公开(公告)号：US11991165B2

公开(公告)日：2024-05-21

申请号：US17044065

申请日：2019-04-02

Applicant: NEC CORPORATION

Inventor： Anand Raghawa Prasad ,  Sivakamy Lakshminarayanan ,  Sheeba Backia Mary Baskaran ,  Sivabalan Arumugam ,  Hironori Ito ,  Takahito Yoshizawa

IPC: G06F7/04 ,  G06F15/16 ,  H04L9/30 ,  H04L9/40 ,  H04L29/06 ,  H04W12/06 ,  H04W12/69

CPC classification number: H04L63/083 ,  H04L9/30 ,  H04L63/166 ,  H04L63/205 ,  H04W12/06 ,  H04W12/69

Abstract: The present disclosure relates to authentication methods supported by the User Equipment (UE) to the core network and authentication method (selected by the core network) to the UE. These can be used for negotiating any primary or secondary (or any) authentication method and are applicable when multiple authentication methods are supported at the UE and the network (authentication server). Further, the present disclosure also offers security solution to prevent modification or tampering of the parameters in the mechanisms in order to prevent attacks such as bidding-down, Denial of Service (DoS) and Man-In-The-Middle (MITM).

公开(公告)号：US11553345B2

公开(公告)日：2023-01-10

申请号：US17201280

申请日：2021-03-15

Applicant: NEC Corporation

Inventor： Hironori Ito ,  Anand Raghawa Prasad ,  Andreas Kunz ,  Sivabalan Arumugam ,  Sivakamy Lakshminarayanan ,  Sheeba Backia Mary Baskaran

IPC: H04W12/106 ,  H04W12/037 ,  H04W12/041 ,  H04W12/08 ,  H04W36/14 ,  H04W48/18

Abstract: A communication terminal (10) according to the present disclosure includes: a control unit (12) configured to, in a case of a movement from a communication area formed by the 5GS to a communication area formed by the EPS or a movement from a communication area formed by the EPS to a communication area formed by the 5GS, determine whether or not a communication system forming a communication area at a movement destination can satisfy requirements of services; and a communication unit (11) configured to, when it is determined that the communication system forming the communication area at the movement destination can satisfy the requirements of the services, send a connection request message to the communication system forming the communication area at the movement destination.

公开(公告)号：US11528599B2

公开(公告)日：2022-12-13

申请号：US17672274

申请日：2022-02-15

Applicant: NEC Corporation

Inventor： Sheeba Backia Mary Baskaran ,  Sivakamy Lakshminarayanan ,  Anand Raghawa Prasad ,  Sivabalan Arumugam ,  Hironori Ito ,  Takahito Yoshizawa

IPC: G06F7/04 ,  H04N7/16 ,  H04W12/02 ,  H04W12/06 ,  H04W12/10 ,  H04W12/03 ,  H04W12/72 ,  H04W12/0471

Abstract: A communication terminal (10) includes control means for generating a subscription concealed identifier (SUCI) including a subscription permanent identifier (SUPI) concealed using a predetermined protection scheme, and a protection scheme identifier identifying the protection scheme, and transmission means for sending the SUCI to a first network apparatus during a registration procedure, the SUCI being sent for a second network apparatus to de-conceal the SUPI from the SUCI based on the protection scheme used to generate the SUCI.

公开(公告)号：US11496882B2

公开(公告)日：2022-11-08

申请号：US16968624

申请日：2019-02-15

Applicant: NEC Corporation

Inventor： Sheeba Backia Mary Baskaran ,  Anand Raghawa Prasad ,  Sivakamy Lakshminarayanan ,  Sivabalan Arumugam ,  Hironori Ito ,  Takihito Yoshizawa

IPC: H04W60/00 ,  H04W8/20 ,  H04W8/08 ,  H04W48/16 ,  H04L101/654

Abstract: Methods for (i) finding/discovering the right UDM instances and (ii) ensuring the UDM instance security are provided. The method for (i), includes the steps of: (i-1) pre-provisioning of UDM instance discovery information/parameters to the UE/USIM, (i-2) sending the UDM instance discovery related parameters to a core network element, and (i-3) discovering the right UDM instance at the core network element based on the discovery parameters and related routing information either at the UDM consumer/NRF. The method for (ii) includes the steps of: (ii-1) Secured choice of parameter for UDM instance discovery (e.g. UDM instance identifier) to the core network element and (ii-2) the secured UDM instance identifier generation and management at the UDM to prevent attack on UDM instances. Also a method to identify the cleartext IMSI/SUPI is provided for the re-authentication scenario along with the relevant procedures.

