公开(公告)号：US11909869B2

公开(公告)日：2024-02-20

申请号：US17304587

申请日：2021-06-23

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Xin Kang ,  Haiguang Wang ,  Zhongding Lei ,  Bo Zhang

IPC: H04L9/08 ,  H04L9/32

CPC classification number: H04L9/0841 ,  H04L9/0825 ,  H04L9/0869 ,  H04L9/3242

Abstract: Communication methods and apparatus are described. One communication method includes that user equipment (UE) sends an N1 message to a security anchor function (SEAF), where the N1 message carries a Diffie-Hellman (DH) public parameter or a DH public parameter index, the N1 message further carries an encrypted identifier of the UE, and the encrypted identifier is obtained by encrypting a permanent identifier of the UE and a first DH public key. The UE receives an authentication request that carries a random number and that is sent by the SEAF. The UE sends, to the SEAF, an authentication response used to respond to the authentication request, where the authentication response carries an authentication result calculated based on a root key and the random number.

公开(公告)号：US20230044476A1

公开(公告)日：2023-02-09

申请号：US17957906

申请日：2022-09-30

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Zhongding Lei ,  Haiguang Wang ,  Xin Kang

IPC: H04W12/50 ,  H04W12/069 ,  H04W12/108 ,  H04L9/32 ,  H04L9/30

Abstract: A terminal device verification method and an apparatus are provided. The method includes: A first network device receives a first message from a first terminal device. Then, the first network device verifies a pairing relationship between the first terminal device and a second terminal device. After the verification on the pairing relationship between the first terminal device and the second terminal device succeeds, the first network device sends a second message to the first terminal device, where the second message include first indication information, and the first indication information is used to indicate a pairing result of the first terminal device and the second terminal device. The pairing relationship between the first terminal device and the second terminal device is verified, so that the first terminal device and the second terminal device can be securely paired, to improve use security of the first terminal device and the second terminal device.

公开(公告)号：US20220030429A1

公开(公告)日：2022-01-27

申请号：US17498175

申请日：2021-10-11

Applicant: Huawei Technologies Co., Ltd.

Inventor： Zhongding Lei ,  Xin Kang ,  Haiguang Wang

IPC: H04W12/06 ,  H04W60/04 ,  H04W12/03 ,  H04W4/12

Abstract: An authentication method, apparatus, and device. The method includes sending, by a core network device, an authentication request message of a user to a data network device, where the authentication request message requests that the data network device perform identity authentication on the user, and receiving, by the core network device, an authentication response message sent by the data network device, where the authentication response message comprises first information, and the first information indicates user identity information of the user.

公开(公告)号：US20170099289A1

公开(公告)日：2017-04-06

申请号：US15380780

申请日：2016-12-15

Applicant: Huawei Technologies Co., Ltd.

Inventor： Haiguang Wang ,  Guilin Wang

IPC: H04L29/06 ,  H04W12/06 ,  H04W48/10 ,  H04W48/14 ,  H04L29/12 ,  H04W8/22

CPC classification number: H04L63/0876 ,  H04L61/6022 ,  H04L63/205 ,  H04W8/22 ,  H04W12/00518 ,  H04W12/06 ,  H04W48/10 ,  H04W48/14 ,  H04W88/08

Abstract: A temporary MAC address-based access method, apparatus, and system is provided. A method includes performing wireless communication access authentication on a base station for a non-base station device (STA) by sending, from the base station to the STA, a message indicating whether the base station supports the STA in using a temporary MAC address (TMA), receiving, at the base station, an authentication message in response to the message. The authentication message is sent by the STA to the base station by using the TMA in response to determining that the message indicates that the base station supports the STA in using the TMA. The method further includes parsing out the TMA by using the authentication message and sending an authentication response message to the STA according to the authentication message. The authentication response message indicates whether the base station allows the STA to use the TMA for communication.

