WO2022117381A1 - Système et procédé de partage d'une carte sim dans des réseaux locaux - Google Patents

Système et procédé de partage d'une carte sim dans des réseaux locaux Download PDF

Info

Publication number
WO2022117381A1
WO2022117381A1 PCT/EP2021/082441 EP2021082441W WO2022117381A1 WO 2022117381 A1 WO2022117381 A1 WO 2022117381A1 EP 2021082441 W EP2021082441 W EP 2021082441W WO 2022117381 A1 WO2022117381 A1 WO 2022117381A1
Authority
WO
WIPO (PCT)
Prior art keywords
sim card
local area
ues
connection
lan
Prior art date
Application number
PCT/EP2021/082441
Other languages
English (en)
Inventor
Robert Scheffel
Andreas von Borany
Martin FRÖHLICH
Original Assignee
Shenzhen GOODIX Technology Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from EP21162362.4A external-priority patent/EP4009684A1/fr
Application filed by Shenzhen GOODIX Technology Co., Ltd. filed Critical Shenzhen GOODIX Technology Co., Ltd.
Publication of WO2022117381A1 publication Critical patent/WO2022117381A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/40Security arrangements using identity modules
    • H04W12/43Security arrangements using identity modules using shared identity modules, e.g. SIM sharing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Definitions

