CN101317359A - 生成本地接口密钥的方法及装置 - Google Patents
生成本地接口密钥的方法及装置 Download PDFInfo
- Publication number
- CN101317359A CN101317359A CNA2007800003031A CN200780000303A CN101317359A CN 101317359 A CN101317359 A CN 101317359A CN A2007800003031 A CNA2007800003031 A CN A2007800003031A CN 200780000303 A CN200780000303 A CN 200780000303A CN 101317359 A CN101317359 A CN 101317359A
- Authority
- CN
- China
- Prior art keywords
- uicc
- naf
- local interface
- cryptographic key
- terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/062—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/061—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/083—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0838—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
- H04L9/0841—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
- H04L9/0844—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols with user authentication or key authentication, e.g. ElGamal, MTI, MQV-Menezes-Qu-Vanstone protocol or Diffie-Hellman protocols using implicitly-certified keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0431—Key distribution or pre-distribution; Key agreement
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/061—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying further key derivation, e.g. deriving traffic keys from a pair-wise master key
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W88/00—Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
- H04W88/02—Terminal devices
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
- Storage Device Security (AREA)
Abstract
本发明公开了一种生成本地接口密钥的方法,该方法包括:生成可变参数,并根据生成的可变参数,及计算本地接口密钥的相关参数衍生本地接口密钥。本发明方法简化了终端获取本地接口密钥的实现过程,节约了系统资源。同时,本发明结合可变参数以及有效的密钥信息衍生以获取本地接口密钥,保证了UICC与终端间通信的安全等级。
Description
PCT国内申请,说明书已公开。
Claims (1)
- PCT国内申请,权利要求书已公开。
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2007800003031A CN101317359B (zh) | 2006-07-04 | 2007-05-17 | 生成本地接口密钥的方法及装置 |
Applications Claiming Priority (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNA2006100984222A CN101102190A (zh) | 2006-07-04 | 2006-07-04 | 生成本地接口密钥的方法 |
CN200610098422.2 | 2006-07-04 | ||
CN2007800003031A CN101317359B (zh) | 2006-07-04 | 2007-05-17 | 生成本地接口密钥的方法及装置 |
PCT/CN2007/070025 WO2008006306A1 (fr) | 2006-07-04 | 2007-05-17 | Procédé et dispositif de dérivation d'une clé interface locale |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101317359A true CN101317359A (zh) | 2008-12-03 |
CN101317359B CN101317359B (zh) | 2012-02-01 |
Family
ID=38922936
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNA2006100984222A Pending CN101102190A (zh) | 2006-07-04 | 2006-07-04 | 生成本地接口密钥的方法 |
CN2007800003031A Active CN101317359B (zh) | 2006-07-04 | 2007-05-17 | 生成本地接口密钥的方法及装置 |
Family Applications Before (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNA2006100984222A Pending CN101102190A (zh) | 2006-07-04 | 2006-07-04 | 生成本地接口密钥的方法 |
Country Status (4)
Country | Link |
---|---|
US (2) | US8559633B2 (zh) |
EP (1) | EP2037621B1 (zh) |
CN (2) | CN101102190A (zh) |
WO (1) | WO2008006306A1 (zh) |
Families Citing this family (31)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101084938B1 (ko) | 2007-10-05 | 2011-11-18 | 인터디지탈 테크날러지 코포레이션 | Uicc와 단말기간 보안 채널화를 위한 기술 |
EP2266284A2 (en) * | 2008-04-07 | 2010-12-29 | Interdigital Patent Holdings, Inc. | Secure session key generation |
CN101572694B (zh) * | 2008-04-29 | 2012-09-05 | 华为技术有限公司 | 媒体流密钥的获取方法、会话设备与密钥管理功能实体 |
CN101616408B (zh) | 2008-06-23 | 2012-04-18 | 华为技术有限公司 | 密钥衍生方法、设备及系统 |
EP2580701A4 (en) * | 2010-06-10 | 2016-08-17 | Ericsson Telefon Ab L M | USER EQUIPMENT AND ITS CONTROL METHOD |
JP5803112B2 (ja) * | 2011-01-14 | 2015-11-04 | ソニー株式会社 | 無線端末装置、情報処理装置、通信システムおよび無線端末装置の制御方法 |
CN102917351B (zh) * | 2011-08-05 | 2015-04-01 | 中国移动通信集团公司 | 在用户识别卡中实现应用的方法、装置以及用户识别卡 |
