CN1575563A - System and method for performing mutual authentication between mobile terminal and server - Google Patents

System and method for performing mutual authentication between mobile terminal and server Download PDF

Info

Publication number
CN1575563A
CN1575563A CNA028212797A CN02821279A CN1575563A CN 1575563 A CN1575563 A CN 1575563A CN A028212797 A CNA028212797 A CN A028212797A CN 02821279 A CN02821279 A CN 02821279A CN 1575563 A CN1575563 A CN 1575563A
Authority
CN
China
Prior art keywords
server
key
terminal
authentication
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CNA028212797A
Other languages
Chinese (zh)
Other versions
CN100361436C (en
Inventor
安泰孝
尹灿皓
郑允弼
朴赞民
韩相宇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
KTFreetel Co Ltd
Original Assignee
KTFreetel Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from KR10-2001-0066359A external-priority patent/KR100462044B1/en
Priority claimed from KR10-2002-0028432A external-priority patent/KR100449572B1/en
Application filed by KTFreetel Co Ltd filed Critical KTFreetel Co Ltd
Publication of CN1575563A publication Critical patent/CN1575563A/en
Application granted granted Critical
Publication of CN100361436C publication Critical patent/CN100361436C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • H04L9/3273Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/71Hardware identity

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The present invention relates to system and method for performing mutual authentication between mobile terminal and server. Server and mobile terminal have particular information of the mobile terminal in common, and use predetermined authentication information generating algorithm which requests random number and particular information of the mobile terminal as input data. Each of server and mobile terminal challenges the other with random number, and determines authenticity of the other side by the response to the challenge. By the authentication process and using it mutually, the server and mobile terminal can be mutually authenticated and then data transmitted by the server or mobile terminal can be authenticated. Thereby, the transmission to unjust mobile terminal and the transmission from unjust server can be protected. And by including random number and authentication information within data transmission procedure, protection from unjust transmission can be achieved with minimum of information and a simple procedure.

