CN101822083A - Authentication method, trusted environment unit and home nodeb - Google Patents
Authentication method, trusted environment unit and home nodeb Download PDFInfo
- Publication number
- CN101822083A CN101822083A CN200980000110A CN200980000110A CN101822083A CN 101822083 A CN101822083 A CN 101822083A CN 200980000110 A CN200980000110 A CN 200980000110A CN 200980000110 A CN200980000110 A CN 200980000110A CN 101822083 A CN101822083 A CN 101822083A
- Authority
- CN
- China
- Prior art keywords
- authentication
- home enodeb
- dependable environment
- hnb
- dependable
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 84
- 230000027455 binding Effects 0.000 claims description 26
- 230000004044 response Effects 0.000 claims description 21
- 241001269238 Data Species 0.000 claims description 14
- 238000013475 authorization Methods 0.000 claims description 9
- 238000004846 x-ray emission Methods 0.000 claims description 4
- 238000004364 calculation method Methods 0.000 claims description 2
- 230000008569 process Effects 0.000 description 16
- 230000006870 function Effects 0.000 description 15
- 230000011664 signaling Effects 0.000 description 14
- 238000012795 verification Methods 0.000 description 10
- 239000013598 vector Substances 0.000 description 4
- 230000008901 benefit Effects 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 238000010295 mobile communication Methods 0.000 description 3
- 230000004807 localization Effects 0.000 description 2
- 230000007774 longterm Effects 0.000 description 2
- 235000014676 Phragmites communis Nutrition 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000001413 cellular effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 230000009977 dual effect Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000000926 separation method Methods 0.000 description 1
- 230000009870 specific binding Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000001360 synchronised effect Effects 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
Claims (19)
- Claim1st, a kind of authentication method based on Home eNodeB dependable environment, it is characterised in that including:Equipment identities certification is carried out to Home eNodeB;Authentication is carried out to the dependable environment being arranged on the Home eNodeB;Identity binding relation to the Home eNodeB and the dependable environment is authenticated;Non- authentication is carried out to the Home eNodeB;Obtain and store the non-identification authentication data of the Home eNodeB in the dependable environment.2nd, the authentication method according to claim 1 based on Home eNodeB dependable environment, it is characterized in that, non- authentication is carried out to the Home eNodeB, the non-identification authentication data for obtaining and storing the Home eNodeB is specially in the dependable environment:Authentication is carried out to user's identity module on the Home eNodeB, obtains and stores the authentication data of user's identity module in the dependable environment.3rd, the authentication method according to claim 2 based on Home eNodeB dependable environment, it is characterized in that, authentication is carried out to user's identity module on the Home eNodeB, the authentication data for obtaining and storing user's identity module is specially in the dependable environment:The identity of user's identity module is obtained by the dependable environment;User's identity module ID authentication request is sent to checking, authorization and accounting server, the identity of user's identity module and the dependable environment is carried in the request;Authentication to user's identity module and the binding relationship certification to user's identity module and the dependable environment are performed by the checking, authorization and accounting server;User's identity module authentication data is obtained from AP home registrations server, and is stored in the dependable environment.4th, the authentication method according to claim 1 based on Home eNodeB dependable environment, it is characterized in that, non- authentication is carried out to the Home eNodeB, the non-identification authentication data for obtaining and storing the Home eNodeB is specially in the dependable environment:Location-authentication is carried out to the Home eNodeB, obtains and stores the location-authentication data of the Home eNodeB in the dependable environment. 5th, the authentication method according to claim 4 based on Home eNodeB dependable environment, it is characterized in that, location-authentication is carried out to the Home eNodeB, the location-authentication data for obtaining and storing the Home eNodeB are specially in the dependable environment:Initial start request is initiated to AP home registrations server, the current location information of Home eNodeB is carried in the initial start request;Location-authentication to the Home eNodeB is performed by the AP home registrations server;The initial start response that the good business device of AP home registrations is returned is received, the positional information after certification is carried in the initial start response;Positional information after the certification is stored in the dependable environment.6th, the authentication method according to claim 1 based on Home eNodeB dependable environment, it is characterized in that, non- authentication is carried out to the Home eNodeB, the non-identification authentication data for obtaining and storing the Home eNodeB is specially in the dependable environment:Authentication is carried out to UE, obtains and stores the authentication data of the UE in the dependable environment.7th, the authentication method according to claim 6 based on Home eNodeB dependable environment, it is characterised in that to UE progress authentications, the authentication data for obtaining and storing the UE is specially in the dependable environment:Receive the UE and initiate UE certification requests, and be forwarded to the identification information that the UE is carried in checking, authorization and accounting server, the UE certification requests;Authentication is carried out to the UE by the checking, authorization and accounting server;Receive the checking, the UE authentication datas of authorization and accounting server return;The UE authentication datas are stored in the dependable environment.8th, the authentication