CN102938891B - A kind of MTC device realizes the method and system triggered offline - Google Patents

A kind of MTC device realizes the method and system triggered offline Download PDF

Info

Publication number
CN102938891B
CN102938891B CN201110234113.4A CN201110234113A CN102938891B CN 102938891 B CN102938891 B CN 102938891B CN 201110234113 A CN201110234113 A CN 201110234113A CN 102938891 B CN102938891 B CN 102938891B
Authority
CN
China
Prior art keywords
mtc device
offline
mobile communications
communications network
mtc
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN201110234113.4A
Other languages
Chinese (zh)
Other versions
CN102938891A (en
Inventor
余万涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201110234113.4A priority Critical patent/CN102938891B/en
Priority to PCT/CN2011/082608 priority patent/WO2012151938A1/en
Publication of CN102938891A publication Critical patent/CN102938891A/en
Application granted granted Critical
Publication of CN102938891B publication Critical patent/CN102938891B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/70Services for machine-to-machine communication [M2M] or machine type communication [MTC]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Realize that the method and system triggered offline, including MTC server are in offline MTC device via mobile communications network triggering the invention discloses a kind of MTC device, MTC device is authenticated mobile communications network using the offline authentication key of generation;Certification starts connection by rear, between MTC device and MTC server and establishes process, establishes secure connection.By the method for the present invention, realize in the case where MTC device is in offline states, when receiving triggering command, MTC device is first authenticated network, the process then responded again to triggering command.In the case of being in off-line state in MTC device, the certification in offline triggering provides specific implementation technical solution.

