公开(公告)号：US20150236851A1

公开(公告)日：2015-08-20

申请号：US14706432

申请日：2015-05-07

Applicant: Huawei Technologies Co., Ltd.

Inventor： Xiaoyu Bi ,  Jing Chen ,  Yixian Xu ,  Chunshan Xiong

IPC: H04L9/08 ,  H04L9/30

CPC classification number: H04L9/0825 ,  H04L9/0891 ,  H04L9/30 ,  H04L9/3268 ,  H04L63/0823 ,  H04L2209/24 ,  H04L2209/64 ,  H04L2209/80 ,  H04W4/90 ,  H04W12/04

Abstract: A method and an apparatus for updating a public key, a UE and a CA are disclosed. The method includes: receiving a first message including CA public key information, where the CA public key information includes a CA public key or CA public key acquiring information; and updating a local CA public key of a UE according to the CA public key or to the CA public key acquiring information. The present invention can realize update of the CA public key in the UE.

Abstract translation: 公开了一种用于更新公钥，UE和CA的方法和装置。 该方法包括：接收包括CA公开密钥信息的第一消息，其中CA公钥信息包括CA公钥或CA公钥获取信息; 以及根据所述CA公钥更新所述UE的本地CA公开密钥或所述CA公钥获取信息。 本发明可以实现UE中的CA公钥的更新。

公开(公告)号：US20140053249A1

公开(公告)日：2014-02-20

申请号：US14062602

申请日：2013-10-24

Applicant: Huawei Technologies Co., Ltd.

Inventor： Yanmei Yang ,  Yixian Xu ,  Jing Chen

IPC: H04W12/04

CPC classification number: H04W12/04 ,  H04W12/04031 ,  H04W12/10 ,  H04W12/12 ,  H04W12/1208

Abstract: A method for preventing abuse of an Authentication Vector (AV) and a system and apparatus for implementing the method are provided. Access network information of a non-3rd Generation Partnership Project (3GPP) access network where a user resides is bound to an AV of the user, so that when the user accesses an Evolved Packet System (EPS) through the non-3GPP access network, even if an entity in the non-3GPP access network is breached, or an Evolved Packet Data Gateway (ePDG) connected to an untrusted non-3GPP access network is breached, the stolen AV cannot be applied to other non-3GPP access networks by an attacker.

Abstract translation: 提供了防止认证向量（AV）的滥用的方法以及用于实现该方法的系统和装置。 用户驻留的非第三代合作伙伴计划（3GPP）接入网络的接入网络信息被绑定到用户的AV，使得当用户通过非3GPP接入网络访问演进分组系统（EPS）时， 即使违反非3GPP接入网络中的实体，或者违反连接到非信任非3GPP接入网络的演进分组数据网关（ePDG），则被盗AV不能通过以下方式应用于其他非3GPP接入网络 攻击者

公开(公告)号：US20160360388A1

公开(公告)日：2016-12-08

申请号：US15243333

申请日：2016-08-22

Applicant: Huawei Technologies Co., Ltd.

Inventor： Lijia Zhang ,  Jing Chen ,  Yixian Xu ,  Yali Guo

IPC: H04W4/14 ,  H04L12/58 ,  H04W12/08 ,  H04W4/00

CPC classification number: H04W4/14 ,  H04L51/30 ,  H04W4/70 ,  H04W12/08 ,  H04W12/12 ,  H04W48/14

Abstract: Embodiments provide an MTC device communication method, device, and system. A second network element receives, a query message sent by a first network element after the first network element identifies that a type of a received short message is a preset-type short message. The query message comprises an identifier of a receiver of the short message and an identifier of a sender of the short message. The second network element checks whether the sender is authorized to send the preset-type short message to the receiver. The second network element sends a message to the first network element indicating whether or not to send the short message to the receiver.

Abstract translation: 实施例提供MTC设备通信方法，设备和系统。 第二网元在第一网元识别出所接收的短消息的类型是预设类型的短消息之后接收由第一网元发送的查询消息。 查询消息包括短消息的接收者的标识符和短消息的发送者的标识符。 第二网络元件检查发送者是否被授权向接收者发送预设类型的短消息。 第二网元向第一网元发送消息，指示是否向接收者发送短消息。

公开(公告)号：US20150038186A1

公开(公告)日：2015-02-05

申请号：US14518608

申请日：2014-10-20

Applicant: Huawei Technologies Co., Ltd.

