CU24586B1 - Método para la autenticación de una red de servicio por un equipo de usuario (ue) utilizando credenciales de una red doméstica - Google Patents

Método para la autenticación de una red de servicio por un equipo de usuario (ue) utilizando credenciales de una red doméstica

Info

Publication number
CU24586B1
CU24586B1 CU2017000033A CU20170033A CU24586B1 CU 24586 B1 CU24586 B1 CU 24586B1 CU 2017000033 A CU2017000033 A CU 2017000033A CU 20170033 A CU20170033 A CU 20170033A CU 24586 B1 CU24586 B1 CU 24586B1
Authority
CU
Cuba
Prior art keywords
service network
credentials
authentication
network
user equipment
Prior art date
Application number
CU2017000033A
Other languages
English (en)
Other versions
CU20170033A7 (es
Inventor
Gavin Horn
Soo Bum Lee
Anand Palanigounder
Original Assignee
Qualcomm Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Qualcomm Inc filed Critical Qualcomm Inc
Publication of CU20170033A7 publication Critical patent/CU20170033A7/es
Publication of CU24586B1 publication Critical patent/CU24586B1/es

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0892Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0825Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/041Key generation or derivation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0431Key distribution or pre-distribution; Key agreement
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0433Key management protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/047Key management, e.g. using generic bootstrapping architecture [GBA] without using a trusted network node as an anchor
    • H04W12/0471Key exchange
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/068Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/24Key scheduling, i.e. generating round keys or sub-keys for block encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/062Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying encryption of the keys

Abstract

<p>La presente invención se refiere a un método para Ia comunicación inalámbrica. El método puede incluir establecer una conexión con una red de servicio, transmitir una credencial de autenticación encriptada que incluye una clave de encriptación de clave seleccionada aleatoriamente (KEK) y un identificador de Ia red de servicio a Ia red de servicio, recibir información de autenticación y una firma de Ia red de servicio, y autenticar Ia red de servicio mediante Ia verificación de Ia firma sobre Ia base de Ia KEK. La credencial de autenticación encriptada puede ser operativa para identificar Ia red de servicio. La firma se puede generar usando Ia KEK.</p>
CU2017000033A 2014-09-26 2015-08-27 Método para la autenticación de una red de servicio por un equipo de usuario (ue) utilizando credenciales de una red doméstica CU24586B1 (es)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US201462056371P 2014-09-26 2014-09-26
US14/674,763 US9491618B2 (en) 2014-09-26 2015-03-31 Serving network authentication
PCT/US2015/047295 WO2016048574A1 (en) 2014-09-26 2015-08-27 Serving network authentication

Publications (2)

Publication Number Publication Date
CU20170033A7 CU20170033A7 (es) 2017-07-04
CU24586B1 true CU24586B1 (es) 2022-04-07

Family

ID=54064611

Family Applications (1)

Application Number Title Priority Date Filing Date
CU2017000033A CU24586B1 (es) 2014-09-26 2015-08-27 Método para la autenticación de una red de servicio por un equipo de usuario (ue) utilizando credenciales de una red doméstica

Country Status (10)

Country Link
US (1) US9491618B2 (es)
EP (1) EP3198906B1 (es)
JP (1) JP6235761B2 (es)
KR (1) KR101785249B1 (es)
CN (1) CN106717044B (es)
AU (1) AU2015321927B2 (es)
CU (1) CU24586B1 (es)
PE (1) PE20170656A1 (es)
TW (1) TWI695611B (es)
WO (1) WO2016048574A1 (es)