Description

A kind of MTC device realizes the method and system triggered offline
Technical field
The present invention relates to Machine To Machine (M2M, Machine to Machine) technology, more particularly to a kind of machine type to lead to Letter (MTC, Machine Type Communication) equipment realizes the method and system triggered offline.
Background technology
MTC refers to the employing wireless communication technology, realizes the data communication between machine and machine, machine and people and exchanges A series of general name of technologies and combinations thereof.M2M has two layers of meaning:First layer be machine in itself, built-in field be known as intelligence Equipment;The second layer means the connection between machine and machine, and machine is linked together by network.The application range of MTC Widely, such as intelligent measure, remote monitoring, tracking, medical treatment etc., make human lives more intelligent.With traditional people with Communication between people is compared, and MTC device (M2M Device) enormous amount, application field is extensive, has huge market prospects.
In MTC communication, main remotely connected technology includes global system for mobile communications (GSM, Global System for Mobile Communications)/general packet radio service technology (GPRS, General Packet Radio Service)/Universal Mobile Communication System (UMTS, Universal Mobile Telecommunications System), closely interconnection technique mainly has 802.11b/g, bluetooth, Zigbee, radio frequency identification (RFID, Radio Frequency Identification) etc..Since MTC incorporates wireless communication and information technology, available for two-way communication, such as Remote to collect information, arrange parameter and send instruction etc., therefore, MTC can realize different application schemes, as safety monitoring, Automatic vending, cargo tracking etc..Involved in nearly all daily life to equipment be likely to become potential service object. MTC provides the simple hand that equipment real time data establishes wireless connection between the systems, between remote equipment or between individual Section.
Applied for many M2M, since MTC user needs to control the communication with MTC device, do not allow MTC device Arbitrarily access MTC server.In this case, MTC device need not be constantly attached to network or need not have permanent Packet data protocol/packet data network (PDP/PDN) connects.When MTC server needs to communicate with MTC device, by touching The triggering MTC device that sends instructions adheres to network or establishes a PDP/PDN connection.When MTC device is in offline (offline) shape During state, attacker may be by pretending to be network to send triggering command to MTC device.Therefore, it is necessary to take safety measures, ensure The triggering command of MTC device response is from legitimate network.
MTC device is under offline states, can be by carrying out authentication to network when receiving triggering command To avoid MTC device from being subject to attacking from the triggering command for pretending to be network.In this manner, MTC device is only responded and passed through The triggering command of the network of certification.That is, MTC device only responds the triggering command from legitimate network.In existing shifting In dynamic communication network, the certification to network occurs during mobile terminal accessing mobile communication network, and certification is by rear, shifting The Ciphering Key that dynamic communication network side is used for this certification deleted will not use.When mobile terminal and mobile communications network After conversation end, certification is re-started if desired, then mobile communications network needs to complete mobile terminal with new Ciphering Key With the mutual verification process of mobile communications network.In the case where MTC device is in offline states, when receiving triggering command, MTC Equipment is authenticated firstly the need of to network, and then triggering command is responded again;Meanwhile touched in the offline of MTC device During hair, network side need not be authenticated MTC device.Therefore, the AKA of generally use was authenticated in mobile communications network Journey is not suitable for certification of the MTC device to network under offline states.Therefore, offline states are in MTC device In the case of, in the prior art without the technical solution that is authenticated to network of offer.
The content of the invention
In view of this, it is a primary object of the present invention to provide a kind of MTC device to realize the method and system triggered offline, In the case where MTC device is in off-line state, the certification in offline triggering can be realized.
To reach above-mentioned purpose, the technical proposal of the invention is realized in this way:
A kind of MTC device realizes the method triggered offline, including,
Machine type communication MTC server is in offline MTC device via mobile communications network triggering;
MTC device is authenticated mobile communications network using the offline authentication key of generation;By rear, MTC is set for certification Process is established in the standby startup connection between MTC server, establishes secure connection.
The MTC server includes via mobile communications network triggering in offline MTC device:
Trigger request or triggering command are sent to mobile communications network by the MTC server;
The mobile communications network sends triggering command message to MTC device, and movement is carried in triggering command message The message authentication code of communication network.