Description

Between portable terminal and server, carry out the system and method for authentication mutually
Invention field
The present invention relates to inter-authentication method and system between portable terminal and the server, be specifically related between portable terminal and server, carry out the method and system of authentication mutually for safety sends data.
Background of invention
Along with commercial affairs to various continuous expansion and the corresponding techniques progress that enliven the field, the use fast development of mobile communication business.It is a prelude that transfer of data between mobile communication system and the terminal is authenticated.
For example, mobile communication system comprises and is used for the HLR (HomeLocation Register attaching position register) of managing mobile terminal Global Information, be used for managing a VLR (Visitor Location Register Visited Location Registor) of the information of the portable terminal that enters service area, be used for setting up and manage a MSC (Mobile SwitchingCenter mobile switching centre) in a voice path or non-voice path, and be used for terminal is carried out an AC (AuthenticationCenter authentication center) who authenticates with HLR and VLR.
Yet there are some problems in the mobile communication business of current use to the authentication validated user or on the ownership verification procedures of transmission server.
In order to send data to terminal, can adopt such as the whole bag of tricks such as SMS equipment or data PUSH business from mobile communication system.
In the middle of these methods, a kind of method by IP agreement use data service transmission data is arranged, need the mutual authentication of terminal and transmission server according to the isolation of conventional voice network and data network.
If portable terminal is connected to BTS, even by because of using the wireless environment that the known ESN of terminal and network and long code camouflage and long code scramble are opened to the outside world also can send voice data safely by Traffic Channel.
A special code of each terminal is distributed in electronic serial number (ESN) expression, terminal manufacturer just is notified to the mobile communication business supplier with this code when producing terminal, the definition of scramble is jammer signal or conversation, carries out decoding when avoiding receiver outside the specific receiver to receive signal or conversation.
Specifically, if an equipment receives image or data from communication satellite, any receiver can both receive; Yet, if provide image or data, or send the confidential data of a company by way of paying, can only receive data by the individuality that the data that send is had encoding/decoding apparatus with regard to requiring.In a word, signal must pass through coding/upset just " scramble ".
Yet; when the user uses wireless data service; the long code scramble of Traffic Channel can only be protected the PPP dialogue by IWF (Inter-Working Function IWF) or PSDN (Packet Data Service Node group data service node), still is difficult to limit unwarranted server or terminal are used to the malice of the data of the open environment transmission of IP network.
Because the IP address pool is MIN (Mobile Identification Number moves identification number) or the ESN that distributes, a MIN (MobileIdentification Number) or ESN can not be given by regular allocation in the irregular IP address of IP address pool; That is to say that they are Random assignments when filed a request in the IP address, therefore, do not have any relation between IP address and the MIN/ESN.
Summary of the invention
The objective of the invention is between portable terminal and server, to provide a kind of inter-authentication method and system, allow portable terminal and server to authenticate end value and a random number of producing because of the ESN that uses portable terminal mutually and authenticate mutually, thereby send data safely.
Secondly, another object of the present invention is a kind of inter-authentication method and the system of providing between portable terminal and server, can reduce the additional authentication data total amount that the authentication information in the complementary field of packet is handled, thereby simplifies authentication procedure.
The 3rd, another object of the present invention is a kind of inter-authentication method and the system of providing between portable terminal and server, by authentication information being encoded and carrying out mutual authentication procedure and effectively limit third-party malice illegal act between portable terminal and mobile communication system.
The 4th, another object of the present invention is a kind of inter-authentication method and the system of providing between portable terminal and server, keep stable mobile communication system by setting up a kind of fair trend of mobile service of using, for example be restriction and forbid illegally using mobile service, in order to avoid validated user payment extra charge is to remedy revenue loss.
The 5th, another object of the present invention is a kind of inter-authentication method and the system of providing between portable terminal and server, uses a preliminary authenticate key to produce a plurality of authenticate keys.
At last, another object of the present invention is a kind of inter-authentication method and the system of providing between portable terminal and server, and corresponding a plurality of authenticate keys are carried out a plurality of authentication procedures.
To achieve these goals, may further comprise the steps, from the input of user's reception data transfer request according to the method that most preferred embodiment of the present invention provided; In portable terminal according to the spontaneous random number of preordering method; Producing algorithm according to a predetermined authentication information uses the customizing messages of random number and portable terminal to produce authentication information as input; Extract the interior included terminal authentication key of presumptive area in the authentication information that is produced; And send data, random number and terminal authentication key to data transfer server.System and computer-readable medium are also provided according to another aspect of the present invention.
The customizing messages of portable terminal comprises ESN (Electronic Serial Number electronic serial number), MIN (Mobile Identifacation Number moves identification number), be stored in the private number among the NAM (NumberAssignment Module Number Assignment Module), an authenticate key (Authentication Key) that uses at the cdma network that is used for authenticating, SSD (Shared Secret Data shares private data), and by a secret number of user registration.
The step that sends data, random number and terminal authentication key to data transfer server is such step, is sending to data transfer server with data, random number with after the terminal authentication key conversion becomes predetermined format.
Further comprising the steps of according to the method that most preferred embodiment of the present invention provided, receive data, random number and terminal authentication key from portable terminal; Extract the customizing messages of the portable terminal of storage in advance; Producing algorithm according to predetermined authentication information uses the customizing messages of random number and portable terminal to produce authentication information as input; Extract the interior included server authentication key of presumptive area in the authentication information that is produced; And when conforming to the server authentication key, the terminal authentication key carries out corresponding the operation of data purposes.System and computer-readable medium are also provided according to another aspect of the present invention.
Further comprising the steps of according to the method that most preferred embodiment of the present invention provided, deposit the data that will send to portable terminal; According to the spontaneous random number of preordering method; Producing algorithm by predetermined authentication information uses the customizing messages of random number and portable terminal to produce authentication information as input; The included first server authentication key in the first area that extraction is selected from least one presumptive area of authentication information; Send data awaiting transmission data, random number and the first server authentication key to portable terminal; Included terminal authentication key and to depositing the transmission request of data in the second area that reception is selected from least one presumptive area; Included second server authenticate key in the second area that extraction is selected from least one presumptive area of authentication information; Check whether the terminal authentication key conforms to the second server authenticate key; And when conforming to the second server authenticate key, the terminal authentication key sends the data of depositing to portable terminal by network.System and computer-readable medium are also provided according to another aspect of the present invention.
The step that sends data awaiting transmission data, random number and the first server authentication key to portable terminal is such step, is sending to portable terminal with data awaiting transmission data, random number with after the first server authentication key conversion becomes predetermined format.
Further comprising the steps of according to the method that most preferred embodiment of the present invention provided, receive data awaiting transmission data, random number and server authenticate key from data transfer server; Producing algorithm by predetermined authentication information uses the customizing messages of random number and portable terminal to produce authentication information as input; The included first terminal authentication key in the first area that extraction is selected from least one presumptive area of authentication information; Check whether the first terminal authentication key conforms to the server authentication key; If the first terminal authentication key conforms to the server authentication key, just extract the second included terminal authentication key in the second area of from least one presumptive area of authentication information, selecting; Send the second terminal authentication key and corresponding a data transfer request of data awaiting transmission data by network to data transfer server; And receive data from data transfer server by network.System and computer-readable medium are also provided according to another aspect of the present invention.
Further comprising the steps of according to the method that most preferred embodiment of the present invention provided, receive the first server authentication request that comprises a server random number and the first server authentication key from transmission server; Customizing messages with server random number and corresponding portable terminal produces the second server authenticate key; At first authenticate transmission server with the first server authentication key and second server authenticate key; The customizing messages of terminal random number that produces with portable terminal and corresponding portable terminal produces the first terminal authentication key; Send the terminal authentication request that comprises the terminal random number and the first terminal authentication key to transmission server; Receive the second server authentication request of the 3rd server authentication key formation that produces with terminal random number and customizing messages from transmission server; Produce the 4th server authentication key with terminal random number and customizing messages; And authenticate transmission server once more with the 3rd server authentication key and the 4th server authentication key.System and computer-readable medium are also provided according to another aspect of the present invention.
Customizing messages wherein comprises ESN (Electronic Serial Number electronic serial number), MIN (Mobile Identifacation Number moves identification number), be stored in the private number among the NAM (NumberAssignment Module Number Assignment Module), an A-key (Authentication Key) that uses at the cdma network that is used for authenticating, SSD (Shared Secret Data shares private data), and by a secret number of user registration.
Transmission server wherein authenticates portable terminal with the first terminal authentication key and the second terminal authentication key that transmission server produces.
Transmission server produces the first server authentication key according to the following steps: produce the server random number; From the database that is connected to transmission server, extract customizing messages; Produce the preliminary authenticate key in 2n position with server random number and customizing messages; And from preliminary authenticate key, extract the n position according to preordering method, the n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally, and the second terminal authentication key wherein is made up of the residue n position except that the n position that is extracted in the first step.
Produce the second server authenticate key according to the following steps: from the first server authentication request, extract the server random number; Extraction is stored in the customizing messages in the memory of portable terminal; Produce the preliminary authenticate key in 2n position with server random number and customizing messages; And from preliminary authenticate key, extract the n position according to preordering method, the n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally, and the first terminal authentication key wherein is made up of the residue n position except that the n position that is extracted in the first step.
Transmission server produces the 3rd server authentication key according to the following steps: produce the preliminary authenticate key in 2n position with terminal random number and customizing messages; And from preliminary authenticate key, extract the n position according to preordering method, the n position of extraction is n low level or n high position of extracting from the preliminary authenticate key of 2n position equally.
Produce the 4th server authentication key according to the following steps: produce the preliminary authenticate key in 2n position with terminal random number and customizing messages; And from preliminary authenticate key, extract the n position according to preordering method, the n position of extraction is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally.
The first server authentication request further comprises the data locating information, and the terminal authentication request further comprises the data locating information, and the second server authentication request also comprises data.
May further comprise the steps according to the method that most preferred embodiment of the present invention provided, produce the first server authentication key with the customizing messages of server random number and corresponding portable terminal; Generation comprises the first server authentication request of the server random number and the first server authentication key; Send the first server authentication request to portable terminal; From portable terminal receiving terminal authentication request; Produce the second terminal authentication key with the first server authentication key; Authenticate portable terminal with the first terminal authentication key and the second terminal authentication key; Produce the 3rd server authentication key with terminal random number and customizing messages; Send the second server authentication request that comprises the 3rd server authentication key to portable terminal.System and computer-readable medium are also provided according to another aspect of the present invention.
Customizing messages wherein comprises ESN (Electronic Serial Number electronic serial number), MIN (Mobile Identifacation Number moves identification number), be stored in the private number among the NAM (NumberAssignment Module Number Assignment Module), an A-key (Authentication Key) that uses at the cdma network that is used for authenticating, SSD (Shared Secret Data shares private data), and by a secret number of user registration.
