公开(公告)号：US20160127901A1

公开(公告)日：2016-05-05

申请号：US14533969

申请日：2014-11-05

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Santosh Paul Abraham ,  Philip Michael Hawkes ,  George Cherian ,  Anand Palanigounder

IPC: H04W12/06 ,  H04L9/32 ,  H04W12/04

CPC classification number: H04W12/06 ,  H04L9/3226 ,  H04W12/04 ,  H04W84/12

Abstract: Methods, systems, and devices are described for wireless communication at a wireless station. Specifically, the present disclosure prevents a station from decrypting unauthorized messages transmitted by wireless device(s) impersonating an AP. In some examples, the AP may continuously and periodically alter the keys for each transmitted message transmitted to prevent malicious interference by unauthorized devices. In some examples, the method may use a symmetric cipher (e.g., Message Integrity Code) for a message using an undisclosed MIC key.

Abstract translation: 描述了用于无线站的无线通信的方法，系统和设备。 具体地，本公开防止站解密由模拟AP的无线设备发送的未授权消息。 在一些示例中，AP可以连续且周期地改变发送的每个发送的消息的密钥，以防止未经授权的设备的恶意干扰。 在一些示例中，该方法可以使用未公开的MIC密钥的消息的对称密码（例如，消息完整性代码）。

公开(公告)号：US20160094542A1

公开(公告)日：2016-03-31

申请号：US14675676

申请日：2015-03-31

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Gavin Horn ,  Anand Palanigounder

IPC: H04L29/06 ,  H04W12/04 ,  H04W12/06 ,  H04W76/04

CPC classification number: H04L63/0823 ,  H04L63/06 ,  H04L63/0853 ,  H04L63/0869 ,  H04W12/04 ,  H04W12/06 ,  H04W12/12 ,  H04W76/27 ,  H04W88/02

Abstract: A method, an apparatus, and a computer program product for wireless communication are provided. A method includes transmitting a request to a serving network with a nonce and a signature request directed to a network function of the serving network, receiving a response to the request from the serving network, and authenticating the serving network based on the signature of the network function. The nonce may provide replay protection. The response may include a signature of the network function. The request sent to the serving network may include a radio resource control (RRC) message or a tracking area update (TAU) request. The serving network may be authenticated using a trusted third party to verify a certificate associated with the serving network.

Abstract translation: 提供了一种用于无线通信的方法，装置和计算机程序产品。 一种方法包括向服务网络发送具有针对服务网络的网络功能的随机数和签名请求的请求，从服务网络接收对请求的响应，以及基于网络的签名来认证服务网络 功能。 随机数可以提供重放保护。 响应可以包括网络功能的签名。 发送到服务网络的请求可以包括无线电资源控制（RRC）消息或跟踪区域更新（TAU）请求。 服务网络可以使用可信第三方来认证，以验证与服务网络相关联的证书。

公开(公告)号：US09078130B2

公开(公告)日：2015-07-07

申请号：US13791879

申请日：2013-03-08

Applicant: QUALCOMM Incorporated

Inventor： Anand Palanigounder ,  Jun Wang ,  Xiaoxia Zhang ,  Gordon Kent Walker

IPC: H04M1/66 ,  H04W12/06 ,  H04L12/18 ,  H04L29/06 ,  H04W4/06 ,  H04L9/32

CPC classification number: H04W12/06 ,  H04L9/3242 ,  H04L12/1868 ,  H04L63/0823 ,  H04L63/168 ,  H04W4/06 ,  H04W12/04

Abstract: In a first configuration, a UE receives, from a service provider, a certificate authority list. The certificate authority list is at least one of integrity protected or encrypted based on a credential known by the UE and the service provider and stored on a smartcard in the UE. The UE authenticates a server using the received certificate authority list. In a second configuration, the UE receives a user service discovery/announcement including a reception report configuration and an address of a server. The UE sends a protected reception report to the server based on the reception report configuration. In a third configuration, the UE receives a protected broadcast announcement and communicates based on the broadcast announcement. The broadcast announcement is at least one of integrity protected or encrypted based on a credential known by the UE and stored on a smartcard in the UE.

