-
1.发明授权Method, system and device for service selection via a wireless local area network 失效通过无线局域网进行服务选择的方法,系统和设备公开(公告)号:US07633953B2
公开(公告)日:2009-12-15
申请号:US10417801
申请日:2003-04-17
申请人: Henry Haverinen , Jouni Mikkonen
发明人: Henry Haverinen , Jouni Mikkonen
IPC分类号: H04L12/28
CPC分类号: H04L29/12254 , H04L1/18 , H04L29/12264 , H04L29/12273 , H04L29/12839 , H04L61/2038 , H04L61/2046 , H04L61/2053 , H04L61/6022 , H04L63/0407 , H04L63/08 , H04W8/26 , H04W12/02 , H04W12/06 , H04W84/12
摘要: A method in a system, a system, a method in a terminal and a terminal for service selection in a data network. The method sends, from a Wireless Local Area Network (WLAN) terminal, a Network Access Identifier (NAI) including a service selection indicator via a WLAN access point; receives, at an authentication server, the NAI including a service selection indicator, and provides the WLAN terminal with a connection to the service indicated by said selection indicator. The system comprises at least one WLAN access point and terminal comprising means for including a service selection indicator in a NAI and means for sending said NAI including said service selection indicator via the WLAN access point, at least one authentication server comprising means for receiving said NAI, means for extracting said service selection indicator from said NAI and means for initiating connection to a service indicated by said service selection indicator.
摘要翻译: 系统中的方法,系统,终端中的方法和用于数据网络中的服务选择的终端。 该方法经由WLAN接入点从无线局域网(WLAN)终端发送包括服务选择指示符的网络接入标识符(NAI); 在认证服务器处接收包括服务选择指示符的NAI,并向WLAN终端提供与由所述选择指示符指示的服务的连接。 该系统包括至少一个WLAN接入点和终端,其包括用于在NAI中包括服务选择指示符的装置,以及用于经由WLAN接入点发送包括所述服务选择指示符的所述NAI的装置,至少一个认证服务器包括用于接收所述NAI 用于从所述NAI提取所述服务选择指示符的装置以及用于发起与由所述服务选择指示符指示的服务的连接的装置。
-
公开(公告)号:US08161295B2
公开(公告)日:2012-04-17
申请号:US11091364
申请日:2005-03-17
IPC分类号: G06F21/00
CPC分类号: H04L63/0428 , G06F21/10 , H04L9/0869
摘要: Method for storing data in the memory (1.2) of an electronic device (1), wherein the data to be stored is encrypted with an encryption key (Ks). The electronic device (1) is provided with an identification card (2) equipped with a cryptographic algorithm and an individual identifier (ID). In the electronic device (1), at least one seed value (RAND1, RAND2, RAND3) is generated, and the at least one seed value is transmitted to the identification card (2). The cryptographic algorithm is performed on the identification card (2), with the seed value (RAND1, RAND2, RAND3) being used as the input, wherein at least one derived value (Kc1, Kc2, Kc3) is produced in the algorithm. The at least one derived value (Kc1, Kc2, Kc3) is transmitted to the electronic device (1), wherein the at least one derived value (Kc1, Kc2, Kc3) is used in the formation of the encryption key (Ks). The invention also relates to an electronic device (1), module, and computer software product.
摘要翻译: 一种用于将数据存储在电子设备(1)的存储器(1.2)中的方法,其中用加密密钥(Ks)对要存储的数据进行加密。 电子设备(1)设置有配备有密码算法和个人标识符(ID)的识别卡(2)。 在电子设备(1)中,产生至少一个种子值(RAND1,RAND2,RAND3),并且将至少一个种子值发送到识别卡(2)。 在识别卡(2)上执行加密算法,其中使用种子值(RAND1,RAND2,RAND3)作为输入,其中在算法中产生至少一个导出值(Kc1,Kc2,Kc3)。 将至少一个导出值(Kc1,Kc2,Kc3)发送到电子设备(1),其中在形成加密密钥(Ks)中使用至少一个导出值(Kc1,Kc2,Kc3)。 本发明还涉及电子设备(1),模块和计算机软件产品。
-
公开(公告)号:US20050223218A1
公开(公告)日:2005-10-06
申请号:US11091364
申请日:2005-03-17
IPC分类号: G06F20060101 , G06F12/14 , G06F21/10 , H04L9/00 , H04L9/08 , H04L9/28 , H04L9/30 , H04L29/06
CPC分类号: H04L63/0428 , G06F21/10 , H04L9/0869
摘要: Method for storing data in the memory (1.2) of an electronic device (1), wherein the data to be stored is encrypted with an encryption key (Ks). The electronic device (1) is provided with an identification card (2) equipped with a cryptographic algorithm and an individual identifier (ID). In the electronic device (1), at least one seed value (RAND1, RAND2, RAND3) is generated, and the at least one seed value is transmitted to the identification card (2). The cryptographic algorithm is performed on the identification card (2), with the seed value (RAND1, RAND2, RAND3) being used as the input, wherein at least one derived value (Kc1, Kc2, Kc3) is produced in the algorithm. The at least one derived value (Kc1, Kc2, Kc3) is transmitted to the electronic device (1), wherein the at least one derived value (Kc1, Kc2, Kc3) is used in the formation of the encryption key (Ks). The invention also relates to an electronic device (1), module, and computer software product.
