| 发明名称 | Relay node authentication method, apparatus, and system | ||
| 摘要 | Embodiments of the present invention disclose a relay node authentication method, apparatus, and system. The method provided in an embodiment of the present invention includes: sending, by a relay node, an authentication request message to a peer node, where the authentication request message includes a certificate of the relay node, so that the peer node authenticates the relay node according to the certificate of the relay node, where the peer node is a network side node or a security gateway in a security domain where the network side node is located; and receiving, by the relay node, an authentication response message sent by the peer node, where the authentication response message includes a certificate of the peer node, and authenticating the peer node according to the certificate of the peer node. | ||
| 申请公布号 | US9027111(B2) | 申请公布日期 | 2015.05.05 |
| 申请号 | US201213564173 | 申请日期 | 2012.08.01 |
| 申请人 | Huawei Technologies Co., Ltd. | 发明人 | Zhang Dongmei;Zhang Aiqin;Bi Xiaoyu;Liu Jing |
| 分类号 | H04L29/06;H04K1/00;H04W12/06;H04L9/32;H04W76/02;G06F15/16;G06F17/30 | 主分类号 | H04L29/06 |
| 代理机构 | Staas & Halsey LLP | 代理人 | Staas & Halsey LLP |
| 主权项 | 1. A relay node authentication method, comprising: sending, by a relay node, an authentication request message to a peer node, the authentication request message comprises a certificate of the relay node, so that the peer node authenticates the relay node according to the certificate of the relay node, wherein the peer node is a network side node or a security gateway in a security domain where the network side node is located; and receiving, by the relay node, an authentication response message sent by the peer node, wherein the authentication response message comprises a certificate of the peer node, and authenticating the peer node according to the certificate of the peer node, wherein a security association is enabled to authenticate access of an element in a security domain other than the security domain of the network side node where the relay node is located, wherein before the sending, by the relay node, the authentication request message to the security gateway in the security domain where the network side node is located, the method further comprises: determining whether a security domain where the relay node is located and the security domain where the network side node is located are the same security domain; andif determining that the security domain where the relay node is located and the security domain where the network side node is located are not the same security domain, performing the sending, by the relay node, the authentication request message to the security gateway in the security domain where the network side node is located. | ||
| 地址 | Shenzhen CN | ||