-
公开(公告)号:US20160094988A1
公开(公告)日:2016-03-31
申请号:US14674763
申请日:2015-03-31
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Anand Palanigounder , Gavin Horn
CPC classification number: H04W12/04 , H04L9/0822 , H04L9/0825 , H04L9/3247 , H04L9/3271 , H04L63/0892 , H04L2209/80 , H04L2463/062 , H04W12/06
Abstract: A method, an apparatus, and a computer program product for wireless communication are provided. The method may include establishing a connection with a serving network, transmitting an encrypted authentication credential that includes a randomly selected key encryption key (KEK) and a serving network identifier to the serving network, receiving authentication information and a signature from the serving network, and authenticating the serving network by verifying the signature based on the KEK. The encrypted authentication credential may be operative to identify the serving network. The signature may be generated using the KEK.
Abstract translation: 提供了一种用于无线通信的方法,装置和计算机程序产品。 该方法可以包括建立与服务网络的连接,向服务网络发送包括随机选择的密钥加密密钥(KEK)和服务网络标识符的加密认证凭证,从服务网络接收认证信息和签名,以及 通过验证基于KEK的签名来认证服务网络。 加密的认证证书可以用于识别服务网络。 签名可以使用KEK生成。
-
公开(公告)号:US20160087972A1
公开(公告)日:2016-03-24
申请号:US14794452
申请日:2015-07-08
Applicant: QUALCOMM Incorporated
Inventor: Kalle Ilmari Ahmavaara , Anand Palanigounder
CPC classification number: H04L63/0823 , G06F21/62 , H04L63/166 , H04L63/205 , H04W12/04 , H04W12/06
Abstract: A method for authentication, operational in a device configured to communicate with a Long-Term Evolution (LTE) network, is described. The method includes receiving a first message from the LTE network that indicates the LTE network supports establishment of an LTE security context based on executing certificate-based authentication in lieu of subscriber identity module (SIM)-based authentication. The method also includes communicating one or more messages with the LTE network to execute certificate-based authentication. The method further includes establishing the LTE security context based on keys derived from the certificate-based authentication.
Abstract translation: 描述了在被配置为与长期演进(LTE)网络通信的设备中操作的认证方法。 该方法包括基于执行基于证书的认证来代替基于用户识别模块(SIM)的认证,从LTE网络接收指示LTE网络支持建立LTE安全上下文的第一消息。 该方法还包括与LTE网络通信一个或多个消息以执行基于证书的认证。 该方法还包括基于从基于证书的认证导出的密钥来建立LTE安全上下文。
-
133.发明授权Apparatus and method for transitioning from a serving network node that supports an enhanced security context to a legacy serving network node 有权用于从支持增强安全上下文的服务网络节点向传统服务网络节点进行转换的设备和方法公开(公告)号:US09191812B2
公开(公告)日:2015-11-17
申请号:US14489833
申请日:2014-09-18
Applicant: QUALCOMM Incorporated
Inventor: Adrian Escott , Anand Palanigounder
CPC classification number: H04W12/04 , H04L9/14 , H04L2209/24 , H04W36/0038
Abstract: Disclosed is a method for transitioning a remote station from a current serving network node having an enhanced security context to a new serving network node. In the method, the remote station provides at least one legacy key, and generates at least one session key based on a calculation using a root key and using an information element associated with the enhanced security context. The remote station forwards a first message having the information element to the new serving network node. The remote station receives a second message, from the new serving network node, having a response based on either the legacy key or the session key. The remote station determines that the new serving network node does not support the enhanced security context if the response of the second message is based on the legacy key. Accordingly, the remote station protects communications based on the legacy key upon determining that the enhanced security context is not supported.
