-
1.发明申请公开(公告)号:US20110041003A1
公开(公告)日:2011-02-17
申请号:US12718572
申请日:2010-03-05
申请人: Sudhir B. Pattar , Inhyok Cha , Andreas U. Schmidt , Andreas Leicher , Yogendra C. Shah , Dolores F. Howry , David G. Greiner , Lawrence L. Case , Michael V. Meyerstein , Louis J. Guccione
发明人: Sudhir B. Pattar , Inhyok Cha , Andreas U. Schmidt , Andreas Leicher , Yogendra C. Shah , Dolores F. Howry , David G. Greiner , Lawrence L. Case , Michael V. Meyerstein , Louis J. Guccione
CPC分类号: H04L41/0869 , H04L41/0654 , H04L41/0681 , H04L63/123 , H04L63/166 , H04W12/10 , H04W84/045
摘要: An apparatus and method for providing home evolved node-B (H(e)NB) integrity verification and validation using autonomous validation and semi-autonomous validation is disclosed herein.
摘要翻译: 本文公开了一种使用自主验证和半自主验证来提供家庭演进节点B(H(e)NB)完整性验证和验证的装置和方法。
-
2.发明授权公开(公告)号:US09253643B2
公开(公告)日:2016-02-02
申请号:US12718572
申请日:2010-03-05
申请人: Sudhir B. Pattar , Inhyok Cha , Andreas U. Schmidt , Andreas Leicher , Yogendra C. Shah , Dolores F. Howry , David G. Greiner , Lawrence L. Case , Michael V. Meyerstein , Louis J. Guccione
发明人: Sudhir B. Pattar , Inhyok Cha , Andreas U. Schmidt , Andreas Leicher , Yogendra C. Shah , Dolores F. Howry , David G. Greiner , Lawrence L. Case , Michael V. Meyerstein , Louis J. Guccione
CPC分类号: H04L41/0869 , H04L41/0654 , H04L41/0681 , H04L63/123 , H04L63/166 , H04W12/10 , H04W84/045
摘要: An apparatus and method for providing home evolved node-B (H(e)NB) integrity verification and validation using autonomous validation and semi-autonomous validation is disclosed herein.
摘要翻译: 本文公开了一种使用自主验证和半自主验证来提供家庭演进节点B(H(e)NB)完整性验证和验证的装置和方法。
-
3.发明申请UNIVERSAL INTEGRATED CIRCUIT CARD HAVING A VIRTUAL SUBSCRIBER IDENTITY MODULE FUNCTIONALITY 审中-公开具有虚拟订阅者身份识别模块功能的通用集成电路卡公开(公告)号:US20100062808A1
公开(公告)日:2010-03-11
申请号:US12546827
申请日:2009-08-25
CPC分类号: H04W12/08 , G06Q20/3229 , G06Q20/351 , G06Q20/35765 , G07F7/1008 , H04W12/0806 , H04W12/10
摘要: Universal integrated circuit card (UICC) having a virtual subscriber identity module functionality is disclosed. A wireless transmit/receive unit (WTRU) comprises a mobile equipment (ME) configured to perform wireless communication and a UICC. The UICC is configured to perform security functionalities. The UICC supports multiple isolated domains including UICC issuer's domain. Each domain is owned by a separate owner so that each owner stores and executes an application on the UICC under a control of an UICC issuer and the UICC issuer's domain controls creation and deletion of other domains and defines and enforces security rules for authorizing third parties to have an access to the domains. The UICC is configured to verify integrity of operating system functions and applications stored on the UICC. The UICC is configured to control an access to information regarding applications according to security policies stored within the UICC.
