable to use the one or more capabilities for the network to set up a session with the apparatus.

19. The apparatus of claim 16, wherein the authentication message comprises an extensible authentication protocol (EAP) message that is used in the authentication process for access to the network.

20. The apparatus of claim 16, wherein the one or more capabilities comprise capabilities for layer 3 access.

21. An apparatus comprising: means for receiving an authentication message for access to a network during an authentication process with an access terminal;means for determining one or more capabilities of the access terminal, wherein information for the one or more capabilities is included in the authentication message received during the authentication process; andmeans for performing an action based on the one or more capabilities of the access terminal.

22. An apparatus comprising: means for determining, at an access terminal, one or more capabilities for the access terminal during an authentication process with a network device;means for generating an authentication message for access to a network, wherein information for the one or more capabilities is included in the authentication message; andmeans for sending the authentication message to the network device, wherein the one or more capabilities of the access terminal are useable to set up a session between the network device and the access terminal.