-
1.发明申请公开(公告)号:US20060218396A1
公开(公告)日:2006-09-28
申请号:US11328155
申请日:2006-01-10
IPC分类号: H04L9/00
CPC分类号: H04L63/0823 , H04L9/0838 , H04L9/321 , H04L9/3226 , H04L9/3263 , H04L9/3271 , H04L63/0853 , H04L63/18 , H04L2209/80 , H04W12/06
摘要: A method and apparatus for authenticating to a third party service provider from a personal computer. The method includes authenticating, with a mobile terminal, to the service provider with a universal subscriber identity module associated with the mobile terminal to obtain credentials specific to the service provider, transferring the credentials specific to the service provider from the mobile terminal to the personal computer, and accessing the service provider with the personal computer using the credentials transferred from the mobile terminal. The apparatus includes a mobile terminal, a computing device, a bootstrapping security module, and a network application function that cooperatively work to allow the computing device to access the network application function using a security credential from the mobile terminal.
-
2.发明授权Method and apparatus for using generic authentication architecture procedures in personal computers 有权在个人计算机中使用通用认证体系结构程序的方法和装置公开(公告)号:US08543814B2
公开(公告)日:2013-09-24
申请号:US11328155
申请日:2006-01-10
IPC分类号: H04L29/06
CPC分类号: H04L63/0823 , H04L9/0838 , H04L9/321 , H04L9/3226 , H04L9/3263 , H04L9/3271 , H04L63/0853 , H04L63/18 , H04L2209/80 , H04W12/06
摘要: A method and apparatus for authenticating to a third party service provider from a personal computer. The method includes authenticating, with a mobile terminal, to the service provider with a universal subscriber identity module associated with the mobile terminal to obtain credentials specific to the service provider, transferring the credentials specific to the service provider from the mobile terminal to the personal computer, and accessing the service provider with the personal computer using the credentials transferred from the mobile terminal. The apparatus includes a mobile terminal, a computing device, a bootstrapping security module, and a network application function that cooperatively work to allow the computing device to access the network application function using a security credential from the mobile terminal.
摘要翻译: 一种用于从个人计算机向第三方服务提供商认证的方法和装置。 该方法包括使用与移动终端相关联的通用用户识别模块向移动终端验证服务提供商以获得特定于服务提供商的凭证,将特定于服务提供商的凭证从移动终端传送到个人计算机 ,以及使用从移动终端传送的凭证与个人计算机访问服务提供商。 该装置包括移动终端,计算设备,自举安全模块和协作地工作以允许计算设备使用来自移动终端的安全凭证来访问网络应用功能的网络应用功能。
-
公开(公告)号:US08522025B2
公开(公告)日:2013-08-27
申请号:US11582380
申请日:2006-10-18
IPC分类号: H04L9/32
CPC分类号: H04L63/062 , H04L9/0833 , H04L9/321 , H04L9/3271 , H04L63/083 , H04L63/0853 , H04L2209/80 , H04L2463/061 , H04W12/04 , H04W12/06
摘要: One aspect of the invention discloses a method of authenticating an application. The method comprising performing, with a server application, bootstrapping procedures between the server application and a bootstrapping server function; deriving a shared key based on at least a key received from the bootstrapping server function server during the bootstrapping procedures and a network application function identifier; providing an application with a bootstrapping transaction identifier, the bootstrapping transaction identifier being received from the bootstrapping server function server during the bootstrapping procedures; receiving a response from the application; and authenticating the application by validating the response with the shared key.
摘要翻译: 本发明的一个方面公开了一种认证应用的方法。 该方法包括与服务器应用程序一起执行服务器应用程序和自举服务器功能之间的引导过程; 在所述引导过程期间至少基于从所述引导服务器功能服务器接收的密钥和网络应用功能标识符导出共享密钥; 向应用程序提供引导事务标识符,在引导过程期间从引导服务器功能服务器接收引导事务标识符; 从应用程序接收响应; 并通过使用共享密钥验证响应来认证应用程序。
-
公开(公告)号:US20070234041A1
公开(公告)日:2007-10-04
申请号:US11582380
申请日:2006-10-18
IPC分类号: H04L9/00
CPC分类号: H04L63/062 , H04L9/0833 , H04L9/321 , H04L9/3271 , H04L63/083 , H04L63/0853 , H04L2209/80 , H04L2463/061 , H04W12/04 , H04W12/06
摘要: One aspect of the invention discloses a method of authenticating an application. The method comprising performing, with a server application, bootstrapping procedures between the server application and a bootstrapping server function; deriving a shared key based on at least a key received from the bootstrapping server function server during the bootstrapping procedures and a network application function identifier; providing an application with a bootstrapping transaction identifier, the bootstrapping transaction identifier being received from the bootstrapping server function server during the bootstrapping procedures; receiving a response from the application; and authenticating the application by validating the response with the shared key.
