WO2011026320A1 - Session key update method and system - Google Patents

Session key update method and system Download PDF

Info

Publication number
WO2011026320A1
WO2011026320A1 PCT/CN2010/071165 CN2010071165W WO2011026320A1 WO 2011026320 A1 WO2011026320 A1 WO 2011026320A1 CN 2010071165 W CN2010071165 W CN 2010071165W WO 2011026320 A1 WO2011026320 A1 WO 2011026320A1
Authority
WO
WIPO (PCT)
Prior art keywords
key
session key
authentication
terminal
fast
Prior art date
Application number
PCT/CN2010/071165
Other languages
French (fr)
Chinese (zh)
Inventor
王鸿彦
韦银星
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2011026320A1 publication Critical patent/WO2011026320A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0892Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0891Revocation or update of secret information, e.g. encryption key update or rekeying
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to a method and system for updating a session key.
  • NGN Next Generation Network
  • ITU-T International Standards Organization
  • ATIS ATIS
  • ATIS Integrated Services Inc.
  • NGN can support heterogeneous network access, inter-network roaming and seamless handover.
  • the mobile user terminal performs handover, it is necessary to ensure the continuity of the service, and at the same time ensure the privacy and integrity of the signaling data and user data between the mobile user terminal and the NGN network access point.
  • the fast re-authentication mechanism is introduced to reduce the authentication signaling interaction, reduce the burden on the authentication server, and reach the purpose of fast authentication.
  • the fast re-authentication mechanism is to issue a fast re-authentication identity by the authentication server in the process of full authentication. After the full authentication succeeds, if the user needs to perform the authentication process with the network again, the fast re-authentication identity flag can be sent, and the authentication server implements the authentication with the user according to the fast re-authentication identifier.
  • the authentication server and the terminal do not change the key material currently used, but only authenticate the user identity. If the current user's key is intercepted, fast re-authentication cannot guarantee the subsequent communication security of the user.
  • the invention provides a method and system for updating a session key.
  • the present invention discloses a method for updating a session key, including: in a process of performing fast re-authentication between a terminal and an authentication server, the terminal and the authentication server generate a current session secret according to the fast re-authentication identification information.
  • the key material of the key together generates a new session secret Key, the new session key takes effect after the fast re-authentication succeeds.
  • the key material for generating the current session key may include a parent key that generates a current session key and a key algorithm, and the terminal and the authentication server will quickly re-authenticate the identification information and the parent of the current session key.
  • the key is calculated according to the key algorithm to generate the new session key.
  • the key material for generating the current session key may include a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm, and the terminal and the authentication server will quickly The authentication identification information and the sibling key of the parent key are calculated according to the key algorithm to generate the new session key.
  • the method may further include the following steps: after the terminal and the authentication server successfully re-authenticate successfully, the authentication server sends the new session key to the reliable network element, and the reliable network element uses the new session secret The key establishes a security association with the terminal.
  • the foregoing method may further include the following steps: after the terminal and the authentication server successfully re-authenticate, the authentication server sends the new session key to the reliable network element, and the reliable network element generates the new a subkey of the session key, and establishing a security association with the terminal by using the subkey of the new session key.
  • the present invention also discloses a terminal supporting session key update, the terminal being configured to jointly generate a new according to the fast re-authentication identification information and the key material generating the current session key in the process of performing fast re-authentication with the authentication server. a session key, and interacting with the authentication server with the new session key after successful fast re-authentication.
  • the key material for generating the current session key may include a parent key for generating a current session key and a key algorithm; the terminal is configured to set the fast re-authentication identification information and the parent key of the current session key according to the The key algorithm performs calculations to generate the new session key.
  • the key material for generating the current session key may include a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm; the terminal is configured to set the fast re-authentication identification information and The sibling key of the parent key is calculated according to the key algorithm to generate the new session key.
  • the present invention also discloses an authentication server that supports session key update, and the authentication server is configured to generate and re-authenticate identification information according to fast re-authentication in the process of performing fast re-authentication with the terminal.
  • the key material of the current session key collectively generates a new session key, and after the fast re-authentication succeeds, interacts with the terminal with the new session key.
  • the key material for generating the current session key may include a parent key that generates a current session key and a key algorithm; the authentication server is configured to follow the fast re-authentication identification information and the parent key of the current session key.
  • the key algorithm performs a calculation to generate the new session key.
  • the key material for generating the current session key may include a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm; the authentication server is configured to set the fast re-authentication identification information And the sibling key of the parent key is calculated according to the key algorithm to generate the new session key.
  • the invention also discloses a system for updating a session key, comprising a terminal and an authentication server, wherein:
  • the terminal is configured to generate a new session key according to the fast re-authentication identification information and the key material for generating the current session key in the process of performing fast re-authentication with the authentication server, and after the fast re-authentication succeeds, Interacting with the authentication server by using the new session key;
  • the authentication server is configured to be in accordance with the fast re-authentication identification information and the key material for generating the current session key in the process of performing fast re-authentication with the terminal A new session key is generated, and after the fast re-authentication is successful, the new session key is used to interact with the terminal.
  • the key material for generating the current session key may include a parent key that generates a current session key and a key algorithm
  • the terminal is configured to calculate the fast re-authentication identification information and the parent key of the current session key according to the key algorithm to generate the new session key;
  • the authentication server is configured to calculate the fast re-authentication identification information and the parent key of the current session key according to the key algorithm to generate the new session key.
  • the key material for generating the current session key may include a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm;
  • the terminal is configured to calculate the fast re-authentication identification information and the sibling key of the parent key according to the key algorithm to generate the new session key;
  • the authentication server is set to encrypt the fast re-authentication identification information and the parent key
  • the key is calculated according to the key algorithm to generate the new session key.
  • the above system may also include a reliable network element
  • the authentication server is further configured to: after the fast re-authentication with the terminal is successful, send the new session key to the reliable network element;
  • the reliable network element is configured to receive a new session key sent by the authentication server, and establish a security association with the terminal by using the new session key.
  • the above system may also include a reliable network element
  • the authentication server is further configured to: after the fast re-authentication with the terminal is successful, send the new session key to the reliable network element;
  • the reliable network element is configured to receive a new session key sent by the authentication server, generate a subkey of the new session key, and use the subkey of the new session key with the terminal Establish a security alliance.
  • the technical solution of the invention enables the user to use the current session key instead of the current session key after the fast re-authentication, thereby reducing the security risk caused by the key reuse and enhancing the security of the session.
  • FIG. 1 is a flow chart of a fast re-authentication non-update key of a terminal and a network in the prior art
  • FIG. 2 is a flowchart of a fast re-authentication key update of a terminal and a network in the present invention
  • FIG. 3 is a flowchart of key update by using the key A for fast re-authentication of the terminal and the network
  • FIG. 4 is a flowchart for performing key update by using the key B for fast re-authentication of the terminal and the network
  • FIG. 5 is a flowchart of the key update in the ITU-T NGN. Fast re-authentication of the terminal and the network to perform a key update flowchart.
  • the main idea of the present invention is: after the terminal performs full authentication authentication with the authentication server, the terminal and the authentication server have fast re-authentication information (the information includes fast re-authentication identification information), and the terminal and the authentication server are all based on the key material.
  • Key K key material may also be included in the package
