WO2014104849A1 - Method for configuring and transmitting key - Google Patents
Method for configuring and transmitting key Download PDFInfo
- Publication number
- WO2014104849A1 WO2014104849A1 PCT/KR2013/012358 KR2013012358W WO2014104849A1 WO 2014104849 A1 WO2014104849 A1 WO 2014104849A1 KR 2013012358 W KR2013012358 W KR 2013012358W WO 2014104849 A1 WO2014104849 A1 WO 2014104849A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- scell
- kenb
- pcell
- enb
- cell
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims abstract description 81
- 230000004044 response Effects 0.000 claims abstract description 23
- 230000008569 process Effects 0.000 description 10
- 230000005540 biological transmission Effects 0.000 description 7
- 238000005516 engineering process Methods 0.000 description 7
- 230000011664 signaling Effects 0.000 description 7
- 238000004364 calculation method Methods 0.000 description 5
- 230000006854 communication Effects 0.000 description 5
- 238000010586 diagram Methods 0.000 description 4
- 238000004891 communication Methods 0.000 description 2
- 238000005259 measurement Methods 0.000 description 2
- 230000002776 aggregation Effects 0.000 description 1
- 238000004220 aggregation Methods 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000007774 longterm Effects 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0431—Key distribution or pre-distribution; Key agreement
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04J—MULTIPLEX COMMUNICATION
- H04J11/00—Orthogonal multiplex systems, e.g. using WALSH codes
- H04J11/0069—Cell search, i.e. determining cell identity [cell-ID]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W72/00—Local resource management
- H04W72/20—Control channels or signalling for resource management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W76/00—Connection management
- H04W76/10—Connection setup
- H04W76/15—Setup of multiple wireless link connections
Definitions
- the present application relates to radio communication technologies, and more particularly to a method for configuring and transmitting a key.
- FIG 1 is a schematic diagram illustrating the structure of a System Architecture Evolution (SAE).
- SAE System Architecture Evolution
- User Equipment (UE) 101 is a terminal device for receiving data.
- An Evolved Universal Terrestrial Radio Access Network (E-UTRAN) 102 is a radio access network which includes an eNodeB/NodeB for providing a radio network interface for the UE.
- a Mobile Management Entity (MME) 103 is configured to manage mobility contexts, session contexts and security information of the UE.
- a Serving Gateway (SGW) 104 is configured to provide functions of a subscriber plane.
- the MME 103 and the SGW 104 may be located in the same physical entity.
- a Packet Gateway (PGW) 105 is configured to implement charging and legal monitoring functions.
- the PGW 105 and the SGW 104 may be located in the same physical entity.
- a Policy and Charging Rules Function (PCRF) 106 is configured to provide QoS policies and charging rules.
- a Service GPRS Supporting Node (SGSN) 108 is a network node device for providing routing for data transmission in a Universal Mobile Telecommunications System (UMTS).
- UMTS Universal Mobile Telecommunications System
- a Home Subscriber Server (HSS) 109 is a home subsystem of the UE and is configured to protect user information including the current location of the UE, the address of a serving node, user security information and packet data contexts of the UE.
- each cell supports bandwidth of 20MHz at most.
- a Carrier Aggregation (CA) technology is introduced in a LTE-Advanced system.
- the UE may communicate with multiple cells that are managed by the same evolved Node B (eNB) and work on different frequencies, which makes transmission bandwidth up to 100MHz and doubles the uplink and downlink peak rate of the UE.
- eNB evolved Node B
- FIG. 2 is a schematic diagram illustrating cross-eNB CA.
- aggregated cells include a Primary Cell (PCell) and a Secondary Cell (SCell).
- PCell Primary Cell
- SCell Secondary Cell
- the PCell can be handed over only through a handover process.
- the UE transmits and receives Non-Access Stratum (NAS) information only in the PCell, and a Physical Uplink Control Channel (PUCCH) is transmitted only in the PCell.
- NAS Non-Access Stratum
- PUCCH Physical Uplink Control Channel
- the MME needs to encrypt signalings of non-access layer and the eNB needs to encrypt Radio Resource Control (RRC) signalings and data.
- RRC Radio Resource Control
- the MME calculates an initial key (KeNB) and transmits the KeNB to the eNB. Further, the MME transmits a set of parameters (Next Hop, called NH for short, and Next Hop Counter, called NCC for short) to the eNB through a handover message. These parameters may be used for calculating the KeNB.
- a source eNB calculates a KeNB used by a destination eNB.
- the KeNB used by the destination eNB may be a new KeNB that is generated based on a KeNB currently used and also referring to the downlink frequency and Protocol Control Information (PCI) of the destination eNB. This method is called a horizontal generating method.
- the KeNB used by the destination eNB may also be generated according to the NH and NCC saved by the source eNB. This method is called a vertical generating method. These methods have been defined in a current protocol 3GPP 33.401.
