KR102441359B1 - 암호화된 클라이언트 디바이스 컨텍스트들에 의한 네트워크 아키텍처 및 보안 - Google Patents

암호화된 클라이언트 디바이스 컨텍스트들에 의한 네트워크 아키텍처 및 보안 Download PDF

Info

Publication number
KR102441359B1
KR102441359B1 KR1020187000931A KR20187000931A KR102441359B1 KR 102441359 B1 KR102441359 B1 KR 102441359B1 KR 1020187000931 A KR1020187000931 A KR 1020187000931A KR 20187000931 A KR20187000931 A KR 20187000931A KR 102441359 B1 KR102441359 B1 KR 102441359B1
Authority
KR
South Korea
Prior art keywords
client device
network
context
encrypted
user plane
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020187000931A
Other languages
English (en)
Korean (ko)
Other versions
KR20180030034A (ko
Inventor
수범 이
게빈 버나드 호른
아난드 팔라니고운데르
애드리안 에드워드 에스콧
스테파노 파킨
Original Assignee
퀄컴 인코포레이티드
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 퀄컴 인코포레이티드 filed Critical 퀄컴 인코포레이티드
Publication of KR20180030034A publication Critical patent/KR20180030034A/ko
Application granted granted Critical
Publication of KR102441359B1 publication Critical patent/KR102441359B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/033Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/037Protecting confidentiality, e.g. by encryption of the control plane, e.g. signalling traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/041Key generation or derivation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0431Key distribution or pre-distribution; Key agreement
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/70Services for machine-to-machine communication [M2M] or machine type communication [MTC]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W40/00Communication routing or communication path finding
    • H04W40/02Communication route or path selection, e.g. power-based or shortest path routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0457Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply dynamic encryption, e.g. stream encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W68/00User notification, e.g. alerting and paging, for incoming communication, change of service or the like
    • H04W68/005Transmission of information for alerting of incoming communication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Information Transfer Between Computers (AREA)
  • Telephonic Communication Services (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
KR1020187000931A 2015-07-12 2016-06-13 암호화된 클라이언트 디바이스 컨텍스트들에 의한 네트워크 아키텍처 및 보안 Active KR102441359B1 (ko)

Applications Claiming Priority (7)

Application Number Priority Date Filing Date Title
US201562191457P 2015-07-12 2015-07-12
US62/191,457 2015-07-12
US201662320506P 2016-04-09 2016-04-09
US62/320,506 2016-04-09
US15/160,198 US10091649B2 (en) 2015-07-12 2016-05-20 Network architecture and security with encrypted client device contexts
US15/160,198 2016-05-20
PCT/US2016/037279 WO2017039777A2 (en) 2015-07-12 2016-06-13 Network architecture and security with encrypted client device contexts

Publications (2)

Publication Number Publication Date
KR20180030034A KR20180030034A (ko) 2018-03-21
KR102441359B1 true KR102441359B1 (ko) 2022-09-06

Family

ID=57731698

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020187000931A Active KR102441359B1 (ko) 2015-07-12 2016-06-13 암호화된 클라이언트 디바이스 컨텍스트들에 의한 네트워크 아키텍처 및 보안

Country Status (10)

Country Link
US (2) US10091649B2 (https=)
EP (2) EP3320710B1 (https=)
JP (2) JP6692886B2 (https=)
KR (1) KR102441359B1 (https=)
CN (2) CN107852601B (https=)
AU (1) AU2016318200B2 (https=)
BR (1) BR112018000640B1 (https=)
ES (2) ES2837845T3 (https=)
TW (1) TWI733675B (https=)
WO (1) WO2017039777A2 (https=)

