CN102938891B - A kind of MTC device realizes the method and system triggered offline - Google Patents
A kind of MTC device realizes the method and system triggered offline Download PDFInfo
- Publication number
- CN102938891B CN102938891B CN201110234113.4A CN201110234113A CN102938891B CN 102938891 B CN102938891 B CN 102938891B CN 201110234113 A CN201110234113 A CN 201110234113A CN 102938891 B CN102938891 B CN 102938891B
- Authority
- CN
- China
- Prior art keywords
- mtc device
- offline
- mobile communications
- communications network
- mtc
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/70—Services for machine-to-machine communication [M2M] or machine type communication [MTC]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Realize that the method and system triggered offline, including MTC server are in offline MTC device via mobile communications network triggering the invention discloses a kind of MTC device, MTC device is authenticated mobile communications network using the offline authentication key of generation;Certification starts connection by rear, between MTC device and MTC server and establishes process, establishes secure connection.By the method for the present invention, realize in the case where MTC device is in offline states, when receiving triggering command, MTC device is first authenticated network, the process then responded again to triggering command.In the case of being in off-line state in MTC device, the certification in offline triggering provides specific implementation technical solution.
Description
Technical field
The present invention relates to Machine To Machine (M2M, Machine to Machine) technology, more particularly to a kind of machine type to lead to
Letter (MTC, Machine Type Communication) equipment realizes the method and system triggered offline.
Background technology
MTC refers to the employing wireless communication technology, realizes the data communication between machine and machine, machine and people and exchanges
A series of general name of technologies and combinations thereof.M2M has two layers of meaning:First layer be machine in itself, built-in field be known as intelligence
Equipment;The second layer means the connection between machine and machine, and machine is linked together by network.The application range of MTC
Widely, such as intelligent measure, remote monitoring, tracking, medical treatment etc., make human lives more intelligent.With traditional people with
Communication between people is compared, and MTC device (M2M Device) enormous amount, application field is extensive, has huge market prospects.
In MTC communication, main remotely connected technology includes global system for mobile communications (GSM, Global
System for Mobile Communications)/general packet radio service technology (GPRS, General Packet
Radio Service)/Universal Mobile Communication System (UMTS, Universal Mobile Telecommunications
System), closely interconnection technique mainly has 802.11b/g, bluetooth, Zigbee, radio frequency identification (RFID, Radio
Frequency Identification) etc..Since MTC incorporates wireless communication and information technology, available for two-way communication, such as
Remote to collect information, arrange parameter and send instruction etc., therefore, MTC can realize different application schemes, as safety monitoring,
Automatic vending, cargo tracking etc..Involved in nearly all daily life to equipment be likely to become potential service object.
MTC provides the simple hand that equipment real time data establishes wireless connection between the systems, between remote equipment or between individual
Section.
Applied for many M2M, since MTC user needs to control the communication with MTC device, do not allow MTC device
Arbitrarily access MTC server.In this case, MTC device need not be constantly attached to network or need not have permanent
Packet data protocol/packet data network (PDP/PDN) connects.When MTC server needs to communicate with MTC device, by touching
The triggering MTC device that sends instructions adheres to network or establishes a PDP/PDN connection.When MTC device is in offline (offline) shape
During state, attacker may be by pretending to be network to send triggering command to MTC device.Therefore, it is necessary to take safety measures, ensure
The triggering command of MTC device response is from legitimate network.