- the UE generates its KeNB by using the same algorithm as that used by the MME.
- the eNB transmits a message to the UE, to inform the UE of the NCC used currently by the eNB and indicate the UE to generate a new KeNB.
- the UE generates the new KeNB according to the horizontal or vertical generating method.
- the NCC is used to determine which one of the horizontal generating method and the vertical generating method is used by the UE. If the NCC is the same as the NCC corresponding to the KeNB used currently by the UE, the UE uses the horizontal generating method, and if the NCC is different from the NCC corresponding to the KeNB used currently by the UE, the UE uses the vertical generating method.
- KeNB Conventional transmission and calculation methods of KeNB are all applied to the case that only one cell encrypts data. That is, a key used by the serving cell has been defined in the current protocol.
- the SCell In cross-eNB CA technology, the SCell also participates in data transmission, and thus data should also be encrypted. In this case, multiple cells need to encrypt data, but it is not defined in the current protocol that how a key used by the SCell is configured.
- the present application provides several methods for configuring a key.
- data on these links may be encrypted with a key.
- a method for configuring and transmitting a key includes:
- PCell Primary Cell
- KeNB Key
- SCell Secondary Cell
- the determining, by the PCell, the KeNB used by the SCell comprises: calculating, by the PCell, the KeNB according to the downlink frequency and physical cell identity of the SCell.
- the KeNB used by the SCell is the same as a KeNB used by another SCell located in an evolved Node B (eNB) where the SCell is located.
- eNB evolved Node B
- the PCell determines that the KeNB used by the SCell is the same as a KeNB used by the PCell.
- a SCell establishing request message comprises the KeNB used by the SCell and the SCell establishing request message is transmitted to the SCell.
- a SCell establishing request message comprises indication information of the KeNB and the SCell establishing request message is transmitted to the SCell, wherein the indication information is used for indicating that the KeNB used by the SCell is the same as a KeNB used by another SCell located in an eNB where the SCell is located.
- the SCell establishing request message comprises an X2 interface identity of the UE, wherein the X2 interface identity of the UE is used as the indication information of the KeNB and is used for indicating the SCell to determine a context of the UE according to the X2 interface identity of the UE and obtain the KeNB used by the SCell.
- the configuration information for configuring the SCell comprises the KeNB used by the SCell and the configuration information is transmitted to the UE.
- the configuration information does not include the KeNB used by SCell, which indicates that the KeNB used by the SCell is same as the KeNB used by the PCell.
- the configuration information for configuring the SCell comprises indication information of the KeNB and the configuration information is transmitted to the UE, wherein the indication information is used for indicating that the KeNB used by the SCell is the same as a KeNB used by another SCell.
- the configuration information for configuring the SCell does not comprise the KeNB to indicate the UE to obtain the KeNB from a context of the UE;
- the indication information of the KeNB is a cell identity of said another SCell.
- a method for configuring and transmitting a key includes:
- SCell Secondary Cell
- MME Mobile Management Entity
- the key information is information for calculating a KeNB used by the SCell or is the KeNB used by the SCell.
- Figure 1 is a schematic diagram illustrating the structure of a SAE.
- Figure 2 is a schematic diagram illustrating cross-eNB CA.
- Figure 3 is a flowchart illustrating a method for configuring and transmitting a KeNB by a PCell according to the present application.
- Figure 4 is a flowchart illustrating a method according to a first example of the present application.
- Figure 5 is a flowchart illustrating a method according to a second example of the present application.
- Figure 6 is a flowchart illustrating a method according to a third example of the present application.
- Figure 7 is a flowchart illustrating a method for configuring a KeNB for a SCell by the MME according to the present application.
- Figure 8 is a flowchart illustrating a method according to a fourth example of the present application.
- the present application provides two methods for configuring and transmitting a KeNB used by a SCell.
- the KeNB is configured and transmitted by a PCell, and in the other method, the KeNB is configured by the MME.
- the two methods are illustrated respectively hereinafter.
- Figure 3 is a flowchart illustrating a method for configuring and transmitting a KeNB by a PCell according to the present application. As shown in Figure 3, the method includes following blocks.
- a serving cell (PCell) of UE determines a KeNB used by a SCell, and transmits the KeNB to the SCell.
- the PCell transmits the KeNB used by the SCell to the UE, and receives a response message from the UE.
- the PCell may make the KeNB used by the Scell different from a KeNB used by the PCell. For example, the PCell may calculate the KeNB used by the SCell according to the downlink frequency and cell identity of the SCell and the KeNB used by the PCell. Or, the PCell may make the KeNB used by the Scell identical to the KeNB used by the PCell. The method is illustrated in detailed hereinafter with reference to three examples.
- a first example describes a method for configuring and transmitting, by the PCell, the KeNB used by the SCell.
- the KeNB used by the PCell is different from the KeNB used by the SCell.
- the MME configures an initial KeNB for the PCell.
- a KeNB used by the serving cell of the UE needs to be recalculated.