Abstract translation: 公开了一种用于将远程站从具有增强的安全上下文的当前服务网络节点转换到新的服务网络节点的方法。 在该方法中,远程站提供至少一个遗留密钥,并且基于使用根密钥的计算并使用与增强的安全上下文相关联的信息元素来生成至少一个会话密钥。 远程站将具有信息元素的第一消息转发到新的服务网络节点。 远程站从新的服务网络节点接收具有基于传统密钥或会话密钥的响应的第二消息。 如果第二消息的响应基于传统密钥,则远程站确定新的服务网络节点不支持增强的安全上下文。 因此,当确定不支持增强的安全上下文时,远程站保护基于传统密钥的通信。
-
134.发明申请公开(公告)号:US20130254519A1
公开(公告)日:2013-09-26
申请号:US13843395
申请日:2013-03-15
Applicant: QUALCOMM INCORPORATED
Inventor: Olivier Jean Benoit , Anand Palanigounder , Sai Yiu Duncan Ho , Aram Perez
IPC: H04L29/06
CPC classification number: H04L63/062 , G06F11/3051 , G06F13/10 , H04L63/08 , H04W4/80 , H04W12/04 , H04W12/06
Abstract: A configuration device is disclosed for configuring a network device in a communication network. The configuration device initiates pairing operations with the network device via a short-range communication connection. The configuration device determines whether the network device is in a registered state or an unregistered state. If the configuration device determines that the network device is in the unregistered state, the configuration device establishes a secure short-range communication channel between the configuration device and the network device. The configuration device transmits a network key to the network device via the secure short-range communication channel for configuring the network device to communicatively connect to the communication network. If the configuration device determines that the network device is in the registered state, the configuration device determines whether to unregister the network device.
Abstract translation: 公开了一种用于在通信网络中配置网络设备的配置设备。 配置设备通过短距离通信连接启动与网络设备的配对操作。 配置设备确定网络设备是处于注册状态还是未注册状态。 如果配置设备确定网络设备处于未注册状态,则配置设备在配置设备和网络设备之间建立安全的短距离通信信道。 配置设备通过安全短距离通信信道将网络密钥发送到网络设备,用于配置网络设备以通信方式连接到通信网络。 如果配置设备确定网络设备处于注册状态,则配置设备确定是否取消注册网络设备。
-
公开(公告)号:US12081972B2
公开(公告)日:2024-09-03
申请号:US16746495
申请日:2020-01-17
Applicant: QUALCOMM Incorporated
Inventor: Adrian Edward Escott , Soo Bum Lee , Anand Palanigounder
IPC: H04W12/06 , H04L9/12 , H04L9/32 , H04W12/0431 , H04W56/00
CPC classification number: H04W12/06 , H04L9/12 , H04L9/3242 , H04W12/0431 , H04W56/001
Abstract: Techniques and apparatus for protecting sequence numbers used in authentication procedures are described. One technique includes receiving, from a network, an authentication request comprising at least a random challenge. After receipt of the authentication request, a synchronization parameter is generated based at least in part on a key shared by the network and the UE, the random challenge, and a first message authentication code (MAC). The synchronization parameter and the first MAC are transmitted to the network in response to the authentication request.
-
Patent Agency Ranking
公开(公告)号:US12052372B2
公开(公告)日:2024-07-30
申请号:US17650813
申请日:2022-02-11
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Stefano Faccin , Anand Palanigounder , Miguel Griot , Adrian Edward Escott
IPC: H04L9/32 , H04L9/40 , H04W12/02 , H04W12/069 , H04W12/084
CPC classification number: H04L9/3242 , H04L63/205 , H04W12/02 , H04W12/069 , H04W12/084 , H04L63/10 , H04L63/20
Abstract: The present disclosure provides techniques that may be applied, for example, in a multi-slice network for maintaining privacy when attempting to access the network. An exemplary method generally includes transmitting a registration request message to a serving network to register with the serving network; receiving a first confirmation message indicating a secure connection with the serving network has been established; transmitting, after receiving the first confirmation message, a secure message to the serving network comprising an indication of at least one configured network slice that the UE wants to communicate over, wherein the at least one configured network slice is associated with a privacy flag that is set; and receiving a second confirmation message from the serving network indicating that the UE is permitted to communicate over the at least one configured network slice.