Inventor： Lijia Zhang ,  Jing Chen ,  Yixian Xu ,  Yali Guo

IPC: H04W4/00 ,  H04W4/14 ,  H04W48/14

CPC classification number: H04W4/14 ,  H04L51/30 ,  H04W4/70 ,  H04W12/08 ,  H04W12/12 ,  H04W48/14

Abstract: Embodiments of the present invention provide an MTC device communication method, device, and system. A second network element receives, a query message sent by a first network element after the first network element identifies that a type of a received short message is a preset-type short message. The query message comprises an identifier of a receiver of the short message and an identifier of a sender of the short message. The second network element checks whether the sender is authorized to send the preset-type short message to the receiver. The second network element sends a message to the first network element indicating whether or not to send the short message to the receiver.

Abstract translation: 本发明的实施例提供一种MTC设备通信方法，设备和系统。 第二网元在第一网元识别出所接收的短消息的类型是预设类型的短消息之后接收由第一网元发送的查询消息。 查询消息包括短消息的接收者的标识符和短消息的发送者的标识符。 第二网络元件检查发送者是否被授权向接收者发送预设类型的短消息。 第二网元向第一网元发送消息，指示是否向接收者发送短消息。

公开(公告)号：US10218513B2

公开(公告)日：2019-02-26

申请号：US14707484

申请日：2015-05-08

Applicant: Huawei Technologies Co., Ltd.

Inventor： Xiaoyu Bi ,  Jing Chen ,  Yixian Xu ,  Chunshan Xiong

IPC: H04L9/32 ,  H04W12/10 ,  H04L9/30 ,  H04L29/06 ,  H04W4/90

Abstract: Embodiments of the present invention provide a method and a terminal for message verification, which can enhance timeliness of event message verification. The method includes: receiving an event message sent by a cell broadcast entity; obtaining a public key of a CA according to pre-configured information for determining the public key of the CA and information for determining the public key of the CA and obtained from a network side, or according to information of the CA obtained from the network side; then, obtaining a public key of the cell broadcast entity according to the obtained public key of the CA and an implicit certificate of the cell broadcast entity; verifying a signature of the cell broadcast entity over the event message according to the public key of the cell broadcast entity; and finally, determining legitimacy of the event message according to the verification result.

公开(公告)号：US09189632B2

公开(公告)日：2015-11-17

申请号：US13943469

申请日：2013-07-16

Applicant: Huawei Technologies Co., Ltd.

Inventor： Lijia Zhang ,  Yixian Xu ,  Jing Chen

IPC: H04L29/06 ,  G06F21/60 ,  H04W12/04 ,  H04W12/06 ,  H04W4/00

CPC classification number: G06F21/60 ,  H04L63/205 ,  H04W4/70 ,  H04W12/04 ,  H04W12/06

Abstract: The present invention relates to communication technologies and discloses a method and an apparatus for protecting security of data, so as to solve the problem of the prior art in which the security of data transmission between a communication terminal which has a characteristic of small data transmission and the network cannot be guaranteed. Information relevant to security context is stored if a communication terminal has a characteristic of small data transmission; current security context is obtained according to the information relevant to security context; and security protection of communication data is performed by employing the current security context. The embodiments of the present invention may be applied to a communication system having a characteristic of small data transmission, such as an MTC and the like.

Abstract translation: 本发明涉及通信技术，并且公开了一种用于保护数据安全性的方法和装置，以解决现有技术的问题，其中具有小数据传输特性的通信终端与数据传输特性之间的数据传输安全性 网络无法保证。 如果通信终端具有小数据传输的特征，则存储与安全上下文相关的信息; 根据与安全环境相关的信息获取当前的安全上下文; 并且通过采用当前的安全上下文来执行通信数据的安全保护。 本发明的实施例可以应用于具有小数据传输特性的通信系统，例如MTC等。

公开(公告)号：US08706085B2

公开(公告)日：2014-04-22

申请号：US13649540

申请日：2012-10-11

Applicant: Huawei Technologies Co., Ltd.

Inventor： Lijia Zhang ,  Yixian Xu ,  Yingxin Huang ,  Xiaohan Liu ,  Meriau Laurence

IPC: H04M1/66

CPC classification number: H04L63/08 ,  H04L63/0884 ,  H04L2463/061 ,  H04W4/08 ,  H04W4/70 ,  H04W8/186 ,  H04W12/04 ,  H04W12/06

Abstract: Embodiments of the present invention disclose a method and an apparatus for authenticating a communication device, where the method includes: receiving an attach request including a group identifier and sent by an MTC device to be authenticated, where the group identifier is a group identifier of an MTC group where the MTC device to be authenticated is located; determining whether a first group authentication vector bound to the group identifier exists locally, where the first group authentication vector is an authentication vector used for authenticating MTC devices in the MTC group; and if existing, according to the first group authentication vector, authenticating the MTC device to be authenticated, and generating a system key of the MTC device to be authenticated. The technical solutions provided in the present invention can be applied to the technical field of authenticating the MTC device.