  • the key B) and the generated subkey K1 of the key ⁇ are used to generate a new session key.
  • the terminal performs fast re-authentication with the authentication server that is, the authentication server authenticates the user according to the fast re-authentication identification information sent by the terminal, as shown in FIG. 2, according to the algorithm and the secret in the key material.
  • the key ⁇ (or key ⁇ ) in the key material, the fast re-authentication identification information generates a new key ⁇ ", the key ⁇ " can replace the key K1 (ie the current session key) as a new session key And the new session key ⁇ "can be effective after the fast re-authentication succeeds (ie, the terminal, the authentication server, and other reliable network elements use the updated session key ⁇ "to protect communication security).
  • a system for updating a session key includes at least a terminal and an authentication server.
  • the terminal is mainly used for performing fast re-authentication with the authentication server, according to the fast re-authentication identification information and the key material for generating the current session key (including at least a key algorithm, the secret of the current session key) Keys, etc. jointly generate a new session key, and interact with the authentication server with the new session key after successful fast re-authentication;
  • the authentication server is mainly used to generate a new session key according to the fast re-authentication identification information and the key material for generating the current session key in the process of performing fast re-authentication with the terminal, and after the fast re-authentication succeeds,
  • the new session key is used to interact with the authentication server.
  • the terminal and the authentication server respectively use the fast re-authentication identification information and the parent key of the current session key according to the key algorithm in the key material.
  • the terminal and the authentication server may also respectively use the secret key of the fast re-authentication identification information and the parent key of the current session key according to the key material.
  • the key algorithm performs calculations to generate a new session key.
  • some reliable network elements may be included (for example, a security gateway that establishes a security association with the terminal, and the gateway may also be trusted by the authentication server).
  • the authentication server sends a new session key to the reliable network element.
  • the reliable network element can establish a security association with the terminal through the new session key, or establish a security association with the terminal through the subkey of the new session key.
  • Example 1 This embodiment introduces a process of updating a session key according to a parent key (ie, key A) of the current session key. As shown in FIG. 3, the following steps are included:
  • Step 300 After the security authentication authentication between the terminal and the authentication server is successful, the terminal and the authentication server respectively obtain the fast re-authentication information, and generate the key material (including the key A), and then further the key A. Generate its subkey A1 (ie session key);
  • Step 310 The terminal sends a fast re-authentication request to the authentication server, where the fast re-authentication request includes fast re-authentication information;
  • Step 320 The terminal and the authentication server authenticate each other based on the fast re-authentication information.
  • the authentication server authenticates with the terminal according to the existing user information and the fast re-authentication information, and performs authentication according to the security authentication process.
  • the key algorithm in the key material generated in the key material, the key A, and the fast re-authentication identification information in the fast re-authentication information generates a new key C, which can replace the key A1 as a session key;
  • the terminal generates a new key C according to the key algorithm in the key material generated in the security authentication, the key A, and the fast re-authentication identification information in the fast re-authentication information, and the key C can replace the key A1.
  • a session key As a session key;
  • the authentication server and the terminal may calculate the key A and the fast re-authentication identifier in the key material according to the key algorithm in the key material to generate a key.
  • Step 330 The terminal and the authentication server quickly re-authenticate successfully, and the terminal and the server start to use the new session key C.
  • the new session key is in the terminal, the authentication server, and the reliable network element (for example, a security gateway that establishes a security association with the terminal, and the gateway may also be an authentication server trust.
  • the authentication server can securely send the generated key material to the reliable network element, and the reliable network element establishes a security association with the terminal using the obtained key material.
  • the reliable network element can also establish a security association with the terminal with the subkey of the new session key (ie, session key C).
  • Step 400 After the security authentication is successfully performed between the terminal and the authentication server, the terminal and the authentication server respectively obtain the fast re-authentication information, and generate the key material (including the keys A and B), and then the key A is obtained. Further generating its subkey A1 (ie session key);
  • Step 410 The terminal sends a fast re-authentication request to the authentication server, where the fast re-authentication request includes fast re-authentication information.
  • Step 420 The terminal and the authentication server authenticate each other based on the fast re-authentication information; the authentication server mutually authenticates with the terminal according to the existing user information and the fast re-authentication information, and according to the key generated in the security authentication authentication during the authentication process
  • the key algorithm in the material, the key B, and the fast re-authentication identification information in the fast re-authentication information generate a new key C, which can replace the key A1 as a session key;
  • the terminal generates a new key C according to the key algorithm in the key material generated in the security authentication, the key B, and the fast re-authentication identification information in the fast re-authentication information, and the key C can be used instead of the key A1.
  • Session key
  • the authentication server and the terminal may calculate the key B and the fast re-authentication identifier in the key material according to the key algorithm in the key material to generate a key.
  • Step 430 The terminal and the authentication server quickly re-authenticate successfully, and the terminal and the server start to use the new session key C.
  • the new session key is in the terminal, the authentication server, and the reliable network element (for example, a security gateway that establishes a security association with the terminal, and the gateway may also be an authentication server trust.
  • the authentication server can securely send the generated key material to the reliable network element, and the reliable network element establishes a security association with the terminal using the obtained key material.
  • the reliable network element can also establish a security association with the terminal with the subkey of the new session key (ie, session key C).
  • This embodiment introduces the terminal and transport authentication server (TAA, ITU-T NGN).
  • the process of performing key update in the fast re-authentication process includes the following steps:
  • Step 500 The terminal sends a security authentication request to the TAA.
  • Step 510 The ATT authenticates the terminal, and returns an authentication response, and the terminal and the ATT are completely authenticated successfully.
  • the terminal and the server respectively obtain fast re-authentication information, generate key material (including the key A), and further generate its sub-key A1 (ie, session key) according to the key A;
  • Step 520 The terminal sends a fast re-authentication request to the TAA, and the fast re-authentication request includes fast re-authentication information such as a fast re-authentication identifier;
  • Step 530 The terminal and the ATT mutually authenticate according to the fast re-authentication information.
  • the ATT authenticates the terminal according to the existing user information and the fast re-authentication information, and in the authentication process, according to the key algorithm in the key material generated in the security authentication authentication, the key A, and the fast re-authentication information
  • the re-authentication identification information generates a new key C, which can replace the key A1 as a session key;
  • the terminal also generates a new key C according to the key algorithm in the key material generated in the security authentication, the key A, and the fast re-authentication identification information in the fast re-authentication information.
  • C can replace the key A1 as a session key;
  • the authentication server and the terminal may calculate the key A and the fast re-authentication identifier according to the key algorithm in the key material to generate a key.
  • Step 540 The ATT generates an authentication response according to the fast re-authentication identification information, and sends the authentication response to the terminal, and the terminal and the ATT quickly re-authenticate successfully, and the terminal and the server start to use the new session key C.
  • the new session key is in the terminal, the authentication server, and the reliable network element (for example, a security gateway that establishes a security association with the terminal, and the gateway may also be an authentication server trust.
  • the authentication server can securely send the generated key material to the reliable network element, and the reliable network element establishes a security association with the terminal using the obtained key material.
  • the reliable network element can also establish a security association with the terminal with the subkey of the new session key (ie, session key C).
  • the technical solution of the present invention enables the user to use the current session key instead of the current session key after the fast re-authentication, thereby reducing the security risk caused by the key reuse and enhancing the session. Security.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Computer And Data Communications (AREA)

