公开(公告)号：US20170156055A1

公开(公告)日：2017-06-01

申请号：US15373402

申请日：2016-12-08

Applicant: NEC Corporation

Inventor： Xiaowei ZHANG ,  Anand Raghawa PRASAD

IPC: H04W12/02 ,  H04W12/06 ,  H04W4/22 ,  H04W4/02 ,  H04W76/00 ,  H04L29/06 ,  H04W4/00

CPC classification number: H04W12/02 ,  G06F21/6263 ,  H04L63/04 ,  H04W4/029 ,  H04W4/70 ,  H04W4/90 ,  H04W8/18 ,  H04W12/06 ,  H04W76/25 ,  H04W76/50

Abstract: Upon transmitting privacy information to an MTC server (20) via a network (30, 40), an MTC device (10) includes in a message a field to indicate whether the message contains the privacy information, such that the network (30, 40) can perform authorization for the MTC device (10) and server (20). When the MTC device (10) needs to keep connection with the network (30, 40), the MTC device (10) switches off the functionality of provisioning the privacy information, such that the MTC device (10) still can communicate with the network (30, 40). Upon the transmission of privacy information in an emergency case, the MTC device (10) further includes in the message a content to indicate that the MTC device (10) is an emergency device, such that the network (30, 40) verifies whether the MTC device (10) can be used or activated in the emergency case. Optionally, a USIM for emergency-use is deployed in the MTC device (10).

公开(公告)号：US20160277418A1

公开(公告)日：2016-09-22

申请号：US15032569

申请日：2014-08-27

Applicant: NEC CORPORATION

Inventor： Xiaowei ZHANG ,  Anand Raghawa PRASAD

IPC: H04L29/06 ,  H04W4/02 ,  H04W72/12 ,  H04W12/04 ,  H04W12/06

CPC classification number: H04L63/107 ,  G06F21/554 ,  G06F2221/2111 ,  H04L9/0833 ,  H04L9/0891 ,  H04L63/065 ,  H04L63/08 ,  H04L2209/80 ,  H04W4/023 ,  H04W12/04 ,  H04W12/06 ,  H04W64/00 ,  H04W72/121 ,  H04W76/14 ,  H04W88/16

Abstract: In order for effectively managing security of ProSe (Proximity based Services) communication, a server forming a communication system monitors locations of a plurality of UEs that are grouped to conduct direct communication with each other. The server manages security of the direct communication based on the locations.

Abstract translation: 为了有效地管理ProSe（基于接近服务）通信的安全性，形成通信系统的服务器监视被分组以进行彼此直接通信的多个UE的位置。 服务器根据位置管理直接通信的安全性。

公开(公告)号：US20220174480A1

公开(公告)日：2022-06-02

申请号：US17672274

申请日：2022-02-15

Applicant: NEC Corporation

Inventor： Sheeba Backia Mary BASKARAN ,  Sivakamy LAKS HMI NARAYANAN ,  Anand Raghawa PRASAD ,  Sivabalan ARUMUGAM ,  Hironori ITO ,  Takahito YOSHIZAWA

IPC: H04W12/02 ,  H04W12/06 ,  H04W12/10 ,  H04W12/03 ,  H04W12/72 ,  H04W12/0471

Abstract: A communication terminal (10) includes control means for generating a subscription concealed identifier (SUCI) including a subscription permanent identifier (SUPI) concealed using a predetermined protection scheme, and a protection scheme identifier identifying the protection scheme, and transmission means for sending the SUCI to a first network apparatus during a registration procedure, the SUCI being sent for a second network apparatus to de-conceal the SUPI from the SUCI based on the protection scheme used to generate the SUCI.

公开(公告)号：US20220104009A1

公开(公告)日：2022-03-31

申请号：US17422035

申请日：2020-01-10

Applicant: NEC Corporation

Inventor： Sheeba Backia Mary BASKARAN ,  Sander DE KIEVIT ,  Sivabaian ARUMUGAM ,  Anand Raghawa PRASAD

IPC: H04W12/02 ,  H04W8/18 ,  H04W8/04 ,  H04W60/00 ,  H04W12/72 ,  H04W12/06

Abstract: The present disclosure provides a User Equipment (UE) comprising a transceiver circuit; and a controller configured to control the transceiver circuit to send, to an Access and mobility Management Function (AMF) of a communication node, an identifier, wherein upon successful authentication of a network access function of the UE in the communication node, the controller is configured to maintain a secure connection with the communication node.

