CN101160779B - 提供新鲜会话密钥 - Google Patents

提供新鲜会话密钥 Download PDF

Info

Publication number
CN101160779B
CN101160779B CN2006800127472A CN200680012747A CN101160779B CN 101160779 B CN101160779 B CN 101160779B CN 2006800127472 A CN2006800127472 A CN 2006800127472A CN 200680012747 A CN200680012747 A CN 200680012747A CN 101160779 B CN101160779 B CN 101160779B
Authority
CN
China
Prior art keywords
random number
key
application function
network application
user equipment
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN2006800127472A
Other languages
English (en)
Chinese (zh)
Other versions
CN101160779A (zh
Inventor
萨瓦·帕特尔
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nokia of America Corp
Original Assignee
Lucent Technologies Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Lucent Technologies Inc filed Critical Lucent Technologies Inc
Publication of CN101160779A publication Critical patent/CN101160779A/zh
Application granted granted Critical
Publication of CN101160779B publication Critical patent/CN101160779B/zh
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • H04L9/0841Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
    • H04L9/0844Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols with user authentication or key authentication, e.g. ElGamal, MTI, MQV-Menezes-Qu-Vanstone protocol or Diffie-Hellman protocols using implicitly-certified keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0431Key distribution or pre-distribution; Key agreement
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/061Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying further key derivation, e.g. deriving traffic keys from a pair-wise master key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)
CN2006800127472A 2005-04-18 2006-04-10 提供新鲜会话密钥 Expired - Fee Related CN101160779B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US11/108,610 2005-04-18
US11/108,610 US7558957B2 (en) 2005-04-18 2005-04-18 Providing fresh session keys
PCT/US2006/013283 WO2006113206A1 (en) 2005-04-18 2006-04-10 Providing fresh session keys

Publications (2)

Publication Number Publication Date
CN101160779A CN101160779A (zh) 2008-04-09
CN101160779B true CN101160779B (zh) 2013-04-03

Family

ID=36678567

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2006800127472A Expired - Fee Related CN101160779B (zh) 2005-04-18 2006-04-10 提供新鲜会话密钥

Country Status (6)

Country Link
US (1) US7558957B2 (https=)
EP (1) EP1872513B1 (https=)
JP (1) JP5080449B2 (https=)
KR (1) KR101240069B1 (https=)
CN (1) CN101160779B (https=)
WO (1) WO2006113206A1 (https=)

Families Citing this family (27)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8046824B2 (en) * 2005-04-11 2011-10-25 Nokia Corporation Generic key-decision mechanism for GAA
JP4741664B2 (ja) * 2005-07-07 2011-08-03 テレフオンアクチーボラゲット エル エム エリクソン(パブル) 認証及びプライバシーに対する方法及び装置
US7835528B2 (en) * 2005-09-26 2010-11-16 Nokia Corporation Method and apparatus for refreshing keys within a bootstrapping architecture
CN101039181B (zh) 2006-03-14 2010-09-08 华为技术有限公司 防止通用鉴权框架中服务功能实体受攻击的方法
US8407482B2 (en) * 2006-03-31 2013-03-26 Avaya Inc. User session dependent URL masking
DE102006054091B4 (de) * 2006-11-16 2008-09-11 Siemens Ag Bootstrapping-Verfahren
DE102007023206B4 (de) * 2006-11-18 2008-10-09 Dica Technologies Gmbh Verfahren und Einrichtung zur sicheren Erzeugung und Verwaltung von Schlüsseln und deren Nutzung in Netzwerken zur sicheren Übertragung von Daten
KR101447726B1 (ko) * 2006-12-08 2014-10-07 한국전자통신연구원 이동통신시스템에서의 인증키 생성 방법 및 갱신 방법
KR20100044199A (ko) * 2007-07-04 2010-04-29 코닌클리즈케 필립스 일렉트로닉스 엔.브이. 트러스트 센터 링크 키를 초기화하는 네트워크 및 방법
CN101163010B (zh) * 2007-11-14 2010-12-08 华为软件技术有限公司 对请求消息的鉴权方法和相关设备
WO2009070075A1 (en) * 2007-11-30 2009-06-04 Telefonaktiebolaget Lm Ericsson (Publ) Key management for secure communication
ES2687238T3 (es) * 2008-02-25 2018-10-24 Nokia Solutions And Networks Oy Método de arquitectura de arranque de seguro basado en autenticación de resumen basada en contraseña
US20090287929A1 (en) * 2008-05-15 2009-11-19 Lucent Technologies Inc. Method and apparatus for two-factor key exchange protocol resilient to password mistyping
BRPI0822761B1 (pt) * 2008-06-06 2020-09-29 Telefonaktiebolaget Lm Ericsson (Publ) Método para gerar uma chave criptográfica para proteger comunicação entre duas entidades, meio de armazenamento legível por computador, dispositivo adaptado para gerar uma chave criptográfica para uma entidade de comunicações, equipamento de usuário, e, sistema
CN101784048B (zh) * 2009-01-21 2014-01-01 中兴通讯股份有限公司 动态更新密钥的身份认证和密钥协商方法及系统
WO2011048551A1 (en) * 2009-10-19 2011-04-28 Nokia Corporation User identity management for permitting interworking of a bootstrapping architecture and a shared identity service
EP2695410B1 (en) * 2011-04-01 2017-04-19 Telefonaktiebolaget LM Ericsson (publ) Methods and apparatuses for avoiding damage in network attacks
MX2014005223A (es) * 2011-10-31 2014-09-01 Nokia Corp Mecanismo de seguridad para codigo externo.
US10631162B2 (en) 2013-10-30 2020-04-21 Samsung Electronics Co., Ltd. Method and apparatus to perform device to device communication in wireless communication network
WO2015166099A1 (en) * 2014-05-02 2015-11-05 Koninklijke Kpn N.V. Method and system for providing security from a radio access network
US10678927B2 (en) * 2017-08-31 2020-06-09 Texas Instruments Incorporated Randomized execution countermeasures against fault injection attacks during boot of an embedded device
EP3718330B1 (en) * 2017-11-29 2024-09-25 Telefonaktiebolaget LM Ericsson (publ) Session key establishment
US11089480B2 (en) * 2018-11-30 2021-08-10 Apple Inc. Provisioning electronic subscriber identity modules to mobile wireless devices
US20220086632A1 (en) * 2019-01-14 2022-03-17 Telefonaktiebolaget Lm Ericsson (Publ) Method and apparatus for security
CN112054906B (zh) * 2020-08-21 2022-02-11 郑州信大捷安信息技术股份有限公司 一种密钥协商方法及系统
US12500744B2 (en) * 2021-09-17 2025-12-16 Qualcomm Incorporated Securing application communication
WO2023043724A1 (en) * 2021-09-17 2023-03-23 Qualcomm Incorporated Securing application communication