摘要翻译: 公开了具有虚拟用户识别模块功能的通用集成电路卡(UICC)。 无线发射/接收单元(WTRU)包括被配置为执行无线通信的移动设备(ME)和UICC。 UICC配置为执行安全功能。 UICC支持多个隔离域,包括UICC发行者域。 每个域由单独的所有者拥有,以便每个所有者在UICC发行者的控制下在UICC上存储和执行应用程序,并且UICC发行人的域控制其他域的创建和删除,并定义和执行授权第三方的安全规则 可以访问域。 UICC配置为验证存储在UICC上的操作系统功能和应用程序的完整性。 UICC被配置为根据存储在UICC内的安全策略来控制对应用信息的访问。
-
公开(公告)号:US08812836B2
公开(公告)日:2014-08-19
申请号:US12718853
申请日:2010-03-05
CPC分类号: H04W12/06 , H04L63/0428 , H04L63/0869 , H04W4/70 , H04W8/265 , H04W12/04 , H04W88/18
摘要: A method and apparatus are disclosed for performing secure remote subscription management. Secure remote subscription management may include providing the Wireless Transmit/Receive Unit (WTRU) with a connectivity identifier, such as a Provisional Connectivity Identifier (PCID), which may be used to establish an initial network connection to an Initial Connectivity Operator (ICO) for initial secure remote registration, provisioning, and activation. A connection to the ICO may be used to remotely provision the WTRU with credentials associated with the Selected Home Operator (SHO). A credential, such as a cryptographic keyset, which may be included in the Trusted Physical Unit (TPU), may be allocated to the SHO and may be activated. The WTRU may establish a network connection to the SHO and may receive services using the remotely managed credentials. Secure remote subscription management may be repeated to associate the WTRU with another SHO.
摘要翻译: 公开了用于执行安全远程订阅管理的方法和装置。 安全远程订阅管理可以包括为无线发射/接收单元(WTRU)提供诸如临时连接标识符(PCID)的连接标识符,其可以用于建立到初始连接性运营商(ICO)的初始网络连接,用于 初始安全远程注册,配置和激活。 可以使用到ICO的连接来远程地提供与选择家庭运营商(SHO)相关联的凭证的WTRU。 可以包括在可信物理单元(TPU)中的诸如加密密钥集的证书可以被分配给SHO并且可以被激活。 WTRU可以建立到SHO的网络连接,并且可以使用远程管理的凭证来接收服务。 可以重复安全的远程订阅管理以将WTRU与另一个SHO相关联。
-
公开(公告)号:US20110010543A1
公开(公告)日:2011-01-13
申请号:US12718480
申请日:2010-03-05
申请人: Andreas U. Schmidt , Andreas Leicher , Inhyok Cha , Yogendra C. Shah , Sudhir B. Pattar , Dolores F. Howry , David G. Greiner , Lawrence Case , Michael V. Meyerstein , Louis J. Guccione
发明人: Andreas U. Schmidt , Andreas Leicher , Inhyok Cha , Yogendra C. Shah , Sudhir B. Pattar , Dolores F. Howry , David G. Greiner , Lawrence Case , Michael V. Meyerstein , Louis J. Guccione
IPC分类号: H04L9/32
CPC分类号: H04W12/10 , G06F21/44 , G06F21/57 , H04L63/123 , H04W12/0023 , H04W12/00502 , H04W12/00512 , H04W12/06 , H04W12/08
摘要: Methods, components and apparatus for implementing platform validation and management (PVM) are disclosed. PVM provides the functionality and operations of a platform validation entity with remote management of devices by device management components and systems such as a home node-B management system or component. Example PVM operations bring devices into a secure target state before allowing connectivity and access to a core network.
