公开(公告)号：US20100165904A1

公开(公告)日：2010-07-01

申请号：US12344729

申请日：2008-12-29

申请人： TIMOTHY G. WOODWARD ,  GERALD R. DROBKA ,  JAMES E. EASTWOOD ,  NATHANAEL P. KUEHNER ,  JOHN G. LAMBROU ,  TODD A. LEIGH

发明人： TIMOTHY G. WOODWARD ,  GERALD R. DROBKA ,  JAMES E. EASTWOOD ,  NATHANAEL P. KUEHNER ,  JOHN G. LAMBROU ,  TODD A. LEIGH

IPC分类号： H04H20/71

CPC分类号： H04W72/005 ,  H04W48/16 ,  H04W72/02

摘要： A method for selecting a channel for group communications in a conventional multi-channel communication system comprises receiving, for a plurality of channels in the multi-channel communication system, a talkgroup assignment list for the channels that identifies a set of talkgroups assigned to use the corresponding channels. A subscriber unit receives talkgroup assignment lists for multiple different channels, determines a desired talkgroup, and selects a channel assigned to the desired talkgroup using the received talkgroup assignment. The talkgroup assignment list is developed for at least one channel in the multi-channel communication system and identifies a set of talkgroups assigned to use the corresponding channel. The list is transmitted for the channel to a subscriber unit and is used by the subscriber unit to register with the system and affiliate with a talkgroup supported by the channel in the conventional multi-channel communication system.

摘要翻译： 一种用于在常规多声道通信系统中选择用于组通信的频道的方法包括：对于多声道通信系统中的多个频道，接收用于标识被分配用于使用该通道的一组通话组的频道的通话组分配列表 相应渠道。 订户单元接收用于多个不同频道的通话组分配列表，确定所需的通话组，并且使用所接收的通话组分配来选择分配给所需通话组的频道。 通话组分配列表被开发用于多声道通信系统中的至少一个频道，并且识别分配用于使用相应频道的一组通话组。 将该列表发送给用户单元，并由用户单元用于向系统注册，并与常规多信道通信系统中的信道支持的通话组联系。

公开(公告)号：US09071964B2

公开(公告)日：2015-06-30

申请号：US13234640

申请日：2011-09-16

申请人： Thomas J. Senese ,  Chris A. Kruegel ,  Timothy G. Woodward

发明人： Thomas J. Senese ,  Chris A. Kruegel ,  Timothy G. Woodward

IPC分类号： H04M1/66 ,  H04L29/06 ,  H04K1/00 ,  H04W12/06

CPC分类号： H04W12/06 ,  H04L63/0823 ,  H04L63/123 ,  H04W12/10 ,  H04W84/08

摘要： A radio is authenticated at the site and unique authentication information for the radio is stored at the site. A subsequent non-authentication message from the radio is received at the site and authentication information in the non-authentication message is identified. The unique authentication information stored at the site is compared with authentication information identified in the non-authentication message. If there is a match, the non-authentication message is authenticated with an authentication code included in the non-authentication message, wherein a predefined portion of the authentication code is obtained from at least one of a header portion or a data portion of the non-authentication message. Upon successfully completing authentication, the site repeats the non-authentication message towards destination radios indicated in non-authentication message.

摘要翻译： 收音机在现场进行认证，无线电的唯一认证信息存储在现场。 在站点处接收到来自无线电的后续非认证消息，并且识别非认证消息中的认证信息。 将存储在站点的唯一认证信息与在非认证消息中识别的认证信息进行比较。 如果存在匹配，则使用包括在非验证消息中的认证码对非验证消息进行认证，其中从非标识符的头部部分或数据部分中的至少一个获得认证码的预定义部分， 认证信息。 在成功完成认证后，站点重复非认证消息到非认证消息中指示的目的无线电。

公开(公告)号：US20130072155A1

公开(公告)日：2013-03-21

申请号：US13234640

申请日：2011-09-16

申请人： THOMAS J. SENESE ,  CHRIS A. KRUEGEL ,  TIMOTHY G. WOODWARD

发明人： THOMAS J. SENESE ,  CHRIS A. KRUEGEL ,  TIMOTHY G. WOODWARD

IPC分类号： H04W12/06

CPC分类号： H04W12/06 ,  H04L63/0823 ,  H04L63/123 ,  H04W12/10 ,  H04W84/08

摘要： A radio is authenticated at the site and unique authentication information for the radio is stored at the site. A subsequent non-authentication message from the radio is received at the site and authentication information in the non-authentication message is identified. The unique authentication information stored at the site is compared with authentication information identified in the non-authentication message. If there is a match, the non-authentication message is authenticated with an authentication code included in the non-authentication message, wherein a predefined portion of the authentication code is obtained from at least one of a header portion or a data portion of the non-authentication message. Upon successfully completing authentication, the site repeats the non-authentication message towards destination radios indicated in non-authentication message.

