公开(公告)号：US11082846B2

公开(公告)日：2021-08-03

申请号：US16355593

申请日：2019-03-15

Applicant: QUALCOMM Incorporated

Inventor： Philip Michael Hawkes ,  Anand Palanigounder ,  Michaela Vanderveen ,  James Alan Misener

IPC: H04W12/069 ,  H04W40/20 ,  H04W12/02 ,  H04W4/40 ,  H04W12/033 ,  H04W12/40 ,  H04L29/06

Abstract: Methods, devices, non-transitory processor-readable media of various embodiments provide for routing Misbehavior Detection Reports from vehicle-to-everything (V2X) onboard equipment to an associated entity. Various embodiments may include storing, within a Misbehavior Report Router resulting from provisioning of a certificate to a V2X onboard equipment, information that enables a Misbehavior Detection Report to be routed to the entity associated with misbehaving V2X onboard equipment, examining a Misbehavior Detection Report received from a reporting V2X onboard equipment to identify a Pseudonym Certificate Authority Misbehavior Report Router of the entity associated with misbehaving V2X onboard equipment, passing the Misbehavior Detection Report to the identified Pseudonym Certificate Authority Misbehavior Report Router, using information in the Misbehavior Detection Report with information stored in the Pseudonym Certificate Authority Misbehavior Report Router to route the Misbehavior Detection Report to the associated entity.

公开(公告)号：US10674358B2

公开(公告)日：2020-06-02

申请号：US15483808

申请日：2017-04-10

Applicant: QUALCOMM Incorporated

Inventor： Philip Michael Hawkes ,  Anand Palanigounder

IPC: H04W12/06 ,  H04L29/06 ,  G06F21/44 ,  H04L9/32 ,  H04W12/00

Abstract: Methods and devices are provided for generating, delegating, and/or authenticating hierarchical globally unique identifier (HGUID) certificates that are arranged in domain-name form to permit delegation and authentication as a Fully Qualified Domain Name (FQDN). A first hierarchical device certificate is obtained that includes at least part of a first unique device identifier for a first device and a base domain name, wherein the first hierarchical device certificate includes a fully qualified domain name and the first unique device identifier includes at least one of a type/model identifier or an origin/manufacturer of the first device. The first hierarchical device certificate is sent to an authenticating device to prove the first device has authority to perform a transaction within a restricted domain as defined by the first hierarchical device certificate. An indication may then be received from the authenticating device that the first device has been authenticated to perform the transaction.

公开(公告)号：US10674355B2

公开(公告)日：2020-06-02

申请号：US16402082

申请日：2019-05-02

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Gavin Bernard Horn ,  Anand Palanigounder

IPC: H04W12/04 ,  H04W12/06

Abstract: One feature pertains to a method operational at a device. The method includes performing key agreement with a core network device, and generating an authentication session key based in part on a secret key shared with a home subscriber server (HSS), where the authentication session key is known to the core network device. The method further includes generating a mobility session key based in part on the authentication session key, where the mobility session key is known to a mobility management entity (MME) served by the core network device and serving the device. The method also includes cryptographically securing data sent from the device to a wireless communication network using the mobility session key.

公开(公告)号：US20200145821A1

公开(公告)日：2020-05-07

申请号：US16669420

申请日：2019-10-30

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Adrian Edward Escott ,  Gavin Bernard Horn ,  Anand Palanigounder

IPC: H04W12/04 ,  H04W56/00 ,  H04W12/06 ,  H04W12/08 ,  H04W48/10 ,  H04W12/00

Abstract: A network entity may provision a UE and a base station with parameters for securing network communications. The network entity may send a system parameter to a UE and a private security key to a base station. Additionally, the UE and the base station may each receive synchronization information from the network which may be used to create a randomness parameter. The base station may create a signature based on the private security key, a cell identifier, and the randomness parameter and include the signature in a system information message that is to be broadcasted to one or more UEs. A UE connecting to the base station may receive the system information message from the base station, determine the cell identifier, and verify the system information message based on one or more of the cell identifier, the system parameter, or the randomness parameter.

公开(公告)号：US10516994B2

公开(公告)日：2019-12-24

申请号：US15449079

申请日：2017-03-03

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Anand Palanigounder ,  Adrian Edward Escott

IPC: H04W12/06 ,  H04L9/08 ,  H04L9/14 ,  H04L29/12 ,  H04L29/06 ,  H04W12/02 ,  H04W8/04 ,  H04W12/04 ,  H04W12/08 ,  H04W76/10 ,  H04W8/26 ,  H04W60/00 ,  H04W12/00

Abstract: Methods, systems, and devices for wireless communication are described. A user equipment (UE) may perform authentication procedures using an alternative identity (e.g., a privacy mobile subscriber identity (PMSI)) instead of an international mobile subscriber identity (IMSI) to protect the privacy of the user. If the UE does not have a PMSI, it may include a request for a PMSI initialization in an attach request. In some cases, the PMSI may be used once, and a new PMSI may be generated for the next attachment procedure. In some cases, a universal subscriber identity module (USIM) of the UE may not support storage of a PMSI. So a privacy module of the UE may communicate with the USIM according to the USIM's capabilities and may maintain a PMSI separately for communication with the network.

