-
公开(公告)号:US11284317B2
公开(公告)日:2022-03-22
申请号:US16388084
申请日:2019-04-18
Applicant: NEC CORPORATION
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
Abstract: A UE (10) provides information on potential S′eNB(s). The information is forwarded from an MeNB (20_1) to an M′eNB (20_2) such that the M′eNB (20_2) can determine, before the handover happens, whether the M′eNB (20_2) will configure a new SeNB (S′eNB) and which S′eNB the M′eNB (20_2) will configure. In one of options, the MeNB (20_1) derives a key S′-KeNB for communication protection between the UE (10) and the S′eNB (30_1), and send the S′-KeNB to the M′eNB (20_2). In another option, the M′eNB (20_2) derives the S′-KeNB from a key KeNB* received from the MeNB (20_1). The M′eNB (20_2) sends the S′-KeNB to the S′eNB (30_1). Moreover, there are also provided several variations to perform SeNB Release, SeNB Addition, Bearer Modification and the like, in which the order and/or timing thereof can be different during the handover procedure.
-
公开(公告)号:US10986544B2
公开(公告)日:2021-04-20
申请号:US16146694
申请日:2018-09-28
Applicant: NEC Corporation
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
Abstract: There is provided a network system including one or more first MMEs (30), and a second MME (40) separated from the first MMEs (30). In one of operation cases, the first MME (30) pushes, to the second MME (40), security context for a UE (10) that attaches to the first MME (30). The second MME (40) stores the security context. The first MME (30) further pushes the latest security context to the second MME (40), during a switch-off procedure for the first MME (30). The second MME (40) updates the stored security context with the latest security context. The first MME (30) pulls the security context from the second MME (40), when the UE (10) re-attaches to the first MME (30) or is handovered from different one of the first MMEs (30).
-
公开(公告)号:US10554408B2
公开(公告)日:2020-02-04
申请号:US15549690
申请日:2016-02-12
Applicant: NEC Corporation
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
Abstract: A communication system includes a plurality of communication terminals that form a communication group and a node device that carries out an authentication process on each of the communication terminals. The node device derives first keys unique to the respective communication terminals by using information shared between the node device and each communication terminal through the authentication process, derives a second key common to the communication group, calculates an exclusive OR between each first key and the second key, and transmits respective XOR values obtained through the calculation to the respective communication terminals. Each communication terminal reproduces the second key by calculating an exclusive OR of between the first key unique to the own communication terminal derived by using the information and the XOR value received from the node device. Thus, the keys used in group communication are managed more securely.
-
公开(公告)号:US09894054B2
公开(公告)日:2018-02-13
申请号:US15375032
申请日:2016-12-09
Applicant: NEC Corporation
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
CPC classification number: H04L63/08 , H04L63/0876 , H04L63/101 , H04L63/12 , H04L63/123 , H04L63/1416 , H04L63/20 , H04L63/205 , H04W4/70 , H04W12/06 , H04W12/08 , H04W12/10 , H04W68/00
Abstract: Upon receiving a triggering message from a MTC server (20), a network (10) verifies if the MTC server (20) is authorized to trigger a target MTC device (30) and also if the MTC device (30) is authorized to respond the triggering message, by comparing an MTC device ID and MTC server ID (and optionally information on subscription) which are include in the triggering message with authorized ones. Upon succeeding in the verification, the network (10) checks a trigger type included in the triggering message to verify if the triggering message is authorized to be sent to the MTC device (30). Upon succeeding in the check, the network (10) forwards the triggering message to the MTC device (30). The network (10) also validates a response from the MTC device (30), by checking whether the MTC device (30) is allowed to communicate with the addressed MTC server (20).
-
公开(公告)号:US20150189460A1
公开(公告)日:2015-07-02
申请号:US14409968
申请日:2013-04-23
Applicant: NEC Corporation
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
IPC: H04W4/00 , H04W52/02 , H04W40/02 , H04L12/729 , H04W28/02
CPC classification number: H04L45/125 , H04W4/70 , H04W28/0289 , H04W40/02 , H04W52/0209 , H04W88/16 , Y02D70/1224 , Y02D70/1262 , Y02D70/1264 , Y02D70/21
Abstract: A network node (21), which is placed within a core network, stores a list of network elements (24) capable of forwarding a trigger message to a MTC device (10). The network node (21) receives the trigger message from a transmission source (30, 40) placed outside the core network, and then selects, based on the list, one of the network elements to forward the trigger message to the MTC device (10). The MTC device (10) validates the received trigger message, and then transmits, when the trigger message is not validated, to the network node (21) a reject message indicating that the trigger message is not accepted by the MTC device (10). Upon receiving the reject message, the network node (21) forwards the trigger message through a different one of the network elements, or forwards the reject message to transmission source (30, 40) to send the trigger message through user plane.