- the calculation method of the KeNB used by the serving cell of the UE is the same as a current method, and is not illustrated herein.
- An eNB 1 is an eNB where the serving cell of the UE is located, i.e., the PCell of the UE, and an eNB 2 is an eNB where the SCell of the UE is located and provides a data bearer for the UE.
- the eNB 2 receives downlink data from a serving gateway or the eNB 1 and transmits the data to the UE.
- the cell and the eNB are not differentiated any more, and if the cell transmits/receives data, it means that the eNB where the cell is located transmits/receives the data.
- a signaling communication process between the MME and the gateway is omitted.
- the method shown in Figure 4 includes following blocks.
- an RRC connection establishing process is provided.
- the object of this process is to establish an RRC connection between the UE and the PCell. This process is the same as a current defined process and is omitted herein.
- the PCell of the UE transmits an Initial UE Message to the MME, where the Initial UE Message is the first S1 interface message and contains an S1 interface identity of the UE and a non-access message.
- the MME transmits an initial context establishing request message to the PCell of the UE.
- the MME transmits the initial context establishing request message to establish a context of the UE on the eNB.
- the initial context establishing request message contains the S1 interface identity of the UE, which uniquely identifies the UE at the S1 interface.
- the initial context establishing request message further contains the capability information of the UE and information of to-be-established LTE E-UTRAN Radio Access Bearer (E-RAB).
- E-RAB LTE E-UTRAN Radio Access Bearer
- the information of to-be-established LTE E-RAB contains an identity and QoS information of the E-RAB, and a transport layer address and tunnel port identity of serving gateway receiving uplink data.
- the initial context establishing request message contains an initial key (KeNB).
- the serving cell of the UE i.e., the PCell, saves the KeNB in the context of the UE, and encrypts signalings and data with the KeNB in subsequent signaling transmission and data transmission. If the serving cell of the UE is handed over or the MME updates the KeNB, the calculation method of KeNB used by the new serving cell is the same as a current defined method. Herein, suppose the serving cell obtains its KeNB according to the current defined method.
- the PCell decides to establish a new SCell for the UE.
- the PCell makes the decision based on different reasons.
- a first reason is because the load of the PCell is large and the SCell may transmit data of the UE, so as to share the load the PCell.
- a second reason is because the MME requests the PCell to establish a new bearer and the PCell decides to establish the new bearer in the SCell.
- the SCell is selected based on the channel quality of the cell detected by the UE, and the UE reports the detected channel quality to the PCell through a measurement report.
- the new SCell and the PCell are located in different eNBs. Suppose the new SCell is located in the eNB 2.
- the PCell transmits a SCell establishing request message to the SCell, and requests the eNB where the SCell is located to establish a new bearer for the UE.
- the serving cell of the UE decides to establish the bearer in the SCell.
- the eNB 1 may select the SCell according to radio signal quality.
- the SCell is located in the eNB 2, and the eNB 1 transmits a message to the eNB 2.
- the name of the message may be another name.
- the message contains an identity of destination cell, the X2 interface identity of the UE, information of to-be-established LTE E-RAB.
- the information of to-be-established LTE E-RAB contains an identity and QoS information of the E-RAB, and a transport layer address and tunnel port identity of serving gateway (or the eNB 1) receiving uplink data.
- the PCell determines the KeNB used by the Scell.
- the PCell determines the KeNB used by the SCell according to the KeNB used by the PCell and the downlink power and physical cell identity of the SCell.
- the SCell establishing request message contains the KeNB used by the SCell.
- the SCell transmits a SCell establishing response message to the PCell.
- the eNB 2 confirms that the SCell is established successfully, and transmits a message to the eNB 1.
- the SCell establishing response message contains information of the SCell newly located in the eNB 2, and a transport layer address and tunnel port identity of serving gateway receiving downlink data.
- the information of cell may contain a Physical Cell Identity (PCI), cell identity, Public Land Mobile Network (PLMN) identity, uplink and downlink frequency and bandwidth of the cell, and further contains the number of antenna ports, information of Multicast Broadcast Single Frequency Network (MBSFN) subframe, and the configuration of Physical Random Access Channel (PRACH).
- PCI Physical Cell Identity
- PLMN Public Land Mobile Network
- MMSFN Multicast Broadcast Single Frequency Network
- PRACH Physical Random Access Channel
- the information of cell further contains the general configuration of PDSCH of the cell, such as the reference signal power of the PDSCH and P-B.
- the information of serving cell further contains the configuration of Physical Hybrid ARQ Indicator Channel (PHICH), such as information indicating that the duration of the PHICH is normal or extended, and resources of the PHICH.
- PHICH Physical Hybrid ARQ Indicator Channel
- the PCell transmits a RRC reconfiguring request message to the UE, where the RRC reconfiguring request message contains the configuration information of the SCell.
- the configuration information of the SCell contains an identity of the SCell and the KeNB used by the SCell.
