BR112018072027A2 - segurança de camada de não acesso aperfeiçoada - Google Patents

segurança de camada de não acesso aperfeiçoada

Info

Publication number
BR112018072027A2
BR112018072027A2 BR112018072027-5A BR112018072027A BR112018072027A2 BR 112018072027 A2 BR112018072027 A2 BR 112018072027A2 BR 112018072027 A BR112018072027 A BR 112018072027A BR 112018072027 A2 BR112018072027 A2 BR 112018072027A2
Authority
BR
Brazil
Prior art keywords
network
access layer
secure connection
layer security
messages
Prior art date
Application number
BR112018072027-5A
Other languages
English (en)
Inventor
Bum Lee Soo
Palanigounder Anand
Edward Escott Adrian
Original Assignee
Qualcomm Incorporated
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Qualcomm Incorporated filed Critical Qualcomm Incorporated
Publication of BR112018072027A2 publication Critical patent/BR112018072027A2/pt

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/02Access restriction performed under specific conditions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0431Key distribution or pre-distribution; Key agreement
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/033Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/037Protecting confidentiality, e.g. by encryption of the control plane, e.g. signalling traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0433Key management protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/062Pre-authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/10Integrity
    • H04W12/106Packet or message integrity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/0005Control or signalling for completing the hand-off
    • H04W36/0011Control or signalling for completing the hand-off for data sessions of end-to-end connection
    • H04W36/0033Control or signalling for completing the hand-off for data sessions of end-to-end connection with transfer of context information
    • H04W36/0038Control or signalling for completing the hand-off for data sessions of end-to-end connection with transfer of context information of security context information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W60/00Affiliation to network, e.g. registration; Terminating affiliation with the network, e.g. de-registration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/22Processing or transfer of terminal data, e.g. status or physical capabilities
    • H04W8/24Transfer of terminal data

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Telephonic Communication Services (AREA)

Abstract

um equipamento de usuário (ue) pode ser configurado para transmitir uma mensagem de registro a uma rede para estabelecer uma conexão segura para mensagens de estrato de não acesso (nas) entre a rede e um ue, a conexão segura é baseada, ao menos em parte, em um identificador de ue e capacidades de segurança do ue incluídos na mensagem de registro. o ue pode então trocar mensagens de nas com a rede ao longo da conexão segura. o ue pode também estabelecer, em resposta à mensagem de registro, um protocolo de autenticação com a rede e encriptar mensagens de nas subsequentes baseado, em parte, no protocolo de autenticação.
BR112018072027-5A 2016-04-27 2017-03-27 segurança de camada de não acesso aperfeiçoada BR112018072027A2 (pt)

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
US201662328430P 2016-04-27 2016-04-27
US62/328,430 2016-04-27
US15/286,002 US10334435B2 (en) 2016-04-27 2016-10-05 Enhanced non-access stratum security
US15/286,002 2016-10-05
PCT/US2017/024260 WO2017189139A1 (en) 2016-04-27 2017-03-27 Enhanced non-access stratum security

Publications (1)

Publication Number Publication Date
BR112018072027A2 true BR112018072027A2 (pt) 2019-02-12

Family

ID=60159223

Family Applications (1)

Application Number Title Priority Date Filing Date
BR112018072027-5A BR112018072027A2 (pt) 2016-04-27 2017-03-27 segurança de camada de não acesso aperfeiçoada

Country Status (10)

Country Link
US (2) US10334435B2 (pt)
EP (1) EP3449608B1 (pt)
CN (2) CN109076079B (pt)
AU (1) AU2017258596B2 (pt)
BR (1) BR112018072027A2 (pt)
CA (1) CA3017611A1 (pt)
ES (1) ES2863310T3 (pt)
SG (1) SG11201807644TA (pt)
TW (1) TWI724132B (pt)
WO (1) WO2017189139A1 (pt)