The second server authenticate key that first server authentication key that comprises in the used for mobile terminal first server authentication request wherein and portable terminal produce authenticates transmission server.
Terminal authentication request wherein comprises the terminal random number and the first terminal authentication key that is produced by portable terminal.
The 4th server authentication key that the 3rd server authentication key that comprises in the used for mobile terminal second server authentication request wherein and portable terminal produce authenticates transmission server once more.
The first server authentication key produces according to the following steps: produce the server random number; From the database that is connected to transmission server, extract customizing messages; Produce the preliminary authenticate key in 2n position with server random number and customizing messages; And from preliminary authenticate key, extract the n position according to preordering method, the n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally, and the second terminal authentication key wherein is made up of the residue n position except that the n position that is extracted in the first step.
Portable terminal produces the second server authenticate key according to the following steps: extract the server random number from the first server authentication request; Extraction is stored in the customizing messages in the memory of portable terminal; Produce the preliminary authenticate key in 2n position with server random number and customizing messages; And from preliminary authenticate key, extract the n position according to preordering method, the n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally, and the first terminal authentication key wherein is made up of the residue n position except that the n position that is extracted in the first step.
The 3rd server authentication key produces according to the following steps: produce the preliminary authenticate key in 2n position with terminal random number and customizing messages; And from preliminary authenticate key, extract the n position according to preordering method, the n position of extraction is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally.
Portable terminal produces the 4th server authentication key according to the following steps: produce the preliminary authenticate key in 2n position with terminal random number and customizing messages; And from preliminary authenticate key, extract the n position according to preordering method, the n position of extraction is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally.
The first server authentication request further comprises the data locating information, and the terminal authentication request further comprises the data locating information, and the second server authentication request also comprises data.
Further comprising the steps of according to the method that most preferred embodiment of the present invention provided, produce a random number; Extract corresponding the customizing messages of portable terminal; Produce the preliminary authenticate key in 2n position with random number and customizing messages; From preliminary authenticate key, extract the n position and produce the first terminal authentication key according to preordering method; And extraction is not included in the n position in the first terminal authentication key and produces the second terminal authentication key from preliminary authenticate key, and two terminal authentication keys are wherein produced by a preliminary authenticate key.System and computer-readable medium are also provided according to another aspect of the present invention.
Description of drawings
Fig. 1 is a block diagram according to the secure data transmission system of most preferred embodiment of the present invention between data transfer server and portable terminal.
Fig. 2 is a block diagram according to the authentication center of most preferred embodiment of the present invention.
Fig. 3 is a flow chart according to the safety data transmission method of most preferred embodiment of the present invention when portable terminal sends data.
Fig. 4 A represents to produce algorithm according to a kind of authentication information of most preferred embodiment of the present invention.
Fig. 4 B represents to bear results according to the authentication information of most preferred embodiment of the present invention.
Fig. 5 is a flow chart according to the safety data transmission method of most preferred embodiment of the present invention when mobile communication system sends data.
Fig. 6 is the block diagram according to the secure data transmission system of another most preferred embodiment of the present invention.
The flowcharting of Fig. 7 is used for producing the method for authenticate key according to another most preferred embodiment of the present invention.
The flowcharting of Fig. 8 A is used for the group method of authentication mutually according to another most preferred embodiment of the present invention from transmission server when terminal sends data.
The flowcharting of Fig. 8 B is according to the first server authentication program of another most preferred embodiment of the present invention from the process of Server Transport data.
The flowcharting of Fig. 8 C is according to the terminal authentication program of another most preferred embodiment of the present invention from the process of Server Transport data.
The flowcharting of Fig. 8 C is according to the terminal authentication program of another most preferred embodiment of the present invention from the process of Server Transport data.
Fig. 9 A represents according to multiple authenticate key of the present invention.
Fig. 9 B is according to the first preliminary authenticate key of another most preferred embodiment of the present invention and the block diagram of the second preliminary authenticate key.
Fig. 9 C is according to the 3rd preliminary authenticate key of another most preferred embodiment of the present invention and the block diagram of the 4th preliminary authenticate key.
The flowcharting of Figure 10 is used for the method for authentication mutually according to another most preferred embodiment of the present invention from the process of terminal transmission data.
Figure 11 A represents according to the first server authentication request signal of another most preferred embodiment of the present invention from the process of transmission server transmission data.
Figure 11 B represents according to the terminal authentication request signal of another most preferred embodiment of the present invention from the process of transmission server transmission data.
Figure 11 C represents according to the second server authentication request signal of another most preferred embodiment of the present invention from the process of transmission server transmission data.
Figure 11 D represents according to the terminal authentication request signal of another most preferred embodiment of the present invention from the process of terminal transmission data.
Figure 12 A represents to produce in cdma network according to an embodiment more of the present invention the program of authentication information.
Figure 12 B represents to produce in cdma network according to an embodiment more of the present invention the program of authentication value.
The flowcharting of Figure 13 is according to an embodiment more of the present invention authentication procedure in mobile communication system from the process of portable terminal transmission data.
The flowcharting of Figure 14 is according to an embodiment more of the present invention authentication procedure in mobile communication system from the process of mobile communication system transmission data.
<be used for discerning the list of reference numerals of major part in the accompanying drawing 〉
100: portable terminal
110: mobile communication system
120:BTS
125:BSC
130:MSC
135:HLR
140:VLR
145: authentication center
150: communications portion
155: control section
160: random number produces part
165: conversion fraction
170: rating unit
610: transmission server
913: the first server authentication keys
917: the second server authenticate key
923: the three server authentication keys
927: the four server authentication keys
933: the first terminal authentication keys
937: the second terminal authentication keys
Embodiment
Below to describe most preferred embodiment of the present invention with reference to the accompanying drawings.
According to terminal of the present invention can be portable terminal and the communication equipment that can carry out data communication such as PDA (personal digital assistant) etc. by network.In addition, if any equipment outside the use portable terminal, data transfer server can be any system outside the mobile communication system; Yet why the present invention adopts portable terminal and mobile communication system to be described only is for convenience of explanation.
Fig. 1 is a block diagram according to the secure data transmission system of most preferred embodiment of the present invention between data transfer server and portable terminal.Fig. 2 is a block diagram according to the authentication center of most preferred embodiment of the present invention.
Referring to Fig. 1, data transmission system has portable terminal 100 and mobile communication system 110.Mobile communication system 110 has base station transceiver (BTS) 120, base station controller (BSC) 125, mobile switching centre (MSC) 130, Home Location Register (HLR) 135,140 and authentication centers 145 of visitor location register (VLR).
Below to briefly describe with reference to Fig. 1 according to the secure data transmission system of the present invention between data transfer server and portable terminal.
When portable terminal 100 when BTS 120 sends the presumptive area of the relevant authentication information that produces recently for transfer of data and is used for producing the random number of authentication information, be sent to MSC 130 by the authentication request data (just random number and authentication information partly) of BSC 120 receptions by BSC 125.
MSC 130 extracts the information of portable terminals from VLR 140, and extracts corresponding mobile terminal user information from HLR 135.MSC 130 also sends information of mobile terminal (for example being ESN or MIN) and the user profile of extracting to authentication center 145, and the authentication request data.
Referring to Fig. 2, authentication center 145 has communications portion 145, communications portion 150, and control section 155, random number produces part 160, conversion fraction 165 and rating unit 170.
Can there be several autonomous devices in authentication center 145, yet preferably the form with computer program realizes authentication center 145.In portable terminal 100, also can realize authentication center 145 by same form.
Follow when the authentication request data from MSC 130 mobile terminal receive information and user profile in communications portion 150, the conversion fraction 165 of controlled part 155 controls produces function and produces authentication information by information of mobile terminal and random number being input to predetermined authentication information.
Rating unit 170 is compared the authentication information that conversion fraction 165 produces with the authentication information that receives from MSC 130, check its consistency, and determines thus whether portable terminal 100 is effective.
After comparing through rating unit 170, the communications portion 150 of controlled part 155 controls just sends the result data by MSC 130 to portable terminal 100, thus the end authentication procedure.
Otherwise when portable terminal 100 sent data, portable terminal 100 was carried out same program at mobile communication terminal 110, and conversion fraction 165 can produce authentication information to produce random number for random number produces part 160.
According to the present invention as mentioned above, be easy to determine that portable terminal or transmission server (it can be an element of portable terminal or the element of other ISP) are effective portable terminal or transmission server.
According to the present invention, the server or the terminal of some kinds invalid (just unusual) can be described in following example.Invalid server can be defined as the server that sends advertisement, although advertisement also is reliable information (for example information that is in fact provided by ISP or other user), trial sends the server of virus to terminal, this can do great damage in network access information (for example Zui Jia roaming catalogue, wireless Internet address of service server or the like).
Inactive terminals can be defined as trial to the portable terminal that other user transmits illegal operation exchange, also has by stealing the sort of portable terminal that other user's information is stolen in relevant stored information or the like trial.
Below will be with reference to the safety data transmission method of Fig. 3-5 specific descriptions between mobile communication system 110 and portable terminal 100.
Fig. 3 is a flow chart of the safety data transmission method when portable terminal sends data, and Fig. 4 A represents that a kind of authentication information produces algorithm, and Fig. 4 B represents that authentication information bears results, and all is according to most preferred embodiment of the present invention.
Referring to Fig. 3, if will send data (for example being information or image) to another portable terminal/server to mobile communication system 110 or by mobile communication system 110, portable terminal 100 just produces a random number (R) in step 310 according to preordering method (for example being random number production method or the like).
In step 315, utilize authentication information (S) to produce function and produce authentication information.
To describe below that authentication information produces algorithm and authentication information bears results with reference to Fig. 4 A and 4B in detail.
With reference to the common authentication algorithm of local PSC service supplier, the PscAuth algorithm is shown in Fig. 4 A.Authentication information produces algorithm also can adopt other algorithm.For convenience of description, can the present invention be described as an example with the PscAuth algorithm among Fig. 4 A.
Referring to Fig. 4 A, have five input parameters and four output parameters of 32; Yet to the mode that the present invention can adopt is to import ESN respectively to i0, and arbitrary value is to i3,0 to i1, and i2, i4, S1 be to o0, and S2 is to o1, and abandons o2 and o3.If the ESN of portable terminal 100 is 0 * 00000000, just can obtain S1 and S2 according to each random number.
Equally, in order to produce authentication information, the public function that can realize in portable terminal 100 and mobile communication system 110 needs the ESN of random number (R) and portable terminal as importing and produce 64 dateout.
In this state, the authentication information (S) that public function is produced is divided into two, and 32 high positions are used for server authentication information as the preposition part of authentication information (S1), and 32 low levels are used for terminal authentication information as the rearmounted part of authentication information (S2).
On the basis of above-mentioned example, go on to say as follows.Referring to Fig. 3, in step 320, portable terminal 100 extracts the rearmounted part of terminal authentication information (S2) from terminal authentication information (information that is produced by portable terminal 100 in step 315 just), and in the terminal authentication information rearmounted part (S2) of step 325 by network transmission extraction, the random number of step 310 (R) and be ready for sending data to mobile communication system 110.
Mobile communication system 110 is in the rearmounted part of step 330 receiving terminal authentication information (S2), random number (R) and the data that are ready for sending.Mobile communication system 110 produces server authentication information (S ') (just mobile communication system 110 produce authentication informations) in step 335 and then with the random number (R) of step 330.