The message authentication code is generated by the offline authentication key and additional parametric information of the generation;
The additional parametric information is a random number and mobile communications network identity information;Or it is a random number.
The MTC device is authenticated including using the offline authentication key of generation to mobile communications network:
After the MTC device receives triggering command message, by offline authentication key, and received triggering command message Additional parametric information the message authentication code from mobile communications network is authenticated.
The message authentication code passes through identifying algorithm by random number, mobile communications network identity information and offline authentication key Generation;
The described pair of message authentication code from mobile communications network is authenticated specifically including:
The offline authentication key that the MTC device is generated and preserved by itself, with reference in received triggering command message Random number and mobile communications network identity information, pass through the certification generating algorithm identical with mobile communication network side, generation this Ground message authentication code;
Compare the local message authentication code of generation and the message authentication code in received triggering command message, if the two phase Together, it is believed that certification is not by otherwise it is assumed that certification passes through.
The message authentication code is generated by random number and offline authentication key by identifying algorithm;
The described pair of message authentication code from mobile communications network is authenticated specifically including:
The offline authentication key that the MTC device is generated and preserved by itself, with reference in received triggering command message Random number, pass through the certification generating algorithm identical with mobile communication network side and generate local message authentication code;
Compare the local message authentication code of generation and the message authentication code in received triggering command message, if the two phase Together, it is believed that certification is not by otherwise it is assumed that certification passes through.
This method further includes:If the certification is by the way that the MTC device is not responding to the trigger request of MTC server Or triggering command.
The generation offline authentication key includes:During the MTC device accessing mobile communication network, access authentication mistake is performed Journey;
After certification, MTC device generates CK, IK respectively with mobile communications network;The mobile communications network is set with MTC Back-up according to CK, IK, is not recognized using identical key generation method generation for the offline of MTC device certification mobile communications network Demonstrate,prove key;
When off-line state is in after the conversation end of the MTC device and MTC server, the MTC device is led to mobile Communication network preserves the offline authentication key of generation.
This method further includes:Update the offline authentication key preserved respectively in the MTC device and mobile communication network side.
The method of the renewal is:
After the offline trigger process of MTC device, the process connected between MTC server is created in MTC device In, mobile communications network and MTC device generate new offline authentication key in the authentication phase of accessing mobile communication network;
Replaced using new offline authentication key with the old offline authentication key of preservation.
The method of the renewal is:
After the MTC device establishes offline authentication key with mobile communications network, it is being not received by trigger request or is touching In the case of sending instructions, if the MTC device is due to needing to communicate with mobile communications network or needing to carry out with MTC server Communication is, it is necessary to accessing mobile communication network, and start new access authentication procedure again, in new access authentication procedure, institute State MTC device and generate new offline authentication key with mobile communications network;
Replaced using new offline authentication key with the old offline authentication key of preservation.
A kind of MTC device realizes the system triggered offline, including at least MTC device, MTC server and mobile radio communication Network, wherein,
MTC device, for being authenticated using the offline authentication key of generation to mobile communications network;Certification by rear, Start connection between MTC device and MTC server and establish process, establish secure connection;
MTC server, for being in offline MTC device via mobile communications network triggering.
The MTC device, when being additionally operable to accessing mobile communication network, performs access authentication procedure;After certification, MTC Equipment generates CK, IK respectively with mobile communications network;According to CK, IK, using the key generation side identical with mobile communications network Offline authentication key of the method generation for MTC device certification mobile communications network;It is in after the conversation end with MTC server During off-line state, the offline authentication key of generation is preserved;
