公开(公告)号：US20210144135A1

公开(公告)日：2021-05-13

申请号：US17044065

申请日：2019-04-02

Applicant: NEC CORPORATION

Inventor： Anand Raghawa PRASAD ,  Sivakamy LAKSHMINARAYANAN ,  Sheeba Backia Mary BASKARAN ,  Sivabalan ARUMUGAM ,  Hironori ITO ,  Takahito YOSHIZAWA

IPC: H04L29/06 ,  H04W12/06 ,  H04W12/69 ,  H04L9/30

Abstract: The present disclosure relates to authentication methods supported by the User Equipment (UE) to the core network and authentication method (selected by the core network) to the UE. These can be used for negotiating any primary or secondary (or any) authentication method and are applicable when multiple authentication methods are supported at the UE and the network (authentication server). Further, the present disclosure also offers security solution to prevent modification or tampering of the parameters in the mechanisms in order to prevent attacks such as bidding-down, Denial of Service (DoS) and Man-In-The-Middle (MITM).

公开(公告)号：US20200280849A1

公开(公告)日：2020-09-03

申请号：US16650997

申请日：2018-09-27

Applicant: NEC Corporation

Inventor： Hironori ITO ,  Sivakamy LAKSHMINARAYANAN ,  Anand Raghawa PRASAD ,  Sivabalan ARUMUGAM ,  Sheeba Backia Mary BASKARAN

IPC: H04W12/04 ,  H04L29/06 ,  H04W12/06

Abstract: A communication terminal capable of preventing a reduction in security level that is caused at the time of establishing multiple connections via 3GPP Access and Non-3GPP Access. A communication terminal according to the present disclosure includes: a communication unit configured to communicate with gateway devices disposed in a preceding stage of a core network device via an Untrusted Non-3GPP Access; and a key derivation unit configured to derive a second security key used for security processing of a message transmitted using a defined protocol with the gateway device, from a first security key used for security processing of a message transmitted using a defined protocol with the core network device.

公开(公告)号：US20200099660A1

公开(公告)日：2020-03-26

申请号：US16484007

申请日：2018-02-06

Applicant: NEC CORPORATION

Inventor： Pradheepkumar SINGARAVELU ,  Anand Raghawa PRASAD ,  Sivabalan ARUMUGAM ,  Hironori ITO

IPC: H04L29/06 ,  H04L9/32 ,  G06F21/33 ,  H04L9/08 ,  H04L12/24

Abstract: A VNF package signing system, comprises an orchestration unit sending an acknowledge of receiving a VNF package including the VNF image, in response to the receiving the VNF package from a sender, a storage unit storing the VNF package and generating a certificate for the VNF package using a private key for at least generating a certificate for signing the VNF package and a HISEE (Hardware Isolated Secured Execution Environment) unit providing the private key in response to the request from the storage unit. The orchestration unit sends the acknowledge of receiving a VNF package when the storage unit successes generating the certificate of the VNF package.

公开(公告)号：US20190274039A1

公开(公告)日：2019-09-05

申请号：US16344966

申请日：2017-10-26

Applicant: NEC Corporation

Inventor： Anand Raghawa PRASAD ,  Sivakamy LAKSHMINARAYANAN ,  Sivabalan ARUMUGAM ,  Hironori ITO ,  Andreas KUNZ

IPC: H04W12/06 ,  H04W12/00 ,  H04W60/00

Abstract: The present disclosure aims to provide a communication system configured to execute a security procedure that is necessary to apply an Attach Procedure to a NextGen System. The communication system according to the present disclosure includes: a communication terminal (10) configured to transmit an Attach Request message including Network Slice Selection Assistance Information (NSSAI) and User Equipment (UE) Security Capabilities; and a network apparatus (20) that is arranged in a mobile network (30) and receives an Attach Request message, in which the network apparatus (20) determines whether to allow the communication terminal (10) to be connected to a core network indicated by the NSSAI among a plurality of core networks partitioned by network slicing using the NSSAI and the UE Security Capabilities.