公开(公告)号：US12167239B2

公开(公告)日：2024-12-10

申请号：US17680980

申请日：2022-02-25

Applicant: Huawei Technologies Co., Ltd.

Inventor： Weiyu Jiang ,  Bingyang Liu ,  Junjie Wan

IPC: H04W12/08 ,  H04W12/06 ,  H04W12/75

Abstract: A method comprises generating, based on identity information of a user by an identity management server, a temporary privacy identity identifier of a terminal device, receiving, from the terminal device, a network access request comprising the temporary privacy identity identifier, generating an authentication key of the temporary privacy identity identifier based on the temporary privacy identity identifier and a primary identity authentication key of a domain to which the terminal device belongs, generating a first message based on the temporary privacy identity identifier and the authentication key, sending the first message to the terminal device, receiving a second message from the terminal device based on the first message, performing authentication on the second message based on the temporary privacy identity identifier and the authentication key, and allowing access to a network device by the terminal device after the authentication succeeds.

公开(公告)号：US12238128B2

公开(公告)日：2025-02-25

申请号：US17675275

申请日：2022-02-18

Applicant: Huawei Technologies Co., Ltd.

Inventor： Weiyu Jiang ,  Bingyang Liu ,  Chuang Wang

IPC: H04L9/40

Abstract: A data processing method includes an authenticated identifier and a key corresponding to the authenticated identifier are allocated to a terminal that accesses a service supported by an application server. The terminal includes the authenticated identifier and a verification code in a sent data packet such that a network device can identify a legal data packet and an illegal data packet based on the authenticated identifier and the verification code, and forward the legal data packet.

公开(公告)号：US20240224039A1

公开(公告)日：2024-07-04

申请号：US18604980

申请日：2024-03-14

Applicant: Huawei Technologies Co., Ltd.

Inventor： Weiyu Jiang ,  Fei Yang ,  Chuang Wang ,  Juanna Dang

IPC: H04W12/106 ,  H04W12/122 ,  H04W12/71

CPC classification number: H04W12/106 ,  H04W12/122 ,  H04W12/71

Abstract: In accordance with an embodiment, a method applied to a first network device includes receiving a first packet from a terminal; and sending a second packet to a second network device, where the second packet is obtained by encapsulating security information in the first packet, and the security information indicates that the second packet is a trusted packet determined by the first network device.

公开(公告)号：US20220182825A1

公开(公告)日：2022-06-09

申请号：US17680980

申请日：2022-02-25

Applicant: Huawei Technologies Co., Ltd.

Inventor： Weiyu Jiang ,  Bingyang Liu ,  Junjie Wan

IPC: H04W12/06 ,  H04W12/08 ,  H04W12/75

Abstract: A method comprises generating, based on identity information of a user by an identity management server, a temporary privacy identity identifier of a terminal device, receiving, from the terminal device, a network access request comprising the temporary privacy identity identifier, generating an authentication key of the temporary privacy identity identifier based on the temporary privacy identity identifier and a primary identity authentication key of a domain to which the terminal device belongs, generating a first message based on the temporary privacy identity identifier and the authentication key, sending the first message to the terminal device, receiving a second message from the terminal device based on the first message, performing authentication on the second message based on the temporary privacy identity identifier and the authentication key, and allowing access to a network device by the terminal device after the authentication succeeds.

公开(公告)号：US20220174085A1

公开(公告)日：2022-06-02

申请号：US17675275

申请日：2022-02-18

Applicant: Huawei Technologies Co., Ltd.

Inventor： Weiyu Jiang ,  Bingyang Liu ,  Chuang Wang

IPC: H04L9/40

Abstract: A data processing method includes an authenticated identifier and a key corresponding to the authenticated identifier are allocated to a terminal that accesses a service supported by an application server. The terminal includes the authenticated identifier and a verification code in a sent data packet such that a network device can identify a legal data packet and an illegal data packet based on the authenticated identifier and the verification code, and forward the legal data packet.

公开(公告)号：US20240406722A1

公开(公告)日：2024-12-05

申请号：US18807052

申请日：2024-08-16

Applicant: Huawei Technologies Co., Ltd.

Inventor： Yinghui Li ,  Weiyu Jiang ,  Bingyang Liu ,  Fei Yang ,  Xinyi Song ,  Xinggui Wu

IPC: H04W12/043 ,  H04W12/041 ,  H04W80/02 ,  H04W84/12

Abstract: Disclosed are a communication system. All nodes in the communication system belong to a same layer 2 network. Well-known information of the layer 2 network can be obtained by the node. The node obtains the well-known information and forms a well-known key based on the well-known information and a preset key derivation algorithm; obtains a local MAC address of a first node and forms a first random number; forms first plaintext data based on the local MAC address and the first random number; and encrypts the first plaintext data based on the well-known key and a symmetric encryption algorithm, to form a first network layer address. Each node forms the well-known key based on the well-known information and the key derivation algorithm, and forms the network layer address based on the well-known key, the local MAC address, and the symmetric encryption algorithm.

公开(公告)号：US20220174072A1

公开(公告)日：2022-06-02

申请号：US17675282

申请日：2022-02-18

Applicant: Huawei Technologies Co., Ltd.

Inventor： Bingyang Liu ,  Weiyu Jiang ,  Chuang Wang

IPC: H04L9/40

Abstract: This application provides a data processing method and a device. In embodiments, a data processing method applied to a network device may include: receiving a first data packet, where the first data packet includes a source IP address and a first verification code; obtaining a first key; generating a second verification code based on the source IP address and the first key; and if the second verification code is the same as the first verification code, determining that the first data packet is valid.