WO2005039101A1 - Procede de chiffrement de la verification de compteur synchrone dans un systeme de communication mobile - Google Patents

Procede de chiffrement de la verification de compteur synchrone dans un systeme de communication mobile Download PDF

Info

Publication number
WO2005039101A1
WO2005039101A1 PCT/CN2004/001141 CN2004001141W WO2005039101A1 WO 2005039101 A1 WO2005039101 A1 WO 2005039101A1 CN 2004001141 W CN2004001141 W CN 2004001141W WO 2005039101 A1 WO2005039101 A1 WO 2005039101A1
Authority
WO
WIPO (PCT)
Prior art keywords
mobile communication
counter
communication system
checking
synchronization
Prior art date
Application number
PCT/CN2004/001141
Other languages
English (en)
Chinese (zh)
Inventor
Jia Li
Hua Zhang
Original Assignee
Huawei Technologies Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co., Ltd. filed Critical Huawei Technologies Co., Ltd.
Publication of WO2005039101A1 publication Critical patent/WO2005039101A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/12Transmitting and receiving encryption devices synchronised or initially set up in a particular manner
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/037Protecting confidentiality, e.g. by encryption of the control plane, e.g. signalling traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless

Definitions

  • the present invention relates to a method for encrypting and synchronizing communication data in a mobile communication system, and more particularly, to a counter checking method for encrypting synchronization in a mobile communication system.
  • WCDMA Wideband Code Division Multiple Access
  • CN Core Net
  • UMTS Terrestrial Universal Terrestrial
  • Radio Access Network referred to as "UTRAN”
  • UE User Equipment
  • Radio Resource Controller Radio Resource Controller
  • the RRC message contains all parameters needed to establish, modify and release layer 2 and layer 1 protocol entities.
  • RRC Radio Resource Controller
  • COUNT-C time-varying parameters of encrypted synchronization
  • FIG. 1 is a schematic diagram of a connection frame number check process in the foregoing conventional solution. The process in the figure involves UTRAN 10 and UE 20. In step 101, UTRAN 10 puts COUNT-C of each AM and UM mode service RB in a COUNTER-CHECK (counter check) message and sends it to UE 20. Then, in step 10, the UE checks each COUNT-C value.
  • the above solution has the following problems: If the timing of initiating the counter check is not appropriate, the inconsistency of the check results may lead to the release of an undesired RRC connection. For example, in the communication process, the sequence number (Sequence Number, "SN" for short) on the UTRAN side has reached the next cycle, and the sequence number on the UE side stays in the previous cycle due to transmission. If verification is initiated at this time, Will cause the release of the RRC connection.
  • the C0UNT-C of RLC in AM mode is composed of a Hyper Frame Number (referred to as "turn 11 " and a 12-bit wireless link).
  • the control determines the human mode sequence number. Each time a data is sent, the sequence number is incremented by one, and each time the sequence number completes a cycle (4096), it is incremented by one. Due to the transmission delay, the sequence number on the UTRAN side has reached the next cycle, and the sequence number on the UE side stays in the previous sequence number cycle. If a check is initiated at this time, the RRC connection will be released due to the inconsistency between the two parties.
  • the technical problem to be solved by the present invention is to provide a counter checking method for encrypted synchronization in a mobile communication system, so that an undesired release of an RRC connection caused by an inappropriate timing of the counter check initiation is avoided.
  • the present invention provides a counter checking method for encrypted synchronization in a mobile communication system, including the following steps:
  • A determines the trusted range of the connection frame number check
  • the mobile communication system uses a sliding window protocol for data transmission.
  • the typical value of the trusted range is from 0 to 4096.
  • the range is preferably the same as the sending window size in the sliding window protocol. The same does not affect the implementation of the method of the present invention. Therefore, in practice, the trusted range may be set according to the communication environment.
  • the two ends of the uplink and the downlink are respectively a user equipment and a terrestrial radio access network of a universal mobile communication system.
  • the initiating connection frame number check includes the following steps:
  • the ground radio access network of the universal mobile communication system puts the time-varying parameters for encryption synchronization of each acknowledged mode service and non-acknowledged mode service in a counter check message and sends it to the user equipment;
  • the counter checks the value of each time-varying parameter for encryption synchronization in the message and the value of the time-varying parameter stored locally for encryption synchronization, and determines whether the upper 20 bits of the two time-varying parameters for encryption synchronization are the same.
  • the network access judges that the counter checks whether the response message contains time-varying parameters for encryption synchronization, and if so, releases the entire radio resource control connection.
  • the serial number of the protocol data unit at the radio link control layer refers to the lower 12 bits of the uplink and downlink connection frame numbers, which are obtained by checking the variables maintained by the sender and receiver.
  • timing of initiating the counter check is determined by checking whether the lower 12-bit serial number of the uplink-downlink COUNT-C is within a pre-configured trusted range.
  • FIG. 1 is a schematic diagram of a counter check process for encrypted synchronization in the prior art
  • FIG. 2 is a flowchart of a counter check method for encrypted synchronization in a mobile communication system according to an embodiment of the present invention.
  • a trusted range of a configurable counter inspection is determined, and the lower 12 bits of the uplink and downlink COUNT-C, that is, the Protocol Data Unit (referred to as 1 ' Whether the sequence number of the PDU 1 ′) at the RLC layer is in this range, thereby determining the timing of initiating a counter check.
  • the communication between UTRA and UE uses a sliding window protocol (other protocols can also be used), where the UTRAN side maintains a state variable VtA, which represents the starting point of the sending window, that is, the sequence number of the PDU that has been sent but has not been confirmed by the UE. .
  • the UE maintains a state variable VrR, which indicates the sequence number of the next PDU expected to be received in sequence.
  • the maximum value of the sequence number of the PDU is 4096.
  • the maximum value represents the maximum window width or size, and it is assumed that the size of the receiving window and the sending window are equal.
  • step 220 it is checked whether the lower 12 bits of the downstream COUNT-C (the serial number of the PDU downstream at the RLC layer) are within the above-mentioned trusted range A, B.
  • the specific implementation of this step is to check whether the state variable VtA is between 0 and 4096.
  • the sending window size is a parameter configured by the RLC high-level layer.
  • the constant in the expression cannot be a negative number.
  • step 230 make a judgment according to the inspection result in step 220. If the conditions are met, proceed to step 240, otherwise skip to step 220 to continue the inspection; in step 240, because it is determined in steps 220 and 230 that the downlink COUNT-C is low.
  • the 12 bits (the sequence number of the PDU downstream at the RLC layer) are between the above-mentioned trusted ranges A and B.
  • step 250 make a judgment according to the inspection result of step 240. If the conditions are met, proceed to step 260, otherwise skip to step 240 to continue the inspection; in step 260, because it has been determined by the previous steps, the upstream and downstream COUNT-C
  • the middle and lower 12 bits are located between the above-mentioned trusted ranges A and B.
  • the counter check timing has been determined, and a counter check check is initiated. Based on whether the uplink and downlink data amounts sent by the UE and UTRAN are consistent in the RRC connection, the process is terminated or the RRC connection is released, and the entire process ends. Specifically, UTRAN places the COUNT-C of each AM and UM mode service RB in a COUNTER_CHECK (counter check) message and sends it to the UE; then, the UE checks each COUNT-C value and stores it with each COUNT- Compare the value of C.
  • COUNTER_CHECK counter check
  • VtA on the UTRAN side and VrR on the UE side have a corresponding relationship, when the UTRAN side satisfies the above range relationship, it can effectively avoid that one sequence cycle is completed due to the sequence number at one end and the other cycle is still in the previous cycle Caused by inconsistencies in HFN.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

