-
公开(公告)号:US20190281070A1
公开(公告)日:2019-09-12
申请号:US16422051
申请日:2019-05-24
Applicant: Huawei Technologies Co., Ltd.
Inventor: Rong Wu , Chengdong He , Lu Gan
Abstract: A system and method for detecting a man-in-the-middle attack, where the includes sending, by a secondary base station, a first check request message to a master base station, wherein the first check request message comprises first identifier information of an evolved random access bearer (ERAB) and a first data packet count value corresponding to the first identifier information; receiving, by the master base station, the first check request message; obtaining second identifier information that matches the first identifier information, wherein the second identifier information is an identifier of a data radio bearer (DRB) corresponding to the ERAB; sending a second check request message to a user terminal, wherein the second check request message comprises the first data packet count value and the second identifier information; and receiving, by the master base station, a check response message from the user terminal.
-
公开(公告)号:US20190253889A1
公开(公告)日:2019-08-15
申请号:US16388606
申请日:2019-04-18
Applicant: Huawei Technologies Co., Ltd.
CPC classification number: H04W12/0401 , H04L9/08 , H04W8/08 , H04W12/04 , H04W12/0403 , H04W76/11 , H04W76/25 , H04W80/10 , H04W88/023
Abstract: Embodiments of this application provide an anchor key generation method, device, and system. The method includes generating, by a user equipment, an intermediate key based on a cipher key (CK), an integrity key (IK), and an indication information regarding an operator; generating, by the user equipment, an anchor key based on the intermediate key; generating, by the user equipment, a key (Kamf) based on the anchor key; and deriving, by the user equipment, a 3rd Generation Partnership Project (3GPP) key based on the Kamf.
-
公开(公告)号:US12256005B2
公开(公告)日:2025-03-18
申请号:US17954167
申请日:2022-09-27
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Inventor: He Li , Rong Wu , Yizhuang Wu
Abstract: This application provides a communication system, method, and apparatus. The system is applied to implement authentication and key management for applications (AKMA) service-based data transmission between a terminal device and an application function network element. The system includes an AKMA anchor function network element and a network exposure function network element. The network exposure function network element obtains first identification information from a unified data management network element, where the first identification information is used to determine an authentication server function network element corresponding to the terminal device, and sends the first identification information to the AKMA anchor function network element. The AKMA anchor function network element obtains, from the unified data management network element based on the first identification information, identification information of the authentication server function network element corresponding to the terminal device.
-
公开(公告)号:US20250071555A1
公开(公告)日:2025-02-27
申请号:US18937730
申请日:2024-11-05
Applicant: Huawei Technologies Co., Ltd.
Inventor: Noamen Ben Henda , Li Hu , Rong Wu
IPC: H04W12/45 , H04W12/02 , H04W12/033
Abstract: This application provides a communication method and an apparatus. In an implementation, the communication method is applied to a universal integrated circuit card, the universal integrated circuit card is configured with a subscription permanent identifier and a pseudo identifier corresponding to the subscription permanent identifier, and the method includes: The universal integrated circuit card generates a subscription concealed identifier based on the pseudo identifier, where a length of a username included in the pseudo identifier is different from a length of a username included in the subscription permanent identifier, and the length of the username included in the pseudo identifier is greater than a first threshold and less than a second threshold; and then the universal integrated circuit card sends the subscription concealed identifier to a mobile equipment.
-
公开(公告)号:US20250048076A1
公开(公告)日:2025-02-06
申请号:US18922273
申请日:2024-10-21
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Inventor: He Li , Rong Wu , Ao Lei , Yizhuang Wu
Abstract: A communication method and apparatus are provided. The method may include: A mobility management network element receives a transaction identifier of a remote terminal device and a name of a data network from a relay terminal device. The mobility management network element determines a subscription permanent identifier of the remote terminal device based on the transaction identifier, and then sends the subscription permanent identifier and the name of the data network to a session management network element. After receiving the subscription permanent identifier and the name of the data network, the session management network element determines, by using a data management network element based on the subscription permanent identifier and the name of the data network, whether to perform secondary authentication on the remote terminal device. Whether to perform secondary authentication on the remote terminal device can be determined by using the provided solution.
-
Patent Agency Ranking
公开(公告)号:US20240179519A1
公开(公告)日:2024-05-30
申请号:US18431568
申请日:2024-02-02
Applicant: Huawei Technologies Co., Ltd.