Abstract

A Session key update method and system are provided in the invention. Said method includes: during the fast re-authentication process between a terminal and an authentication server, said terminal and said authentication server generate a new session key according to both fast re-authentication identifier information and key materials used for generating the current session key, and said new session key becomes effective after the success of the fast re-authentication. Said system includes a terminal and an authentication server. Compared with the prior art, the method and system in the invention can reduce the potential security hazard brought by key reuse and enhance the security of a session.

Description

一种会话密钥的更新方法及系统  Method and system for updating session key
技术领域 Technical field
本发明涉及到通信技术领域,特别涉及一种会话密钥的更新方法及系统。  The present invention relates to the field of communications technologies, and in particular, to a method and system for updating a session key.
背景技术 Background technique
NGN ( Next Generation Network, 下一代通信网络)作为演进的基于分组 交换的网络框架受到越来越多的关注。 国际标准组织 ITU-T和其他地区标准 组织 (ETSI、 ATIS等)对 NGN框架模型、 业务以及相关领域进行了广泛的 研究和标准化工作。  NGN (Next Generation Network) is receiving more and more attention as an evolved packet-switched network framework. The International Standards Organization ITU-T and other regional standards organizations (ETSI, ATIS, etc.) have conducted extensive research and standardization work on NGN framework models, services, and related fields.
NGN能够支持异构网络接入、 网间漫游和无缝切换。 在移动用户终端进 行切换时,需要保证业务的连续性, 同时要保证移动用户终端与 NGN网络接 入点之间的信令数据和用户数据的私密性、 完整性。 当前 NGN网络中, 移动 用户终端与网络在完全鉴权认证后, 为了减少认证信令交互, 减轻认证服务 器负担, 并且到达快速认证的目的, 引入快速重认证机制。  NGN can support heterogeneous network access, inter-network roaming and seamless handover. When the mobile user terminal performs handover, it is necessary to ensure the continuity of the service, and at the same time ensure the privacy and integrity of the signaling data and user data between the mobile user terminal and the NGN network access point. In the current NGN network, after the mobile user terminal and the network are fully authenticated, the fast re-authentication mechanism is introduced to reduce the authentication signaling interaction, reduce the burden on the authentication server, and reach the purpose of fast authentication.
快速重认证机制是在完全鉴权的过程中, 由认证服务器下发快速重认证 身份标识。 完全鉴权成功后, 如果用户需要再次与网络进行认证流程, 则可 以发送该快速重认证身份标志, 认证服务器根据快速重认证标识实现与用户 的认证。 在该快速重认证过程中, 如图 1所示, 认证服务器与终端不改变当 前使用的密钥材料, 只是对用户身份的认证。 如果当前用户的密钥被截获, 则快速重认证无法保证用户后续的通信安全。  The fast re-authentication mechanism is to issue a fast re-authentication identity by the authentication server in the process of full authentication. After the full authentication succeeds, if the user needs to perform the authentication process with the network again, the fast re-authentication identity flag can be sent, and the authentication server implements the authentication with the user according to the fast re-authentication identifier. In the fast re-authentication process, as shown in FIG. 1, the authentication server and the terminal do not change the key material currently used, but only authenticate the user identity. If the current user's key is intercepted, fast re-authentication cannot guarantee the subsequent communication security of the user.
发明内容 Summary of the invention
本发明提供一种会话密钥的更新方法及系统。  The invention provides a method and system for updating a session key.
为了解决现有技术问题, 本发明公开了一种会话密钥的更新方法, 包括: 终端与认证服务器进行快速重认证过程中, 所述终端和认证服务器根据 快速重认证标识信息以及产生当前会话密钥的密钥材料共同生成新的会话密 钥, 所述新的会话密钥在快速重认证成功后开始生效。 In order to solve the prior art problem, the present invention discloses a method for updating a session key, including: in a process of performing fast re-authentication between a terminal and an authentication server, the terminal and the authentication server generate a current session secret according to the fast re-authentication identification information. The key material of the key together generates a new session secret Key, the new session key takes effect after the fast re-authentication succeeds.
上述方法中, 所述产生当前会话密钥的密钥材料可包括产生当前会话密 钥的父密钥以及密钥算法, 所述终端和认证服务器将快速重认证标识信息和 当前会话密钥的父密钥按照所述密钥算法进行计算,生成所述新的会话密钥。  In the above method, the key material for generating the current session key may include a parent key that generates a current session key and a key algorithm, and the terminal and the authentication server will quickly re-authenticate the identification information and the parent of the current session key. The key is calculated according to the key algorithm to generate the new session key.
上述方法中, 所述产生当前会话密钥的密钥材料可包括产生当前会话密 钥的父密钥、 所述父密钥的兄弟密钥以及密钥算法, 所述终端和认证服务器 将快速重认证标识信息和所述父密钥的兄弟密钥按照所述密钥算法进行计 算, 生成所述新的会话密钥。  In the above method, the key material for generating the current session key may include a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm, and the terminal and the authentication server will quickly The authentication identification information and the sibling key of the parent key are calculated according to the key algorithm to generate the new session key.
上述方法还可包括以下步骤:所述终端与认证服务器快速重认证成功后, 所述认证服务器将所述新的会话密钥发送给可靠网元, 所述可靠网元用所述 新的会话密钥与所述终端建立安全联盟。  The method may further include the following steps: after the terminal and the authentication server successfully re-authenticate successfully, the authentication server sends the new session key to the reliable network element, and the reliable network element uses the new session secret The key establishes a security association with the terminal.
或者, 上述方法还可包括以下步骤: 所述终端与认证服务器快速重认证 成功后, 所述认证服务器将所述新的会话密钥发送给可靠网元, 所述可靠网 元生成所述新的会话密钥的子密钥, 并用所述新的会话密钥的子密钥与所述 终端建立安全联盟。  Alternatively, the foregoing method may further include the following steps: after the terminal and the authentication server successfully re-authenticate, the authentication server sends the new session key to the reliable network element, and the reliable network element generates the new a subkey of the session key, and establishing a security association with the terminal by using the subkey of the new session key.
本发明还公开了一种支持会话密钥更新的终端, 所述终端设置成在与认 证服务器进行快速重认证过程中, 根据快速重认证标识信息以及产生当前会 话密钥的密钥材料共同生成新的会话密钥, 以及在快速重认证成功后, 用所 述新的会话密钥与所述认证服务器交互。  The present invention also discloses a terminal supporting session key update, the terminal being configured to jointly generate a new according to the fast re-authentication identification information and the key material generating the current session key in the process of performing fast re-authentication with the authentication server. a session key, and interacting with the authentication server with the new session key after successful fast re-authentication.
所述产生当前会话密钥的密钥材料可包括产生当前会话密钥的父密钥以 及密钥算法; 所述终端是设置成将快速重认证标识信息和当前会话密钥的父 密钥按照所述密钥算法进行计算, 生成所述新的会话密钥。  The key material for generating the current session key may include a parent key for generating a current session key and a key algorithm; the terminal is configured to set the fast re-authentication identification information and the parent key of the current session key according to the The key algorithm performs calculations to generate the new session key.
所述产生当前会话密钥的密钥材料可包括产生当前会话密钥的父密钥、 所述父密钥的兄弟密钥以及密钥算法; 所述终端是设置成将快速重认证标识 信息和所述父密钥的兄弟密钥按照所述密钥算法进行计算, 生成所述新的会 话密钥。  The key material for generating the current session key may include a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm; the terminal is configured to set the fast re-authentication identification information and The sibling key of the parent key is calculated according to the key algorithm to generate the new session key.
