CN1192649C - Method for sending cipher information to mobile terminal in mobile communication system - Google Patents
Method for sending cipher information to mobile terminal in mobile communication system Download PDFInfo
- Publication number
- CN1192649C CN1192649C CN02116600.5A CN02116600A CN1192649C CN 1192649 C CN1192649 C CN 1192649C CN 02116600 A CN02116600 A CN 02116600A CN 1192649 C CN1192649 C CN 1192649C
- Authority
- CN
- China
- Prior art keywords
- portable terminal
- encrypted message
- message
- communication system
- mobile communication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Abstract
The present invention relates to a method for sending cipher information to a mobile terminal in a mobile communication system. The method comprises the following steps: firstly, a network side in a mobile communication system respectively leads cipher information which needs to be sent to a plurality of mobile terminals to be encrypted by adopting a public cipher key encryption mechanism; then, the cipher information which is encrypted is encapsulated, and information packets which are encapsulated are sent to each mobile terminal in a broadcast/multicast mode; finally, the mobile terminal adopts a private cipher key to decipher the cipher information which is received and is encrypted, and corresponding cipher information can be obtained. In the present invention, a piece of connection needs to be established between a cipher key control node and the mobile terminal, and the cipher information can be sent to a plurality of mobile terminals. The cipher information is encrypted, the private cipher key deciphers the cipher information, and a corresponding service cipher can be obtained by the mobile terminal. The present invention has the advantages that bandwidth resources and channel resources in the mobile communication system are saved, and the load of a network node is reduced.
Description
Technical field
The present invention relates to moving communicating field (GSM/WCDMA/CDMA), relate in particular to the method that sends encrypted message in a kind of mobile communication system to portable terminal.
Background technology
In mobile communications network, to need communication network be that it sends corresponding business password to portable terminal in order to finish specific transactions, comprise renewal to user's corresponding business password, for example carry out the renewal of the professional password of MBMS (multimedia broadcast/multi broadcast system), MBMS is professional owing to be charging item, so need encrypt transmission, as user when arrearage occurring, network more new password forbids that this user continues to receive corresponding message.At present, mobile communications network need carry out professional password when sending, and at first need set up point-to-point the connection between network side and portable terminal, carries out the transmission of encrypted message by the connection of setting up then, as shown in Figure 1.Like this, the password distribution module need need receive between the portable terminal of password with each and set up point-to-point the connection, to realize that being respectively each portable terminal sends password.
By above-mentioned prior art as can be seen, there is following shortcoming in the method to portable terminal transmission password that is adopted in the mobile communication system at present: 1, need set up many connections simultaneously at the network side of mobile communication system, when the user is a lot of in the system, can reduce the performance of network node, influence normally carrying out of network service; 2, connect the message that sends by each and all have independently message packet header, the bandwidth resources of having wasted communication network widely; 3, at the wireless air interface of mobile communication system, be required to be each portable terminal set up a place independently air traffic channel carry out the transmission of message, wasted the limited wireless communication resource.
Summary of the invention
The sending method that the purpose of this invention is to provide encrypting messages in a kind of mobile communication system is so that the network side in the mobile communication system can send encrypted message to portable terminal reliably under the situation of saving wireless communication resources.
The object of the present invention is achieved like this: send the method for encrypted message in the mobile communication system to portable terminal, comprising:
(1) network side will need to adopt public key encryption mechanism to encrypt respectively to the encrypted message that a plurality of portable terminals send in the mobile communication system;
(2) encrypted message after will encrypting encapsulates, and the message bag after the encapsulation sends to each portable terminal by multimedia broadcast/multi broadcast business;
(3) encrypted message after portable terminal adopts private cipher key to the encryption that receives is decrypted, and obtains corresponding encrypted message.
Message bag after the described encapsulation can comprise: the encrypted message length field of portable terminal identify label field, portable terminal and encrypted message content field.
Message bag after the described encapsulation can also comprise: the encrypted message content field of portable terminal identify label field and portable terminal.
Described step (3) comprising:
(41) portable terminal receives the encrypted message after corresponding encryption the in the message bag according to the identify label of portable terminal:
(42) portable terminal adopts private cipher key that the encrypted message after encrypting is decrypted, and obtains corresponding encrypted message.
By technique scheme as can be seen, adopted multimedia broadcast/multi broadcast business to carry out the distribution of encrypted message to portable terminal among the present invention in the mobile communication system, the encrypted message utilization PKI mechanism that is sent is encrypted it, can receive encrypted message separately safely to guarantee each customer mobile terminal.Referring to Fig. 2, among the present invention the password distribution module be the cipher controlled node with portable terminal between only need to set up one and be connected, promptly can carry out the transmission of a plurality of portable terminal encrypted messages, the encrypted message of all portable terminals all is packaged together and sends to portable terminal by same connection, equally, wireless air interface also only needs to set up a broadcast or multicast channel, and all portable terminals just can receive corresponding encrypted message by this channel.In addition, for the information that guarantees certain portable terminal is not stolen by other portable terminals, also the encrypted message of each portable terminal has all been done encryption among the present invention, portable terminal has only the private cipher key by separately to be decrypted operation can obtain required separately encrypted message.Therefore, the present invention can save network side bandwidth resources and radio channel resource in the mobile communication system effectively, and can reduce the load of network node.