摘要翻译： 收音机在现场进行认证，无线电的唯一认证信息存储在现场。 在站点处接收到来自无线电的后续非认证消息，并且识别非认证消息中的认证信息。 将存储在站点的唯一认证信息与在非认证消息中识别的认证信息进行比较。 如果存在匹配，则使用包括在非验证消息中的认证码对非验证消息进行认证，其中从非标识符的头部部分或数据部分中的至少一个获得认证码的预定义部分， 认证信息。 在成功完成认证后，站点重复非认证消息到非认证消息中指示的目的无线电。

公开(公告)号：US20120183143A1

公开(公告)日：2012-07-19

申请号：US13008251

申请日：2011-01-18

申请人： CHRIS A. KRUEGEL ,  THOMAS J. SENESE ,  TIMOTHY G. WOODWARD

发明人： CHRIS A. KRUEGEL ,  THOMAS J. SENESE ,  TIMOTHY G. WOODWARD

IPC分类号： H04L9/14

CPC分类号： H04L9/088 ,  H04L9/083 ,  H04L9/16 ,  H04L63/062 ,  H04L2209/80 ,  H04W12/04

摘要： A method for operating with KMFs includes a communication device having a memory device: receiving a designation of a primary KMF for the communication device, wherein only one primary KMF is designated for the communication device at any given time instance; receiving a designation of a secondary KMF for the communication device; storing, within the memory device, a first and a second set of crypto groups, wherein each crypto group within each set of crypto groups comprises at least one keyset, wherein each set of crypto groups is associated, within the memory device, to only one KMF identifier; associating, within the memory device, the first set of crypto groups to an identifier for the primary KMF; and associating, within the memory device, the second set of crypto groups to an identifier for the secondary KMF.

摘要翻译： 一种使用KMF进行操作的方法包括具有存储装置的通信装置：接收用于通信装置的主要KMF的指定，其中在任何给定的时间实例中仅为通信装置指定一个主要的KMF; 接收通信设备的次级KMF的指定; 在所述存储器设备内存储第一组密码组和第二组加密组，其中每组密码组内的每个密码组包括至少一个密钥组，其中每组密码组在存储器设备内仅与一个密钥组相关联 KMF标识符 在所述存储设备内将所述第一组密码组与所述主KMF的标识符相关联; 以及在所述存储器装置内将所述第二组密码组关联到所述次级KMF的标识符。

公开(公告)号：US08116798B2

公开(公告)日：2012-02-14

申请号：US12344932

申请日：2008-12-29

申请人： Nathanael P. Kuehner ,  Gerald R. Drobka ,  James E. Eastwood ,  Todd A. Leigh ,  Timothy G. Woodward

发明人： Nathanael P. Kuehner ,  Gerald R. Drobka ,  James E. Eastwood ,  Todd A. Leigh ,  Timothy G. Woodward

IPC分类号： H04W4/06

CPC分类号： H04W72/005 ,  H04W48/08 ,  H04W48/16 ,  H04W72/00 ,  H04W84/08

摘要： A method for indicating the status of communication channels assigned to a talkgroup includes: determining the channels in various sites in a conventional communication system that service a talkgroup for media transmissions between subscribers of the talkgroup; receiving notification of the status of transmission activity on the channels; and based on the notification, providing an indication of the status of the channels assigned to the talkgroup so that the talkgroup or subscribers of the talkgroup can choose to proceed with a talkgroup communication. The notification may be received by an infrastructure device in an RF site or a central controlling entity. The indication may be that the channel is free for transmissions or is busy.

摘要翻译： 一种用于指示分配给通话组的通信信道的状态的方法包括：确定服务于话音组的常规通信系统中的各个站点中的信道，用于在通话组的用户之间进行媒体传输; 接收通道上传输活动状态的通知; 并且基于该通知，提供分配给该通话组的频道的状态的指示，使得该通话组或该通话组的用户可以选择进行通话组通信。 该通知可以由RF站点或中央控制实体中的基础设施设备接收。 该指示可以是信道是空闲的或正在忙碌。

公开(公告)号：US08059817B2

公开(公告)日：2011-11-15

申请号：US11765085

申请日：2007-06-19

申请人： Chris A. Kruegel ,  Michael W. Bright ,  Dipendra M. Chowdhary ,  Thomas J. Senese ,  Timothy G. Woodward ,  Larry Murrill

