公开(公告)号：EP2707988A1

公开(公告)日：2014-03-19

申请号：EP12721992.1

申请日：2012-04-27

申请人： Alcatel Lucent

发明人： CAKULEV, Violeta ,  MIZIKOVSKY, Semyon B.

IPC分类号： H04L9/08

CPC分类号： H04L9/0894 ,  H04L63/0442 ,  H04L63/30

摘要： Techniques are disclosed for forming a discoverable security association in communication environments and for lawfully discovering security associations formed in communication environments. For example, a method for forming a discoverable security association between a first computing device and a second computing device comprises the following steps. The first computing device obtains from a key management entity." (i) a first private key assigned to the first computing device, which is computationally associative with a first public key associated with the first computing device; and (ii) a first root key assigned to the first computing device. The first computing device chooses a first random value and generating a first nonce, wherein the first nonce is a result of an encryption of the first random value using the first root key. The first computing device generates a first key component based on the first random value. The first computing device encrypts the first nonce and the first key component with a second public key associated with the second computing device using an identity-based encryption process and sends the encrypted first nonce and the encrypted first key component to the second computing device so as to establish a security association with the second computing device. The security association is discoverable by a third computing device unbeknownst to the first computing device and the second computing device.

公开(公告)号：EP2471211A2

公开(公告)日：2012-07-04

申请号：EP10748193.9

申请日：2010-08-23

申请人： Alcatel Lucent

发明人： SUNDARAM, Ganapathy, S. ,  CAKULEV, Violeta

IPC分类号： H04L9/08

CPC分类号： H04L9/3073 ,  H04L9/0825 ,  H04L9/0833 ,  H04L9/0847 ,  H04L63/306 ,  H04L2209/80

摘要： Principles of the invention provide one or more secure key management protocols for use in a communication environment such as a conferencing system. For example, a method for managing a conference between two or more parties in a communication system comprises the following steps. An identity based authenticated key exchange operation is performed between a conference management element of the communication system and each of the two or more parties seeking to participate in the conference, wherein messages exchanged between the conference management element and the two or more parties are encrypted based on respective identities of recipients of the messages, and further wherein the conference management element receives from each party during the key authentication operation a random key component that is computed based on a random number selected by the party. The conference management element sends to each party a set comprising the random key components computed by the parties. The conference management element receives from each party a random group key component, wherein the random group key component is computed by each party via a computation based on the random number used by the party during the key authentication operation and the random key components computed by a subset of others of the two or more parties seeking to participate in the conference. The conference management element sends to each party a set comprising the random group key components computed by the parties such that each party can compute the same group key for use in communicating with each other party through the conference management element.

公开(公告)号：EP2732578B1

公开(公告)日：2019-04-03

申请号：EP12737460.1

申请日：2012-07-13

申请人： Alcatel Lucent

发明人： SUNDARAM, Ganapathy, S. ,  BROUSTIS, Ioannis ,  CAKULEV, Violeta

IPC分类号： H04L9/08 ,  H04L9/30

公开(公告)号：EP2805535A1

公开(公告)日：2014-11-26

申请号：EP12813674.4

申请日：2012-12-20

申请人： ALCATEL LUCENT

发明人： BRUSILOVSKY, Alec ,  CAKULEV, Violeta

IPC分类号： H04W4/22 ,  H04L29/06 ,  H04W84/04

CPC分类号： H04W4/22 ,  H04L9/0866 ,  H04L9/3073 ,  H04L63/062 ,  H04L63/0823 ,  H04L2209/80 ,  H04L2463/061 ,  H04L2463/062 ,  H04W4/90 ,  H04W84/042

摘要： Techniques are disclosed for managing one or more public keys used for verification of one or more messages transferred over a communication network associated with a public warning system. In one example, a method comprises the following steps. A computing device of a communication network obtains key material for at least one source of a message generated for a public warning system. The computing device also obtains an identity of the source. A public key is computed by the computing device from the key material and the identity of the source. The public key is thus useable by the computing device to verify a message received from the source that is digitally signed using a corresponding private key of the source. In one example, the computing device comprises user equipment.

公开(公告)号：EP2556687A1

公开(公告)日：2013-02-13

申请号：EP11711428.0

申请日：2011-03-23

申请人： Alcatel Lucent

发明人： BRUSILOVSKY, Alec ,  CAKULEV, Violeta

IPC分类号： H04W12/02

CPC分类号： H04W12/02 ,  H04B7/15521 ,  H04L63/164 ,  H04W84/047

摘要： Techniques are disclosed for use in securing communications in environments such as those employing relay nodes. For example, in a communication network wherein a first computing device comprises a user node, a second computing device comprises a relay node, and a third computing device comprises a network access node, and wherein the relay node comprises: a first module for connecting the user node to the communication network; and a second module for connecting the relay node to the network access node, a method comprises the following steps. At least one packet is received at the first module of the relay node from the user node over an interface established between the user node and the relay node. At least one packet is sent from the first module of the relay node to the second module of the relay node via a secure channel established by the first module in accordance with a secure communication protocol. The at least one packet is sent from the second module of the relay node to the network access node via the secure channel and over an interface established between the relay node and the network access node.