Description of drawings
Fig. 1 is the encrypted message sending method schematic diagram of point-to-point connection;
Fig. 2 is a multicast encrypted message send mode schematic diagram;
Fig. 3 is a public key encryption process schematic diagram;
Fig. 4 is for encrypting the message packet format A after encapsulating:
Fig. 5 is for encrypting the message packet format B after encapsulating;
Fig. 6 is for upgrading the processing procedure schematic diagram of the professional password of h4 field MS.
Embodiment
The public key encryption method is a kind of asymmetric encryption mechanism, and each portable terminal (being the user) has two keys, and one is called PuKey (public-key cryptography), and another is called PrKey (private cipher key); Public key encryption mechanism as shown in Figure 3, have between two user UserA and the UserB and communicate, UserA is when sending cleartext information, use the PuKey of UserB that information is carried out cryptographic operation, information after the encryption sends UserB to by network, and UserB can obtain cleartext information after using the PrKey of oneself that information is decrypted after receiving cipher-text information.
Method to portable terminal transmission encrypted message in the mobile communication system provided by the present invention adopts above-mentioned encryption mechanism that the encrypted message that is sent is encrypted just.
At first, utilize public key encryption that need are encrypted to the encrypted message that portable terminal sends, and the operation of packing of the encrypted message after will encrypting; Each portable terminal all has PrKey and two keys of PuKey, and PuKey is a public information, preserves the PuKey of each portable terminal in the communication network, and network can utilize the PuKey of each portable terminal that the encrypted message that needs send is encrypted; And PrKey is preserved by portable terminal oneself, is used for the information that portable terminal receives is decrypted;
Then, again the encrypted message after a plurality of encryptions being formed a multimedia broadcast/multi broadcast message bag sends; Referring to Fig. 4, this message bag comprises: be used to define each user message the mobile terminal message length field, be used for the mobile terminal message that portable terminal ID (identify label) and being used to that portable terminal receives the encrypted message of oneself carries the encrypted message after the encryption, wherein user ID and message-length are non-encrypting messages, and for fail safe, the mobile terminal message content is encrypted and is adopted public key mechanisms to realize through encrypting; As shown in Figure 4, encrypt carried respectively in the message bag after the encapsulation need send to user A, user B ..., user N user ID, user message length and user message.
At last, portable terminal just can utilize the private cipher key of oneself to obtain corresponding encrypted message according to the ID of oneself, thereby the network side of acquisition mobile communication system sends to the professional password of this portable terminal.
If only transmit password in each mobile terminal message, and Password Length is identical, then the mobile terminal message length field in the message bag can be saved, make the message bag only comprise portable terminal id field and mobile terminal message field, as shown in Figure 5, the message bag that is sent only carried need send to user A, user B ..., user N user ID and encrypt after encrypted message.
The present invention can be applicable to the renewal of the professional password of MBMS, concrete renewal processing procedure as shown in Figure 6, at first, SGSN (service GPRS service node) obtains each user's public key information from the cipher controlled node, when MBSC (multimedia broadcast/multi broadcast business center) when SGSN sends out MBMS key updating message, have new key information in this message, SGSN then carries out cryptographic operation with each user's of same MBMS group PKI to new key, and generation key updating multicast message, this key updating multicast message is handed down to MS (portable terminal) by RNC (radio network controller), so far just finishes the course of work of a password update.Portable terminal may miss the password update message that network issues, for example out of reach or shutdown sometimes; When portable terminal can't normally receive business, multicast channel information as the MBMS of portable terminal, portable terminal can be initiated the password update request to network side, network can send to the user with the password through encryption after upgrading after receiving this update request, the password of portable terminal after to the encryption of receiving is decrypted and can obtains new password, as shown in phantom in Figure 6.
Claims (4)
1, send the method for encrypted message in a kind of mobile communication system to portable terminal, comprising:
(1) network side will need to adopt public key encryption mechanism to encrypt respectively to the encrypted message that a plurality of portable terminals send in the mobile communication system;
(2) encrypted message after will encrypting encapsulates, and the message bag after the encapsulation sends to each portable terminal by multimedia broadcast/multi broadcast business;
(3) encrypted message after portable terminal adopts private cipher key to the encryption that receives is decrypted, and obtains corresponding encrypted message.