公开(公告)号：US20220029975A1

公开(公告)日：2022-01-27

申请号：US17497383

申请日：2021-10-08

Applicant: NEC Corporation

Inventor： Xiaowei ZHANG ,  Anand Raghawa PRASAD

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/32 ,  H04W12/02 ,  H04W76/14 ,  H04W12/03 ,  H04W12/104 ,  H04W12/106 ,  H04W12/108 ,  H04W12/0431

Abstract: A method of performing authentication and authorization in Proximity based Service (ProSe) communication by a requesting device which sends a request of a communication and a receiving device which receives the request from the requesting device, the method including deriving session keys Kpc and Kpi from an unique key Kp at the requesting and receiving devices, using the session keys Kpc and Kpi for ProSe communication setup and direct communication between the requesting and receiving devices, starting the direct communication with the requesting and receiving devices. The key Kpc is confidentiality key and the key Kpi is integrity protection key.

公开(公告)号：US20210409941A1

公开(公告)日：2021-12-30

申请号：US17288203

申请日：2019-10-29

Applicant: NEC Corporation

Inventor： Rohini RAJENDRAN ,  Nivedya Parambath SASI ,  Pradheep Kumar SINGARAVELU ,  Sivabalan ARUMUGAM ,  Anand Raghawa PRASAD ,  Hironori ITO

IPC: H04W12/06 ,  H04W12/08 ,  H04W48/02 ,  H04W76/19 ,  H04W76/34 ,  H04W80/02

Abstract: This disclosure is related to the security procedures for UE (300) in 5GLAN Group Communication. Security procedure involved in this disclosure is based on Authentication and authorization of UE (300) by Group Management Function (GMF) (500) in 5GLAN communication, attachment and detachment of UE (300) in 5GLAN Group due to state transition and the access restrictions imposed on UE (300) during state transition.

公开(公告)号：US20210385090A1

公开(公告)日：2021-12-09

申请号：US17285991

申请日：2019-11-01

Applicant: NEC Corporation

Inventor： Anand Raghawa PRASAD ,  Sander DE KIEVIT ,  Hironori ITO ,  Takahito YOSHIZAWA

IPC: H04L9/32 ,  H04L29/06 ,  H04L29/08 ,  H04W12/106

Abstract: This invention introduces methods and mechanisms of partial integrity protection in mobile systems. A device comprising: a memory configured to store instructions; and a processor configured to execute the instructions to: generate a representation value based on protocol data unit (PDU) header data and payload data of a PDU; generate a message authentication code based on the representation value; and include the message authentication code in the PDU.

公开(公告)号：US20210360471A1

公开(公告)日：2021-11-18

申请号：US17284893

申请日：2019-11-01

Applicant: NEC CORPORATION

Inventor： Sander DE KIEVIT ,  Hironori ITO ,  Anand Raghawa PRASAD ,  Takahito YOSHIZAWA

IPC: H04W28/04 ,  H04L1/20 ,  H04W8/24 ,  H04W12/10

Abstract: This invention introduces methods and mechanisms of partial integrity protection in mobile systems. A user equipment (UE), comprising: a memory configured to store instructions; and a processor configured to execute the instructions to: receive, from a network device, user plane data having integrity protection; send an error indication indicating an integrity protection error relating to the user plane data; and receive retransmitted user plane data from the network device with a reduced data rate, based on the error indication.

公开(公告)号：US20210329452A1

公开(公告)日：2021-10-21

申请号：US17272368

申请日：2019-08-29

Applicant: NEC Corporation

Inventor： Hironori ITO ,  Toshiyuki TAMURA ,  Anand Raghawa PRASAD

IPC: H04W12/08 ,  H04W12/06 ,  H04W60/00 ,  H04W12/40

Abstract: It is an object to provide a core network device that can satisfy security requirements required for respective network slices. A core network device (10) according to the present disclosure includes a storage unit (11) configured to store a security parameter associated with a network slice allowing a communication terminal. The core network device (10) further includes a communication unit (12) configured to transmit identification information on the network slice, and identification information on the security parameter to the communication terminal.

公开(公告)号：US20210014688A1

公开(公告)日：2021-01-14

申请号：US16494600

申请日：2018-03-16

Applicant: NEC Corporation

Inventor： Hironori ITO ,  Anand Raghawa PRASAD ,  Andreas KUNZ ,  Sivabalan ARUMUGAM ,  Sivakamy LAKSHMINARAYANAN ,  Sheeba Backia Mary BASKARAN

IPC: H04W12/10 ,  H04W36/14 ,  H04W48/18 ,  H04W12/04 ,  H04W12/08 ,  H04W12/00

Abstract: A communication terminal (10) according to the present disclosure includes: a control unit (12) configured to, in a case of a movement from a communication area formed by the 5GS to a communication area formed by the EPS or a movement from a communication area formed by the EPS to a communication area formed by the 5GS, determine whether or not a communication system forming a communication area at a movement destination can satisfy requirements of services; and a communication unit (11) configured to, when it is determined that the communication system forming the communication area at the movement destination can satisfy the requirements of the services, send a connection request message to the communication system forming the communication area at the movement destination.