-
公开(公告)号:US09202055B2
公开(公告)日:2015-12-01
申请号:US13447571
申请日:2012-04-16
申请人: Alper Yegin , Youngkyo Baek
发明人: Alper Yegin , Youngkyo Baek
CPC分类号: G06F21/57 , G06F9/4401 , G06F2221/2143 , H04L63/0807 , H04L63/126 , H04L63/162 , H04L2463/061 , H04W4/50 , H04W4/70 , H04W12/06
摘要: A method and an apparatus for providing Machine-to-Machine (M2M) service are provided. A method of providing service by an M2M device includes transmitting a request for service to a Network Security Capability (NSEC), the request for service comprising a identifier of a Device Service Capability Layer (DSCL) of the M2M device, performing an Extensible Authentication Protocol (EAP) authentication with an M2M Authentication Server (MAS) via the NSEC, and generating, if the EAP authentication is successful, a service key using a Master Session Key (MSK), a first constant string, and the identifier of the DSCL.
摘要翻译: 提供了一种用于提供机器对机器(M2M)服务的方法和装置。 一种通过M2M设备提供服务的方法包括向网络安全能力(NSEC)发送业务请求,所述服务请求包括M2M设备的设备业务能力层(DSCL)的标识符,执行可扩展认证协议 (EAP)通过NSEC认证(EAP),并且如果EAP认证成功,则使用主会话密钥(MSK),第一常数字符串和DSCL的标识符生成服务密钥。
-
公开(公告)号:US09317688B2
公开(公告)日:2016-04-19
申请号:US13447599
申请日:2012-04-16
申请人: Alper Yegin , Youngkyo Baek
发明人: Alper Yegin , Youngkyo Baek
CPC分类号: G06F21/57 , G06F9/4401 , G06F2221/2143 , H04L63/0807 , H04L63/126 , H04L63/162 , H04L2463/061 , H04W4/50 , H04W4/70 , H04W12/06
摘要: A method and an apparatus for providing service are provided. A method of providing service by a Machine-to-Machine (M2M) device includes transmitting a request for a first authentication to a Network Security Capability (NSEC), the request for the first authentication including an identifier of the M2M device, performing an Extensible Authentication Protocol (EAP) authentication with the NSEC, and generating, if the first authentication is successful, a secret key using at least one of a Master Session Key (MSK) and the identifier of the M2M device.
摘要翻译: 提供了一种用于提供服务的方法和装置。 通过机器对机器(M2M)设备提供服务的方法包括向网络安全能力(NSEC)发送对第一认证的请求,第一认证的请求包括M2M设备的标识符,执行可扩展 与NSEC的认证协议(EAP)认证,并且如果第一认证成功,则使用主会话密钥(MSK)和M2M设备的标识符中的至少一个来生成秘密密钥。
-
公开(公告)号:US08843753B2
公开(公告)日:2014-09-23
申请号:US13447597
申请日:2012-04-16
申请人: Alper Yegin , Youngkyo Baek
发明人: Alper Yegin , Youngkyo Baek
CPC分类号: G06F21/57 , G06F9/4401 , G06F2221/2143 , H04L63/0807 , H04L63/126 , H04L63/162 , H04L2463/061 , H04W4/50 , H04W4/70 , H04W12/06
摘要: A method for erasing bootstrapping, at a device or a gateway in a Machine-to-Machine (M2M) service is provided. The method includes receiving an erase request containing a first M2M-Erase-Token from an M2M Authentication Server (MAS) or an M2M Service Bootstrapping Function (MSBF), processing the erase request based on the first M2M-Erase-Token or a local policy of the device or the gateway, and sending an erase response containing a second M2M-Erase-Token to the MAS or the MSBF.
摘要翻译: 提供了一种在机器对机器(M2M)服务中的设备或网关上擦除自举的方法。 该方法包括从M2M认证服务器(MAS)或M2M服务引导功能(MSBF)接收包含第一M2M擦除令牌的擦除请求,基于第一M2M擦除令牌或本地策略来处理擦除请求 的设备或网关,并且将包含第二M2M擦除令牌的擦除响应发送到MAS或MSBF。
-
4.发明授权Method and apparatus for authenticating per M2M device between service provider and mobile network operator 有权用于在服务提供商和移动网络运营商之间对M2M设备进行认证的方法和装置公开(公告)号:US08949602B2
公开(公告)日:2015-02-03
申请号:US13327575
申请日:2011-12-15
申请人: Ji-Cheol Lee , Song-Yean Cho , Alper Yegin , Young-Kyo Baek
发明人: Ji-Cheol Lee , Song-Yean Cho , Alper Yegin , Young-Kyo Baek
IPC分类号: H04L9/32
CPC分类号: H04L9/3271 , H04L9/321 , H04L9/3242 , H04L63/062 , H04L63/0892 , H04L2209/80 , H04W4/70 , H04W12/04 , H04W12/06
摘要: A system is capable of authenticating a service per Machine to Machine (M2M) device between an M2M service provider and a mobile communication operator. The system includes an authentication server for generating an M2M device IDentifier (ID), a first authentication key, and an M2M service provider ID per M2M device, The authentication server also generates a second authentication key, a first hash function value, and a first random variable based on the M2M device ID, the first authentication key, and the M2M service provider ID, and transmitting the second authentication key, the first hash function, and the first random variable to an M2M agent to an M2M agent.
