公开(公告)号：US20240080316A1

公开(公告)日：2024-03-07

申请号：US18502943

申请日：2023-11-06

Applicant: Huawei Technologies Co. Ltd.

Inventor： Marcus Wong ,  Kaippallimalil Mathew John ,  Khosrow Tony Saboorian ,  Zhixian Xiang

IPC: H04L9/40 ,  H04L9/08 ,  H04L9/32

CPC classification number: H04L63/0846 ,  H04L9/0891 ,  H04L9/3271

Abstract: According to embodiments, a user equipment (UE) receives an access credential message, The access credential message indicates an access credential for an on-demand network for the UE to access. The access credential message further indicates a limited lifespan of the access credential. The UE transmits, to the on-demand network, an authentication and authorization request. The authentication and authorization request includes information about the access credential. The UE receives, from the on-demand network, an authentication and authorization response. The UE establishes a session with the on-demand network based on the authentication and authorization response.

公开(公告)号：US20210044427A1

公开(公告)日：2021-02-11

申请号：US17079228

申请日：2020-10-23

Applicant: Huawei Technologies Co., Ltd.

Inventor： Zhibi Wang ,  Marcus Wong

IPC: H04L9/08 ,  H04L9/30 ,  H04L9/14 ,  H04W12/06

Abstract: Serving network authentication and validation by a UE includes encrypting an identifier associated with the UE using a first instance of a public key associated with a serving network to which the UE is attempting to gain access; transmitting the identifier to the serving network; receiving from the serving network an authentication vector containing a second instance of the public key, the second instance of the public key having been encrypted using a key shared by the UE and a home network associated with the UE; decrypting the second instance of the public key using the key shared by the UE and the home network; comparing the first instance of the public key to the second instance of the public key; and when the first instance and the second instance are the same, determining that the home network has authenticated the serving network.

公开(公告)号：US20230231849A1

公开(公告)日：2023-07-20

申请号：US18189889

申请日：2023-03-24

Applicant: Huawei Technologies Co., Ltd.

Inventor： Zhixian Xiang ,  Marcus Wong

IPC: H04L9/40

CPC classification number: H04L63/0876 ,  H04L63/123

Abstract: A network device of a network may generate a network information container including information to be sent to a communication device. The network is a home network of the communication device that is served by a visited network. The network information container may be integrity protected and/or cipher protected. The network device may send, to the communication device via the visited network, a message including the network information container and a credential indicator indicating a type of credential used to protect the network information container. The type of credential may be a 3GPP or non-3GPP credential. The communication device may verify the network information container using one or more security parameters based on the type of credential, and obtain the information in the network information container when the verification succeeds, or discard the network information container when the verification fails.

公开(公告)号：US11552791B2

公开(公告)日：2023-01-10

申请号：US17079228

申请日：2020-10-23

Applicant: Huawei Technologies Co., Ltd.

Inventor： Zhibi Wang ,  Marcus Wong

IPC: H04W12/06 ,  H04L9/08 ,  H04L9/14 ,  H04L9/30 ,  H04W12/069

Abstract: Serving network authentication and validation by a UE includes encrypting an identifier associated with the UE using a first instance of a public key associated with a serving network to which the UE is attempting to gain access; transmitting the identifier to the serving network; receiving from the serving network an authentication vector containing a second instance of the public key, the second instance of the public key having been encrypted using a key shared by the UE and a home network associated with the UE; decrypting the second instance of the public key using the key shared by the UE and the home network; comparing the first instance of the public key to the second instance of the public key; and when the first instance and the second instance are the same, determining that the home network has authenticated the serving network.