  • the invention relates to a system forming a local area network (LAN) which comprises a plurality of user equipment (UEs) and a method for SIM card sharing in a local area network, which is performed by the inventive system.
  • LAN local area network
  • UEs user equipment
  • UE 3GPP based cellular user equipment
  • LoT Internet of Things
  • the Universal Integrated Circuit Card (UICC - the hardware)
  • a USIM (Universal Subscriber Identity Module) application (the software) running on it
  • the UICC is a high secure hardware module that is connected (wired) to the UE .
  • the USIM application contains all secret keys and provider specific information.
  • the USIM application is provisioned by the cellular operator.
  • the secret keys inside the USIM application stored on the UICC must not be read out.
  • the keys are used to authenticate the UE against the core network with the help of a cryptographic algorithm.
  • the USIM application generates the secret session keys for the UE .
  • each UE requires a USIM application (running on the UICC) to attach to a core network successfully.
  • Adding provider keys and provider specific setting (profile) is called provisioning .
  • the modem to UICC communication is done via wired serial interface which is standardized in ISO/IEC 7816-3.
  • Every UE 2.1 to 2.4 communicating with a base station 4 comprises a SIM 3.1 to 3.4.
  • the UEs 2.1 to 2.4 communicate over 3GPP base cellular connection 6 with the base station 4, the connections are presented in dashed lines.
  • the UEs 2.1 to 2.4 which communicate among each other over a local area connection 5 form a local area network 1.
  • the local area connections are presented by solid lines.
  • Local area connection technologies can be wired or wireless, like IEEE-802.3 (Ethernet) , IEEE-802.11 (WiFi) , IEEE-802.15.4 (WPAN) or BT/BLE (Bluetooth, Bluetooth Low Energy) .
  • UICC UICC
  • SIM card 3 a separated secure hardware element
  • the objective of the invention is to further reduce the cost per UE in a local area network.
  • a system forming a local area network which comprises a plurality of user equipment (UEs) , whereas only one UE of the plurality of UEs comprises or a few UEs of the plurality of UEs comprise a SIM card connected to the respective UE via a wired serial interface and the plurality of UEs are interconnected via a local area connection technology, wherein only one active connection at the same time is establishable for each SIM card, which is ensured by a S IM card sharing protocol , wherein application protocol data units (APDUs ) are sent via a logical shared S IM card connection from the UE that contains the S IM card to a UE that requires a S IM card to attach via a network connection to a base station of a cellular network .
  • APDUs application protocol data units
  • the idea of the present invention is to have only one or a few S IM cards available inside a local area network (LAN) , whereas the LAN comprises multiple UEs (much more than only one or a few UEs ) with the possibility of 3gpp based cellular connection technology .
  • the UEs are interconnected via a local area connection technology .
  • the S IM card is connected via a wired serial interface (standardi zed in ISO/ IEC 7816-3 ) .
  • An active connection in the sense of the present invention means that a S IM card establishes a transfer of data between a UE and a base station via a network connection .
  • a sharing protocol provides the structure and language for file requests between a S IM card and a base station . So , it contains a defined set of rules and regulations that determine how data is transmitted between a S IM card and a base station ( or generally in telecommunications and computer networking) .
  • the number of available S IM cards limits the number of concurrent 3gpp based cellular connections , also called network connections .
  • the S IM card sharing protocol ensures that only one connection is established at the same time for each S IM card, which is done by the concept of a 'mutual exclusion' , that is widely known and used .
  • Mutual exclusion is j ust a simple command or request .
  • the SIM card sharing protocol forwards the SIM card communication, so called Application Protocol Data Units (APDUs) from a device/UE that contains a SIM card to a device/UE that requires a SIM card and vice versa using the shared SIM card connection.
  • the connection is a kind of logical connection from the UE with a SIM card to a UE with only a network connection, that utilizes the LAN connection.
  • the local area connection technology is IEEE-802.3 (Ethernet) , IEEE-802.11 (WiFi) , IEEE-802.15.4 (WPAN) and / or BT/BLE (Bluetooth/Bluetooth Low Energy) .
  • the local area connection technology is wired and / or wireless and / or meshed.
  • the advantage of using different local area connection technologies for the interconnection between the plurality of UEs in the LAN is that one can react to all circumstances and different UEs can be treated equally in the LAN.
  • the invention can be used independently of the connection technology.
  • the local area connections form multi hop connections. This has the advantage that , short' range connection technologies can be used to span large LANs. In other words, the size of the LAN is not limited by the maximum distance between individual nodes.
  • the object of the invention will also be solved by a method for SIM card sharing in a local area network (LAN) , which is performed by the system according to the system claims, wherein only one connection at the same time for each SIM card is established, which is ensured by a SIM card sharing protocol, the method comprising the following steps:
  • the 3gpp based cellular standard allows only one active connection per SIM card.
  • the SIM card sharing protocol ensures that only one connection is established at the same time for each SIM card.
  • the communication is always command (C-APDU) , response (R-APDU) based.
  • C-APDU command
  • R-APDU response
  • a block is a byte string conveyed in asynchronous characters.
  • the SIM card sharing protocol forwards the SIM card communication (APDUs) from a UE that contains a SIM card to a UE that requires a SIM card and vice versa.
  • APDUs SIM card communication
  • Real time behavior is not required, which means that the sharing protocol is not time critical. Thus, it is not required that a request is answered within a given timeframe. There is no time requirement from the 3gpp standard form S IM card communication .
  • the local area connections must be secured against eavesdropping to prevent the leaking of session keys of the cellular connection . Since the communication via the wired serial interface between UE and S IM card is not secured the local area network should at least provide the same level of security .
  • the data which is exchanged between two UEs of the LAN is encrypted by a local area connection technology which is used between two UEs of the LAN .
  • the data which is exchanged between two UEs of the LAN is encrypted by the S IM card sharing protocol .
  • the preferred variant is to use the encryption provided by the S IM card sharing protocol , because this ensures technology independence of the system .
  • an authentication mechanism is established between the UE that requires a S IM card and the UE that provides the S IM card, whereas the authentication mechanism is done by the local area connection technology or by the S IM card sharing protocol .
  • the UE that requires a S IM card and the UE that provides a S IM card must be trusting each other .
  • an authentication mechanism is required .
  • Thi s can either be done by the local area connection technology or by the S IM card sharing protocol . Every state of the art authentication mechanism can be used, e . g . pre-shared keys or certi ficates .
  • a cellular network is a communication network where the link to and from end nodes is wireless .
  • the network is distributed over land areas called "cells" , each cell is served by at least one fixed location base station; Many UEs can be located in such a cell and can be connected to the base station, whereas one UE of the many UEs will have the best connectivity to the base station in said cell .
  • the error rate is low as well as retransmissions are low, and in the sense of required signal strength, for short distance the signal strength can be reduced on UE side and energy can be saved .
  • each device can measure signal quality and strength .
  • the S IM card sharing protocol could have the possibility to announce those values inside the network and determine the UEs with the best values . Those UEs will be chosen inside the local network as gateway to the mobile network .
  • the method does not perform a finding of the UE with the best connectivity . Instead, the network can have multiple UEs , that have good cellular connectivity . These UEs need to be announced in the network, for example by the S IM card sharing protocol , and function as gateway .
  • the local area connection is used to forward said application data to the UE with the best cellular connectivity to increase the stability and reliability of the data communication via cellular connections . Usually local connections are more robust . So , it is the logical consequence that the local area connection to the device with the best cellular connectivity is preferred over a less good cellular connectivity .
  • Fig. 1 Local area network with a plurality of UEs according to the prior art, each UE require a UICC (SIM card) ;
  • UICC SIM card
  • FIG. 2 Local area network with a plurality of UEs according to the invention.
  • Figure 2 discloses schematically the inventive system forming a local area network 1.
  • only one UE 2.1 of the plurality of UEs 2.1-2.4 comprises a SIM card 3 which is connected to the respective UE 2.1 via a wired serial interface.
  • the plurality of UEs 2.1-2.4 are interconnected via a local area connection technology 5.
  • the local area connections 5 are presented by solid lines.
  • the local area connection technologies can be IEEE-802.3 (Ethernet) , IEEE-802.11 (WiFi) , IEEE- 802.15.4 (WPAN) and / or BT/BLE (Bluetooth/Bluetooth Low Energy) .
  • the logical shared SIM card connection 7 is presented by a dotted line between two UEs 2.1 and 2.2. Exemplarily, for these two UEs 2.1 and 2.2, the SIM card sharing protocol forwards application protocol data units (APDU) from the UE 2.1 that contains the SIM card 3 to the UE 2.2 that requires a SIM card, so that the UE 2.2 can attach to the base station 4 of a cellular network.
  • APDU application protocol data units
  • a few UEs of the LAN comprises a SIM card 3 but not all of the plurality of UEs in the LAN 1.
  • the advantage of using more than one SIM card in the LAN is that more than one active connection 6 at the same time can be established in the LAN 1 with the base station 4.
  • the local area connection 5 forwards application data to the UE with the best cellular connectivity in order to increase the stability and reliability of the data communication via cellular connections.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

