公开(公告)号：US20170318463A1

公开(公告)日：2017-11-02

申请号：US15286002

申请日：2016-10-05

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Anand Palanigounder ,  Adrian Edward Escott

IPC: H04W12/06 ,  H04W48/02 ,  H04L29/06 ,  H04L9/08 ,  H04W12/04 ,  H04W60/00 ,  H04W12/10

CPC classification number: H04W12/06 ,  H04L9/0838 ,  H04L63/0428 ,  H04L63/0869 ,  H04L2209/80 ,  H04W8/24 ,  H04W12/02 ,  H04W12/04 ,  H04W12/10 ,  H04W36/0038 ,  H04W48/02 ,  H04W60/00

Abstract: A user equipment (UE) may be configured to transmit a registration message to a network to establish a secure connection for non-access stratum (NAS) messages between the network and a UE, the secure connection based at least in part on a UE identifier and security capabilities of the UE included in the registration message. The UE may then exchange NAS methods with the network over the secure connection. The UE may also establish, in response to the registration message, an authentication protocol with the network and encrypt subsequent NAS messages based in part on the authentication protocol.

公开(公告)号：US20160262015A1

公开(公告)日：2016-09-08

申请号：US14808862

申请日：2015-07-24

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Anand Palanigounder ,  Adrian Edward Escott ,  Gavin Bernard Horn

IPC: H04W12/02 ,  H04L29/12 ,  H04W12/04 ,  H04W12/06

CPC classification number: H04W12/02 ,  H04L61/6054 ,  H04W8/04 ,  H04W8/183 ,  H04W12/04 ,  H04W12/06

Abstract: Systems and techniques are disclosed to protect a user equipment's international mobile subscriber identity by providing a privacy mobile subscriber identity instead. In an attach attempt to a serving network, the UE provides the PMSI instead of IMSI, protecting the IMSI from exposure. The PMSI is determined between a home network server and the UE so that intermediate node elements in the serving network do not have knowledge of the relationship between the PMSI and the IMSI. Upon receipt of the PMSI in the attach request, the server generates a next PMSI to be used in a subsequent attach request and sends the next PMSI to the UE for confirmation. The UE confirms the next PMSI to synchronize between the UE and server and sends an acknowledgment token to the server. The UE and the server then each update local copies of the current and next PMSI values.

Abstract translation: 公开了通过提供隐私移动用户身份来保护用户设备的国际移动用户身份的系统和技术。 在对服务网络的附着尝试中，UE提供PMSI而不是IMSI，保护IMSI免受暴露。 在家庭网络服务器和UE之间确定PMSI，使得服务网络中的中间节点元素不知道PMSI和IMSI之间的关系。 在附件请求中接收到PMSI后，服务器生成下一个PMSI以便在随后的附加请求中使用，并将下一个PMSI发送给UE进行确认。 UE确认下一个PMSI以在UE和服务器之间同步，并向服务器发送确认令牌。 然后，UE和服务器每个更新当前和下一个PMSI值的本地副本。

公开(公告)号：US20150271675A1

公开(公告)日：2015-09-24

申请号：US14609003

申请日：2015-01-29

Applicant: QUALCOMM Incorporated

Inventor： Hong Cheng ,  Sudhir Kumar Baghel ,  Adrian Edward Escott

IPC: H04W12/08 ,  H04W8/00

CPC classification number: H04W12/08 ,  H04L63/0846 ,  H04L63/12 ,  H04W8/005 ,  H04W12/10 ,  H04W12/12 ,  H04W76/14

Abstract: Methods, systems, and devices are described for device-to-device (D2D) wireless communication. A device may receive a timing variable from a network while the device is in a connected mode. The device may then use the timing variable for D2D discovery message authentication. The device may compare the timing variable with a local timing variable to determine whether a difference between the two variables is within a maximum allowable offset. The device may announce the D2D discovery message to another device when the difference is within the maximum allowable offset.

Abstract translation: 描述了用于设备到设备（D2D）无线通信的方法，系统和设备。 当设备处于连接模式时，设备可以从网络接收定时变量。 然后，设备可以使用定时变量进行D2D发现消息认证。 该装置可以将定时变量与本地定时变量进行比较，以确定两个变量之间的差是否在最大允许偏移量内。 当差值在最大允许偏移范围内时，设备可以将D2D发现消息通知给另一设备。

公开(公告)号：US20140093081A1

公开(公告)日：2014-04-03

申请号：US14097077

申请日：2013-12-04

Applicant: QUALCOMM INCORPORATED

Inventor： Philip Michael Hawkes ,  Andreas Klaus Wachter ,  Adrian Edward Escott ,  Stephen William Edge

IPC: H04W12/04

CPC classification number: H04W12/08 ,  H04L63/0442 ,  H04L63/062 ,  H04L63/0823 ,  H04L63/0869 ,  H04L63/0876 ,  H04L63/166 ,  H04L63/205 ,  H04W4/02 ,  H04W12/04 ,  H04W12/06

Abstract: A particular method includes receiving, at a secure user plane location (SUPL) server, an indication from a mobile device of one or more transport layer security (TLS) cipher suites supported by the mobile device; determining whether the one or more TLS cipher suites include a TLS pre-shared key (TLS-PSK) cipher suite that is supported by the SUPL server; in response to determining whether the one or more TLS cipher suites include the TLS-PSK cipher suite that is supported by the SUPL server, performing a generic bootstrapping architecture (GBA)-based authentication process to authenticate the mobile device, or determining whether the SUPL server supports a certificate-based authentication method; and in response to determining that the SUPL server supports the certificate-based authentication method, performing the certificate-based authentication method that includes sending a server certificate to the mobile device and receiving a device certificate from the mobile device.

Abstract translation: 一种特定方法包括在安全用户平面位置（SUPL）服务器处接收来自移动设备的由移动设备支持的一个或多个传输层安全（TLS）密码套件的指示; 确定一个或多个TLS密码套件是否包括由SUPL服务器支持的TLS预共享密钥（TLS-PSK）密码套件; 响应于确定一个或多个TLS密码套件是否包括由SUPL服务器支持的TLS-PSK密码套件，执行通用引导架构（GBA）的认证过程以认证移动设备，或者确定SUPL 服务器支持基于证书的身份验证方法; 并且响应于确定SUPL服务器支持基于证书的认证方法，执行包括向移动设备发送服务器证书并从移动设备接收设备证书的基于证书的认证方法。