-
公开(公告)号:US11039312B2
公开(公告)日:2021-06-15
申请号:US17153522
申请日:2021-01-20
IPC分类号: H04M1/66 , H04W12/06 , H04W12/0431 , H04W12/106
摘要: A method by an AUSF of a home PLMN configured to communicate through an interface with electronic devices is provided. A first authentication request is received from a first PLMN that is authenticating an electronic device. A first security key used for integrity protection of messages delivered from the home PLMN to the electronic device is obtained. A second authentication request is received from a second PLMN that is authenticating the electronic device. A second security key used for integrity protection of the messages delivered from the home PLMN to the electronic device is obtained. A message protection request is received. Which of the first security key and the second security key is a latest security key is determined. The latest security key is used to protect a message associated with the message protection request.
-
公开(公告)号:US10939334B2
公开(公告)日:2021-03-02
申请号:US16321563
申请日:2018-09-14
摘要: Core network equipment (16) is configured for use in a core network of a wireless communication system. The core network equipment (16) is configured to switch switching to using a new non-access stratum, NAS, security context between a user equipment (14) and the core network equipment (16). The core network equipment (16) is also configured to, during or in association with a handover procedure for handover of the user equipment (14), signal from the core network equipment (16) that the new NAS security context between the user equipment (14) and the core network equipment (16) is to be used as a basis for an access stratum (AS) security context between the user equipment (14) and radio access network equipment (12).
-
43.发明授权公开(公告)号:US10820193B2
公开(公告)日:2020-10-27
申请号:US16380683
申请日:2019-04-10
摘要: Network node for use in a communication network, a communication device and methods of operating the same. According to an exemplary aspect, there is provided a method of operating a communication device, the method comprising receiving an indication of whether a first key that is used for encrypting communications on a first radio link with a communication network is to be reused for encrypting communications on a second radio link with the communication network; and if the received indication indicates that the first key is to be reused, determining whether to operate according to the received indication and reuse the first key for encrypting communications on the second radio link.
-
公开(公告)号:US10667126B2
公开(公告)日:2020-05-26
申请号:US16338613
申请日:2018-10-01
摘要: A radio access network, RAN, node configures user plane access stratum, AS, security in a wireless communication system that includes a radio access network, RAN, and a core network, CN. The RAN node is configured to receive, from the CN, signaling that indicates a decision by the CN of whether or not the RAN node is to activate user plane AS security and that indicates whether or not the RAN node is allowed to overrule the decision by the CN. For example, the signaling may indicate whether the decision by the CN is a command that the RAN node must comply with or a preference that the RAN node is permitted to overrule. Regardless, the RAN node may also be configured to activate or not activate user plane AS security, depending on the signaling.
-
公开(公告)号:US10602356B2
公开(公告)日:2020-03-24
申请号:US15566103
申请日:2015-12-18
摘要: A method performed by a proximity service server is disclosed. The method comprises generating a ProSe query code and a ProSe response code, sending at least a the ProSe response code together with a first and a second discovery key to a first end device, and sending at least the first discovery key and the ProSe query code to a second end device, so that the second end device can securely discover the first end device over an air interface.
-
公开(公告)号:US10425817B2
公开(公告)日:2019-09-24
申请号:US16200037
申请日:2018-11-26
发明人: Vesa Torvinen , Noamen Ben Henda , David Castellanos Zamora , Prajwol Kumar Nakarmi , Pasi Saarinen , Monica Wifvesson
IPC分类号: H04M1/66 , H04W12/06 , H04L29/06 , H04W12/02 , H04W12/04 , H04L9/30 , H04W8/18 , H04W60/00 , H04L9/08 , H04L9/32 , H04W12/10 , H04W12/00
摘要: A method performed by an authentication server in a home network of a UE for obtaining a subscription permanent identifier, SUPI. The method comprises: receiving a SUCI which comprises an encrypted part in which at least a part of the SUPI is encrypted, and a clear-text part which comprises a home network identifier and an encryption scheme identifier that identifies an encryption scheme used by the UE to encrypt the SUPI in the SUCI; determining a de-concealing server to use to decrypt the encrypted part of the SUCI; sending the SUCI to the de-concealing server; and receiving the SUPI in response. Methods performed by a UE and a de-concealing server are also disclosed. Furthermore, UEs, de-concealing servers, authentication servers, computer program and a memory circuitry are also disclosed.