发明人： Chris A. Kruegel ,  Michael W. Bright ,  Dipendra M. Chowdhary ,  Thomas J. Senese ,  Timothy G. Woodward ,  Larry Murrill

IPC分类号： H04L9/00 ,  H04L9/32 ,  G06F7/04

CPC分类号： H04L63/0428 ,  H04L9/083 ,  H04L9/0894 ,  H04L63/0485 ,  H04L63/062 ,  H04L63/164 ,  H04L2209/80 ,  H04L2463/061

摘要： Disclosed is a method for encrypted communications. A first IPsec endpoint selects a security association (SA) from a security association database (SAD) by using a selector and then extracts an indexing parameter from SA. The indexing parameter is used to determine an active key location from a key storage database (KSD). Data packets are then encrypted using a key from the active key location. The first IPsec endpoint also forms a security parameter index (SPI) in a header of the data packet by using a keyID from the active key location and transmits the encrypted data packet with the header indicating the SPI to a second IPsec endpoint.

摘要翻译： 公开了一种用于加密通信的方法。 第一个IPsec端点通过使用选择器从安全关联数据库（SAD）中选择安全关联（SA），然后从SA提取索引参数。 索引参数用于从密钥存储数据库（KSD）确定活动密钥位置。 然后使用活动密钥位置的密钥对数据包进行加密。 第一IPsec端点还通过使用来自活动密钥位置的密钥ID在数据包的报头中形成安全参数索引（SPI），并将具有指示SPI的标题的加密数据包发送到第二IPsec端点。

公开(公告)号：US20100167774A1

公开(公告)日：2010-07-01

申请号：US12344932

申请日：2008-12-29

申请人： NATHANAEL P. KUEHNER ,  GERALD R. DROBKA ,  JAMES E. EASTWOOD ,  TODD A. LEIGH ,  TIMOTHY G. WOODWARD

发明人： NATHANAEL P. KUEHNER ,  GERALD R. DROBKA ,  JAMES E. EASTWOOD ,  TODD A. LEIGH ,  TIMOTHY G. WOODWARD

IPC分类号： H04B7/00

CPC分类号： H04W72/005 ,  H04W48/08 ,  H04W48/16 ,  H04W72/00 ,  H04W84/08

摘要： A method for indicating the status of communication channels assigned to a talkgroup includes: determining the channels in various sites in a conventional communication system that service a talkgroup for media transmissions between subscribers of the talkgroup; receiving notification of the status of transmission activity on the channels; and based on the notification, providing an indication of the status of the channels assigned to the talkgroup so that the talkgroup or subscribers of the talkgroup can choose to proceed with a talkgroup communication. The notification may be received by an infrastructure device in an RF site or a central controlling entity. The indication may be that the channel is free for transmissions or is busy.

摘要翻译： 一种用于指示分配给通话组的通信信道的状态的方法包括：确定服务于话音组的常规通信系统中的各个站点中的信道，用于在通话组的用户之间进行媒体传输; 接收通道上传输活动状态的通知; 并且基于该通知，提供分配给该通话组的频道的状态的指示，使得该通话组或该通话组的用户可以选择进行通话组通信。 该通知可以由RF站点或中央控制实体中的基础设施设备接收。 该指示可以是信道是空闲的或正在忙碌。

公开(公告)号：US08427996B2

公开(公告)日：2013-04-23

申请号：US12344729

申请日：2008-12-29

申请人： Timothy G. Woodward ,  Gerald R. Drobka ,  James E. Eastwood ,  Nathanael P. Kuehner ,  John G. Lambrou ,  Todd A. Leigh

发明人： Timothy G. Woodward ,  Gerald R. Drobka ,  James E. Eastwood ,  Nathanael P. Kuehner ,  John G. Lambrou ,  Todd A. Leigh

IPC分类号： H04W48/16

CPC分类号： H04W72/005 ,  H04W48/16 ,  H04W72/02

摘要： A method for selecting a channel for group communications in a conventional multi-channel communication system comprises receiving, for a plurality of channels in the multi-channel communication system, a talkgroup assignment list for the channels that identifies a set of talkgroups assigned to use the corresponding channels. A subscriber unit receives talkgroup assignment lists for multiple different channels, determines a desired talkgroup, and selects a channel assigned to the desired talkgroup using the received talkgroup assignment. The talkgroup assignment list is developed for at least one channel in the multi-channel communication system and identifies a set of talkgroups assigned to use the corresponding channel. The list is transmitted for the channel to a subscriber unit and is used by the subscriber unit to register with the system and affiliate with a talkgroup supported by the channel in the conventional multi-channel communication system.