Mobile communication system 110 step 340 from the server authentication information that produces (S ') extract back 32 as the rearmounted part of server authentication information (S2 '), and check with the server authentication information of the rearmounted part of terminal authentication information (S2) of determining step 330 and step 340 rearmounted partly (S2 ') whether correspond to each other in step 345.At this moment, be identical because each authentication information produces algorithm, if the ESN that is stored in the portable terminal 100 is identical with ESN in being stored in mobile communication system 110, will produce identical authentication information.
Result according to step 345, if the rearmounted part of the server authentication information of rearmounted part of the terminal authentication information of step 330 (S2) and step 340 (S2 ') can not correspond to each other, just send an error message (for example being " refusal inserts, and reattempts after a while " or the like) by network to portable terminal 100 in step 350.
Portable terminal 100 is being connected to according to error message in step 355 on its screen and is showing error message, and end process.
Equally, result according to step 345, if the rearmounted part of the server authentication information of rearmounted part of the terminal authentication information of step 330 (S2) and step 340 (S2 ') correspond to each other, just send an object information (for example being " your request is normally carried out " or the like) by network to portable terminal 100 in step 360.
Portable terminal 100 is being connected to display result information on its screen according to the processing result information that receives in step 365, and end process.
Because data that send between transmission server and portable terminal in the above-mentioned processing or information send by long code scramble Traffic Channel, can't learn its value from the outside.Equally, because portable terminal is to utilize the address of the ISP appointment of mobile communication system to insert transmission server, transmission server does not need extra authenticating step.
Fig. 5 is a flow chart according to the safety data transmission method of most preferred embodiment of the present invention when mobile communication system sends data.Referring to Fig. 5, if will send data (for example being information, image or the like) to portable terminal 110, mobile communication system 110 just produces a random number according to preordering method (for example being random number production method or the like) in step 510.
Use authentication information to produce function in step 515 and produce authentication information (S).Produce function because authentication information above has been described, need not further specific descriptions herein.
Mobile communication system 110 is extracted the preposition part of terminal authentication information (S1) in step 520 from server authentication information (just mobile communication system 110 is in the information of step 515 generation), and in step 525 by the preposition part of network send server authentication information (S1), the random number of step 510 (R), and the data awaiting transmission data of indicating standby communication terminals such as data are arranged 100 to receive.Portable terminal 100 is in the preposition part of step 530 authentication reception server information (S1), the random number of step 510 (R), and data awaiting transmission data.Portable terminal 100 also will use the random number (R) of step 530 to produce terminal authentication information (S ') (just portable terminal 100 produce authentication informations) in step 535.
Portable terminal 100 step 540 from the terminal authentication information that produces (S '), extract preceding 32 as the preposition part of terminal authentication information (S1 '), and check in step 545 whether the preposition part of server authentication information (S1) of step 530 and the preposition part of terminal authentication information of step 540 (S1 ') correspond to each other.Result according to step 545, if the preposition part of terminal authentication information of the preposition part of server authentication information (S1) of step 530 and step 540 (S1 ') can not correspond to each other, just send an error message (for example being " refusal inserts, and reattempts after a while " or the like) by network to mobile communication system 110 in step 550.
In step 555, the mobile communication system 110 that receives error message shows error message on the screen that is connected to transmission server (or certificate server), and end process.Yet,, just can omit step 550 and 555, thereby finish subsequent step immediately if there be not the connection of foundation to legal portable terminal.
In addition, result according to step 545, if the preposition part of terminal authentication information of the preposition part of server authentication information (S1) of step 530 and step 540 (S1 ') can correspond to each other, just send data transfer request and terminal authentication information rearmounted partly (S2 ') by network to mobile communication system 110 in step 560.
Mobile communication system 110 receives data transfer request and the rearmounted part of terminal authentication information (S2 ') in step 565, extracts server authentication information rearmounted partly (S2) in step 570 from the server authentication information of step 515 then.
Whether mobile communication system 110 also will carry out check in step 575, correspond to each other with the rearmounted part of the terminal authentication information of determining step 555 (S2 ') and the server authentication information rearmounted partly (S2) of step 570.Result according to step 575, if rearmounted part of terminal authentication information (S2 ') and server authentication information rearmounted partly (S2) can not correspond to each other, just send an error message (for example being " refusal inserts, and reattempts after a while " or the like) by network to portable terminal 100 in step 580.In step 585, the portable terminal 100 that receives error message shows error message on the screen that it connected, and end process.
Equally, result according to step 575, if rearmounted part of terminal authentication information (S2 ') and the rearmounted part of server authentication information (S2) can correspond to each other, just to send to the data/information of portable terminal 100 to portable terminal 100 transmission waits by network in step 590.Portable terminal 100 also will be in the data of step 595 receiving step 590, and show the result (for example being " Data Receiving is finished " or the like) or the content of data/information on the screen that it connected.
Because data in the above-mentioned processing or information send by long code scramble Traffic Channel between transmission server and portable terminal, its value can't be learnt in the outside.The data, services that can be applied to customize according to the secure data transmission system and method for the present invention between data transfer server and portable terminal.For example, if the information of user's registration is the current share price of Koorea Telecom, according to the user by portable terminal 100 or be connected to the request that the webserver of mobile communication system 110 sends, just can be when each registration or send the information that requires to user's portable terminal 100 at any time.Owing to can not give the third party according to the present invention, be convenient to unrestrictedly send secret or personal information with leakage of information.
Fig. 6 is the block diagram according to the secure data transmission system of another most preferred embodiment of the present invention.Referring to Fig. 6, portable terminal 100 is connected to BTS 120, BSC 125, MSC 130 and transmission server 610.
The present invention relates to the authentication method and the system that are used for transfer of data between portable terminal 100 and the transmission server 610.When portable terminal 100 according to the present invention when BTS 120 sends authentication request, the BTS 120 that receives authentication request will send these authentication request to transmission server 610 by BSC 125.Transmission server 610 can authenticate portable terminal 100 with the authenticate key (hereinafter referred to as " A-key ") that authentication request inside comprises.When portable terminal 100 sends authentication request, equally also to oppositely carry out above-mentioned steps at transmission server 610.The A-key that portable terminal 100 can use authentication request inside to comprise authenticates transmission server 610.
According to the present invention, authentication request can be divided into server authentication request that requires certificate server and the terminal authentication request (referring to Fig. 9 A) that requires the authentication terminal.The present invention can provide inter-authentication method, carries out terminal authentication and server authentication in an authentication procedure.
The effect of BTS 120 is that portable terminal 100 is connected to transmission server 610, and it can be provided with communications portion, antenna, controller, data terminal and power supply.Secondly, the effect of BSC 125 is a plurality of BTS that are operatively connected to BSC.At last, MSC 130 is connected to transmission server 610 according to the authentication request that receives by BTS 120 and BSC 125 with portable terminal 100.
For further clarification, term " portable terminal " is except referring to " terminal " and also using with term " server " with " transmission server " of terminal execution authentication procedure and transfer of data.And described in an embodiment is to produce authentication information (or ' A-key ') with random number and terminal identifier as input.
The flowcharting of Fig. 7 is used for producing a kind of method of A-key according to another most preferred embodiment of the present invention.Transmission server and terminal can produce the A-key respectively according to the present invention.The A-key that produces by the terminal authentication transmission server just, and authenticate the A-key that terminal produces by transmission server, can improve the stability and the fail safe that authenticate like this.
Below to the method that produce the A-key according to the present invention be described with reference to Fig. 7.Terminal or transmission server produce a random number in step 700.Random number is one group of long number selecting from the table of random number or sequence number, can produce part 160 by random number and produce.Random number produces part 160 and obviously can be realized by computer program or hardware, produces a series of random number according to specified conditions.Terminal or transmission server extract ESN in step 705.
According to another embodiment of the present invention, ESN can be used as mobile terminal identifier.The method and system that is used for authenticating mutually between portable terminal and the server can use random number and mobile terminal identifier to produce the A-key as input, and can be with ESN as mobile terminal identifier.
' mobile terminal identifier ' is a unique identifier distributing to each portable terminal, and ESN can be used as mobile terminal identifier.' ESN ' that is different from manufacturer's sequence number is a unique number distributing to each portable terminal.Manufacturer can use that national mobile operator registration ESN of this portable terminal., need to carry out registration or change terminal to the mobile operator registered mobile terminal or when changing portable terminal the user with the ESN of registration.Because ESN is unique number to each portable terminal and is difficult to duplicate that the most handy ESN is as mobile terminal identifier.
Terminal can be extracted the ESN in the storage device that is stored in terminal, and transmission server can extract ESN from the ESN management server that is connected to transmission server.Transmission server or portable terminal produce a 2n position preliminary A-key according to preordering method with random number and ESN in step 710.
[formula 1]
Preliminary key=f (random number, ESN)
Referring to formula 1, just can obtain preliminary A-key to predetermined function input random number and ESN.As long as can produce the preliminary A-key in 2n position with random number and ESN, just can use any function.
Portable terminal or transmission server extract the n position in step 715 the preliminary A-key from the 2n position, and produce the A-keys in the step 720.According to the present invention, can produce a plurality of A-keys by preliminary A-key.And can carry out corresponding a plurality of authentication procedures of a plurality of A-keys.Can use and anyly can from the 2n position, extract the method for n position.And then, according to another most preferred embodiment of the present invention, might from the 2n position, extract n low level.Also can from the 2n position, extract a n high position.
In described embodiment, be to extract a n high position or n low level although produce the method for A-key,, the method for extracting the n position only limits to specific embodiment by no means, and this is conspicuous for those skilled in the art.
If produce two A-keys, after from the A-key of preliminary 2n position, extracting A-key of n position generation, can produce another A-key with being extracted remaining n position, back in the 2n position by preliminary A-key.
Authentication can be repeatedly carried out according to the present invention,, authentication procedure can be carried out three times according to another most preferred embodiment of the present invention.That is to say that authentication procedure can comprise first server authentication, terminal authentication and second server authentication.Below will describe whole authentication procedure, and first server authentication is shown in Fig. 8 B with reference to Fig. 8 A.Terminal authentication is shown in Fig. 8 C, and the second server authentication is shown in Fig. 8 D.The A-key that produces for the authentication terminal is called as terminal A-key, and is that the A-key that the authentication transmission server produces is called as server A-key.
The flowcharting of Fig. 8 A is used for the group method of authentication mutually according to another most preferred embodiment of the present invention from transmission server when terminal sends data.
According to another most preferred embodiment of the present invention,, carry out the mutual authentication between transmission server and the portable terminal exactly if finish authentication procedure by twice execution server authentication and a terminal authentication.That is to say that the present invention carries out mutual authentication by server authentication and terminal authentication, and server authentication can comprise first server authentication and second server authentication (Fig. 9 A).
At first first server authentication of Zhi Hanging is whether definite (a) first server A-key that produces in transmission server and second server A-key that (b) produces in terminal corresponds to each other.Secondly the second server authentication of carrying out is whether definite (c) the 3rd server A-key that produces in transmission server and the 4th server A-key that (d) produces in terminal corresponds to each other.The terminal authentication that the 3rd step carried out is whether definite (e) the first terminal A-key that produces in terminal and second terminal A-key that (f) produces in transmission server corresponds to each other.Above-mentioned three steps authentication is carried out by the time sequencing of first server authentication, terminal authentication and second server authentication.
Represented various authentications in the following table 1:
[table 1]
Authentication name Concrete authentication name By where producing the A-key
Transmission server
Server authentication First server authentication First server A-key Second server A-key
The second server authentication The 3rd server A-key The 4th server A-key
Second server A-key
As shown in Table, divide three execution according to authentication of the present invention.
