-
公开(公告)号:US20180167807A1
公开(公告)日:2018-06-14
申请号:US15892488
申请日:2018-02-09
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Inventor: Jiangwei YING , Lijia ZHANG , Jing CHEN
CPC classification number: H04W12/02 , G09C1/00 , H04L9/0838 , H04L9/14 , H04L63/06 , H04L2209/80 , H04W12/04 , H04W12/06 , H04W12/10
Abstract: The present application discloses, among others, a message protection method performed by user equipment (UE). In one method an authentication and key agreement request message sent by an SGSN is received using a GMM/SM protocol layer of the UE. A first algorithm identifier on the GMM/SM protocol layer of the UE is obtained according to the authentication and key agreement request message, and a first key is generated. A first message authentication code on the GMM/SM protocol layer is verified according to the first key and a first algorithm. If the UE determines that the verification of the first message authentication code succeeds, an authentication and key agreement response message is generated on the GMM/SM protocol layer of the UE according to the first key and the first algorithm. The authentication and key agreement response message is sent to the SGSN by using the GMM/SM protocol layer of the UE.
-
公开(公告)号:US20170250803A1
公开(公告)日:2017-08-31
申请号:US15594975
申请日:2017-05-15
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Inventor: Dongmei ZHANG , Jing CHEN
CPC classification number: H04L9/0816 , H04L9/083 , H04L9/0861 , H04L63/06 , H04L63/205 , H04L2209/24 , H04L2463/061 , H04W12/02 , H04W12/04 , H04W12/06 , H04W12/08 , H04W36/0038
Abstract: Embodiment of the present invention discloses a method, an apparatus, and a system for establishing a security context and relates to the communications field, so as to comprehensively protect UE data. The method includes: acquiring an encryption algorithm of an access node; acquiring a root key and deriving, according to the root key and the encryption algorithm, an encryption key of the access node; sending the encryption key and the encryption algorithm to the access node, so that the access node starts downlink encryption and uplink decryption; sending the encryption algorithm of the access node to the UE so as to negotiate the encryption algorithm with the UE; and instructing the access node to start downlink encryption and uplink decryption and instructing, during algorithm negotiation, the UE to start downlink decryption and uplink encryption. The present invention mainly applies to SCC security protection.
-
公开(公告)号:US20230239688A1
公开(公告)日:2023-07-27
申请号:US18150962
申请日:2023-01-06
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
IPC: H04W12/041 , H04W4/70 , H04L9/08 , H04W8/02 , H04W36/00 , H04W12/106 , H04W12/0433
CPC classification number: H04W12/041 , H04W4/70 , H04L9/0869 , H04W8/02 , H04W36/0022 , H04W12/106 , H04W12/0433 , H04L2209/80
Abstract: A key generation method includes determining, by an access and mobility management function node, key-related information. The method also includes sending, by the access and mobility management function node, a redirection request message to a mobility management entity. The redirection request message includes the key-related information, and the redirection request message is used to request to hand over a voice service from a packet switched (PS) domain to a circuit switched (CS) domain. The method further includes receiving, by the mobility management entity, the redirection request message. The method additionally includes generating, by the mobility management entity, an encryption key and an integrity protection key for the voice service based on the key-related information.
-
公开(公告)号:US20220321599A1
公开(公告)日:2022-10-06
申请号:US17723257
申请日:2022-04-18
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
IPC: H04L9/40 , H04W12/08 , H04W12/106 , H04W12/125 , H04L9/32 , H04W8/24 , H04W12/04 , H04W12/06
Abstract: The present disclosure relates to mobile communications technologies, and in particular, to a mobile communication method, apparatus, and device. The method includes: receiving, by user equipment UE, a non-access stratum NAS security mode command message from a mobility management entity MME, where the NAS security mode command message carries first verification matching information used to verify UE capability information received by the MME; determining, by the UE based on the first verification matching information, whether the UE capability information received by the MME is consistent with UE capability information sent by the UE to the MME; and if the UE capability information received by the MME is consistent with the UE capability information sent by the UE to the MME, sending, by the UE, a NAS security mode complete message to the MME.