Families Citing this family (31)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10334435B2 (en) 2016-04-27 2019-06-25 Qualcomm Incorporated Enhanced non-access stratum security
CN106896356B (zh) 2016-08-17 2019-11-19 阿里巴巴集团控股有限公司 确定距离变化的方法、位置提示方法及其装置和系统
WO2018089442A2 (en) * 2016-11-09 2018-05-17 Intel IP Corporation Ue and devices for detach handling
CN109756451B (zh) * 2017-11-03 2022-04-22 华为技术有限公司 一种信息交互方法及装置
CN109788474A (zh) * 2017-11-14 2019-05-21 华为技术有限公司 一种消息保护的方法及装置
HUE059620T2 (hu) * 2018-02-19 2022-12-28 Ericsson Telefon Ab L M A különbözõ vezeték nélküli kommunikációs rendszerek közötti együttmûködés és/vagy mobilitás támogatása
WO2019161790A1 (en) * 2018-02-22 2019-08-29 Mediatek Singapore Pte. Ltd. Improved tracking area update procedure for intersystem change in mobile communications
WO2019170104A1 (en) * 2018-03-06 2019-09-12 Mediatek Singapore Pte. Ltd. Apparatuses and methods for protection of an intial non-access stratum (nas) message
US10939280B2 (en) * 2018-04-05 2021-03-02 Qualcomm Incorporated Optimization of user equipment radio capability signaling
KR102425582B1 (ko) * 2018-05-11 2022-07-26 삼성전자주식회사 무선통신 시스템에서 정보 보호 방법 및 장치
CN110536415B (zh) * 2018-05-23 2020-11-20 大唐移动通信设备有限公司 一种nas消息的处理方法、集群终端和集群核心网
CN110945851A (zh) * 2018-05-29 2020-03-31 联发科技(新加坡)私人有限公司 第五代移动通信中恶意小区的检测
EP3576366B1 (en) * 2018-05-29 2021-06-16 EXFO Oy Method and fake base station for detecting subscriber identity
KR102601585B1 (ko) 2018-09-24 2023-11-13 노키아 테크놀로지스 오와이 Nas 메시지의 보안 보호를 위한 시스템 및 방법
US20210297849A1 (en) * 2018-10-03 2021-09-23 Sony Corporation Method for identifying terminal capabilities in a wireless communication system
CN112806044B (zh) * 2018-12-06 2023-06-13 深圳市欢太科技有限公司 伪基站的识别方法、装置、移动终端及存储介质
US10609667B1 (en) * 2019-01-28 2020-03-31 Verizon Patent And Licensing Inc. System and method for delivery of end device policies during registration procedure
US11159944B2 (en) 2019-02-21 2021-10-26 T-Mobile Usa, Inc. Wireless-network attack detection
WO2020173462A1 (en) * 2019-02-26 2020-09-03 Mediatek Singapore Pte. Ltd. Apparatuses and methods for handling a non-integrity-protected reject message
WO2020182557A1 (en) * 2019-03-13 2020-09-17 Telefonaktiebolaget Lm Ericsson (Publ) Providing ue capability information to an authentication server
US20200322795A1 (en) * 2019-04-03 2020-10-08 Mediatek Singapore Pte. Ltd. Apparatuses and methods for alignment of common non access stratum (nas) security context
US11445462B2 (en) 2019-04-09 2022-09-13 Samsung Electronics Co., Ltd. Method and apparatus for performing communication in wireless communication system
US11463875B2 (en) * 2019-04-26 2022-10-04 Qualcomm Incorporated Detection of system information modification using access stratum security mode command
CN112087297B (zh) * 2019-06-14 2022-05-24 华为技术有限公司 一种获取安全上下文的方法、系统及设备
US20210105611A1 (en) * 2019-10-04 2021-04-08 Qualcomm Incorporated User equipment radio capability protection
US20230121717A1 (en) * 2020-01-13 2023-04-20 Telefonaktiebolaget Lm Ericsson (Publ) Robust nas layer signaling
US11882451B2 (en) 2020-04-30 2024-01-23 Samsung Electronics Co., Ltd. Method and device for protecting sensitive user plane traffic
CN111614648B (zh) * 2020-05-14 2021-10-15 西安交通大学 一种工业物联网抗主动窃听物理层安全传输方法
US12081982B2 (en) * 2020-09-08 2024-09-03 Qualcomm Incorporated Optimization for an initial access stratum security mode command procedure
CN118679765A (zh) * 2022-06-30 2024-09-20 Oppo广东移动通信有限公司 通信方法和通信装置
CN117882415A (zh) * 2022-08-12 2024-04-12 北京小米移动软件有限公司 终端设备能力指示方法及装置