Abstract translation: 放置在核心网络内的网络节点(21)存储能够将触发消息转发到MTC设备(10)的网元(24)的列表。 网络节点(21)从放置在核心网络外的发送源(30,40)接收触发消息,然后基于该列表选择一个网元,将触发消息转发到MTC设备(10 )。 MTC设备(10)验证接收到的触发消息,然后当触发消息未被验证时向网络节点(21)发送指示触发消息未被MTC设备(10)接受的拒绝消息。 在接收到拒绝消息时,网络节点(21)通过不同的网络单元转发触发消息,或者将拒绝消息转发到发送源(30,40),以通过用户平面发送触发消息。
-
Patent Agency Ranking
公开(公告)号:US20140242952A1
公开(公告)日:2014-08-28
申请号:US14351681
申请日:2012-10-29
Applicant: NEC Corporation
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
CPC classification number: H04L63/08 , H04L63/0876 , H04L63/101 , H04L63/12 , H04L63/123 , H04L63/1416 , H04L63/20 , H04L63/205 , H04W4/70 , H04W12/06 , H04W12/08 , H04W12/10 , H04W68/00
Abstract: Upon receiving a triggering message from a MTC server (20), a network (10) verifies if the MTC server (20) is authorized to trigger a target MTC device (30) and also if the MTC device (30) is authorized to respond the triggering message, by comparing an MTC device ID and MTC server ID (and optionally information on subscription) which are include in the triggering message with authorized ones. Upon succeeding in the verification, the network (10) checks a trigger type included in the triggering message to verify if the triggering message is authorized to be sent to the MTC device (30). Upon succeeding in the check, the network (10) forwards the triggering message to the MTC device (30). The network (10) also validates a response from the MTC device (30), by checking whether the MTC device (30) is allowed to communicate with the addressed MTC server (20).
Abstract translation: 在从MTC服务器(20)接收到触发消息时,网络(10)验证MTC服务器(20)是否被授权触发目标MTC设备(30),以及MTC设备(30)是否被授权响应 触发消息,通过将包括在触发消息中的MTC设备ID和MTC服务器ID(以及可选地,订阅上的信息)进行比较。 在验证成功后,网络(10)检查触发消息中包括的触发类型,以验证触发消息是否被授权发送到MTC设备(30)。 在成功检查后,网络(10)将触发消息转发给MTC设备(30)。 网络(10)还通过检查MTC设备(30)是否被允许与寻址的MTC服务器(20)通信来验证来自MTC设备(30)的响应。
-
公开(公告)号:US11863425B2
公开(公告)日:2024-01-02
申请号:US17546216
申请日:2021-12-09
Applicant: NEC Corporation
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
CPC classification number: H04L45/125 , H04W4/70 , H04W28/0289 , H04W40/02 , H04W52/0209 , H04W88/16 , Y02D30/70
Abstract: A network node (21), which is placed within a core network, stores a list of network elements (24) capable of forwarding a trigger message to a MTC device (10). The network node (21) receives the trigger message from a transmission source (30, 40) placed outside the core network, and then selects, based on the list, one of the network elements to forward the trigger message to the MTC device (10). The MTC device (10) validates the received trigger message, and then transmits, when the trigger message is not validated, to the network node (21) a reject message indicating that the trigger message is not accepted by the MTC device (10). Upon receiving the reject message, the network node (21) forwards the trigger message through a different one of the network elements, or forwards the reject message to transmission source (30, 40) to send the trigger message through user plane.
-
公开(公告)号:US11284322B2
公开(公告)日:2022-03-22
申请号:US16413643
申请日:2019-05-16
Applicant: NEC CORPORATION
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
IPC: H04W36/28 , H04W76/27 , H04W12/041 , H04W12/0433 , H04W28/08 , H04W36/00 , H04W12/122 , H04W88/08 , H04W92/20
Abstract: An SeNB informs an MeNB that it can configure bearers for the given UE. At this time, the MeNB manages the DRB status, and then sends a key S-KeNB to the SeNB. The MeNB also sends a KSI for the S-KeNB to both of the UE and the SeNB. After this procedure, the MeNB informs an EPC (MME and S-GW) about the new bearer configured at the SeNB, such that the S-GW 50 can start offloading the bearer(s) to the SeNB 30. Prior to the offloading, the EPC network entity (MME or S-GW) performs verification that: 1) whether the request is coming from authenticated source (MeNB); and 2) whether the SeNB is a valid eNB to which the traffic can be offload.
-
公开(公告)号:US11032747B2
公开(公告)日:2021-06-08
申请号:US16985763
申请日:2020-08-05
Applicant: NEC Corporation
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
Abstract: There is provided a network system including one or more first MMEs (30), and a second MME (40) separated from the first MMEs (30). In one of operation cases, the first MME (30) pushes, to the second MME (40), security context for a UE (10) that attaches to the first MME (30). The second MME (40) stores the security context. The first MME (30) further pushes the latest security context to the second MME (40), during a switch-off procedure for the first MME (30). The second MME (40) updates the stored security context with the latest security context. The first MME (30) pulls the security context from the second MME (40), when the UE (10) re-attaches to the first MME (30) or is handovered from different one of the first MMEs (30).
-
公开(公告)号:US10979408B2
公开(公告)日:2021-04-13
申请号:US16744767
申请日:2020-01-16
Applicant: NEC Corporation
Inventor: Xiaowei Zhang , Anand Raghawa Prasad
IPC: H04L29/06 , H04L29/08 , H04L9/08 , H04L9/32 , H04W12/02 , H04W12/04 , H04W76/14 , H04W12/00 , H04W12/10 , H04W76/10 , H04W4/80
Abstract: A method of performing authentication and authorization in Proximity based Service (ProSe) communication by a requesting device which sends a request of a communication and a receiving device which receives the request from the requesting device, the method including deriving session keys Kpc and Kpi from an unique key Kp at the requesting and receiving devices, using the session keys Kpc and Kpi for ProSe communication setup and direct communication between the requesting and receiving devices, starting the direct communication with the requesting and receiving devices. The key Kpc is confidentiality key and the key Kpi is integrity protection key.
-
-
-
-
-
-
-
-
-
Search Results
56
records
(took 0.019 seconds)
