Trust concept for the SIP reason header

Description

BRIEF DESCRIPTION OF THE DRAWINGS

The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this specification, illustrate embodiments of the invention that together with the description serve to explain the principles of the invention, wherein:

FIG. 1 illustrates an embodiment of an IP Multimedia subsystem in which embodiments of the present invention may be implemented;

FIG. 2 illustrates an embodiment of the IP Multimedia subsystem;

FIG. 3 illustrates another embodiment of the IP Multimedia subsystem;

FIG. 4 illustrates method steps implemented in a first embodiment of the present invention;

FIG. 5 illustrates method steps implemented in a second embodiment of the present invention; and

FIG. 6 illustrates method steps implemented in a third embodiment of the present invention.

Claims

1. A network element for handling a trusted relationship in a Session Initiation Protocol network, the network element comprising: a receiving unit for receiving a message from another entity, wherein the message includes a header and at least one trust token;a determining unit for determining that an entity from which the message is received is a predefined trusted entity, wherein the header of the message comprises information for identifying whether or not the entity from which the message is received is a predefined trusted entity; anda processing unit for using contents of the header, from the entity that is determined to be a predefined trusted entity, for applications implemented by the network element.
2. The network element of claim 1, wherein the network element is configured to accept the trust token as a parameter of a SIP Header or a separate header, wherein an entity generating the message inserts the trust token including an identifier of the generating entity in the message.
3. The network element of claim 1, wherein the network element is configured, based on the determining unit, to determine that the entity from which the message is received is a predefined trusted entity and that the contents of the header in the received message is to be trusted.
4. The network element of claim 1, wherein the network element is configured, based on the determining unit, to determine that the entity from which the message is received is not a predefined trusted entity and the network element is configured to remove the header from the message.
5. The network element of claim 1, wherein the network element is configured to determine whether or not the trust token is associated with the header and if the associated trust token includes an identifier of the entity from which the message is received, wherein if the associated trust token includes an identifier of the entity from which the message is received, the network element is configured to rely on the contents of the header and to overwrite an identifier in the trust token with an identifier associated with the network element.
6. The network element of claim 1, wherein the network element is configured to determine whether or not the trust token is associated with the header and if the associated trust token includes an identifier of the entity from which the message is received, wherein if the network element determines that there is no trust token in the header or that the trust token includes an identifier of an entity which did not send the message, the network element is configured to remove the trust token from the message and ignore the content of the header.
7. The network element of claim 1, wherein the network element is configured to determine whether or not the trust token is associated with the header and if the associated trust token includes a certificate field for identifying a previous entity that certified a SIP Header in the message, wherein if the associated token includes the certificate field of the previous entity that certified the SIP Header in the message and from which the message is received, the network element is configured to assume that a source field in the token is valid and if the network element has a trust relationship with the entity identified in the source field, the network element is configured to rely on the contents of the header, and wherein the network element if further configured to overwrite an identifier in the certificate field with an identifier associated with the network element.
8. The network element of claim 1, wherein the network element is configured to determine whether or not the trust token is associated with the header and if the associated trust token includes a certificate field for identifying a previous entity that certified a SIP Header in the message, wherein if the certificate field includes an identifier of the entity that did not previously certify the SIP Reason Header in the message and sent the message, the network element is configured to assume that a source field in the token is invalid and the network element removes the token from the message and does not rely on the content of the header.
9. A method for handling a trusted relationship in a Session Initiation Protocol network, the method comprises the steps of: receiving a message from another entity, wherein the message includes a header and at least one trust token;determining that an entity from which the message is received is a predefined trusted entity, wherein the header of the message comprises information for identifying whether or not the entity from which the message is received is a predefined trusted entity; andusing contents of the header, from the entity that is determined to be a predefined trusted entity, for applications implemented by the network element.
10. The method of claim 9, further comprising accepting the trust token as a parameter of a SIP Header or a separate header, wherein an entity generating the message inserts the trust token including an identifier of the generating entity in the message.
11. The method of claim 9, further comprising determining that the entity from which the message is received is a predefined trusted entity and that the contents of the header in the received message is to be trusted.
12. The method of claim 9, further comprising determining that the entity from which the message is received is not a predefined trusted entity and the network element is configured to remove the header from the message.
13. The method of claim 9, further comprising determining whether or not the trust token is associated with the header and if the associated trust token includes an identifier of the entity from which the message is received, wherein if the associated trust token includes an identifier of the entity from which the message is received, the network element is configured to rely on the contents of the header and to overwrite an identifier in the trust token with an identifier associated with the network element.
14. The method of claim 9, further comprising determining whether or not the trust token is associated with the header and if the associated trust token includes an identifier of the entity from which the message is received, wherein if the network element determines that there is no trust token in the header or that the trust token includes an identifier of an entity which did not send the message, the network element is configured to remove the trust token from the message and ignore the content of the header.
15. The method of claim 9, further comprising determining whether or not the trust token is associated with the header and if the associated trust token includes a certificate field for identifying a previous entity that certified a SIP Header in the message, wherein if the associated the token includes the certificate field of the previous entity that certified the SIP Header in the message and from which the message is received, the network element is configured to assume that a source field in the token is valid and if the network element has a trust relationship with the entity identified in the source field, the network element is configured to rely on the contents of the header, and wherein the network element if further configured to overwrite an identifier in the certificate field with an identifier associated with the network element.
16. The method of claim 9, further comprising determining whether or not the trust token is associated with the header and if the associated trust token includes a certificate field for identifying a previous entity that certified a SIP Header in the message, wherein if the certificate field includes an identifier of the entity that did not previously certify the SIP Header in the message and sent the message, the network element is configured to assume that a source field in the token is invalid and the network element removes the token from the message and does not rely on the content of the header.
17. An apparatus for handling a trusted relationship in an Session Initiation Protocol network, the apparatus comprising: receiving means for receiving a message from another entity, wherein the message includes a header and at least one trust token;determining means for determining that an entity from which the message is received is a predefined trusted entity, wherein the header of the message comprises information for identifying whether or not the entity from which the message is received is a predefined trusted entity; andprocessing means for using contents of the header, from the entity that is determined to be a predefined trusted entity, for applications implemented by the network element.
18. An apparatus for sending a message to an entity with a trusted relationship in a Session Initiation Protocol network, the apparatus comprising: a generating unit for generating a request including a message with at least one trust token; anda transmitting unit for transmitting the request to an entity with a trusted relationship, wherein the entity comprises receiving means for receiving the message, wherein the message includes a header and the at least one trust token, determining means for determining that the apparatus from which the message is received is a predefined trusted entity, wherein the header of the message comprises information for identifying whether or not the apparatus from which the message is received is a predefined trusted entity, and processing means for using contents of the header, from the apparatus that is determined to be a predefined trusted entity, for applications implemented by the entity.
19. The apparatus of claim 18, wherein the apparatus is configured to generate an SIP request message with the trust token including an identifier associated with the apparatus.
20. The apparatus of claim 18, wherein the apparatus is configured to generate an SIP request message with the trust token including an identifier associated with the apparatus in both a source field and a certificate field.

Provisional Applications (1)

	Number	Date	Country
	60765219	Feb 2006	US

Trust concept for the SIP reason header

Information

Publication Number

Date Filed

Date Published

Inventors

Original Assignees

CPC

US Classifications

International Classifications

Abstract

Description

Claims

Provisional Applications (1)