CN101282518A - Method and smart card apparatus for protecting user privacy when opening handset - Google Patents
Method and smart card apparatus for protecting user privacy when opening handset Download PDFInfo
- Publication number
- CN101282518A CN101282518A CNA2007100389908A CN200710038990A CN101282518A CN 101282518 A CN101282518 A CN 101282518A CN A2007100389908 A CNA2007100389908 A CN A2007100389908A CN 200710038990 A CN200710038990 A CN 200710038990A CN 101282518 A CN101282518 A CN 101282518A
- Authority
- CN
- China
- Prior art keywords
- imsi
- plmn
- smart card
- cell
- encrypted
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
- Telephone Function (AREA)
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a method that protects user privacy when mobile phone device is powered on, comprising the steps of: A, storing a PLMN number list that encrypts IMSI in a smart card of the mobile phone device; B, selecting PLMN according to present method after the mobile phone device is powered on; C, the mobile phone device selects a traditionally manner without encryption or a encryption manner to transmit the IMSI number and obtains a TMSI; D, the mobile phone device accomplishes register and uses the TMSI to work normally. The smart card device comprises the PLMN list unit that is encrypted, an IMSI storage unit, an IMSI encryption unit and a selector. The invention solves the technical problem that when the user registers at the first time, the user can not obtain related encrypted information such as a key and in the process the IMSI adopts a plain code to transmit, which is easy to release identity of the user. The invention can accomplish the purpose that the new encrypted mobile phone roams to the old un-encrypted network.
Description
Technical field
The present invention relates to a kind of suitable 3GPP (3rd Generation Partnership Project; third generation partner program) cellphone subscriber's of protocol compatibility method for secret protection, especially a kind of method of apparatus for protecting user privacy when opening handset and smart card apparatus.
Background technology
Along with the development of wireless communication technique, become more and more easily simultaneously in people's life, because the defective of technology, individual's secret protection problem also faces more and more serious challenge.The IMSI of mobile phone (International Mobile Subscriber Identity, international mobile subscriber identity, be number that the mobile subscriber distributed of unique identification in the world) as cellphone subscriber's an important privacy information, be this user's of mark distinguishing mark.
3G (3rd Generation, the third generation) mobile communication system is the mobile communication system that present most countries in the world and area are all being used or will used.3GPP has finished all relevant standard operations as the normal structure of 3G.
At UMTS (Universal Mobile Telecommunication System, conventional wireless communication systems) in, TMSI (Temporary Mobile Subscriber Identity is arranged, Temporary Mobile)/P-TMSI (Packet Temporary Mobile Subscriber Identity, the bag Temporary Mobile), IMSI and IMEI user label methods such as (International Mobile Equipment Identity, International Mobile Station Equipment Identification).Wherein: TMSI/P-TMSI is used in the identification user by the network system branch, and can periodically update; IMSI is the exclusive unique user identity mark of user, is stored in the SIM (Subscriber Identity Module, identify label module) of mobile phone; IMEI is used for the mark cell phone apparatus, the User Recognition when generally being used for urgent call.
The permanent identity of user in UMTS is IMSI., the user identity identification in network almost under any circumstance all will be by TMSI/P-TMSI, and the confidentiality of user identity just can not revealed to passive stealer like this.Certainly, initial registration can not use temporary identity, because network when also not knowing user's permanent identity, is not understood user's basic conditions such as authority, can not distribute temporary identity.Just know after the registration, temporary identity just can use.
If enter new territory during the cell phone apparatus start, so, can obtain the contact of IMSI and TMSI/P-TMSI by old route.If the route in old territory is not known in new territory, then mobile phone must be applied for new TMSI.In some places,, there is a large amount of IMSI need be by the wave point transmission because down the crowd of machine opens mobile phone such as the airport.This just means, the listener-in can be other user by understanding IMSI, adds by observing user's behavior, can be easy to realize the tracking to the user.Therefore, in the 3GPP agreement, consider when the user registers first, can't obtain key etc. and encrypt for information about, so IMSI adopts the plain code transmission to make that easily user identity is leaked in this course.