公开(公告)号：US20240179614A1

公开(公告)日：2024-05-30

申请号：US18434782

申请日：2024-02-06

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Zhongding Lei ,  Haiguang Wang

IPC: H04W48/16 ,  H04W60/04 ,  H04W60/06 ,  H04W76/10 ,  H04W76/30

CPC classification number: H04W48/16 ,  H04W60/04 ,  H04W60/06 ,  H04W76/10 ,  H04W76/30

Abstract: A communication method and apparatus are provided. The method includes receiving, by an admission control network function, a first message including first parameter information used to update a number of terminal devices or sessions in a first network slice. The admission control network function verifies validity of the first parameter information. If the first parameter information is valid, the admission control network function updates the number of terminal devices or sessions in the first network slice. When the first parameter information is false, it indicates that the first parameter information is forged incorrect information, and the number of terminal devices or sessions in the first network slice is not updated. Incorrect updating, caused by a false message, on a configuration of a network slice can thereby be reduced, and stability of a service provided by the network slice can be improved.

公开(公告)号：US11863977B2

公开(公告)日：2024-01-02

申请号：US17243011

申请日：2021-04-28

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Zhongding Lei ,  Haiguang Wang ,  Xin Kang

IPC: H04W12/041 ,  H04W12/033

CPC classification number: H04W12/041 ,  H04W12/033

Abstract: A key generation method includes a user plane network function and a terminal device obtain key update information sent by each other. The user plane network function updates, by using the obtained key update information, a sub-key derived from a permanent key, to obtain a new protection key. The terminal device updates, by using the obtained key update information, a sub-key derived from the permanent key, to obtain a new protection key. The terminal device and the user plane network function perform, by using the new protection key, security protection on user plane data transmitted between the terminal device and the user plane network function.

公开(公告)号：US11212088B2

公开(公告)日：2021-12-28

申请号：US16564140

申请日：2019-09-09

Applicant: Huawei Technologies Co., Ltd.

Inventor： Xin Kang ,  Xuwu Zhang ,  Yanjiang Yang ,  Haiguang Wang ,  Zhongding Lei

IPC: H04L9/08

Abstract: Embodiments of this application provide a private key generation method and system, and a device. The method includes: receiving, by a terminal device, a first response message sent by a first network device, where the first response message includes at least a first sub-private key, and the first sub-private key is generated based on a first parameter set sent by a second network device; receiving, by the terminal device, a second response message sent by the second network device, where the second response message includes at least a second sub-private key, and the second sub-private key is generated based on a second parameter set sent by the first network device; and synthesizing, by the terminal device, a joint private key based on at least the first sub-private key and the second sub-private key.

公开(公告)号：US11122428B2

公开(公告)日：2021-09-14

申请号：US16237902

申请日：2019-01-02

Applicant: Huawei Technologies Co., Ltd.

Inventor： Haiguang Wang ,  Fei Liu ,  Xin Kang

IPC: H04W12/041 ,  H04L29/06 ,  H04L9/08 ,  H04L9/30 ,  H04W12/0433 ,  H04L29/08 ,  H04W8/04 ,  H04W12/02 ,  H04W12/06

Abstract: A system for transmission data protection includes user equipment (UE) and an access point. The access point sends a broadcast message that carries a public key for encryption. The UE receives and stores the public key for encryption. The UE obtains a global public key or a private key corresponding to the UE, and protects transmission data using the public key for encryption and the global public key or the private key corresponding to the UE.

公开(公告)号：US11026084B2

公开(公告)日：2021-06-01

申请号：US16297231

申请日：2019-03-08

Applicant: Huawei Technologies Co., Ltd.

Inventor： Xin Kang ,  Haiguang Wang ,  Yanjiang Yang ,  Zhongding Lei

IPC: H04W12/0433 ,  H04L29/06 ,  H04W12/03 ,  H04W12/30 ,  H04W12/069 ,  H04W12/0431 ,  H04W80/02

Abstract: This application discloses a mobile network authentication method, a terminal device, a server, and a network authentication entity. The method includes: receiving, by a first terminal device, a DH public key and a first ID that are sent by at least one second terminal device; sending a first message to a server, where the first message includes a DH public key of each second terminal device of the at least one second terminal device and a first ID of the second terminal device; receiving a second message sent by the server, where the second message includes a DH public key of the server and a second ID of the second terminal device that is generated by the server; and sending, by the first terminal device, the second ID of the second terminal device and the DH public key of the server to the second terminal device.