本发明还公开了一种支持会话密钥更新的认证服务器, 所述认证服务器 设置成在与终端进行快速重认证过程中, 根据快速重认证标识信息以及产生 当前会话密钥的密钥材料共同生成新的会话密钥,以及在快速重认证成功后 , 用所述新的会话密钥与所述终端交互。 The present invention also discloses an authentication server that supports session key update, and the authentication server is configured to generate and re-authenticate identification information according to fast re-authentication in the process of performing fast re-authentication with the terminal. The key material of the current session key collectively generates a new session key, and after the fast re-authentication succeeds, interacts with the terminal with the new session key.
所述产生当前会话密钥的密钥材料可包括产生当前会话密钥的父密钥以 及密钥算法; 所述认证服务器是设置成将快速重认证标识信息和当前会话密 钥的父密钥按照所述密钥算法进行计算, 生成所述新的会话密钥。  The key material for generating the current session key may include a parent key that generates a current session key and a key algorithm; the authentication server is configured to follow the fast re-authentication identification information and the parent key of the current session key. The key algorithm performs a calculation to generate the new session key.
所述产生当前会话密钥的密钥材料可包括产生当前会话密钥的父密钥、 所述父密钥的兄弟密钥以及密钥算法; 所述认证服务器是设置成将快速重认 证标识信息和所述父密钥的兄弟密钥按照所述密钥算法进行计算, 生成所述 新的会话密钥。  The key material for generating the current session key may include a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm; the authentication server is configured to set the fast re-authentication identification information And the sibling key of the parent key is calculated according to the key algorithm to generate the new session key.
本发明还公开了一种会话密钥的更新系统, 包括终端与认证服务器, 其 中:  The invention also discloses a system for updating a session key, comprising a terminal and an authentication server, wherein:
所述终端设置成在与所述认证服务器进行快速重认证过程中, 根据快速 重认证标识信息以及产生当前会话密钥的密钥材料共同生成新的会话密钥, 以及在快速重认证成功后, 用所述新的会话密钥与所述认证服务器交互; 所述认证服务器设置成在与所述终端进行快速重认证过程中, 根据快速 重认证标识信息以及产生当前会话密钥的密钥材料共同生成新的会话密钥, 以及在快速重认证成功后, 用所述新的会话密钥与所述终端交互。  The terminal is configured to generate a new session key according to the fast re-authentication identification information and the key material for generating the current session key in the process of performing fast re-authentication with the authentication server, and after the fast re-authentication succeeds, Interacting with the authentication server by using the new session key; the authentication server is configured to be in accordance with the fast re-authentication identification information and the key material for generating the current session key in the process of performing fast re-authentication with the terminal A new session key is generated, and after the fast re-authentication is successful, the new session key is used to interact with the terminal.
上述系统中, 所述产生当前会话密钥的密钥材料可包括产生当前会话密 钥的父密钥以及密钥算法;  In the above system, the key material for generating the current session key may include a parent key that generates a current session key and a key algorithm;
所述终端是设置成将快速重认证标识信息和当前会话密钥的父密钥按照 所述密钥算法进行计算, 生成所述新的会话密钥;  The terminal is configured to calculate the fast re-authentication identification information and the parent key of the current session key according to the key algorithm to generate the new session key;
所述认证服务器是设置成将快速重认证标识信息和当前会话密钥的父密 钥按照所述密钥算法进行计算, 生成所述新的会话密钥。  The authentication server is configured to calculate the fast re-authentication identification information and the parent key of the current session key according to the key algorithm to generate the new session key.
上述系统中, 所述产生当前会话密钥的密钥材料可包括产生当前会话密 钥的父密钥、 所述父密钥的兄弟密钥以及密钥算法;  In the above system, the key material for generating the current session key may include a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm;
所述终端是设置成将快速重认证标识信息和所述父密钥的兄弟密钥按照 所述密钥算法进行计算, 生成所述新的会话密钥;  The terminal is configured to calculate the fast re-authentication identification information and the sibling key of the parent key according to the key algorithm to generate the new session key;
所述认证服务器是设置成将快速重认证标识信息和所述父密钥的兄弟密 钥按照所述密钥算法进行计算, 生成所述新的会话密钥。 The authentication server is set to encrypt the fast re-authentication identification information and the parent key The key is calculated according to the key algorithm to generate the new session key.
上述系统还可包括可靠网元;  The above system may also include a reliable network element;
所述认证服务器还设置成在与所述终端快速重认证成功后, 将所述新的 会话密钥发送给所述可靠网元;  The authentication server is further configured to: after the fast re-authentication with the terminal is successful, send the new session key to the reliable network element;
所述可靠网元设置成接收所述认证服务器发送的新的会话密钥, 以及通 过所述新的会话密钥与所述终端建立安全联盟。  The reliable network element is configured to receive a new session key sent by the authentication server, and establish a security association with the terminal by using the new session key.
上述系统还可包括可靠网元;  The above system may also include a reliable network element;
所述认证服务器还设置成在与所述终端快速重认证成功后, 将所述新的 会话密钥发送给所述可靠网元;  The authentication server is further configured to: after the fast re-authentication with the terminal is successful, send the new session key to the reliable network element;
所述可靠网元设置成接收所述认证服务器发送的新的会话密钥, 生成所 述新的会话密钥的子密钥, 并通过所述新的会话密钥的子密钥与所述终端建 立安全联盟。  The reliable network element is configured to receive a new session key sent by the authentication server, generate a subkey of the new session key, and use the subkey of the new session key with the terminal Establish a security alliance.
本发明技术方案使用户在快速重认证后, 不再使用当前的会话密钥, 而 产生新的会话密钥, 从而减少密钥重用带来的安全隐患, 增强了会话的安全 性。  The technical solution of the invention enables the user to use the current session key instead of the current session key after the fast re-authentication, thereby reducing the security risk caused by the key reuse and enhancing the security of the session.
附图概述 BRIEF abstract
图 1为现有技术中终端与网络的快速重认证不更新密钥流程图; 图 2为本发明中终端与网络的快速重认证密钥更新流程图;  1 is a flow chart of a fast re-authentication non-update key of a terminal and a network in the prior art; FIG. 2 is a flowchart of a fast re-authentication key update of a terminal and a network in the present invention;
图 3为终端与网络的快速重认证使用密钥 A进行密钥更新流程图; 图 4为终端与网络的快速重认证使用密钥 B进行密钥更新流程图; 图 5为 ITU-T NGN中终端与网络的快速重认证进行密钥更新流程图。  FIG. 3 is a flowchart of key update by using the key A for fast re-authentication of the terminal and the network; FIG. 4 is a flowchart for performing key update by using the key B for fast re-authentication of the terminal and the network; FIG. 5 is a flowchart of the key update in the ITU-T NGN. Fast re-authentication of the terminal and the network to perform a key update flowchart.
本发明的较佳实施方式 Preferred embodiment of the invention
本发明的主要构思是: 终端与认证服务器进行完全鉴权认证后, 终端与 认证服务器具有快速重认证信息 (该信息中包括快速重认证标识信息) , 并 且终端与认证服务器均根据密钥材料中的密钥 K (密钥材料中也可能同时包 括密钥 B ) , 以及生成的密钥 Κ的子密钥 K1来生成新的会话密钥。 而当终 端与认证服务器之间进行快速重认证时, 即认证服务器根据终端发送的快速 重认证标识信息对用户进行认证的过程中, 如图 2所示, 可以根据密钥材料 中的算法、 密钥材料中的密钥 Κ (或者密钥 Β ) 、 快速重认证标识信息产生 新的密钥 Κ" , 该密钥 Κ"可以代替密钥 K1 (即当前会话密钥 )作为新的会 话密钥, 并且该新的会话密钥 Κ"可以在快速重认证成功后, 开始生效(即终 端、 认证服务器以及其他可靠网元用更新的会话密钥 Κ"保护通信安全) 。 The main idea of the present invention is: after the terminal performs full authentication authentication with the authentication server, the terminal and the authentication server have fast re-authentication information (the information includes fast re-authentication identification information), and the terminal and the authentication server are all based on the key material. Key K (key material may also be included in the package) The key B) and the generated subkey K1 of the key 来 are used to generate a new session key. When the terminal performs fast re-authentication with the authentication server, that is, the authentication server authenticates the user according to the fast re-authentication identification information sent by the terminal, as shown in FIG. 2, according to the algorithm and the secret in the key material. The key Κ (or key Β) in the key material, the fast re-authentication identification information generates a new key Κ ", the key Κ" can replace the key K1 (ie the current session key) as a new session key And the new session key Κ "can be effective after the fast re-authentication succeeds (ie, the terminal, the authentication server, and other reliable network elements use the updated session key Κ "to protect communication security).