Below to explain authentication procedure of the present invention with reference to Fig. 8 A.Transmission server produces first server A-key in step 800, and produces the first server authentication request that comprises an A-key in step 802.
Transmission server and then send the first server authentication request to terminal in step 804.The terminal that receives the first server authentication request produces second server A-key in step 806.The second server A-key that terminal produces in step 808 is used first server A-key that the first server authentication request inside comprises and terminal is carried out first server authentication.
Terminal produces the first terminal A-key in step 810, and produces the terminal authentication request that comprises the first terminal A-key in step 814.Terminal sends the terminal authentication request in step 816 to server.Server produces the second terminal A-key in step 818.Server is carried out terminal authentication at the first terminal A-key and the second terminal A-key that step 820 comprises in the terminal authentication request.After finishing terminal authentication, server sends the second server authentication request that comprises the 3rd A-key at step 822 generation the 3rd A-key and to terminal.Terminal produces the 4th A-key in step 826, and carries out the second server authentication at the 3rd server A-key and the 4th server A-key that step 828 comprises in the server authentication request.
Authenticate by first server authentication, terminal authentication and last second server and to finish mutual authentication of the present invention.After finishing authentication, terminal sends authenticate-acknowledge in step 830 to server, and server sends data in step 832 to terminal.Can keep transmission significant data process safe all the time according to the present invention.
In Fig. 8 A, although authentication procedure and data distributing program separate expression for the ease of understanding the present invention,, obviously also can comprise data in the authentication request.The authentication request method that comprises data message will be described in conjunction with Figure 11 A-11D in the back.
The flowcharting of Fig. 8 B is according to the first server authentication program of another most preferred embodiment of the present invention from the process of Server Transport data.According to the present invention, the method for carrying out first server authentication is to determine to conform between first server A-key and the second server A-key.First server A-key can be produced by the first preliminary A-key, and second server A-key can be produced by the second preliminary A-key.
Preferably be stored in the function that produces first server A-key and second server A-key in transmission server and the terminal in advance.Can use server random number and ESN input as this function.
Below to describe according to the first server authentication program of the present invention with reference to Fig. 8 B.Transmission server produces the server random number in step 830, and extracts the ESN of terminal in step 832, and server can be from being connected to data in server storehouse request first server authentication.Transmission server produces the first preliminary A-key in step 834 with server random number and ESN.According to most preferred embodiment of the present invention, the first preliminary A-key is the 2n position preferably, and the first preliminary A-key in another most preferred embodiment of the present invention is 64.Transmission server extracts the n position in step 836 and produces first server A-key from the first preliminary A-key.According to the present invention, first server A-key is 32.
As shown in Figure 7, the method for using the first preliminary A-key to produce first server A-key can change, and according to another most preferred embodiment of the present invention, can extract n low level from the first preliminary A-key and produce first server A-key.
Transmission server produces the first server authentication request that comprises first server A-key and server random number in step 838, and sends the first server authentication request in step 840 to terminal.Terminal is extracted the server random number in step 842 from rigidly connect the first server authentication request of receiving, and extracts ESN in step 844 from the memory device that is connected to terminal.Terminal produces the second preliminary A-key in step 846 with server random number and ESN, and produces second server A-key in step 848.Because step 846 to 848 is identical with step 834 to 836, has omitted similar description.At last, corresponding first authentication of carrying out transmission server between first server A-key of in the second server A-key of step 850 by determining step 848 and the first server authentication request, comprising of terminal.
The flowcharting of Fig. 8 C is according to the terminal authentication program of another most preferred embodiment of the present invention from the process of Server Transport data.Can produce the terminal A-key that is used for terminal authentication with the first preliminary A-key and the second preliminary A-key.Just can carry out the terminal authentication program with the preliminary A-key of first among Fig. 8 B and the second preliminary A-key, according to another embodiment of the present invention, first server A-key can be the n position of extracting from the preliminary A-key in 2n position, and terminal A-key can be remaining n position.
Below to explain the terminal authentication program with reference to Fig. 8 C.Terminal is extracted a n high position and is produced the first terminal A-key in the preliminary A-key of step 860 second shown in step 846 from Fig. 8 B.Terminal produces the terminal random number that can use when producing the second preliminary A-key in step 864.Terminal produces the terminal authentication request that comprises the terminal random number and the first terminal A-key in step 866, and sends the terminal authentication request to transmission server.Transmission server extracts the first terminal A-key in step 870 and constitutes the terminal authentication request.Then, transmission server extracts a n high position and produces the second terminal A-key in step 872 from the first preliminary A-key of step 834 shown in Fig. 8 B.Transmission server is carried out terminal authentication in step 874 by determining the consistency between the first terminal A-key and the second terminal A-key.Corresponding authentication procedure is to finish by the terminal authentication program of step 860 to 874.
The flowcharting of Fig. 8 D is according to the second server authentication procedure of another most preferred embodiment of the present invention from the process of Server Transport data.In the second server authentication procedure, to produce a new preliminary A-key.In the second server authentication procedure, the preliminary A-key that produces in transmission server is called as the ' the 3rd preliminary A-key '.And the preliminary A-key that produces in terminal is called as the ' the 4th preliminary A-key '.
Below to the second server authentication procedure be described with reference to Fig. 8 D.Transmission server extracts the terminal random number in step 880 terminal authentication request shown in the step 868 from Fig. 8 C.Transmission server in step 882 to predetermined function input terminal random number and ESN and produce the 3rd preliminary A-key.Transmission server extracts a n high position or n low level in step 884 and produces the 3rd server A-key from the 3rd preliminary A-key.Yet in another most preferred embodiment of the present invention, the 3rd server A-key can be a n low level.
Transmission server produces the second server authentication request in step 886, and sends the second server authentication request in step 888 to terminal.The terminal that receives the second server authentication request produces the 4th preliminary A-key in step 890.Can produce the 4th preliminary A-key by terminal random number and the ESN shown in the step 864 in predetermined A-key generation function input Fig. 8 A.Terminal is extracted the n position and is produced the 4th server A-key in step 892 from the 4th preliminary A-key.Because the generating routine of the 4th server A-key is identical with step 884, has omitted identical description herein.Terminal step 894 in by the second server authentication request of determining the 4th server A-key and step 888 consistency between included the 3rd server A-key carry out second server and authenticate.
Just can finish the second server authentication by above-mentioned authentication procedure.Authentication request (i.e. the first server authentication request, terminal authentication request and second server authentication request) can comprise the information of relevant data and the authentication information of relevant A-key, random number and ESN.Therefore, if authentication is to finish by the authentication request that comprises relevant data message, obviously after authentication, can extract data.
According to another most preferred embodiment of the present invention, the first server authentication request can comprise the data locating information.The terminal authentication request also can comprise corresponding the request of data information of data locating information.At last, the second server authentication request can comprise data, just can the automatic reception data when finishing the second server authentication.Below to the authentication request that comprise relevant data message be described with reference to Figure 11 A-11D.
Fig. 9 A represents according to A-key kind of the present invention.According to another most preferred embodiment of the present invention, in authentication procedure, the mutual authentication between server and the terminal is carried out by twice server authentication and a terminal authentication.Referring to Fig. 9 A, carry out by server (authenticating 900 mutually) and terminal (authenticating 930 mutually) according to mutual authentication of the present invention, and server authentication 900 has first server authentication 910 and second server authentication 920.
First server authentication 910 is to carry out by the consistency between first server A of determining to produce in transmission server-key 913 and the second server A-key 917.In addition, second server authentication 920 is to carry out by the consistency between the 4th A-key 927 that produces in the 3rd server A-key 923 determining to produce in server and the terminal.Terminal authentication 930 is to carry out by the consistency between the second terminal A-key 937 that produces in first terminal A-key of determining to produce in the terminal 933 and the server.These authentications are by first server authentication 910, and terminal authentication 930 is that the time sequencing of second server authentication 920 is carried out at last.
As mentioned above, according to the present invention nearly six types A-key can be arranged.Yet,, can produce four kinds of preliminary A-keys because six kinds of A-keys extract generation from four kinds of preliminary A-keys.
[table 2]
Production method By where producing preliminary A-key
F (the server random number, ESN) Transmission server Portable terminal
The second terminal A-key First server A-key The first terminal A-key Second server A-key
F (the terminal random number, ESN) The 3rd preliminary A-key The 4th preliminary A-key
Keep The 3rd server A-key Keep The 4th server A-key
Referring to table 2, can be by producing the first preliminary A-key and the second preliminary A-key to predetermined function input server random number and ESN.Can be by from the first preliminary A-key and the second preliminary A-key, extracting low level or high-order server A-key and the terminal A-key of producing.According to another most preferred embodiment of the present invention, the low level of extraction can be used as first server A-key and second server A-key, and a high position of extracting can be used as the first terminal A-key and the second terminal A-key.
According to identical mode, can be by producing the 3rd preliminary A-key and the 4th preliminary A-key to predetermined function input server random number and ESN.Can be by from the 3rd preliminary A-key and the 4th preliminary A-key, extracting low level or high-order server A-key and the terminal A-key of producing.According to another most preferred embodiment of the present invention, the low level of extraction can be used as first server A-key and second server A-key, and high-order being abandoned.
Below to explain relation between preliminary A-key and the terminal A-key/server A-key in conjunction with Fig. 9 B and 9C.Fig. 9 B is according to the first preliminary A-key of another most preferred embodiment of the present invention and the block diagram of the second preliminary A-key.The first preliminary A-key and the second preliminary A-key are by producing to predetermined function input server random number and ESN.If the server random number is identical with ESN, the first preliminary A-key is just identical with the second preliminary A-key.Therefore, the first preliminary A-key has been adopted identical label with the second preliminary A-key, and first server A-key has been adopted identical label with second server A-key.Equally the first terminal A-key is also adopted identical label with the second terminal A-key.
The first preliminary A-key 950 produces in transmission server, and the second preliminary A-key 950 produces in terminal.The first preliminary A-key 950 and the second preliminary A-key 950 all have the 2n position, but the 2n position in another embodiment of the present invention can be 64.
First server A-key 957 and second server A-key 957 can be 32 low levels that extract from 64.Promptly the low level that extracts from the first preliminary A-key 950 is first server A-key 957, and the low level that extracts from the second preliminary A-key 950 is a second server A-key 957.The first performed server authentication is that first server A-key 957 is compared with second server A-key 957.
In the same way, the first terminal A-key 953 and the second terminal A-key 953 can be 32 high positions extracting from 64.That is, a high position of extracting from the first preliminary A-key 950 is the second terminal A-key 953, and a high position of extracting from the second preliminary A-key 950 is the first terminal A-key 953.Performed terminal authentication is that the first terminal A-key 953 is compared with the second terminal A-key 953.
Fig. 9 C is according to the 3rd preliminary A-key of another most preferred embodiment of the present invention and the block diagram of the 4th preliminary A-key.The 3rd preliminary A-key and the 4th preliminary A-key are by producing to predetermined function input server random number and ESN, and still, if the server random number is identical with ESN, the 3rd preliminary A-key is just identical with the 4th preliminary A-key.Therefore, the 3rd preliminary A-key has been adopted identical label with the 4th preliminary A-key, and the 3rd server A-key has been adopted identical label with the 4th server A-key.
The 3rd preliminary A-key 970 produces in transmission server, and the 4th preliminary A-key 970 produces in terminal.With identical shown in Fig. 9 B, the 3rd preliminary A-key and the 4th preliminary A-key all have the 2n position, but the 2n position in another embodiment of the present invention can be 64.
The 3rd server A-key 977 and second server A-key 977 can be 32 low levels that extract from 64.Promptly the low level that extracts from the 3rd preliminary A-key 970 is the 3rd server A-key 977, and the low level that extracts from the 4th preliminary A-key 970 is the 4th server A-key 977.Performed second server authentication is that the 3rd server A-key 977 is compared with the 4th server A-key 977.According to the present invention, in fact the high position of the 3rd preliminary A-key and the 4th preliminary A-key 970 keeps as using in the future; Yet also can use the high position of reservation to carry out other authentication procedure.
The flowcharting of Figure 10 is used for the method for authentication mutually according to another most preferred embodiment of the present invention from the process of terminal transmission data.Be similar to the mutual authentication of transmission server in the terminal transmission data procedures, can when transmission server sends data, carry out authentication mutually in terminal.