In order to address this problem, a kind of possible scheme is when mobile telephone registration first, IMSI is encrypted protection user profile.But this method is incompatible with present 3GPP agreement, needs the cost cost to transform existing equipment, and has also brought very big problem for the roaming between the country variant.
In addition, PLMN (Public Land Mobile Networks, public land mobile network) number is the sign of a kind of mark mobile radio system operator.PLMN is in two sub-sections: country code and operator code.Wherein, country code is the numeral of 3 0-9, represents country that operator belongs to or regional; Operator code is the numeral of 2 or 3 s' 0-9, represents the different operator in this country or the area.The PLMN of interventional systems is issued by BCH (Broadcast Channel, broadcast channel) broadcasting.Generally speaking, consider the compatibility between the equipment, the cipher mode a PLMN inside is consistent.
Summary of the invention
The object of the present invention is to provide a kind of method and smart card apparatus of apparatus for protecting user privacy when opening handset; mainly solve when the user registers first; can't obtain key etc. encrypts for information about; so IMSI adopts the plain code transmission to make the technical problem that user identity is leaked easily in this course, and the cell phone apparatus that reaches new encryption can roam into the target of old not refined net.
For achieving the above object, the present invention is achieved in that
A kind of method of apparatus for protecting user privacy when opening handset is characterized in that this method may further comprise the steps:
A: storage needs to encrypt the PLMN list of numbers of IMSI in the smart card of cell phone apparatus;
B: cell phone apparatus start back is carried out PLMN according to existing method and is selected;
C: cell phone apparatus is according to current PLMN, and the PLMN list of numbers that the needs that store in the inquiry smart card are encrypted IMSI is selected to carry out tradition not cipher mode or cipher mode transmission IMSI number, and obtained TMSI;
D: cell phone apparatus is finished registration, brings into use the TMSI operate as normal.
Described step C further comprises:
C1: whether cell phone apparatus is the needs encryption to this selecteed PLMN of smart card inquiry, if then enter step C2; If not, directly export the IMSI number, and enter step C4
C2: cell phone apparatus is exported selecteed PLMN to smart card;
C3: smart card carries out exporting after the encryption for the IMSI of output again;
C4: cell phone apparatus carries out Radio Resource connection, licensing process and business and applies for/adhere to application, obtains TMSI.
A kind of smart card apparatus of method as mentioned above that is used for is characterized in that it comprises PLMN list cell, IMSI memory cell, IMSI ciphering unit and the selector of needs encryption IMSI;
This PLMN list cell that need encrypt IMSI is used for judging whether the PLMN of the selection of input is the element of this tabulation, and the result outputs to selector; In addition, this PLMN list cell that need encrypt IMSI can be passed through the input of the PLMN list update order of encryption IMSI, finishes the content update of oneself; This PLMN list cell that need encrypt IMSI exports whether give mobile device to the IMSI information encrypted simultaneously;
This IMSI memory cell is used to store the IMSI information of this user's correspondence, and its output can connect selector and IMSI ciphering unit;
This IMSI ciphering unit is used for the IMSI number of IMSI memory cell output is encrypted according to cryptographic algorithm, and exports selector to;
This selector is used for encrypting as required the IMSI that IMSI that the judged result of the PLMN list cell of IMSI selects output to encrypt through the IMSI ciphering unit does not still encrypt.
This PLMN tabulation that need encrypt that the needs in the PLMN list cell of IMSI encrypt is renewable.
Upgrade the PLMN tabulation that needs to encrypt IMSI by operating console control network devices and subscriber equipment.
By said method and device, the invention has the beneficial effects as follows:
1, the inventive method is encrypted in the network of IMSI in needs/supports by selecting ciphering process, can solve when the user registers first, and IMSI adopts plain code to transmit to make easily the technical problem that user identity is leaked, and has protected user's privacy fully.