摘要翻译: 公开了实现平台验证和管理(PVM)的方法,组件和设备。 PVM通过设备管理组件和系统(如家庭节点B管理系统或组件)提供对设备进行远程管理的平台验证实体的功能和操作。 示例PVM操作在允许连接和访问核心网络之前将设备置于安全目标状态。
-
公开(公告)号:US09826335B2
公开(公告)日:2017-11-21
申请号:US12863009
申请日:2009-01-21
CPC分类号: H04W4/70 , G06F21/57 , G06F21/575 , G06F2221/2101 , G06F2221/2105 , G06F2221/2151 , G06F2221/2153 , H04L9/08 , H04L9/3234 , H04L63/062 , H04L63/0823 , H04L63/12 , H04L63/20 , H04L67/10 , H04L67/125 , H04W4/00 , H04W4/50 , H04W8/06 , H04W12/06 , H04W12/08 , H04W12/10 , H04W24/00 , H04W84/22
摘要: A method and apparatus for performing secure Machine-to-Machine (M2M) provisioning and communication is disclosed. In particular a temporary private identifier, or provisional connectivity identification (PCID), for uniquely identifying machine-to-machine equipment (M2ME) is also disclosed. Additionally, methods and apparatus for use in validating, authenticating and provisioning a M2ME is also disclosed. The validation procedures disclosed include an autonomous, semi-autonomous, and remote validation are disclosed. The provisioning procedures include methods for re-provisioning the M2ME. Procedures for updating software, and detecting tampering with the M2ME are also disclosed.
-
公开(公告)号:US08509431B2
公开(公告)日:2013-08-13
申请号:US13237344
申请日:2011-09-20
申请人: Andreas U. Schmidt , Michael V. Meyerstein , Andreas Leicher , Yogendra C. Shah , Louis J. Guccione , Inhyok Cha
发明人: Andreas U. Schmidt , Michael V. Meyerstein , Andreas Leicher , Yogendra C. Shah , Louis J. Guccione , Inhyok Cha
CPC分类号: H04W12/06 , H04L63/061 , H04L63/068 , H04L63/08 , H04L63/0815 , H04L63/0853 , H04L67/02 , H04L2463/061 , H04L2463/081 , H04W12/04 , H04W88/02
摘要: A wireless device may perform a local authentication to reduce the traffic on a network. The local authentication may be performed using a local web server and/or a local OpenID provider (OP) associated with the wireless device. The local web server and/or local OP may be implemented on a security module, such as a smartcard or a trusted execution environment for example. The local OP and/or local web server may be used to implement a provisioning phase to derive a session key, associated with a service provider, from an authentication between the wireless device and the network. The session key may be reusable for subsequent local authentications to locally authenticate a user of the wireless device to the service provider.
-
公开(公告)号:US20110265158A1
公开(公告)日:2011-10-27
申请号:US12863009
申请日:2009-01-21
IPC分类号: G06F21/20
CPC分类号: H04W4/70 , G06F21/57 , G06F21/575 , G06F2221/2101 , G06F2221/2105 , G06F2221/2151 , G06F2221/2153 , H04L9/08 , H04L9/3234 , H04L63/062 , H04L63/0823 , H04L63/12 , H04L63/20 , H04L67/10 , H04L67/125 , H04W4/00 , H04W4/50 , H04W8/06 , H04W12/06 , H04W12/08 , H04W12/10 , H04W24/00 , H04W84/22
摘要: A method and apparatus for performing secure Machine-to-Machine (M2M) provisioning and communication is disclosed. In particular a temporary private identifier, or provisional connectivity identification (PCID), for uniquely identifying machine-to-machine equipment (M2ME) is also disclosed. Additionally, methods and apparatus for use in validating, authenticating and provisioning a M2ME is also disclosed. The validation procedures disclosed include an autonomous, semi-autonomous, and remote validation are disclosed. The provisioning procedures include methods for re-provisioning the M2ME. Procedures for updating software, and detecting tampering with the M2ME are also disclosed.
