-
公开(公告)号:US20160127896A1
公开(公告)日:2016-05-05
申请号:US14919397
申请日:2015-10-21
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Gavin Bernard Horn , Anand Palanigounder
CPC classification number: H04W12/04 , H04L2463/061 , H04W12/06
Abstract: One feature pertains to a method operational at a device. The method includes performing authentication and key agreement with a session key management entity (SKME) device. The method also includes generating an authentication session key based in part on a secret key shared with a home subscriber server, the authentication session key being known to the SKME device. The method further includes generating a mobility session key based in part on the authentication session key, the mobility session key being known to a mobility management entity serving the device. Data sent from the device to a wireless communication network is cryptographically secured using the mobility session key.
Abstract translation: 一个特征涉及在设备上操作的方法。 该方法包括与会话密钥管理实体(SKME)设备进行认证和密钥协商。 该方法还包括部分地基于与归属订户服务器共享的密钥生成认证会话密钥,认证会话密钥是SKME设备已知的。 所述方法还包括部分地基于所述认证会话密钥来生成移动性会话密钥,所述移动性会话密钥对于为所述设备服务的移动性管理实体是已知的。 从设备发送到无线通信网络的数据使用移动性会话密钥加密地保护。
-
公开(公告)号:US20160021691A1
公开(公告)日:2016-01-21
申请号:US14606736
申请日:2015-01-27
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Gavin Bernard Horn , Anand Palanigounder
CPC classification number: H04W12/04 , H04L63/0853 , H04L63/18 , H04W4/005 , H04W4/70 , H04W8/04 , H04W8/18 , H04W8/205 , H04W12/06 , H04W12/08 , H04W48/02 , H04W60/00 , H04W76/023 , H04W76/14
Abstract: Methods, systems, and devices for wireless communication at a network entity are described. A user equipment (UE) may obtain identification information for a device and may assist in establishing credentials by which the device accesses a wireless network, e.g., a cellular network. The UE may establish a connection with the wireless network using its own credentials. A device subscription administration server, which may be an entity within the wireless network core, may authenticate the device based on the identification information, which may include registering the device to access the wireless network, e.g., using different credentials than those of the UE, by associating the device identification information with the credentials of the UE. Once registered, the device may communicate with the wireless network. The device subscription administration server may then establish access parameters and communicate them to the UE, which may transmit them to the device over communication link.
Abstract translation: 描述了在网络实体处的无线通信的方法,系统和设备。 用户设备(UE)可以获得设备的识别信息,并且可以帮助建立设备访问诸如蜂窝网络的无线网络的凭证。 UE可以使用其自己的凭证与无线网络建立连接。 可以是无线网络核心内的实体的设备订阅管理服务器可以基于识别信息来认证设备,所述标识信息可以包括将设备注册以访问无线网络,例如使用与UE不同的凭证, 通过将设备标识信息与UE的凭证相关联。 一旦注册,设备可以与无线网络通信。 然后,设备订阅管理服务器可以建立接入参数并将其传送给UE,UE可以通过通信链路将它们发送到设备。
-
公开(公告)号:US09185559B2
公开(公告)日:2015-11-10
申请号:US13917381
申请日:2013-06-13
Applicant: QUALCOMM Incorporated
Inventor: Adrian Escott , Anand Palanigounder , Brian M Rosenberg
CPC classification number: H04W12/06 , H04L63/0823 , H04L63/0869 , H04W48/02 , H04W76/10 , H04W88/02
Abstract: A method and apparatus are provided for a subsidizing service provider entity to personalize a subscriber device to ensure the subscriber device cannot be used in a network of a different service provider entity. As the service provider entity subsidizes the subscriber device, it desires to ensure that subscriber device is personalized such that the subscriber device may operate only in its network and not a network of a different service provider entity. The subscriber device is pre-configured with a plurality of provider-specific and/or unassociated root certificates by the manufacturer of the subscriber device. A communication service is established between the service provider entity and the subscriber device allowing for the mutual authentication of the subscriber device and the service provider entity. After mutual authentication, the service provider entity sends a command to the subscriber device to disable/delete some/all root certificates that are unassociated with the service provider entity.