2, the inventive method cell phone apparatus that can also reach new encryption can roam into the target of old not refined net.
Description of drawings
Fig. 1 is the process chart of the inventive method one preferred embodiment.
Fig. 2 is the signaling process figure of the inventive method one preferred embodiment.
Fig. 3 is the structural representation of smart card apparatus of the present invention.
Embodiment
The invention provides a kind of method of apparatus for protecting user privacy when opening handset, see also Fig. 1,2, they are flow charts of the inventive method one preferred embodiment.This method may further comprise the steps as shown in the figure:
A: storage needs to encrypt the PLMN list of numbers of IMSI in the smart card of cell phone apparatus;
B: cell phone apparatus start back is carried out PLMN according to existing method and is selected;
C: cell phone apparatus is according to current PLMN, and the PLMN list of numbers that the needs that store in the inquiry smart card are encrypted IMSI is selected to carry out tradition not cipher mode or cipher mode transmission IMSI number, and obtained TMSI;
D: cell phone apparatus is finished registration, brings into use the TMSI operate as normal.
Step C further comprises:
C1: whether cell phone apparatus is the needs encryption to this selecteed PLMN of smart card inquiry, if then enter step C2; If not, directly export the IMSI number, and enter step C4
C2: cell phone apparatus is exported selecteed PLMN to smart card;
C3: smart card carries out exporting after the encryption for the IMSI of output again;
C4: cell phone apparatus carries out licensing process and application is applied for/adhered to business, obtains TMSI.
See also Fig. 3 again, the smart card apparatus 4 of implementing the inventive method comprises other functional units 41 of PLMN list cell 42, IMSI memory cell 43, IMSI ciphering unit 44, selector 45 and smart card of needs encryption IMSI; The function of each unit is:
This PLMN list cell 42 that need encrypt IMSI is used for judging whether the PLMN of the selection of input is the element of this tabulation, and the result outputs to selector 45;
This IMSI memory cell 43 is used to store the IMSI information of this user's correspondence, and its output can connect selector 45 and IMSI ciphering unit 44; In addition, this PLMN list cell that need encrypt IMSI can be passed through the input of the PLMN list update order of encryption IMSI, finishes the content update of oneself; This PLMN list cell that need encrypt IMSI exports whether give mobile device to the IMSI information encrypted simultaneously;
This IMSI ciphering unit 44 is used for the IMSI number of IMSI memory cell 43 outputs is encrypted according to cryptographic algorithm, and exports selector 45 to;
This selector 45 is used for encrypting as required the IMSI that IMSI that the judged result of the PLMN list cell 42 of IMSI selects output to encrypt through IMSI ciphering unit 44 does not still encrypt;
Other functional units 41 of smart card are the same with at present traditional smart card, finish the required function of smart card except that the present invention.
In order further to increase effect of the present invention, this the PLMN tabulation that need encrypt that the needs in the PLMN list cell 42 of IMSI encrypt is renewable, and can upgrade the PLMN tabulation that needs to encrypt IMSI by operating console control network devices and subscriber equipment.
Being preferred embodiment of the present invention only in sum, is not to be used for limiting practical range of the present invention.Be that all equivalences of doing according to the content of the present patent application claim change and modification, all should be technology category of the present invention.
Claims (5)
1. the method for an apparatus for protecting user privacy when opening handset is characterized in that this method may further comprise the steps:
A: storage needs to encrypt the PLMN list of numbers of IMSI in the smart card of cell phone apparatus;
B: cell phone apparatus start back is carried out PLMN according to existing method and is selected;
C: cell phone apparatus is according to current PLMN, and the PLMN list of numbers that the needs that store in the inquiry smart card are encrypted IMSI is selected to carry out not cipher mode or cipher mode transmission IMSI number, and obtained TMSI;
D: cell phone apparatus is finished registration, brings into use the TMSI operate as normal.