摘要翻译: 公开了一种用于执行安全的机器对机器(M2M)供应和通信的方法和装置。 特别地,还公开了用于唯一地识别机器对机器设备(M2ME)的临时专用标识符或临时连接性标识(PCID)。 此外,还公开了用于验证,认证和供应M2ME的方法和装置。 所公开的验证程序包括自主,半自主和远程验证。 配置过程包括重新配置M2ME的方法。 还公开了更新软件的程序和检测M2ME的篡改。
-
公开(公告)号:US20110035584A1
公开(公告)日:2011-02-10
申请号:US12718853
申请日:2010-03-05
IPC分类号: H04L9/32
CPC分类号: H04W12/06 , H04L63/0428 , H04L63/0869 , H04W4/70 , H04W8/265 , H04W12/04 , H04W88/18
摘要: A method and apparatus are disclosed for performing secure remote subscription management. Secure remote subscription management may include providing the Wireless Transmit/Receive Unit (WTRU) with a connectivity identifier, such as a Provisional Connectivity Identifier (PCID), which may be used to establish an initial network connection to an Initial Connectivity Operator (ICO) for initial secure remote registration, provisioning, and activation. A connection to the ICO may be used to remotely provision the WTRU with credentials associated with the Selected Home Operator (SHO). A credential, such as a cryptographic keyset, which may be included in the Trusted Physical Unit (TPU), may be allocated to the SHO and may be activated. The WTRU may establish a network connection to the SHO and may receive services using the remotely managed credentials. Secure remote subscription management may be repeated to associate the WTRU with another SHO.
摘要翻译: 公开了用于执行安全远程订阅管理的方法和装置。 安全远程订阅管理可以包括为无线发射/接收单元(WTRU)提供诸如临时连接标识符(PCID)的连接标识符,其可以用于建立到初始连接性运营商(ICO)的初始网络连接,用于 初始安全远程注册,配置和激活。 可以使用到ICO的连接来远程地提供与选择家庭运营商(SHO)相关联的凭证的WTRU。 可以包括在可信物理单元(TPU)中的诸如加密密钥集的证书可以被分配给SHO并且可以被激活。 WTRU可以建立到SHO的网络连接,并且可以使用远程管理的证书来接收服务。 可以重复安全的远程订阅管理以将WTRU与另一个SHO相关联。
-
10.发明授权Smart card with domain-trust evaluation and domain policy management functions 有权具有域信任评估和域策略管理功能的智能卡公开(公告)号:US09363676B2
公开(公告)日:2016-06-07
申请号:US13991530
申请日:2011-12-06
申请人: Louis J. Guccione , Michael V. Meyerstein , Inhyok Cha , Andreas Schmidt , Andreas Leicher , Yogendra C. Shah
发明人: Louis J. Guccione , Michael V. Meyerstein , Inhyok Cha , Andreas Schmidt , Andreas Leicher , Yogendra C. Shah
CPC分类号: G06F21/604 , G06F21/10 , G06F21/6218 , H04L63/00 , H04L63/205 , H04W12/08 , H04W12/10 , H04W12/12
摘要: One or more wireless communications device may include one or more domains that may be owned or controlled by one or more different owners. One of the domains may include a security domain having ultimate control over the enforcement of security policies on the one or more wireless communications devices. Another one of the domains may include a system-wide domain manager that is subsidiary to the security domain and may enforce the policies of one or more subsidiary domains. The system-wide domain manager may enforce its policies based on a privilege level received from the security domain. The privilege level may be based on the level of trust between an external stakeholder, such as an owner of a domain that is subsidiary to the system-wide domain manager, and the security domain.
摘要翻译: 一个或多个无线通信设备可以包括可由一个或多个不同所有者拥有或控制的一个或多个域。 一个域可以包括对一个或多个无线通信设备上的安全策略的执行的最终控制的安全域。 另一个域可以包括系统范围的域管理器,其是安全域的子公司,并且可以执行一个或多个子域的策略。 系统范围的域管理器可以基于从安全域接收到的特权级别强制执行其策略。 权限级别可以基于外部利益相关者(例如,系统范围域名管理员的子域的所有者)与安全域之间的信任级别。
-
-
-
-
-
-
-
-
-
搜索结果
80 条记录 (耗时 0.033 秒)