Correspondingly, the mobile communications network, is additionally operable to according to CK, IK, using the key generation side identical with MTC device Offline authentication key of the method generation for MTC device certification mobile communications network.
The MTC device, is additionally operable to after offline trigger process, update the offline authentication key of preservation;
Correspondingly, the mobile communications network, is additionally operable to the offline authentication key that renewal preserves.
The technical solution provided from the invention described above, which can be seen that the present invention, includes MTC server via mobile radio communication Network triggering is in offline MTC device, and MTC device is authenticated mobile communications network using the offline authentication key of generation; Certification starts connection by rear, between MTC device and MTC server and establishes process, establishes secure connection.By present invention side Method, realizes in the case where MTC device is in offline states, and when receiving triggering command, MTC device first carries out network Certification, the process then responded again to triggering command.In the case of being in off-line state in MTC device, offline triggering In certification provide specific implementation technical solution.
Brief description of the drawings
Fig. 1 is the flow chart that MTC device of the present invention realizes the method triggered offline;
Fig. 2 is the flow chart for the offline authentication key generation that MTC device of the present invention is realized in offline triggering;
Fig. 3 is the flow of the first embodiment of the offline authentication key in the offline triggering of present invention renewal MTC device realization Schematic diagram;
Fig. 4 is the flow of the second embodiment of the offline authentication key in the offline triggering of present invention renewal MTC device realization Schematic diagram.
Embodiment
Fig. 1 is the flow chart that MTC device of the present invention realizes the method triggered offline, as shown in Figure 1, including:
Step 100:MTC server is in offline MTC device via mobile communications network triggering.
When MTC server needs to communicate with MTC device, MTC server triggers MTC device by mobile communications network: Trigger request or triggering command are sent to mobile communications network by MTC server, and mobile communications network is received from MTC server Trigger request or triggering command after, send triggering command message to MTC device, carried in triggering command message mobile logical The message authentication code of communication network, the message authentication code are authenticated mobile communications network for MTC device.
Wherein, message authentication code can pass through the offline authentication key K of generationofflineGenerated with additional parametric information.Than Such as:Carry-on additional parametric information is a random number and mobile communications network identity information in triggering command message, And message authentication code is by random number, mobile communications network identity information and offline authentication key Koffline, given birth to by identifying algorithm Into.Alternatively, in triggering command message can also only carry an additional parametric information i.e. random number, and message authentication code by with Machine number and offline authentication key Koffline, generated by identifying algorithm.
It should be noted that when outside MTC server is located at mobile communications network, mobile communications network is serviced with MTC Communication between device needs security mechanism and is protected, as MTC server and mobile communications network can by mutual certification and Encryption measures ensure the security to communicate between MTC server and mobile communications network.Concrete methods of realizing is art technology Personnel's conventional techniques, and be not belonging to protection scope of the present invention, without in limiting protection scope of the present invention, here No longer it is described in detail.
Step 101:MTC device is authenticated mobile communications network using the offline authentication key of generation.
In this step, after MTC device receives triggering command message, by offline authentication key, to from mobile radio communication The message authentication code of network is authenticated, and is specifically included MTC device and is passed through offline authentication key KofflineWith received triggering command Additional parametric information in message is authenticated message authentication code:
If message authentication code is by random number, mobile communications network identity information and offline authentication key KofflineBy recognizing Demonstrate,prove algorithm generation, then, the offline authentication key K that MTC device is generated and preserved by itselfoffline, with reference to received triggering Additional parametric information, that is, random number and mobile communications network identity information in instruction message, by with mobile communication network side phase Same certification generating algorithm, generates a local message authentication code;Then, by the local message authentication code locally generated with receiving Triggering command message in message authentication code be compared, if the two is identical, it is believed that certification is by otherwise it is assumed that certification Do not pass through;