摘要翻译: 一种用于将数据存储在电子设备(1)的存储器(1.2)中的方法,其中用加密密钥(Ks)对要存储的数据进行加密。 电子设备(1)设置有配备有密码算法和个人标识符(ID)的识别卡(2)。 在电子设备(1)中,产生至少一个种子值(RAND 1,RAND 2,RAND 3),并且将至少一个种子值发送到识别卡(2)。 使用种子值(RAND 1,RAND 2,RAND 3)作为输入,在识别卡(2)上执行加密算法,其中至少一个导出值(Kc 1,Kc 2,Kc 3)为 在算法中产生。 至少一个派生值(Kc 1,Kc 2,Kc 3)被传送到电子设备(1),其中至少一个派生值(Kc 1,Kc 2,Kc 3)用于形成 加密密钥(Ks)。 本发明还涉及电子设备(1),模块和计算机软件产品。
-
公开(公告)号:US07359989B2
公开(公告)日:2008-04-15
申请号:US10310222
申请日:2002-12-05
IPC分类号: G06F15/16
CPC分类号: H04L29/12254 , H04L1/18 , H04L29/12264 , H04L29/12273 , H04L29/12839 , H04L61/2038 , H04L61/2046 , H04L61/2053 , H04L61/6022 , H04L63/0407 , H04L63/08 , H04W8/26 , H04W12/02 , H04W12/06 , H04W84/12
摘要: The invention relates to a method of transferring required messages for acquiring a temporary MAC address in a wireless local area network. In a first device in the local area network, a first identifier is determined to identify the first device. A message comprising the first identifier is transmitted from the first device to a second device to arrange a temporary MAC address. A response message relating to the acquisition of the MAC address and comprising the first identifier is transmitted from the second device to the first device. The first device identifies on the basis of the first identifier that the response message is intended for it.
摘要翻译: 本发明涉及一种在无线局域网中传送用于获取临时MAC地址的所需消息的方法。 在局域网中的第一设备中,确定第一标识符以识别第一设备。 包括第一标识符的消息从第一设备发送到第二设备以布置临时MAC地址。 从第二设备向第一设备发送与获取MAC地址并且包括第一标识符有关的响应消息。 第一设备基于第一标识符识别响应消息是针对它的。
-
公开(公告)号:US08095179B2
公开(公告)日:2012-01-10
申请号:US10965643
申请日:2004-10-14
申请人: Henry Haverinen , Pasi Eronen
发明人: Henry Haverinen , Pasi Eronen
CPC分类号: H04L63/061 , H04L63/08 , H04L63/0853 , H04L63/162 , H04L67/04
摘要: A system and method for the implementation of a proxy smart card application in a mobile telephone. The mobile telephone receives a smart card related message from a remote terminal. If the smart card related message is related to a function implemented by electronic device software within the mobile telephone, the electronic device software processes the message. If the smart card related message is not related to a function implemented by the electronic device software, the message is transmitted to the smart card.