公开(公告)号：US20190261175A1

公开(公告)日：2019-08-22

申请号：US16402082

申请日：2019-05-02

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Gavin Bernard Horn ,  Anand Palanigounder

IPC: H04W12/04 ,  H04W12/06

Abstract: One feature pertains to a method operational at a device. The method includes performing key agreement with a core network device, and generating an authentication session key based in part on a secret key shared with a home subscriber server (HSS), where the authentication session key is known to the core network device. The method further includes generating a mobility session key based in part on the authentication session key, where the mobility session key is known to a mobility management entity (MME) served by the core network device and serving the device. The method also includes cryptographically securing data sent from the device to a wireless communication network using the mobility session key.

公开(公告)号：US10356670B2

公开(公告)日：2019-07-16

申请号：US15479877

申请日：2017-04-05

Applicant: QUALCOMM Incorporated

Inventor： David William Craig ,  Gavin Bernard Horn ,  Anand Palanigounder ,  Arnaud Meylan

IPC: H04L29/06 ,  H04W12/04 ,  H04W36/00 ,  H04W36/14 ,  H04W88/06 ,  H04W84/12 ,  H04W12/06

Abstract: Techniques for deriving a WLAN security context from an existing WWAN security context are provided. According to certain aspects, a user equipment (UE) establishes a secure connection with a wireless wide area network (WWAN). The UE may receive from the WWAN an indication of a wireless local area network (WLAN) for which to derive a security context. The UE then derives the security context for the WLAN, based on a security context for the WWAN obtained while establishing the secure connection with the WWAN and establishes a secure connection with the WLAN using the derived security context for the WLAN. This permits the UE to establish a Robust Security Network Association (RSNA) with the WLAN while avoiding lengthy authentication procedures with an AAA server, thus speeding up the association process.

公开(公告)号：US10334432B2

公开(公告)日：2019-06-25

申请号：US15849084

申请日：2017-12-20

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Gavin Bernard Horn ,  Anand Palanigounder

IPC: H04W12/04 ,  H04W12/06 ,  H04W8/04 ,  H04W48/02 ,  H04W60/00 ,  H04W12/08 ,  H04W8/18 ,  H04L29/06 ,  H04W4/70 ,  H04W76/14 ,  H04W8/20

Abstract: Methods, systems, and devices for wireless communication are described. A user equipment (UE) may obtain identification information for a device and may assist in establishing credentials by which the device accesses a wireless network. The UE may establish a connection with the wireless network using its own credentials, and register the device to access the wireless network by associating the identification information for the device with the credentials of the UE. The UE may receive or establish credentials by which the device accesses the wireless network and may communicate these credentials to the device over a local connection. In some cases, the UE may authenticate the device's identification information to determine whether the device is allowed to be registered with the wireless network.

公开(公告)号：US10142294B2

公开(公告)日：2018-11-27

申请号：US15140211

申请日：2016-04-27

Applicant: QUALCOMM Incorporated

Inventor： Peerapol Tinnakornsrisuphap ,  Anand Palanigounder ,  Ranjith Jayaram ,  Lakshminath Reddy Dondeti ,  Jun Wang

IPC: H04L29/06 ,  H04L12/46 ,  H04W92/02 ,  H04L12/66 ,  H04L29/12 ,  H04W76/12 ,  G06F3/14 ,  H04L29/08 ,  G06F1/32 ,  H04L12/28 ,  H04W84/04 ,  H04W84/10 ,  H04W88/08 ,  H04W88/16

Abstract: Multiple protocol tunnels (e.g., IPsec tunnels) are deployed to enable an access terminal that is connected to a network to access a local network associated with a femto access point. A first protocol tunnel is established between a security gateway and the femto access point. A second protocol tunnel is then established in either of two ways. In some implementations the second protocol tunnel is established between the access terminal and the security gateway. In other implementations the second protocol tunnel is established between the access terminal and the femto access point, whereby a portion of the tunnel is routed through the first tunnel.

公开(公告)号：US20180295506A1

公开(公告)日：2018-10-11

申请号：US15483808

申请日：2017-04-10

Applicant: QUALCOMM Incorporated

Inventor： Philip Michael Hawkes ,  Anand Palanigounder

IPC: H04W12/06 ,  H04L29/06

Abstract: Methods and devices are provided for generating, delegating, and/or authenticating hierarchical globally unique identifier (HGUID) certificates that are arranged in domain-name form to permit delegation and authentication as a Fully Qualified Domain Name (FQDN). A first hierarchical device certificate is obtained that includes at least part of a first unique device identifier for a first device and a base domain name, wherein the first hierarchical device certificate includes a fully qualified domain name and the first unique device identifier includes at least one of a type/model identifier or an origin/manufacturer of the first device. The first hierarchical device certificate is sent to an authenticating device to prove the first device has authority to perform a transaction within a restricted domain as defined by the first hierarchical device certificate. An indication may then be received from the authenticating device that the first device has been authenticated to perform the transaction.