2. the method for apparatus for protecting user privacy when opening handset according to claim 1 is characterized in that described step C further comprises:
C1: whether cell phone apparatus is the needs encryption to this selecteed PLMN of smart card inquiry, if then enter step C2; If not, directly export the IMSI number, and enter step C4
C2: cell phone apparatus is exported selecteed PLMN to smart card;
C3: smart card carries out exporting after the encryption for the IMSI of output again;
C4: cell phone apparatus carries out Radio Resource connection, licensing process and business and applies for/adhere to application, obtains TMSI.
3. the smart card apparatus described in claim 1 or 2 methods is characterized in that it comprises PLMN list cell (42), IMSI memory cell (43), IMSI ciphering unit (44), the selector (45) of needs encryption IMSI; Wherein:
This PLMN list cell (42) that need encrypt IMSI is used for judging whether the PLMN of the selection of input is the element of this tabulation, and the result outputs to selector (45); This PLMN list cell that need encrypt IMSI can be passed through the input of the PLMN list update order of encryption IMSI, finishes the content update of oneself; This PLMN list cell that need encrypt IMSI exports whether give mobile device to the IMSI information encrypted simultaneously;
This IMSI memory cell (43) is used to store the IMSI information of this user's correspondence, and its output can connect selector (45) and IMSI ciphering unit (44);
This IMSI ciphering unit (44) is used for the IMSI number of IMSI memory cell (43) output is encrypted according to cryptographic algorithm, and exports selector (45) to;
This selector (45) is used for encrypting as required the IMSI that IMSI that the judged result of the PLMN list cell (42) of IMSI selects output to encrypt through IMSI ciphering unit (44) does not still encrypt.
4. smart card apparatus according to claim 3, its spy just is being that the PLMN tabulation that the needs in this PLMN list cell that need encrypt IMSI are encrypted is renewable.
5. smart card apparatus according to claim 4 is characterized in that upgrading the PLMN tabulation that needs are encrypted IMSI by operating console control network devices and subscriber equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2007100389908A CN101282518B (en) | 2007-04-03 | 2007-04-03 | Method and smart card apparatus for protecting user privacy when opening handset |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2007100389908A CN101282518B (en) | 2007-04-03 | 2007-04-03 | Method and smart card apparatus for protecting user privacy when opening handset |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101282518A true CN101282518A (en) | 2008-10-08 |
| CN101282518B CN101282518B (en) | 2011-10-19 |
Family
ID=40014746
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2007100389908A Active CN101282518B (en) | 2007-04-03 | 2007-04-03 | Method and smart card apparatus for protecting user privacy when opening handset |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101282518B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102204298A (en) * | 2011-05-31 | 2011-09-28 | 华为终端有限公司 | Method for interlocking between machine and card, user identification module card and terminal |
| CN109496412A (en) * | 2016-07-17 | 2019-03-19 | 高通股份有限公司 | Use the verifying of privacy identification code |
| CN110248359A (en) * | 2018-03-07 | 2019-09-17 | 中国移动通信有限公司研究院 | A kind of encipherment scheme, terminal, network element device and computer storage medium |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1298190C (en) * | 2003-11-06 | 2007-01-31 | 明基电通股份有限公司 | Method and communicating system for landing telecommunicating system of wireless terminal |
| CN100589381C (en) * | 2004-12-14 | 2010-02-10 | 中兴通讯股份有限公司 | User identity secret-keeping method in communication system |
-
2007
- 2007-04-03 CN CN2007100389908A patent/CN101282518B/en active Active
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102204298A (en) * | 2011-05-31 | 2011-09-28 | 华为终端有限公司 | Method for interlocking between machine and card, user identification module card and terminal |
| CN109496412A (en) * | 2016-07-17 | 2019-03-19 | 高通股份有限公司 | Use the verifying of privacy identification code |
