利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

11 条记录 (耗时 0.01 秒)

    METHOD TO AUTHENTICATE A USER AT A SERVICE PROVIDER
    2.
    发明公开
    METHOD TO AUTHENTICATE A USER AT A SERVICE PROVIDER 审中-公开

    公开(公告)号:EP3726873A1

    公开(公告)日:2020-10-21

    申请号:EP19305509.2

    申请日:2019-04-18

    申请人: Thales Dis France SA

    发明人: PAULIAC, Mireille PHAN, Ly Thanh

    IPC分类号: H04W12/06 H04L9/08

    摘要: The present invention relates to a method to authenticate a user having a GBA or AKMA compliant user equipment (UE) at a service provider (SP) using a GBA or AKMA protocol to communicate with a user equipment (UE), said method relying on an operator's (MNO) GBA or AKMA authentication framework while maintaining confidentiality of the communication between the user equipment (UE) and the service provider (SP) regarding the operator (MNO), said method using a Diffie-Hellman exchange between the user equipment (UE) and the service provider (SP), leading to a Diffie-Hellman session key (g xy ), while establishing the GBA or AKMA protocol, said method comprising a step of calculation of a final Network or AKMA Application Function key (iNAF_key or iAApF_key) to be used in further communication between the user equipment (UE) and the service provider (SP) by derivation from the Diffie-Hellman session key (g xy ) and from the GBA or AKMA protocol's service provider key (Ks_ext/int_NAF or K AF ), the user authentication being performed through the use of the GBA or AKMA protocol.

    METHOD TO PREVENT HIDDEN COMMUNICATION ON A CHANNEL DURING DEVICE AUTHENTICATION, CORRESPONDING VPLMN AND HPLMN
    3.
    发明公开
    METHOD TO PREVENT HIDDEN COMMUNICATION ON A CHANNEL DURING DEVICE AUTHENTICATION, CORRESPONDING VPLMN AND HPLMN 审中-公开

    公开(公告)号:EP4109944A1

    公开(公告)日:2022-12-28

    申请号:EP21305861.3

    申请日:2021-06-23

    申请人: Thales DIS France SA

    发明人: PHAN, Ly Thanh PAULIAC, Mireille

    IPC分类号: H04W12/00

    摘要: The invention concerns a method for preventing transmission of hidden information in a communication channel during a telecommunication terminal authentication phase, said method comprising:
    - Transmitting from a telecommunication terminal cooperating with a secure element 10 to a visited PLMN 11 a unique identifier of the secure element;
    - Generating at the visited PLMN 11 a required information REQ_INFO and sending the unique identifier and the required information REQ_INFO to a home PLMN 12 identified by a MCC/MNC comprised in the unique identifier;
    - At the home PLMN 12, generating a random value RAND2 and computing a cryptographic value RAND* based on the random value RAND2 and the required information REQ_INFO;
    - At the home PLMN 12, generating an authentication vector AV based on the cryptographic value RAND* and the long term key of the secure element, the long term key being associated to the unique identifier, and sending the authentication vector AV and the random value RAND2 or only the authentication vector AV containing the random value RAND2 instead of the cryptographic value RAND* to the visited PLMN 11;
    - At the visited PLMN 11:
    ○ If the home PLMN 12 has sent the authentication vector AV and the random value RAND2, computing a cryptographic value vRAND* from the required information REQ_INFO and the random value RAND2, verifying that the cryptographic value RAND* received in the authentication vector AV corresponds to the cryptographic value vRAND* computed at the visited PLMN 11 and, if yes, transmitting from the visited PLMN 11 to the telecommunication terminal 10 the cryptographic value RAND* and the authentication token AUTN retrieved from the authentication vector AV;
    ○ If the home PLMN 12 has sent only the authentication vector AV containing the random value RAND2 instead of the cryptographic value RAND*, computing another cryptographic value RAND* from the required information REQ_INFO and the random value RAND2, and transmitting from the visited PLMN 11 to the telecommunication terminal 10 the other cryptographic value RAND* and the authentication token AUTN retrieved from the authentication vector AV.

    A METHOD AND APPARATUSES FOR AUTHENTICATING A GROUP OF WIRELESS COMMUNICATION DEVICES
    4.
    发明公开
    A METHOD AND APPARATUSES FOR AUTHENTICATING A GROUP OF WIRELESS COMMUNICATION DEVICES 审中-公开

    公开(公告)号:EP3657752A1

    公开(公告)日:2020-05-27

    申请号:EP18306564.8

    申请日:2018-11-23

    申请人: Thales Dis France SA

    发明人: PHAN, Ly Thanh

    IPC分类号: H04L29/06 H04W12/06 H04W88/16 H04W4/08

    摘要: The invention relates to a gateway relaying node (201) for the authentication a group (200) comprising a plurality of wireless communication devices localized in the vicinity of said node (201) and requesting access to a wireless communication network (130), the gateway relaying node (201) being adapted to communicate directly with the requesting wireless communication devices and with the wireless communication network, the gateway relaying node (201) being further adapted to receive (214, 215) all or part of a synthetic authentication vector (300) generated by an authentication server (203); generate (216) a local AUTHENTICATE command for each of the requesting wireless communication devices (200), a local AUTHENTICATE command being composed of the random number RAND and of the bits extracted from the synthetic authentication vector and corresponding to the sampled version of individual authentication vectors corresponding to the requesting wireless communication devices (200) for which the local AUTHENTICATE command is intended; transmitting the local AUTHENTICATE commands (217a, 217b, 217c) to each of the requesting wireless communication devices (200).

    A SYSTEM FOR CONNECTING A TELECOMMUNICATION TERMINAL TO A NATIONAL NETWORK AND CORRESPONDING SECURE ELEMENT AND TERMINAL
    7.
    发明公开
    A SYSTEM FOR CONNECTING A TELECOMMUNICATION TERMINAL TO A NATIONAL NETWORK AND CORRESPONDING SECURE ELEMENT AND TERMINAL 审中-公开

    公开(公告)号:EP3713309A1

    公开(公告)日:2020-09-23

    申请号:EP19305327.9

    申请日:2019-03-18

    申请人: Thales Dis France SA

    发明人: GROS, Jean-François PHAN, Ly Thanh DANY, Vincent

    IPC分类号: H04W48/18 H04W8/18 H04W88/02

    摘要: The invention proposes a system comprising a secure element (20) cooperating with a telecommunication terminal, the secure element (20) or the terminal comprising files in which MCC/MNC codes of MNOs are stored, the telecommunication terminal being configured to select the files in order to try to attach the terminal to the telecommunication network of a MNO, wherein the secure element (20) or the terminal also comprises a file, called National like network file, storing national network codes (MCC/MNC) of networks of the country of the Home PLMN of the secure element (20), the terminal selecting the National like network file in order to try to connect the terminal to one of the networks referenced in the National like network file, the terminal being configured to regularly check whether Home PLMN or a PLMN present in the EHPLMN file is available, if the EHPLMN file exists, in order to connect the terminal to the Home PLMN or to the PLMN of the EHPLMN file.