Family Cites Families (33)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2429607B (en) * 2005-08-26 2010-02-10 Samsung Electronics Co Ltd Improvements in mobile telecommunication security
KR101088618B1 (ko) 2006-06-19 2011-11-30 인터디지탈 테크날러지 코포레이션 초기 시그널링 메시지 내의 원 사용자 신원의 보안 보호를 위한 방법 및 장치
US8699711B2 (en) * 2007-07-18 2014-04-15 Interdigital Technology Corporation Method and apparatus to implement security in a long term evolution wireless device
US8532614B2 (en) * 2007-10-25 2013-09-10 Interdigital Patent Holdings, Inc. Non-access stratum architecture and protocol enhancements for long term evolution mobile units
CN101336000B (zh) * 2008-08-06 2011-11-30 中兴通讯股份有限公司 协议配置选项传输方法及系统、用户终端
KR101579757B1 (ko) * 2008-08-15 2015-12-24 삼성전자주식회사 이동 통신 시스템의 보안화된 비계층 프로토콜 처리 방법
US9276909B2 (en) 2008-08-27 2016-03-01 Qualcomm Incorporated Integrity protection and/or ciphering for UE registration with a wireless network
CN101686233B (zh) * 2008-09-24 2013-04-03 电信科学技术研究院 Ue与网络安全算法不匹配的处理方法、系统及装置
KR101475349B1 (ko) * 2008-11-03 2014-12-23 삼성전자주식회사 이동 통신 시스템에서 단말 보안 능력 관련 보안 관리 방안및 장치
US8526617B2 (en) * 2008-12-29 2013-09-03 Htc Corporation Method of handling security configuration in wireless communications system and related communication device
PT2396942E (pt) * 2009-02-16 2015-04-01 Ericsson Telefon Ab L M Solução de operação de rede não cifrada
CN101505479B (zh) * 2009-03-16 2014-04-30 中兴通讯股份有限公司 一种认证过程中安全上下文协商方法和系统
CN101868036A (zh) * 2009-04-15 2010-10-20 大唐移动通信设备有限公司 一种控制ue接入网络的方法及系统
KR101700448B1 (ko) * 2009-10-27 2017-01-26 삼성전자주식회사 이동 통신 시스템에서 보안 관리 시스템 및 방법
US20130042011A1 (en) * 2010-04-14 2013-02-14 Panasonic Corporation Communication nodes and network nodes
US9385862B2 (en) * 2010-06-16 2016-07-05 Qualcomm Incorporated Method and apparatus for binding subscriber authentication and device authentication in communication systems
CN101925050B (zh) * 2010-08-19 2014-12-03 华为技术有限公司 一种安全上下文的生成方法及装置
US9826404B2 (en) * 2011-01-11 2017-11-21 Qualcomm Incorporated System and method for peer-to-peer authorization via non-access stratum procedures
WO2013110351A1 (en) * 2012-01-26 2013-08-01 Telefonaktiebolaget L M Ericsson (Publ) Operation of a serving node in a network
WO2013137698A1 (ko) * 2012-03-16 2013-09-19 엘지전자 주식회사 무선 통신 시스템에서 nas 시그널링 요청 처리 방법 및 장치
USRE49491E1 (en) * 2012-06-08 2023-04-11 Samsung Electronics Co., Ltd. Method and system for selective protection of data exchanged between user equipment and network
CN102833739B (zh) * 2012-08-24 2015-07-01 大唐移动通信设备有限公司 一种初始非接入层消息的传输方法、装置及系统
WO2014051260A1 (ko) * 2012-09-26 2014-04-03 엘지전자 주식회사 Mtc 모니터링 방법
GB2508006A (en) * 2012-11-16 2014-05-21 Broadcom Corp Changing a device from communicating with a first to a second data communication system by determining a change in the devices capabilities
GB2513311B (en) * 2013-04-22 2020-05-27 Sony Corp Communications device and method
CN106465262B (zh) * 2014-06-04 2020-06-12 瑞典爱立信有限公司 用于具有省电模式的用户设备的终接服务限定
US9949125B2 (en) * 2014-08-04 2018-04-17 Lg Electronics Inc. Method for authenticating terminal in wireless communication system, and device for same
US9998449B2 (en) * 2014-09-26 2018-06-12 Qualcomm Incorporated On-demand serving network authentication
US10506438B2 (en) * 2015-12-03 2019-12-10 Telefonaktiebolaget Lm Ericsson (Publ) Multi-RAT access stratum security
US9788208B2 (en) * 2015-12-31 2017-10-10 Mediatek Inc. Apparatuses and methods for recovering from security mode command failures
US10382206B2 (en) * 2016-03-10 2019-08-13 Futurewei Technologies, Inc. Authentication mechanism for 5G technologies
US10873464B2 (en) * 2016-03-10 2020-12-22 Futurewei Technologies, Inc. Authentication mechanism for 5G technologies
US10334435B2 (en) 2016-04-27 2019-06-25 Qualcomm Incorporated Enhanced non-access stratum security