If message authentication code is by random number and offline authentication key KofflineGenerated by identifying algorithm, then, MTC is set The standby offline authentication key K for generating and preserving by itselfoffline, with reference to the additional parameter letter in received triggering command message Breath is random number, and a local message authentication code is generated by the certification generating algorithm identical with mobile communication network side;Then, By the local message authentication code locally generated compared with the message authentication code in received triggering command message, if the two It is identical, it is believed that certification is not by otherwise it is assumed that certification passes through.
Step 102:Certification starts connection by rear, between MTC device and MTC server and establishes process, establishes safety and connects Connect.
In this step, by rear, MTC device responds the trigger request or triggering command of MTC server for certification, starts and establishes Connection procedure between MTC device and MTC server.
Further, if certification is by the way that MTC device is not responding to the trigger request or triggering command of MTC server.
In the flow shown in Fig. 1, mobile communications network and MTC device generate and preserve the specific side of offline authentication key Method is as shown in Fig. 2, comprise the following steps:
Step 200:During MTC device accessing mobile communication network, access authentication procedure is performed.The realization of this step belongs to existing There is technology, I will not elaborate.
Step 201:After certification, MTC device generates encryption key (CK) respectively with mobile communications network, and integrality is close Key (IK).The realization of this step belongs to the prior art, and I will not elaborate.
Step 202:Mobile communications network and MTC device are respectively according to CK, IK, using identical key generation method Offline authentication key K of (KDF, the Key Derive Function) generation for MTC device certification mobile communications networkoffline
In this step, key generation method can use existing method, and specific implementation belongs to those skilled in the art's Conventional techniques, are not intended to limit the scope of the invention.This step is, it is emphasized that in MTC device access mobile communication Network and by the way that, it is necessary to respectively according to CK, IK generations being recognized for the offline of MTC device certification mobile communications network after access authentication Demonstrate,prove key Koffline
Step 203:Be in when MTC device is in attachment removal state or after the conversation end of MTC device and MTC server from During wire state, MTC device no longer preserves with mobile communications network and is connected relevant safe context, only preserves raw in step 202 Into offline authentication key Koffline
This step is, it is emphasized that when MTC device enters off-line state, the offline authentication key K that generates beforeofflineIt is Need what is preserved, used during realizing offline triggering so as to follow-up MTC device.
By the method for the present invention, realize in the case where MTC device is in offline states, when receiving triggering command, MTC device is first authenticated network, the process then responded again to triggering command.To be in offline in MTC device In the case of state, the certification in offline triggering provides specific implementation technical solution.
Offline authentication key KofflineIt is only used for an offline trigger process of MTC device.Touched offline in a MTC device After hair process, the method for the present invention further includes:Needed in the offline authentication key that MTC device and mobile communication network side preserve It is updated.The mode of renewal can have following two situations:
(1) after the offline trigger process of MTC device, the process connected between MTC server is created in MTC device In, according to the flow shown in Fig. 2 of the present invention, the authentication phase of mobile communications network and MTC device in accessing mobile communication network New offline authentication key K can be generatedoffline, in present invention, it is desirable to utilizing new offline authentication key KofflineInstead of it is old from Line authentication key Koffline, i.e., the offline authentication key of MTC device and mobile communication network side preservation is updated;
(2) MTC device establishes offline authentication key K with mobile communications networkofflineAfterwards, it is being not received by trigger request Or in the case of triggering command, if MTC device is due to needing to communicate with mobile communications network or needing to carry out with MTC server Communication is, it is necessary to accessing mobile communication network, and start new access authentication procedure again.So, according to shown in Fig. 2 of the present invention Flow, in new access authentication procedure, MTC device can generate new offline authentication key K with mobile communications networkoffline, this , it is necessary to utilize new offline authentication key K in inventionofflineInstead of the old offline authentication key K preservedoffline, i.e., MTC is set The offline authentication key that standby and mobile communication network side preserves is updated.