- the identity of the SCell may be a physical cell identity, a unique cell identity of the SCell, or an identity with other form.
- the UE saves one KeNB for each SCell, and the KeNB is used to encrypt and decrypt data of the SCell.
- the UE transmits a RRC reconfiguring response message to confirm that the SCell is configured successfully at the UE side.
- the PCell transmits an initial context establishing response message to the MME.
- the eNB 1 informs the MME that the context of the UE is established successfully, and informs the MME of the information of bearer established successfully by the eNB1.
- the initial context establishing response message contains the S1 interface identity of the UE, the identity of the bearer established successfully, the transport layer address and tunnel port identity of eNB receiving downlink data.
- the initial context establishing response message contains an identity (eNB Id) of the eNB 2 where the SCell is located, and a cell identity of the SCell.
- the PCell configures and transmits the KeNB used by the SCell.
- the KeNB used by the PCell is different from the that used by the SCell, and KeNBs used by SCells located in one eNB are the same.
- the MME configures an initial KeNB for the PCell.
- the KeNB used by the serving cell of the UE needs to be recalculated.
- the calculation method of the KeNB used by the serving cell of the UE is the same as the current method and is not illustrated herein.
- the eNB 1 is an eNB where the serving cell of the UE is located, i.e., the PCell of the UE, and the eNB 2 is an eNB where the SCell of the UE is located and provides a data bearer for the UE.
- the eNB 2 receives downlink data from a serving gateway or the eNB 1 and transmits the data to the UE.
- the cell and the eNB are not differentiated any more, and if the cell transmits/receives data, it means that the eNB where the cell is located transmits/receives the data.
- a signaling communication process between the MME and the gateway is omitted.
- the method shown in Figure 5 includes following blocks.
- Blocks 501 to 509 are the same as blocks 401 to 409 respectively and are omitted herein. After blocks 501 to 509 are performed, a SCell 1 has been established in the eNB, and a KeNB used by the SCell 1 has been configured.
- the PCell decides to establish a new SCell for the UE.
- the PCell makes the decision based on different reasons.
- a first reason is because the load of the PCell is large and the SCell may transmit data of the UE, so as to share the load the PCell.
- a second reason is because the MME requests the PCell to establish a new bearer and the PCell decides to establish the new bearer in the SCell.
- the SCell is selected based on the channel quality of the cell detected by the UE, and the UE reports the detected channel quality to the PCell through a measurement report.
- the new SCell and the PCell are located in different eNBs. Suppose the new SCell is located in the eNB 2.
- the PCell transmits a SCell establishing request message to the SCell, and requests the eNB where the SCell is located to establish the new bearer for the UE.
- the SCell 2 may use the same KeNB as that used by the SCell 1, and data of the SCell 2 is encrypted with the same KeNB as that used by the SCell 1.
- the SCell establishing request message contains the X2 interface identity of the UE, information of to-be-established bearer and an identity of the SCell 2.
- the identity of the SCell 2 may be a physical cell identity or a unique Cell Global Identity (CGI).
- the SCell establishing request message in block 511 further contains indication information for indicating that the KeNB used by the SCell 2 is the same as that used by the SCell 1. This indication information may be implemented through several methods.
- a SCell 1 is defined as a primary SCell. Only an X2 interface is established between the eNB where the PCell is located and the eNB where the SCell 1 is located, and the communication between the PCell and the multiple SCells is forwarded by the SCell 1.
- the PCell indicates that the SCell 1 is a primary SCell located in the eNB 2, or in the SCell establishing response message in block 406, the eNB 2 indicates that the SCell 1 is a primary SCell located in the eNB 2.
- the primary SCell and the KeNB used by the primary SCell are saved in the context of the UE served by the eNB 2.
- the SCell establishing request message in block 511 contains the X2 interface identity of the UE, through which the eNB 2 finds the context of the UE, obtains the KeNB and uses the KeNB to encrypt the data of the SCell 2.
- the SCell establishing request message in block 511 contains the KeNB used by the SCell 2.
- the SCell establishing request message in block 511 contains indication information for indicating that the KeNB used by the SCell 2 is the same as the KeNB used by which cell, such as the identity of the SCell 1.
- the SCell 2 transmits a SCell establishing response message to the PCell.
- the eNB 2 confirms that the SCell is established successfully, and transmits a message to the eNB 1.
- the SCell establishing response message contains information of SCell newly located in the eNB 2, a transport layer address and tunnel port identity of eNB receiving downlink data.
- the information of cell may contain a Physical Cell Identity (PCI), cell identity, Public Land Mobile Network (PLMN) identity, uplink and downlink frequency and bandwidth of the cell, and further contains the number of antenna ports, information of Multicast Broadcast Single Frequency Network (MBSFN) subframe, and the configuration of Physical Random Access Channel (PRACH).
