公开(公告)号：US20120128158A1

公开(公告)日：2012-05-24

申请号：US13365126

申请日：2012-02-02

申请人： Akinlolu Oloruntosi Kumoluyi ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar R. Chitrapu ,  Sung-Hyuk Shin ,  Yingming Tsai

发明人： Akinlolu Oloruntosi Kumoluyi ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar R. Chitrapu ,  Sung-Hyuk Shin ,  Yingming Tsai

IPC分类号： G06F21/20 ,  H04L9/00

CPC分类号： H04W12/08 ,  H04L9/088 ,  H04L63/04 ,  H04L63/105 ,  H04L63/1441 ,  H04L63/20 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/12

摘要： A system and method for providing variable security levels in a wireless communication network. The present invention optimizes the often conflicting demands of highly secure wireless communications and high speed wireless communications. According to a preferred embodiment of the present invention, various security sensors are scanned to determine the likely presence of an intruder within a predetermined trust zone. If an intruder is likely present, the security level is changed to the highest setting, and consequently a lower data rate, while the intruder is identified. If the identified intruder is in fact a trusted node, the security level is returned to a lower setting. If the identified intruder is not a trusted node, the security level is maintained at an elevated state while the intruder is within the trust zone.

摘要翻译： 一种用于在无线通信网络中提供可变安全级别的系统和方法。 本发明优化了高度安全的无线通信和高速无线通信的经常冲突的需求。 根据本发明的优选实施例，扫描各种安全传感器以确定入侵者在预定信任区域内的可能存在。 如果入侵者可能存在，则安全级别将更改为最高设置，从而更低的数据速率，同时入侵者被识别。 如果识别的入侵者实际上是可信节点，那么安全级别将返回到较低的设置。 如果识别的入侵者不是可信节点，则入侵者在信任区域内时，安全级别保持在升高的状态。

公开(公告)号：US08135953B2

公开(公告)日：2012-03-13

申请号：US12645377

申请日：2009-12-22

申请人： Akinlolu Oloruntosi Kumoluyi ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar R. Chitrapu ,  Sung-Hyuk Shin ,  Yingming Tsai

发明人： Akinlolu Oloruntosi Kumoluyi ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar R. Chitrapu ,  Sung-Hyuk Shin ,  Yingming Tsai

IPC分类号： H04L9/32

CPC分类号： H04W12/08 ,  H04L9/088 ,  H04L63/04 ,  H04L63/105 ,  H04L63/1441 ,  H04L63/20 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/12

摘要： A system and method for providing variable security levels in a wireless communication network. The present invention optimizes the often conflicting demands of highly secure wireless communications and high speed wireless communications. According to a preferred embodiment of the present invention, various security sensors are scanned to determine the likely presence of an intruder within a predetermined trust zone. If an intruder is likely present, the security level is changed to the highest setting, and consequently a lower data rate, while the intruder is identified. If the identified intruder is in fact a trusted node, the security level is returned to a lower setting. If the identified intruder is not a trusted node, the security level is maintained at an elevated state while the intruder is within the trust zone.

公开(公告)号：US07596112B2

公开(公告)日：2009-09-29

申请号：US11321806

申请日：2005-12-29

申请人： Alexander Reznik ,  Zhenyu Tu ,  Guodong Zhang

发明人： Alexander Reznik ,  Zhenyu Tu ,  Guodong Zhang

IPC分类号： H04B7/185

CPC分类号： H04W88/06 ,  H04W4/06 ,  H04W28/22 ,  H04W52/322 ,  H04W52/367

摘要： A medium access control (MAC) entity first computes an achievable rate region based on a total transmit power limit and a channel gain of each of a plurality of WTRUs. Next, the MAC entity selects an order of DPC among the WTRUs. A rate set for use in transmitting to the WTRUs is then selected, said rate set being within the computed achievable rate region. Then, based on the selected DPC order and rate set, a DPC entity performs DPC on a plurality of data streams intended for the plurality of WTRUs. If nested lattice-based DPC is utilized, rate compatibility is achieved by selecting proper nesting ratios corresponding to a desired data rate set. Otherwise, if binary-code based DPC is utilized, rate compatibility is achieved via selecting appropriate message input sizes for input to point-to-point coding units prior to performing DPC.