MTC device is under offline states, can be by carrying out authentication to network when receiving triggering command
To avoid MTC device from being subject to attacking from the triggering command for pretending to be network.In this manner, MTC device is only responded and passed through
The triggering command of the network of certification.That is, MTC device only responds the triggering command from legitimate network.In existing shifting
In dynamic communication network, the certification to network occurs during mobile terminal accessing mobile communication network, and certification is by rear, shifting
The Ciphering Key that dynamic communication network side is used for this certification deleted will not use.When mobile terminal and mobile communications network
After conversation end, certification is re-started if desired, then mobile communications network needs to complete mobile terminal with new Ciphering Key
With the mutual verification process of mobile communications network.In the case where MTC device is in offline states, when receiving triggering command, MTC
Equipment is authenticated firstly the need of to network, and then triggering command is responded again;Meanwhile touched in the offline of MTC device
During hair, network side need not be authenticated MTC device.Therefore, the AKA of generally use was authenticated in mobile communications network
Journey is not suitable for certification of the MTC device to network under offline states.Therefore, offline states are in MTC device
In the case of, in the prior art without the technical solution that is authenticated to network of offer.
The content of the invention
In view of this, it is a primary object of the present invention to provide a kind of MTC device to realize the method and system triggered offline,
In the case where MTC device is in off-line state, the certification in offline triggering can be realized.
To reach above-mentioned purpose, the technical proposal of the invention is realized in this way:
A kind of MTC device realizes the method triggered offline, including,
Machine type communication MTC server is in offline MTC device via mobile communications network triggering;
MTC device is authenticated mobile communications network using the offline authentication key of generation;By rear, MTC is set for certification
Process is established in the standby startup connection between MTC server, establishes secure connection.
The MTC server includes via mobile communications network triggering in offline MTC device:
Trigger request or triggering command are sent to mobile communications network by the MTC server;
The mobile communications network sends triggering command message to MTC device, and movement is carried in triggering command message
The message authentication code of communication network.
The message authentication code is generated by the offline authentication key and additional parametric information of the generation;
The additional parametric information is a random number and mobile communications network identity information;Or it is a random number.
The MTC device is authenticated including using the offline authentication key of generation to mobile communications network:
After the MTC device receives triggering command message, by offline authentication key, and received triggering command message
Additional parametric information the message authentication code from mobile communications network is authenticated.
The message authentication code passes through identifying algorithm by random number, mobile communications network identity information and offline authentication key
Generation;
The described pair of message authentication code from mobile communications network is authenticated specifically including:
The offline authentication key that the MTC device is generated and preserved by itself, with reference in received triggering command message
Random number and mobile communications network identity information, pass through the certification generating algorithm identical with mobile communication network side, generation this
Ground message authentication code;
Compare the local message authentication code of generation and the message authentication code in received triggering command message, if the two phase
Together, it is believed that certification is not by otherwise it is assumed that certification passes through.
The message authentication code is generated by random number and offline authentication key by identifying algorithm;
The described pair of message authentication code from mobile communications network is authenticated specifically including:
The offline authentication key that the MTC device is generated and preserved by itself, with reference in received triggering command message
Random number, pass through the certification generating algorithm identical with mobile communication network side and generate local message authentication code;
Compare the local message authentication code of generation and the message authentication code in received triggering command message, if the two phase
Together, it is believed that certification is not by otherwise it is assumed that certification passes through.
This method further includes:If the certification is by the way that the MTC device is not responding to the trigger request of MTC server
Or triggering command.
The generation offline authentication key includes:During the MTC device accessing mobile communication network, access authentication mistake is performed
Journey;
After certification, MTC device generates CK, IK respectively with mobile communications network;The mobile communications network is set with MTC
Back-up according to CK, IK, is not recognized using identical key generation method generation for the offline of MTC device certification mobile communications network
Demonstrate,prove key;
When off-line state is in after the conversation end of the MTC device and MTC server, the MTC device is led to mobile
Communication network preserves the offline authentication key of generation.
This method further includes:Update the offline authentication key preserved respectively in the MTC device and mobile communication network side.
The method of the renewal is:
After the offline trigger process of MTC device, the process connected between MTC server is created in MTC device
In, mobile communications network and MTC device generate new offline authentication key in the authentication phase of accessing mobile communication network;
Replaced using new offline authentication key with the old offline authentication key of preservation.