- PCI Physical Cell Identity
- PLMN Public Land Mobile Network
- MMSFN Multicast Broadcast Single Frequency Network
- PRACH Physical Random Access Channel
- the information of cell further contains the general configuration of PDSCH of the cell, such as the reference signal power of the PDSCH and P-B.
- the information of serving cell further contains the configuration of PHICH, such as information indicating that the duration of the PHICH is normal or extended, and resources of the PHICH.
- the PCell transmits a RRC reconfiguring request message to the UE, where the RRC reconfiguring request message contains the configuration information of the SCell.
- the configuration information of the SCell contains the identity of the SCell 2 and the KeNB used by the SCell.
- the identity of the SCell may be a physical cell identity, or a unique cell identity of the SCell, or an identity with other form.
- the configuration information of the SCell contains the identity of the SCell 2, and indication information for indicating that the KeNB used by the SCell is the same as the KeNB used by which cell.
- the indication information may be implemented through several methods.
- the identity of the SCell 1 is contained, it means that the KeNB used by the SCell 2 is the same as that used by the SCell 1.
- the identity of cell may be a physical cell identity, or a unique identity of the cell, or an identity with other form.
- the configuration information of the SCell contains the KeNB used by the SCell 2.
- the configuration information of the SCell indicates the UE that a certain SCell is a primary SCell located in a certain eNB, the configuration information of the SCell is saved in the UE, and other SCells located in the eNB all use the same KeNB as that used by the primary SCell.
- the configuration information of the SCell does not contain the KeNB used by the Scell, and the UE finds the KeNB used by the SCell according to the saved context of the UE.
- the UE saves one KeNB for all SCells located in each eNB, and uses the KeNB to encrypt the data of the SCell.
- the UE transmits an RRC reconfiguring response message to confirm that the SCell is configured successfully at the UE side.
- a third example describes a method for configuring and transmitting, by the PCell, the KeNB used by the SCell.
- the MME configures an initial KeNB for the PCell.
- the KeNB used by the serving cell of the UE needs to be recalculated.
- the calculation method of the KeNB used by the serving cell of the UE is the same as a current method, and is not illustrated herein.
- the eNB 1 is an eNB where the serving cell of the UE is located, that is, the PCell of the UE
- eNB 2 is an eNB where the SCell of the UE is located and provides a data bearer.
- the eNB 2 receives downlink data from a serving gateway or the eNB 1 and transmits the data to the UE.
- the cell and the eNB are not differentiated any more, and if the cell transmits/receives data, it means that the eNB where the cell is located transmits/receives the data.
- a signaling communication process between the MME and the gateway is omitted. The method shown in Figure 6 includes following blocks.
- Blocks 601 to 609 are almost identical to blocks 401 to 409, and thus only difference is described herein.
- the PCell decides to establish a new SCell for the UE.
- the PCell also decides that the KeNB used by the new SCell is the same as that used by the PCell.
- the PCell transmits a SCell establishing request message to the SCell, and requests the eNB where the SCell is located to establish a new bearer for the UE.
- the SCell establishing request message contains the KeNB that is the same as that used by the PCell.
- the PCell transmits an RRC reconfiguring request message to the UE, where the RRC reconfiguring request message contains the configuration information of the SCell.
- the configuration information of the SCell contains the identity of the SCell 2 and does not contain the KeNB, which means that the KeNB used by the SCell is the KeNB saved in the context of the UE, i.e., the KeNB used by the PCell.
- the UE only saves one KeNB, which is used by the PCell and the SCell.
- the UE transmits an RRC reconfiguring response message to confirm that the SCell is configured successfully at the UE side.
- the forgoing is the first method for configuring and transmitting the KeNB used by the SCell provided by the present application.
- FIG. 7 is a flowchart illustrating a method for configuring a KeNB for a SCell by the MME according to the present application.
- the MME configures the KeNB used by the SCell.
- the method includes following blocks.
- the SCell of the UE transmits a cell key request to the MME and receives key information from the MME.
- the SCell transmits the key information received from the MME to the UE, and receives a response message from the UE.
- a fourth example describes a method for requesting for the KeNB by the SCell.
- the object of this method is to make the PCell unknowable the KeNB used by the SCell and make the eNB where the PCell is located unable to encrypt data, so as to improve the security of encryption.
- the method shown in Figure 8 includes follow blocks.
- Blocks 801 to 809 are identical to blocks 401 to 409 respectively and are omitted herein.
- Blocks after block 810 do not depend on blocks 801 to 809, and the implementation before block 810 may be replaced with other implementation, for example, the PCell does not configure the KeNB for the SCell, or the PCell configures the same KeNB as that used by the PCell for the SCell.
- the SCell transmits a cell key request message to request the MME to configure a new KeNB.
- the cell key request message contains an identity of cell, and the identity of cell may be a unique CGI.
- the MME transmits key information to the SCell, and the key information contains information for generating the new KeNB.
- the key information may be the KeNB, or information for calculating the KeNB.
