Abstract: A method to set up a security association (SA) between a first node and a second node in a packet switched environment, comprising the steps of forwarding a prefix value in a message from the first node to the second node, and creating a security association between the first node and the second node using the prefix value.

Abstract: A method and communication system are provided for authenticating a first entity (such as a mobile device) in the communications network. This may include transmitting a register message from the first entity to a second entity. An authentication challenge may be transmitted from the second entity to the first entity. The authentication challenge may include security association parameters within a header field. The response of the challenge may be transmitted from the first entity to the second entity. The response of the challenge may include security association parameters within a header field. A security association may be set up based on the security association parameters.

Abstract: The present invention is a system and method which provides authentication for data services for at least one UE (12) using common authentication information based upon information stored in a HSS (16) of a home network (20) of the at least one UE for multiple protocols. At least one proxy server (18) stores authentication information for each of the protocols which may be used to provide data services to the at least one UE. Authentication of the protocols available to the at least one UE uses the authentication information stored at the at least one proxy server obtained from the protocol used in the home network of the at least one UE.

Abstract: A method for selecting a time length of a security association (SA) between user equipment (UE) which transmits and receives communications and a control entity in a communication system in accordance with the invention, includes transmitting a registration message (SM1) from the user equipment to the control entity (P-CSCF) requesting registration of the user equipment with the control entity; after transmission of the registration message, setting the time length of the security association between the user equipment and the control entity to be equal to a registration time length set between the user equipment and the control entity during which registration of the user equipment with the control entity is valid; and transmitting the set time length of the security association to the user equipment as part of an acknowledgment message (SM10 or SM12) to the registration message to cause the security association to have a time equal to the registration timer length.

Abstract: The present invention provides a method and apparatus for connecting terminal equipment to a wireless network with a mobile terminal, wherein the mobile terminal is assigned proxy functions that control access of the terminal equipment to an internet protocol multimedia subsystem (IMS) in the wireless network. The proxy control functions include identification or authentication functions, as well as call control functions. The terminal equipment performs protocol stream processing functions for communicating with the internet protocol multimedia subsystem (IMS). The protocol stream processing functions include real-time transport protocol (RTP) and real-time transport control protocol (RTCP) functions. The wireless network includes a universal mobile telecommunications system (UMTS) network coupled to the internet protocol multimedia subsystem (IMS).

Abstract: A session initiation protocol message includes confidentiality protection in that the sender of the message is identified using a temporary identity index generated by calculating a hash function for a private key and public information which indicates the sender. The result of the calculation of the hash function is the temporary identity index and is associated with a specific sender-receiver pair.