-
公开(公告)号:US20190069227A1
公开(公告)日:2019-02-28
申请号:US16069943
申请日:2016-11-24
发明人: Noamen Ben Henda , Vesa Lehtovirta , Katharina Pfeffer , Shabnam Sultana , Vesa Torvinen , Monica Wifvesson
摘要: A terminal device, for example a 3GPP Proximity Services (ProSe)-enabled user equipment, obtains grid location information relating to a cell of a predetermined grid in which the terminal device is located. The terminal device then calculates a message integrity code based on the grid location information and transmits a proximity service discovery message. The discovery message includes the calculated message integrity code and does not include the grid location information. A second terminal device, for example a 3GPP Proximity Services (ProSe)-enabled user equipment, receives a proximity service discovery message containing a message integrity code. The second terminal device then obtains grid location information relating to at least one cell of a predetermined grid within a predetermined distance of a location of the second terminal device, calculates at least one message integrity code based on the grid location information, and determines whether a calculated message integrity code matches the message integrity code in the received discovery message. The second terminal device then acts on the received proximity service discovery message only if a calculated message integrity code matches the message integrity code in the received discovery message.
-
公开(公告)号:US20190045362A1
公开(公告)日:2019-02-07
申请号:US16071986
申请日:2016-11-25
发明人: Vesa Torvinen , Yasir Hussain , Nicklas Johansson , Paul Schliwa-Bertling , Mikael Wass , Monica Wifvesson
摘要: An electronic communication device of a telecommunications system receives a message containing an integrity mode bit and an integrity protection bit from another electronic communication device, and determines whether the integrity protection bit indicates that a Frame Check Sequence, FCS, field of the message has been replaced by a Medium Access Control, MAC, field. Responsive to determining that the integrity protection bit indicates that the FCS field has been replaced by the MAC field, the device determines whether the MAC field is valid. Responsive to determining that the MAC field is not valid and the integrity mode bit having a first defined value, the message is discarded. Responsive to determining that the MAC field is not valid and the integrity mode bit having a second defined value, content of the message is provided to a higher network protocol layer for processing.
-
49.发明公开公开(公告)号:US20240276211A1
公开(公告)日:2024-08-15
申请号:US18637260
申请日:2024-04-16
IPC分类号: H04W12/041 , H04L9/08 , H04W12/00 , H04W12/0433 , H04W36/00 , H04W36/14
CPC分类号: H04W12/041 , H04L9/0861 , H04W12/0433 , H04W36/0055 , H04W36/14 , H04W12/009
摘要: A key management is provided that enables security activation before handing over a user equipment from a source 5G wireless communication system, i.e., a Next Generation System (NGS), to a target 4G wireless communication system, i.e., a Evolved Packet System (EPS)/Long Term Evolution (LTE). The key management achieves backward security, i.e., prevents the target 4G wireless communication system from getting knowledge of 5G security information used in the source 5G wireless communication system.
-
公开(公告)号:US12058515B2
公开(公告)日:2024-08-06
申请号:US17607069
申请日:2020-04-27
发明人: Monica Wifvesson , Noamen Ben Henda
IPC分类号: H04L29/06 , H04L9/40 , H04W12/03 , H04W12/04 , H04W12/106 , H04W60/00 , H04W76/10 , H04W36/00 , H04W76/15
CPC分类号: H04W12/03 , H04L63/205 , H04W12/106 , H04W60/00 , H04W76/10
摘要: A method performed by a user equipment, UE, for enabling a user plane integrity protection mode in a radio access network packet data convergence protocol, PDCP, is provided. The method includes providing an indication of a user plane integrity protection, UP IP, mode supported by the UE. The method further includes receiving an activation message from a receiving node that includes an indication to the UE to activate the UP IP mode. The receiving node is a long term evolution eNodeB. Methods performed by a network node and a radio access node are also provided.
-
-
-
-
-
-
-
-
-
搜索结果
135 条记录 (耗时 0.03 秒)