CN102932784B (zh) * | 2011-08-12 | 2015-12-02 | 华为技术有限公司 | 终端的通信方法和设备 |
US8898769B2 (en) | 2012-11-16 | 2014-11-25 | At&T Intellectual Property I, Lp | Methods for provisioning universal integrated circuit cards |
US8959331B2 (en) | 2012-11-19 | 2015-02-17 | At&T Intellectual Property I, Lp | Systems for provisioning universal integrated circuit cards |
US9350550B2 (en) | 2013-09-10 | 2016-05-24 | M2M And Iot Technologies, Llc | Power management and security for wireless modules in “machine-to-machine” communications |
US9100175B2 (en) | 2013-11-19 | 2015-08-04 | M2M And Iot Technologies, Llc | Embedded universal integrated circuit card supporting two-factor authentication |
US9036820B2 (en) | 2013-09-11 | 2015-05-19 | At&T Intellectual Property I, Lp | System and methods for UICC-based secure communication |
US10498530B2 (en) | 2013-09-27 | 2019-12-03 | Network-1 Technologies, Inc. | Secure PKI communications for “machine-to-machine” modules, including key derivation by modules and authenticating public keys |
US9124573B2 (en) | 2013-10-04 | 2015-09-01 | At&T Intellectual Property I, Lp | Apparatus and method for managing use of secure tokens |
US9208300B2 (en) | 2013-10-23 | 2015-12-08 | At&T Intellectual Property I, Lp | Apparatus and method for secure authentication of a communication device |
US9240994B2 (en) | 2013-10-28 | 2016-01-19 | At&T Intellectual Property I, Lp | Apparatus and method for securely managing the accessibility to content and applications |
US9240989B2 (en) | 2013-11-01 | 2016-01-19 | At&T Intellectual Property I, Lp | Apparatus and method for secure over the air programming of a communication device |
US9313660B2 (en) | 2013-11-01 | 2016-04-12 | At&T Intellectual Property I, Lp | Apparatus and method for secure provisioning of a communication device |
US10700856B2 (en) | 2013-11-19 | 2020-06-30 | Network-1 Technologies, Inc. | Key derivation for a module using an embedded universal integrated circuit card |
US9413759B2 (en) | 2013-11-27 | 2016-08-09 | At&T Intellectual Property I, Lp | Apparatus and method for secure delivery of data from a communication device |
US9713006B2 (en) | 2014-05-01 | 2017-07-18 | At&T Intellectual Property I, Lp | Apparatus and method for managing security domains for a universal integrated circuit card |
US9853977B1 (en) | 2015-01-26 | 2017-12-26 | Winklevoss Ip, Llc | System, method, and program product for processing secure transactions within a cloud computing system |
KR101904338B1 (ko) | 2015-03-22 | 2018-10-05 | 애플 인크. | 모바일 디바이스에서의 사용자 인증 및 인간 의도 검증을 위한 방법 및 장치 |
CA3018526C (en) * | 2015-05-22 | 2023-06-20 | John A. Nix | Cryptographic unit for public key infrastructure (pki) operations |
US10158991B2 (en) * | 2016-03-17 | 2018-12-18 | M2MD Technologies, Inc. | Method and system for managing security keys for user and M2M devices in a wireless communication network environment |
US10172000B2 (en) * | 2016-03-17 | 2019-01-01 | M2MD Technologies, Inc. | Method and system for managing security keys for user and M2M devices in a wireless communication network environment |
CN106888092B (zh) * | 2016-09-12 | 2019-06-25 | 中国移动通信有限公司研究院 | 信息处理方法及装置 |
CN113015159B (zh) * | 2019-12-03 | 2023-05-09 | 中国移动通信有限公司研究院 | 初始安全配置方法、安全模块及终端 |
CN115362656A (zh) * | 2020-04-03 | 2022-11-18 | 苹果公司 | 应用功能密钥派生和刷新 |
CN113543124A (zh) * | 2020-04-14 | 2021-10-22 | 中国电信股份有限公司 | 密钥分发方法、系统和卡应用 |
Family Cites Families (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6198823B1 (en) * | 1998-03-24 | 2001-03-06 | Dsc Telecom, L.P. | Method for improved authentication for cellular phone transmissions |
FR2809555B1 (fr) * | 2000-05-26 | 2002-07-12 | Gemplus Card Int | Securisation d'echanges de donnees entre des controleurs |
EP1209934A1 (en) * | 2000-11-27 | 2002-05-29 | Siemens Aktiengesellschaft | Method and apparatus to counter the rogue shell threat by means of local key derivation |