Fig. 3 is the flow of the first embodiment of the offline authentication key in the offline triggering of present invention renewal MTC device realization Schematic diagram, in first embodiment, after MTC device response triggering command, creates what is connected between MTC server in MTC device During, mobile communications network and MTC device will produce new offline authentication key in the authentication phase of accessing mobile communication network Knew-offline, and replace the old offline authentication key K preservedold-offline, as shown in figure 3, detailed process includes following step Suddenly:
Step 300:MTC device responds triggering command, starts the connection procedure established with MTC server.
Step 301:MTC device accessing mobile communication network, performs new access authentication procedure.
Step 302:After certification, MTC device generates CK, IK respectively with mobile communications network.
Step 303:Mobile communications network and MTC device are respectively according to CK, IK, using identical key generation method New offline authentication key of (KDF, the Key Derive Function) generation for MTC device certification mobile communications network Knew-offline.Specific implementation is completely the same with step 202, and which is not described herein again.
Step 304:Mobile communications network is with MTC device respectively by new offline authentication key Knew-offlineRecognize offline instead of old Demonstrate,prove key Kold-offline
Step 305:When off-line state is in after the conversation end of MTC device and MTC server, MTC device is led to mobile Communication network no longer preserves the relevant safe context of connection, only preserves the new offline authentication key K being newly generatednew-offline
Fig. 4 is the flow of the second embodiment of the offline authentication key in the offline triggering of present invention renewal MTC device realization Schematic diagram, in second embodiment, after MTC device establishes offline authentication key with mobile communications network, is being not received by triggering In the case of instruction, if MTC device communicates due to needing with mobile communications network, or needs to communicate with MTC server, Accessing mobile communication network again is needed, and starts new access authentication procedure, then, in new access authentication procedure, MTC Equipment can generate new offline authentication key K with mobile communications network according to the generation process of offline authentication keynew-offline, and generation For old offline authentication key Kold-offline.As shown in figure 4, detailed process comprises the following steps:
Step 400:MTC device accessing mobile communication network, performs new access authentication process.
Step 401:After certification, MTC device generates CK, IK respectively with mobile communications network.
Step 402:Mobile communications network and MTC device are respectively according to CK, IK, using identical key generation method New offline authentication key of (KDF, the Key Derive Function) generation for MTC device certification mobile communications network Knew-offline.Specific implementation is completely the same with step 202, and which is not described herein again.
Step 403:Mobile communications network is with MTC device respectively by new offline authentication key Knew-offlineRecognize offline instead of old Demonstrate,prove key Kold-offline
Step 404:Be in when MTC device is in attachment removal state or after the conversation end of MTC device and MTC server from During wire state, MTC device no longer preserves with mobile communications network and is connected relevant safe context, and only preservation is newly generated new Offline authentication key Knew-offline
For the method for the present invention, also provide a kind of system realized MTC device and triggered offline, including at least MTC device, MTC server and mobile communications network, wherein,
MTC device, for being authenticated using the offline authentication key of generation to mobile communications network;Certification by rear, Start connection between MTC device and MTC server and establish process, establish secure connection.
MTC server, for being in offline MTC device via mobile communications network triggering.
MTC device, when being additionally operable to accessing mobile communication network, performs access authentication procedure;After certification, MTC device CK, IK are generated respectively with mobile communications network;According to CK, IK, using the key generation method identical with mobile communications network Offline authentication key K of (KDF, the Key Derive Function) generation for MTC device certification mobile communications networkoffline; When off-line state is in after the conversation end with MTC server, the offline authentication key K of generation is preservedoffline
Correspondingly, mobile communications network, is additionally operable to according to CK, IK, using the key generation method identical with MTC device Offline authentication key K of (KDF, the Key Derive Function) generation for MTC device certification mobile communications networkoffline
MTC device, is additionally operable to after offline trigger process, update the offline authentication key of preservation;Correspondingly, it is mobile Communication network, is additionally operable to the offline authentication key that renewal preserves.
The foregoing is only a preferred embodiment of the present invention, is not intended to limit the scope of the present invention, it is all All any modification, equivalent and improvement made within the spirit and principles in the present invention etc., should be included in the protection of the present invention Within the scope of.