摘要翻译： 媒体接入控制（MAC）实体首先基于多个WTRU中的每一个的总发射功率限制和信道增益来计算可实现速率区域。 接下来，MAC实体在WTRU中选择DPC的顺序。 然后选择用于向WTRU发送的速率集，所述速率集合在所计算的可实现速率区域内。 然后，基于所选择的DPC顺序和速率集合，DPC实体在为多个WTRU设置的多个数据流上执行DPC。 如果利用嵌套的基于网格的DPC，则通过选择对应于期望的数据速率集合的适当的嵌套比率来实现速率兼容性。 否则，如果使用基于二进制码的DPC，则在执行DPC之前通过选择适当的消息输入大小来输入到点对点编码单元来实现速率兼容性。

公开(公告)号：US20070177729A1

公开(公告)日：2007-08-02

申请号：US11339958

申请日：2006-01-26

申请人： Alexander Reznik ,  Akinlolu Kumoluyi ,  Guodong Zhang ,  Prabhakar Chitrapu ,  Gregory Sternberg ,  Yogendra Shah ,  Alain Charles Briancon ,  Chunxuan Ye

发明人： Alexander Reznik ,  Akinlolu Kumoluyi ,  Guodong Zhang ,  Prabhakar Chitrapu ,  Gregory Sternberg ,  Yogendra Shah ,  Alain Charles Briancon ,  Chunxuan Ye

IPC分类号： H04L9/00

CPC分类号： H04K1/00 ,  H04L9/0858 ,  H04L9/0875 ,  H04L9/12 ,  H04L25/0202 ,  H04L25/0224 ,  H04L2209/80 ,  H04W12/04

摘要： A method and apparatus is used for generating a perfectly random secret key between two or more transceivers in a wireless communication network. In a point-to-point system, both transceivers produce an estimate of the channel impulse response (CIR) based on the received radio signal. The CIR estimation is synchronized and may include error correction and detection. A long secret key of bits is generated from a digitized version of the CIR estimate, from which a perfectly secret encryption key is derived by privacy amplification.

摘要翻译： 一种方法和装置用于在无线通信网络中的两个或多个收发器之间生成完全随机的秘密密钥。 在点对点系统中，两个收发器基于所接收的无线电信号产生信道脉冲响应（CIR）的估计。 CIR估计是同步的，并且可以包括纠错和检测。 从CIR估计的数字化版本产生比特的长秘密密钥，通过隐私放大从其中导出完全秘密的加密密钥。

公开(公告)号：US20070036353A1

公开(公告)日：2007-02-15

申请号：US11444558

申请日：2006-05-31

申请人： Alexander Reznik ,  Debashish Purkayastha ,  Steven Goldberg ,  Robert Olesen ,  Marian Rudolf ,  Inhyok Cha ,  Alan Carlton ,  Yogendra Shah ,  Shamim Rahman ,  Rajat Mukherjee ,  Robert DiFazio ,  Gregory Sternberg ,  Leonid Kazakevich ,  Kazimierz Siwiak ,  Guodong Zhang ,  Tanbir Haque ,  Louis Guccione ,  Prabhakar Chitrapu ,  Akinlolu Kumoluyi ,  Alain Briancon

发明人： Alexander Reznik ,  Debashish Purkayastha ,  Steven Goldberg ,  Robert Olesen ,  Marian Rudolf ,  Inhyok Cha ,  Alan Carlton ,  Yogendra Shah ,  Shamim Rahman ,  Rajat Mukherjee ,  Robert DiFazio ,  Gregory Sternberg ,  Leonid Kazakevich ,  Kazimierz Siwiak ,  Guodong Zhang ,  Tanbir Haque ,  Louis Guccione ,  Prabhakar Chitrapu ,  Akinlolu Kumoluyi ,  Alain Briancon

IPC分类号： H04L9/30

CPC分类号： H04B7/0434 ,  H04B7/0695 ,  H04L9/0631 ,  H04L9/0656 ,  H04L9/0875 ,  H04L9/3271 ,  H04L63/0428 ,  H04L63/061 ,  H04L63/08 ,  H04L63/1441 ,  H04L63/1466 ,  H04L63/18 ,  H04L2209/34 ,  H04L2209/80 ,  H04W12/00503 ,  H04W12/00508 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06 ,  H04W92/10

摘要： The present invention relates to secret key generation and authentication methods that are based on joint randomness not shared by others (JRNSO), in which unique channel response between two communication terminals generates a secret key. Multiple network access points use a unique physical location of a receiving station to increase user data security. High data rate communication data is encrypted by generating a random key and a pseudo-random bit stream. A configurable interleaving is achieved by introduction of JRNSO bits to an encoder used for error-correction codes. Databases of user data are also protected by JRNSO-based key mechanisms. Additional random qualities are induced on the joint channel using MIMO eigen-beamforming, antenna array deflection, polarization selection, pattern deformation, and path selection by beamforming or time correlation. Gesturing induces randomness according to uniquely random patterns of a human user's arm movements inflected to the user device.