2, send the method for encrypted message in the mobile communication system according to claim 1 to portable terminal, it is characterized in that the message bag after the described encapsulation comprises: the encrypted message length field of portable terminal identify label field, portable terminal and encrypted message content field.
3, send the method for encrypted message in the mobile communication system according to claim 1 to portable terminal, it is characterized in that the message bag after the described encapsulation comprises: the encrypted message content field of portable terminal identify label field and portable terminal.
4, according to the method that sends encrypted message in claim 2 or the 3 described mobile communication system to portable terminal, it is characterized in that described step (3) comprising:
(41) portable terminal receives the encrypted message after corresponding encryption the in the message bag according to the identify label of portable terminal:
(42) portable terminal adopts private cipher key that the encrypted message after encrypting is decrypted, and obtains corresponding encrypted message.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN02116600.5A CN1192649C (en) | 2002-04-12 | 2002-04-12 | Method for sending cipher information to mobile terminal in mobile communication system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN02116600.5A CN1192649C (en) | 2002-04-12 | 2002-04-12 | Method for sending cipher information to mobile terminal in mobile communication system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1452418A CN1452418A (en) | 2003-10-29 |
| CN1192649C true CN1192649C (en) | 2005-03-09 |
Family
ID=29221000
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN02116600.5A Expired - Fee Related CN1192649C (en) | 2002-04-12 | 2002-04-12 | Method for sending cipher information to mobile terminal in mobile communication system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1192649C (en) |
Families Citing this family (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7747017B2 (en) * | 2004-12-01 | 2010-06-29 | Motorola, Inc. | Method and apparatus for end-to-end clear transport protocol |
| CN101198011B (en) * | 2006-12-07 | 2010-09-29 | 中兴通讯股份有限公司 | Method for transmitting condition receiving information in mobile multimedia broadcasting network |
| CN101203025B (en) * | 2006-12-15 | 2010-11-10 | 上海晨兴电子科技有限公司 | Method for transmitting and receiving safe mobile message |
| US8208637B2 (en) * | 2007-12-17 | 2012-06-26 | Microsoft Corporation | Migration of computer secrets |
| CN101325494B (en) * | 2008-07-28 | 2011-08-03 | 华为终端有限公司 | Method and device for protecting private information |
| CN101640840B (en) * | 2008-08-01 | 2013-03-13 | 上海贝尔阿尔卡特股份有限公司 | Broadcast or multicast-based safe communication method and broadcast or multicast-based safe communication device |
| CN113824555B (en) * | 2021-09-13 | 2024-03-19 | 渔翁信息技术股份有限公司 | Key processing method and device |
-
2002
- 2002-04-12 CN CN02116600.5A patent/CN1192649C/en not_active Expired - Fee Related
Also Published As
| Publication number | Publication date |
|---|---|
| CN1452418A (en) | 2003-10-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP4270874B2 (en) | Method and apparatus for header compression in a wireless communication system | |
| KR101357026B1 (en) | Air-interface application layer security for wireless networks | |
| US20020141391A1 (en) | Method and apparatus for data transport in a wireless communication system | |
| EP2043397B1 (en) | Apparatus and method for communicating information over management channels | |
| WO2012083828A1 (en) | Method, base station and system for implementing local routing | |
| KR20030088049A (en) | Method and apparatus for transmission framing in a wireless communication system | |
| CN1192649C (en) | Method for sending cipher information to mobile terminal in mobile communication system | |
| EP1292166A1 (en) | Mobile communication system | |
| US20100031015A1 (en) | IP Network Communication Method Having Security Function, And Communication System | |
| JP5087779B2 (en) | Communication module, program, and communication terminal | |
| CN101174943A (en) | Synchronization process and system for data safety | |
| WO2023155516A1 (en) | Data segment decryption method and apparatus in 5g communication | |
| CN1138366C (en) | Network structure suitable for encryption at terminals of mobile communication system and its implementation method | |
| CN1777324A (en) | Cipher management method suitable for multimedia broadcasting and multcast service | |
| WO2023005929A1 (en) | Communication method and apparatus | |
| CN1812366A (en) | Method for realizing wireless local network virtual insertion point to-point communication | |
| Assaf et al. | Interworking between IP security and performance enhancing proxies for mobile networks | |
| CN100388851C (en) | Method of initial vector generation, transmission, and synchronization of digital cellular mobile communication system | |
| CN1801704A (en) | Method and system for user access core network | |
| Chaudhry et al. | Power optimized secure Bluetooth communication | |
| CN1764108A (en) | Method for controlling start of encryption process | |
| CN1371082A (en) | Method and mobile device for end-to-end enciphere | |
| KR20070080059A (en) | Method for transmitting data of rlc layer in mobile communication system | |
| CN105025476A (en) | Time-space separated mobile encryption communication mechanism | |
| CN101237375A (en) | A method and system for establishing tunnel upon forward link service access network switching |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20050309 Termination date: 20200412 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |