公开(公告)号：US20190174311A1

公开(公告)日：2019-06-06

申请号：US16323553

申请日：2017-06-05

Applicant: NEC CORPORATION

Inventor： Sadafuku HAYASHI ,  Hisashi FUTAKI ,  Anand PRASAD

IPC: H04W12/04 ,  H04L9/08 ,  H04W12/00 ,  H04W16/28

Abstract: To enable security enhancement in the case of employing beamforming. A first apparatus according to the present invention includes: an information obtaining unit configured to obtain information related to beam selection; and a key generating unit configured to generate a security key for radio communication between a base station and a terminal apparatus based on the information related to the beam selection.

公开(公告)号：US20160330617A1

公开(公告)日：2016-11-10

申请号：US15107640

申请日：2014-11-20

Applicant: NEC CORPORATION

Inventor： Xiaowei ZHANG ,  Anand PRASAD

IPC: H04W12/04 ,  H04W12/08

Abstract: In order for supporting separate ciphering at an MeNB (20) and an SeNB (30), the MeNB (20) derives separate first and second keys (KUPenc-M, KUPenc-S) from a third key (KeNB). The first key (KUPenc-M) is used for confidentially protecting first traffic transmitted over U-Plane between the MeNB (20) and a UE (10). The first key (KUPenc-M) may be the same as current KUPenc or a new key. The second key (KUPenc-S) is used for confidentially protecting second traffic transmitted over the U-Plane between the UE (10) and the SeNB (30). The MeNB (20) sends the second key (KUPenc-S) to the SeNB (30). The UE (10) negotiates with the MeNB (20), and derives the second key (KUPenc-S) based on a result of the negotiation.

Abstract translation: 为了支持在MeNB（20）和SeNB（30）处的单独加密，MeNB（20）从第三密钥（KeNB）导出分开的第一和第二密钥（KUPenc-M，KUPenc-S）。 第一个密钥（KUPenc-M）用于保密地保护MeNB（20）和UE（10）之间在U平面上传输的第一个流量。 第一个键（KUPenc-M）可能与当前的KUPenc或新的键相同。 第二密钥（KUPenc-S）用于保密地保护在UE（10）和SeNB（30）之间通过U平面传输的第二业务。 MeNB（20）将第二个密钥（KUPenc-S）发送给SeNB（30）。 UE（10）与MeNB（20）协商，并根据协商结果得出第二密钥（KUPenc-S）。

公开(公告)号：US20190253264A1

公开(公告)日：2019-08-15

申请号：US16331581

申请日：2017-04-18

Applicant: NEC CORPORATION

Inventor： Pradheepkumar SINGARAVELU ,  Sivabalan ARUMUGAM ,  Anand PRASAD ,  Hironori ITO

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3268 ,  G06F9/455 ,  H04L9/0827 ,  H04L9/0877 ,  H04L9/321 ,  H04L9/3263

Abstract: A network function virtualization system, comprises a request receiving unit that receives a request to a certificate of at least one of data exchanging parties; a private key generator that generates a first private key information using a second private key information stored in a hardware-based isolated secure execution environment, in response to the request; a public key extractor that extracts a public key information of the first private key information; a public key information storage unit that stores the public key information; and a verifying unit that is accessible from the request receiving unit and verifies the certificate using the public key information corresponding to the certificate.