摘要翻译： 本发明涉及基于其他人不共享的联合随机性（JRNSO）的秘密密钥生成和认证方法，其中两个通信终端之间的唯一信道响应产生密钥。 多个网络接入点使用接收站的唯一物理位置来增加用户数据的安全性。 通过生成随机密钥和伪随机比特流来加密高数据速率通信数据。 通过将JRNSO位引入用于纠错码的编码器来实现可配置的交错。 用户数据的数据库也受到基于JRNSO的关键机制的保护。 使用MIMO本征波束形成，天线阵列偏转，偏振选择，图案变形以及通过波束形成或时间相关的路径选择在联合信道上引起附加随机质量。 手势根据用户装置的人体手臂运动的唯一随机模式引起随机性。

公开(公告)号：US20060210070A1

公开(公告)日：2006-09-21

申请号：US11238342

申请日：2005-09-29

申请人： Alexander Reznik ,  Guodong Zhang ,  Sung-Hyuk Shin ,  Zhenyu Tu

发明人： Alexander Reznik ,  Guodong Zhang ,  Sung-Hyuk Shin ,  Zhenyu Tu

IPC分类号： H04K1/10

CPC分类号： H04L25/03343 ,  H04L63/0428 ,  H04L63/10 ,  H04W12/02 ,  H04W12/08 ,  H04W74/00

摘要： A transceiver comprising a data processing module, a security processing module, a medium access control (MAC) module, a dirty-paper-coding (DPC) module, and a smart antenna processor. The data processing module provides user data streams to the MAC module and channel state information to the smart antenna processor. The security processing module generates security data and provides the security data to the MAC module. The security module also provides security policy data to the smart antenna processor. The MAC module determines data transmission rates for the user data streams and the security data. In addition, the MAC module allocates the data streams and security data to transmission channels for transmission. The DPC module encodes the security data onto the user data streams. The smart antenna processor generates pre-coding coefficients used by the DPC module and transmits the security encoded data streams.

摘要翻译： 收发器，包括数据处理模块，安全处理模块，介质访问控制（MAC）模块，脏纸编码（DPC）模块和智能天线处理器。 数据处理模块向MAC模块提供用户数据流，并向智能天线处理器提供信道状态信息。 安全处理模块生成安全数据，并向MAC模块提供安全数据。 安全模块还向智能天线处理器提供安全策略数据。 MAC模块确定用户数据流和安全数据的数据传输速率。 此外，MAC模块将数据流和安全数据分配给传输信道进行传输。 DPC模块将安全数据编码到用户数据流上。 智能天线处理器产生DPC模块使用的预编码系数并传输安全编码数据流。

公开(公告)号：US20060156009A1

公开(公告)日：2006-07-13

申请号：US11192918

申请日：2005-07-29

申请人： Sung-Hyuk Shin ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar Chitrapu

发明人： Sung-Hyuk Shin ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar Chitrapu

IPC分类号： H04L9/00

CPC分类号： H04L63/123 ,  G10L19/018 ,  H04L63/0428 ,  H04L63/0838 ,  H04L63/16 ,  H04W12/02 ,  H04W12/10

摘要： The present invention is related to a method and apparatus for enhancing security of communications. The apparatus comprises a security processing unit, a data processing unit, a cross-layer watermarking unit, and optionally a smart antenna processor. The security processing unit generates a token/key to be used in watermarking and sends a node security policy to other components. The data processing unit generates user data. The cross-layer watermarking unit includes at least one of Layer-2/3, Layer-1 and Layer-0. Each layer performs a different scheme or degree of watermarking. The cross-layer watermarking unit embeds the token/key into the user data transmission on at least one of the layers selectively in accordance with a security policy.

公开(公告)号：US07636842B2

公开(公告)日：2009-12-22

申请号：US11241429

申请日：2005-09-30

申请人： Akinlolu Oloruntosi Kumoluyi ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar R. Chitrapu ,  Sung-Hyuk Shin ,  Yingming Tsai

发明人： Akinlolu Oloruntosi Kumoluyi ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar R. Chitrapu ,  Sung-Hyuk Shin ,  Yingming Tsai

IPC分类号： H04L29/06

CPC分类号： H04W12/08 ,  H04L9/088 ,  H04L63/04 ,  H04L63/105 ,  H04L63/1441 ,  H04L63/20 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/12

摘要： A system and method for providing variable security levels in a wireless communication network. The present invention optimizes the often conflicting demands of highly secure wireless communications and high speed wireless communications. According to a preferred embodiment of the present invention, various security sensors are scanned to determine the likely presence of an intruder within a predetermined trust zone. If an intruder is likely present, the security level is changed to the highest setting, and consequently a lower data rate, while the intruder is identified. If the identified intruder is in fact a trusted node, the security level is returned to a lower setting. If the identified intruder is not a trusted node, the security level is maintained at an elevated state while the intruder is within the trust zone.

摘要翻译： 一种用于在无线通信网络中提供可变安全级别的系统和方法。 本发明优化了高度安全的无线通信和高速无线通信的经常冲突的需求。 根据本发明的优选实施例，扫描各种安全传感器以确定入侵者在预定信任区域内的可能存在。 如果入侵者可能存在，则安全级别将更改为最高设置，从而更低的数据速率，同时入侵者被识别。 如果识别的入侵者实际上是可信节点，那么安全级别将返回到较低的设置。 如果识别的入侵者不是可信节点，则入侵者在信任区域内时，安全级别保持在升高的状态。

公开(公告)号：US20070140494A1

公开(公告)日：2007-06-21

申请号：US11241429

申请日：2005-09-30

申请人： Akinlolu Kumoluyi ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar Chitrapu ,  Sung-Hyuk Shin ,  Yingming Tsai

发明人： Akinlolu Kumoluyi ,  Alexander Reznik ,  Guodong Zhang ,  Prabhakar Chitrapu ,  Sung-Hyuk Shin ,  Yingming Tsai

IPC分类号： H04K1/00

CPC分类号： H04W12/08 ,  H04L9/088 ,  H04L63/04 ,  H04L63/105 ,  H04L63/1441 ,  H04L63/20 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/12

摘要： A system and method for providing variable security levels in a wireless communication network. The present invention optimizes the often conflicting demands of highly secure wireless communications and high speed wireless communications. According to a preferred embodiment of the present invention, various security sensors are scanned to determine the likely presence of an intruder within a predetermined trust zone. If an intruder is likely present, the security level is changed to the highest setting, and consequently a lower data rate, while the intruder is identified. If the identified intruder is in fact a trusted node, the security level is returned to a lower setting. If the identified intruder is not a trusted node, the security level is maintained at an elevated state while the intruder is within the trust zone.

摘要翻译： 一种用于在无线通信网络中提供可变安全级别的系统和方法。 本发明优化了高度安全的无线通信和高速无线通信的经常冲突的需求。 根据本发明的优选实施例，扫描各种安全传感器以确定入侵者在预定信任区域内的可能存在。 如果入侵者可能存在，则安全级别将更改为最高设置，从而更低的数据速率，同时入侵者被识别。 如果识别的入侵者实际上是可信节点，那么安全级别将返回到较低的设置。 如果识别的入侵者不是可信节点，则入侵者在信任区域内时，安全级别保持在升高的状态。

公开(公告)号：US20060251175A1

公开(公告)日：2006-11-09

申请号：US11321806

申请日：2005-12-29

申请人： Alexander Reznik ,  Zhenyu Tu ,  Guodong Zhang

发明人： Alexander Reznik ,  Zhenyu Tu ,  Guodong Zhang

IPC分类号： H04N11/04

CPC分类号： H04W88/06 ,  H04W4/06 ,  H04W28/22 ,  H04W52/322 ,  H04W52/367

摘要： A medium access control (MAC) entity first computes an achievable rate region based on a total transmit power limit and a channel gain of each of a plurality of WTRUs. Next, the MAC entity selects an order of DPC among the WTRUs. A rate set for use in transmitting to the WTRUs is then selected, said rate set being within the computed achievable rate region. Then, based on the selected DPC order and rate set, a DPC entity performs DPC on a plurality of data streams intended for the plurality of WTRUs. If nested lattice-based DPC is utilized, rate compatibility is achieved by selecting proper nesting ratios corresponding to a desired data rate set. Otherwise, if binary-code based DPC is utilized, rate compatibility is achieved via selecting appropriate message input sizes for input to point-to-point coding units prior to performing DPC.