Authenticating an application
    1.
    发明授权
    Authenticating an application 有权
    验证应用程序

    公开(公告)号:US08522025B2

    公开(公告)日:2013-08-27

    申请号:US11582380

    申请日:2006-10-18

    IPC分类号: H04L9/32

    摘要: One aspect of the invention discloses a method of authenticating an application. The method comprising performing, with a server application, bootstrapping procedures between the server application and a bootstrapping server function; deriving a shared key based on at least a key received from the bootstrapping server function server during the bootstrapping procedures and a network application function identifier; providing an application with a bootstrapping transaction identifier, the bootstrapping transaction identifier being received from the bootstrapping server function server during the bootstrapping procedures; receiving a response from the application; and authenticating the application by validating the response with the shared key.

    摘要翻译: 本发明的一个方面公开了一种认证应用的方法。 该方法包括与服务器应用程序一起执行服务器应用程序和自举服务器功能之间的引导过程; 在所述引导过程期间至少基于从所述引导服务器功能服务器接收的密钥和网络应用功能标识符导出共享密钥; 向应用程序提供引导事务标识符,在引导过程期间从引导服务器功能服务器接收引导事务标识符; 从应用程序接收响应; 并通过使用共享密钥验证响应来认证应用程序。

    Authenticating an application
    2.
    发明申请
    Authenticating an application 有权
    验证应用程序

    公开(公告)号:US20070234041A1

    公开(公告)日:2007-10-04

    申请号:US11582380

    申请日:2006-10-18

    IPC分类号: H04L9/00

    摘要: One aspect of the invention discloses a method of authenticating an application. The method comprising performing, with a server application, bootstrapping procedures between the server application and a bootstrapping server function; deriving a shared key based on at least a key received from the bootstrapping server function server during the bootstrapping procedures and a network application function identifier; providing an application with a bootstrapping transaction identifier, the bootstrapping transaction identifier being received from the bootstrapping server function server during the bootstrapping procedures; receiving a response from the application; and authenticating the application by validating the response with the shared key.

    摘要翻译: 本发明的一个方面公开了一种认证应用的方法。 该方法包括与服务器应用程序一起执行服务器应用程序和自举服务器功能之间的引导过程; 在所述引导过程期间至少基于从所述引导服务器功能服务器接收的密钥和网络应用功能标识符导出共享密钥; 向应用程序提供引导事务标识符,在引导过程期间从引导服务器功能服务器接收引导事务标识符; 从应用程序接收响应; 并通过使用共享密钥验证响应来认证应用程序。

    Method for producing key material
    3.
    发明申请
    Method for producing key material 有权
    生产关键材料的方法

    公开(公告)号:US20060271785A1

    公开(公告)日:2006-11-30

    申请号:US11227235

    申请日:2005-09-16

    IPC分类号: H04L9/00

    摘要: This invention relates to security procedures in a communication system, specifically to production of key material. The invention provides a method for producing key material in a highly secure way for use in communication with a local network of a company. The method uses authentication information obtained from the communication system and information exchanged locally between a mobile station and the authentication systems of the company to produce a communication key for use in authentication procedures or e.g. for signing and/or encrypting data.

    摘要翻译: 本发明涉及通信系统中的安全程序,具体涉及关键材料的生产。 本发明提供了一种以高度安全的方式生产关键材料的方法,用于与公司的本地网络通信。 该方法使用从通信系统获得的认证信息和在移动站和公司的认证系统之间本地交换的信息,以产生用于认证过程或例如认证过程的通信密钥。 用于签名和/或加密数据。

    Management of user data
    7.
    发明授权
    Management of user data 有权
    管理用户数据

    公开(公告)号:US08626708B2

    公开(公告)日:2014-01-07

    申请号:US11248139

    申请日:2005-10-13

    IPC分类号: G06F7/00 G06F17/00

    CPC分类号: H04W12/06 H04L63/08 H04W8/18

    摘要: A method and arrangements for managing user data stored in a database of a communications system where the database is managed by a main controller is disclosed. In the method a user is first authenticated, where after an application entity can manage user data in the database that associates with the user and an application by communicating data between the application entity and a second entity connected to the communications system.