La présente invention a trait à un système, formant un réseau local (LAN) qui comprend une pluralité d'équipements d'utilisateur (UE), et à un procédé de partage d'une carte SIM dans un réseau local, qui est réalisé par le système selon l'invention.L'objectif de la présente invention de réduire davantage le coût par UE dans un réseau local est résolu par un système, dans lequel un seul UE ou quelques UE de la pluralité d'UE comprennent une carte SIM connectée aux UE respectifs via une interface série câblée et la pluralité d'UE sont interconnectés via une technologie de connexion locale, dans lequel une seule connexion active en même temps peut être établie pour chaque carte SIM, ce qui est assuré par un protocole de partage de carte SIM, des unités de données de protocole d'application (APDU) étant envoyées par l'UE qui contient la carte SIM à un UE qui requiert une carte SIM pour se rattacher à une station de base d'un réseau cellulaire.
PCT/EP2021/082441 2020-12-04 2021-11-22 Système et procédé de partage d'une carte sim dans des réseaux locaux WO2022117381A1 (fr)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
EP20211979 2020-12-04
EP20211979.8 2020-12-04
EP21162362.4 2021-03-12
EP21162362.4A EP4009684A1 (fr) 2020-12-04 2021-03-12 Système et procédé de partage de carte sim dans des réseaux locaux

Publications (1)

