BR112018000640A2 - arquitetura de rede e segurança com contextos de dispositivo de cliente encriptados - Google Patents

arquitetura de rede e segurança com contextos de dispositivo de cliente encriptados

Info

Publication number
BR112018000640A2
BR112018000640A2 BR112018000640-8A BR112018000640A BR112018000640A2 BR 112018000640 A2 BR112018000640 A2 BR 112018000640A2 BR 112018000640 A BR112018000640 A BR 112018000640A BR 112018000640 A2 BR112018000640 A2 BR 112018000640A2
Authority
BR
Brazil
Prior art keywords
client device
network
context
encrypted client
security
Prior art date
Application number
BR112018000640-8A
Other languages
English (en)
Other versions
BR112018000640B1 (pt
Inventor
Bum Lee Soo
Bernard Horn Gavin
Palanigounder Anand
Edward Escott Adrian
Faccin Stefano
Original Assignee
Qualcomm Incorporated
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Qualcomm Incorporated filed Critical Qualcomm Incorporated
Publication of BR112018000640A2 publication Critical patent/BR112018000640A2/pt
Publication of BR112018000640B1 publication Critical patent/BR112018000640B1/pt

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/033Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/037Protecting confidentiality, e.g. by encryption of the control plane, e.g. signalling traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/041Key generation or derivation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0431Key distribution or pre-distribution; Key agreement
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/70Services for machine-to-machine communication [M2M] or machine type communication [MTC]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W40/00Communication routing or communication path finding
    • H04W40/02Communication route or path selection, e.g. power-based or shortest path routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0457Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply dynamic encryption, e.g. stream encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W68/00User notification, e.g. alerting and paging, for incoming communication, change of service or the like
    • H04W68/005Transmission of information for alerting of incoming communication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Computing Systems (AREA)
  • Computer Hardware Design (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Information Transfer Between Computers (AREA)
  • Telephonic Communication Services (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)

Abstract

em um aspecto, uma rede pode suportar um número de dispositivos clientes. em tal rede, um dispositivo de cliente transmite uma requisição para se comunicar com uma rede, estabelece um contexto de segurança, e recebe um ou mais contextos de dispositivo de cliente encriptados a partir da rede. um contexto de dispositivo de cliente criptografado permite a reconstrução de um contexto na rede para comunicação com o dispositivo de cliente, onde o contexto inclui informação de estado de rede associada ao dispositivo de cliente. o dispositivo de cliente transmite uma mensagem (por exemplo, incluindo um pacote de dados de enlace ascendente) para a rede que inclui pelo menos um contexto de dispositivo de cliente criptografado. uma vez que o dispositivo de rede pode reconstruir o contexto para o dispositivo de cliente com base em um contexto de dispositivo de cliente criptografado, o dispositivo de rede pode reduzir uma quantidade do contexto mantido no dispositivo de rede a fim de suportar um maior número de dispositivos de cliente.
BR112018000640-8A 2015-07-12 2016-06-13 Método para um dispositivo de cliente e dispositivo de cliente BR112018000640B1 (pt)

Applications Claiming Priority (7)

Application Number Priority Date Filing Date Title
US201562191457P 2015-07-12 2015-07-12
US62/191,457 2015-07-12
US201662320506P 2016-04-09 2016-04-09
US62/320,506 2016-04-09
US15/160,198 2016-05-20
US15/160,198 US10091649B2 (en) 2015-07-12 2016-05-20 Network architecture and security with encrypted client device contexts
PCT/US2016/037279 WO2017039777A2 (en) 2015-07-12 2016-06-13 Network architecture and security with encrypted client device contexts

Publications (2)

Publication Number Publication Date
BR112018000640A2 true BR112018000640A2 (pt) 2018-09-18
BR112018000640B1 BR112018000640B1 (pt) 2023-12-19

Family

ID=57731698

Family Applications (1)

Application Number Title Priority Date Filing Date
BR112018000640-8A BR112018000640B1 (pt) 2015-07-12 2016-06-13 Método para um dispositivo de cliente e dispositivo de cliente