下面结合附图及实施例对本发明技术方案作进一步详细说明。  The technical solution of the present invention will be further described in detail below with reference to the accompanying drawings and embodiments.
一种会话密钥的更新系统, 至少包括终端以及认证服务器。 其中: 终端, 主要用于在与所述认证服务器进行快速重认证过程中, 根据快速 重认证标识信息以及产生当前会话密钥的密钥材料(至少包括密钥算法, 当 前会话密钥的父密钥等 )共同生成新的会话密钥, 以及在快速重认证成功后, 用所述新的会话密钥与所述认证服务器交互;  A system for updating a session key includes at least a terminal and an authentication server. The terminal is mainly used for performing fast re-authentication with the authentication server, according to the fast re-authentication identification information and the key material for generating the current session key (including at least a key algorithm, the secret of the current session key) Keys, etc. jointly generate a new session key, and interact with the authentication server with the new session key after successful fast re-authentication;
认证服务器, 主要用于在与所述终端进行快速重认证过程中, 根据快速 重认证标识信息以及产生当前会话密钥的密钥材料共同生成新的会话密钥, 以及在快速重认证成功后, 用所述新的会话密钥与所述认证服务器交互; 本实施例中, 终端与认证服务器, 分别将快速重认证标识信息和当前会 话密钥的父密钥按照密钥材料中的密钥算法进行计算, 生成新的会话密钥; 在其他实施例中, 终端与认证服务器, 也可以分别将将快速重认证标识信息 和当前会话密钥的父密钥的兄弟密钥按照密钥材料中的密钥算法进行计算, 生成新的会话密钥。  The authentication server is mainly used to generate a new session key according to the fast re-authentication identification information and the key material for generating the current session key in the process of performing fast re-authentication with the terminal, and after the fast re-authentication succeeds, The new session key is used to interact with the authentication server. In this embodiment, the terminal and the authentication server respectively use the fast re-authentication identification information and the parent key of the current session key according to the key algorithm in the key material. Performing a calculation to generate a new session key; in other embodiments, the terminal and the authentication server may also respectively use the secret key of the fast re-authentication identification information and the parent key of the current session key according to the key material. The key algorithm performs calculations to generate a new session key.
还有一些实施例中, 还可以包括一些可靠网元(例如, 与终端建立安全 联盟的安全网关, 该网关也可以是认证服务器信任的) , 此时, 认证服务器 与终端快速重认证成功后, 认证服务器将新的会话密钥发送给可靠网元, 可 靠网元则可以通过新的会话密钥与终端建立安全联盟, 也可以通过新的会话 密钥的子密钥与终端建立安全联盟。  In some embodiments, some reliable network elements may be included (for example, a security gateway that establishes a security association with the terminal, and the gateway may also be trusted by the authentication server). At this time, after the authentication server and the terminal are successfully re-authenticated successfully, The authentication server sends a new session key to the reliable network element. The reliable network element can establish a security association with the terminal through the new session key, or establish a security association with the terminal through the subkey of the new session key.
下面介绍上述系统在快速重认证过程中更新会话密钥的过程。  The process of updating the session key in the fast re-authentication process of the above system is described below.
实施例 1 本实施例介绍的是, 根据当前会话密钥的父密钥 (即密钥 A ) 更新会话 密钥的过程, 如图 3所示, 包括以下步骤: Example 1 This embodiment introduces a process of updating a session key according to a parent key (ie, key A) of the current session key. As shown in FIG. 3, the following steps are included:
步骤 300: 终端与认证服务器之间进行安全鉴权认证成功后, 终端与认 证服务器分别获得快速重认证信息, 并产生密钥材料(其中, 包括密钥 A ) , 并才艮据密钥 A进一步产生其子密钥 A1 (即会话密钥) ;  Step 300: After the security authentication authentication between the terminal and the authentication server is successful, the terminal and the authentication server respectively obtain the fast re-authentication information, and generate the key material (including the key A), and then further the key A. Generate its subkey A1 (ie session key);
步骤 310: 终端发送快速重认证请求给认证服务器, 快速重认证请求中 包含快速重认证信息;  Step 310: The terminal sends a fast re-authentication request to the authentication server, where the fast re-authentication request includes fast re-authentication information;
步骤 320: 基于快速重认证信息, 终端、 认证服务器互相认证; 该认证过程中, 认证服务器根据已有的用户信息和快速重认证信息与终 端互相认证, 并在认证过程中, 根据安全鉴权认证中产生的密钥材料中的密 钥算法, 密钥 A, 以及快速重认证信息中的快速重认证标识信息生成新的密 钥 C, 该密钥 C可以代替密钥 A1作为会话密钥;  Step 320: The terminal and the authentication server authenticate each other based on the fast re-authentication information. In the authentication process, the authentication server authenticates with the terminal according to the existing user information and the fast re-authentication information, and performs authentication according to the security authentication process. The key algorithm in the key material generated in the key material, the key A, and the fast re-authentication identification information in the fast re-authentication information generates a new key C, which can replace the key A1 as a session key;
终端根据安全鉴权认证中产生的密钥材料中的密钥算法, 密钥 A, 以及 快速重认证信息中的快速重认证标识信息生成新的密钥 C, 该密钥 C可以代 替密钥 A1作为会话密钥;  The terminal generates a new key C according to the key algorithm in the key material generated in the security authentication, the key A, and the fast re-authentication identification information in the fast re-authentication information, and the key C can replace the key A1. As a session key;
具体地, 认证服务器以及终端可以将密钥材料中密钥 A与快速重认证标 识按照密钥材料中密钥算法进行计算, 生成密钥 。  Specifically, the authentication server and the terminal may calculate the key A and the fast re-authentication identifier in the key material according to the key algorithm in the key material to generate a key.
步骤 330: 终端与认证服务器快速重认证成功, 终端与服务器开始使用 新的会话密钥 C。  Step 330: The terminal and the authentication server quickly re-authenticate successfully, and the terminal and the server start to use the new session key C.
在其他实施例中, 终端与认证服务器快速重认证成功后, 新的会话密钥 在终端、 认证服务器以及可靠网元(例如, 与终端建立安全联盟的安全网关, 该网关也可以是认证服务器信任的)之间的通讯中均可以生效启用, 此时, 认证服务器可以将生成的密钥材料安全地发送到可靠网元, 可靠网元用获得 的密钥材料与终端建立安全联盟。 当然,可靠网元也可以用新的会话密钥(即 会话密钥 C ) 的子密钥建立与终端的安全联盟。  In other embodiments, after the terminal and the authentication server are successfully re-authenticated, the new session key is in the terminal, the authentication server, and the reliable network element (for example, a security gateway that establishes a security association with the terminal, and the gateway may also be an authentication server trust. The communication between the two can be effectively enabled. In this case, the authentication server can securely send the generated key material to the reliable network element, and the reliable network element establishes a security association with the terminal using the obtained key material. Of course, the reliable network element can also establish a security association with the terminal with the subkey of the new session key (ie, session key C).
实施例 2  Example 2
本实施例介绍的是, 根据当前会话密钥的父密钥的兄弟密钥(即密钥 B ) 更新会话密钥的过程, 如图 4所示, 包括以下步骤: 步骤 400: 终端与认证服务器之间进行安全鉴权认证成功后, 终端与认 证服务器分别获得快速重认证信息,并产生密钥材料(其中包括密钥 A和 B ), 并才艮据密钥 A进一步产生其子密钥 A1 (即会话密钥) ; This embodiment introduces a process of updating a session key according to a sibling key (ie, a key B) of a parent key of a current session key. As shown in FIG. 4, the following steps are included: Step 400: After the security authentication is successfully performed between the terminal and the authentication server, the terminal and the authentication server respectively obtain the fast re-authentication information, and generate the key material (including the keys A and B), and then the key A is obtained. Further generating its subkey A1 (ie session key);
