公开(公告)号：US20100075663A1

公开(公告)日：2010-03-25

申请号：US12447422

申请日：2007-10-29

申请人： Sung-Cheol Chang ,  Min-Sik Seo ,  Chul-Sik Yoon

发明人： Sung-Cheol Chang ,  Min-Sik Seo ,  Chul-Sik Yoon

IPC分类号： H04W24/00 ,  H04W72/08 ,  H04B17/02

CPC分类号： H04L1/0026 ,  H04B7/2606 ,  H04L2001/0097 ,  H04W72/08

摘要： Provided is a method of reporting channel quality information in a wireless communication system. A relay station (RS) measures an uplink signal of a mobile station (MS) to obtain a measurement result, and transmits a report message including the measurement result and identification information of the MS to a base station (BS).

摘要翻译： 提供了一种在无线通信系统中报告信道质量信息的方法。 中继站（RS）测量移动站（MS）的上行链路信号以获得测量结果，并将包括测量结果和MS的识别信息的报告消息发送到基站（BS）。

公开(公告)号：US20100049858A1

公开(公告)日：2010-02-25

申请号：US12518177

申请日：2007-12-05

申请人： Chul Park ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Chul Park ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： G06F15/16

CPC分类号： H04W12/06

摘要： Provided is an initial access method for a broadband wireless access system. The initial access method is used between a portable subscriber station (PSS) and a radio access station (RAS) in the broadband wireless access system and includes an authentication operation and a default transport connection setting operation. In the initial access method, default information, which is required to register the PSS and to set default transport connection, is stored in an authentication authorization accounting (AAA) server, the default information is then transmitted to the RAS connected to the PSS in the authentication operation by the AAA server, and when the PSS is registered and the default transport connection is set, a message composed of parameters, which are required to register the PSS containing the default information and to set the default transport connection, is then transmitted to the PSS by the RAS. Accordingly, a simplified initial access procedure is achieved.

摘要翻译： 提供了一种用于宽带无线接入系统的初始接入方法。 在宽带无线接入系统中的便携式用户站（PSS）和无线接入站（RAS）之间使用初始接入方法，并且包括认证操作和默认传输连接设置操作。 在初始访问方式中，注册PSS和设置默认传输连接所需的默认信息存储在认证授权计费（AAA）服务器中，然后将默认信息发送到连接到PSS的RAS 由AAA服务器进行认证操作，并且当注册了PSS并且设置了默认传输连接时，将包含注册包含默认信息并设置默认传输连接的PSS所需的参数组成的消息被传送到 PSS由RAS。 因此，实现简化的初始访问过程。

公开(公告)号：US20080080713A1

公开(公告)日：2008-04-03

申请号：US10591625

申请日：2005-03-04

申请人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： H04L9/16 ,  H04L9/28

CPC分类号： H04L9/0822 ,  H04L9/0833 ,  H04L9/0891 ,  H04L63/068 ,  H04L2209/80 ,  H04W4/06 ,  H04W12/04 ,  H04W84/12

摘要： Disclosed is a traffic encryption key (TEK) management method for automatically generating a TEK for a multicast or broadcast service by a base station to periodically update a TEK used by a subscriber station. The base station transmits the first Key Update Command message for updating a group key encryption key (GKEK) for encrypting the TEK and the second Key Update Command message for updating the TEK to the subscriber station to update the TEK. The base station establishes an M & B TEK Grace Time which is different from a TEK Grace Time established by the subscriber station, transmits the first message including a new GKEK to the subscriber station through a primary management connection before the M & B TEK Grace Time, and transmits the second message including a new TEK encrypted with the new GKEK thereto through a broadcast connection after the M & B TEK Grace Time.

摘要翻译： 公开了一种用于由基站自动生成多播或广播服务的TEK以便周期性地更新用户台使用的TEK的流量加密密钥（TEK）管理方法。 基站向用户台发送用于更新用于加密TEK的组密钥加密密钥（GKEK）的第一密钥更新命令消息和用于更新TEK的第二密钥更新命令消息以更新TEK。 基站建立与用户台建立的TEK宽限时间不同的M＆B TEK宽限时间，在M＆B TEK宽限时间之前通过主管理连接将包含新GKEK的第一消息发送给用户站 并且在M＆B TEK宽限期之后通过广播连接发送包括用新GKEK加密的新TEK的第二消息。

公开(公告)号：US07978855B2

公开(公告)日：2011-07-12

申请号：US11908211

申请日：2005-10-27

申请人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： H04L9/12

CPC分类号： H04L9/3213 ,  H04L9/0825 ,  H04L9/0866 ,  H04L9/3271 ,  H04L63/06 ,  H04L63/0823 ,  H04L2209/56 ,  H04L2209/603 ,  H04L2209/80

摘要： The present invention relates to a method for allocating an authorization key identifier in a wireless portable Internet system. In a privacy key management version 2 (PKMv2) of the wireless portable Internet system, a base station generates PAK identifier, PMK identifier, and authorization key identifier for distinguishing a primary authorization key (PAK) shared by the base station and the subscriber station in an RSA-based authorization, a pairwise master key (PMK) shared by the base station and the subscriber station in an EAP-based authorization, and authorization keys generated by the PAK and the PMK. The base station transmits PAK identifier, PMK identifier, and authorization key identifier to the subscriber station and shares them with the subscriber station. Therefore, the base station and the subscriber station may easily distinguish more than 2 authorization-related keys. In addition, it is possible to transmit the signal message efficiently in the radio channel by reducing the sizes of the PAK identifier, PMK identifier, and authorization key identifier.

摘要翻译： 本发明涉及一种在无线便携式互联网系统中分配授权密钥标识符的方法。 在无线便携式因特网系统的隐私密钥管理版本2（PKMv2）中，基站生成PAK标识符，PMK标识符和授权密钥标识符，用于区分由基站和用户站共享的主授权密钥（PAK） 基于RSA的授权，基于EAP的授权中由基站和订户站共享的成对主密钥（PMK）以及由PAK和PMK生成的授权密钥。 基站向用户台发送PAK标识符，PMK标识符和授权密钥标识符，并与订户站共享。 因此，基站和用户站可以容易地区分超过2个授权相关的密钥。 此外，可以通过减小PAK标识符，PMK标识符和授权密钥标识符的大小来在无线电信道中有效地发送信号消息。

公开(公告)号：US07907733B2

公开(公告)日：2011-03-15

申请号：US10591625

申请日：2005-03-04

申请人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： H04K1/00 ,  H04L9/00 ,  H04L9/08

CPC分类号： H04L9/0822 ,  H04L9/0833 ,  H04L9/0891 ,  H04L63/068 ,  H04L2209/80 ,  H04W4/06 ,  H04W12/04 ,  H04W84/12

摘要： Disclosed is a traffic encryption key (TEK) management method for automatically generating a TEK for a multicast or broadcast service by a base station to periodically update a TEK used by a subscriber station. The base station transmits the first Key Update Command message for updating a group key encryption key (GKEK) for encrypting the TEK and the second Key Update Command message for updating the TEK to the subscriber station to update the TEK. The base station establishes an M & B TEK Grace Time which is different from a TEK Grace Time established by the subscriber station, transmits the first message including a new GKEK to the subscriber station through a primary management connection before the M & B TEK Grace Time, and transmits the second message including a new TEK encrypted with the new GKEK thereto through a broadcast connection after the M & B TEK Grace Time.

摘要翻译： 公开了一种用于由基站自动生成多播或广播服务的TEK以便周期性地更新用户台使用的TEK的流量加密密钥（TEK）管理方法。 基站向用户台发送用于更新用于加密TEK的组密钥加密密钥（GKEK）的第一密钥更新命令消息和用于更新TEK的第二密钥更新命令消息以更新TEK。 基站建立与用户台建立的TEK宽限时间不同的M＆B TEK宽限时间，在M＆B TEK宽限时间之前通过主管理连接将包含新GKEK的第一消息发送给用户站 并且在M＆B TEK宽限期之后通过广播连接发送包括用新GKEK加密的新TEK的第二消息。

公开(公告)号：US08479270B2

公开(公告)日：2013-07-02

申请号：US13155042

申请日：2011-06-07

申请人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： H04L9/32 ,  H04L9/28

CPC分类号： H04L9/3213 ,  H04L9/0825 ,  H04L9/0866 ,  H04L9/3271 ,  H04L63/06 ,  H04L63/0823 ,  H04L2209/56 ,  H04L2209/603 ,  H04L2209/80

摘要： A method and authentication apparatus for sharing information for identifying an Authorization Key (AK) with a Base Station (BS) in a subscriber station are provided. The method includes, in the subscriber station, sharing a root key with the BS by performing an authentication with the BS, sharing an AK derived from the root key with the BS, sharing an AK sequence number of the AK with the BS, and sharing an AK Identifier (AKID) of the AK with the BS. The AK sequence number is generated by a sequence number of the root key. The AKID is generated by a parameter including the AK, the AK sequence number, a Medium Access Control (MAC) address of the subscriber station, and a BS Identifier (BSID) of the BS.

摘要翻译： 提供了一种用于在订户站中用于与基站（BS）一起识别授权密钥（AK）的信息共享的方法和认证装置。 该方法包括在用户站中通过与BS进行认证与BS共享根密钥，与BS共享从根密钥导出的AK，与BS共享AK的AK序列号，并共享 AK的AK标识符（AKID）与BS。 AK序列号由根密钥的序列号生成。 AKID由包括用户站的AK，AK序列号，媒体访问控制（MAC）地址以及BS的BS标识符（BSID）的参数生成。

公开(公告)号：US20100061339A1

公开(公告)日：2010-03-11

申请号：US12514973

申请日：2007-05-07

申请人： Sung-Kyung Kim ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Sung-Kyung Kim ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： H04W4/00

CPC分类号： H04W36/0005 ,  H04W84/005

摘要： There is provided a handover method by a mobile relay station (MRS) or base station (BS) so as to effectively perform a handover of the MRS and mobile stations (MSs) in an environment in which data is communicated through a relay of the MRS. There is also provided a handover method capable of securing backward compatibility of an MS during a handover. There is provided a handover method in which an MRS is considered. It is possible to improve the efficiency of the handover by allowing handovers of the MRS and MSs to which the MRS relays to be initiated by the MRS or BS. It is possible to secure the backward compatibility of the MSs by allowing the MRS to generate and manage a mapping relation between information on communication identifiers (CIDs) of the MSs, which are changed during the handover, and information on previous CIDs of the MSs.

摘要翻译： 提供了一种移动中继站（MRS）或基站（BS）的切换方法，以便在通过MRS的中继站传送数据的环境中有效地执行MRS和移动站（MS）的切换 。 还提供了一种能够在切换期间确保MS的向后兼容性的切换方法。 提供了考虑MRS的切换方法。 通过允许由MRS或BS发起MRS中继的MRS和MS的切换，可以提高切换的效率。 通过允许MRS生成和管理在切换期间改变的MS的通信标识符（CID）的信息与MS之前的CID的信息之间的映射关系，可以确保MS的向后兼容性。

公开(公告)号：US20090164788A1

公开(公告)日：2009-06-25

申请号：US12297170

申请日：2007-04-19

申请人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： H04L9/32 ,  H04L9/06

CPC分类号： H04L9/0844 ,  H04L9/0891 ,  H04L63/061 ,  H04L63/123 ,  H04L63/162 ,  H04L2209/80 ,  H04W12/04 ,  H04W36/0038

摘要： The present invention relates to a method of generating an authorization key for a wireless communication system. In the wireless communication system, when an authorization key is generated after authentication between a subscriber station and base station is successfully performed, the authorization key is generated using a value indicating the number of generation times of the authorization key. Subsequently, the subscriber station and the base station confirm through a predetermined procedure whether or not they share the same authorization key and the same number of generation times of the authorization key. According to such a method of generating an authorization key, an authentication function for messages to be transmitted and received between the subscriber station and the base station can be efficiently supported. Further, replay attacks by malignant users can be powerfully protected against.