摘要翻译: 一个系统能够在M2M服务提供商和移动通信运营商之间对每台机器到机器(M2M)设备进行认证。 该系统包括用于根据M2M设备生成M2M设备标识符(ID),第一认证密钥和M2M服务提供商ID的认证服务器。认证服务器还生成第二认证密钥,第一散列函数值和第一认证密钥 基于M2M设备ID的随机变量,第一认证密钥和M2M服务提供商ID,并向M2M代理向M2M代理发送第二认证密钥,第一散列函数和第一随机变量。
-
公开(公告)号:US20100232606A1
公开(公告)日:2010-09-16
申请号:US12720972
申请日:2010-03-10
申请人: Ji-Cheol Lee , Alper Yegin
发明人: Ji-Cheol Lee , Alper Yegin
IPC分类号: H04L9/00
CPC分类号: H04W12/06 , H04L63/08 , H04L63/0892 , H04L63/162 , H04W12/04 , H04W84/12 , H04W88/08
摘要: A method and system for authenticating in a communication system are provided. The method includes, in a first authenticator, sending an authenticator relocation request to a second authenticator transmitting a hash value for an authentication parameter of a Mobile Terminal (MT), a random parameter 1, and a random parameter 2 from the second authenticator to the first authenticator; in the first authenticator, transmitting the hash value received from the second authenticator and the random parameter 1 to an Authentication, Authorization, and Accounting (AAA) server; in the AAA server, determining a validity of the hash value received from the first authenticator, and in the AAA server, transmitting the authentication parameter ever used at the time of authenticating the MT, to the first authenticator.
摘要翻译: 提供了一种用于在通信系统中认证的方法和系统。 该方法包括:在第一认证器中,向第二认证器发送认证器重定位请求,所述第二认证器将用于移动终端(MT),随机参数1和随机参数2的认证参数的散列值从第二认证器发送到 第一认证者 在第一验证器中,将从第二验证器接收的哈希值和随机参数1发送到认证,授权和计费(AAA)服务器; 在AAA服务器中,确定从第一认证器接收到的散列值的有效性,并且在AAA服务器中,将在认证MT时使用的认证参数发送给第一认证器。
-
公开(公告)号:US08516555B2
公开(公告)日:2013-08-20
申请号:US11359499
申请日:2006-02-23
申请人: Byoung-Joon Lee , Alper Yegin
发明人: Byoung-Joon Lee , Alper Yegin
CPC分类号: H04L63/162 , H04L63/08 , H04L63/0892
摘要: A method and system for authenticating a pay-per-use service using an extensible authentication protocol (EAP). The method includes requesting a client to provide an EAP ID to be used in the service when a service request signal is received from a client; transmitting an EAP payment method (EAP_CC) request signal for requesting management information of the client when the EAP ID is received; after receiving an EAP_CC response signal that includes the management information of the client, retransmitting the EAP_CC response signal to an authentication/authorization/accounting (AAA) backend server that possesses the management information of the client; and after receiving an EAP_CC approval signal for approving the service request of the client from the AAA backend server, retransmitting the EAP_CC approval signal to the client. According to the method, a user can perform an authentication of the pay-per-use service even if the user is a non-subscriber of a specified service.
摘要翻译: 一种用于使用可扩展认证协议(EAP)来认证使用费用服务的方法和系统。 该方法包括:当从客户端接收到服务请求信号时,请求客户端提供要在服务中使用的EAP ID; 当接收到所述EAP ID时,发送用于请求所述客户端的管理信息的EAP支付方法(EAP_CC)请求信号; 在接收到包含客户端的管理信息的EAP_CC响应信号后,向具有客户端管理信息的认证/授权/计费(AAA)后端服务器重发EAP_CC响应信号; 并且在从AAA后端服务器接收到用于批准客户端的服务请求的EAP_CC批准信号之后,向客户端重传EAP_CC许可信号。 根据该方法,即使用户是指定服务的非用户,用户也可以对每次使用付费服务进行认证。
-
公开(公告)号:US07657929B2
公开(公告)日:2010-02-02
申请号:US11115333
申请日:2005-04-27
申请人: Alper Yegin
发明人: Alper Yegin
IPC分类号: H04L29/06
CPC分类号: H04L63/061 , H04L9/0844 , H04L63/08 , H04L2209/42
摘要: A method by authorizing the access of a client by performing an anonymous Diffie-Hellman exchange that can produce authentication material (secret key) between the client and the server, and binding the key to the service-oriented state information asserted by the client. The secret key can be used in the future to prove the ownership of resources as outlined in the state information. This method enables resource ownership-dependent service authorization without requiring initial identity authentication.
