公开(公告)号：US11290874B2

公开(公告)日：2022-03-29

申请号：US16961548

申请日：2019-01-09

Applicant: NEC CORPORATION

Inventor： Sheeba Backia Mary Baskaran ,  Sivakamy Lakshminarayanan ,  Anand Raghawa Prasad ,  Sivabalan Arumugam ,  Hironori Ito ,  Takahito Yoshizawa

IPC: G06F7/04 ,  H04N7/16 ,  H04W12/02 ,  H04W12/06 ,  H04W12/10 ,  H04W12/03 ,  H04W12/72 ,  H04W12/0471

Abstract: A communication terminal (10) includes control means for generating a subscription concealed identifier (SUCI) including a subscription permanent identifier (SUPI) concealed using a predetermined protection scheme, and a protection scheme identifier identifying the protection scheme, and transmission means for sending the SUCI to a first network apparatus during a registration procedure, the SUCI being sent for a second network apparatus to de-conceal the SUPI from the SUCI based on the protection scheme used to generate the SUCI.

公开(公告)号：US11284313B2

公开(公告)日：2022-03-22

申请号：US16617595

申请日：2018-05-25

Applicant: NEC Corporation

Inventor： Anand Raghawa Prasad ,  Sivakamy Lakshminarayanan ,  Sivabalan Arumugam ,  Sheeba Backia Mary Baskaran ,  Hironori Ito ,  Toshiyuki Tamura ,  Hisashi Futaki

IPC: H04W4/00 ,  H04W36/00 ,  H04W76/11 ,  H04M15/00 ,  H04W8/08 ,  H04W48/02 ,  H04W48/16

Abstract: The present disclosure relates to secure provisioning of UE mobility restriction by extending neighbour relation tables to include mobility restrictions in addition to neighbour cell information and sending neighbour cell restriction information (per UE) to the UE, gNB, UE and gNB. The present invention also provides a method and apparatus and a system for mapping mobility restrictions with TA list and sending the TA list along with the Handover Restriction List during handover.

公开(公告)号：US11956636B2

公开(公告)日：2024-04-09

申请号：US18080184

申请日：2022-12-13

Applicant: NEC Corporation

Inventor： Hironori Ito ,  Anand Raghawa Prasad ,  Andreas Kunz ,  Sivabalan Arumugam ,  Sivakamy Lakshminarayanan ,  Sheeba Backia Mary Baskaran

IPC: H04W12/106 ,  H04W12/037 ,  H04W12/041 ,  H04W12/08 ,  H04W36/14 ,  H04W48/18

CPC classification number: H04W12/106 ,  H04W12/037 ,  H04W12/041 ,  H04W12/08 ,  H04W36/14 ,  H04W48/18

Abstract: A communication terminal (10) according to the present disclosure includes: a control unit (12) configured to, in a case of a movement from a communication area formed by the 5GS to a communication area formed by the EPS or a movement from a communication area formed by the EPS to a communication area formed by the 5GS, determine whether or not a communication system forming a communication area at a movement destination can satisfy requirements of services; and a communication unit (11) configured to, when it is determined that the communication system forming the communication area at the movement destination can satisfy the requirements of the services, send a connection request message to the communication system forming the communication area at the movement destination.

公开(公告)号：US11722897B2

公开(公告)日：2023-08-08

申请号：US17540455

申请日：2021-12-02

Applicant: NEC Corporation

Inventor： Hironori Ito ,  Anand Raghawa Prasad ,  Sivabalan Arumugam ,  Takahito Yoshizawa ,  Sivakamy Lakshminarayanan ,  Sheeba Backia Mary Baskaran

IPC: H04L29/00 ,  H04W12/106

CPC classification number: H04W12/106

Abstract: A method for integrity protection scheme by a mobile communication device or a core network entity according to a first exemplary aspect of the present disclosure includes configuring settings and parameters for integrity protection for user data with another party; receiving user plane data from the other party, calculating Message Authentication Code for Integrity (MAC-I) for a part of the data and checking integrity of the part of the data.

公开(公告)号：US11540125B2

公开(公告)日：2022-12-27

申请号：US16494524

申请日：2018-03-16

Applicant: NEC CORPORATION

Inventor： Sheeba Backia Mary Baskaran ,  Anand Raghawa Prasad ,  Sivabalan Arumugam ,  Sivakamy Lakshminarayanan ,  Hironori Ito ,  Andreas Kunz

IPC: H04W12/0431 ,  G06F7/58 ,  H04L9/32 ,  H04L12/04 ,  H04L12/06 ,  H04W12/041 ,  H04W12/062

Abstract: Provided is an authentication device capable of generating a master key suited to a UE in a 5GS. The authentication device (10) includes a communication unit (11) configured to, in registration processing of user equipment (UE), acquire UE key derivation function (KDF) capabilities indicating a pseudo random function supported by the UE, a selection unit (12) configured to select a pseudo random function used for generation of a master key related to the UE by use of the UE KDF capabilities, and a key generation unit (13) configured to generate a master key related to the UE by use of the selected pseudo random function.