According to the present invention and be similar to three step authentication procedures from transmission server transmission data procedures, from the process of terminal transmission data, also can adopt three step authentication procedures.Yet,, therefore do not have the server authentication program still can keep fail safe because terminal is the particular addresss that insert by the ISP appointment when transmission server sends data in terminal.Therefore, when terminal to server sent data, terminal can only just send data to server after finishing the terminal authentication program.That is to say, need four preliminary A-keys (first to the 4th preliminary A-key) from transmission server transmission data; Yet, only need the first preliminary A-key and the second preliminary A-key from the terminal transmission data.As mentioned above, although authentication procedure is effectively to carry out once from the process of terminal transmission data, also can be similar to from transmission server transmission data and divides the execution authentication procedure like that three times.
Below will be in conjunction with the authentication procedure of Figure 10 explanation from the process of terminal transmission data.Terminal produces random number in step 1000, and extracts ESN in step 1005 from the memory device that is connected to terminal.Terminal produces the first preliminary A-key in step 1010 with random number and ESN.Then, terminal is extracted the n position and is produced the first terminal A-key in step 1020 from the first preliminary A-key.Owing to the method for extracting n position A-key in the preliminary A-key of having described the 2n position of associating in conjunction with Fig. 8 A, therefore omitted similar description.
Terminal produces the terminal authentication request that comprises the A-key in step 1025, and sends request in step 1030 to transmission server.Then, the random number that in step 1035 is extracted the terminal authentication request, comprises of transmission server.Transmission server extracts the ESN of terminal in step 1040 from the database that is connected to transmission server.Then, transmission server is at the ESN generation second preliminary A-key of step 1045 with random number that receives and extraction.Transmission server extracts the n position and produces the second terminal A-key in step 1050 from the second preliminary A-key.Owing to the method for extracting n position A-key in the preliminary A-key of having described the 2n position of associating in conjunction with Fig. 8 A, therefore omitted similar description.
Transmission server is carried out the terminal authentication program in step 1060 by determining the consistency between the first terminal A-key and the second terminal A-key.According to the present invention,, just can after finishing authentication procedure, extract data automatically if in the terminal authentication request, comprise data.If the terminal authentication request comprises data, transmission server just step 1065 extract and the storage terminal authentication request in the data that comprise, and send data reception acknowledgement information to terminal in step 1070.
The following various A-keys of table 3 expression.
[table 3]
Terminal Transmission server
F (terminal random number) The first preliminary A-key The second preliminary A-key
Keep Keep
Terminal random number and ESN are imported predetermined function and produced the first preliminary A-key and the second preliminary A-key, and the first preliminary A-key is identical with the second preliminary A-key.The first preliminary A-key produces in terminal, and the second preliminary A-key produces in transmission server.Have the 2n position according to the of the present invention first preliminary A-key and the second preliminary A-key, but the 2n position in another embodiment of the present invention can be 64.
The first terminal A-key and the second terminal A-key can be 32 low levels that extract from 64.Promptly the low level from the first preliminary A-cipher key-extraction is the first terminal A-key, and is the second terminal A-key from the low level of the second preliminary A-cipher key-extraction.
Performed terminal authentication is that the first terminal A-key is compared with the second terminal A-key.According to the present invention, the high position of the first preliminary A-key and the second preliminary A-key keeps as using in the future; Yet also can use the high position of reservation to carry out other authentication procedure.
Below to explain the data format that between transmission server and terminal, transmits the employed signal of data according to another embodiment of the present invention in conjunction with Figure 11 A-11D.As mentioned above, terminal/transmission server sends data after finishing authentication, or sends the authentication request that comprises data, as shown in Figure 11 A-11D.
According to the present invention, the first server authentication request can comprise the data locating information.And the terminal authentication request can comprise corresponding the request of data information of data locating information.The second server authentication request also can comprise data, just can the automatic reception data when finishing the second server authentication.Because signal sends by long code scramble Traffic Channel, its numerical value can be to external leakage.
Below to specifically describe the authentication request signal that comprises relevant data message.Figure 11 A represents according to the first server authentication request signal of another most preferred embodiment of the present invention from the process of transmission server transmission data.Referring to Figure 11 A, the first server authentication request signal is by first server A-key 1100, and server random number 1103 and data locating information 1107 constitute." data locating information " is meant the locating information about the data that send from terminal to server.
Because first server A-key 1100 and server random number 1103 were described, omit identical description at this.
Figure 11 B represents according to the terminal authentication request signal of another most preferred embodiment of the present invention from the process of transmission server transmission data.Referring to Figure 11 B, the terminal authentication request signal is by the first terminal A-key 1110, and terminal random number 1113 and data locating information 1117 constitute.Transmission server extracts data with the data locating information, and sends the data of extracting to terminal shown in Figure 11 C.Because terminal A-key 1110 and terminal random number 1113 were described, omit identical description at this.
Figure 11 C represents according to the second server authentication request signal of another most preferred embodiment of the present invention from the process of transmission server transmission data.Referring to Figure 11 C, the second server authentication request signal is made of the 3rd server A-key 1120 and data 1123.Shown in Figure 11 B, the data 1127 of extraction can be included into the second server authentication request signal and send to terminal.Because the 3rd server A-key 1120 was described, omit identical description at this.
Figure 11 D represents according to the terminal authentication request signal of another most preferred embodiment of the present invention from the process of terminal transmission data.Referring to Figure 11 D, the terminal authentication request signal is by the first terminal A-key 1130, and terminal random number 1133 and data 1135 constitute.Terminal can be included data in the terminal authentication request signal in and send.Because the first terminal A-key 1130 and terminal random number were described, omit identical description at this.
More than described between terminal and server and realized secure data transmission by authenticating mutually.Below to how in cdma network, to adopt the present invention, but omit those unnecessary explanations with reference to description of drawings.
Figure 12 A represents to produce in cdma network according to a most preferred embodiment more of the present invention the program of authentication information.And Figure 12 B represents to produce in cdma network according to an embodiment more of the present invention the program of authentication value.
When describing according to the authentication information generating routine of the present invention in cdma network in conjunction with Figure 12 A, portable terminal 100 or mobile communication system 110 adopt 56 random number, 32 ESN, 64 A-keys and authentication information to produce the authentication information that algorithm produces 128.Portable terminal 100 or mobile communication system 110 also will be divided into 64 high positions by 128 authentication informations that will produce and 64 low levels produce two authentication information variablees.
Equally, when describing in conjunction with Figure 12 B according to the authentication value generating routine of the present invention in cdma network, portable terminal 100 or mobile communication system 110 adopts 64 high positions of 32 random number, 32 ESN, 24 telephone numbers (for example being seven numerals of recipient's telephone number, seven numerals of calling party telephone number), 128 authentication informations and authentication information to produce the authentication value (AUTHR) that algorithm produces 18.Can for example be IS-95 by the CDMA standard, IS-2000 or the like indication authentication value produces algorithm, " CAVE " (Cellular Authentication, Voice privacy and Encryption) specifically arranged, " DES10 " (DataEncryption Standard 10) or the like.
In the authentication procedure of cdma network, use A-key and authentication information (hereinafter referred to as " SharedSecret Data shares private data " or " SSD ").The A-key is the special privacy key of importing in addition, and only occurs in mobile communication system and portable terminal, but has any different with each portable terminal of indication or each user's A-key.
According to the authentication procedure in the cdma network, can not directly use this A-key, but after producing SSD, in authentication procedure, can use this part of SSD.SSD is divided into 64 high positions (the preposition part of SSD_A or SSD) and 64 low levels (the rearmounted part of SSD_B or SSD), and SSD_A is used to authentication procedure, and SSD_B is used to encrypt.In addition, if authentication error occurs in the authentication procedure that adopts SSD, repeat authentication procedure with regard to producing new SSD, still, if mistake still occurs, the use of portable terminal will be restricted.
The flowcharting of Figure 13 is according to an embodiment more of the present invention authentication procedure in mobile communication system from the process of portable terminal transmission data.Referring to Figure 13, mobile communication system 110 sends a random number in step 1310 to portable terminal.The random number of step 1310 is the random number that are used to authenticate voice, and can change with position or time.
If send data (seeing step 1315) to recipient's terminal, portable terminal 100 produces the first terminal authentication value (AUTHR (M)) in step 1320.In the process that produces the first terminal authentication value (AUTHR (M)), adopt 64 high positions and the authentication value of 32 random number, 32 ESN, 24 telephone numbers, 128 authentication informations to produce algorithm (for example being CAVE or the like) as mentioned above.
Portable terminal 100 sends Data Receiving request by network to mobile communication system in step 1325.The Data Receiving request of step 1325 can comprise AUTHR (M) and the data that will send.Mobile communication system 110 produces the second terminal authentication value (AUTHR ' (M)) in step 1330 with the random number of step 1310, and checks in step 1335 whether the AUTHR (M) of step 1325 (M) conforms to each other with the AUTHR ' of step 1330.According to the inspection shown in the step 1335, if AUTHR (M) (M) conforms to each other with AUTHR ', mobile communication system 110 is just in the step 1340 storage data from portable terminal, and sends the data to recipient's portable terminal.Mobile communication system 110 sends the data reception acknowledgement information that the designation data transmission is finished in step 1345 to the portable terminal 100 of asking transfer of data.
The flowcharting of Figure 14 is according to an embodiment more of the present invention authentication procedure in mobile communication system from the process of mobile communication system transmission data.Referring to Figure 14, mobile communication system 110 sends random number in step 1410 to portable terminal 100.The random number that is used as access parameter in the step 1410 is the random number that is used to authenticate voice, and can change with position or time.
If will send data (seeing step 1415) to portable terminal 100, mobile communication system 110 just sends in step 1420 and receives information.Receive information and can comprise that where indicating mobile terminal should be from receiving the data locating information (for example being URL or the like) of data.Portable terminal 100 produces the first terminal authentication value (AUTHR (M)) in step 1425.For this reason, portable terminal 100 adopts 64 high positions of 32 random number, 32 ESN, 24 telephone numbers, 128 authentication informations and authentication value to produce algorithm (for example being CAVE or the like) as mentioned above.
Portable terminal 100 produces the random number be used for server authentication in step 1430, and (random numberfor server authentication RAND_S), and sends data transfer request by network to mobile communication system in step 1435.The transmission request can comprise AUTHR (M), RAND_S or the like.Mobile communication system 110 produces the second terminal authentication value (AUTHR ' (M)) in step 1440, and checks in step 1445 whether AUTHR (M) (M) conforms to each other with AUTHR '.Result according to step 1445, if AUTHR (M) (M) conforms to each other with AUTHR ', mobile communication system 110 just produces the first server authentication value (AUTHR (S)) in step 1450, and sends AUTHR (S) and data by network to portable terminal 100 in step 1455.
Portable terminal 100 produces second server authentication value (AUTHR ' (S)) in step 1460, and checks in step 1465 whether AUTHR (S) (S) conforms to each other with AUTHR '.According to the result of step 1465, if AUTHR (S) (S) conforms to each other with AUTHR ', step 1470 is illustrated in step 1455 and is stored from the data that mobile communication system 110 receives.
Although the present invention describes according to the mode of most preferred embodiment, the principle and scope of the present invention should only be determined by claims.Those skilled in the art obviously can also make amendment to described embodiment within the principle and scope of the present invention or change.
Industrial use
According to inter-authentication method and the system of the present invention between portable terminal and server,, just can send data safely as long as portable terminal and server can authenticate mutually with the ESN of portable terminal and the numerical result of random number generation.Secondly, the complementary field of authentication information being regarded packet might reduce the excessive data propagation that is used to authenticate, and can simplify authentication procedure thus.The 3rd, authentication information is encoded and carried out mutual authentication procedure and can also effectively prevent third-party malice and illegal act between portable terminal and mobile communication system.The 4th, for stable (for example, the user who enjoys a good reputation does not need because malice is used the payment extra charge, can limit and overcome malice and use) that a kind of primitive rule can be safeguarded mobile communication system set up in the legal use of mobile service.
Can also produce a plurality of A-keys with a preliminary A-key according to the present invention.Finally can carry out corresponding the repeatedly authentication procedure of a plurality of A-keys.

Claims (32)

1. one kind sends the method for data from portable terminal to data transfer server safety, said method comprising the steps of:
Reception is from the input of user to data transfer request;
According to a preordering method spontaneous random number in portable terminal;
Use the customizing messages of random number and portable terminal to produce algorithm generation authentication information with a predetermined authentication information as input;
Extraction is included in the terminal authentication key in the presumptive area in the authentication information of generation; And
Send data, random number and terminal authentication key to data transfer server.
2. according to the method for claim 1, it is characterized in that, the customizing messages of portable terminal comprises the ESN electronic serial number, MIN moves identification number, be stored in the private number in the NAM Number Assignment Module, at the authenticate key A-key that the cdma network that is used for authenticating uses, the secret number that SSD shares private data and registered by the user.
3. according to the method for claim 1, it is characterized in that the step that sends data, random number and terminal authentication key to data transfer server is that such step promptly sends to data transfer server after converting data, random number and terminal authentication key to predetermined format.
4. a computer-readable medium that comprises program contains in this program to be used for carrying out and uses the computer executed instructions of portable terminal to the method for data transfer server safety transmission data, and wherein said program execution profit requires 1 method.
5. in data transfer server, handle from the method for the data of portable terminal reception for one kind, said method comprising the steps of:
Receive data, random number and terminal authentication key from portable terminal;
Extract the customizing messages of the portable terminal of storage in advance;
Producing algorithm according to a predetermined authentication information uses the customizing messages of random number and portable terminal to produce authentication information as input;
Extract the interior included server authentication key of presumptive area in the authentication information that is produced; And
When conforming to the server authentication key, the terminal authentication key carries out corresponding the operation of data purposes.
6. a computer-readable medium that comprises program contains the computer executed instructions that is used for carrying out the method for data processing in data transfer server in this program, and wherein, described program execution profit requires 5 method.
7. one kind sends the method for data from data transfer server at least one portable terminal safety, said method comprising the steps of:
Deposit the data that will send to portable terminal;
According to the spontaneous random number of preordering method;
Use the customizing messages of random number and portable terminal to produce algorithm generation authentication information by predetermined authentication information as input;
The included first server authentication key in the first area that extraction is selected from least one presumptive area of authentication information;
Send data awaiting transmission data, random number and the first server authentication key to portable terminal;
Included terminal authentication key and to depositing the transmission request of data in the second area that reception is selected from least one presumptive area;
Included second server authenticate key in the second area that extraction is selected from least one presumptive area of authentication information;
Check whether the terminal authentication key conforms to the second server authenticate key; And
When conforming to the second server authenticate key, the terminal authentication key sends the data of depositing to portable terminal by network.
8. according to the method for claim 7, it is characterized in that, the step that sends data awaiting transmission data, random number and the first server authentication key to portable terminal is such step, is sending to portable terminal with data awaiting transmission data, random number with after the first server authentication key conversion becomes predetermined format.
9. a computer-readable medium that comprises program contains the computer executed instructions that is used for carrying out the method for data in the data transfer server that sends at least one portable terminal safety in this program, and wherein, described program execution profit requires 7 method.
10. method that receives data in portable terminal from data transfer server safety said method comprising the steps of:
Receive data awaiting transmission data, random number and server authenticate key from data transfer server;
Use the customizing messages of random number and portable terminal to produce algorithm generation authentication information by predetermined authentication information as input;
The included first terminal authentication key in the first area that extraction is selected from least one presumptive area of authentication information;
Check whether the first terminal authentication key conforms to the server authentication key;
If the first terminal authentication key conforms to the server authentication key, just extract the second included terminal authentication key in the second area of from least one presumptive area of authentication information, selecting;
Send the second terminal authentication key and corresponding to the data transfer request of data awaiting transmission data by network to data transfer server; And
Receive data by network from data transfer server.
11. a computer-readable medium that comprises program contains the computer executed instructions that is used for carrying out from the method for data transfer server safety reception data in portable terminal in this program, wherein, described program execution profit requires 10 method.
12. one kind sends the system of data from portable terminal to data transfer server safety, described system comprises:
Be used to receive device from user's data transmission request input;
Be used in portable terminal device by the spontaneous random number of preordering method;
Be used to use the customizing messages of random number and portable terminal to produce the device that algorithm produces authentication information according to a predetermined authentication information as input;
Be used for extracting the device of terminal authentication key included in the authentication information presumptive area that is produced; And
Be used for sending the device of data, random number and terminal authentication key to data transfer server.
13. handle in data transfer server from the system of the data of portable terminal reception for one kind, described system comprises:
Be used for receiving the device of data, random number and terminal authentication key from portable terminal;
Be used to extract the device of the customizing messages of the portable terminal of storage in advance;
Be used to use the customizing messages of random number and portable terminal to produce the device that algorithm produces authentication information according to predetermined authentication information as input;
Be used for extracting the device of server authentication key included in the authentication information presumptive area that is produced; And
Be used for when the terminal authentication key conforms to the server authentication key, carrying out device corresponding to the operation of data purposes.
14. one kind sends the system of data from data transfer server at least one portable terminal safety, described system comprises:
Be used to deposit the device of the data that will send to portable terminal;
Be used for device according to the spontaneous random number of preordering method;
Be used to use the customizing messages of random number and portable terminal to produce the device that algorithm produces authentication information by predetermined authentication information as input;
Be used to extract the device of second server authenticate key included in first included in first area server authentication key and the second area, first area wherein and second area are at least one presumptive areas that is selected from authentication information;
Be used for receiving terminal authentication key included in the second area of selecting from least one presumptive area and for the device of the transmission request of depositing data;
Be used to the device of checking whether terminal authentication key and second server authenticate key conform to; And
When the terminal authentication key conforms to the second server authenticate key, send the device of data awaiting transmission data, random number and the first server authentication key by network to portable terminal, and send the data of depositing to predetermined terminal.
15. a system that receives data in portable terminal from data transfer server safety, described system comprises:
Be used for by the device of network, and receive data from data transfer server from data transfer server reception data awaiting transmission data, random number and server authenticate key;
Be used to use the customizing messages of random number and portable terminal to produce the device that algorithm produces authentication information by predetermined authentication information as input;
Be used for extracting the device of first included in the first area that at least one presumptive area of authentication information the is selected terminal authentication key, if the first terminal authentication key conforms to the server authentication key, further extract the second included terminal authentication key in the second area of from least one presumptive area of authentication information, selecting;
Be used to the device of checking whether the first terminal authentication key and server authentication key conform to; And
Be used for sending the second terminal authentication key and corresponding to the device of the data transfer request of data awaiting transmission data to data transfer server by network.
16. in portable terminal, carry out the method that authenticates mutually between portable terminal and the transmission server, said method comprising the steps of for one kind:
Receive the first server authentication request that comprises the server random number and the first server authentication key from transmission server;
Produce the second server authenticate key with the server random number with corresponding to the customizing messages of portable terminal, customizing messages wherein comprises the ESN electronic serial number, MIN moves identification number, be stored in the private number in the NAM Number Assignment Module, an authenticate key A-key that uses at the cdma network that is used for authenticating, SSD shares private data, and by a secret number of user registration;
At first authenticate transmission server with the first server authentication key and second server authenticate key;
The terminal random number that produces with portable terminal and produce the first terminal authentication key corresponding to the customizing messages of portable terminal;
Send the terminal authentication request that comprises the terminal random number and the first terminal authentication key to transmission server, the second terminal authentication key authentication portable terminal that transmission server wherein produces with the first terminal authentication key and transmission server;
Receive the second server authentication request of the 3rd server authentication key formation that produces with terminal random number and customizing messages from transmission server;
Produce the 4th server authentication key with terminal random number and customizing messages; And
Authenticate transmission server once more with the 3rd server authentication key and the 4th server authentication key.
17. the method according to claim 16 is characterized in that, transmission server produces the first server authentication key according to the following steps:
Produce the server random number;
From the database that is connected to transmission server, extract customizing messages;
Produce the preliminary authenticate key in 2n position with server random number and customizing messages; And
From preliminary authenticate key, extract the n position according to preordering method,
The n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally, and
The second terminal authentication key wherein is made up of the residue n position except that the n position that is extracted in the first step.
18. the method according to claim 16 is characterized in that, produces the second server authenticate key according to the following steps:
From the first server authentication request, extract the server random number;
Extraction is stored in the customizing messages in the memory of portable terminal;
Produce the preliminary authenticate key in 2n position with server random number and customizing messages; And
From preliminary authenticate key, extract the n position according to preordering method,
The n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally, and
The first terminal authentication key wherein is made up of the residue n position except that the n position that is extracted in the first step.
19. the method according to claim 16 is characterized in that, transmission server produces the 3rd server authentication key according to the following steps:
Produce the preliminary authenticate key in 2n position with terminal random number and customizing messages; And
From preliminary authenticate key, extract the n position according to preordering method,
The n position of extracting is n low level or n high position of extracting from the preliminary authenticate key of 2n position equally.
20. the method according to claim 16 is characterized in that, produces the 4th server authentication key according to the following steps:
Produce the preliminary authenticate key in 2n position with terminal random number and customizing messages; And
From preliminary authenticate key, extract the n position according to preordering method,
The n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally.
21. the method according to claim 16 is characterized in that, the first server authentication request further comprises the data locating information.
22. the method according to claim 16 is characterized in that, the terminal authentication request further comprises the data locating information.
23. the method according to claim 16 is characterized in that, the second server authentication request also comprises data.
24. in transmission server, carry out the method that portable terminal and transmission server authenticate mutually, said method comprising the steps of for one kind:
Customizing messages with server random number and corresponding portable terminal produces the first server authentication key, customizing messages wherein comprises the ESN electronic serial number, MIN moves identification number, be stored in the private number in the NAM Number Assignment Module, the authenticate key A-key that uses at the cdma network that is used for authenticating, SSD shares private data, and by a secret number of user registration;
Generation comprises the first server authentication request of the server random number and the first server authentication key;
Send the first server authentication request to portable terminal, the second server authenticate key authentication transmission server that first server authentication key that comprises in the used for mobile terminal first server authentication request wherein and portable terminal produce;
From portable terminal receiving terminal authentication request, terminal authentication request wherein comprises the terminal random number and the first terminal authentication key that is produced by portable terminal;
Produce the second terminal authentication key with the first server authentication key;
Authenticate portable terminal with the first terminal authentication key and the second terminal authentication key;
Produce the 3rd server authentication key with terminal random number and customizing messages;
Send the second server authentication request that comprises the 3rd server authentication key to portable terminal, the 4th server authentication key re-authentication transmission server that the 3rd server authentication key that comprises in the used for mobile terminal second server authentication request wherein and portable terminal produce.
25. the method according to claim 24 is characterized in that, the first server authentication key produces according to the following steps:
Produce the server random number;
From the database that is connected to transmission server, extract customizing messages;
Produce the preliminary authenticate key in 2n position with server random number and customizing messages; And
From preliminary authenticate key, extract the n position according to preordering method,
The n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally, and
The second terminal authentication key wherein is made up of the residue n position except that the n position that is extracted in the first step.
26. the method according to claim 24 is characterized in that, portable terminal produces the second server authenticate key according to the following steps:
From the first server authentication request, extract the server random number;
Extraction is stored in the customizing messages in the memory of portable terminal;
Produce the preliminary authenticate key in 2n position with server random number and customizing messages; And
From preliminary authenticate key, extract the n position according to preordering method,
The n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally, and
The first terminal authentication key wherein is made up of the residue n position except that the n position that is extracted in the first step.
27. the method according to claim 24 is characterized in that, the 3rd server authentication key produces according to the following steps:
Produce the preliminary authenticate key in 2n position with terminal random number and customizing messages; And
From preliminary authenticate key, extract the n position according to preordering method,
The n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally.
28. the method according to claim 24 is characterized in that, portable terminal produces the 4th server authentication key according to the following steps:
Produce the preliminary authenticate key in 2n position with terminal random number and customizing messages; And
From preliminary authenticate key, extract the n position according to preordering method,
The n position of extracting is n low level or n high position of extracting from the preliminary authenticate key in 2n position equally.
29. the method according to claim 24 is characterized in that, the first server authentication request further comprises the data locating information.
30. the method according to claim 24 is characterized in that, the terminal authentication request further comprises the data locating information.
31. the method according to claim 24 is characterized in that, the second server authentication request also comprises data.
32. a method that produces the mobile terminal authentication key in portable terminal said method comprising the steps of:
Produce a random number;
Extract corresponding the customizing messages of portable terminal;
Produce the preliminary authenticate key in 2n position with random number and customizing messages;
From preliminary authenticate key, extract the n position and produce the first terminal authentication key according to preordering method; And
Extraction is not included in the n position in the first terminal authentication key and produces the second terminal authentication key from preliminary authenticate key,
Two terminal authentication keys are wherein produced by a preliminary authenticate key.
CNB028212797A 2001-10-26 2002-10-25 System and method for performing mutual authentication between mobile terminal and server Expired - Fee Related CN100361436C (en)

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
KR10-2001-0066359A KR100462044B1 (en) 2001-10-26 2001-10-26 Secure data transfer service system and method between a data transfer server and a user terminal
KR2001/0066359 2001-10-26
KR2001/66359 2001-10-26
KR2002/0028432 2002-05-22
KR10-2002-0028432A KR100449572B1 (en) 2002-05-22 2002-05-22 Method and system for performing mutual authenticating between mobile terminal and server
KR2002/28432 2002-05-22

Publications (2)

Publication Number Publication Date
CN1575563A true CN1575563A (en) 2005-02-02
CN100361436C CN100361436C (en) 2008-01-09

Family

ID=26639430

Family Applications (1)

Application Number Title Priority Date Filing Date
CNB028212797A Expired - Fee Related CN100361436C (en) 2001-10-26 2002-10-25 System and method for performing mutual authentication between mobile terminal and server

Country Status (2)

Country Link
CN (1) CN100361436C (en)
WO (1) WO2003036867A1 (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101164086B (en) * 2005-03-07 2010-07-07 诺基亚公司 Methods, system and mobile device capable of enabling credit card personalization using a wireless network
CN1968474B (en) * 2005-10-04 2010-09-29 Lg电子株式会社 A method and apparatus for securely sending/receiving contents in mobile network
CN101309436B (en) * 2008-07-02 2012-04-18 三一重工股份有限公司 Matching authentication method, apparatus and system for radio communication apparatus
CN102713926A (en) * 2010-01-19 2012-10-03 日本电气株式会社 Classified information leakage prevention system, classified information leakage prevention method and classified information leakage prevention programme
CN103678990A (en) * 2012-09-05 2014-03-26 索尼公司 Security chip, program, information processing device and information processing system

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100539521C (en) * 2003-05-16 2009-09-09 华为技术有限公司 A kind of method that realizes radio local area network authentication
CN1549482B (en) * 2003-05-16 2010-04-07 华为技术有限公司 Method for realizing high rate group data service identification
FR2898448A1 (en) * 2006-03-07 2007-09-14 France Telecom AUTHENTICATION OF A COMPUTER DEVICE AT THE USER LEVEL
DE202009019188U1 (en) 2008-12-03 2018-03-06 Entersekt International Limited Authentication of secure transactions
CN105373733A (en) * 2014-08-20 2016-03-02 中国石油天然气股份有限公司 Method and device for preventing geological research data from leaking
CN110365484B (en) * 2015-03-17 2023-01-20 创新先进技术有限公司 Data processing method, device and system for equipment authentication
CN105933350A (en) * 2016-07-01 2016-09-07 浪潮(北京)电子信息产业有限公司 Security enhancement method and device for serial port protocol
CN111586340B (en) * 2020-05-08 2021-11-19 青岛海信医疗设备股份有限公司 Image data loading and providing method and device

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE3484558D1 (en) * 1983-10-31 1991-06-13 Atalla Corp POCKET TERMINAL, METHOD AND ARRANGEMENT FOR SECURED BANK TRANSFER.
JP2786092B2 (en) * 1993-10-18 1998-08-13 日本電気株式会社 Mobile communication terminal authentication method
FR2718312B1 (en) * 1994-03-29 1996-06-07 Rola Nevoux Method for the combined authentication of a telecommunications terminal and a user module.
US5513245A (en) * 1994-08-29 1996-04-30 Sony Corporation Automatic generation of private authentication key for wireless communication systems
KR0147326B1 (en) * 1994-09-10 1998-09-15 양승택 Password generating method and determining method
FR2790177B1 (en) * 1999-02-22 2001-05-18 Gemplus Card Int AUTHENTICATION IN A RADIOTELEPHONY NETWORK

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101164086B (en) * 2005-03-07 2010-07-07 诺基亚公司 Methods, system and mobile device capable of enabling credit card personalization using a wireless network
CN1968474B (en) * 2005-10-04 2010-09-29 Lg电子株式会社 A method and apparatus for securely sending/receiving contents in mobile network
CN101309436B (en) * 2008-07-02 2012-04-18 三一重工股份有限公司 Matching authentication method, apparatus and system for radio communication apparatus
US8775804B2 (en) 2008-07-02 2014-07-08 Sany Heavy Industry Co., Ltd. Matching authentication method, device and system for wireless communication
CN102713926A (en) * 2010-01-19 2012-10-03 日本电气株式会社 Classified information leakage prevention system, classified information leakage prevention method and classified information leakage prevention programme
CN102713926B (en) * 2010-01-19 2016-05-11 日本电气株式会社 Confidential information is revealed and is prevented system and method
CN103678990A (en) * 2012-09-05 2014-03-26 索尼公司 Security chip, program, information processing device and information processing system

Also Published As

Publication number Publication date
WO2003036867B1 (en) 2004-04-08
WO2003036867A1 (en) 2003-05-01
CN100361436C (en) 2008-01-09

Similar Documents

Publication Publication Date Title
CN1264327C (en) Radio communication system, communication apparatus and portable terminal for realizing higher safety grade
CN1794676A (en) Method of user access radio communication network and radio network cut in control device
CN100341002C (en) IC card, terminal device, and data communication method
CN101038653A (en) Verification system
CN1295630C (en) Comparing device, data communication system, and data communication method
CN1701561A (en) Authentication system based on address, device thereof, and program
CN1539106A (en) Modular authentication and authorization scheme for internet protocol
CN1689367A (en) Security and privacy enhancements for security devices
CN1906883A (en) Enabling stateless server-based pre-shared secrets
CN1852094A (en) Method and system for protecting account of network business user
CN1578962A (en) Financial transactions system and method using electronic information
CN101052167A (en) Automatic renewing system for communication number and its realizing method
CN1575563A (en) System and method for performing mutual authentication between mobile terminal and server
CN1788263A (en) Login system and method
CN101051898A (en) Certifying method and its device for radio network end-to-end communication
CN101053233A (en) Method and system for controlling mobility in a communication network, related ntwork and computer program product therefor
CN101076976A (en) Authentication system, authentication method, and authentication information generation program
CN1694452A (en) Communication method and system between a terminal and at least a communication device
CN1875598A (en) Apparatuses and method for authentication in heterogeneuous IP networks
CN1230324A (en) Enhanced short message and method for synchronising and ensuring security of enhanced short messages exchanged in cellular radio communication system
CN1756150A (en) Information management apparatus, information management method, and program
CN1428973A (en) Network and terminal equipment
CN1691578A (en) A method of self validity verification for an equipment
CN1665339A (en) Subscriber authentication
CN101064606A (en) System, apparatus and method for authentication

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20080109

Termination date: 20151025

EXPY Termination of patent right or utility model