The method of the renewal is:
After the MTC device establishes offline authentication key with mobile communications network, it is being not received by trigger request or is touching
In the case of sending instructions, if the MTC device is due to needing to communicate with mobile communications network or needing to carry out with MTC server
Communication is, it is necessary to accessing mobile communication network, and start new access authentication procedure again, in new access authentication procedure, institute
State MTC device and generate new offline authentication key with mobile communications network;
Replaced using new offline authentication key with the old offline authentication key of preservation.
A kind of MTC device realizes the system triggered offline, including at least MTC device, MTC server and mobile radio communication
Network, wherein,
MTC device, for being authenticated using the offline authentication key of generation to mobile communications network;Certification by rear,
Start connection between MTC device and MTC server and establish process, establish secure connection;
MTC server, for being in offline MTC device via mobile communications network triggering.
The MTC device, when being additionally operable to accessing mobile communication network, performs access authentication procedure;After certification, MTC
Equipment generates CK, IK respectively with mobile communications network;According to CK, IK, using the key generation side identical with mobile communications network
Offline authentication key of the method generation for MTC device certification mobile communications network;It is in after the conversation end with MTC server
During off-line state, the offline authentication key of generation is preserved;
Correspondingly, the mobile communications network, is additionally operable to according to CK, IK, using the key generation side identical with MTC device
Offline authentication key of the method generation for MTC device certification mobile communications network.
The MTC device, is additionally operable to after offline trigger process, update the offline authentication key of preservation;
Correspondingly, the mobile communications network, is additionally operable to the offline authentication key that renewal preserves.
The technical solution provided from the invention described above, which can be seen that the present invention, includes MTC server via mobile radio communication
Network triggering is in offline MTC device, and MTC device is authenticated mobile communications network using the offline authentication key of generation;
Certification starts connection by rear, between MTC device and MTC server and establishes process, establishes secure connection.By present invention side
Method, realizes in the case where MTC device is in offline states, and when receiving triggering command, MTC device first carries out network
Certification, the process then responded again to triggering command.In the case of being in off-line state in MTC device, offline triggering
In certification provide specific implementation technical solution.
Brief description of the drawings
Fig. 1 is the flow chart that MTC device of the present invention realizes the method triggered offline;
Fig. 2 is the flow chart for the offline authentication key generation that MTC device of the present invention is realized in offline triggering;
Fig. 3 is the flow of the first embodiment of the offline authentication key in the offline triggering of present invention renewal MTC device realization
Schematic diagram;
Fig. 4 is the flow of the second embodiment of the offline authentication key in the offline triggering of present invention renewal MTC device realization
Schematic diagram.
Embodiment
Fig. 1 is the flow chart that MTC device of the present invention realizes the method triggered offline, as shown in Figure 1, including:
Step 100:MTC server is in offline MTC device via mobile communications network triggering.
When MTC server needs to communicate with MTC device, MTC server triggers MTC device by mobile communications network:
Trigger request or triggering command are sent to mobile communications network by MTC server, and mobile communications network is received from MTC server
Trigger request or triggering command after, send triggering command message to MTC device, carried in triggering command message mobile logical
The message authentication code of communication network, the message authentication code are authenticated mobile communications network for MTC device.
Wherein, message authentication code can pass through the offline authentication key K of generationofflineGenerated with additional parametric information.Than
Such as:Carry-on additional parametric information is a random number and mobile communications network identity information in triggering command message,
And message authentication code is by random number, mobile communications network identity information and offline authentication key Koffline, given birth to by identifying algorithm
Into.Alternatively, in triggering command message can also only carry an additional parametric information i.e. random number, and message authentication code by with
Machine number and offline authentication key Koffline, generated by identifying algorithm.
It should be noted that when outside MTC server is located at mobile communications network, mobile communications network is serviced with MTC
Communication between device needs security mechanism and is protected, as MTC server and mobile communications network can by mutual certification and
Encryption measures ensure the security to communicate between MTC server and mobile communications network.Concrete methods of realizing is art technology
Personnel's conventional techniques, and be not belonging to protection scope of the present invention, without in limiting protection scope of the present invention, here
No longer it is described in detail.
Step 101:MTC device is authenticated mobile communications network using the offline authentication key of generation.
In this step, after MTC device receives triggering command message, by offline authentication key, to from mobile radio communication
The message authentication code of network is authenticated, and is specifically included MTC device and is passed through offline authentication key KofflineWith received triggering command
Additional parametric information in message is authenticated message authentication code:
If message authentication code is by random number, mobile communications network identity information and offline authentication key KofflineBy recognizing
Demonstrate,prove algorithm generation, then, the offline authentication key K that MTC device is generated and preserved by itselfoffline, with reference to received triggering
Additional parametric information, that is, random number and mobile communications network identity information in instruction message, by with mobile communication network side phase
Same certification generating algorithm, generates a local message authentication code;Then, by the local message authentication code locally generated with receiving
Triggering command message in message authentication code be compared, if the two is identical, it is believed that certification is by otherwise it is assumed that certification
Do not pass through;
If message authentication code is by random number and offline authentication key KofflineGenerated by identifying algorithm, then, MTC is set
The standby offline authentication key K for generating and preserving by itselfoffline, with reference to the additional parameter letter in received triggering command message
Breath is random number, and a local message authentication code is generated by the certification generating algorithm identical with mobile communication network side;Then,
By the local message authentication code locally generated compared with the message authentication code in received triggering command message, if the two
It is identical, it is believed that certification is not by otherwise it is assumed that certification passes through.
Step 102:Certification starts connection by rear, between MTC device and MTC server and establishes process, establishes safety and connects
Connect.
In this step, by rear, MTC device responds the trigger request or triggering command of MTC server for certification, starts and establishes
Connection procedure between MTC device and MTC server.
Further, if certification is by the way that MTC device is not responding to the trigger request or triggering command of MTC server.
In the flow shown in Fig. 1, mobile communications network and MTC device generate and preserve the specific side of offline authentication key
Method is as shown in Fig. 2, comprise the following steps:
Step 200:During MTC device accessing mobile communication network, access authentication procedure is performed.The realization of this step belongs to existing
There is technology, I will not elaborate.
Step 201:After certification, MTC device generates encryption key (CK) respectively with mobile communications network, and integrality is close
Key (IK).The realization of this step belongs to the prior art, and I will not elaborate.
Step 202:Mobile communications network and MTC device are respectively according to CK, IK, using identical key generation method
Offline authentication key K of (KDF, the Key Derive Function) generation for MTC device certification mobile communications networkoffline。
In this step, key generation method can use existing method, and specific implementation belongs to those skilled in the art's
Conventional techniques, are not intended to limit the scope of the invention.This step is, it is emphasized that in MTC device access mobile communication
Network and by the way that, it is necessary to respectively according to CK, IK generations being recognized for the offline of MTC device certification mobile communications network after access authentication
Demonstrate,prove key Koffline。
Step 203:Be in when MTC device is in attachment removal state or after the conversation end of MTC device and MTC server from
During wire state, MTC device no longer preserves with mobile communications network and is connected relevant safe context, only preserves raw in step 202
Into offline authentication key Koffline。
This step is, it is emphasized that when MTC device enters off-line state, the offline authentication key K that generates beforeofflineIt is
Need what is preserved, used during realizing offline triggering so as to follow-up MTC device.
By the method for the present invention, realize in the case where MTC device is in offline states, when receiving triggering command,
MTC device is first authenticated network, the process then responded again to triggering command.To be in offline in MTC device
In the case of state, the certification in offline triggering provides specific implementation technical solution.
Offline authentication key KofflineIt is only used for an offline trigger process of MTC device.Touched offline in a MTC device
After hair process, the method for the present invention further includes:Needed in the offline authentication key that MTC device and mobile communication network side preserve
It is updated.The mode of renewal can have following two situations:
(1) after the offline trigger process of MTC device, the process connected between MTC server is created in MTC device
In, according to the flow shown in Fig. 2 of the present invention, the authentication phase of mobile communications network and MTC device in accessing mobile communication network
New offline authentication key K can be generatedoffline, in present invention, it is desirable to utilizing new offline authentication key KofflineInstead of it is old from
Line authentication key Koffline, i.e., the offline authentication key of MTC device and mobile communication network side preservation is updated;
(2) MTC device establishes offline authentication key K with mobile communications networkofflineAfterwards, it is being not received by trigger request
Or in the case of triggering command, if MTC device is due to needing to communicate with mobile communications network or needing to carry out with MTC server
Communication is, it is necessary to accessing mobile communication network, and start new access authentication procedure again.So, according to shown in Fig. 2 of the present invention
Flow, in new access authentication procedure, MTC device can generate new offline authentication key K with mobile communications networkoffline, this
, it is necessary to utilize new offline authentication key K in inventionofflineInstead of the old offline authentication key K preservedoffline, i.e., MTC is set
The offline authentication key that standby and mobile communication network side preserves is updated.
Fig. 3 is the flow of the first embodiment of the offline authentication key in the offline triggering of present invention renewal MTC device realization
Schematic diagram, in first embodiment, after MTC device response triggering command, creates what is connected between MTC server in MTC device
During, mobile communications network and MTC device will produce new offline authentication key in the authentication phase of accessing mobile communication network
Knew-offline, and replace the old offline authentication key K preservedold-offline, as shown in figure 3, detailed process includes following step
Suddenly:
Step 300:MTC device responds triggering command, starts the connection procedure established with MTC server.
Step 301:MTC device accessing mobile communication network, performs new access authentication procedure.
Step 302:After certification, MTC device generates CK, IK respectively with mobile communications network.
Step 303:Mobile communications network and MTC device are respectively according to CK, IK, using identical key generation method
New offline authentication key of (KDF, the Key Derive Function) generation for MTC device certification mobile communications network
Knew-offline.Specific implementation is completely the same with step 202, and which is not described herein again.
Step 304:Mobile communications network is with MTC device respectively by new offline authentication key Knew-offlineRecognize offline instead of old
Demonstrate,prove key Kold-offline。
Step 305:When off-line state is in after the conversation end of MTC device and MTC server, MTC device is led to mobile
Communication network no longer preserves the relevant safe context of connection, only preserves the new offline authentication key K being newly generatednew-offline。
Fig. 4 is the flow of the second embodiment of the offline authentication key in the offline triggering of present invention renewal MTC device realization
Schematic diagram, in second embodiment, after MTC device establishes offline authentication key with mobile communications network, is being not received by triggering
In the case of instruction, if MTC device communicates due to needing with mobile communications network, or needs to communicate with MTC server,
Accessing mobile communication network again is needed, and starts new access authentication procedure, then, in new access authentication procedure, MTC
Equipment can generate new offline authentication key K with mobile communications network according to the generation process of offline authentication keynew-offline, and generation
For old offline authentication key Kold-offline.As shown in figure 4, detailed process comprises the following steps:
Step 400:MTC device accessing mobile communication network, performs new access authentication process.
Step 401:After certification, MTC device generates CK, IK respectively with mobile communications network.
Step 402:Mobile communications network and MTC device are respectively according to CK, IK, using identical key generation method
New offline authentication key of (KDF, the Key Derive Function) generation for MTC device certification mobile communications network
Knew-offline.Specific implementation is completely the same with step 202, and which is not described herein again.
Step 403:Mobile communications network is with MTC device respectively by new offline authentication key Knew-offlineRecognize offline instead of old
Demonstrate,prove key Kold-offline。
Step 404:Be in when MTC device is in attachment removal state or after the conversation end of MTC device and MTC server from
During wire state, MTC device no longer preserves with mobile communications network and is connected relevant safe context, and only preservation is newly generated new
Offline authentication key Knew-offline。
For the method for the present invention, also provide a kind of system realized MTC device and triggered offline, including at least MTC device,
MTC server and mobile communications network, wherein,
MTC device, for being authenticated using the offline authentication key of generation to mobile communications network;Certification by rear,
Start connection between MTC device and MTC server and establish process, establish secure connection.
MTC server, for being in offline MTC device via mobile communications network triggering.
MTC device, when being additionally operable to accessing mobile communication network, performs access authentication procedure;After certification, MTC device
CK, IK are generated respectively with mobile communications network;According to CK, IK, using the key generation method identical with mobile communications network
Offline authentication key K of (KDF, the Key Derive Function) generation for MTC device certification mobile communications networkoffline;
When off-line state is in after the conversation end with MTC server, the offline authentication key K of generation is preservedoffline;
Correspondingly, mobile communications network, is additionally operable to according to CK, IK, using the key generation method identical with MTC device
Offline authentication key K of (KDF, the Key Derive Function) generation for MTC device certification mobile communications networkoffline。
MTC device, is additionally operable to after offline trigger process, update the offline authentication key of preservation;Correspondingly, it is mobile
Communication network, is additionally operable to the offline authentication key that renewal preserves.
The foregoing is only a preferred embodiment of the present invention, is not intended to limit the scope of the present invention, it is all
All any modification, equivalent and improvement made within the spirit and principles in the present invention etc., should be included in the protection of the present invention
Within the scope of.
Claims (12)
1. a kind of MTC device realizes the method triggered offline, it is characterised in that including,
Machine type communication MTC server is in offline MTC device via mobile communications network triggering;
MTC device is authenticated mobile communications network using the offline authentication key of generation;Certification by rear, MTC device with
Start connection between MTC server and establish process, establish secure connection;
The MTC server includes via mobile communications network triggering in offline MTC device:
Trigger request or triggering command are sent to mobile communications network by the MTC server;
The mobile communications network sends triggering command message to MTC device, and mobile communication is carried in triggering command message
The message authentication code of network;
The message authentication code is generated by the offline authentication key and additional parametric information of the generation;
The additional parametric information is a random number and mobile communications network identity information;Or it is a random number.
2. according to the method described in claim 1, it is characterized in that, the MTC device utilizes the offline authentication key pair generated
Mobile communications network is authenticated including:
After the MTC device receives triggering command message, by attached in offline authentication key, and received triggering command message
Parameter information is added to be authenticated the message authentication code from mobile communications network.
3. according to the method described in claim 2, it is characterized in that, the message authentication code is by random number, mobile communications network
Identity information and offline authentication key are generated by identifying algorithm;
The described pair of message authentication code from mobile communications network is authenticated specifically including:
The offline authentication key that the MTC device is generated and preserved by itself, with reference in received triggering command message with
Machine number and mobile communications network identity information, by the certification generating algorithm identical with mobile communication network side, generation is local to disappear
Cease authentication code;
Compare the local message authentication code of generation and the message authentication code in received triggering command message, if the two is identical,
Think certification by otherwise it is assumed that certification does not pass through.
4. according to the method described in claim 2, it is characterized in that, the message authentication code is by random number and offline authentication key
Generated by identifying algorithm;
The described pair of message authentication code from mobile communications network is authenticated specifically including:
The offline authentication key that the MTC device is generated and preserved by itself, with reference in received triggering command message with
Machine number, local message authentication code is generated by the certification generating algorithm identical with mobile communication network side;
Compare the local message authentication code of generation and the message authentication code in received triggering command message, if the two is identical,
Think certification by otherwise it is assumed that certification does not pass through.
5. according to Claims 1 to 4 any one of them method, it is characterised in that this method further includes:If the certification is not
By the way that the MTC device is not responding to the trigger request or triggering command of MTC server.