IPC: H04W12/06 , H04W12/041 , H04W12/0431
CPC classification number: H04W12/06 , H04W12/041 , H04W12/0431
Abstract: Embodiments of this application disclose a communication method and a related apparatus. The method includes: A UDM receives a plurality of authentication vector obtaining request messages from one or more AUSFs for same UE, where the plurality of authentication vector obtaining request messages are for obtaining authentication vectors corresponding to the UE; and the UDM sequentially processes the plurality of authentication vector obtaining request messages, to avoid a problem that subsequently an intermediate key Kausf stored on the UE and an intermediate key Kausf stored on a network device side are out of synchronization because the UE receives a plurality of NAS SMC messages or EAP-Success messages whose receiving time sequence is uncontrollable.
-
公开(公告)号:US11924629B2
公开(公告)日:2024-03-05
申请号:US17245991
申请日:2021-04-30
Applicant: Huawei Technologies Co., Ltd.
IPC: H04L9/00 , H04L9/08 , H04L9/40 , H04W8/08 , H04W12/04 , H04W12/041 , H04W12/043 , H04W12/0431 , H04W12/0433 , H04W76/11 , H04W76/25 , H04W80/10 , H04W88/02
CPC classification number: H04W12/041 , H04L9/08 , H04L63/0869 , H04W8/08 , H04W12/04 , H04W12/043 , H04W12/0431 , H04W12/0433 , H04W76/11 , H04W76/25 , H04W80/10 , H04W88/023
Abstract: An anchor key generation method, device, and system, where the method includes generating, by a unified data management network element (UDM), an intermediate key based on a cipher key (CK), an integrity key (IK), and indication information regarding an operator; sending, by the UDM, the intermediate key to an authentication server function (AUSF); receiving, by the AUSF, the intermediate key; generating, by the AUSF, an anchor key based on the intermediate key; sending, by the AUSF, the anchor key to a security anchor function (SEAF); and generating, by the SEAF, a key (Kamf) based on the anchor key, where the Kamf is used to derive a 3rd Generation Partnership Project (3GPP) key.
-
公开(公告)号:US20240040376A1
公开(公告)日:2024-02-01
申请号:US18448235
申请日:2023-08-11
Applicant: Huawei Technologies Co., Ltd.
Inventor: Rong Wu , Bo Zhang , Shuaishuai Tan
IPC: H04W12/033 , H04L9/40 , H04W12/10 , H04W12/041
CPC classification number: H04W12/033 , H04L63/205 , H04W12/10 , H04W12/041
Abstract: A security negotiation method includes receiving, by a terminal, security negotiation information from a centralized unit control plane (CU-CP)/a centralized unit user plane (CU-UP), where the security negotiation information includes an integrity protection indication identifier of the CU-UP, and determining, by the terminal based on the integrity protection indication identifier, whether to enable user-plane integrity protection of the terminal.
-
公开(公告)号:US20230354013A1
公开(公告)日:2023-11-02
申请号:US18348473
申请日:2023-07-07
Applicant: Huawei Technologies Co., Ltd.
Inventor: He Li , Yizhuang Wu , Rong Wu
Abstract: A method includes: User equipment determines whether confidentiality protection is activated for communication data between the user equipment and an application function device. The user equipment sends a user plane message to the application function device. The user plane message includes an identifier of the user equipment, and the identifier is an encrypted identifier in a case in which the confidentiality protection is inactivated.
-
公开(公告)号:US10743368B2
公开(公告)日:2020-08-11
申请号:US16351772
申请日:2019-03-13
Applicant: HUAWEI TECHNOLOGIES CO., LTD.
Abstract: Embodiments of the present disclosure disclose a network roaming protection method and related device. The method includes: receiving, by a visited session management device, a first session establishment request that includes a first security requirement; obtaining, by the visited session management device, a target security policy, where the target security policy is obtained by processing the first security requirement set and a second security requirement set using a preset rule; and sending the target security policy to the UE instructing the UE to generate a target shared key based on a reference shared key and according to a rule defined by the target security policy, where the target shared key is used to protect secure end-to-end data transmission between the UE and the visited gateway.
-
-
-
-
-
-
-
-
-
Search Results
73
records
(took 0.021 seconds)