Country Status (10)

Country Link
US (2) US10091649B2 (pt)
EP (2) EP3320710B1 (pt)
JP (2) JP6692886B2 (pt)
KR (1) KR102441359B1 (pt)
CN (2) CN113194467A (pt)
AU (1) AU2016318200B2 (pt)
BR (1) BR112018000640B1 (pt)
ES (2) ES2837845T3 (pt)
TW (1) TWI733675B (pt)
WO (1) WO2017039777A2 (pt)

Families Citing this family (39)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10091649B2 (en) 2015-07-12 2018-10-02 Qualcomm Incorporated Network architecture and security with encrypted client device contexts
US10097995B2 (en) 2015-07-12 2018-10-09 Qualcomm Incorporated Network architecture and security with encrypted network reachability contexts
JP6879471B2 (ja) * 2016-04-29 2021-06-02 日本電気株式会社 スライスセキュリティの分離を可能にする方法
US20190199521A1 (en) * 2016-08-11 2019-06-27 Ian L. Sayers Method and apparatus for secure access to a sensor or device network
US11030618B1 (en) 2016-09-30 2021-06-08 Winkk, Inc. Authentication and personal data sharing for partner services using out-of-band optical mark recognition
US20180097807A1 (en) * 2016-09-30 2018-04-05 Lg Electronics Inc. Method and apparatus for performing initial access procedure based on authentication in wireless communication system
EP3522670B1 (en) * 2016-10-10 2021-06-02 Huawei Technologies Co., Ltd. Communication method, security node network element, and terminal
CN111885642B (zh) * 2016-11-02 2022-06-10 中兴通讯股份有限公司 切换方法及装置
CN108347416B (zh) * 2017-01-24 2021-06-29 华为技术有限公司 一种安全保护协商方法及网元
US10542463B2 (en) * 2017-02-05 2020-01-21 Nokia Of America Corporation System and method for secure cell redirection in wireless networks
US10687212B2 (en) 2017-04-07 2020-06-16 At&T Mobility Ii Llc Mobile network core component for managing security keys
US10959247B2 (en) * 2017-06-08 2021-03-23 Qualcomm Incorporated Transmission of uplink control information in new radio
CN109391963B (zh) * 2017-08-11 2022-03-11 华为技术有限公司 一种传输方法和网络设备
CN111108799B (zh) 2017-11-22 2022-02-01 中兴通讯股份有限公司 一种高效控制信令方法及系统
WO2019192767A1 (en) 2018-04-05 2019-10-10 Telefonaktiebolaget LM Ericssion (publ) Configuring radio resources
MX2020010809A (es) * 2018-04-16 2020-10-28 Ericsson Telefon Ab L M Manejo de seguridad para reanudacion de rrc desde estado inactivo.
US11637694B2 (en) 2018-07-16 2023-04-25 Winkk, Inc. Secret material exchange and authentication cryptography operations
EP3609149A1 (en) 2018-08-08 2020-02-12 Nokia Technologies Oy Method and apparatus for security management in 5g networks
CN113170360B (zh) * 2018-10-09 2023-04-11 联想(北京)有限公司 上下文设置请求中的设备信息
US11563676B2 (en) * 2019-08-16 2023-01-24 Nokia Technologies Oy Method and apparatus for universal integrated circuit card update via dedicated network function
US11574045B2 (en) 2019-12-10 2023-02-07 Winkk, Inc. Automated ID proofing using a random multitude of real-time behavioral biometric samplings
US11657140B2 (en) 2019-12-10 2023-05-23 Winkk, Inc. Device handoff identification proofing using behavioral analytics
US11652815B2 (en) 2019-12-10 2023-05-16 Winkk, Inc. Security platform architecture
US11588794B2 (en) * 2019-12-10 2023-02-21 Winkk, Inc. Method and apparatus for secure application framework and platform
US11328042B2 (en) 2019-12-10 2022-05-10 Winkk, Inc. Automated transparent login without saved credentials or passwords
US12073378B2 (en) 2019-12-10 2024-08-27 Winkk, Inc. Method and apparatus for electronic transactions using personal computing devices and proxy services
US11928193B2 (en) 2019-12-10 2024-03-12 Winkk, Inc. Multi-factor authentication using behavior and machine learning
US11936787B2 (en) 2019-12-10 2024-03-19 Winkk, Inc. User identification proofing using a combination of user responses to system turing tests using biometric methods
US11553337B2 (en) 2019-12-10 2023-01-10 Winkk, Inc. Method and apparatus for encryption key exchange with enhanced security through opti-encryption channel
US11563582B2 (en) 2019-12-10 2023-01-24 Winkk, Inc. Method and apparatus for optical encryption communication using a multitude of hardware configurations
US11303558B2 (en) * 2020-01-08 2022-04-12 Cisco Technology, Inc. Ultra-reliable low latency communications (URLLC) support for wireless access
TWI754950B (zh) * 2020-06-02 2022-02-11 鴻海精密工業股份有限公司 物聯網設備、伺服器及軟體更新方法
CN113765950B (zh) 2020-06-02 2023-11-14 富泰华工业(深圳)有限公司 物联网设备、服务器及软件更新方法
WO2022045332A1 (ja) * 2020-08-31 2022-03-03 日本電気株式会社 中継装置、端末及び中継方法
TWI760240B (zh) * 2021-05-28 2022-04-01 國立臺灣科技大學 認證授權外掛系統
US11843943B2 (en) 2021-06-04 2023-12-12 Winkk, Inc. Dynamic key exchange for moving target
US12095751B2 (en) 2021-06-04 2024-09-17 Winkk, Inc. Encryption for one-way data stream
US11824999B2 (en) 2021-08-13 2023-11-21 Winkk, Inc. Chosen-plaintext secure cryptosystem and authentication
EP4445603A1 (en) * 2022-01-03 2024-10-16 Samsung Electronics Co., Ltd. Method and device for selective user plane security in wireless communication system