步骤 410: 终端发送快速重认证请求到认证服务器, 快速重认证请求中 包含快速重认证信息;  Step 410: The terminal sends a fast re-authentication request to the authentication server, where the fast re-authentication request includes fast re-authentication information.
步骤 420: 基于快速重认证信息, 终端、 认证服务器互相认证; 认证服务器根据已有的用户信息和快速重认证信息与终端互相认证, 并 在认证过程中, 根据安全鉴权认证中产生的密钥材料中的密钥算法, 密钥 B, 以及快速重认证信息中的快速重认证标识信息生成新的密钥 C, 该密钥 C可 以代替密钥 A1作为会话密钥;  Step 420: The terminal and the authentication server authenticate each other based on the fast re-authentication information; the authentication server mutually authenticates with the terminal according to the existing user information and the fast re-authentication information, and according to the key generated in the security authentication authentication during the authentication process The key algorithm in the material, the key B, and the fast re-authentication identification information in the fast re-authentication information generate a new key C, which can replace the key A1 as a session key;
终端根据安全鉴权认证中产生的密钥材料中密钥算法, 密钥 B, 以及快 速重认证信息中的快速重认证标识信息生成新的密钥 C, 该密钥 C可以代替 密钥 A1作为会话密钥;  The terminal generates a new key C according to the key algorithm in the key material generated in the security authentication, the key B, and the fast re-authentication identification information in the fast re-authentication information, and the key C can be used instead of the key A1. Session key
具体地, 认证服务器以及终端可以将密钥材料中密钥 B与快速重认证标 识按照密钥材料中密钥算法进行计算, 生成密钥 。  Specifically, the authentication server and the terminal may calculate the key B and the fast re-authentication identifier in the key material according to the key algorithm in the key material to generate a key.
步骤 430: 终端与认证服务器快速重认证成功, 终端与服务器开始使用 新的会话密钥 C。  Step 430: The terminal and the authentication server quickly re-authenticate successfully, and the terminal and the server start to use the new session key C.
在其他实施例中, 终端与认证服务器快速重认证成功后, 新的会话密钥 在终端、 认证服务器以及可靠网元(例如, 与终端建立安全联盟的安全网关, 该网关也可以是认证服务器信任的)之间的通讯中均可以生效启用, 此时, 认证服务器可以将生成的密钥材料安全地发送到可靠网元, 可靠网元用获得 的密钥材料与终端建立安全联盟。 当然,可靠网元也可以用新的会话密钥(即 会话密钥 C ) 的子密钥建立与终端的安全联盟。  In other embodiments, after the terminal and the authentication server are successfully re-authenticated, the new session key is in the terminal, the authentication server, and the reliable network element (for example, a security gateway that establishes a security association with the terminal, and the gateway may also be an authentication server trust. The communication between the two can be effectively enabled. In this case, the authentication server can securely send the generated key material to the reliable network element, and the reliable network element establishes a security association with the terminal using the obtained key material. Of course, the reliable network element can also establish a security association with the terminal with the subkey of the new session key (ie, session key C).
实施例 3  Example 3
本实施例介绍的是, ITU-T NGN 中终端与传输认证服务器 ( TAA, This embodiment introduces the terminal and transport authentication server (TAA, ITU-T NGN).
Transport Authentication and authorization functional entity )在快速重认证过程 中进行密钥更新的过程, 如图 5示, 包括以下步骤: The process of performing key update in the fast re-authentication process, as shown in FIG. 5, includes the following steps:
步骤 500: 终端向 TAA发送安全鉴权认证请求; 步骤 510: ATT对终端进行鉴权, 并返回认证响应, 终端与 ATT完全鉴 权成功; Step 500: The terminal sends a security authentication request to the TAA. Step 510: The ATT authenticates the terminal, and returns an authentication response, and the terminal and the ATT are completely authenticated successfully.
在上述完全鉴权过程中, 终端与服务器分别获得快速重认证信息, 产生 密钥材料(其中包括密钥 A ) , 以及根据密钥 A进一步产生其子密钥 A1 (即 会话密钥) ;  In the above complete authentication process, the terminal and the server respectively obtain fast re-authentication information, generate key material (including the key A), and further generate its sub-key A1 (ie, session key) according to the key A;
步骤 520: 终端发送快速重认证请求到 TAA, 快速重认证请求中包含快 速重认证标识等快速重认证信息;  Step 520: The terminal sends a fast re-authentication request to the TAA, and the fast re-authentication request includes fast re-authentication information such as a fast re-authentication identifier;
步骤 530: 基于快速重认证信息, 终端、 ATT互相认证;  Step 530: The terminal and the ATT mutually authenticate according to the fast re-authentication information.
ATT根据已有的用户信息和快速重认证信息认证终端,并在认证过程中, 根据安全鉴权认证中产生的密钥材料中的密钥算法, 密钥 A, 以及快速重认 证信息中的快速重认证标识信息生成新的密钥 C,该密钥 C可以代替密钥 A1 作为会话密钥;  The ATT authenticates the terminal according to the existing user information and the fast re-authentication information, and in the authentication process, according to the key algorithm in the key material generated in the security authentication authentication, the key A, and the fast re-authentication information The re-authentication identification information generates a new key C, which can replace the key A1 as a session key;
终端在认证过程中, 也根据安全鉴权认证中产生的密钥材料中的密钥算 法, 密钥 A, 以及快速重认证信息中的快速重认证标识信息生成新的密钥 C, 该密钥 C可以代替密钥 A1作为会话密钥;  During the authentication process, the terminal also generates a new key C according to the key algorithm in the key material generated in the security authentication, the key A, and the fast re-authentication identification information in the fast re-authentication information. C can replace the key A1 as a session key;
具体地, 认证服务器以及终端可以将密钥 A与快速重认证标识按照密钥 材料中密钥算法进行计算, 生成密钥 。  Specifically, the authentication server and the terminal may calculate the key A and the fast re-authentication identifier according to the key algorithm in the key material to generate a key.
步骤 540: ATT根据快速重认证标识信息产生认证响应, 并发送到终端, 终端与 ATT快速重认证成功, 终端与服务器开始使用新的会话密钥 C。  Step 540: The ATT generates an authentication response according to the fast re-authentication identification information, and sends the authentication response to the terminal, and the terminal and the ATT quickly re-authenticate successfully, and the terminal and the server start to use the new session key C.
在其他实施例中, 终端与认证服务器快速重认证成功后, 新的会话密钥 在终端、 认证服务器以及可靠网元(例如, 与终端建立安全联盟的安全网关, 该网关也可以是认证服务器信任的)之间的通讯中均可以生效启用, 此时, 认证服务器可以将生成的密钥材料安全地发送到可靠网元, 可靠网元用获得 的密钥材料与终端建立安全联盟。 当然,可靠网元也可以用新的会话密钥(即 会话密钥 C ) 的子密钥建立与终端的安全联盟。  In other embodiments, after the terminal and the authentication server are successfully re-authenticated, the new session key is in the terminal, the authentication server, and the reliable network element (for example, a security gateway that establishes a security association with the terminal, and the gateway may also be an authentication server trust. The communication between the two can be effectively enabled. In this case, the authentication server can securely send the generated key material to the reliable network element, and the reliable network element establishes a security association with the terminal using the obtained key material. Of course, the reliable network element can also establish a security association with the terminal with the subkey of the new session key (ie, session key C).
当然, 本发明还可有多种实施方式, 在不背离本发明精神及其实质的情 凡在本发明的精神和原则之内所作的任何修改、 等同替换、 改进, 均应包含 在本发明所附的权利要求的保护范围之内。 It is a matter of course that the invention may be embodied in various other modifications, equivalents, modifications and improvements within the spirit and scope of the invention. It is intended to be within the scope of the appended claims.
工业实用性 Industrial applicability
与现有技术相比, 本发明技术方案使用户在快速重认证后, 不再使用当 前的会话密钥, 而产生新的会话密钥, 从而减少密钥重用带来的安全隐患, 增强了会话的安全性。  Compared with the prior art, the technical solution of the present invention enables the user to use the current session key instead of the current session key after the fast re-authentication, thereby reducing the security risk caused by the key reuse and enhancing the session. Security.

