CN101160779B - 提供新鲜会话密钥 - Google Patents
提供新鲜会话密钥 Download PDFInfo
- Publication number
- CN101160779B CN101160779B CN2006800127472A CN200680012747A CN101160779B CN 101160779 B CN101160779 B CN 101160779B CN 2006800127472 A CN2006800127472 A CN 2006800127472A CN 200680012747 A CN200680012747 A CN 200680012747A CN 101160779 B CN101160779 B CN 101160779B
- Authority
- CN
- China
- Prior art keywords
- random number
- key
- network application
- application function
- subscriber equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 239000000463 material Substances 0.000 claims abstract description 58
- 238000000034 method Methods 0.000 claims abstract description 37
- 238000004891 communication Methods 0.000 claims abstract description 15
- 230000004044 response Effects 0.000 claims description 7
- 230000006870 function Effects 0.000 description 36
- 230000008569 process Effects 0.000 description 7
- 238000013459 approach Methods 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 3
- 230000015654 memory Effects 0.000 description 3
- 238000009795 derivation Methods 0.000 description 2
- 238000011161 development Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 230000008901 benefit Effects 0.000 description 1
- 230000001413 cellular effect Effects 0.000 description 1
- 230000001427 coherent effect Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 238000007796 conventional method Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 239000000835 fiber Substances 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 239000000126 substance Substances 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0838—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
- H04L9/0841—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
- H04L9/0844—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols with user authentication or key authentication, e.g. ElGamal, MTI, MQV-Menezes-Qu-Vanstone protocol or Diffie-Hellman protocols using implicitly-certified keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0431—Key distribution or pre-distribution; Key agreement
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/061—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying further key derivation, e.g. deriving traffic keys from a pair-wise master key
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
- Telephonic Communication Services (AREA)
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US11/108,610 | 2005-04-18 | ||
| US11/108,610 US7558957B2 (en) | 2005-04-18 | 2005-04-18 | Providing fresh session keys |
| PCT/US2006/013283 WO2006113206A1 (en) | 2005-04-18 | 2006-04-10 | Providing fresh session keys |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101160779A CN101160779A (zh) | 2008-04-09 |
| CN101160779B true CN101160779B (zh) | 2013-04-03 |
Family
ID=36678567
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2006800127472A Expired - Fee Related CN101160779B (zh) | 2005-04-18 | 2006-04-10 | 提供新鲜会话密钥 |
Country Status (6)
| Country | Link |
|---|---|
| US (1) | US7558957B2 (enExample) |
| EP (1) | EP1872513B1 (enExample) |
| JP (1) | JP5080449B2 (enExample) |
| KR (1) | KR101240069B1 (enExample) |
| CN (1) | CN101160779B (enExample) |
| WO (1) | WO2006113206A1 (enExample) |
Families Citing this family (26)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8046824B2 (en) * | 2005-04-11 | 2011-10-25 | Nokia Corporation | Generic key-decision mechanism for GAA |