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1252198A (zh) * 1997-12-24 2000-05-03 皇家菲利浦电子有限公司 联网环境中秘密的新随机数的管理与利用
CN1446418A (zh) * 2000-08-11 2003-10-01 艾利森电话股份有限公司 保密任意通信业务
US20050018840A1 (en) * 1998-10-30 2005-01-27 Yung Marcel M. Incorporating shared randomness into distributed cryptography

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0722596A4 (en) * 1991-11-12 1997-03-05 Security Domain Pty Ltd METHOD AND SYSTEM FOR SECURE, DECENTRALIZED PERSONALIZATION OF CHIP CARDS
JP2002344438A (ja) * 2001-05-14 2002-11-29 Nippon Telegr & Teleph Corp <Ntt> 鍵共有システム及び装置並びにプログラム
US8140845B2 (en) * 2001-09-13 2012-03-20 Alcatel Lucent Scheme for authentication and dynamic key exchange
US20030093663A1 (en) * 2001-11-09 2003-05-15 Walker Jesse R. Technique to bootstrap cryptographic keys between devices
US7607015B2 (en) 2002-10-08 2009-10-20 Koolspan, Inc. Shared network access using different access keys
CA2597475C (en) * 2005-02-04 2012-09-18 Qualcomm Incorporated Secure bootstrapping for wireless communications

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1252198A (zh) * 1997-12-24 2000-05-03 皇家菲利浦电子有限公司 联网环境中秘密的新随机数的管理与利用
US20050018840A1 (en) * 1998-10-30 2005-01-27 Yung Marcel M. Incorporating shared randomness into distributed cryptography
CN1446418A (zh) * 2000-08-11 2003-10-01 艾利森电话股份有限公司 保密任意通信业务

Also Published As

Publication number Publication date
JP2008537445A (ja) 2008-09-11
JP5080449B2 (ja) 2012-11-21
US20060236106A1 (en) 2006-10-19
CN101160779A (zh) 2008-04-09
EP1872513A1 (en) 2008-01-02
KR101240069B1 (ko) 2013-03-06
KR20070122491A (ko) 2007-12-31
WO2006113206A1 (en) 2006-10-26
EP1872513B1 (en) 2018-01-10
US7558957B2 (en) 2009-07-07
WO2006113206B1 (en) 2007-01-18

Similar Documents

Publication Publication Date Title
CN101160779B (zh) 提供新鲜会话密钥
JP4865791B2 (ja) ペアワイズ・マスタ・キーを更新する方法
US20230421394A1 (en) Secure authentication of remote equipment
CN101523800B (zh) 用于双向认证的方法和装置
JP6406681B2 (ja) プレアソシエーションサービスディスカバリのためのシステムおよび方法
US20060236116A1 (en) Provisioning root keys
CN112118223B (zh) 主站与终端的认证方法、主站、终端及存储介质
CN110635901B (zh) 用于物联网设备的本地蓝牙动态认证方法和系统
WO2010023506A1 (en) Methods, apparatuses, computer program products, and systems for providing secure pairing and association for wireless devices
CN114765544B (zh) 可信执行环境数据离线迁移方法及装置
WO2024045680A1 (zh) 一种设备认证方法和相关设备
CN101039181B (zh) 防止通用鉴权框架中服务功能实体受攻击的方法
CN118101340B (zh) 数据安全传输方法、装置和电子设备
CN109391938A (zh) 密钥协商方法、装置及系统
CN101346970A (zh) 无线通信中密码密钥转换方法
CN111404670A (zh) 一种密钥生成方法、ue及网络设备
CN115915116A (zh) 数据传输方法、装置及电子设备
CN111404669B (zh) 一种密钥生成方法、终端设备及网络设备
WO2026066343A1 (zh) 密钥确定方法、应用设备和密钥确定系统

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20130403

CF01 Termination of patent right due to non-payment of annual fee