Families Citing this family (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9680816B2 (en) * 2014-10-14 2017-06-13 Cisco Technology, Inc. Attesting authenticity of infrastructure modules
EP3238057A1 (en) 2014-12-24 2017-11-01 Koninklijke KPN N.V. Method for controlling on-demand service provisioning
US9712398B2 (en) * 2015-01-29 2017-07-18 Blackrock Financial Management, Inc. Authenticating connections and program identity in a messaging system
WO2017114757A1 (en) * 2015-12-28 2017-07-06 Koninklijke Kpn N.V. Method for providing a service to a user equipment connected to a first operator network via a second operator network
US10771453B2 (en) * 2017-01-04 2020-09-08 Cisco Technology, Inc. User-to-user information (UUI) carrying security token in pre-call authentication
US10433307B2 (en) * 2017-04-20 2019-10-01 Facebook Technologies, Llc Diversity based relay for wireless communications between a head-mounted display and a console
WO2018231125A1 (en) * 2017-06-16 2018-12-20 Telefonaktiebolaget Lm Ericsson (Publ) Network, network nodes, wireless communication devices and method therein for handling network slices in a wireless communication network
WO2019020440A1 (en) * 2017-07-25 2019-01-31 Telefonaktiebolaget Lm Ericsson (Publ) PRIVACY KEY AND MESSAGE AUTHENTICATION CODE
WO2019068654A1 (en) * 2017-10-02 2019-04-11 Telefonaktiebolaget Lm Ericsson (Publ) METHODS AND APPARATUS FOR SECURING NETWORK DRIVING INFORMATION
US11445376B2 (en) * 2017-10-10 2022-09-13 Ntt Docomo, Inc. Security establishment method, terminal device, and network device
CN109688586B (zh) * 2017-10-19 2021-12-07 中兴通讯股份有限公司 一种网络功能认证的方法、装置及计算机可读存储介质
US10306578B2 (en) * 2017-10-24 2019-05-28 Verizon Patent And Licensing Inc. Easy connectivity provisioning for cellular network
WO2019088599A1 (ko) * 2017-10-31 2019-05-09 엘지전자 주식회사 무선 통신 시스템에서 홈 네트워크 키로 암호화된 데이터를 보호하기 위한 방법 및 이를 위한 장치
EP3694245B1 (en) * 2017-11-08 2022-09-21 Guangdong Oppo Mobile Telecommunications Corp., Ltd. Integrity protection control method, network device and computer storage medium
JP7049462B2 (ja) 2018-01-12 2022-04-06 テレフオンアクチーボラゲット エルエム エリクソン(パブル) 識別子プライバシーの管理
KR102348078B1 (ko) 2018-01-12 2022-01-10 삼성전자주식회사 사용자 단말 장치, 전자 장치, 이를 포함하는 시스템 및 제어 방법
FR3077175A1 (fr) * 2018-01-19 2019-07-26 Orange Technique de determination d'une cle destinee a securiser une communication entre un equipement utilisateur et un serveur applicatif
CN111937425B (zh) * 2018-04-06 2024-04-09 瑞典爱立信有限公司 用于处理用户平面通信保护的安全策略的方法、用户设备和系统
WO2019196800A1 (en) 2018-04-10 2019-10-17 Mediatek Singapore Pte. Ltd. Improvement for incorrect ksi handling in mobile communications
WO2019226696A1 (en) * 2018-05-22 2019-11-28 Futurewei Technologies, Inc. Access technology agnostic serving network authentication
WO2020099148A1 (en) * 2018-11-12 2020-05-22 Telefonaktiebolaget Lm Ericsson (Publ) Authentication of a communications device
CN111669276B (zh) * 2019-03-07 2022-04-22 华为技术有限公司 一种网络验证方法、装置及系统
WO2020257986A1 (en) * 2019-06-24 2020-12-30 Nokia Shanghai Bell Co., Ltd. Dynamic allocation of network slice-specific credentials
US11310661B2 (en) * 2020-02-14 2022-04-19 Mediatek Inc. Security key synchronization method and associated communications apparatus
US11706619B2 (en) * 2020-03-31 2023-07-18 Cisco Technology, Inc. Techniques to facilitate fast roaming between a mobile network operator public wireless wide area access network and an enterprise private wireless wide area access network
US11012857B1 (en) 2020-04-13 2021-05-18 Sprint Communications Company L.P. Fifth generation core (5GC) authentication for long term evolution (LTE) data service