| CA2610947A1 (en) * | 2005-07-07 | 2007-01-18 | Telefonaktiebolaget L M Ericsson (Publ) | Method and arrangement for authentication and privacy |
| US7835528B2 (en) * | 2005-09-26 | 2010-11-16 | Nokia Corporation | Method and apparatus for refreshing keys within a bootstrapping architecture |
| CN101039181B (zh) * | 2006-03-14 | 2010-09-08 | 华为技术有限公司 | 防止通用鉴权框架中服务功能实体受攻击的方法 |
| US8407482B2 (en) * | 2006-03-31 | 2013-03-26 | Avaya Inc. | User session dependent URL masking |
| DE102006054091B4 (de) * | 2006-11-16 | 2008-09-11 | Siemens Ag | Bootstrapping-Verfahren |
| DE102007023206B4 (de) * | 2006-11-18 | 2008-10-09 | Dica Technologies Gmbh | Verfahren und Einrichtung zur sicheren Erzeugung und Verwaltung von Schlüsseln und deren Nutzung in Netzwerken zur sicheren Übertragung von Daten |
| KR101447726B1 (ko) * | 2006-12-08 | 2014-10-07 | 한국전자통신연구원 | 이동통신시스템에서의 인증키 생성 방법 및 갱신 방법 |
| US20100183152A1 (en) * | 2007-07-04 | 2010-07-22 | Koninklijke Philips Electronics N.V. | Network and method for initializing a trust center link key |
| CN101163010B (zh) * | 2007-11-14 | 2010-12-08 | 华为软件技术有限公司 | 对请求消息的鉴权方法和相关设备 |
| WO2009070075A1 (en) * | 2007-11-30 | 2009-06-04 | Telefonaktiebolaget Lm Ericsson (Publ) | Key management for secure communication |
| ES2687238T3 (es) * | 2008-02-25 | 2018-10-24 | Nokia Solutions And Networks Oy | Método de arquitectura de arranque de seguro basado en autenticación de resumen basada en contraseña |
| US20090287929A1 (en) * | 2008-05-15 | 2009-11-19 | Lucent Technologies Inc. | Method and apparatus for two-factor key exchange protocol resilient to password mistyping |
| DK2291946T4 (da) * | 2008-06-06 | 2020-08-31 | Ericsson Telefon Ab L M | Generering af krypteringsnøgle |
| CN101784048B (zh) * | 2009-01-21 | 2014-01-01 | 中兴通讯股份有限公司 | 动态更新密钥的身份认证和密钥协商方法及系统 |
| US8943321B2 (en) | 2009-10-19 | 2015-01-27 | Nokia Corporation | User identity management for permitting interworking of a bootstrapping architecture and a shared identity service |
| CN107484163A (zh) | 2011-04-01 | 2017-12-15 | 瑞典爱立信有限公司 | 用于避免网络攻击的危害的方法和装置 |
| PH12014500964A1 (en) * | 2011-10-31 | 2014-06-30 | Nokia Technologies Oy | Security mechanism for external code |
| WO2015065063A1 (en) * | 2013-10-30 | 2015-05-07 | Samsung Electronics Co., Ltd. | Method and apparatus to identity verification using asymmetric keys in wireless direct communication network |
| JP6708626B2 (ja) * | 2014-05-02 | 2020-06-10 | コニンクリーケ・ケイピーエヌ・ナムローゼ・フェンノートシャップ | 無線アクセス・ネットワークからセキュリティを提供する方法およびシステム。 |
| US10678927B2 (en) * | 2017-08-31 | 2020-06-09 | Texas Instruments Incorporated | Randomized execution countermeasures against fault injection attacks during boot of an embedded device |
| WO2019108100A1 (en) * | 2017-11-29 | 2019-06-06 | Telefonaktiebolaget Lm Ericsson (Publ) | Session key establishment |
| US11089480B2 (en) * | 2018-11-30 | 2021-08-10 | Apple Inc. | Provisioning electronic subscriber identity modules to mobile wireless devices |
| WO2020146974A1 (en) * | 2019-01-14 | 2020-07-23 | Telefonaktiebolaget Lm Ericsson (Publ) | Method and apparatus for security |
| CN112054906B (zh) * | 2020-08-21 | 2022-02-11 | 郑州信大捷安信息技术股份有限公司 | 一种密钥协商方法及系统 |
| KR20240056515A (ko) * | 2021-09-17 | 2024-04-30 | 퀄컴 인코포레이티드 | 애플리케이션 통신 보안 |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1252198A (zh) * | 1997-12-24 | 2000-05-03 | 皇家菲利浦电子有限公司 | 联网环境中秘密的新随机数的管理与利用 |