Family Cites Families (34)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US136423A (en) * 1873-03-04 Improvement in bottle-washers
US7360075B2 (en) 2001-02-12 2008-04-15 Aventail Corporation, A Wholly Owned Subsidiary Of Sonicwall, Inc. Method and apparatus for providing secure streaming data transmission facilities using unreliable protocols
US6771962B2 (en) * 2001-03-30 2004-08-03 Nokia Corporation Apparatus, and an associated method, by which to provide temporary identifiers to a mobile node involved in a communication handover
US7020645B2 (en) 2001-04-19 2006-03-28 Eoriginal, Inc. Systems and methods for state-less authentication
GB0619499D0 (en) 2006-10-03 2006-11-08 Lucent Technologies Inc Encrypted data in a wireless telecommunications system
WO2008152611A1 (en) 2007-06-15 2008-12-18 Nokia Corporation Apparatus, method and computer program product providing transparent container
US9276909B2 (en) 2008-08-27 2016-03-01 Qualcomm Incorporated Integrity protection and/or ciphering for UE registration with a wireless network
EP2317822A1 (en) 2009-10-29 2011-05-04 Panasonic Corporation Enhancement of the attachement procedure for re-attaching a UE to a 3GPP access network
CN102065417B (zh) 2009-11-16 2014-02-19 华为技术有限公司 实现安全上下文信息同步的方法、设备及系统
US9084110B2 (en) * 2010-04-15 2015-07-14 Qualcomm Incorporated Apparatus and method for transitioning enhanced security context from a UTRAN/GERAN-based serving network to an E-UTRAN-based serving network
MX2012011985A (es) * 2010-04-15 2012-12-17 Qualcomm Inc Aparato y metodo para señalizar contexto de seguridad mejorada para cifrado de sesion y claves de integridad.
JP5649248B2 (ja) * 2010-04-16 2015-01-07 クアルコム,インコーポレイテッド 改善されたセキュリティコンテキストをサポートするサービングネットワークノードから従来のサービングネットワークノードに移行するための装置および方法
ES2523891T3 (es) * 2010-10-01 2014-12-02 Nokia Solutions And Networks Oy Temporizador de espera de mensaje de liberación de conexión de control de recursos radio
CN102594555B (zh) 2011-01-17 2015-04-29 华为技术有限公司 数据的安全保护方法、网络侧实体和通信终端
WO2012134218A2 (ko) 2011-03-31 2012-10-04 엘지전자 주식회사 무선 통신 시스템에서 단말이 네트워크와의 보안 설정 방법 및 이를 위한 장치
US9407616B2 (en) 2011-04-27 2016-08-02 Telefonaktiebolaget Lm Ericsson (Publ) Authenticating a device in a network
US20140126448A1 (en) 2011-06-22 2014-05-08 Nec Europe Ltd. Energy awareness in mobile communication user equipment and networks, including optimizations based on state compression
WO2013024435A1 (en) 2011-08-15 2013-02-21 Renesas Mobile Corporation Keeping a security context during mode changes for machine - to -machine communications
US8687556B2 (en) 2011-11-18 2014-04-01 Cisco Technology, Inc. Method for correlating connection information with mobile device identity
US9276810B2 (en) * 2011-12-16 2016-03-01 Futurewei Technologies, Inc. System and method of radio bearer management for multiple point transmission
CN103297958B (zh) * 2012-02-22 2017-04-12 华为技术有限公司 建立安全上下文的方法、装置及系统
WO2013165605A1 (en) * 2012-05-02 2013-11-07 Interdigital Patent Holdings, Inc. One round trip authentication using single sign-on systems
US10306596B2 (en) 2012-05-10 2019-05-28 Samsung Electronics Co., Ltd Method and system for connectionless transmission during uplink and downlink of data packets
JP6209595B2 (ja) 2012-05-11 2017-10-04 インターデイジタル パテント ホールディングス インコーポレイテッド コンテキストアウェアピアツーピア通信
EP2853123A4 (en) * 2012-05-21 2016-03-23 Nokia Technologies Oy METHOD AND DEVICE FOR ADMINISTERING A TRANSMITTER FOR A USER DEVICE
CN103929740B (zh) * 2013-01-15 2017-05-10 中兴通讯股份有限公司 数据安全传输方法及lte接入网系统
EP2757856B1 (en) 2013-01-17 2023-11-08 Alcatel Lucent Optimization of context and/or connection management in a mobile communication system
US8781502B1 (en) * 2013-02-01 2014-07-15 Swirl Networks, Inc. Systems and methods for display of supplemental content responsive to location
EP2804441A1 (en) 2013-05-15 2014-11-19 Alcatel Lucent Network nodes and methods
US9585134B2 (en) * 2013-12-13 2017-02-28 Sharp Kabushiki Kaisha Systems and methods for multi-connectivity operation
US9444819B2 (en) 2014-01-16 2016-09-13 International Business Machines Corporation Providing context-based visibility of cloud resources in a multi-tenant environment
US9497624B2 (en) * 2014-10-30 2016-11-15 Alcatel-Lucent Usa Inc. Connectionless wireless access
US10091649B2 (en) 2015-07-12 2018-10-02 Qualcomm Incorporated Network architecture and security with encrypted client device contexts
US10097995B2 (en) 2015-07-12 2018-10-09 Qualcomm Incorporated Network architecture and security with encrypted network reachability contexts