公开(公告)号：US20240196218A1

公开(公告)日：2024-06-13

申请号：US18588124

申请日：2024-02-27

Applicant: NEC Corporation

Inventor： Hironori ITO ,  Anand Raghawa Prasad ,  Andreas Kunz ,  Sivabalan Arumugam ,  Sivakamy Lakshminarayanan ,  Sheeba Backia Mary Baskaran

IPC: H04W12/106 ,  H04W12/037 ,  H04W12/041 ,  H04W12/08 ,  H04W36/14 ,  H04W48/18

CPC classification number: H04W12/106 ,  H04W12/037 ,  H04W12/041 ,  H04W12/08 ,  H04W36/14 ,  H04W48/18

Abstract: A communication terminal (10) according to the present disclosure includes: a control unit (12) configured to, in a case of a movement from a communication area formed by the 5GS to a communication area formed by the EPS or a movement from a communication area formed by the EPS to a communication area formed by the 5GS, determine whether or not a communication system forming a communication area at a movement destination can satisfy requirements of services; and a communication unit (11) configured to, when it is determined that the communication system forming the communication area at the movement destination can satisfy the requirements of the services, send a connection request message to the communication system forming the communication area at the movement destination.

公开(公告)号：US11910184B2

公开(公告)日：2024-02-20

申请号：US17422035

申请日：2020-01-10

Applicant: NEC Corporation

Inventor： Sheeba Backia Mary Baskaran ,  Sander De Kievit ,  Sivabalan Arumugam ,  Anand Raghawa Prasad

IPC: H04W12/02 ,  H04W12/72 ,  H04W8/04 ,  H04W8/18 ,  H04W12/06 ,  H04W60/00

CPC classification number: H04W12/02 ,  H04W8/04 ,  H04W8/18 ,  H04W12/06 ,  H04W12/72 ,  H04W60/00

Abstract: The present disclosure provides a User Equipment (UE) comprising a transceiver circuit; and a controller configured to control the transceiver circuit to send, to an Access and mobility Management Function (AMF) of a communication node, an identifier, wherein upon successful authentication of a network access function of the UE in the communication node, the controller is configured to maintain a secure connection with the communication node.

公开(公告)号：US11877148B2

公开(公告)日：2024-01-16

申请号：US17985256

申请日：2022-11-11

Applicant: NEC Corporation

Inventor： Sheeba Backia Mary Baskaran ,  Sivakamy Lakshminarayanan ,  Anand Raghawa Prasad ,  Sivabalan Arumugam ,  Hironori Ito ,  Takahito Yoshizawa

IPC: G06F7/04 ,  H04N7/16 ,  H04W12/02 ,  H04W12/06 ,  H04W12/10 ,  H04W12/03 ,  H04W12/72 ,  H04W12/0471

CPC classification number: H04W12/02 ,  H04W12/03 ,  H04W12/0471 ,  H04W12/06 ,  H04W12/10 ,  H04W12/72

Abstract: A communication terminal (10) includes control means for generating a subscription concealed identifier (SUCI) including a subscription permanent identifier (SUPI) concealed using a predetermined protection scheme, and a protection scheme identifier identifying the protection scheme, and transmission means for sending the SUCI to a first network apparatus during a registration procedure, the SUCI being sent for a second network apparatus to de-conceal the SUPI from the SUCI based on the protection scheme used to generate the SUCI.

公开(公告)号：US11463267B2

公开(公告)日：2022-10-04

申请号：US16331581

申请日：2017-04-18

Applicant: NEC CORPORATION

Inventor： Pradheepkumar Singaravelu ,  Sivabalan Arumugam ,  Anand Prasad ,  Hironori Ito

IPC: H04L9/32 ,  H04L9/08 ,  G06F9/455

Abstract: A network function virtualization system, comprises a request receiving unit that receives a request to a certificate of at least one of data exchanging parties; a private key generator that generates a first private key information using a second private key information stored in a hardware-based isolated secure execution environment, in response to the request; a public key extractor that extracts a public key information of the first private key information; a public key information storage unit that stores the public key information; and a verifying unit that is accessible from the request receiving unit and verifies the certificate using the public key information corresponding to the certificate.

公开(公告)号：US11991165B2

公开(公告)日：2024-05-21

申请号：US17044065

申请日：2019-04-02

Applicant: NEC CORPORATION

Inventor： Anand Raghawa Prasad ,  Sivakamy Lakshminarayanan ,  Sheeba Backia Mary Baskaran ,  Sivabalan Arumugam ,  Hironori Ito ,  Takahito Yoshizawa

IPC: G06F7/04 ,  G06F15/16 ,  H04L9/30 ,  H04L9/40 ,  H04L29/06 ,  H04W12/06 ,  H04W12/69

CPC classification number: H04L63/083 ,  H04L9/30 ,  H04L63/166 ,  H04L63/205 ,  H04W12/06 ,  H04W12/69

Abstract: The present disclosure relates to authentication methods supported by the User Equipment (UE) to the core network and authentication method (selected by the core network) to the UE. These can be used for negotiating any primary or secondary (or any) authentication method and are applicable when multiple authentication methods are supported at the UE and the network (authentication server). Further, the present disclosure also offers security solution to prevent modification or tampering of the parameters in the mechanisms in order to prevent attacks such as bidding-down, Denial of Service (DoS) and Man-In-The-Middle (MITM).