| CN1446418A (zh) * | 2000-08-11 | 2003-10-01 | 艾利森电话股份有限公司 | 保密任意通信业务 |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP0722596A4 (en) * | 1991-11-12 | 1997-03-05 | Security Domain Pty Ltd | METHOD AND SYSTEM FOR SECURE, DECENTRALIZED PERSONALIZATION OF CHIP CARDS |
| GB2359227B (en) * | 1998-10-30 | 2004-04-07 | Certco Inc | Incorporating shared randomness into distributed cryptography |
| JP2002344438A (ja) * | 2001-05-14 | 2002-11-29 | Nippon Telegr & Teleph Corp <Ntt> | 鍵共有システム及び装置並びにプログラム |
| US8140845B2 (en) * | 2001-09-13 | 2012-03-20 | Alcatel Lucent | Scheme for authentication and dynamic key exchange |
| US20030093663A1 (en) * | 2001-11-09 | 2003-05-15 | Walker Jesse R. | Technique to bootstrap cryptographic keys between devices |
| US7607015B2 (en) | 2002-10-08 | 2009-10-20 | Koolspan, Inc. | Shared network access using different access keys |
| US7715822B2 (en) * | 2005-02-04 | 2010-05-11 | Qualcomm Incorporated | Secure bootstrapping for wireless communications |
-
2005
- 2005-04-18 US US11/108,610 patent/US7558957B2/en active Active
-
2006
- 2006-04-10 KR KR1020077023862A patent/KR101240069B1/ko not_active Expired - Fee Related
- 2006-04-10 JP JP2008507708A patent/JP5080449B2/ja not_active Expired - Fee Related
- 2006-04-10 EP EP06740801.3A patent/EP1872513B1/en not_active Not-in-force
- 2006-04-10 WO PCT/US2006/013283 patent/WO2006113206A1/en not_active Ceased
- 2006-04-10 CN CN2006800127472A patent/CN101160779B/zh not_active Expired - Fee Related
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1252198A (zh) * | 1997-12-24 | 2000-05-03 | 皇家菲利浦电子有限公司 | 联网环境中秘密的新随机数的管理与利用 |
| CN1446418A (zh) * | 2000-08-11 | 2003-10-01 | 艾利森电话股份有限公司 | 保密任意通信业务 |
Also Published As
| Publication number | Publication date |
|---|---|
| JP2008537445A (ja) | 2008-09-11 |
| EP1872513B1 (en) | 2018-01-10 |
| KR20070122491A (ko) | 2007-12-31 |
| US7558957B2 (en) | 2009-07-07 |
| WO2006113206A1 (en) | 2006-10-26 |
| JP5080449B2 (ja) | 2012-11-21 |
| CN101160779A (zh) | 2008-04-09 |
| WO2006113206B1 (en) | 2007-01-18 |
| EP1872513A1 (en) | 2008-01-02 |
| US20060236106A1 (en) | 2006-10-19 |
| KR101240069B1 (ko) | 2013-03-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101160779B (zh) | 提供新鲜会话密钥 | |
| JP4865791B2 (ja) | ペアワイズ・マスタ・キーを更新する方法 | |
| JP5579872B2 (ja) | 安全な複数uim認証および鍵交換 | |
| CN101523800B (zh) | 用于双向认证的方法和装置 | |
| JP4965671B2 (ja) | 無線通信ネットワークにおけるユーザ・プロファイル、ポリシー及びpmipキーの配布 | |
| CN101764803B (zh) | 参与与计算系统的认证的方法 | |
| US20060236116A1 (en) | Provisioning root keys | |
| US20180262352A1 (en) | Secure Authentication of Remote Equipment | |
| CN103229452A (zh) | 移动手持设备的识别和通信认证 | |
| CN112118223A (zh) | 主站与终端的认证方法、主站、终端及存储介质 | |
| WO2010023506A1 (en) | Methods, apparatuses, computer program products, and systems for providing secure pairing and association for wireless devices | |
| WO2024045680A1 (zh) | 一种设备认证方法和相关设备 | |
| CN115865520A (zh) | 移动云服务环境中具有隐私保护的认证和访问控制方法 | |
| CN114765544B (zh) | 可信执行环境数据离线迁移方法及装置 | |
| CN118101340B (zh) | 数据安全传输方法、装置和电子设备 | |
| JP2009522865A (ja) | 無線通信において暗号化キー変換を行う方法 | |
| CN109391938A (zh) | 密钥协商方法、装置及系统 | |
| CN115915116A (zh) | 数据传输方法、装置及电子设备 | |
| CN111404669B (zh) | 一种密钥生成方法、终端设备及网络设备 | |
| WO2022178890A1 (zh) | 一种密钥的传输方法和装置 |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20130403 |