US7151830B2 (en) * | 2002-12-24 | 2006-12-19 | International Business Machines Corporation | Method, system, program product and state machine representation for encrypting and decrypting a message |
CN1260664C (zh) * | 2003-05-30 | 2006-06-21 | 武汉理工大学 | 一种用户计算机之间交换密钥的方法 |
JP4763726B2 (ja) * | 2005-02-04 | 2011-08-31 | クゥアルコム・インコーポレイテッド | 無線通信のための安全なブートストラッピング |
US20060206710A1 (en) * | 2005-03-11 | 2006-09-14 | Christian Gehrmann | Network assisted terminal to SIM/UICC key establishment |
US20060291660A1 (en) * | 2005-12-21 | 2006-12-28 | Telefonaktiebolaget Lm Ericsson (Publ) | SIM UICC based broadcast protection |
US20070101122A1 (en) * | 2005-09-23 | 2007-05-03 | Yile Guo | Method and apparatus for securely generating application session keys |
-
2006
- 2006-07-04 CN CNA2006100984222A patent/CN101102190A/zh active Pending
-
2007
- 2007-05-17 EP EP07721648.9A patent/EP2037621B1/en active Active
- 2007-05-17 WO PCT/CN2007/070025 patent/WO2008006306A1/zh active Application Filing
- 2007-05-17 CN CN2007800003031A patent/CN101317359B/zh active Active
-
2009
- 2009-01-05 US US12/348,534 patent/US8559633B2/en active Active
-
2013
- 2013-08-29 US US14/013,912 patent/US9467432B2/en active Active
Also Published As
Publication number | Publication date |
---|---|
CN101317359B (zh) | 2012-02-01 |
US9467432B2 (en) | 2016-10-11 |
US8559633B2 (en) | 2013-10-15 |
US20090116642A1 (en) | 2009-05-07 |
EP2037621A4 (en) | 2009-08-12 |
CN101102190A (zh) | 2008-01-09 |
EP2037621A1 (en) | 2009-03-18 |
WO2008006306A1 (fr) | 2008-01-17 |
US20140007207A1 (en) | 2014-01-02 |
EP2037621B1 (en) | 2020-08-26 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN101317359A (zh) | 生成本地接口密钥的方法及装置 | |
US10411884B2 (en) | Secure bootstrapping architecture method based on password-based digest authentication | |
JP5579872B2 (ja) | 安全な複数uim認証および鍵交換 | |
CN101194529B (zh) | 用于协商至少一个第一通信用户和第二通信用户之间的安全密钥以保护通信连接的安全的方法 | |
CN101163010B (zh) | 对请求消息的鉴权方法和相关设备 | |
CN1921682B (zh) | 增强通用鉴权框架中的密钥协商方法 | |
Wu et al. | Provably secure authentication key exchange scheme using fog nodes in vehicular ad hoc networks | |
US10158608B2 (en) | Key establishment for constrained resource devices | |
US9608971B2 (en) | Method and apparatus for using a bootstrapping protocol to secure communication between a terminal and cooperating servers | |
CN104756458A (zh) | 用于保护通信网络中的连接的方法和设备 | |
CN110572800B (zh) | 面向机器到机器环境下设备身份认证方法及装置 | |
CN101039181B (zh) | 防止通用鉴权框架中服务功能实体受攻击的方法 | |
CN101141792A (zh) | 一种通用引导架构推送的方法 | |
JP2016519873A (ja) | 汎用ブートストラッピングアーキテクチャを用いてセキュアな音声通信を確立する方法 | |
CN112311543A (zh) | Gba的密钥生成方法、终端和naf网元 | |
CN110121196A (zh) | 一种安全标识管理方法及装置 | |
CN103024735B (zh) | 无卡终端的业务访问方法及设备 | |
Khalid et al. | An improved biometric based user authentication and key agreement scheme for intelligent sensor based wireless communication | |
Hendaoui et al. | UAP: A unified authentication platform for IoT environment | |
Ayub et al. | Secure consumer-centric demand response management in resilient smart grid as industry 5.0 application with blockchain-based authentication | |
CN103781026A (zh) | 通用认证机制的认证方法 | |
CN103313244A (zh) | 一种基于gba的认证方法及装置 | |
CN101378313A (zh) | 建立安全关联的方法、用户设备和网络侧设备 | |
CN116204914A (zh) | 一种可信隐私计算方法、装置、设备及存储介质 | |
CN111404667B (zh) | 一种密钥生成方法、终端设备及网络设备 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20081203 Assignee: Apple Computer, Inc. Assignor: Huawei Technologies Co., Ltd. Contract record no.: 2015990000755 Denomination of invention: Method and device for generating local interface cryptographic key Granted publication date: 20120201 License type: Common License Record date: 20150827 |
|
LICC | Enforcement, change and cancellation of record of contracts on the licence for exploitation of a patent or utility model |