- the SCell transmits the configuration information of the KeNB to the UE, and the configuration information contains the identity of cell, and information for generating the KeNB.
- the configuration information may be the KeNB, or information for calculating the KeNB.
- the UE transmits a cell key confirmation to confirm that the UE receives the information of the new KeNB.
- the KeNB used by the SCell is different from the KeNB used by the PCell, it is needed to generating and saving encryption information of cell at the UE side, where the encryption information contains encryption capability and the KeNB.
- the forgoing are the methods for configuring and transmitting a key provided by the present application.
- the data of the SCell is transmitted after being encrypted, so as to avoid a case that the data is decoded by other users, and further guarantee the security of the data.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Databases & Information Systems (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
Claims (13)
- A method for configuring and transmitting a key, comprising:a) determining, by a serving cell (Primary Cell (PCell)) of User Equipment (UE), a key (KeNB) used by a Secondary Cell (SCell), and transmitting the KeNB to the SCell; andb) transmitting, by the PCell, configuration information for configuring the SCell to the UE after receiving a response message from the SCell, and receiving a response message from the UE.
- The method of claim 1, wherein the determining, by the PCell, the KeNB used by the SCell comprises: calculating, by the PCell, the KeNB according to the downlink frequency and physical cell identity of the SCell.
- The method of claim 1 or 2, wherein the KeNB used by the SCell is the same as a KeNB used by another SCell located in an evolved Node B (eNB) where the SCell is located.
- The method of claim 1, wherein the PCell determines that the KeNB used by the SCell is the same as a KeNB used by the PCell.
- The method of claim 1, wherein, in step a), a SCell establishing request message comprises the KeNB used by the SCell and the SCell establishing request message is transmitted to the SCell.
- The method of claim 1, wherein, in step a), a SCell establishing request message comprises indication information of the KeNB and the SCell establishing request message is transmitted to the SCell, wherein the indication information is used for indicating that the KeNB used by the SCell is the same as a KeNB used by another SCell located in an eNB where the SCell is located.
- The method of claim 6, wherein, when the KeNB used by the SCell is the same as a KeNB used by a primary SCell located in the eNB where the SCell is located, the SCell establishing request message comprises an X2 interface identity of the UE, wherein the X2 interface identity of the UE is used as the indication information of the KeNB and is used for indicating the SCell to determine a context of the UE according to the X2 interface identity of the UE and obtain the KeNB used by the SCell.
- The method of claim 1, wherein, in step b), the configuration information for configuring the SCell comprises the KeNB used by the SCell and the configuration information is transmitted to the UE.
- The method of claim 1, wherein, in step b), the configuration information does not include the KeNB used by SCell, which indicates that the KeNB used by the SCell is same as the KeNB used by the PCell.
- The method of claim 1, wherein, in step b), the configuration information for configuring the SCell comprises indication information of the KeNB and the configuration information is transmitted to the UE, wherein the indication information is used for indicating that the KeNB used by the SCell is the same as a KeNB used by another SCell.
- The method of claim 10, wherein, when the KeNB used by the SCell is the same as a KeNB used by a primary SCell located in an eNB where the SCell is located, the configuration information for configuring the SCell does not comprise the KeNB to indicate the UE to obtain the KeNB from a context of the UE;or, the indication information of the KeNB is a cell identity of said another SCell.
- A method for configuring and transmitting a key, comprising:a) transmitting, by a Secondary Cell (SCell) of User Equipment (UE), a cell key request to a Mobile Management Entity (MME), and receiving key information from the MME; andb) transmitting, by the SCell, the key information received from the MME to the UE, and receiving a response message from the UE.
- The method of claim 12, wherein the key information is information for calculating a KeNB used by the SCell or is the KeNB used by the SCell.
