WO2008004174A3 - Establishing a secure authenticated channel - Google Patents

Establishing a secure authenticated channel Download PDF

Info

Publication number
WO2008004174A3
WO2008004174A3 PCT/IB2007/052565 IB2007052565W WO2008004174A3 WO 2008004174 A3 WO2008004174 A3 WO 2008004174A3 IB 2007052565 W IB2007052565 W IB 2007052565W WO 2008004174 A3 WO2008004174 A3 WO 2008004174A3
Authority
WO
WIPO (PCT)
Prior art keywords
secure
establishing
authentication message
authentication
application
Prior art date
Application number
PCT/IB2007/052565
Other languages
French (fr)
Other versions
WO2008004174A2 (en
Inventor
Ventzislav Nikov
Original Assignee
Koninkl Philips Electronics Nv
Ventzislav Nikov
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Koninkl Philips Electronics Nv, Ventzislav Nikov filed Critical Koninkl Philips Electronics Nv
Publication of WO2008004174A2 publication Critical patent/WO2008004174A2/en
Publication of WO2008004174A3 publication Critical patent/WO2008004174A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/162Implementing security features at a particular protocol layer at the data link layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/168Implementing security features at a particular protocol layer above the transport layer

Abstract

A communication system has at least two communication devices (10,20) each accommodating an application (12,22). Establishing a secure authenticated channel between applications is achieved by first executing a link layer protocol (81) for establishing, on a link layer, an unauthenticated secure channel between the communication devices by exchanging link layer protocol messages. Subsequently an authentication protocol (82) is executed for establishing, on an application layer, authentication between the applications. The authentication protocol includes transferring an authentication message from a first application, processing the authentication message into a secure authentication message, transferring the secure authentication message to the second communication device via the unauthenticated secure channel, verifying the secure authentication message, and transferring the secure authentication message to the second application.
PCT/IB2007/052565 2006-07-06 2007-07-02 Establishing a secure authenticated channel WO2008004174A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
EP06116731.8 2006-07-06
EP06116731 2006-07-06

Publications (2)

Publication Number Publication Date
WO2008004174A2 WO2008004174A2 (en) 2008-01-10
WO2008004174A3 true WO2008004174A3 (en) 2008-03-06

Family

ID=38736036

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2007/052565 WO2008004174A2 (en) 2006-07-06 2007-07-02 Establishing a secure authenticated channel

Country Status (1)

Country Link
WO (1) WO2008004174A2 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101813057B (en) * 2010-04-16 2013-01-16 南京工业大学 Megawatt wind turbine blade with rib
JP2014523192A (en) * 2011-07-07 2014-09-08 ベラヨ インク Security by encryption using fuzzy authentication information in device and server communication
US9419953B2 (en) * 2012-12-23 2016-08-16 Mcafee, Inc. Trusted container

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1182825A2 (en) * 2000-08-23 2002-02-27 Kabushiki Kaisha Toshiba Transferring copyright protected contents using radio link layer authentication/encryption
US20020066018A1 (en) * 2000-10-18 2002-05-30 Linnartz Johan Paul Marie Gerard Multiple autentication sessions for content protection
US20050097362A1 (en) * 2003-11-05 2005-05-05 Winget Nancy C. Protected dynamic provisioning of credentials

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1182825A2 (en) * 2000-08-23 2002-02-27 Kabushiki Kaisha Toshiba Transferring copyright protected contents using radio link layer authentication/encryption
US20020066018A1 (en) * 2000-10-18 2002-05-30 Linnartz Johan Paul Marie Gerard Multiple autentication sessions for content protection
US20050097362A1 (en) * 2003-11-05 2005-05-05 Winget Nancy C. Protected dynamic provisioning of credentials

Also Published As

Publication number Publication date
WO2008004174A2 (en) 2008-01-10

Similar Documents

Publication Publication Date Title
WO2011158217A3 (en) Device and method for providing secured access to services
WO2007107708A3 (en) Establishing communications
WO2008063360A3 (en) Remote access
WO2009069971A3 (en) Method and system for secure communication in near field communication network
TW200704100A (en) Encryption communication method and system
WO2007127547A3 (en) Method and system for propagating mutual authentication data in wireless communication networks
WO2007001629A3 (en) Provisioning of wireless connectivity for devices using nfc
WO2011123671A3 (en) Mutual mobile authentication using a key management center
WO2007139962A3 (en) System for and method of securing a network utilizing credentials
WO2010080330A3 (en) Cost effective updating of mobile computing devices and communicating with mobile computing devices
WO2009067704A3 (en) Role-based network service management
WO2010068779A3 (en) Trust establishment from forward link only to non-forward link only devices
WO2009127930A3 (en) Mobility related control signalling authentication in mobile communications system
WO2008036311A3 (en) Direct link setup mechanisms for wireless lans
NO20080532L (en) Distributed simple log-on service
WO2007089717A3 (en) System and method for data transfer in a peer-to-peer hybrid communication network
WO2007078918A3 (en) Using a trusted-platform-based shared-secret derivation and wwan infrastructure-based enrollment to establish a secure local channel
TW200640220A (en) System and method for providing a multi-credential authentication protocol
WO2009044174A3 (en) Authentication method and framework
RU2008146960A (en) METHOD AND SYSTEM OF PROVIDING PROTECTED COMMUNICATION USING A CELLULAR NETWORK FOR MANY PERSONALIZED COMMUNICATION DEVICES
WO2008051933A3 (en) System and method for authorizing access to an ip-based wireless telecommunications service
WO2008064885A3 (en) Method for the operation of an ethernet-compatible field bus device
TW200629854A (en) Pseudo-secret key generation in a communications system
WO2008078101A3 (en) Method and device for mutual authentication
WO2012087692A3 (en) System and method for secure communications in a communication system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07789861

Country of ref document: EP

Kind code of ref document: A2

NENP Non-entry into the national phase

Ref country code: DE

NENP Non-entry into the national phase

Ref country code: RU

122 Ep: pct application non-entry in european phase

Ref document number: 07789861

Country of ref document: EP

Kind code of ref document: A2