method according to claim 1 based on Home eNodeB dependable environment, it is characterised in that after being authenticated to the identity binding relation of the Home eNodeB and the dependable environment, in addition to:The completeness of platform of Home eNodeB is authenticated.9th, a kind of authentication method based on Home eNodeB dependable environment, it is characterised in that including:Equipment identities certification is carried out to Home eNodeB; Authentication is carried out to dependable environment;Identity binding relation to the Home eNodeB and the dependable environment is authenticated;Non- authentication is carried out to the Home eNodeB by the dependable environment.10th, the authentication method according to claim 9 based on Home eNodeB dependable environment, it is characterised in that carrying out non-authentication to the Home eNodeB by the dependable environment is specially:Authentication is carried out to user's identity module on the Home eNodeB by the dependable environment.11st, the authentication method according to claim 10 based on Home eNodeB dependable environment, it is characterised in that carrying out authentication to user's identity module on the Home eNodeB by the dependable environment is specially:User's identity module initiates certification request to the dependable environment;The dependable environment initiates authentication challenge request to user's identity module, RAND and AUTN parameters are carried in the request;The cipher key calculation RES that user's identity module is stored according to it;User's identity module initiates authentication challenge response, and RES parameter is carried in the response;The dependable environment judges whether the RES is consistent with XRES value, if unanimously, generating the successful user's identity module identity authentication result of certification, otherwise generates user's identity module identity authentication result of authentification failure;User's identity module identity authentication result is returned to user's identity module by the dependable environment;User's identity module identity authentication result is notified checking, authorization and accounting server by the dependable environment.12nd, the authentication method according to claim 9 based on Home eNodeB dependable environment, it is characterised in that carrying out non-authentication to the Home eNodeB by the dependable environment is specially:Location-authentication is carried out to the Home eNodeB by the dependable environment.13rd, the authentication method according to claim 12 based on Home eNodeB dependable environment, its It is characterised by, carrying out location-authentication to the Home eNodeB by the dependable environment is specially:The Home eNodeB sends location-authentication request to the dependable environment, and the current location information of the Home eNodeB is carried in location-authentication request;The current location information and the positional information that is stored in the dependable environment are compared by the dependable environment, if unanimously, generating the successful location-authentication result of certification, otherwise generate the location-authentication result of authentification failure;The location-authentication result is notified AP home registration servers by the dependable environment.14th, the authentication method according to claim 9 based on Home eNodeB dependable environment, it is characterised in that carrying out non-authentication to the Home eNodeB by the dependable environment is specially:Authentication is carried out to UE by the dependable environment.15th, a kind of authentication method based on Home eNodeB dependable environment, it is characterised in that including:Dependable environment receives the UE ID authentication requests that UE is sent;Authentication is carried out to UE by the dependable environment.16th, the authentication method according to claim 15 based on Home eNodeB dependable environment, it is characterized in that, UE identity is carried in the UE ID authentication requests, it is described to be specially to UE progress authentications by the dependable environment:UE of the dependable environment by the UE carried in the UE ID authentication requests identity with being stored in dependable environment identity is compared, if consistent, the successful UE identity authentication results of certification are then generated, the UE identity authentication results of authentification failure are otherwise generated;The UE identity authentication results are notified checking, authorization and accounting server by the dependable environment.17th, a kind of dependable environment unit, it is characterised in that including:Authentication data memory module, the non-identification authentication data for storing Home eNodeB;Authentication module, for the non-identification authentication data of the Home eNodeB stored according to the authentication data memory module, performs the non-authentication of Home eNodeB.18th, dependable environment unit according to claim 17, it is characterised in that the authentication data memory module includes:User's identity module authentication data memory module and/or UE authentication datas are deposited Store up module and/or femtocell positions authentication data memory module.19th, dependable environment unit according to claim 17, it is characterised in that authentication module includes:User's identity module authentication module and/or femtocell positions authentication module and/or UE authentication modules.20th, a kind of Home eNodeB, it is characterised in that including a dependable environment unit, be provided with the dependable environment unit:Authentication data memory module, the non-identification authentication data for storing Home eNodeB;Authentication module, for the non-identification authentication data of the Home eNodeB stored according to the authentication data memory module, performs the non-authentication of Home eNodeB.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2009800001105A CN101822083B (en) | 2008-11-03 | 2009-06-03 | Authentication method, trusted environment unit and home nodeb |
Applications Claiming Priority (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200810175958.9 | 2008-11-03 | ||
