公开(公告)号：US20190281453A1

公开(公告)日：2019-09-12

申请号：US16421039

申请日：2019-05-23

Applicant: Huawei Technologies Co., Ltd.

Inventor： Jie SHI ,  Yanjiang YANG ,  Guilin WANG

IPC: H04W12/04 ,  H04W12/06 ,  H04L29/06

Abstract: This application discloses an identity authentication method, a device, and a system. The method includes: obtaining a first master public key and a first private key from a key generation center; sending a ClientHello message; obtaining a second identity from a ServerKeyExchange message; generating a pre-shared key of a selected PSK mode by using the second identity, the first private key, and the first master public key; and completing identity authentication with a second device by using the pre-shared key. According to the method, device, and system provided in embodiments of this application, an identity can be transmitted by using information in the TLS protocol, without extending the TLS protocol. This can avoid a compatibility problem caused by TLS protocol extension.

公开(公告)号：US20190208417A1

公开(公告)日：2019-07-04

申请号：US16297231

申请日：2019-03-08

Applicant: Huawei Technologies Co., Ltd.

Inventor： Xin KANG ,  Haiguang WANG ,  Yanjiang YANG ,  Zhongding LEI

IPC: H04W12/04 ,  H04W12/06 ,  H04W12/00 ,  H04W80/02

CPC classification number: H04W12/04033 ,  H04L29/06 ,  H04L63/062 ,  H04L63/0869 ,  H04W12/001 ,  H04W12/0023 ,  H04W12/04031 ,  H04W12/0609 ,  H04W80/02

Abstract: This application discloses a mobile network authentication method, a terminal device, a server, and a network authentication entity. The method includes: receiving, by a first terminal device, a DH public key and a first ID that are sent by at least one second terminal device; sending a first message to a server, where the first message includes a DH public key of each second terminal device of the at least one second terminal device and a first ID of the second terminal device; receiving a second message sent by the server, where the second message includes a DH public key of the server and a second ID of the second terminal device that is generated by the server; and sending, by the first terminal device, the second ID of the second terminal device and the DH public key of the server to the second terminal device.

公开(公告)号：US20230080111A1

公开(公告)日：2023-03-16

申请号：US18045976

申请日：2022-10-12

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Steven Yin ZHONG ,  Yanjiang YANG ,  Zhuo WEI

IPC: G06T7/00 ,  H04N17/00 ,  H04L9/40

Abstract: A camera authentication method and a control apparatus are provided, and are applicable to an identity authentication of an on-board camera in the autonomous driving field. The method includes: obtaining one or more frames of a first image shot by a to-be-authenticated camera; determining one or more light intensity offset values of N photosensitive units based on the one or more frames of the first image; determining a matching degree between the light intensity offset values of the N photosensitive units and a preset N-dimensional vector; and if the matching degree meets a preset condition, determining that authentication of the to-be-authenticated camera succeeds, where the N photosensitive units are in a photosensitive layer of the to-be-authenticated camera, and the photosensitive layer includes M photosensitive units, where N≤M. This technical solution is used to improve camera security.

公开(公告)号：US20220109561A1

公开(公告)日：2022-04-07

申请号：US17553957

申请日：2021-12-17

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yanjiang YANG ,  Zhuo WEI ,  Wei WANG ,  Xutao LIU

IPC: H04L9/08 ,  H04L9/32 ,  B60R25/24 ,  B60R25/33

Abstract: A smart lock unlocking method and a related device are provided, and may be specifically applied to an intelligent vehicle and a self-driving vehicle, to implement an unlocking function of a smart lock of the vehicle. The method includes: A terminal device monitors a distance change trend between the terminal device and an intelligent device, where the intelligent device includes a smart lock (S401). If the terminal device determines that the terminal device is approaching the intelligent device and a distance between the terminal device and the intelligent device is less than a first distance threshold, the terminal device enables an identity authentication process between the terminal device and the intelligent device (S402). The terminal device unlocks the smart lock when identity authentication between the terminal device and the intelligent device succeeds (S403).

公开(公告)号：US20200344063A1

公开(公告)日：2020-10-29

申请号：US16923741

申请日：2020-07-08

Applicant: Huawei Technologies Co., Ltd.

Inventor： Bo ZHANG ,  Lu GAN ,  Yanjiang YANG

IPC: H04L9/32 ,  H04L29/06 ,  H04L9/08 ,  H04W12/06

Abstract: An authentication method, an authentication apparatus, and an authentication system for the communications field are described. The authentication includes receiving, by a communications network element, a request from a user equipment (UE) comprising a first identifier that is an international mobile subscriber identity (IMSI). The communication networkelement, in response to the request, sends the first identifier to a home subscriber server. The communications network element, upon authenticating the UE successfully, sends a second identifier to a key management center (KMS) to facilitate the KMS generating a subscriber private key corresponding to the second identifier and sending the subscriber private key to the communications network element. The communications network element thereafter sends the subscriber private key to the UE.