Claims (12)

1. a kind of MTC device realizes the method triggered offline, it is characterised in that including,
Machine type communication MTC server is in offline MTC device via mobile communications network triggering;
MTC device is authenticated mobile communications network using the offline authentication key of generation;Certification by rear, MTC device with Start connection between MTC server and establish process, establish secure connection;
The MTC server includes via mobile communications network triggering in offline MTC device:
Trigger request or triggering command are sent to mobile communications network by the MTC server;
The mobile communications network sends triggering command message to MTC device, and mobile communication is carried in triggering command message The message authentication code of network;
The message authentication code is generated by the offline authentication key and additional parametric information of the generation;
The additional parametric information is a random number and mobile communications network identity information;Or it is a random number.
2. according to the method described in claim 1, it is characterized in that, the MTC device utilizes the offline authentication key pair generated Mobile communications network is authenticated including:
After the MTC device receives triggering command message, by attached in offline authentication key, and received triggering command message Parameter information is added to be authenticated the message authentication code from mobile communications network.
3. according to the method described in claim 2, it is characterized in that, the message authentication code is by random number, mobile communications network Identity information and offline authentication key are generated by identifying algorithm;
The described pair of message authentication code from mobile communications network is authenticated specifically including:
The offline authentication key that the MTC device is generated and preserved by itself, with reference in received triggering command message with Machine number and mobile communications network identity information, by the certification generating algorithm identical with mobile communication network side, generation is local to disappear Cease authentication code;
Compare the local message authentication code of generation and the message authentication code in received triggering command message, if the two is identical, Think certification by otherwise it is assumed that certification does not pass through.
4. according to the method described in claim 2, it is characterized in that, the message authentication code is by random number and offline authentication key Generated by identifying algorithm;
The described pair of message authentication code from mobile communications network is authenticated specifically including:
The offline authentication key that the MTC device is generated and preserved by itself, with reference in received triggering command message with Machine number, local message authentication code is generated by the certification generating algorithm identical with mobile communication network side;
Compare the local message authentication code of generation and the message authentication code in received triggering command message, if the two is identical, Think certification by otherwise it is assumed that certification does not pass through.
5. according to Claims 1 to 4 any one of them method, it is characterised in that this method further includes:If the certification is not By the way that the MTC device is not responding to the trigger request or triggering command of MTC server.
6. according to Claims 1 to 4 any one of them method, it is characterised in that the generation offline authentication key includes:Institute When stating MTC device accessing mobile communication network, access authentication procedure is performed;
After certification, MTC device generates CK, IK respectively with mobile communications network;The mobile communications network and MTC device point It is close for the offline authentication of MTC device certification mobile communications network using identical key generation method generation not according to CK, IK Key;
When off-line state is in after the conversation end of the MTC device and MTC server, the MTC device and mobile radio communication Network preserves the offline authentication key of generation.
7. according to the method described in claim 5, it is characterized in that, this method further includes:Renewal is in the MTC device and movement The offline authentication key that communication network side preserves respectively.
8. the method according to the description of claim 7 is characterized in that the method for the renewal is:
After the offline trigger process of MTC device, during MTC device is created and connected between MTC server, move Dynamic communication network and MTC device generate new offline authentication key in the authentication phase of accessing mobile communication network;
Replaced using new offline authentication key with the old offline authentication key of preservation.
9. the method according to the description of claim 7 is characterized in that the method for the renewal is:
After the MTC device establishes offline authentication key with mobile communications network, refer to being not received by trigger request or triggering In the case of order, if the MTC device communicates with mobile communications network due to needing or needs to be led to MTC server Letter is, it is necessary to which accessing mobile communication network, and start new access authentication procedure again, described in new access authentication procedure MTC device generates new offline authentication key with mobile communications network;
Replaced using new offline authentication key with the old offline authentication key of preservation.
10. a kind of MTC device realizes the system triggered offline, it is characterised in that including at least MTC device, MTC server and Mobile communications network, wherein,
MTC device, for being authenticated using the offline authentication key of generation to mobile communications network;By rear, MTC is set for certification Process is established in the standby startup connection between MTC server, establishes secure connection;
MTC server, for being in offline MTC device via mobile communications network triggering;
The MTC server includes via mobile communications network triggering in offline MTC device:
Trigger request or triggering command are sent to mobile communications network by the MTC server;
The mobile communications network sends triggering command message to MTC device, and mobile communication is carried in triggering command message The message authentication code of network;
The message authentication code is generated by the offline authentication key and additional parametric information of the generation;
The additional parametric information is a random number and mobile communications network identity information;Or it is a random number.
11. system according to claim 10, it is characterised in that the MTC device, is additionally operable to accessing mobile communication network When, perform access authentication procedure;After certification, MTC device generates CK, IK respectively with mobile communications network;According to CK, IK, Using offline authentication of the key generation method generation identical with mobile communications network for MTC device certification mobile communications network Key;When off-line state is in after the conversation end with MTC server, the offline authentication key of generation is preserved;
Correspondingly, the mobile communications network, is additionally operable to according to CK, IK, is given birth to using the key generation method identical with MTC device Into the offline authentication key for MTC device certification mobile communications network.
12. the system according to claim 10 or 11, it is characterised in that the MTC device, is additionally operable to trigger offline After journey, the offline authentication key of preservation is updated;
Correspondingly, the mobile communications network, is additionally operable to the offline authentication key that renewal preserves.
CN201110234113.4A 2011-08-16 2011-08-16 A kind of MTC device realizes the method and system triggered offline Expired - Fee Related CN102938891B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201110234113.4A CN102938891B (en) 2011-08-16 2011-08-16 A kind of MTC device realizes the method and system triggered offline
PCT/CN2011/082608 WO2012151938A1 (en) 2011-08-16 2011-11-22 Method and system for realizing offline triggering by mtc device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201110234113.4A CN102938891B (en) 2011-08-16 2011-08-16 A kind of MTC device realizes the method and system triggered offline