-
公开(公告)号:US20210250811A1
公开(公告)日:2021-08-12
申请号:US17245341
申请日:2021-04-30
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Inventor: Longhua GUO , Li HU , Jing CHEN
Abstract: This application provides a method for controlling a connection between a terminal and a network, and an apparatus. The method includes: receiving, by a terminal, a packet filter; and discarding, by the terminal, an uplink data packet matching the packet filter. Based on this solution, a connection can be blocked near a source (that is, the connection is blocked from the terminal), to reduce traffic exchanged between the terminal and a user plane network element. Compared with an existing technical solution, the terminal implements traffic control to reduce a quantity of uplink data packets sent to the user plane network element, thereby reducing load of the user plane network element.
-
Patent Agency Ranking
公开(公告)号:US20200374320A1
公开(公告)日:2020-11-26
申请号:US16990317
申请日:2020-08-11
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Abstract: Embodiments of this application provide a security protection method and apparatus, and an access network device, and relate to the field of communications technologies, to resolve a problem that user plane security protection cannot be enabled as required in the prior art. The method includes: receiving, by a first access network device, a first message from a second access network device, where the first message carries a user plane security policy, and the user plane security policy is used to indicate a type of user plane security protection to be enabled by the first access network device; and then determining, by the first access network device based on the user plane security policy, a user plane security algorithm and a user plane key corresponding to the user plane security algorithm.
-
公开(公告)号:US20200336305A1
公开(公告)日:2020-10-22
申请号:US16922485
申请日:2020-07-07
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Abstract: Embodiments of this application provide a key update method, relate to the field of communications technologies In the method, a communications system includes a terminal and a core network device, the terminal accesses the core network device by using both a first access technology and a second access technology simultaneously, and the method includes: performing, by the core network device, re-authentication on the terminal through a first connection corresponding to the first access technology; and if a trigger condition is met, updating, by the core network device, a key for a second connection corresponding to the second access technology.
-
公开(公告)号:US20200275268A1
公开(公告)日:2020-08-27
申请号:US16870708
申请日:2020-05-08
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Abstract: A communication method and a communications apparatus in which the method includes: a terminal device receiving a first authentication request from a security function network element, and obtaining authentication reference information based on the first authentication request, where the authentication reference information is a response value, a resynchronization token, or a cause indication value. The terminal device sends an authentication response message to the security function network element, where the authentication response message includes a first information element used to carry the response value, a second information element used to carry the resynchronization token, and a third information element used to carry the cause indication value, and the authentication reference information is carried in an information element corresponding to the authentication reference information.
-
公开(公告)号:US20200045536A1
公开(公告)日:2020-02-06
申请号:US16584889
申请日:2019-09-26
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Abstract: Embodiments of the present invention relate to the field of communications technologies, and provide a communication method, an apparatus, and a system. The method includes: receiving, by a first network side device, a first message sent by a terminal, where the first message carries ciphertext of context information of the terminal, and the ciphertext of the context information is information obtained by encrypting the context information of the terminal; obtaining, by the first network side device, a first key, and decrypting the ciphertext of the context information based on the first key, to obtain the context information; and establishing, by the first network side device, a communication connection for the terminal based on the context information. According to this application, more terminals can access a network.
-
40.发明申请公开(公告)号:US20200015079A1
公开(公告)日:2020-01-09
申请号:US16574899
申请日:2019-09-18
Applicant: Huawei Technologies Co., Ltd.
Abstract: Embodiments of the present invention disclose a method and a system for performing network access authentication based on a non-3GPP network, and a related device. In the solutions of this application, steps in a non-3GPP-based network access authentication procedure in the prior art are reduced, and the UE can quickly access the network.
-
-
-
-
-
-
-
-
-
Search Results
70
records
(took 0.024 seconds)