Publication Number Publication Date
WO2022117381A1 true WO2022117381A1 (fr) 2022-06-09

Family

ID=78820275

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2021/082441 WO2022117381A1 (fr) 2020-12-04 2021-11-22 Système et procédé de partage d'une carte sim dans des réseaux locaux

Country Status (1)

Country Link
WO (1) WO2022117381A1 (fr)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040204087A1 (en) * 2002-03-26 2004-10-14 Hans Carlsson Method and apparatus for accessing a network using remote subscriber identity information
US20050255885A1 (en) * 2002-06-05 2005-11-17 Frank Majewski Of a subscriber identity module by several mobile communication devices
EP1689199A1 (fr) * 2005-02-07 2006-08-09 Samsung Electronics Co., Ltd. Procédé de partage d'une carte SIM dans une station mobile
EP3132628A1 (fr) * 2014-04-15 2017-02-22 Telefonaktiebolaget LM Ericsson (publ) Procédé et n uds destinés à intégrer des réseaux

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040204087A1 (en) * 2002-03-26 2004-10-14 Hans Carlsson Method and apparatus for accessing a network using remote subscriber identity information
US20050255885A1 (en) * 2002-06-05 2005-11-17 Frank Majewski Of a subscriber identity module by several mobile communication devices
EP1689199A1 (fr) * 2005-02-07 2006-08-09 Samsung Electronics Co., Ltd. Procédé de partage d'une carte SIM dans une station mobile
EP3132628A1 (fr) * 2014-04-15 2017-02-22 Telefonaktiebolaget LM Ericsson (publ) Procédé et n uds destinés à intégrer des réseaux

Similar Documents

Publication Publication Date Title
CN101496387B (zh) 用于移动无线网络中的接入认证的系统和方法
DE60132591T2 (de) Arrangieren der datenchiffrierung in einem drahtlosen telekommunikationssystem
US7512783B2 (en) Provision of security services for an ad-hoc network
US8265695B2 (en) Method for the management of a peripheral unit by a sim card in wireless communication terminals, and peripheral unit for implementing the method
CA2792490C (fr) Generation de cles dans un systeme de communication
AU2004306553B2 (en) Apparatuses and method for authentication in heterogeneuous IP networks
KR100692115B1 (ko) 인증 벡터 생성 장치, 가입자 인증 모듈, 무선 통신시스템, 인증 벡터 생성 방법, 연산 방법 및 가입자 인증방법
AU2003247574A1 (en) Authentication in a communication system
KR19990088046A (ko) 통신시스템에서의인증연동펑션및방법
WO2011139795A1 (fr) Appareil et procédés d'authentification en réseau sans fil
CN102783080A (zh) 安全多uim认证与密钥交换
US10225736B2 (en) Method and apparatus for managing authentication in wireless communication system while subscriber identity module is not available
WO2006024969A1 (fr) Procede d'authentification de reseau local d'entreprise sans fil
CA2503783A1 (fr) Systeme de test servant a verifier des processus de transmission au sein d'un reseau de telephonie mobile et procede d'authentification d'un telephone mobile a l'aide d'un systemede test de ce type
NO342167B1 (no) Autentisering i mobilsamvirkesystemer
US20080200147A1 (en) Authentication of Mobile Communication Networks
CN104584609A (zh) 具有密钥本地生成的智能卡初始个性化
CN107835204A (zh) 配置文件策略规则的安全控制
CN106921965A (zh) 一种wlan网络中实现eap认证的方法
CN108990048A (zh) 确定终端设备的标识的方法和装置
EP3767983A1 (fr) Authentification de tranche de réseau
CN100571460C (zh) 安全漫游的方法和装置
KR20070064671A (ko) 프럭시 스마트 카드 어플리케이션
WO2022117381A1 (fr) Système et procédé de partage d'une carte sim dans des réseaux locaux
EP4009684A1 (fr) Système et procédé de partage de carte sim dans des réseaux locaux

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21819099

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 21819099

Country of ref document: EP

Kind code of ref document: A1