CN200810175958A CN101827361B (en) | 2008-11-03 | 2008-11-03 | Identity authentication method, dependable environment unit and femtocell |
CN2009800001105A CN101822083B (en) | 2008-11-03 | 2009-06-03 | Authentication method, trusted environment unit and home nodeb |
PCT/CN2009/072108 WO2010060296A1 (en) | 2008-11-03 | 2009-06-03 | Authentication method, trusted environment unit and home nodeb |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101822083A true CN101822083A (en) | 2010-09-01 |
CN101822083B CN101822083B (en) | 2012-10-17 |
Family
ID=42225224
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN200810175958A Active CN101827361B (en) | 2008-11-03 | 2008-11-03 | Identity authentication method, dependable environment unit and femtocell |
CN2009800001105A Expired - Fee Related CN101822083B (en) | 2008-11-03 | 2009-06-03 | Authentication method, trusted environment unit and home nodeb |
Family Applications Before (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN200810175958A Active CN101827361B (en) | 2008-11-03 | 2008-11-03 | Identity authentication method, dependable environment unit and femtocell |
Country Status (2)
Country | Link |
---|---|
CN (2) | CN101827361B (en) |
WO (1) | WO2010060296A1 (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111865592A (en) * | 2020-09-21 | 2020-10-30 | 四川科锐得电力通信技术有限公司 | Internet of things equipment fast access method and device, Internet of things platform and storage medium |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2019017835A1 (en) * | 2017-07-20 | 2019-01-24 | 华为国际有限公司 | Network authentication method and related device and system |
WO2019196792A1 (en) | 2018-04-12 | 2019-10-17 | Oppo广东移动通信有限公司 | Security control method and apparatus for application program, and mobile terminal and computer-readable storage medium |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100770928B1 (en) * | 2005-07-02 | 2007-10-26 | 삼성전자주식회사 | Authentication system and method thereofin a communication system |
CN1933657B (en) * | 2005-09-15 | 2010-10-06 | 华为技术有限公司 | Method for resisting attack from pretended legal mobile station in RSA authentication process |
MY147557A (en) * | 2007-04-30 | 2012-12-31 | Interdigital Tech Corp | A home (e)node-b with new functionality |
-
2008
- 2008-11-03 CN CN200810175958A patent/CN101827361B/en active Active
-
2009
- 2009-06-03 WO PCT/CN2009/072108 patent/WO2010060296A1/en active Application Filing
- 2009-06-03 CN CN2009800001105A patent/CN101822083B/en not_active Expired - Fee Related
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111865592A (en) * | 2020-09-21 | 2020-10-30 | 四川科锐得电力通信技术有限公司 | Internet of things equipment fast access method and device, Internet of things platform and storage medium |
Also Published As
Publication number | Publication date |
---|---|
WO2010060296A1 (en) | 2010-06-03 |
CN101827361A (en) | 2010-09-08 |
CN101827361B (en) | 2012-10-17 |
CN101822083B (en) | 2012-10-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10716002B2 (en) | Method and system for authenticating access in mobile wireless network system | |
US11863982B2 (en) | Subscriber identity privacy protection against fake base stations | |
KR102428262B1 (en) | Method and apparatus for realizing security of connection through heterogeneous access network | |
EP4089977B1 (en) | Key acquisition method and device | |
JP5992554B2 (en) | System and method for authenticating a second client station using first client station credentials | |
AU2005236981B2 (en) | Improved subscriber authentication for unlicensed mobile access signaling | |
CN102396203B (en) | According to the urgent call process of the verification process in communication network | |
CN109804651A (en) | It is attached by the core network of independent non-3GPP access network | |
US20080108321A1 (en) | Over-the-air (OTA) device provisioning in broadband wireless networks | |
CN108012264A (en) | The scheme based on encrypted IMSI for 802.1x carriers hot spot and Wi-Fi call authorizations | |
WO2009065347A1 (en) | Security communication method, system and apparatus for home base-station | |
US20220295276A1 (en) | Mobile device authentication without electronic subscriber identity module (esim) credentials | |
WO2007097101A1 (en) | Radio access system and radio access method | |
WO2007102702A2 (en) | Fast re-authentication method in umts | |
CN110249648A (en) | The system and method for session establishment executed by unauthenticated user equipment | |
MX2014015848A (en) | Method, apparatus, and system for accessing mobile network. | |
CN101945390B (en) | Admission control method and device | |
WO2019007476A1 (en) | Secure communications using network access identity | |
CN113115300B (en) | Electronic subscriber identity module transfer qualification | |
CN101822083A (en) | Authentication method, trusted environment unit and home nodeb | |
US9532218B2 (en) | Implementing a security association during the attachment of a terminal to an access network | |
CN102685742B (en) | A kind of WLAN access authentication method and device | |
WO2008148348A1 (en) | Communication method, system, and home bs | |
JP2024517897A (en) | Method, device and storage medium for authentication of NSWO services | |
US20210021433A1 (en) | Digital letter of approval (dloa) for device compliance |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20170804 Address after: 510640 Guangdong City, Tianhe District Province, No. five, road, public education building, unit 371-1, unit 2401 Patentee after: Guangdong Gaohang Intellectual Property Operation Co., Ltd. Address before: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen Patentee before: Huawei Technologies Co., Ltd. |
|
CB03 | Change of inventor or designer information |
Inventor after: Ma Zhenyu Inventor before: Wang Shaobin Inventor before: Zhang Ning Inventor before: Ding Xiaoyan Inventor before: Li Qian |
|
CB03 | Change of inventor or designer information | ||
TR01 | Transfer of patent right |
Effective date of registration: 20170907 Address after: 056000, 23, south Ling Road, Fuxing District, Hebei, Handan Patentee after: Ma Zhenyu Address before: 510640 Guangdong City, Tianhe District Province, No. five, road, public education building, unit 371-1, unit 2401 Patentee before: Guangdong Gaohang Intellectual Property Operation Co., Ltd. |
|
TR01 | Transfer of patent right | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20121017 Termination date: 20180603 |
|
CF01 | Termination of patent right due to non-payment of annual fee |