摘要翻译: 一种用于在移动电话中实现代理智能卡应用的系统和方法。 移动电话从远程终端接收与智能卡相关的消息。 如果智能卡相关消息与由移动电话内的电子设备软件实现的功能有关,则电子设备软件处理消息。 如果智能卡相关消息与电子设备软件实现的功能无关,则将该消息发送到智能卡。
-
6.发明申请公开(公告)号:US20090219819A1
公开(公告)日:2009-09-03
申请号:US12224453
申请日:2006-03-02
申请人: Henry Haverinen , Fabien Rapin , Mikko Siikaniemi
发明人: Henry Haverinen , Fabien Rapin , Mikko Siikaniemi
IPC分类号: H04L12/26
CPC分类号: H04W76/10 , H04L12/2856 , H04L29/0602 , H04L29/08846 , H04L43/0811 , H04L43/50 , H04L63/08 , H04L63/101 , H04L67/28 , H04W12/06 , H04W12/08 , H04W24/06 , H04W24/08 , H04W48/02 , H04W48/08 , H04W80/04 , H04W84/12
摘要: For supporting an access to a destination network by a mobile device via a wireless access network, the mobile device generates a predetermined request, which is addressed to a connectivity test server in the destination network. The predetermined request is transmitted to the wireless access network. In case the predetermined request reaches the connectivity test server, it generates a predetermined response and transmits it to the mobile device via the wireless access network. The mobile device determines whether a response to the predetermined request is received from the wireless access network and whether a received response corresponds to the predetermined response.
摘要翻译: 为了支持移动设备经由无线接入网络对目的地网络的访问,移动设备生成预定请求,寻址到目的地网络中的连接测试服务器。 预定请求被发送到无线接入网络。 在预定请求到达连通性测试服务器的情况下,它产生预定的响应并经由无线接入网络将其发送到移动设备。 移动设备确定是否从无线接入网络接收到对预定请求的响应,以及接收到的响应是否对应于预定响应。
-
公开(公告)号:US20090183003A1
公开(公告)日:2009-07-16
申请号:US12315528
申请日:2008-12-04
申请人: Henry Haverinen
发明人: Henry Haverinen
IPC分类号: H04L9/00
CPC分类号: H04L9/3213 , H04L9/0869 , H04L9/3271 , H04L63/0807 , H04L63/12 , H04W12/02 , H04W12/06
摘要: Method of authenticating a client comprising the steps of sending a subscriber identity to an authentication server; obtaining at least one challenge and at least one first secret to the authentication server based on a client's secret specific to the client; forming first credentials; forming a first authentication key using the at least one first secret; encrypting the first credentials using the first authentication key; sending the at least one challenge and the encrypted first credentials to the client; forming an own version of the first authentication key at the client; decrypting the encrypted first credentials using the own version of the first authentication key. In the method, the encrypted credentials are sent together with the at least one challenge to the client so that the client can proceed authentication only if it can derive the first secret from the at least one challenge.
摘要翻译: 验证客户端的方法,包括以下步骤:向认证服务器发送用户身份; 基于客户端对客户端特有的秘密,向认证服务器获取至少一个挑战和至少一个第一秘密; 形成第一凭证; 使用所述至少一个第一秘密形成第一认证密钥; 使用第一认证密钥加密第一凭证; 将所述至少一个挑战和加密的第一凭证发送给所述客户端; 在客户端形成自己的第一认证密钥的版本; 使用自己的版本的第一认证密钥对加密的第一凭证进行解密。 在该方法中,将加密的凭证与至少一个挑战一起发送给客户端,使得只有当客户端可以从至少一个挑战中导出第一秘密时,客户端才能进行验证。
-
公开(公告)号:US20070140159A1
公开(公告)日:2007-06-21
申请号:US11508818
申请日:2006-08-24
申请人: Pasi Eronen , Lauri Tarkkala , Henry Haverinen
发明人: Pasi Eronen , Lauri Tarkkala , Henry Haverinen
CPC分类号: H04L12/12 , H04L29/12009 , H04L29/12471 , H04L61/2553 , H04L69/16 , H04L69/165 , H04L69/28 , Y02D30/30 , Y02D50/40
摘要: The present invention relates to a method, system, client device, gateway device and computer program product for maintaining a state information in an intermediate network function, wherein the state information expires after a predetermined idle period. Detecting means are provided for detecting an idle state of a connection. In response to the detecting means, a transport protocol used for encapsulating data is changed from a first protocol with a first predetermined idle period to a second protocol with a second predetermined idle period, said second predetermined idle period being longer than said first predetermined idle period. Alternatively, a connection parameter is provided to a device for a parallel second connection in a set-up negotiation via said first connection. This connection parameter is then used for setting up a parallel second connection to the device based on the second transport protocol used for encapsulating data with the second predetermined idle period. Then, an information linking the first and second connections is transmitted from the device to the data network, wherein the second connection is used for transmitting a wake-up notification to the device in response a detected idle state. Both alternatives provide the advantage of reduced keep-alive signaling and thus enhanced battery efficiency.