Abstract translation: 提供了一种用于补贴服务提供商实体个人化用户设备以确保订户设备不能在不同服务提供商实体的网络中使用的方法和装置。 当服务提供商实体补贴用户设备时,它希望确保订户设备被个性化,使得订户设备可以仅在其网络中操作,而不是不同于不同服务提供商实体的网络。 用户设备由用户设备的制造商预先配置有多个提供者特定和/或未相关的根证书。 在服务提供商实体和用户设备之间建立通信服务,允许用户设备和服务提供商实体的相互认证。 在相互认证之后,服务提供商实体向用户设备发送命令以禁用/删除与服务提供商实体不相关的一些/所有根证书。
-
24.发明授权公开(公告)号:US09100382B2
公开(公告)日:2015-08-04
申请号:US13843395
申请日:2013-03-15
Applicant: QUALCOMM Incorporated
Inventor: Olivier Jean Benoit , Anand Palanigounder , Sai Yiu Duncan Ho , Aram Perez , Bibhu Prasad Mohanty , Etan Gur Cohen
CPC classification number: H04L63/062 , G06F11/3051 , G06F13/10 , H04L63/08 , H04W4/80 , H04W12/04 , H04W12/06
Abstract: A configuration device is disclosed for configuring a network device in a communication network. The configuration device initiates pairing operations with the network device via a short-range communication connection. The configuration device determines whether the network device is in a registered state or an unregistered state. If the configuration device determines that the network device is in the unregistered state, the configuration device establishes a secure short-range communication channel between the configuration device and the network device. The configuration device transmits a network key to the network device via the secure short-range communication channel for configuring the network device to communicatively connect to the communication network. If the configuration device determines that the network device is in the registered state, the configuration device determines whether to unregister the network device.
Abstract translation: 公开了一种用于在通信网络中配置网络设备的配置设备。 配置设备通过短距离通信连接启动与网络设备的配对操作。 配置设备确定网络设备是处于注册状态还是未注册状态。 如果配置设备确定网络设备处于未注册状态,则配置设备在配置设备和网络设备之间建立安全的短距离通信信道。 配置设备通过安全短距离通信信道将网络密钥发送到网络设备,用于配置网络设备以通信方式连接到通信网络。 如果配置设备确定网络设备处于注册状态,则配置设备确定是否取消注册网络设备。
-
公开(公告)号:US20140310402A1
公开(公告)日:2014-10-16
申请号:US14168836
申请日:2014-01-30
Applicant: QUALCOMM INCORPORATED
Inventor: Gerardo Giaretta , Sivaramakrishna Veerepalli , Kalle Ilmari Ahmavaara , Roozbeh Atarius , John Wallace Nasielski , Anand Palanigounder
IPC: H04L12/851 , H04L12/26
CPC classification number: H04L47/2441 , G06F11/34 , H04L41/0893 , H04L43/062 , H04L67/22
Abstract: Systems, devices, and methods for reporting information in real time about traffic generated by each application for a device are described. In one aspect, the network can configure a list of applications user equipment (UE) devices need to report traffic information for and then when one of these applications starts a communication, the UE may send traffic descriptor(s) describing the traffic generated by the application. In this way the network can accurately identify the traffic and take actions based on UE report and local policy or subscription.
Abstract translation: 描述用于实时报告关于设备的每个应用所产生的流量的系统,设备和方法。 在一个方面,网络可以配置用户设备(UE)设备需要报告业务信息的应用的列表,然后当这些应用中的一个启动通信时,UE可以发送描述由 应用。 以这种方式,网络可以准确地识别流量,并根据UE报告和本地策略或订阅采取行动。
-
Patent Agency Ranking
公开(公告)号:US20130305330A1
公开(公告)日:2013-11-14
申请号:US13750816
申请日:2013-01-25
Applicant: QUALCOMM INCORPORATED
Inventor: Anand Palanigounder
IPC: H04W12/06
CPC classification number: H04W12/06 , H04L63/062 , H04L63/0876 , H04W4/70 , H04W8/205 , H04W12/04
Abstract: The present application relates generally to wireless communication systems and more specifically to systems, methods, and devices for remote credentials management within wireless communication systems. In one aspect, a method of obtaining provisioning information via a service provider network, such as a cellular network, for a device is provided. The method includes transmitting an attach request via the service provider network for provisioning service, the attach request including device vendor information which includes a unique identifier for the device. The method further includes receiving provisioning information from the service provider upon authentication of the device vendor information. In other aspects, systems and methods for providing provisioning information are described.