Also Published As

Publication number Publication date
EP3449608A1 (en) 2019-03-06
CN114095155B (zh) 2024-07-12
US10674360B2 (en) 2020-06-02
TW201739276A (zh) 2017-11-01
SG11201807644TA (en) 2018-11-29
EP3449608B1 (en) 2021-01-06
WO2017189139A1 (en) 2017-11-02
AU2017258596B2 (en) 2022-02-03
TWI724132B (zh) 2021-04-11
US10334435B2 (en) 2019-06-25
CN114095155A (zh) 2022-02-25
CA3017611A1 (en) 2017-11-02
CN109076079B (zh) 2021-10-08
AU2017258596A1 (en) 2018-10-04
US20190268769A1 (en) 2019-08-29
ES2863310T3 (es) 2021-10-11
US20170318463A1 (en) 2017-11-02
CN109076079A (zh) 2018-12-21

Similar Documents

Publication Publication Date Title
BR112018072027A2 (pt) segurança de camada de não acesso aperfeiçoada
BR112018068271A2 (pt) mecanismo de autenticação para tecnologias 5g
BR112019005744A2 (pt) segurança no estrato de acesso para processamento de pacotes eficiente
GB2515923A8 (en) Linking ad hoc networks
CL2021000730A1 (es) Sistemas y método de protección de seguridad de mensajes de estrato sin acceso
EP4254860A3 (en) Key pair infrastructure for secure messaging
WO2018207027A3 (en) CLOUD-BASED WIFI NETWORK CONFIGURATION FOR MULTIPLE ACCESS POINTS
WO2019032972A8 (en) TRAFFIC ORIENTATION AND SWITCHING BETWEEN MULTIPLE ACCESS NETWORKS
BR112019022281A2 (pt) troca de uma mensagem incluindo informações de capacidade acoplada ao drone entre um equipamento de usuário acoplado ao drone e um componente de uma rede de assinante de comunicação sem fio terrestre
WO2017109584A3 (en) Computer-implemented cryptographic method for improving a computer network, and terminal, system and computer-readable medium for the same
CU20170033A7 (es) Métodos y aparato para la autenticación de una red de sevicio por un equipo de usuario (ue) utilizando credenciales de una red doméstica
BR112017020122A2 (pt) estabelecimento de um enlace de dados de nan seguro
WO2015157693A3 (en) System and method for an efficient authentication and key exchange protocol
BR112018068266A2 (pt) segurança de agregação wwan-wlan
EP3737071A3 (en) Method and system for internetwork communication with machine devices
JP2018526869A5 (pt)
IN2014DN09465A (pt)
BR112014011390A2 (pt) método para estabelecer conectividade de dados entre um dispositivo de comunicação sem fio e uma rede de núcleo sobre uma rede de acesso ip, dispositivo de comunicação sem fio e sistema de comunicação
JP2018537912A5 (pt)
CU20170034A7 (es) Métodos y aparato para la re-autenticación a demanda de una red de sevicio por un equipo de usuario (ue)
AR081944A1 (es) Metodo y aparato para unir la autenticacion del abonado y la autenticacion del dispositivo en sistemas de comunicacion
BR112015022881A2 (pt) comunicação de rede segura
BR112019004865A2 (pt) técnicas de derivação de chaves de segurança para uma rede celular com base no desempenho de um procedimento do protocolo de autenticação extensível (eap)
BR112019004671A2 (pt) re-autenticação de função de rede sob demanda com base na atualização de chave
BR112012026136A2 (pt) aparelho e método para sinalizar um contexto de segurança aperfeiçoada para criptografia de sessão e chaves de integridade

Legal Events

Date Code Title Description
B350 Update of information on the portal [chapter 15.35 patent gazette]
B06W Patent application suspended after preliminary examination (for patents with searches from other patent authorities) chapter 6.23 patent gazette]