公开(公告)号：US20220103540A1

公开(公告)日：2022-03-31

申请号：US17549156

申请日：2021-12-13

Applicant: NEC Corporation

Inventor： Anand Raghawa Prasad ,  Sivakamy Lakshminarayanan ,  Sheeba Backia Mary Baskaran ,  Sivabalan Arumugam ,  Hironori Ito ,  Takahito Yoshizawa

IPC: H04L29/06 ,  H04W12/69 ,  H04L9/30 ,  H04W12/06

Abstract: The present disclosure relates to authentication methods supported by the User Equipment (UE) to the core network and authentication method (selected by the core network) to the UE. These can be used for negotiating any primary or secondary (or any) authentication method and are applicable when multiple authentication methods are supported at the UE and the network (authentication server). Further, the present disclosure also offers security solution to prevent modification or tampering of the parameters in the mechanisms in order to prevent attacks such as bidding-down, Denial of Service (DoS) and Man-In-The-Middle (MITM).

公开(公告)号：US12107950B2

公开(公告)日：2024-10-01

申请号：US17421363

申请日：2019-12-19

Applicant: NEC Corporation

Inventor： Sander De Kievit ,  Sheeba Backia Mary Baskaran ,  Anand Raghawa Prasad

IPC: H04L9/08 ,  H04L9/32

CPC classification number: H04L9/0825 ,  H04L9/0838 ,  H04L9/3242

Abstract: The present disclosure relates to method of enabling key re-usage for an electronic device. The method comprising: receiving a request message from the electronic device, wherein the request message comprises a first information being indicative of a preference for one of a first key associated with a first network node in a first network or a second key associated with a second network node in a second network; processing the request message to determine the preference indicated in the first information; and transmitting a response message to the electronic device for reusing the first key or second key, the electronic device is configured to derive a third key based on the first key or the second key as indicated in the determined preference, and the second network is able to access to the first key and the second key whereas the first network cannot access the second key.

公开(公告)号：US11419086B2

公开(公告)日：2022-08-16

申请号：US17085588

申请日：2020-10-30

Applicant: NEC Corporation

Inventor： Kundan Tiwari ,  Toshiyuki Tamura ,  Sheeba Backia Mary Baskaran

IPC: H04W60/02 ,  H04W12/48

Abstract: The present disclosure is related to sending of a one time identifier of a UE during the NAS procedure. Specifically, the present disclosure relates to determining whether to use same one time identifier or different one time identifier during registration retry procedure.

公开(公告)号：US11290874B2

公开(公告)日：2022-03-29

申请号：US16961548

申请日：2019-01-09

Applicant: NEC CORPORATION

Inventor： Sheeba Backia Mary Baskaran ,  Sivakamy Lakshminarayanan ,  Anand Raghawa Prasad ,  Sivabalan Arumugam ,  Hironori Ito ,  Takahito Yoshizawa

IPC: G06F7/04 ,  H04N7/16 ,  H04W12/02 ,  H04W12/06 ,  H04W12/10 ,  H04W12/03 ,  H04W12/72 ,  H04W12/0471

Abstract: A communication terminal (10) includes control means for generating a subscription concealed identifier (SUCI) including a subscription permanent identifier (SUPI) concealed using a predetermined protection scheme, and a protection scheme identifier identifying the protection scheme, and transmission means for sending the SUCI to a first network apparatus during a registration procedure, the SUCI being sent for a second network apparatus to de-conceal the SUPI from the SUCI based on the protection scheme used to generate the SUCI.

公开(公告)号：US11284313B2

公开(公告)日：2022-03-22

申请号：US16617595

申请日：2018-05-25

Applicant: NEC Corporation

Inventor： Anand Raghawa Prasad ,  Sivakamy Lakshminarayanan ,  Sivabalan Arumugam ,  Sheeba Backia Mary Baskaran ,  Hironori Ito ,  Toshiyuki Tamura ,  Hisashi Futaki

IPC: H04W4/00 ,  H04W36/00 ,  H04W76/11 ,  H04M15/00 ,  H04W8/08 ,  H04W48/02 ,  H04W48/16

Abstract: The present disclosure relates to secure provisioning of UE mobility restriction by extending neighbour relation tables to include mobility restrictions in addition to neighbour cell information and sending neighbour cell restriction information (per UE) to the UE, gNB, UE and gNB. The present invention also provides a method and apparatus and a system for mapping mobility restrictions with TA list and sending the TA list along with the Handover Restriction List during handover.

公开(公告)号：US12127151B2

公开(公告)日：2024-10-22

申请号：US17858259

申请日：2022-07-06

Applicant: NEC Corporation

Inventor： Kundan Tiwari ,  Toshiyuki Tamura ,  Sheeba Backia Mary Baskaran

IPC: H04W60/02 ,  H04W12/48

CPC classification number: H04W60/02 ,  H04W12/48

Abstract: The present disclosure is related to sending of a one time identifier of a UE during the NAS procedure. Specifically, the present disclosure relates to determining whether to use same one time identifier or different one time identifier during registration retry procedure.