| CN109496412B (en) * | 2016-07-17 | 2021-12-31 | 高通股份有限公司 | Authentication using private identification codes |
| CN110248359A (en) * | 2018-03-07 | 2019-09-17 | 中国移动通信有限公司研究院 | A kind of encipherment scheme, terminal, network element device and computer storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101282518B (en) | 2011-10-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Strobel | IMSI catcher | |
| EP1782650B1 (en) | Method and system for improving robustness of secure messaging in a mobile communications network | |
| KR0181566B1 (en) | Method and apparatus for efficient real-time authentication and encryption in a communication system | |
| Dabrowski et al. | The messenger shoots back: Network operator based IMSI catcher detection | |
| US20100159924A1 (en) | IMSI handling system | |
| CN101635924B (en) | CDMA port-to-port encryption communication system and key distribution method thereof | |
| CN102223231B (en) | M2M terminal authentication system and authentication method | |
| KR20200053609A (en) | Method for transmitting an encrypted subscription identifier stored in a secure element to a physical or virtual element of a telecommunication network, a corresponding secure element, a physical or virtual element and a terminal cooperating with the secure element | |
| CN101981892A (en) | Systems and methods for group key distribution and management for wireless communications systems | |
| CN101163003A (en) | System and method for authenticating network for terminal when SIM card use UMTS terminal and UMTS system | |
| CN101312569B (en) | Selection method for mobile phone service network | |
| CN1937487A (en) | LTE authentication and encryption method | |
| CN103262589A (en) | Wireless communication system providing the verification of the network identity | |
| CN105163305A (en) | Communication method and electronic device | |
| CN101365219B (en) | Mobile phone register method, mobile phone teminal processing method and network side processing method | |
| CN101312583B (en) | Mobile phone cipher selection method and system | |
| Schmitt et al. | Pretty good phone privacy | |
| CN101282518B (en) | Method and smart card apparatus for protecting user privacy when opening handset | |
| CN114189343A (en) | Mutual authentication method and device | |
| CN101199184B (en) | The method and apparatus of authentication code is provided | |
| Mjolsnes et al. | Private identification of subscribers in mobile networks: status and challenges | |
| CN101309466B (en) | Method and apparatus protecting user's privacy when mobile phone started | |
| CN101282519B (en) | Method for updating PLMN list needed to cipher IMSI in smart card apparatus | |
| Angermeier et al. | PAL-privacy augmented LTE: A privacy-preserving scheme for vehicular LTE communication | |
| CN101277184B (en) | Message structure compatible with 3GPP protocol and communication method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20180403 Address after: The 300456 Tianjin FTA test area (Dongjiang Bonded Port) No. 6865 North Road, 1-1-1802-7 financial and trade center of Asia Patentee after: Xinji Lease (Tianjin) Co.,Ltd. Address before: 201203 Shanghai Zhangjiang Zuchongzhi Road No. 1 Lane 2288 Spreadtrum Center Patentee before: SPREADTRUM COMMUNICATIONS (SHANGHAI) Co.,Ltd. |
|
| EE01 | Entry into force of recordation of patent licensing contract | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20081008 Assignee: SPREADTRUM COMMUNICATIONS (SHANGHAI) Co.,Ltd. Assignor: Xinji Lease (Tianjin) Co.,Ltd. Contract record no.: 2018990000196 Denomination of invention: Method and smart card apparatus for protecting user privacy when opening handset Granted publication date: 20111019 License type: Exclusive License Record date: 20180801 |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20221020 Address after: 201203 Shanghai city Zuchongzhi road Pudong New Area Zhangjiang hi tech park, Spreadtrum Center Building 1, Lane 2288 Patentee after: SPREADTRUM COMMUNICATIONS (SHANGHAI) Co.,Ltd. Address before: 300456 1-1-1802-7, north area of financial and Trade Center, No. 6865, Asia Road, Tianjin pilot free trade zone (Dongjiang Bonded Port Area) Patentee before: Xinji Lease (Tianjin) Co.,Ltd. |