    摘要翻译: 公开了一种用于管理存储在数据库由主控制器管理的通信系统的数据库中的用户数据的方法和装置。 在该方法中,首先认证用户,其中在应用实体可以通过在应用实体和连接到通信系统的第二实体之间传送数据来管理数据库中与用户和应用相关联的用户数据之后。

    Security level establishment under generic bootstrapping architecture
    8.
    发明授权
    Security level establishment under generic bootstrapping architecture 有权
    通用引导架构下的安全级别建立

    公开(公告)号:US08037522B2

    公开(公告)日:2011-10-11

    申请号:US11727186

    申请日:2007-03-23

    IPC分类号: G06G7/04

    摘要: Security level establishment for an application in a terminal equipment under a generic bootstrapping architecture offering a plurality of different bootstrapping mechanisms, the terminal equipment comprising a credential establishment entity and an application entity, comprising a request for a credential for the application from the application entity to the credential establishment entity and a response from the credential establishment entity to the application entity, wherein the response comprises the requested credential and credential quality information.

    摘要翻译: 提供多个不同引导机制的通用引导架构下的终端设备中的应用的安全级别建立,所述终端设备包括凭证建立实体和应用实体,包括从应用实体到应用的凭证的请求, 证书建立实体和从凭证建立实体到应用实体的响应,其中响应包括所请求的凭证和凭证质量信息。

    Methods, system and mobile device capable of enabling credit card personalization using a wireless network
    9.
    发明授权
    Methods, system and mobile device capable of enabling credit card personalization using a wireless network 有权
    能够使用无线网络实现信用卡个性化的方法,系统和移动设备

    公开(公告)号:US07628322B2

    公开(公告)日:2009-12-08

    申请号:US11237811

    申请日:2005-09-28

    IPC分类号: H04K1/00

    摘要: Methods of creating a secure channel over which credit card personalization data can be transmitted over the air (OTA) are provided. In particular, Generic Authentication Architecture (GAA) may be used to establish a secure communication channel between the user equipment (UE) and a personalization application server or bureau acting as a network application function (NAF) server. An user equipment, personalization application service (e.g., a NAF server), a system embodying a personalization application server and an user equipment, and a computer program product are also provided for creating a secure channel, such as via GAA, over which credit card personalization data can be transmitted OTA.

    摘要翻译: 提供了通过空中传输信用卡个性化数据(OTA)的安全信道的创建方法。 特别地,通用认证架构(GAA)可以用于在用户设备(UE)和作为网络应用功能(NAF)服务器的个人化应用服务器或局之间建立安全通信信道。 还提供了用户设备,个性化应用服务(例如,NAF服务器),体现个性化应用服务器和用户设备的系统以及计算机程序产品,用于创建诸如通过GAA的安全信道,信用卡 个性化数据可以传输OTA。

    User equipment credential system
    10.
    发明授权
    User equipment credential system 有权
    用户设备凭证系统

    公开(公告)号:US09485232B2

    公开(公告)日:2016-11-01

    申请号:US11819733

    申请日:2007-06-28

    摘要: A user equipment in a communications system, the user equipment comprising: a memory arranged to store at least one identifier associated with the user equipment; a transceiver arranged to communicate with a node in the communication system, wherein the transceiver is arranged to receive the at least one identifier from the node in the communications system, wherein the at least one identifier is used by the user equipment to authenticate the user equipment to at least one further node in the communications system.

    摘要翻译: 一种通信系统中的用户设备,所述用户设备包括:存储器,被布置为存储与所述用户设备相关联的至少一个标识符; 布置成与所述通信系统中的节点进行通信的收发机,其中所述收发器被布置为从所述通信系统中的所述节点接收所述至少一个标识符,其中所述至少一个标识符被所述用户设备用于认证所述用户设备 到通信系统中的至少一个另外的节点。