Families Citing this family (50)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10097995B2 (en) 2015-07-12 2018-10-09 Qualcomm Incorporated Network architecture and security with encrypted network reachability contexts
US10091649B2 (en) 2015-07-12 2018-10-02 Qualcomm Incorporated Network architecture and security with encrypted client device contexts
EP3449610A1 (en) * 2016-04-29 2019-03-06 Nec Corporation Method of enabling slice security separation
US20190199521A1 (en) * 2016-08-11 2019-06-27 Ian L. Sayers Method and apparatus for secure access to a sensor or device network
US20180097807A1 (en) * 2016-09-30 2018-04-05 Lg Electronics Inc. Method and apparatus for performing initial access procedure based on authentication in wireless communication system
US11030618B1 (en) 2016-09-30 2021-06-08 Winkk, Inc. Authentication and personal data sharing for partner services using out-of-band optical mark recognition
KR102215389B1 (ko) * 2016-10-10 2021-02-15 후아웨이 테크놀러지 컴퍼니 리미티드 통신 방법, 보안 노드 네트워크 엘리먼트, 및 단말
CN111885642B (zh) 2016-11-02 2022-06-10 中兴通讯股份有限公司 切换方法及装置
CN108347416B (zh) * 2017-01-24 2021-06-29 华为技术有限公司 一种安全保护协商方法及网元
CN115278658B (zh) * 2017-01-30 2026-03-17 瑞典爱立信有限公司 针对用户平面数据的完整性保护的方法
US10542463B2 (en) * 2017-02-05 2020-01-21 Nokia Of America Corporation System and method for secure cell redirection in wireless networks
US10687212B2 (en) * 2017-04-07 2020-06-16 At&T Mobility Ii Llc Mobile network core component for managing security keys
US10959247B2 (en) * 2017-06-08 2021-03-23 Qualcomm Incorporated Transmission of uplink control information in new radio
CN109391963B (zh) * 2017-08-11 2022-03-11 华为技术有限公司 一种传输方法和网络设备
JP7055204B2 (ja) 2017-11-22 2022-04-15 中興通訊股▲ふん▼有限公司 効率的な制御シグナリングの方法及びシステム
DK3738331T3 (da) 2018-04-05 2021-05-31 Ericsson Telefon Ab L M Konfigurering af radioressourcer
JP6741882B1 (ja) * 2018-04-16 2020-08-19 テレフオンアクチーボラゲット エルエム エリクソン(パブル) 非アクティブ状態からのrrc再開のためのセキュリティ処理
US11637694B2 (en) 2018-07-16 2023-04-25 Winkk, Inc. Secret material exchange and authentication cryptography operations
EP3609149A1 (en) 2018-08-08 2020-02-12 Nokia Technologies Oy Method and apparatus for security management in 5g networks
EP3864890A4 (en) * 2018-10-09 2022-05-18 Lenovo (Beijing) Limited DEVICE INFORMATION IN A CONTEXT ESTABLISHMENT REQUEST
US11563676B2 (en) * 2019-08-16 2023-01-24 Nokia Technologies Oy Method and apparatus for universal integrated circuit card update via dedicated network function
US12126994B2 (en) * 2019-10-04 2024-10-22 Qualcomm Incorporated User plane integrity protection (UP IP) capability signaling in 5G/4G systems
US11652815B2 (en) 2019-12-10 2023-05-16 Winkk, Inc. Security platform architecture
US11328042B2 (en) 2019-12-10 2022-05-10 Winkk, Inc. Automated transparent login without saved credentials or passwords
US11574045B2 (en) 2019-12-10 2023-02-07 Winkk, Inc. Automated ID proofing using a random multitude of real-time behavioral biometric samplings
US11563582B2 (en) 2019-12-10 2023-01-24 Winkk, Inc. Method and apparatus for optical encryption communication using a multitude of hardware configurations
US11928193B2 (en) 2019-12-10 2024-03-12 Winkk, Inc. Multi-factor authentication using behavior and machine learning
US11588794B2 (en) * 2019-12-10 2023-02-21 Winkk, Inc. Method and apparatus for secure application framework and platform
US11936787B2 (en) 2019-12-10 2024-03-19 Winkk, Inc. User identification proofing using a combination of user responses to system turing tests using biometric methods
US12143419B2 (en) 2019-12-10 2024-11-12 Winkk, Inc. Aggregated trust framework
US12132763B2 (en) 2019-12-10 2024-10-29 Winkk, Inc. Bus for aggregated trust framework
US11657140B2 (en) 2019-12-10 2023-05-23 Winkk, Inc. Device handoff identification proofing using behavioral analytics
US12335399B2 (en) 2019-12-10 2025-06-17 Winkk, Inc. User as a password
US12153678B2 (en) 2019-12-10 2024-11-26 Winkk, Inc. Analytics with shared traits
US12073378B2 (en) 2019-12-10 2024-08-27 Winkk, Inc. Method and apparatus for electronic transactions using personal computing devices and proxy services
US12341790B2 (en) 2019-12-10 2025-06-24 Winkk, Inc. Device behavior analytics
US11553337B2 (en) 2019-12-10 2023-01-10 Winkk, Inc. Method and apparatus for encryption key exchange with enhanced security through opti-encryption channel
US11303558B2 (en) * 2020-01-08 2022-04-12 Cisco Technology, Inc. Ultra-reliable low latency communications (URLLC) support for wireless access
TWI754950B (zh) * 2020-06-02 2022-02-11 鴻海精密工業股份有限公司 物聯網設備、伺服器及軟體更新方法
CN113765950B (zh) 2020-06-02 2023-11-14 富泰华工业(深圳)有限公司 物联网设备、服务器及软件更新方法
WO2022045332A1 (ja) * 2020-08-31 2022-03-03 日本電気株式会社 中継装置、端末及び中継方法
EP4278857A4 (en) * 2021-01-14 2025-01-22 Lenovo (Beijing) Limited Method and apparatus for data transmission processing
WO2022152405A1 (en) * 2021-01-15 2022-07-21 Telefonaktiebolaget Lm Ericsson (Publ) First node, second node, third node and methods performed thereby, for handling encrypted traffic in a communications network
TWI760240B (zh) * 2021-05-28 2022-04-01 國立臺灣科技大學 認證授權外掛系統
US12095751B2 (en) 2021-06-04 2024-09-17 Winkk, Inc. Encryption for one-way data stream
US11843943B2 (en) 2021-06-04 2023-12-12 Winkk, Inc. Dynamic key exchange for moving target
US11824999B2 (en) 2021-08-13 2023-11-21 Winkk, Inc. Chosen-plaintext secure cryptosystem and authentication
KR102406252B1 (ko) * 2021-12-13 2022-06-08 주식회사 유니온플레이스 데이터의 보안 통신 방법
WO2023128723A1 (en) * 2022-01-03 2023-07-06 Samsung Electronics Co., Ltd. Method and device for selective user plane security in wireless communication system
US12425230B2 (en) 2022-09-21 2025-09-23 Winkk, Inc. System for authentication, digital signatures and exposed and unregistered public certificate use