摘要翻译: 通过执行可以在客户端和服务器之间产生认证材料(秘密密钥)的匿名Diffie-Hellman交换来授权访问客户端的方法,并将密钥绑定到由客户端断言的面向服务的状态信息。 未来可以使用秘密密钥来证明国家信息中概述的资源所有权。 此方法可实现资源所有权相关服务授权,而无需初始身份验证。
-
8.发明申请Method and system for enabling chap authentication over PANA without using EAP 审中-公开在不使用EAP的情况下启用PANA认证的方法和系统公开(公告)号:US20070028092A1
公开(公告)日:2007-02-01
申请号:US11433667
申请日:2006-05-12
申请人: Alper Yegin
发明人: Alper Yegin
IPC分类号: H04L9/00
CPC分类号: H04L63/08 , H04L63/0892
摘要: A method of authenticating a communication entity in a communication system based on a protocol for carrying authentication for network access (PANA) is disclosed. In one embodiment, the method includes i) transmitting, at a PANA authentication agent (PAA), a PANA start request (PSR) message to a PANA client (PaC), wherein the PSR message includes a field which allows the PaC to select one of a plurality of authentication protocols, ii) receiving, at the PaC, the PSR message, iii) selecting, at the PaC, one of the plurality of protocols and iv) transmitting, at the PaC, a PANA start answer (PSA) message to the PAA, wherein the PSA message includes a field indicative of the selected protocol.
摘要翻译: 公开了一种基于用于承载网络接入认证(PANA)的协议来在通信系统中认证通信实体的方法。 在一个实施例中,该方法包括i)在PANA认证代理(PAA)向PANA客户端(PaC)发送PANA启动请求(PSR)消息,其中PSR消息包括允许PaC选择一个 的多个认证协议,ii)在所述PaC处接收所述PSR消息,iii)在所述PaC中选择所述多个协议之一,以及iv)在所述PaC处发送PANA开始应答(PSA)消息 其中PSA消息包括指示所选择的协议的字段。
-
公开(公告)号:US20060190994A1
公开(公告)日:2006-08-24
申请号:US11359499
申请日:2006-02-23
申请人: Byoung-Joon Lee , Alper Yegin
发明人: Byoung-Joon Lee , Alper Yegin
IPC分类号: H04L9/32
CPC分类号: H04L63/162 , H04L63/08 , H04L63/0892
摘要: A method and system for authenticating a pay-per-use service using an extensible authentication protocol (EAP). The method includes requesting a client to provide an EAP ID to be used in the service when a service request signal is received from a client; transmitting an EAP payment method (EAP_CC) request signal for requesting management information of the client when the EAP ID is received; after receiving an EAP_CC response signal that includes the management information of the client, retransmitting the EAP_CC response signal to an authentication/authorization/accounting (AAA) backend server that possesses the management information of the client; and after receiving an EAP_CC approval signal for approving the service request of the client from the AAA backend server, retransmitting the EAP_CC approval signal to the client. According to the method, a user can perform an authentication of the pay-per-use service even if the user is a non-subscriber of a specified service.
-
公开(公告)号:US09306748B2
公开(公告)日:2016-04-05
申请号:US13367615
申请日:2012-02-07
申请人: Young-Kyo Baek , Alper Yegin , Ji-Cheol Lee
发明人: Young-Kyo Baek , Alper Yegin , Ji-Cheol Lee
CPC分类号: H04L9/321 , H04L63/0876 , H04L63/0892 , H04L63/123 , H04L63/162 , H04W12/06 , H04W12/10
摘要: An authentication method and apparatus in a communication system are provided. In a method for authenticating a first node at a second authentication server in a communication system comprising the first node registered to a first authentication server and a second node registered to the second authentication server, an authentication request message requesting authentication of the first node is received from the second node, the authentication request message is transmitted to the first authentication server, and upon receipt of an authentication success message indicating successful authentication of the first node from the first authentication server, the authentication success message is transmitted to the second node.
摘要翻译: 提供了通信系统中的认证方法和装置。 在通信系统中的用于认证第二认证服务器的第一节点的方法中,包括登记到第一认证服务器的第一节点和注册到第二认证服务器的第二节点,接收到请求第一节点的认证的认证请求消息 从第二节点将认证请求消息发送到第一认证服务器,并且在从第一认证服务器接收到指示成功认证第一节点的认证成功消息时,将认证成功消息发送到第二节点。
-
-
-
-
-
-
-
-
-
搜索结果
24 条记录 (耗时 0.017 秒)
