公开(公告)号：US20250168640A1

公开(公告)日：2025-05-22

申请号：US19033293

申请日：2025-01-21

Applicant: CABLE TELEVISION LABORATORIES, INC.

Inventor： TAO WAN

IPC: H04W12/106 ,  H04L9/00 ,  H04L9/32 ,  H04W4/06

Abstract: A client-side electronic device includes a receiver, a processor, and a memory. The receiver communicates with a message server over a communication medium of a communication network. The memory stores computer-executable instructions, which, when executed by the processor, cause the device to receive, from the message server, a broadcast message, a timestamp associated with the broadcast message, and a first digital signature of the broadcast message and a second digital signature of the timestamp. The executed instruction further cause the device to verify an integrity of the broadcast message based the first or second digital signatures, determine a freshness of the broadcast message based on the received timestamp, calculate a trust state of the broadcast message based on the integrity verification and the freshness determination, and store the broadcast message in the memory along with the calculated trust state.

公开(公告)号：US20250133409A1

公开(公告)日：2025-04-24

申请号：US19001192

申请日：2024-12-24

Applicant: CABLE TELEVISION LABORATORIES, INC.

Inventor： TAO WAN

IPC: H04W12/50 ,  H04W12/069 ,  H04W12/08 ,  H04W12/71 ,  H04W88/18

Abstract: Systems and methods for securing network communications between a first device and a second device over a service-based architecture, include receiving, at the first device, an access request including: a request to use a service of the service-based architecture, an authentication public key certificate associated with the second device or a proxy device therefore, a unique identifier of the second device, and a digital signature using the private key associated with the authentication public key certificate. The first device may verify the authentication public key certificate and generate an encrypted access response including an access token that allows access to the service, which is then transmitted back to the second device for further use in accessing the service-based architecture.

公开(公告)号：US20240114338A1

公开(公告)日：2024-04-04

申请号：US18480893

申请日：2023-10-04

Applicant: CABLE TELEVISION LABORATORIES, INC

Inventor： TAO WAN

IPC: H04W12/06

CPC classification number: H04W12/06

Abstract: A system for authenticating a core network includes a computing device including at least one processor in communication with at least one memory device. The at least one memory device stores a plurality of instructions, which when executed cause the processor to receive an authentication request message routed from a non-3GPP device. The executed instructions also cause the processor to transfer the authentication request message to a unified data management function. The executed instructions further cause the processor to select an authentication method based upon the authentication request. In addition, the executed instructions cause the processor to transmit an authentication challenge message to the non-3GPP device. Moreover, the executed instructions cause the processor to receive the authentication response from the non-3GPP device. Furthermore, the executed instructions cause the processor to verify the authentication response. Additionally, the executed instructions cause the processor to transmit the authentication result to the non-3GPP device.

公开(公告)号：US20250088489A1

公开(公告)日：2025-03-13

申请号：US18959567

申请日：2024-11-25

Applicant: CABLE TELEVISION LABORATORIES, INC.

Inventor： TAO WAN

IPC: H04L9/40 ,  H04L67/02 ,  H04L67/56

Abstract: A computer device is provided for HTTPS over Proxy (HoP). The computer device includes a transceiver configured for operable communication with at least one client device of the communication network via a secure connection with a server device, and a processor including a memory configured to store computer-executable instructions. When executed by the processor, the instructions cause the computer device to receive, from a client device via the communication network, a communication request message including a desired domain, determine a communication authentication token associated with the desired domain, transmit, to the client device, the communication authentication token associated with the desired domain, wherein the client device is configured to validate the communication authentication token, and continue communication with the client device if the client device validates the communication authentication token.