Abstract translation: 本发明的实施例公开了一种用于认证通信设备的方法和装置，其中，所述方法包括：接收包括组标识符的附加请求，并由要被认证的MTC设备发送，其中所述组标识符是组识别符 要认证的MTC设备所在的MTC组; 确定绑定到组标识符的第一组认证向量是否本地存在，其中第一组认证向量是用于认证MTC组中的MTC设备的认证向量; 如果存在，根据第一组认证向量，认证要认证的MTC设备，并生成待认证的MTC设备的系统密钥。 本发明提供的技术方案可以应用于认证MTC设备的技术领域。

公开(公告)号：US09980106B2

公开(公告)日：2018-05-22

申请号：US15243333

申请日：2016-08-22

Applicant: Huawei Technologies Co., Ltd.

Inventor： Lijia Zhang ,  Jing Chen ,  Yixian Xu ,  Yali Guo

IPC: H04B7/00 ,  H04W4/14 ,  H04W48/14 ,  H04W4/00 ,  H04L12/58 ,  H04W12/08

CPC classification number: H04W4/14 ,  H04L51/30 ,  H04W4/70 ,  H04W12/08 ,  H04W12/12 ,  H04W48/14

Abstract: Embodiments provide an MTC device communication method, device, and system. A second network element receives, a query message sent by a first network element after the first network element identifies that a type of a received short message is a preset-type short message. The query message comprises an identifier of a receiver of the short message and an identifier of a sender of the short message. The second network element checks whether the sender is authorized to send the preset-type short message to the receiver. The second network element sends a message to the first network element indicating whether or not to send the short message to the receiver.

公开(公告)号：US09775028B2

公开(公告)日：2017-09-26

申请号：US14264587

申请日：2014-04-29

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Lijia Zhang ,  Jing Chen ,  Yixian Xu

IPC: H04L29/06 ,  H04W12/04 ,  H04W4/00 ,  H04W4/08 ,  H04W88/08

CPC classification number: H04W12/04 ,  H04L63/062 ,  H04L63/065 ,  H04W4/08 ,  H04W4/70 ,  H04W88/08

Abstract: Embodiments of the present invention provide a method and a related device for generating a group key. The method includes: obtaining a group ID of a group where a machine type communication MTC device is located; obtaining a group communication root key corresponding to the group ID; generating a group key corresponding to the group ID according to the group communication root key; and sending the group key encrypted by using an access stratum key of the MTC device to the MTC device, so that the MTC device obtains the group key through decryption according to the access stratum key of the MTC device. According to the foregoing technical solutions, a base station may allocate, to an MTC device, a group key corresponding to a group where the MTC device is located.

公开(公告)号：US09445217B2

公开(公告)日：2016-09-13

申请号：US14518608

申请日：2014-10-20

Applicant: Huawei Technologies Co., Ltd.

Inventor： Lijia Zhang ,  Jing Chen ,  Yixian Xu ,  Yali Guo

IPC: H04B7/00 ,  H04W4/00 ,  H04W48/14 ,  H04W4/14

CPC classification number: H04W4/14 ,  H04L51/30 ,  H04W4/70 ,  H04W12/08 ,  H04W12/12 ,  H04W48/14

Abstract: Embodiments of the present invention provide an MTC device communication method, device, and system. A second network element receives, a query message sent by a first network element after the first network element identifies that a type of a received short message is a preset-type short message. The query message comprises an identifier of a receiver of the short message and an identifier of a sender of the short message. The second network element checks whether the sender is authorized to send the preset-type short message to the receiver. The second network element sends a message to the first network element indicating whether or not to send the short message to the receiver.

Abstract translation: 本发明的实施例提供一种MTC设备通信方法，设备和系统。 第二网元在第一网元识别出所接收的短消息的类型是预设类型的短消息之后接收由第一网元发送的查询消息。 查询消息包括短消息的接收者的标识符和短消息的发送者的标识符。 第二网络元件检查发送者是否被授权向接收者发送预设类型的短消息。 第二网元向第一网元发送消息，指示是否向接收者发送短消息。