Abstract translation: 在第一配置中，UE从服务提供商接收认证机构列表。 基于由UE和服务提供商已知并存储在UE中的智能卡上的证书，证书颁发机构列表至少是完整性保护或加密中的至少一个。 UE使用接收到的证书颁发机构列表来认证服务器。 在第二种配置中，UE接收包括接收报告配置和服务器的地址的用户服务发现/通知。 基于接收报告配置，UE向服务器发送受保护的接收报告。 在第三种配置中，UE接收受保护的广播通知并基于广播通知进行通信。 所述广播通知是基于由UE已知并存储在UE中的智能卡上的证书的完整性保护或加密中的至少一个。

公开(公告)号：US20130142118A1

公开(公告)日：2013-06-06

申请号：US13691347

申请日：2012-11-30

Applicant: Qualcomm Incorporated

Inventor： George Cherian ,  Jun Wang ,  Anand Palanigounder ,  John Wallace Nasielski

IPC: H04L12/56

CPC classification number: H04W4/70 ,  H04L45/00 ,  H04W76/11

Abstract: Systems and methods for control and triggering of machine to machine (M2M) devices (e.g., smart meters). More specifically how to allow an M2M service provider (e.g., utility company) to use an operator's network to communicate with the M2M device connected with a UE/GW associated with the operator's network. The M2M service provider may receive identification of the UE/GW, but not for the M2M device. By transmitting an identifier for the M2M device along with an identifier for the UE/GW, the network operator may define establish and maintain a communication path specific to M2M devices. Similar techniques may be incorporated to allow the M2M service provider to locate and trigger the M2M device.

Abstract translation: 用于机器对机器（M2M）设备（例如，智能电表）的控制和触发的系统和方法。 更具体地，如何允许M2M服务提供商（例如，公用事业公司）使用运营商的网络与与与运营商的网络相关联的UE / GW连接的M2M设备进行通信。 M2M服务提供商可以接收UE / GW的标识，但不能接收M2M设备的标识。 通过发送用于M2M设备的标识符以及UE / GW的标识符，网络运营商可以定义建立和维护专用于M2M设备的通信路径。 可并入类似技术以允许M2M服务提供商定位和触发M2M设备。

公开(公告)号：US12207083B2

公开(公告)日：2025-01-21

申请号：US17742212

申请日：2022-05-11

Applicant: QUALCOMM Incorporated

Inventor： Anand Palanigounder ,  Jouni Malinen

IPC: H04L9/40 ,  H04L9/06 ,  H04W12/04 ,  H04W12/041 ,  H04W12/0431 ,  H04W12/0433 ,  H04W12/06 ,  H04W12/08 ,  H04W36/00 ,  H04W36/14 ,  H04W84/04 ,  H04L12/66 ,  H04W84/12 ,  H04W88/06 ,  H04W92/02 ,  H04W92/20

Abstract: One feature pertains to a method for secure wireless communication at an apparatus of a network. The method includes receiving a user equipment identifier identifying a user equipment and a cryptographic key from a wireless wide area network node, and using the cryptographic key as a pairwise master key (PMK). A PMK identifier (PKMID) is generated based on the PMK and the two are stored at the network. A PMK security association is initialized by associating the PMK with at least the PMKID and an access point identifier identifying an access point of the apparatus. An association request is received that includes a PMKID from the user equipment, and it's determined that the PMKID received from the user equipment matches the PMKID stored. A key exchange is initiated with the user equipment based on the PMK to establish a wireless local area network security association with the user equipment.

公开(公告)号：US12108486B2

公开(公告)日：2024-10-01

申请号：US17649295

申请日：2022-01-28

Applicant: QUALCOMM Incorporated

Inventor： Anand Palanigounder ,  Adrian Edward Escott ,  Lenaig Genevieve Chaponniere

IPC: H04W8/12 ,  H04L9/32 ,  H04W8/20 ,  H04W12/0431 ,  H04W12/06 ,  H04W12/106 ,  H04W48/18 ,  H04W84/04

CPC classification number: H04W8/12 ,  H04L9/3242 ,  H04W8/20 ,  H04W12/0431 ,  H04W12/06 ,  H04W12/106 ,  H04W48/18 ,  H04W84/042

Abstract: Aspects directed towards steering of roaming (SoR) are disclosed. In one example, a communication from a public land mobile network (PLMN) is received by a user equipment (UE) in which the communication indicates an acceptance of a UE registration with the PLMN. This example further includes performing a determination of whether an SoR indicator associated with a home PLMN (HPLMN) is embedded within the communication. The UE then manages PLMN selection according to the determination. In another example, a UE is configured to operate according to an SoR configuration in which the UE is configured to ascertain whether an SoR indicator is embedded within a communication from a PLMN. An SoR indicator associated with an HPLMN is then generated and subsequently transmitted from the HPLMN to the UE via the PLMN.