Abstract translation: 本申请一般涉及无线通信系统,更具体地涉及用于无线通信系统内的远程凭证管理的系统,方法和设备。 在一个方面,提供了一种通过诸如蜂窝网络的服务提供商网络为设备获取供应信息的方法。 该方法包括经由服务提供商网络发送用于供应服务的附着请求,附加请求包括包括设备的唯一标识符的设备供应商信息。 该方法还包括:在认证设备供应商信息时从服务提供商接收供应信息。 在其他方面,描述用于提供供应信息的系统和方法。
-
公开(公告)号:US20130117820A1
公开(公告)日:2013-05-09
申请号:US13670372
申请日:2012-11-06
Applicant: Qualcomm Incorporated
Inventor: George Cherian , Anand Palanigounder , Santosh Paul Abraham
IPC: H04W12/06
CPC classification number: H04W12/06 , H04L63/06 , H04L63/068 , H04L63/08 , H04L63/162 , H04L2209/80 , H04W12/04
Abstract: A particular method includes performing a bootstrapped extensible authentication protocol (EAP) re-authentication protocol (ERP) re-authentication at a mobile device after performing an EAP authentication with the access point prior to expiration of a master session key (MSK) associated with the EAP authentication. Another particular method includes performing, at an access point, a bootstrapped ERP re-authentication of a mobile device without interrupting a flow of data packets with respect to the mobile device.
Abstract translation: 一种特定方法包括在与所述接入点相关联的主会话密钥(MSK)到期之前,在与所述接入点执行EAP认证之后,在移动设备处执行自举可扩展认证协议(EAP)重认证协议(EAP)再认证 EAP认证。 另一特定方法包括在接入点处执行移动设备的自举ERP重新认证,而不中断相对于移动设备的数据分组流。
-
公开(公告)号:US12206680B2
公开(公告)日:2025-01-21
申请号:US18499713
申请日:2023-11-01
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Adrian Edward Escott , Anand Palanigounder
Abstract: The present disclosure provides techniques that may be applied, for example, for providing network policy information in a secure manner. In some cases, a UE may receive a first message for establishing a secure connection with a network, wherein the first message comprises network policy information, generate a first key based in part on the network policy information, and use the first key to verify the network policy information.
-
公开(公告)号:US11533613B2
公开(公告)日:2022-12-20
申请号:US16880897
申请日:2020-05-21
Applicant: QUALCOMM Incorporated
Inventor: Adrian Edward Escott , William Whyte , Anand Palanigounder
IPC: H04W12/0431 , H04W12/033 , H04W12/041 , H04W12/106 , H04W4/40
Abstract: Embodiments include devices and methods for providing secure communications between a first computing device and a second computing device are disclosed. A processor of the first computing device may determine in a first application software first security key establishment information. The processor may provide the first security key establishment information to a communication layer of the first computing device for transmission to the second computing device. The processor may receive, in the first application software from the communication layer of the first computing device, second security key establishment information received from the second computing device. The processor may determine a first security key by the first application software based at least in part on the second security key establishment information. The processor may provide the first security key to the communication layer for protecting messages from the first application software to the second computing device.
-
公开(公告)号:US11528603B2
公开(公告)日:2022-12-13
申请号:US16936347
申请日:2020-07-22
Applicant: QUALCOMM Incorporated
Inventor: Soo Bum Lee , Keiichi Kubota , Adrian Edward Escott , Gavin Bernard Horn , Anand Palanigounder
IPC: H04W12/04 , H04L9/40 , H04W12/03 , H04W12/041 , H04W12/043 , H04W12/062 , H04W36/00 , H04W48/16 , H04W24/02 , H04W48/18 , H04W12/06 , H04L9/08
Abstract: Certain aspects of the present disclosure provide techniques for managing security keys for enciphering and deciphering packets transmitted in a wireless communications system. According to certain aspects, a method of wireless communication by a user equipment (UE) is provided. The method generally includes obtaining an indication of a key area identifier (ID) of a first cell node, wherein the key area ID identifies a set of cell nodes that are associated with a network node that uses a first key for enciphering or deciphering messages and communicating a first set of messages with the first cell node using the first key for enciphering or deciphering the first set of messages.
-
-
-
-
-
-
-
-
-
Search Results
178
records
(took 0.031 seconds)