公开(公告)号：US20230259926A1

公开(公告)日：2023-08-17

申请号：US18308786

申请日：2023-04-28

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Xin KANG ,  Yanjiang YANG ,  Haiguang WANG

IPC: G06Q20/38 ,  G06Q20/02

CPC classification number: G06Q20/3829 ,  G06Q20/3827 ,  G06Q20/02

Abstract: Embodiments of this disclosure disclose an address generation method which includes: a first blockchain node generates a shared key based on a private key of a first blockchain node and a first public key of a second blockchain node, generates a temporary first public key address of the second blockchain node based on the shared key and first transaction content, and writes first transaction information into a blockchain, where the first transaction information includes a public key address of the first blockchain node, the first public key address, and first transaction content between the first blockchain node and the second blockchain node; and the first public key address needs to be verified by using the shared key, and a recipient may also generate the shared key by using a public key of the first blockchain node and a first private key of the second blockchain node, to verify the transaction information.

公开(公告)号：US20190238322A1

公开(公告)日：2019-08-01

申请号：US16382201

申请日：2019-04-12

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Haiguang WANG ,  Yanjiang YANG ,  Xin KANG ,  Zhongding LEI

IPC: H04L9/08 ,  H04L9/32 ,  H04W12/04

CPC classification number: H04L9/083 ,  H04L9/08 ,  H04L9/0827 ,  H04L9/32 ,  H04L9/3247 ,  H04L9/3263 ,  H04L29/06 ,  H04L63/0428 ,  H04L63/0442 ,  H04L63/0807 ,  H04L63/0823 ,  H04L63/126 ,  H04W4/40 ,  H04W12/04031

Abstract: A key distribution method is disclosed. In this method, a key request can be received by a key management system (KMS) from a mobile operator network element (MNO). The key request can carry a public key of UE. At least one PVT and one SSK can be allocated to the US based on an IBC ID. The at least one PVT and SSK can be encrypted based on the public key to generate ciphertext; and an object can be signed based on a preset digital signature private key (DSPK) to generate a digital signature. The object can include the public key and the ciphertext. Still, a signature validation public key associated with the DSPK can be determined and a key response can be returned to the MNO. The key response can carry the signature validation public key, the public key of the UE, the ciphertext, and the digital signature.

公开(公告)号：US20190394033A1

公开(公告)日：2019-12-26

申请号：US16563316

申请日：2019-09-06

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Xin KANG ,  Xuwu ZHANG ,  Yanjiang YANG ,  Haiguang WANG ,  Zhongding LEI

IPC: H04L9/08

Abstract: This application discloses a private key generation method and system, and a device. The method includes: sending, by a first network device, a first request to a second network device, where the first request includes a first parameter set; receiving, by the first network device, a first response message returned by the second network device, where the first response message includes a first sub-private key and a second parameter set, the first sub-private key is generated based on the first parameter set, and the first sub-private key is generated for a terminal device; generating, by the first network device, a second sub-private key based on the second parameter set, where the second sub-private key is generated for the terminal device; and synthesizing, by the first network device, the first sub-private key and the second sub-private key into a joint private key according to a synthesis formula.

公开(公告)号：US20190199532A1

公开(公告)日：2019-06-27

申请号：US16291954

申请日：2019-03-04

Applicant: Huawei Technologies Co., Ltd.

Inventor： Bo ZHANG ,  Lu GAN ,  Yanjiang YANG

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3242 ,  H04L9/0838 ,  H04L9/0844 ,  H04L9/0866 ,  H04L9/3247 ,  H04L9/3273 ,  H04L63/061 ,  H04L63/0869 ,  H04L2209/80 ,  H04W12/06

Abstract: An authentication method, an authentication apparatus, and an authentication system for the communications field are described. The authentication includes sending, by first user equipment, a first random parameter to second user equipment. The second user equipment obtains a first user identifier, a second user identifier, and a second random parameter; and generates a second authentication feature based on the first user identifier, the second user identifier, the first random parameter, and the second random parameter. The second user equipment sends the second authentication feature to the first user equipment for authentication. The first user equipment, after authentication, generatesgenerates a first authentication feature. The first authentication feature is sent to the second user equipment for authentication.

公开(公告)号：US20250088847A1

公开(公告)日：2025-03-13

申请号：US18960141

申请日：2024-11-26

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yong WANG ,  Yanjiang YANG

IPC: H04W12/0431 ,  H04W12/069

Abstract: A method includes: receiving a first message from a first node, where the first message includes a first key agreement parameter, the first key agreement parameter is obtained based on a first private key and an intermediate parameter, the intermediate parameter is obtained based on a security parameter and a common parameter, and the security parameter is a first password or a PSK; determining a first key based on the first key agreement parameter and a second private key; sending a second message to the first node, where the second message includes a second key agreement parameter, and the second key agreement parameter is obtained based on the second private key and the intermediate parameter; and obtaining the first key based on the first key agreement parameter and the second private key.