Also Published As

Publication number Publication date
EP3429246A3 (en) 2019-04-10
BR112018000640B1 (pt) 2023-12-19
US11172357B2 (en) 2021-11-09
WO2017039777A3 (en) 2017-06-15
EP3320710B1 (en) 2020-09-02
EP3429246A2 (en) 2019-01-16
EP3429246B1 (en) 2020-09-16
WO2017039777A2 (en) 2017-03-09
JP2018526869A (ja) 2018-09-13
JP6928143B2 (ja) 2021-09-01
TW201705781A (zh) 2017-02-01
US20180332469A1 (en) 2018-11-15
EP3320710A2 (en) 2018-05-16
CN113194467A (zh) 2021-07-30
KR20180030034A (ko) 2018-03-21
AU2016318200B2 (en) 2020-09-10
TWI733675B (zh) 2021-07-21
CN107852601A (zh) 2018-03-27
JP2020129805A (ja) 2020-08-27
KR102441359B1 (ko) 2022-09-06
ES2837845T3 (es) 2021-07-01
CN107852601B (zh) 2021-05-14
AU2016318200A1 (en) 2017-12-07
JP6692886B2 (ja) 2020-05-13
ES2835056T3 (es) 2021-06-21
US10091649B2 (en) 2018-10-02
US20170013453A1 (en) 2017-01-12