L'invention concerne un procédé permettant de chiffrer la synchronisation de données de communication dans un système de communication mobile. Elle concerne un procédé de vérification de compteur visant à chiffrer la synchronisation dans le système de communication mobile, ce qui permet d'éviter la libération de la connexion RCC non recherchée produite du fait du moment inapproprié du lancement de la vérification de compteur. Ledit procédé consiste notamment: A) à déterminer la plage plausible du numéro de la trame de connexion; B) à déterminer si les numéros de séquences de l'unité de données de protocole dans la couche de commande de liaison radio se situent tous dans ladite plage plausible, l'unité de données de protocole étant dans les numéros des trames de connexion montantes et descendante; dans l'affirmative, à entamer la vérification du numéro de la trame de connexion.
PCT/CN2004/001141 2003-10-16 2004-10-09 Procede de chiffrement de la verification de compteur synchrone dans un systeme de communication mobile WO2005039101A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CNB200310104529XA CN100345452C (zh) 2003-10-16 2003-10-16 一种确定移动通信系统中用于加密同步的计数器检查发起时机的方法
CN200310104529.X 2003-10-16

Publications (1)

Publication Number Publication Date
WO2005039101A1 true WO2005039101A1 (fr) 2005-04-28

Family

ID=34438471

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2004/001141 WO2005039101A1 (fr) 2003-10-16 2004-10-09 Procede de chiffrement de la verification de compteur synchrone dans un systeme de communication mobile

Country Status (2)

Country Link
CN (1) CN100345452C (fr)
WO (1) WO2005039101A1 (fr)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002530069A (ja) * 1998-11-19 2002-09-17 オルガノジェネシス インク. 生物工学的組織構築物およびそれを生成および使用する方法
CN102480747A (zh) * 2010-11-25 2012-05-30 大唐移动通信设备有限公司 一种业务承载计数检查方法和装置