6. according to Claims 1 to 4 any one of them method, it is characterised in that the generation offline authentication key includes:Institute
When stating MTC device accessing mobile communication network, access authentication procedure is performed;
After certification, MTC device generates CK, IK respectively with mobile communications network;The mobile communications network and MTC device point
It is close for the offline authentication of MTC device certification mobile communications network using identical key generation method generation not according to CK, IK
Key;
When off-line state is in after the conversation end of the MTC device and MTC server, the MTC device and mobile radio communication
Network preserves the offline authentication key of generation.
7. according to the method described in claim 5, it is characterized in that, this method further includes:Renewal is in the MTC device and movement
The offline authentication key that communication network side preserves respectively.
8. the method according to the description of claim 7 is characterized in that the method for the renewal is:
After the offline trigger process of MTC device, during MTC device is created and connected between MTC server, move
Dynamic communication network and MTC device generate new offline authentication key in the authentication phase of accessing mobile communication network;
Replaced using new offline authentication key with the old offline authentication key of preservation.
9. the method according to the description of claim 7 is characterized in that the method for the renewal is:
After the MTC device establishes offline authentication key with mobile communications network, refer to being not received by trigger request or triggering
In the case of order, if the MTC device communicates with mobile communications network due to needing or needs to be led to MTC server
Letter is, it is necessary to which accessing mobile communication network, and start new access authentication procedure again, described in new access authentication procedure
MTC device generates new offline authentication key with mobile communications network;
Replaced using new offline authentication key with the old offline authentication key of preservation.
10. a kind of MTC device realizes the system triggered offline, it is characterised in that including at least MTC device, MTC server and
Mobile communications network, wherein,
MTC device, for being authenticated using the offline authentication key of generation to mobile communications network;By rear, MTC is set for certification
Process is established in the standby startup connection between MTC server, establishes secure connection;
MTC server, for being in offline MTC device via mobile communications network triggering;
The MTC server includes via mobile communications network triggering in offline MTC device:
Trigger request or triggering command are sent to mobile communications network by the MTC server;
The mobile communications network sends triggering command message to MTC device, and mobile communication is carried in triggering command message
The message authentication code of network;
The message authentication code is generated by the offline authentication key and additional parametric information of the generation;
The additional parametric information is a random number and mobile communications network identity information;Or it is a random number.
11. system according to claim 10, it is characterised in that the MTC device, is additionally operable to accessing mobile communication network
When, perform access authentication procedure;After certification, MTC device generates CK, IK respectively with mobile communications network;According to CK, IK,
Using offline authentication of the key generation method generation identical with mobile communications network for MTC device certification mobile communications network
Key;When off-line state is in after the conversation end with MTC server, the offline authentication key of generation is preserved;
Correspondingly, the mobile communications network, is additionally operable to according to CK, IK, is given birth to using the key generation method identical with MTC device
Into the offline authentication key for MTC device certification mobile communications network.
12. the system according to claim 10 or 11, it is characterised in that the MTC device, is additionally operable to trigger offline
After journey, the offline authentication key of preservation is updated;
Correspondingly, the mobile communications network, is additionally operable to the offline authentication key that renewal preserves.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201110234113.4A CN102938891B (en) | 2011-08-16 | 2011-08-16 | A kind of MTC device realizes the method and system triggered offline |
PCT/CN2011/082608 WO2012151938A1 (en) | 2011-08-16 | 2011-11-22 | Method and system for realizing offline triggering by mtc device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201110234113.4A CN102938891B (en) | 2011-08-16 | 2011-08-16 | A kind of MTC device realizes the method and system triggered offline |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102938891A CN102938891A (en) | 2013-02-20 |