摘要翻译： 一种用于在常规多声道通信系统中选择用于组通信的频道的方法包括：对于多声道通信系统中的多个频道，接收用于标识被分配用于使用该通道的一组通话组的频道的通话组分配列表 相应渠道。 订户单元接收用于多个不同频道的通话组分配列表，确定所需的通话组，并且使用所接收的通话组分配来选择分配给所需通话组的频道。 通话组分配列表被开发用于多声道通信系统中的至少一个频道，并且识别分配用于使用相应频道的一组通话组。 将该列表发送给用户单元，并由用户单元用于向系统注册，并与常规多信道通信系统中的信道支持的通话组联系。

公开(公告)号：US20120036567A1

公开(公告)日：2012-02-09

申请号：US13174324

申请日：2011-06-30

申请人： THOMAS J. SENESE ,  CHRIS A. KRUEGEL ,  TIMOTHY M. LANGHAM ,  TODD A. LEIGH ,  TIMOTHY G. WOODWARD

发明人： THOMAS J. SENESE ,  CHRIS A. KRUEGEL ,  TIMOTHY M. LANGHAM ,  TODD A. LEIGH ,  TIMOTHY G. WOODWARD

IPC分类号： G06F21/20

CPC分类号： H04L9/0838 ,  H04L63/061 ,  H04L63/164

摘要： A security gateway and an initiating device perform methods for establishing a security session. The methods includes the security gateway: receiving a first message from an initiating device, the first message including a first message authentication code; validating the first message using the message authentication code; and responsive to the validating, sending a second message to the initiating device, the second message including a timestamp and further including a second message authentication code for authenticating of the timestamp by the initiating device, wherein the first and second messages are used to establish the security session, and the authenticated timestamp is used for subsequent replay protection of messages between the security gateway and the initiating device. The method further includes the security gateway validating a dynamically assigned IP address for the initiating device to use in authorizing VPN traffic between the two devices.

摘要翻译： 安全网关和启动设备执行用于建立安全会话的方法。 所述方法包括所述安全网关：从发起设备接收第一消息，所述第一消息包括第一消息认证码; 使用消息认证码验证第一个消息; 并且响应于验证，向所述发起设备发送第二消息，所述第二消息包括时间戳，并且还包括用于由所述发起设备认证所述时间戳的第二消息认证码，其中所述第一和第二消息用于建立 安全会话和经过身份验证的时间戳用于安全网关和启动设备之间的消息的后续重放保护。 该方法还包括安全网关验证动态分配的IP地址以用于发起设备用于授权两个设备之间的VPN流量。

公开(公告)号：US08948396B2

公开(公告)日：2015-02-03

申请号：US13008251

申请日：2011-01-18

申请人： Chris A. Kruegel ,  Thomas J. Senese ,  Timothy G. Woodward

发明人： Chris A. Kruegel ,  Thomas J. Senese ,  Timothy G. Woodward

IPC分类号： H04L9/00 ,  H04L9/08 ,  H04L9/16 ,  H04L29/06 ,  H04W12/04

CPC分类号： H04L9/088 ,  H04L9/083 ,  H04L9/16 ,  H04L63/062 ,  H04L2209/80 ,  H04W12/04

摘要： A method for operating with KMFs includes a communication device having a memory device: receiving a designation of a primary KMF for the communication device, wherein only one primary KMF is designated for the communication device at any given time instance; receiving a designation of a secondary KMF for the communication device; storing, within the memory device, a first and a second set of crypto groups, wherein each crypto group within each set of crypto groups comprises at least one keyset, wherein each set of crypto groups is associated, within the memory device, to only one KMF identifier; associating, within the memory device, the first set of crypto groups to an identifier for the primary KMF; and associating, within the memory device, the second set of crypto groups to an identifier for the secondary KMF.

摘要翻译： 一种使用KMF进行操作的方法包括具有存储装置的通信装置：接收用于通信装置的主要KMF的指定，其中在任何给定的时间实例中仅为通信装置指定一个主要的KMF; 接收通信设备的次级KMF的指定; 在所述存储器设备内存储第一组密码组和第二组加密组，其中每组密码组内的每个密码组包括至少一个密钥组，其中每组密码组在存储器设备内仅与一个密钥组相关联 KMF标识符 在所述存储设备内将所述第一组密码组与所述主KMF的标识符相关联; 以及在所述存储器装置内将所述第二组密码组关联到所述次级KMF的标识符。