Similar Documents

Publication Publication Date Title
BR112018000640A2 (pt) arquitetura de rede e segurança com contextos de dispositivo de cliente encriptados
BR112017021896A2 (pt) acesso aleatório para comunicações sem fio de baixa latência
BR112018071151A2 (pt) técnicas para gerenciar transmissões de conteúdo seguras em uma rede de entrega de conteúdo
BR112018001824A2 (pt) gerenciamento de uma nuvem de dispositivos
BR112019007577A2 (pt) procedimento de canal de acesso aleatório físico melhorado (rach)
BR112018001939A2 (pt) sistema de gerenciamento de acesso a uma rede wifi, método de gerenciamento de acesso a uma rede wifi, e meio legível não transitório
BR112018010036A2 (pt) sistema de provisionamento de ponto de acesso centralizado, método implementado por computador de provisionamento central de pontos de acesso, e meio legível não transitório
BR112018077338A2 (pt) método de configuração de chave, método de determinação de política de segurança e aparelho
BR112018002093A2 (pt) gerenciamento de uma nuvem de dispositivos
BR112012025382A2 (pt) método e dispositivo para registrar dispositivos de computação de cliente para sessões de comunicação online
BR112017012471A2 (pt) entrega de notificações com ciência do usuário
BR112017020550A2 (pt) gerenciamento virtual evoluído de sessões (esm virtual) de vários contextos concomitantes
BR112017014984A2 (pt) técnicas para gerenciar um cliente da rede remoto a partir de um aplicativo em um dispositivo móvel
BR112015009224A2 (pt) acessso de rede com base em informações de rede social
CL2007001510A1 (es) Metodos y dispositivos de computacion cliente que permiten delegar credenciales de usuario desde el dispositivo de computacion cliente a un dispositivo de computacion seridor en una red de computacion, eventualmente en una sola conexion, y obtener seguro a recursos del servidor.
BR112015030544A2 (pt) sistemas de autenticação eletrônica
BR112014018826A8 (pt) Técnicas de certificação de confiabilidade remota e de geo-localização de servidores e clientes em ambientes de computação em nuvem
BR112017018917A2 (pt) métodos e sistemas para sincronizar dispositivos
BR112017010802A2 (pt) localização por referência para uma chamada de emergência do tipo over-the-top
BR112014019847A8 (pt) Garantia de acesso seguro a um servidor de localização descoberta para um dispositivo móvel
BR112018013489A2 (pt) método, aparelho e terminal de obtenção de código de verificação
BR112012031924A2 (pt) método e equipamento para vincular autenticação de assinante e autenticação de dispositivo em sistemas de comunicação.
MX2017016542A (es) Encabezados de derechos de contenido.
BR112015009140A2 (pt) sistema, método e dispositivo de computação para comunicar informação de estado para clientes herdados utilizando protocolos herdados
BRPI0517261A (pt) sistema e método para fornercer um protocolo de autenticação multicredencial

Legal Events

Date Code Title Description
B06U Preliminary requirement: requests with searches performed by other patent offices: procedure suspended [chapter 6.21 patent gazette]
B09A Decision: intention to grant [chapter 9.1 patent gazette]
B16A Patent or certificate of addition of invention granted [chapter 16.1 patent gazette]

Free format text: PRAZO DE VALIDADE: 20 (VINTE) ANOS CONTADOS A PARTIR DE 13/06/2016, OBSERVADAS AS CONDICOES LEGAIS