Priority Applications (8)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP13867957.6A EP2939455B1 (en) | 2012-12-28 | 2013-12-30 | Method for configuring and transmitting key |
EP21188133.9A EP3955616A1 (en) | 2012-12-28 | 2013-12-30 | Method for configuring and transmitting key |
KR1020217020271A KR102416366B1 (en) | 2012-12-28 | 2013-12-30 | Method for configuring and transmitting key |
US14/647,381 US9924353B2 (en) | 2012-12-28 | 2013-12-30 | Method for configuring and transmitting key |
KR1020207014753A KR102272925B1 (en) | 2012-12-28 | 2013-12-30 | Method for configuring and transmitting key |
KR1020157017583A KR102116488B1 (en) | 2012-12-28 | 2013-12-30 | Method for configuring and transmitting key |
US15/923,767 US10433165B2 (en) | 2012-12-28 | 2018-03-16 | Method for configuring and transmitting key |
US16/587,682 US11265706B2 (en) | 2012-12-28 | 2019-09-30 | Method for configuring and transmitting key |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210583709.X | 2012-12-28 | ||
CN201210583709.XA CN103906053B (en) | 2012-12-28 | 2012-12-28 | The method of configuration and transmission cryptographic keys |
Related Child Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US14/647,381 A-371-Of-International US9924353B2 (en) | 2012-12-28 | 2013-12-30 | Method for configuring and transmitting key |
US15/923,767 Continuation US10433165B2 (en) | 2012-12-28 | 2018-03-16 | Method for configuring and transmitting key |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2014104849A1 true WO2014104849A1 (en) | 2014-07-03 |
Family
ID=50997161
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/KR2013/012358 WO2014104849A1 (en) | 2012-12-28 | 2013-12-30 | Method for configuring and transmitting key |
Country Status (5)
Country | Link |
---|---|
US (3) | US9924353B2 (en) |
EP (2) | EP2939455B1 (en) |
KR (3) | KR102272925B1 (en) |
CN (2) | CN103906053B (en) |
WO (1) | WO2014104849A1 (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2024065438A1 (en) * | 2022-09-29 | 2024-04-04 | Apple Inc. | Ue-initiated spcell access |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105165050B (en) * | 2013-08-09 | 2019-05-28 | 三星电子株式会社 | For providing the method and device of configuration information related with cell |
WO2015180181A1 (en) * | 2014-05-30 | 2015-12-03 | 华为技术有限公司 | Data transmission method and base station |
US11382004B2 (en) * | 2018-01-19 | 2022-07-05 | Sony Corporation | Method and apparatus for handoff of multiple bearers with differing quality of service levels in a wireless communication system |
US11363582B2 (en) * | 2019-12-20 | 2022-06-14 | Qualcomm Incorporated | Key provisioning for broadcast control channel protection in a wireless network |
EP4068849B1 (en) * | 2019-12-25 | 2024-03-27 | Huawei Technologies Co., Ltd. | Communication method and device |
CN116367153A (en) * | 2021-12-27 | 2023-06-30 | 华为技术有限公司 | Communication method, device and system |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2009253985A (en) * | 2008-04-07 | 2009-10-29 | Ntt Docomo Inc | Method and apparatus for generating new key |
KR20110017426A (en) * | 2008-06-06 | 2011-02-21 | 텔레폰악티에볼라겟엘엠에릭슨(펍) | Cryptographic key generation |
US20110274276A1 (en) * | 2010-05-10 | 2011-11-10 | Samsung Electronics Co. Ltd. | Method and system for positioning mobile station in handover procedure |
EP2456244A1 (en) | 2009-07-16 | 2012-05-23 | NTT DoCoMo, Inc. | Mobile communication system, mobile station and radio base station |
JP2012134975A (en) * | 2010-12-21 | 2012-07-12 | Tektronix Inc | Method for deciphering captured data packet, method for deciphering data in lte network, method for identifying deciphering data during handover, method for identifying deciphering data during idle mode mobility, and method for correlating user equipment identifiers to captured messages |
CN102651894A (en) | 2011-02-28 | 2012-08-29 | 华为技术有限公司 | Cell switching method, terminal equipment, base station equipment and communication system |
Family Cites Families (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8179860B2 (en) * | 2008-02-15 | 2012-05-15 | Alcatel Lucent | Systems and method for performing handovers, or key management while performing handovers in a wireless communication system |
CN102625302B (en) * | 2008-06-23 | 2016-03-30 | 华为技术有限公司 | Cipher key derivative method, equipment and system |
WO2010119656A1 (en) * | 2009-04-17 | 2010-10-21 | パナソニック株式会社 | Wireless communication apparatus |
CN101931950B (en) * | 2009-06-19 | 2014-02-05 | 电信科学技术研究院 | Method, system and device for acquiring key in switching process |
CN101998388B (en) * | 2009-08-21 | 2015-05-20 | 中兴通讯股份有限公司 | Interaction method and device for security information |
CN102026324B (en) * | 2009-09-18 | 2014-01-29 | 电信科学技术研究院 | Method, equipment and system for reconfiguring aggregated cell |
WO2011105780A2 (en) * | 2010-02-23 | 2011-09-01 | Lg Electronics Inc. | A method and an apparatus for initiating a session in home network system |
CN102104922B (en) * | 2010-06-12 | 2014-08-20 | 电信科学技术研究院 | Method, system and equipment for transferring switching information |
US9179457B2 (en) * | 2012-06-20 | 2015-11-03 | Ofinno Technologies, Llc | Carrier configuration in wireless networks |
