公开(公告)号：US20220264689A1

公开(公告)日：2022-08-18

申请号：US17738673

申请日：2022-05-06

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Fei LI ,  Juan DENG

IPC: H04W76/19 ,  H04W12/106 ,  H04W8/24

Abstract: Embodiments of this application provide a connection resume method and an apparatus. The method includes: A terminal device sends a first message that carries first indication information to a first network device. The first indication information is used to indicate to calculate a resume MAC value based on a first parameter set. The first parameter set includes one or more of a resume cause value or an RRC resume request message. The terminal device receives a second message from the first network device. When the second message carries second indication information, the terminal device sends an RRC resume request message that carries the resume MAC value to a second network device. The second indication information is used to indicate to verify the resume MAC value based on the first parameter set.

公开(公告)号：US20220210648A1

公开(公告)日：2022-06-30

申请号：US17695145

申请日：2022-03-15

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Fei LI ,  Juan DENG

IPC: H04W12/102 ,  H04W12/041 ,  H04W12/03 ,  H04L9/32

Abstract: Embodiments of this application disclose an air interface information security protection method and apparatus, to protect security performance of air interface information sent by a terminal to a base station. in an embodiment, a terminal determines a first message authentication code (MAC) value based on a security key and air interface information, where the security key is a non-access stratum (NAS) security key between the terminal and a core network device; and the terminal sends the air interface information and the first MAC value to a base station.

公开(公告)号：US20240179524A1

公开(公告)日：2024-05-30

申请号：US18428527

申请日：2024-01-31

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Linping YANG ,  Juan DENG ,  Wen HU ,  Xiange HU ,  Xiao WEN ,  Li QIANG ,  Lin SHU

IPC: H04W12/08 ,  H04W12/72

CPC classification number: H04W12/08 ,  H04W12/72

Abstract: A security context update method and a communication apparatus are provided. The method is performed by a terminal, and includes: storing a security context of first access and a security context of second access when the first access of the terminal and the second access of the terminal enter a deregistered state. The first access is one of 3GPP access and non-3GPP access, the second access is the other of the 3GPP access and the non-3GPP access, and the first access and the second access are different. According to the method, when the terminal supports multiple records for multiple registration, storage occasions of NAS security contexts corresponding to the 3GPP access and the non-3GPP access are provided.

公开(公告)号：US20210351925A1

公开(公告)日：2021-11-11

申请号：US17380961

申请日：2021-07-20

Applicant: Huawei Technologies Co., Ltd.

Inventor： Juan DENG ,  Chengdong HE

IPC: H04L9/08 ,  H04W60/00 ,  H04W12/0433 ,  H04W12/041

Abstract: A communication method and a related product are provided. The communication method includes: When UE switches from a source slice to a target slice mutually exclusive with the source slice, both the UE and a target AMF serving the target slice can obtain a first AMF key Kamf_new. The first AMF key Kamf_new is different from a second AMF key Kamf, and the second AMF key Kamf is a key of a source AMF serving the source slice. According to the application communication security and effectiveness are significantly improved_in a mutually exclusive slice switching scenario.

公开(公告)号：US20230232357A1

公开(公告)日：2023-07-20

申请号：US18188512

申请日：2023-03-23

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Juan DENG ,  Linping YANG ,  Lin SHU ,  Fei LI

IPC: H04W60/00 ,  H04W60/06 ,  H04W12/106 ,  H04W12/08

CPC classification number: H04W60/005 ,  H04W60/06 ,  H04W12/106 ,  H04W12/08

Abstract: A method for processing a non-access stratum context is as follows: A terminal device sends a registration request message to a first public land mobile network PLMN. The terminal device receives a registration accept message from the first PLMN. When the terminal device deregisters from the first PLMN over a first access network, the terminal device stores, in a storage medium of the terminal device, a first PLMN identifier of the first PLMN and a first NAS security context established by the terminal device with the first PLMN. Embodiments of this application are used for a processing process of the non-access stratum context.

公开(公告)号：US20220377540A1

公开(公告)日：2022-11-24

申请号：US17880851

申请日：2022-08-04

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Juan DENG ,  Bo ZHANG

IPC: H04W12/0433 ,  H04W12/041 ,  H04W12/71

Abstract: A key obtaining method includes sending, by an authentication server function (AUSF), an authentication service request message to a unified data management (UDM) function. The method also includes receiving, by the AUSF, an authentication service response message sent by the UDM function. The authentication service response message includes first permission information. The first permission information is used to indicate to generate a key KAKMA for user equipment (UE). The method further includes generating, by the AUSF in response to the authentication service response message, the KAKMA and a key identifier (KID) corresponding to the KAKMA. The method additionally includes sending, by the AUSF, the generated KAKMA and the generated KID to an authentication and key management for applications anchor function.