-
公开(公告)号:US11778470B2
公开(公告)日:2023-10-03
申请号:US17019169
申请日:2020-09-11
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Karl Georg Hampel , Adrian Edward Escott , Anand Palanigounder
CPC classification number: H04W12/102 , H04W12/06 , H04W40/12 , H04W76/19 , H04W84/047 , H04W92/04
Abstract: Methods, systems, and devices for wireless communications are described. A first parent node of a wireless backhaul network may receive, from a donor node of the wireless backhaul network, a token for a child node of the wireless backhaul network, the token being unique to a first wireless link between the first parent node and the child node. The first parent node may determine that a triggering event has occurred for a second wireless link between the first parent node and a second parent node. The first parent node may transmit, in response to determining that the triggering event has occurred, the token to the child node over the first wireless link to indicate for the child node to select a third parent node of the wireless backhaul network.
-
公开(公告)号:US11716615B2
公开(公告)日:2023-08-01
申请号:US16825963
申请日:2020-03-20
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Gavin Bernard Horn , Anand Palanigounder
IPC: H04W12/041 , H04L9/40 , H04L41/082 , H04W52/02 , H04W8/08 , H04W76/10 , H04W12/04 , H04W12/06 , H04W12/069 , H04W12/0431 , H04W36/00 , H04W4/70
CPC classification number: H04W12/041 , H04L41/082 , H04L63/0428 , H04L63/062 , H04L63/0876 , H04L63/0892 , H04W8/08 , H04W12/04 , H04W12/0431 , H04W12/06 , H04W12/069 , H04W52/0209 , H04W76/10 , H04W4/70 , H04W36/0038 , Y02D30/70
Abstract: In an aspect, a network supporting a number of client devices includes a network device that generates a context for a client device. The client device context may include network state information for the client device that enables the network to communicate with the client device. The client device may obtain, from a network device that serves a first service area of the network, information that includes a first client device context. The client device may enter a second service area of the network served by a second network device. Instead of performing a service area update procedure with the network, the client device may transmit a packet in the different service area with the information that includes the client device context. The client device may receive a service relocation message including information associated with the different network device in response to the transmission.
-
139.发明授权公开(公告)号:US11363650B2
公开(公告)日:2022-06-14
申请号:US16948506
申请日:2020-09-21
Applicant: QUALCOMM INCORPORATED
Inventor: Soo Bum Lee , Adrian Edward Escott , Mahmoud Watfa , Anand Palanigounder , Luis Fernando Brisson Lopes
Abstract: Wireless communications systems and methods related to globally unique temporary identity (GUTI) reallocation for cellular-Internet of thing (CIoT) are provided. A user equipment (UE) receives, from a network, a paging associated with a mobile-terminated early data transmission (MT-EDT). The UE transmits, by the UE to the network, a data request in response to the paging. The UE receives, from the network in response to the data request, a message including a global unique temporary identifier (GUTI) and at least one of data associated with the paging or a connection release indication.
-
公开(公告)号:US11329969B2
公开(公告)日:2022-05-10
申请号:US16445059
申请日:2019-06-18
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Gavin Bernard Horn , Anand Palanigounder
Abstract: In an aspect, a network supporting client devices includes one or more network nodes implementing network functions. Such network functions enable a client device to apply a security context to communications with the network when the client device is not in a connected mode. The client device obtains a user plane key shared with a user plane network function implemented at a first network node and/or a control plane key shared with a control plane network function implemented at a second network node. The client device protects a data packet with the user plane key or a control packet with the control plane key. The data packet includes first destination information indicating the first network node and the control packet includes second destination information indicating the second network node. The client device transmits the data packet or control packet.
-
-
-
-
-
-
-
-
-
Search Results
178
records
(took 0.018 seconds)
