公开(公告)号：US07382881B2

公开(公告)日：2008-06-03

申请号：US10497568

申请日：2002-12-06

申请人： Ilkka Uusitalo ,  Pasi Ahonen ,  Rolf Blom ,  Boman Krister ,  Mats Näslund

发明人： Ilkka Uusitalo ,  Pasi Ahonen ,  Rolf Blom ,  Boman Krister ,  Mats Näslund

IPC分类号： H04L9/00

CPC分类号： H04L63/06 ,  H04L9/0841 ,  H04L9/0869 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/306

摘要： A method of facilitating the lawful interception of an IP session between two or more terminals 12,13, wherein session uses encryption to secure traffic. The method includes storing a key allocated to at least one of terminals 12,13 or to at least one of the subscribers using one of the terminals 12,13, at the terminal 12,13 and at a node 5,8 within a network 1,6 through which session is conducted, or a node coupled to that network. Prior to the creation of session, a seed value is exchanged between the terminal 12,13 at which the key is stored and node 5,8. The key and the seed value are used at both the terminal 12,13 and the node 5,8 to generate a pre-master key. The pre-master key becomes known to each of the terminals 12,13 involved in the IP session and to the network node 5,8. The pre-master key is used, directly or indirectly, to encrypt and decrypt traffic associated with IP session.

摘要翻译： 一种促进在两个或多个终端12,13之间合法拦截IP会话的方法，其中会话使用加密来保证业务。 该方法包括：在终端12,13和网络1内的节点5,8处，存储分配给终端12,13中的至少一个或至少一个用户的密钥 ，6通过其进行会话，或者耦合到该网络的节点。 在创建会话之前，在存储密钥的终端12,13和节点5,8之间交换种子值。 密钥和种子值都在终端12,13和节点5,8两端使用以产生预先主密钥。 对于IP会话中涉及的每个终端12,13和网络节点5,8，预先主密钥变得已知。 直接或间接地使用预先主密钥来加密和解密与IP会话相关联的流量。

公开(公告)号：US20050063544A1

公开(公告)日：2005-03-24

申请号：US10497568

申请日：2002-12-06

申请人： Ilkka Uusitalo ,  Pasi Ahonen ,  Rolf Blom ,  Boman Krister ,  Mats Naslund

发明人： Ilkka Uusitalo ,  Pasi Ahonen ,  Rolf Blom ,  Boman Krister ,  Mats Naslund

IPC分类号： H04L29/06 ,  H04L9/00

CPC分类号： H04L63/06 ,  H04L9/0841 ,  H04L9/0869 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/306

摘要： A method of facilitating the lawful interception of an IP session between two or more terminals 12,13, wherein said session uses encryption to secure traffic. The method comprises storing a key allocated to at least one of said terminals 12,13 or to at least one of the subscribers using one of the terminals 12,13, at the terminal 12,13 and at a node 5,8 within a network 1,6 through which said session is conducted, or a node coupled to that network. Prior to the creation of said session, a seed value is exchanged between the terminal 12,13 at which the key is stored and said node 5,8. The key and the seed value are used at both the terminal 12,13 and the node 5,8 to generate a pre-master key. The pre-master key becomes known to each of the terminals 12,13 involved in the IP session and to the network node 5,8. The pre-master key is used, directly or indirectly, to encrypt and decrypt traffic associated with said IP session.

摘要翻译： 一种促进在两个或多个终端12,13之间合法拦截IP会话的方法，其中所述会话使用加密来保证业务。 所述方法包括：在终端12,13和网络中的节点5,8处，存储分配给所述终端12,13中的至少一个的密钥或至少一个用户的终端12,13中的一个终端 1,6通过其进行所述会话，或者耦合到该网络的节点。 在创建所述会话之前，在存储密钥的终端12,13和所述节点5,8之间交换种子值。 密钥和种子值都在终端12,13和节点5,8两端使用以产生预先主密钥。 对于IP会话中涉及的每个终端12,13和网络节点5,8，预先主密钥变得已知。 预主密钥直接或间接地用于加密和解密与所述IP会话相关联的流量。