公开(公告)号：US20240080669A1

公开(公告)日：2024-03-07

申请号：US18308072

申请日：2023-04-27

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yan XI ,  Xiaochun XIONG

IPC: H04W12/122 ,  H04L9/40 ,  H04W12/106

CPC classification number: H04W12/122 ,  H04L63/1466 ,  H04W12/106

Abstract: A man-in-the-middle detection method and apparatus. The method includes: A base station receives, in a first physical frame, a RRC message from user equipment UE; the base station receives from the UE a second RRC message including frame information of a second physical frame, and security protection is performed on the first RRC message and the second RRC message by using an access stratum AS security context established by the UE and the base station; and the base station determines whether the first physical frame matches the second physical frame. Thereby, whether a man-in-the-middle exists in air interface communication is determined by determining whether a physical frame in which the UE sends an uplink message matches a physical frame in which the base station receives the uplink message, to prevent the man-in-the-middle from bypassing detection through a mechanism of the man-in-the-middle and improve a man-in-the-middle detection rate.

公开(公告)号：US20200067702A1

公开(公告)日：2020-02-27

申请号：US16671693

申请日：2019-11-01

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Xiaochun XIONG ,  Xinxing YIN

IPC: H04L9/08 ,  H04L9/30 ,  H04L9/14 ,  H04W12/00 ,  H04W12/10

Abstract: Embodiments of this application provide a key generation method and a related device. The method includes: receiving, by a terminal, a first message sent by a source base station, where the first message includes a key exchange algorithm selected by a target base station and a first public key generated by the target base station; generating, by the terminal, a first shared key based on the key exchange algorithm, the first public key, and a first private key generated by the terminal; and sending, by the terminal, a second message to the target base station, where the second message includes a second public key generated by the terminal. According to the embodiments of this application, a communication latency and network load can be reduced while communication security is ensured.

公开(公告)号：US20250016750A1

公开(公告)日：2025-01-09

申请号：US18889980

申请日：2024-09-19

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Dai SHI ,  Xiaochun XIONG

IPC: H04W72/0446 ,  H04L5/00 ,  H04W56/00

Abstract: This application provides a system message transmission method including receiving, based on scheduling information of OSI in SIB1 when a system frame number is λ1 and a slot number is v1, OSI and a first digital signature, where the first digital signature is for the OSI and a time stamp t1; determining the time stamp t1 based on the system frame number λ1, the slot number v1, a time stamp t2, a system frame number λ2, and a slot number v2, where the system frame number λ2 and the slot number v2 are a system frame number and a slot number to which the first SIB1 belongs, and the time stamp t2 is an absolute time point corresponding to the access network device when the system frame number is λ2 and the slot number is v2; and verifying the first digital signature based on the OSI and time stamp t1.