CN102938891B true CN102938891B (en) | 2018-05-11 |
Family
ID=47138717
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201110234113.4A Expired - Fee Related CN102938891B (en) | 2011-08-16 | 2011-08-16 | A kind of MTC device realizes the method and system triggered offline |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN102938891B (en) |
WO (1) | WO2012151938A1 (en) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106604251A (en) * | 2015-10-20 | 2017-04-26 | 上海中兴软件有限责任公司 | Triggering message processing method, device, and system |
CN112787972B (en) * | 2019-11-04 | 2022-11-04 | 成都鼎桥通信技术有限公司 | System, method and device for near-end maintenance authentication in Internet of things |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101272251A (en) * | 2007-03-22 | 2008-09-24 | 华为技术有限公司 | Authentication and cryptographic key negotiation method, authentication method, system and equipment |
CN101651546A (en) * | 2009-09-11 | 2010-02-17 | 福建天晴在线互动科技有限公司 | Method for off-line generation of dynamic password and debarkation authentication and synchronization of server |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101022651B (en) * | 2006-02-13 | 2012-05-02 | 华为技术有限公司 | Combined right-discriminating construction and realizing method thereof |
US20090191857A1 (en) * | 2008-01-30 | 2009-07-30 | Nokia Siemens Networks Oy | Universal subscriber identity module provisioning for machine-to-machine communications |
CN102083109B (en) * | 2010-04-29 | 2013-06-05 | 电信科学技术研究院 | Offline detection method, device and system |
CN102088668B (en) * | 2011-03-10 | 2013-09-25 | 西安电子科技大学 | Group-based authentication method of machine type communication (MTC) devices |
-
2011
- 2011-08-16 CN CN201110234113.4A patent/CN102938891B/en not_active Expired - Fee Related
- 2011-11-22 WO PCT/CN2011/082608 patent/WO2012151938A1/en active Application Filing
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101272251A (en) * | 2007-03-22 | 2008-09-24 | 华为技术有限公司 | Authentication and cryptographic key negotiation method, authentication method, system and equipment |
CN101651546A (en) * | 2009-09-11 | 2010-02-17 | 福建天晴在线互动科技有限公司 | Method for off-line generation of dynamic password and debarkation authentication and synchronization of server |
Also Published As
Publication number | Publication date |
---|---|
WO2012151938A1 (en) | 2012-11-15 |
CN102938891A (en) | 2013-02-20 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108848112B (en) | Cut-in method, equipment and the system of user equipment (UE) | |
CN101867530B (en) | Things-internet gateway system based on virtual machine and data interactive method | |
WO2018040643A1 (en) | Mobile terminal, server, vehicle and control system thereof | |
CN104167029B (en) | A kind of intelligent lock and its operating method | |
CN106056713B (en) | A kind of remote-authorization method of coded lock | |
CN103488932A (en) | Desktop security intercommunication system for mobile device and personal computer and implementation method thereof | |
CN102936980A (en) | Method and device for controlling electronic lock | |
CN104113839A (en) | Mobile data safety protection system and method based on SDN | |
CN104270758A (en) | Method for safely establishing connection with server and conducting authorization through WIFI | |
CN205121680U (en) | Bluetooth lock system based on intelligent terminal | |
CN104123766A (en) | Access control system using near field communication | |
CN106710043A (en) | Time-limited entrance guard management system with visitor authentication and method thereof | |
CN108257266A (en) | A kind of multi-functional smart lock | |
CN105553669B (en) | A kind of information encryption transmission device and method and monitoring and managing method based on ID authentication | |
CN102572818B (en) | A kind of application key management method of MTC group device and system | |
CN102916960B (en) | A kind of policy synchronization method being applied to physics isolation net gap and system thereof | |
CN102647318A (en) | Intelligent household system controlled through human characteristic information and working method thereof | |
Bindroo et al. | A wearable NFC wristband for remote home automation system | |
CN102938891B (en) | A kind of MTC device realizes the method and system triggered offline | |
CN103297940A (en) | Short message encryption communication system and method | |
CN103916851B (en) | A kind of method of safety certification, equipment and system | |
CN104936306A (en) | Method for establishing small data safe transmission connection of MTC equipment set, HSS and system | |
CN108155996B (en) | Smart home safe communication method based on family's channel | |
CN116349202A (en) | Mutual authentication with pseudo-random numbers | |
CN102869015B (en) | A kind of method and system of MTC device triggering |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20180511 Termination date: 20200816 |