摘要翻译: 本发明的一个方面公开了一种认证应用的方法。 该方法包括与服务器应用程序一起执行服务器应用程序和自举服务器功能之间的引导过程; 在所述引导过程期间至少基于从所述引导服务器功能服务器接收的密钥和网络应用功能标识符导出共享密钥; 向应用程序提供引导事务标识符,在引导过程期间从引导服务器功能服务器接收引导事务标识符; 从应用程序接收响应; 并通过使用共享密钥验证响应来认证应用程序。
-
公开(公告)号:US09485232B2
公开(公告)日:2016-11-01
申请号:US11819733
申请日:2007-06-28
申请人: Silke Holtmanns , Pekka Laitinen
发明人: Silke Holtmanns , Pekka Laitinen
CPC分类号: H04L63/0876 , H04L9/0825 , H04L9/3226 , H04L63/06 , H04L63/08 , H04L63/0823 , H04L63/0869 , H04L2209/80 , H04W12/04 , H04W12/06
摘要: A user equipment in a communications system, the user equipment comprising: a memory arranged to store at least one identifier associated with the user equipment; a transceiver arranged to communicate with a node in the communication system, wherein the transceiver is arranged to receive the at least one identifier from the node in the communications system, wherein the at least one identifier is used by the user equipment to authenticate the user equipment to at least one further node in the communications system.
摘要翻译: 一种通信系统中的用户设备,所述用户设备包括:存储器,被布置为存储与所述用户设备相关联的至少一个标识符; 布置成与所述通信系统中的节点进行通信的收发机,其中所述收发器被布置为从所述通信系统中的所述节点接收所述至少一个标识符,其中所述至少一个标识符被所述用户设备用于认证所述用户设备 到通信系统中的至少一个另外的节点。
-
6.发明授权Method and apparatus for providing a scalable service platform using a network cache 有权用于使用网络缓存提供可扩展服务平台的方法和装置公开(公告)号:US08458799B2
公开(公告)日:2013-06-04
申请号:US12495071
申请日:2009-06-30
IPC分类号: G06F7/04
CPC分类号: H04L9/08 , H04L9/0822 , H04L2209/60 , H04L2209/80
摘要: An approach is provided for building a scalable service platform by initiating transmission of encrypted data from a public network cache. An access control server platform determines a first authorization key for a user and a second authorization key for a resource, and then encrypts the resource with the second authorization key, and encrypts the second authorization key with the first authorization key. The access control server platform initiates distribution of the encrypted second authorization key with the encrypted resource over a network. The access control server platform further initiates caching the encrypted second authorization key with the encrypted resource that meets a predefined threshold value (e.g., a data size, an access frequency, a modification frequency, or an auditing requirement) in a cache in the network, and initiates transmission of the cached and encrypted second authorization key with the cached and encrypted resource from the cache to at least one authorized entity.
摘要翻译: 提供了一种通过从公共网络缓存发起加密数据来构建可扩展服务平台的方法。 访问控制服务器平台确定用户的第一授权密钥和用于资源的第二授权密钥,然后用第二授权密钥对资源进行加密,并用第一授权密钥加密第二授权密钥。 访问控制服务器平台通过网络启动加密的第二授权密钥与加密的资源的分发。 访问控制服务器平台进一步发起加密的第二授权密钥与加密资源缓存,该加密的资源满足网络中的高速缓存中的预定阈值(例如,数据大小,访问频率,修改频率或审核要求) 并且启动具有缓存和加密的资源的缓存和加密的第二授权密钥从高速缓存传输到至少一个授权实体。
-
公开(公告)号:US20070192838A1
公开(公告)日:2007-08-16
申请号:US11699469
申请日:2007-01-30
申请人: Pekka Laitinen , Silke Holtmanns
发明人: Pekka Laitinen , Silke Holtmanns
IPC分类号: H04L9/32
CPC分类号: H04L63/08 , H04L63/20 , H04W12/04031 , H04W12/06
摘要: A method and arrangements for managing user security data stored in a database of a communications system. In the method a user equipment transmits a request to manage the user security data, the user equipment is authenticated, after which an application entity can manage user security data in the database that associates with the user by communicating data between the application entity and the database connected to the communications system.