Publications (2)

Publication Number Publication Date
CN102938891A CN102938891A (en) 2013-02-20
CN102938891B true CN102938891B (en) 2018-05-11

Family

ID=47138717

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201110234113.4A Expired - Fee Related CN102938891B (en) 2011-08-16 2011-08-16 A kind of MTC device realizes the method and system triggered offline

Country Status (2)

Country Link
CN (1) CN102938891B (en)
WO (1) WO2012151938A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106604251A (en) * 2015-10-20 2017-04-26 上海中兴软件有限责任公司 Triggering message processing method, device, and system
CN112787972B (en) * 2019-11-04 2022-11-04 成都鼎桥通信技术有限公司 System, method and device for near-end maintenance authentication in Internet of things

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101272251A (en) * 2007-03-22 2008-09-24 华为技术有限公司 Authentication and cryptographic key negotiation method, authentication method, system and equipment
CN101651546A (en) * 2009-09-11 2010-02-17 福建天晴在线互动科技有限公司 Method for off-line generation of dynamic password and debarkation authentication and synchronization of server

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101022651B (en) * 2006-02-13 2012-05-02 华为技术有限公司 Combined right-discriminating construction and realizing method thereof
US20090191857A1 (en) * 2008-01-30 2009-07-30 Nokia Siemens Networks Oy Universal subscriber identity module provisioning for machine-to-machine communications
CN102083109B (en) * 2010-04-29 2013-06-05 电信科学技术研究院 Offline detection method, device and system
CN102088668B (en) * 2011-03-10 2013-09-25 西安电子科技大学 Group-based authentication method of machine type communication (MTC) devices

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101272251A (en) * 2007-03-22 2008-09-24 华为技术有限公司 Authentication and cryptographic key negotiation method, authentication method, system and equipment
CN101651546A (en) * 2009-09-11 2010-02-17 福建天晴在线互动科技有限公司 Method for off-line generation of dynamic password and debarkation authentication and synchronization of server

Also Published As

Publication number Publication date
WO2012151938A1 (en) 2012-11-15
CN102938891A (en) 2013-02-20

Similar Documents

Publication Publication Date Title
CN108848112B (en) Cut-in method, equipment and the system of user equipment (UE)
CN101867530B (en) Things-internet gateway system based on virtual machine and data interactive method
WO2018040643A1 (en) Mobile terminal, server, vehicle and control system thereof
CN104167029B (en) A kind of intelligent lock and its operating method
CN106056713B (en) A kind of remote-authorization method of coded lock
CN103488932A (en) Desktop security intercommunication system for mobile device and personal computer and implementation method thereof
CN102936980A (en) Method and device for controlling electronic lock
CN104113839A (en) Mobile data safety protection system and method based on SDN
CN104270758A (en) Method for safely establishing connection with server and conducting authorization through WIFI
CN205121680U (en) Bluetooth lock system based on intelligent terminal
CN104123766A (en) Access control system using near field communication
CN106710043A (en) Time-limited entrance guard management system with visitor authentication and method thereof
CN108257266A (en) A kind of multi-functional smart lock
CN105553669B (en) A kind of information encryption transmission device and method and monitoring and managing method based on ID authentication
CN102572818B (en) A kind of application key management method of MTC group device and system
CN102916960B (en) A kind of policy synchronization method being applied to physics isolation net gap and system thereof
CN102647318A (en) Intelligent household system controlled through human characteristic information and working method thereof
Bindroo et al. A wearable NFC wristband for remote home automation system
CN102938891B (en) A kind of MTC device realizes the method and system triggered offline
CN103297940A (en) Short message encryption communication system and method
CN103916851B (en) A kind of method of safety certification, equipment and system
CN104936306A (en) Method for establishing small data safe transmission connection of MTC equipment set, HSS and system
CN108155996B (en) Smart home safe communication method based on family's channel
CN116349202A (en) Mutual authentication with pseudo-random numbers
CN102869015B (en) A kind of method and system of MTC device triggering

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20180511

Termination date: 20200816