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100054472A1 (en) * 2008-08-27 2010-03-04 Qualcomm Incorporated Integrity protection and/or ciphering for ue registration with a wireless network
US20140053241A1 (en) * 2011-04-27 2014-02-20 Telefonaktiebolaget L M Ericsson (Publ) Authenticating a Device in a Network
WO2014121024A1 (en) * 2013-02-01 2014-08-07 Swirl Networks, Inc. Systems and methods for display of supplemental content responsive to location

Family Cites Families (31)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US136423A (en) * 1873-03-04 Improvement in bottle-washers
US7360075B2 (en) 2001-02-12 2008-04-15 Aventail Corporation, A Wholly Owned Subsidiary Of Sonicwall, Inc. Method and apparatus for providing secure streaming data transmission facilities using unreliable protocols
US6771962B2 (en) * 2001-03-30 2004-08-03 Nokia Corporation Apparatus, and an associated method, by which to provide temporary identifiers to a mobile node involved in a communication handover
US7020645B2 (en) 2001-04-19 2006-03-28 Eoriginal, Inc. Systems and methods for state-less authentication
GB0619499D0 (en) 2006-10-03 2006-11-08 Lucent Technologies Inc Encrypted data in a wireless telecommunications system
WO2008152611A1 (en) 2007-06-15 2008-12-18 Nokia Corporation Apparatus, method and computer program product providing transparent container
EP2317822A1 (en) 2009-10-29 2011-05-04 Panasonic Corporation Enhancement of the attachement procedure for re-attaching a UE to a 3GPP access network
CN102065417B (zh) 2009-11-16 2014-02-19 华为技术有限公司 实现安全上下文信息同步的方法、设备及系统
TWI450557B (zh) * 2010-04-15 2014-08-21 Qualcomm Inc 用於為通信期加密和完整性密鑰訊號傳遞增強型安全性上下文的裝置和方法
US9084110B2 (en) * 2010-04-15 2015-07-14 Qualcomm Incorporated Apparatus and method for transitioning enhanced security context from a UTRAN/GERAN-based serving network to an E-UTRAN-based serving network
MY154249A (en) * 2010-04-16 2015-05-29 Qualcomm Inc Apparatus and method for transitioning from a serving network node that supports an enhanced security context to a legacy serving network node
US9794980B2 (en) * 2010-10-01 2017-10-17 Nokia Solutions And Networks Oy Radio resource control connection release message wait timer
CN102594555B (zh) 2011-01-17 2015-04-29 华为技术有限公司 数据的安全保护方法、网络侧实体和通信终端
WO2012134218A2 (ko) 2011-03-31 2012-10-04 엘지전자 주식회사 무선 통신 시스템에서 단말이 네트워크와의 보안 설정 방법 및 이를 위한 장치
US20140126448A1 (en) 2011-06-22 2014-05-08 Nec Europe Ltd. Energy awareness in mobile communication user equipment and networks, including optimizations based on state compression
WO2013024435A1 (en) 2011-08-15 2013-02-21 Renesas Mobile Corporation Keeping a security context during mode changes for machine - to -machine communications
US8687556B2 (en) 2011-11-18 2014-04-01 Cisco Technology, Inc. Method for correlating connection information with mobile device identity
US9276810B2 (en) * 2011-12-16 2016-03-01 Futurewei Technologies, Inc. System and method of radio bearer management for multiple point transmission
CN107071768B (zh) * 2012-02-22 2020-03-20 华为技术有限公司 建立安全上下文的方法、装置及系统
US20130298209A1 (en) * 2012-05-02 2013-11-07 Interdigital Patent Holdings, Inc. One round trip authentication using sngle sign-on systems
WO2013169073A1 (en) * 2012-05-10 2013-11-14 Samsung Electronics Co., Ltd. Method and system for connectionless transmission during uplink and downlink of data packets
JP6209595B2 (ja) 2012-05-11 2017-10-04 インターデイジタル パテント ホールディングス インコーポレイテッド コンテキストアウェアピアツーピア通信
EP2853123A4 (en) * 2012-05-21 2016-03-23 Nokia Technologies Oy METHOD AND DEVICE FOR ADMINISTERING A TRANSMITTER FOR A USER DEVICE
CN103929740B (zh) * 2013-01-15 2017-05-10 中兴通讯股份有限公司 数据安全传输方法及lte接入网系统
EP2757856B1 (en) 2013-01-17 2023-11-08 Alcatel Lucent Optimization of context and/or connection management in a mobile communication system
EP2804441A1 (en) 2013-05-15 2014-11-19 Alcatel Lucent Network nodes and methods
US9585134B2 (en) * 2013-12-13 2017-02-28 Sharp Kabushiki Kaisha Systems and methods for multi-connectivity operation
US9444819B2 (en) 2014-01-16 2016-09-13 International Business Machines Corporation Providing context-based visibility of cloud resources in a multi-tenant environment
US9497624B2 (en) * 2014-10-30 2016-11-15 Alcatel-Lucent Usa Inc. Connectionless wireless access
US10097995B2 (en) 2015-07-12 2018-10-09 Qualcomm Incorporated Network architecture and security with encrypted network reachability contexts
US10091649B2 (en) 2015-07-12 2018-10-02 Qualcomm Incorporated Network architecture and security with encrypted client device contexts