Claims

权 利 要 求 书 Claim
1、 一种会话密钥的更新方法, 其包括:  A method for updating a session key, comprising:
终端与认证服务器进行快速重认证过程中, 所述终端和认证服务器根据 快速重认证标识信息以及产生当前会话密钥的密钥材料共同生成新的会话密 钥, 所述新的会话密钥在快速重认证成功后开始生效。  During the fast re-authentication process between the terminal and the authentication server, the terminal and the authentication server jointly generate a new session key according to the fast re-authentication identification information and the key material that generates the current session key, where the new session key is fast. The re-authentication will take effect after it is successful
2、 如权利要求 1所述的方法, 其中,  2. The method of claim 1 wherein
所述产生当前会话密钥的密钥材料包括产生当前会话密钥的父密钥以及 密钥算法;  The key material for generating the current session key includes a parent key that generates a current session key and a key algorithm;
所述终端和认证服务器根据快速重认证标识信息以及产生当前会话密钥 的密钥材料共同生成新的会话密钥的步骤包括:  The step of the terminal and the authentication server jointly generating a new session key according to the fast re-authentication identification information and the key material for generating the current session key includes:
所述终端和认证服务器将快速重认证标识信息和当前会话密钥的父密钥 按照所述密钥算法进行计算, 生成所述新的会话密钥。  The terminal and the authentication server calculate the fast re-authentication identification information and the parent key of the current session key according to the key algorithm to generate the new session key.
3、 如权利要求 1所述的方法, 其中,  3. The method of claim 1, wherein
所述产生当前会话密钥的密钥材料包括产生当前会话密钥的父密钥、 所 述父密钥的兄弟密钥以及密钥算法;  The key material for generating the current session key includes a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm;
所述终端和认证服务器根据快速重认证标识信息以及产生当前会话密钥 的密钥材料共同生成新的会话密钥的步骤包括:  The step of the terminal and the authentication server jointly generating a new session key according to the fast re-authentication identification information and the key material for generating the current session key includes:
所述终端和认证服务器将快速重认证标识信息和所述父密钥的兄弟密钥 按照所述密钥算法进行计算, 生成所述新的会话密钥。  The terminal and the authentication server calculate the fast re-authentication identification information and the sibling key of the parent key according to the key algorithm to generate the new session key.
4、 如权利要求 1至 3任一项所述的方法, 其还包括:  4. The method of any of claims 1 to 3, further comprising:
所述终端与认证服务器快速重认证成功后, 所述认证服务器将所述新的 会话密钥发送给可靠网元, 所述可靠网元用所述新的会话密钥与所述终端建 立安全联盟。  After the terminal and the authentication server are successfully re-authenticated, the authentication server sends the new session key to the reliable network element, and the reliable network element establishes a security alliance with the terminal by using the new session key. .
5、 如权利要求 1至 3任一项所述的方法, 其还包括:  5. The method of any of claims 1 to 3, further comprising:
所述终端与认证服务器快速重认证成功后, 所述认证服务器将所述新的 会话密钥发送给可靠网元, 所述可靠网元生成所述新的会话密钥的子密钥, 并用所述新的会话密钥的子密钥与所述终端建立安全联盟。 After the terminal and the authentication server are successfully re-authenticated, the authentication server sends the new session key to the reliable network element, and the reliable network element generates the subkey of the new session key, and uses the The subkey of the new session key establishes a security association with the terminal.
6、一种支持会话密钥更新的终端, 所述终端设置成在与认证服务器进行 快速重认证过程中, 根据快速重认证标识信息以及产生当前会话密钥的密钥 材料共同生成新的会话密钥, 以及在快速重认证成功后, 用所述新的会话密 钥与所述认证服务器交互。 A terminal for supporting session key update, wherein the terminal is configured to generate a new session secret according to the fast re-authentication identification information and the key material generating the current session key during the fast re-authentication process with the authentication server. The key, and after the successful fast re-authentication, interacts with the authentication server with the new session key.
7、 如权利要求 6所述的终端, 其中,  7. The terminal of claim 6, wherein
所述产生当前会话密钥的密钥材料包括产生当前会话密钥的父密钥以及 密钥算法;  The key material for generating the current session key includes a parent key that generates a current session key and a key algorithm;
所述终端是设置成将快速重认证标识信息和当前会话密钥的父密钥按照 所述密钥算法进行计算, 生成所述新的会话密钥。  The terminal is configured to calculate the fast re-authentication identification information and the parent key of the current session key according to the key algorithm to generate the new session key.
8、 如权利要求 6所述的终端, 其中,  8. The terminal of claim 6, wherein
所述产生当前会话密钥的密钥材料包括产生当前会话密钥的父密钥、 所 述父密钥的兄弟密钥以及密钥算法;  The key material for generating the current session key includes a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm;
所述终端是设置成将快速重认证标识信息和所述父密钥的兄弟密钥按照 所述密钥算法进行计算, 生成所述新的会话密钥。  The terminal is configured to calculate the fast re-authentication identification information and the sibling key of the parent key according to the key algorithm to generate the new session key.
9、一种支持会话密钥更新的认证服务器, 所述认证服务器设置成在与终 端进行快速重认证过程中, 根据快速重认证标识信息以及产生当前会话密钥 的密钥材料共同生成新的会话密钥, 以及在快速重认证成功后, 用所述新的 会话密钥与所述终端交互。  9. An authentication server supporting session key update, the authentication server being configured to jointly generate a new session according to the fast re-authentication identification information and the key material generating the current session key during the fast re-authentication process with the terminal The key, and after the successful fast re-authentication, interacts with the terminal with the new session key.
10、 如权利要求 9所述的认证服务器, 其中,  10. The authentication server according to claim 9, wherein
所述产生当前会话密钥的密钥材料包括产生当前会话密钥的父密钥以及 密钥算法;  The key material for generating the current session key includes a parent key that generates a current session key and a key algorithm;
所述认证服务器是设置成将快速重认证标识信息和当前会话密钥的父密 钥按照所述密钥算法进行计算, 生成所述新的会话密钥。  The authentication server is configured to calculate the fast re-authentication identification information and the parent key of the current session key according to the key algorithm to generate the new session key.
11、 如权利要求 9所述的认证服务器, 其中,  11. The authentication server according to claim 9, wherein
所述产生当前会话密钥的密钥材料包括产生当前会话密钥的父密钥、 所 述父密钥的兄弟密钥以及密钥算法;  The key material for generating the current session key includes a parent key that generates a current session key, a sibling key of the parent key, and a key algorithm;
所述认证服务器是设置成将快速重认证标识信息和所述父密钥的兄弟密 钥按照所述密钥算法进行计算, 生成所述新的会话密钥。 The authentication server is set to encrypt the fast re-authentication identification information and the parent key The key is calculated according to the key algorithm to generate the new session key.
12、 一种会话密钥的更新系统, 其包括如权利要求 6至 8任一项所述的 终端与权利要求 9至 11任一项所述的认证服务器。  An update system for a session key, comprising the terminal according to any one of claims 6 to 8 and the authentication server according to any one of claims 9 to 11.
13、 如权利要求 12所述的系统, 其还包括可靠网元, 其中,  13. The system of claim 12, further comprising a reliable network element, wherein
所述认证服务器还设置成在与所述终端快速重认证成功后, 将所述新的 会话密钥发送给所述可靠网元;  The authentication server is further configured to: after the fast re-authentication with the terminal is successful, send the new session key to the reliable network element;
所述可靠网元设置成接收所述认证服务器发送的新的会话密钥, 并并通 过所述新的会话密钥与所述终端建立安全联盟。  The reliable network element is configured to receive a new session key sent by the authentication server, and establish a security association with the terminal by using the new session key.
14、 如权利要求 12所述的系统, 其还包括可靠网元, 其中,  14. The system of claim 12, further comprising a reliable network element, wherein
所述认证服务器还设置成在与所述终端快速重认证成功后, 将所述新的 会话密钥发送给所述可靠网元;  The authentication server is further configured to: after the fast re-authentication with the terminal is successful, send the new session key to the reliable network element;
所述可靠网元设置成接收所述认证服务器发送的新的会话密钥, 生成所 述新的会话密钥的子密钥, 并通过所述新的会话密钥的子密钥与所述终端建 立安全联盟。  The reliable network element is configured to receive a new session key sent by the authentication server, generate a subkey of the new session key, and use the subkey of the new session key with the terminal Establish a security alliance.
PCT/CN2010/071165 2009-09-04 2010-03-19 Session key update method and system WO2011026320A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200910171460.X 2009-09-04
CN200910171460.XA CN102014382B (en) 2009-09-04 2009-09-04 A kind of update method of session key and system