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8347090B2 (en) 2006-10-16 2013-01-01 Nokia Corporation Encryption of identifiers in a communication system
US8149770B2 (en) * 2007-07-05 2012-04-03 Motorola Mobility, Inc. Method and apparatus for determining capability of a serving system for anchoring a call using an intelligent network protocol
US8676251B2 (en) * 2009-03-04 2014-03-18 Lg Electronics Inc. Dual modem device
CA2760531C (en) * 2009-05-03 2016-06-28 Kabushiki Kaisha Toshiba Authentication and authorization for performing a secure handover between a mobile node and a target network
KR101683883B1 (ko) 2009-12-31 2016-12-08 삼성전자주식회사 이동 통신 시스템에서 보안을 지원하는 방법 및 시스템
US8296836B2 (en) * 2010-01-06 2012-10-23 Alcatel Lucent Secure multi-user identity module key exchange
CN102196436B (zh) 2010-03-11 2014-12-17 华为技术有限公司 安全认证方法、装置及系统
US8839373B2 (en) * 2010-06-18 2014-09-16 Qualcomm Incorporated Method and apparatus for relay node management and authorization
CN102131188B (zh) 2010-09-01 2013-12-04 华为技术有限公司 用户身份信息传输的方法、用户设备、网络侧设备及系统
US20120159151A1 (en) * 2010-12-21 2012-06-21 Tektronix, Inc. Evolved Packet System Non Access Stratum Deciphering Using Real-Time LTE Monitoring
KR20140037276A (ko) * 2011-03-23 2014-03-26 인터디지탈 패튼 홀딩스, 인크 네트워크 통신 보호 시스템 및 방법
US8699709B2 (en) * 2011-07-08 2014-04-15 Motorola Solutions, Inc. Methods for obtaining authentication credentials for attaching a wireless device to a foreign 3GPP wireless domain

Also Published As

Publication number Publication date
WO2016048574A1 (en) 2016-03-31
KR101785249B1 (ko) 2017-10-12
JP6235761B2 (ja) 2017-11-22
JP2017529799A (ja) 2017-10-05
KR20170038096A (ko) 2017-04-05
CN106717044B (zh) 2018-04-20
US9491618B2 (en) 2016-11-08
US20160094988A1 (en) 2016-03-31
CU20170033A7 (es) 2017-07-04
BR112017006156A2 (pt) 2018-02-06
TW201626751A (zh) 2016-07-16
TWI695611B (zh) 2020-06-01
AU2015321927B2 (en) 2018-11-08
AU2015321927A1 (en) 2017-03-16
EP3198906B1 (en) 2020-07-15
EP3198906A1 (en) 2017-08-02
CN106717044A (zh) 2017-05-24
PE20170656A1 (es) 2017-05-17

Similar Documents

Publication Publication Date Title
CU24586B1 (es) Método para la autenticación de una red de servicio por un equipo de usuario (ue) utilizando credenciales de una red doméstica
CU20170034A7 (es) Métodos y aparato para la re-autenticación a demanda de una red de sevicio por un equipo de usuario (ue)
MX366390B (es) Gestion de claves inalambrica para autenticacion.
WO2015008158A3 (en) Securing method for lawful interception
WO2016144257A3 (en) Method and system for facilitating authentication
BR112019004865A2 (pt) técnicas de derivação de chaves de segurança para uma rede celular com base no desempenho de um procedimento do protocolo de autenticação extensível (eap)
SG10201901366WA (en) Key exchange through partially trusted third party
MX2019003356A (es) Comunicacion segura del trafico de red.
WO2012141555A3 (en) Method and apparatus for providing machine-to-machine service
MX346828B (es) Sistema de comunicacion inalambrico.
CU24595B1 (es) Método para la comunicación inalámbrica
BR112018003168A2 (pt) métodos e aparelho para estabelecimento de chave de comunicação direta
BR112017003018A2 (pt) fornecimento seguro de uma credencial de autenticação
UA115501C2 (uk) Спосіб і система для захищеної передачі повідомлень послуги віддалених сповіщень в мобільні пристрої без захищених елементів
IN2014KN02750A (es)
JP2018505620A5 (ja) 通信システム及び認証方法
MX361152B (es) Aprovisionamiento de licencias de gestión de derechos digitales (drm) en un dispositivo cliente que utiliza un servidor de actualizaciones.
AR083113A1 (es) Procedimientos y aparatos para el aprovisionamiento de credenciales de acceso
GB2512249A (en) Secure peer discovery and authentication using a shared secret
WO2018016713A3 (ko) 무선 통신 시스템에서의 단말의 접속 식별자 보안 방법 및 이를 위한 장치
WO2013167043A3 (zh) 数据安全验证方法和装置
EP4247034A3 (en) Method and system for providing security from a radio access network
MY175039A (en) Communication control apparatus, authentication device, central control apparatus and communication system
WO2016114830A3 (en) Methods and systems for authentication interoperability
BR112017009372A2 (pt) autenticação de mensagens em uma comunicação sem fio