JP2015095675A (en) * | 2013-11-08 | 2015-05-18 | 株式会社Nttドコモ | Mobile communication method |
-
2012
- 2012-12-28 CN CN201210583709.XA patent/CN103906053B/en active Active
- 2012-12-28 CN CN201910749488.0A patent/CN110290523B/en active Active
-
2013
- 2013-12-30 US US14/647,381 patent/US9924353B2/en active Active
- 2013-12-30 KR KR1020207014753A patent/KR102272925B1/en active IP Right Grant
- 2013-12-30 WO PCT/KR2013/012358 patent/WO2014104849A1/en active Application Filing
- 2013-12-30 EP EP13867957.6A patent/EP2939455B1/en active Active
- 2013-12-30 KR KR1020157017583A patent/KR102116488B1/en active IP Right Grant
- 2013-12-30 KR KR1020217020271A patent/KR102416366B1/en active IP Right Grant
- 2013-12-30 EP EP21188133.9A patent/EP3955616A1/en active Pending
-
2018
- 2018-03-16 US US15/923,767 patent/US10433165B2/en active Active
-
2019
- 2019-09-30 US US16/587,682 patent/US11265706B2/en active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2009253985A (en) * | 2008-04-07 | 2009-10-29 | Ntt Docomo Inc | Method and apparatus for generating new key |
KR20110017426A (en) * | 2008-06-06 | 2011-02-21 | 텔레폰악티에볼라겟엘엠에릭슨(펍) | Cryptographic key generation |
EP2456244A1 (en) | 2009-07-16 | 2012-05-23 | NTT DoCoMo, Inc. | Mobile communication system, mobile station and radio base station |
US20110274276A1 (en) * | 2010-05-10 | 2011-11-10 | Samsung Electronics Co. Ltd. | Method and system for positioning mobile station in handover procedure |
JP2012134975A (en) * | 2010-12-21 | 2012-07-12 | Tektronix Inc | Method for deciphering captured data packet, method for deciphering data in lte network, method for identifying deciphering data during handover, method for identifying deciphering data during idle mode mobility, and method for correlating user equipment identifiers to captured messages |
CN102651894A (en) | 2011-02-28 | 2012-08-29 | 华为技术有限公司 | Cell switching method, terminal equipment, base station equipment and communication system |
Non-Patent Citations (1)
Title |
---|
See also references of EP2939455A4 |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2024065438A1 (en) * | 2022-09-29 | 2024-04-04 | Apple Inc. | Ue-initiated spcell access |
Also Published As
Publication number | Publication date |
---|---|
KR20200060542A (en) | 2020-05-29 |
US20150312757A1 (en) | 2015-10-29 |
KR20150100710A (en) | 2015-09-02 |
KR102272925B1 (en) | 2021-07-05 |
KR102416366B1 (en) | 2022-07-05 |
US10433165B2 (en) | 2019-10-01 |
CN110290523A (en) | 2019-09-27 |
US20180227753A1 (en) | 2018-08-09 |
CN103906053B (en) | 2019-09-10 |
CN110290523B (en) | 2022-12-27 |
EP2939455A4 (en) | 2016-08-17 |
CN103906053A (en) | 2014-07-02 |
US11265706B2 (en) | 2022-03-01 |
EP2939455B1 (en) | 2021-08-04 |
KR20210084668A (en) | 2021-07-07 |
US20200037154A1 (en) | 2020-01-30 |
EP3955616A1 (en) | 2022-02-16 |
EP2939455A1 (en) | 2015-11-04 |
KR102116488B1 (en) | 2020-06-05 |
US9924353B2 (en) | 2018-03-20 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2014098470A1 (en) | Method and apparatus for configuring aggregate maximum bit rate | |
WO2014104849A1 (en) | Method for configuring and transmitting key | |
WO2015199411A1 (en) | Method and apparatus for assigning data to split bearers in dual connectivity | |
WO2011142568A2 (en) | Method and system for positioning mobile station in handover procedure | |
WO2015108389A1 (en) | Dual connectivity mode of operation of a user equipment in a wireless communication network | |
WO2014104853A1 (en) | Method for synchronizing encryption information between scell and ue | |
WO2016114623A1 (en) | Handover method and apparatus | |
WO2015147604A1 (en) | Method for allocating aggregate maximum bit rate of ue, method for allocating aggregate bit rates of non-gbr services and base stations | |
WO2015115761A1 (en) | Method and apparatus for ue mobility in a small cell system | |
WO2018230983A1 (en) | Method for reporting ue capability and device supporting the same | |
WO2018182224A1 (en) | Access control method and device for supporting same | |
WO2017078459A1 (en) | Method, ue and network node for protecting user privacy in networks | |
WO2014133359A1 (en) | Method and device for controlling cell connection from wireless lan in wireless communication system and providing valid information on peripheral wireless lan access points | |
WO2015020366A1 (en) | Methods, systems and devices for supporting local breakout in small cell architecture | |
WO2013187709A1 (en) | Method and system for securing control packets and data packets in a mobile broadband network environment | |
WO2023080677A1 (en) | Method by which distributed unit processes paging message in wireless mobile communication system, and apparatus |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 13867957 Country of ref document: EP Kind code of ref document: A1 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 14647381 Country of ref document: US |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
ENP | Entry into the national phase |
Ref document number: 20157017583 Country of ref document: KR Kind code of ref document: A |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2013867957 Country of ref document: EP |