摘要翻译: 一种用于管理存储在通信系统的数据库中的用户安全数据的方法和装置。 在该方法中,用户设备发送管理用户安全数据的请求,认证用户设备,之后应用实体可以通过在应用实体和数据库之间传送数据来管理数据库中与用户相关联的用户安全数据 连接到通信系统。
-
公开(公告)号:US07251733B2
公开(公告)日:2007-07-31
申请号:US10601337
申请日:2003-06-20
IPC分类号: G06F1/24
CPC分类号: H04L29/06 , H04L63/10 , H04L63/12 , H04L67/04 , H04L69/329
摘要: A method in a system for transferring accounting information, a system for transferring accounting information, a method in a terminal, a terminal, a method in an Extensible Authentication Protocol (EAP) service authorization server, an EAP service authorization server, a computer program, an Extensible Authentication Protocol response (EAP-response) packet, wherein the method:meters data related to a service used by at least one terminal,provides the metered data as accounting information to at least one Extensible Authentication Protocol (EAP) service authorization server,sends, by means of an Extensible Authentication Protocol request (EAP-request), a service authorization request from the at least one EAP service authorization server to the at least one terminal,digitally signs accounting information, in the at least one terminal,includes, at the at least one terminal, the digitally signed accounting information in an Extensible Authentication Protocol response (EAP-response), andsends the digitally signed accounting information to an AAA-server.
摘要翻译: 用于传送会计信息的系统中的方法,用于传送会计信息的系统,终端中的方法,终端,可扩展认证协议(EAP)服务授权服务器中的方法,EAP服务授权服务器,计算机程序, 可扩展认证协议响应(EAP-响应)分组,其中所述方法:与由至少一个终端使用的服务有关的计量数据将计量数据作为计费信息提供给至少一个可扩展认证协议(EAP)服务授权服务器, 通过可扩展认证协议请求(EAP请求),从所述至少一个EAP服务授权服务器向所述至少一个终端发送对所述至少一个终端中的计费信息进行数字签名的服务授权请求, 在至少一个终端,在可扩展认证协议响应(EAP响应)中的数字签名的计费信息, 并将数字签名的计费信息发送给AAA服务器。
-
9.发明申请Re-Keying in a Generic Bootstrapping Architecture Following Handover of a Mobile Terminal 审中-公开重新键入移动终端切换后的通用引导体系结构公开(公告)号:US20070124587A1
公开(公告)日:2007-05-31
申请号:US11533861
申请日:2006-09-21
IPC分类号: H04L9/00
CPC分类号: H04L9/3271 , H04L9/0844 , H04L9/321 , H04L63/061 , H04L63/068 , H04L63/162 , H04L2209/80 , H04L2463/061 , H04W12/04031 , H04W12/06
摘要: An apparatus for re-keying a mobile terminal in a foreign network includes a processor. The processor is configured to receive, at the apparatus which is physically located in the foreign network, a request for re-keying from the mobile terminal in the foreign network. The processor is also configured to translate the request for transmission to a home network of the mobile terminal and to transmit the translated request to a bootstrapping server function of the home network.
摘要翻译: 用于将外部网络中的移动终端重新键入的装置包括处理器。 处理器被配置为在物理上位于外部网络的设备处接收来自外部网络中的移动终端的重新加密的请求。 所述处理器还被配置为将所述传输请求转换到所述移动终端的归属网络,并将所转换的请求传送到所述家庭网络的引导服务器功能。
-
公开(公告)号:US20060230436A1
公开(公告)日:2006-10-12
申请号:US11184931
申请日:2005-07-20
申请人: Silke Holtmanns , Pekka Laitinen
发明人: Silke Holtmanns , Pekka Laitinen
IPC分类号: H04L9/32 , H04L9/00 , G06K9/00 , G06F15/16 , H04K1/00 , G06F17/30 , G06F7/04 , G06F7/58 , G06K19/00
CPC分类号: H04L63/062 , H04W12/04
摘要: A method and apparatus provide generic mechanism for a network application server. A receiver receives a request from a user equipment to provide authentication information to a network application function. A determining unit determines a key of a generic authentication architecture to integrate additional network application servers by extending an existing standard for user security settings. A providing unit provides the authentication information to the network application function.
-
-
-
-
-
-
-
-
-
搜索结果
49 条记录 (耗时 0.018 秒)