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100054472A1 (en) * 2008-08-27 2010-03-04 Qualcomm Incorporated Integrity protection and/or ciphering for ue registration with a wireless network
US20140053241A1 (en) * 2011-04-27 2014-02-20 Telefonaktiebolaget L M Ericsson (Publ) Authenticating a Device in a Network
WO2014121024A1 (en) * 2013-02-01 2014-08-07 Swirl Networks, Inc. Systems and methods for display of supplemental content responsive to location

Also Published As

Publication number Publication date
AU2016318200A1 (en) 2017-12-07
TW201705781A (zh) 2017-02-01
JP2018526869A (ja) 2018-09-13
US11172357B2 (en) 2021-11-09
JP6928143B2 (ja) 2021-09-01
US20170013453A1 (en) 2017-01-12
CN107852601A (zh) 2018-03-27
WO2017039777A2 (en) 2017-03-09
BR112018000640B1 (pt) 2023-12-19
US20180332469A1 (en) 2018-11-15
CN113194467A (zh) 2021-07-30
BR112018000640A2 (pt) 2018-09-18
JP6692886B2 (ja) 2020-05-13
CN113194467B (zh) 2024-12-10
AU2016318200B2 (en) 2020-09-10
KR20180030034A (ko) 2018-03-21
US10091649B2 (en) 2018-10-02
CN107852601B (zh) 2021-05-14
EP3429246A3 (en) 2019-04-10
JP2020129805A (ja) 2020-08-27
TWI733675B (zh) 2021-07-21
EP3429246A2 (en) 2019-01-16
EP3320710A2 (en) 2018-05-16
WO2017039777A3 (en) 2017-06-15
EP3429246B1 (en) 2020-09-16
ES2835056T3 (es) 2021-06-21
ES2837845T3 (es) 2021-07-01
EP3320710B1 (en) 2020-09-02

Similar Documents

Publication Publication Date Title
US12010107B2 (en) Network security architecture
JP6928143B2 (ja) 暗号化されたクライアントデバイスコンテキストを用いたネットワークアーキテクチャおよびセキュリティ
US11716615B2 (en) Network architecture and security with simplified mobility procedure
US10097995B2 (en) Network architecture and security with encrypted network reachability contexts

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20180110

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
A201 Request for examination
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20210525

Comment text: Request for Examination of Application

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

Comment text: Notification of reason for refusal

Patent event date: 20211213

Patent event code: PE09021S01D

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20220615

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20220902

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20220902

End annual number: 3

Start annual number: 1

PG1601 Publication of registration
PR1001 Payment of annual fee

Payment date: 20250625

Start annual number: 4

End annual number: 4