摘要翻译： 本发明涉及一种生成无线通信系统的授权密钥的方法。 在无线通信系统中，当在用户站和基站之间的认证成功执行之后生成授权密钥时，使用指示授权密钥的生成次数的值来生成授权密钥。 随后，用户站和基站通过预定的过程来确认它们是否共享相同的授权密钥和相同数量的授权密钥的生成时间。 根据这种生成授权密钥的方法，可以有效地支持在用户站和基站之间发送和接收的消息的认证功能。 此外，恶意用户的重播攻击可以得到有力的保护。

公开(公告)号：US20090019284A1

公开(公告)日：2009-01-15

申请号：US11817859

申请日：2006-03-09

申请人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： H04L9/00

CPC分类号： H04L9/0844 ,  H04L9/3249 ,  H04L9/3273 ,  H04L63/162 ,  H04L2209/80 ,  H04L2463/061 ,  H04W12/003 ,  H04W12/00516 ,  H04W12/06

摘要： An authentication method and authorization key generation method in a wireless portable Internet system is provided. In a wireless portable Internet system, the base station and the subscriber station share an authorization key when an authentication process is performed according to a predetermined authentication method negotiated therebetween. Particularly, the subscriber station and the base station perform an additional authentication process including an authorization key-related parameter and a security-related parameter and exchanges a security algorithm and SA (Security Association) information. In addition, an authorization key is derived from one or more basic key obtained through various authentication processes as an input key of an authorization key generation algorithm. Therefore, reliability of a security related parameter received from the receiving node can be enhanced and an authorization key having a hierarchical and secure structure can be provided.

摘要翻译： 提供了一种无线便携式因特网系统中的认证方法和授权密钥生成方法。 在无线便携式因特网系统中，当根据在它们之间协商的预定验证方法执行认证处理时，基站和用户站共享授权密钥。 特别地，用户站和基站执行包括授权密钥相关参数和安全相关参数的附加认证处理，并交换安全算法和SA（安全关联）信息。 此外，从通过各种认证处理获得的一个或多个基本密钥导出授权密钥作为授权密钥生成算法的输入密钥。 因此，可以增强从接收节点接收到的与安全性相关的参数的可靠性，并且可以提供具有分级和安全结构的授权密钥。

公开(公告)号：US20080192931A1

公开(公告)日：2008-08-14

申请号：US11908211

申请日：2005-10-27

申请人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

发明人： Seok-Heon Cho ,  Sung-Cheol Chang ,  Chul-Sik Yoon

IPC分类号： H04L9/32 ,  H04L9/30 ,  H04L9/28

CPC分类号： H04L9/3213 ,  H04L9/0825 ,  H04L9/0866 ,  H04L9/3271 ,  H04L63/06 ,  H04L63/0823 ,  H04L2209/56 ,  H04L2209/603 ,  H04L2209/80

摘要： The present invention relates to a method for allocating an authorization key identifier in a wireless portable Internet system. In a privacy key management version 2 (PKMv2) of the wireless portable Internet system, a base station generates PAK identifier, PMK identifier, and authorization key identifier for distinguishing a primary authorization key (PAK) shared by the base station and the subscriber station in an RSA-based authorization, a pairwise master key (PMK) shared by the base station and the subscriber station in an EAP-based authorization, and authorization keys generated by the PAK and the PMK. The base station transmits PAK identifier, PMK identifier, and authorization key identifier to the subscriber station and shares them with the subscriber station. Therefore, the base station and the subscriber station may easily distinguish more than 2 authorization-related keys. In addition, it is possible to transmit the signal message efficiently in the radio channel by reducing the sizes of the PAK identifier, PMK identifier, and authorization key identifier.

摘要翻译： 本发明涉及一种在无线便携式互联网系统中分配授权密钥标识符的方法。 在无线便携式因特网系统的隐私密钥管理版本2（PKMv2）中，基站生成PAK标识符，PMK标识符和授权密钥标识符，用于区分由基站和用户站共享的主授权密钥（PAK） 基于RSA的授权，基于EAP的授权中由基站和订户站共享的成对主密钥（PMK）以及由PAK和PMK生成的授权密钥。 基站向用户台发送PAK标识符，PMK标识符和授权密钥标识符，并与订户站共享。 因此，基站和用户站可以容易地区分超过2个授权相关的密钥。 此外，可以通过减小PAK标识符，PMK标识符和授权密钥标识符的大小来在无线电信道中有效地发送信号消息。