公开(公告)号：US12022279B2

公开(公告)日：2024-06-25

申请号：US17958923

申请日：2022-10-03

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Anand Palanigounder ,  Adrian Edward Escott

IPC: H04W12/0433 ,  H04W12/069 ,  H04L9/40

CPC classification number: H04W12/0433 ,  H04W12/069 ,  H04L63/061 ,  H04L63/062 ,  H04L2463/061

Abstract: Techniques are described for wireless communication. A method for wireless communication at a user equipment (UE) includes performing an extensible authentication protocol (EAP) procedure with an authentication server via an authenticator. The EAP procedure is based at least in part on a set of authentication credentials exchanged between the UE and the authentication server. The method also includes deriving, as part of performing the EAP procedure, a master session key (MSK) and an extended master session key (EMSK) that are based at least in part on the authentication credentials and a first set of parameters; determining a network type associated with the authenticator; and performing, based at least in part on the determined network type, at least one authentication procedure with the authenticator. The at least one authentication procedure is based on an association of the MSK or the EMSK with the determined network type.

公开(公告)号：US11895723B2

公开(公告)日：2024-02-06

申请号：US17104811

申请日：2020-11-25

Applicant: QUALCOMM Incorporated

Inventor： Adrian Edward Escott ,  Mungal Singh Dhanda ,  Anand Palanigounder ,  Soo Bum Lee

IPC: H04W76/19 ,  H04W36/00 ,  H04W12/106 ,  H04L9/40 ,  H04W36/30

CPC classification number: H04W76/19 ,  H04W12/106 ,  H04W36/0079 ,  H04L63/12 ,  H04W36/305

Abstract: One feature pertains to a method that includes establishing a radio communication connection with a first radio access node (RAN) that uses control plane signaling connections to carry user plane data. The method also includes determining that the wireless communication device is experiencing radio link failure (RLF) with the first RAN and that the radio communication connection should be reestablished with a second RAN. A reestablishment request message is transmitted to the second RAN that includes parameters that enable a core network node communicatively coupled to the second RAN to authenticate the wireless communication device and allow or reject reestablishment of the radio communication connection. The parameters include at least a message authentication code (MAC) based in part on one or more bits of a non-access stratum (NAS) COUNT value maintained at the wireless communication device.

公开(公告)号：US11889306B2

公开(公告)日：2024-01-30

申请号：US17929993

申请日：2022-09-06

Applicant: QUALCOMM Incorporated

Inventor： Anand Palanigounder ,  Lenaig Genevieve Chaponniere ,  Sebastian Speicher ,  Haris Zisimopoulos ,  Rajat Prakash

IPC: H04W12/06 ,  H04W8/26

CPC classification number: H04W12/06 ,  H04W8/26

Abstract: Certain aspects provide a method for wireless communication. The method generally includes deriving a network specific identifier (NSI) in a network access identifier (NAI) format, the NSI including a network identifier (NID) stored at the UE, generating a subscription concealed identifier (SUCI) based on the NSI for authentication of the UE with a non-public network (NPN), and sending the SUCI to a network entity for the authentication of the UE with the NPN.

公开(公告)号：US11632695B2

公开(公告)日：2023-04-18

申请号：US16897978

申请日：2020-06-10

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum Lee ,  Adrian Edward Escott ,  Cogol Tina ,  Anand Palanigounder

IPC: H04W36/00 ,  H04W48/16 ,  H04W76/25 ,  H04W8/08 ,  H04W36/32

Abstract: In an aspect, the present disclosure includes a method, apparatus, and computer readable medium for wireless communications for configuring of a NAS COUNT value of a mapped EPS security context associated with an intersystem change of a UE from a 5G system to an EPS. The aspect includes generating, by a UE, a mapped EPS security context associated with an intersystem change of the UE from a 5G system to an EPS, wherein the mapped EPS security context comprises security parameters created based a 5G security context used for the 5G system, the security parameters enabling security-related communications between the UE and a network entity; determining an UL NAS COUNT value and the DL NAS COUNT value for the mapped EPS security context; and transmitting, by the UE, a NAS message to the network entity, the NAS message including the UL NAS COUNT value of the mapped EPS security context.