公开(公告)号：EP2286617A1

公开(公告)日：2011-02-23

申请号：EP09728779.1

申请日：2009-03-13

申请人： Alcatel-Lucent USA Inc.

发明人： CAKULEV, Violeta ,  DOLAN, Michael, Francis ,  VASUDEVAN, Subramanian ,  ZHU, Lily, H.

IPC分类号： H04W36/14

CPC分类号： H04W36/14 ,  H04W36/0066 ,  H04W36/08 ,  H04W92/20

摘要： For handover between wireless telecommunications networks of different technology types, an air interface is set up between a first node 4 included in a network of a first technology type and a second node 10 included in a network of a second different technology type. Signaling messaging, in accordance with the second technology type, is related to handover of a mobile terminal from the network of the first technology type to the network of the second technology type. The signaling messaging is encapsulated in a container for transmission over the signaling interface. An identifier is associated with the container to indicate that it encapsulates the signaling messaging. When the identifier is detected at the first node, the container is sent over the interface to the second node. In one method in accordance with the invention, the first technology type is WiMAX and the identifier is a special service flow identifier. This may be detected at an Access Services Network Gateway (ASN GW), for example. A method in accordance with the invention thus permits the use of logical radio channels for encapsulating inter-technology signaling.

公开(公告)号：EP2077023B1

公开(公告)日：2019-05-01

申请号：EP07839392.3

申请日：2007-10-09

申请人： Alcatel-Lucent USA Inc.

发明人： CAKULEV, Violeta ,  RAJKUMAR, Ajay ,  SUNDARAM, Ganapathy Subramanian

IPC分类号： H04W12/06 ,  H04W36/00 ,  H04L29/06 ,  H04W80/04 ,  H04W88/18 ,  H04W76/10

公开(公告)号：EP2805535B1

公开(公告)日：2018-08-15

申请号：EP12813674.4

申请日：2012-12-20

申请人： Alcatel Lucent

发明人： BRUSILOVSKY, Alec ,  CAKULEV, Violeta

IPC分类号： H04L29/06 ,  H04W4/90 ,  H04W76/00 ,  H04L9/08 ,  H04L9/30 ,  H04W84/04

CPC分类号： H04W4/90 ,  H04L9/0866 ,  H04L9/3073 ,  H04L63/062 ,  H04L63/0823 ,  H04L2209/80 ,  H04L2463/061 ,  H04L2463/062 ,  H04W84/042

摘要： Techniques are disclosed for managing one or more public keys used for verification of one or more messages transferred over a communication network associated with a public warning system. In one example, a method comprises the following steps. A computing device of a communication network obtains key material for at least one source of a message generated for a public warning system. The computing device also obtains an identity of the source. A public key is computed by the computing device from the key material and the identity of the source. The public key is thus useable by the computing device to verify a message received from the source that is digitally signed using a corresponding private key of the source. In one example, the computing device comprises user equipment.

公开(公告)号：EP2471212B1

公开(公告)日：2018-07-18

申请号：EP10748194.7

申请日：2010-08-23

申请人： Alcatel Lucent

发明人： SUNDARAM, Ganapathy, S. ,  CAKULEV, Violeta

IPC分类号： H04L9/08 ,  H04L9/30 ,  H04L29/06

CPC分类号： H04L63/306 ,  H04L9/0825 ,  H04L9/0833 ,  H04L9/0847 ,  H04L9/0894 ,  H04L9/3073 ,  H04L2209/80

摘要： Principles of the invention provide one or more secure key management protocols for use in communication environments such as a media plane of a multimedia communication system. For example, a method for performing an authenticated key agreement protocol, in accordance with a multimedia communication system, between a first party and a second party comprises, at the first party, the following steps. Note that encryption/decryption is performed in accordance with an identity based encryption operation. At least one private key for the first party is obtained from a key service. A first message comprising an encrypted first random key component is sent from the first party to the second party, the first random key component having been computed at the first party, and the first message having been encrypted using a public key of the second party. A second message comprising an encrypted random key component pair is received at the first party from the second party, the random key component pair having been formed from the first random key component and a second random key component computed at the second party, and the second message having been encrypted at the second party using a public key of the first party. The second message is decrypted by the first party using the private key obtained by the first party from the key service to obtain the second random key component. A third message comprising the second random key component is sent from the first party to the second party, the third message having been encrypted using the public key of the second party. The first party computes a secure key based on the second random key component, the secure key being used for conducting at least one call session with the second party via a media plane of the multimedia communication system.

公开(公告)号：EP2406976B1

公开(公告)日：2016-07-20

申请号：EP10708446.9

申请日：2010-02-22

申请人： ALCATEL LUCENT

发明人： CAKULEV, Violeta ,  MIZIKOVSKY, Semyon, B. ,  MOONEY, Christopher, Francis

IPC分类号： H04W12/06 ,  H04W76/02

CPC分类号： H04W12/06 ,  H04W76/10

摘要： In conjunction with establishment of a session between an access network and user equipment of a communication system, session-specific information is transmitted from the access network to the user equipment. The session-specific information transmitted from the access network to the user equipment comprises information to be utilized in an authentication protocol carried out between the user equipment and an authentication server of the system. For example, the session-specific information transmitted from the access network to the user equipment may comprise an identifier of a gateway coupled between the access network and the authentication server.