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7817595B2 (en) * 2007-05-17 2010-10-19 Htc Corporation Communication system, user device thereof and synchronization method thereof
KR100892169B1 (ko) * 2007-07-26 2009-04-10 성균관대학교산학협력단 이동통신 단말기에서의 재동기화 방법
CN101742513B (zh) * 2008-11-26 2014-01-01 大唐移动通信设备有限公司 一种计数器检查处理的方法、系统及设备
CN102448089A (zh) * 2011-10-25 2012-05-09 华为技术有限公司 业务数据统计量验证方法及用户设备
CN107342853B (zh) * 2017-05-25 2019-12-06 兴唐通信科技有限公司 一种低交互开销的计数器同步方法

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1406448A (zh) * 2000-03-01 2003-03-26 诺基亚公司 尤其用于无线电帧的计数器初始化
EP1338166A1 (fr) * 2000-11-28 2003-08-27 Telefonaktiebolaget LM Ericsson (publ) Liberation d'un equipement utilisateur utilisant une procedure de recherche d'une personne dans un systeme de communication cellulaire

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5966450A (en) * 1996-08-13 1999-10-12 Lucent Technologies Variable mask for encryption generated independently at communications stations
WO2002051058A2 (fr) * 2000-12-19 2002-06-27 At & T Wireless Services, Inc. Synchronisation de chiffrement dans un systeme de communication sans fil

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1406448A (zh) * 2000-03-01 2003-03-26 诺基亚公司 尤其用于无线电帧的计数器初始化
EP1338166A1 (fr) * 2000-11-28 2003-08-27 Telefonaktiebolaget LM Ericsson (publ) Liberation d'un equipement utilisateur utilisant une procedure de recherche d'une personne dans un systeme de communication cellulaire

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002530069A (ja) * 1998-11-19 2002-09-17 オルガノジェネシス インク. 生物工学的組織構築物およびそれを生成および使用する方法
CN102480747A (zh) * 2010-11-25 2012-05-30 大唐移动通信设备有限公司 一种业务承载计数检查方法和装置

Also Published As

Publication number Publication date
CN100345452C (zh) 2007-10-24
CN1607843A (zh) 2005-04-20

Similar Documents

Publication Publication Date Title
KR100865357B1 (ko) 무선 통신 시스템의 이동 사용자 장치에서 무결성 보호구성을 수정하는 방법 및 장치
US7821975B2 (en) Establishing radio link control in wireless communication networks
EP2238707B1 (fr) Procédé de détection et de traitement d'une retransmision rlc sans fin
TW591907B (en) Scheme to retransmit radio resource control messages during a radio link control rest in a wireless communication system
US8897229B2 (en) Method and apparatus for delivery notification of non-access stratum retransmission
US8379855B2 (en) Ciphering in a packet-switched telecommunications system
TW200926721A (en) Method and apparatus for enhancing various PDCP and layer 2 operations
US9084125B2 (en) Method of performing polling procedure in a wireless communication system
TW200917766A (en) Method and apparatus for selecting a radio link control protocol data unit size
KR20100053625A (ko) 무선 통신 시스템에서의 핸드오버 동안 데이터의 계층 2 터널링
JP6806411B2 (ja) コネクションレス伝送における同期維持のためのシステムおよび方法
WO2006136090A1 (fr) Procede permettant d'empecher une attaque de repetition et procede permettant d'assurer la non repetition de numero de sequence de message
WO2012083828A1 (fr) Procédé, station de base et système de mise en œuvre de trafic d'acheminement local
TW200836537A (en) Method for transmitting control information in a mobile communication system
US20070155339A1 (en) Method and apparatus for initialization of integrity protection
WO2009056015A1 (fr) Procédé et équipement de synchronisation de paramètre
JP2002135357A (ja) 通信システムにおけるデータ流れの制御方法
WO2022193932A1 (fr) Procédé et appareil d'amélioration du décryptage de données pdcp lte
WO2012083762A1 (fr) Procédé, appareil et système de transmission de données
WO2019161543A1 (fr) Procédé et appareil de confirmation d'élément de commande de couche de contrôle d'accès au support, et système de communication
US20100136995A1 (en) Method for enhancing of controlling radio resources, method for transmitting status report, and receiver in mobile communication system
WO2005039101A1 (fr) Procede de chiffrement de la verification de compteur synchrone dans un systeme de communication mobile
WO2005112489A1 (fr) Procede de transmission d'un rapport d'etat
WO2010078724A1 (fr) Procédé d'authentification locale dans un système de communication mobile
WO2012072053A1 (fr) Procédé et dispositif destinés à synchroniser des paramètres de cryptage en liaison montante en mode non reconnu

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase