公开(公告)号：US20230144223A1

公开(公告)日：2023-05-11

申请号：US17593676

申请日：2020-07-31

Applicant: Apple Inc.

Inventor： Fangli Xu ,  Shu Guo ,  Yuqin Chen ,  Haijing Hu ,  Huarui Liang ,  Dawei Zhang

IPC: H04W12/041 ,  H04W76/20 ,  H04W76/30 ,  H04W12/043

CPC classification number: H04W12/041 ,  H04W76/20 ,  H04W76/30 ,  H04W12/043

Abstract: An example technique for security key derivation in a wireless system includes: sending a radio resource control (RRC) suspend message from a first node, to a first user device, the RRC suspend message including a first next hop (NH) chaining counter (NCC) value; releasing access stratum (AS) resources associated with the first user device; deriving a first node key based on the first NCC value; receiving a first uplink message from the first user device without allocating AS resources to the first user device; and unscrambling the first uplink message based on the first NCC value.

公开(公告)号：US20230058265A1

公开(公告)日：2023-02-23

申请号：US17598217

申请日：2020-05-14

Applicant: Apple Inc.

Inventor： Chunhai Yao ,  Chunxuan Ye ,  Dawei Zhang ,  Fangli Xu ,  Haijing Hu ,  Haitong Sun ,  Hong He ,  Jie Cui ,  Oghenekome Oteri ,  Shu Guo ,  Wei Zeng ,  Yang Weidong ,  Yang Tang ,  Yuchul Kim ,  Yuqin Chen ,  Yushu Zhang

IPC: H04L5/00 ,  H04W72/04

Abstract: Methods to enhance the coverage of NR systems for coverage-limited wireless devices are disclosed. A serving base station may configure a coverage-limited UE with parameters for the UE to operate in a coverage enhancement mode through RRC signaling, DCI, or RAR grant. The UE may use the configuration parameters to determine whether to enter into the coverage enhancement mode when connecting and communicating with the serving base station. The configuration parameters may configure the UE to exploit both time diversity and frequency diversity to extend and enhance coverage when receiving the PDSCH and PDCCH channels, when transmitting the PUSCH and PUCCH channel, and when transmitting PUSCH Msg3 during random access. Advantageously, the base station may flexibly and dynamically configure the UE with coverage enhancement parameters to extend the coverage of the UE using time diversity and frequency diversity gains as the UE moves around.

公开(公告)号：US11589228B2

公开(公告)日：2023-02-21

申请号：US17054148

申请日：2018-05-11

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Huarui Liang ,  Lijia Zhang ,  Shu Guo ,  Haijing Hu ,  Fangli Xu ,  Yuqin Chen ,  Dawei Zhang ,  Li Li

IPC: H04W12/122 ,  H04W12/069 ,  H04W12/72 ,  H04W12/0433 ,  H04W12/03 ,  H04W12/041 ,  H04L9/08 ,  H04L9/16 ,  H04L9/32 ,  H04W12/02

Abstract: Techniques to protect a subscriber identity, by encrypting a subscription permanent identifier (SUPI) to form one-time use subscription concealed identifiers (SUCIs) using a set of one-time ephemeral asymmetric keys, generated by a user equipment (UE), and network provided keys are disclosed. Encryption of the SUPI to form the SUCIs can mitigate snooping by rogue network entities, such as fake base stations. The UE is restricted from providing the unencrypted SUPI over an unauthenticated connection to a network entity. In some instances, the UE uses a trusted symmetric fallback encryption key KFB or trusted asymmetric fallback public key PKFB to verify messages from an unauthenticated network entity and/or to encrypt the SUPI to form a fallback SUCIFB for communication of messages with the unauthenticated network entity.

公开(公告)号：US20220418030A1

公开(公告)日：2022-12-29

申请号：US17776449

申请日：2020-01-31

Applicant: Apple Inc.

Inventor： Shu Guo ,  Xiangying Yang ,  Fangli Xu ,  Yuqin Chen ,  Huarui Liang ,  Haijing Hu ,  Dawei Zhang

IPC: H04W76/19 ,  H04W76/30 ,  H04W12/106

Abstract: Embodiments are presented herein of apparatuses, systems, and methods for a user equipment device (UE) and/or cellular network to resume a connection. To resume the connection, the UE may transmit a fully protected connection resume message, e.g., which may include protection for a resume cause field.

公开(公告)号：US20220312520A1

公开(公告)日：2022-09-29

申请号：US17593527

申请日：2020-10-29

Applicant: APPLE INC.

Inventor： Shu Guo ,  Dawei Zhang ,  Fangli Xu ,  Haijing Hu ,  Huarui Liang ,  Yuqin Chen

IPC: H04W76/15 ,  H04W12/033 ,  H04W12/106

Abstract: Systems and methods provide packet data convergence protocol (PDCP) user plane (UP) integrity protection (IP) for a user equipments (UE) and radio access network (RAN) nodes operating in Evolved Universal Terrestrial Radio Access—New Radio dual connectivity (EN-DC). In an attach procedure, a UE may indicate a UE security capability for support of relay node (RN) PDCP UP IP used in LTE. Based on the security capability, a master e Node B (MeNB) security capability, and a secondary g Node B (SgNB) security capability, the MeNB may determine whether to use UP IP between the UE and the MeNB, the UE and the SgNB, and/or in a split bearer between the MeNB and the SgNB.

公开(公告)号：US20220312196A1

公开(公告)日：2022-09-29

申请号：US17593506

申请日：2020-10-29

Applicant: APPLE INC.

Inventor： Shu Guo ,  Dawei Zhang ,  Fangli Xu ,  Haijing Hu ,  Huarui Liang ,  Sudeep Manithara Vamanan ,  Yuqin Chen

IPC: H04W12/037 ,  H04W4/08 ,  H04W12/041 ,  H04L9/14 ,  H04L9/08

Abstract: MBS key distribution includes processing group information associated with an MB session context received from an AF. At least a portion of the group information comprises a TMGI. A plurality of session join requests received from a plurality of UEs are processed. Each of the plurality of session join requests include the TMGE and are associated with the MB session context. A request associated with the MB session context for transmission to an MB-SMF is encoded. A response associated with the MB session context received from the MB-SMF is processed. The response includes a key derived for each of a portion of the plurality of UEs using a UE ID and the TMGI. A DL NAS message and an N2 message are encoded for the plurality of UEs and a base station, respectively. The DL NAS message and the N2 message include the derived key.

公开(公告)号：US20220303254A1

公开(公告)日：2022-09-22

申请号：US17598224

申请日：2021-06-15

Applicant: Apple Inc.

Inventor： Shu Guo ,  Fangli Xu ,  Yuqin Chen ,  Xiangying Yang ,  Huarui Liang ,  Haijing Hu ,  Chunhai Yao ,  Dawei Zhang ,  Yushu Zhang ,  Zhibin Wu

IPC: H04L9/40 ,  H04L9/14

Abstract: The present application relates to devices and components including apparatus, systems, and methods for secured user equipment communications over a user equipment relay. In some embodiments, symmetric or asymmetric encryption may be used for the secured user equipment communications.

公开(公告)号：US20220278835A1

公开(公告)日：2022-09-01

申请号：US17437798

申请日：2020-04-03

Applicant: Apple Inc.

Inventor： Shu Guo ,  Dawei Zhang ,  Fangli Xu ,  Haijing Hu ,  Huarui Liang ,  Xiangying Yang ,  Yuqin Chen

IPC: H04L9/08 ,  H04W12/041

Abstract: Apparatuses, systems, and methods for application function (AF) key generation and AF key renewal. A user equipment device (UE) may communicate with an application function (AF) via a radio access network (RAN) using a first AF key and determine that the first AF key has expired. The UE may derive a second AF key based on at least an Architecture for Authentication and Key Management for Applications (AKMA) anchor key (KAKMA) and a counter parameter and communicate with the AF via the RAN using the second AF key. At least one of the UE, the AF, and/or an AKMA Anchor Function (AAnF) may be configured to monitor expiration of the first AF key based on an associated lifetime of the first AF key. The first and second AF keys may be derived using a key derivation function that includes at least one variable parameter.

公开(公告)号：US11297492B2

公开(公告)日：2022-04-05

申请号：US17042859

申请日：2018-03-27

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Lijia Zhang ,  Dawei Zhang ,  Huarui Liang ,  Shu Guo ,  Rohan C. Malthankar ,  Krisztian Kiss

IPC: H04L29/06 ,  H04W12/02 ,  H04W12/00 ,  H04W12/04 ,  H04W12/72 ,  H04W12/0433 ,  H04W12/041 ,  H04W12/033 ,  H04W12/40

Abstract: Techniques to protect subscriber identity in messages communicated between a user equipment (UE) and a cellular wireless network entity by using multiple ephemeral asymmetric keys are disclosed. The UE determines multiple ephemeral UE public and secret key pairs, while the cellular wireless network entity provides a network public key to the UE. The network public key may be updated over time. Multiple encryption keys based on the multiple ephemeral UE secret keys and the public network key are derived and used to encrypt a subscription permanent identifier (SUPI) to generate multiple subscription concealed identifiers (SUCIs). Each SUCI is used only once for messages communicated to a cellular wireless network and discarded after use. New SUCI are generated when the network public key is updated.

公开(公告)号：US20200235914A1

公开(公告)日：2020-07-23

申请号：US16733515

申请日：2020-01-03

Applicant: Apple Inc.

Inventor： Dawei Zhang ,  Fangli Xu ,  Haijing Hu ,  Huarui Liang ,  Lijia Zhang ,  Robert K. Kitchens ,  Samuel D. Post ,  Shu Guo ,  Xiangying Yang ,  Yannick L. Sierra ,  Yuqin Chen

IPC: H04L9/06 ,  H04L29/06 ,  H04W12/06 ,  H04L9/08 ,  H04W12/04

Abstract: Apparatuses, systems, and methods for generating and utilizing improved initialization vectors (IVs) when performing encryption and authentication in wireless communications. In some scenarios, a wireless communication device may generate one or more pseudorandom multi-bit values, e.g., using a respective plurality of key derivation functions (KDFs). A first portion of each value may be used as a respective key for encryption or authentication of traffic on the user plane or the control plane. A second portion of each value may be used as a nonce value in a respective IV for use with a respective key for encryption or authentication of traffic on the user plane or the control plane. In some scenarios, the nonce values may instead be generated as part of an additional pseudorandom value (e.g., by executing an additional KDF), from which all of the IVs may be drawn.