Publications (1)

Publication Number Publication Date
WO2011026320A1 true WO2011026320A1 (en) 2011-03-10

Family

ID=43648854

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2010/071165 WO2011026320A1 (en) 2009-09-04 2010-03-19 Session key update method and system

Country Status (2)

Country Link
CN (1) CN102014382B (en)
WO (1) WO2011026320A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114448747A (en) * 2020-10-19 2022-05-06 南京中兴新软件有限责任公司 Communication control method, communication terminal, and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1501746A (en) * 2002-10-15 2004-06-02 ���ǵ�����ʽ���� Authentication method for fast handover in a wireless local area network
CN101110672A (en) * 2006-07-19 2008-01-23 华为技术有限公司 Method and system for establishing ESP security alliance in communication system
US7480939B1 (en) * 2000-04-28 2009-01-20 3Com Corporation Enhancement to authentication protocol that uses a key lease
CN101480018A (en) * 2006-06-26 2009-07-08 卢森特技术有限公司 Method of creating security associations in mobile IP networks

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101009919A (en) * 2006-01-24 2007-08-01 华为技术有限公司 Authentication method based on the end-to-end communication of the mobile network
CN101183939B (en) * 2006-11-14 2010-06-09 中兴通讯股份有限公司 Multiple identification based reauthorization method
CN101217364B (en) * 2007-12-28 2012-03-21 中国科学院计算技术研究所 An organization structure and maintenance method of security context in media accessing control system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7480939B1 (en) * 2000-04-28 2009-01-20 3Com Corporation Enhancement to authentication protocol that uses a key lease
CN1501746A (en) * 2002-10-15 2004-06-02 ���ǵ�����ʽ���� Authentication method for fast handover in a wireless local area network
CN101480018A (en) * 2006-06-26 2009-07-08 卢森特技术有限公司 Method of creating security associations in mobile IP networks
CN101110672A (en) * 2006-07-19 2008-01-23 华为技术有限公司 Method and system for establishing ESP security alliance in communication system

Also Published As

Publication number Publication date
CN102014382B (en) 2015-08-12
CN102014382A (en) 2011-04-13

Similar Documents

Publication Publication Date Title
KR102018971B1 (en) Method for enabling network access device to access wireless network access point, network access device, application server and non-volatile computer readable storage medium
KR101009330B1 (en) Method, system and authentication centre for authenticating in end-to-end communications based on a mobile network
JP6732095B2 (en) Unified authentication for heterogeneous networks
CN101156352B (en) Authentication method, system and authentication center based on mobile network P2P communication
US8539559B2 (en) System for using an authorization token to separate authentication and authorization services
EP2469788B1 (en) Security access control method and system for wired local area network
EP2296392A1 (en) Authentication method, re-certification method and communication device
CN111050322B (en) GBA-based client registration and key sharing method, device and system
US20060274695A1 (en) System and method for effectuating a connection to a network
US20020120844A1 (en) Authentication and distribution of keys in mobile IP network
US20120131329A1 (en) Method and System for Accessing 3rd Generation Network
US20070143614A1 (en) Method, system and devices for protection of a communication or session
KR20110113565A (en) Secure access to a private network through a public wireless network
CN1921682B (en) Method for enhancing key negotiation in universal identifying framework
JP2007522695A (en) System, method, and device for authentication in a wireless local area network (WLAN)
JP2005524262A5 (en)
WO2010012201A1 (en) An authorization method, a communication apparatus and a communication system
WO2009135445A1 (en) Roaming authentication method based on wapi
WO2009074050A1 (en) A method, system and apparatus for authenticating an access point device
WO2012055297A1 (en) Authentication method and device of mobile terminal
WO2012040949A1 (en) Method for fast handing over extensible authentication protocol (eap) authentication in mobile worldwide interoperability for microwave access (wimax) network
CN103067345A (en) Method and system for varied GBA guiding
WO2012000313A1 (en) Method and system for home gateway certification
WO2011127732A1 (en) Method and system for multi-access authentication in next generation network
WO2011026320A1 (en) Session key update method and system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10813242

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10813242

Country of ref document: EP

Kind code of ref document: A1