摘要翻译: 本发明涉及一种在中间网络功能中维持状态信息的方法,系统,客户端设备,网关设备和计算机程序产品,其中状态信息在预定的空闲时段之后到期。 提供用于检测连接的空闲状态的检测装置。 响应于检测装置,用于封装数据的传输协议从具有第一预定空闲周期的第一协议改变为具有第二预定空闲周期的第二协议,所述第二预定空闲周期长于所述第一预定空闲周期 。 或者,在经由所述第一连接的建立协商中,将连接参数提供给用于并行第二连接的设备。 然后,该连接参数用于基于用于封装具有第二预定空闲周期的数据的第二传输协议来设置到设备的并行第二连接。 然后,将连接第一和第二连接的信息从设备发送到数据网络,其中第二连接用于响应于检测到的空闲状态向设备发送唤醒通知。 两种替代方案都提供减少保活信号的优点,从而提高电池效率。
-
公开(公告)号:US20070047490A1
公开(公告)日:2007-03-01
申请号:US11214120
申请日:2005-08-29
申请人: Henry Haverinen , Mikko Jaakkola
发明人: Henry Haverinen , Mikko Jaakkola
IPC分类号: H04Q7/00
CPC分类号: H04W36/0033 , H04W8/26 , H04W84/12
摘要: Handoff of a communication session in a wireless network is presented in a wireless network interface including a terminal device having a first address (ADD1) and a second address (ADD2) in which an ongoing communication session between the terminal device and an associated first access point (AP1) in the wireless network uses the first address (ADD1) and upon detecting the need for handover of the terminal device to a second access point (AP2) in the wireless network establishes a communication session between the terminal device and an associated second access point (AP2) using the second address (ADD2). The invention includes hardware component and software application implementation.
摘要翻译: 在无线网络接口中呈现无线网络中的通信会话的切换,所述无线网络接口包括具有第一地址(ADD 1)和第二地址(ADD 2)的终端设备,其中终端设备和相关联的第一 无线网络中的接入点(AP1)使用第一地址(ADD 1),并且在检测到终端设备到无线网络中的第二接入点(AP 2)的切换的需要时,建立终端设备之间的通信会话 以及使用第二地址(ADD 2)的相关联的第二接入点(AP 2)。 本发明包括硬件组件和软件应用实现。
-
公开(公告)号:US20060019635A1
公开(公告)日:2006-01-26
申请号:US11154668
申请日:2005-06-17
申请人: Juha Ollila , Henry Haverinen
发明人: Juha Ollila , Henry Haverinen
CPC分类号: H04L63/08 , H04L63/162 , H04W8/26 , H04W12/06 , H04W12/08 , H04W12/12 , H04W74/00 , H04W84/04 , H04W84/12
摘要: A network including a user equipment for accessing at least one of wireless local area network interworking services and third generation partnership project network services. The network also includes at least one third generation partnership project network for providing the third generation partnership project network services to the user equipment. The network further includes an access network for connecting the user equipment to the third generation partnership project network and for providing the wireless local area network interworking services. During network authentication, the user equipment provides a network access identifier including wireless local area network scenario information and an impostor is prevented from modifying the network access identifier during a response from the user equipment to the at least one third generation partnership project network implementing an authentication mechanism.
摘要翻译: 一种网络,包括用于访问无线局域网互通服务和第三代合作伙伴项目网络服务中的至少一个的用户设备。 该网络还包括至少一个第三代合作伙伴项目网络,用于向用户设备提供第三代合作伙伴项目网络服务。 该网络还包括用于将用户设备连接到第三代合作伙伴项目网络并用于提供无线局域网互通服务的接入网络。 在网络认证期间,用户设备提供包括无线局域网场景信息的网络接入标识符,并且在从用户设备到实施认证的至少一个第三代合作伙伴项目网络的响应期间,防止冒名顶替者改变网络接入标识符 机制。
-
-
-
-
-
-
-
-
-
搜索结果
59 条记录 (耗时 0.025 秒)
