公开(公告)号：US20230413055A1

公开(公告)日：2023-12-21

申请号：US18458796

申请日：2023-08-30

Applicant: ZTE Corporation

Inventor： Jin PENG ,  Shilin YOU ,  Yuze LIU ,  Zhen XING ,  Zhaoji LIN

IPC: H04W12/106 ,  H04W12/041 ,  H04W48/16

CPC classification number: H04W12/106 ,  H04W12/041 ,  H04W48/16

Abstract: This patent document describes, among other things, techniques, and apparatuses for a security method of discovery in proximity-based services. In one aspect, a method of wireless communication is disclosed. The method includes transmitting, by a wireless device to a first network function, an encrypted and integrity-protected message, wherein the encrypted and integrity-protected message is encrypted using a first key that is derived from a second key, wherein the wireless device has established the second key using a communication with a second network function, and wherein the encrypted and integrity-protected message is obtained by encrypting and integrity-protecting a message.

公开(公告)号：US20230048689A1

公开(公告)日：2023-02-16

申请号：US16332681

申请日：2017-07-25

Applicant: ZTE CORPORATION

Inventor： Shilin YOU ,  Jiyan CAI ,  Shuang LIANG ,  Jin PENG ,  Zhaoji LIN ,  Xiaowu ZHAO

IPC: H04W12/02 ,  H04W12/069 ,  H04W12/72

Abstract: Embodiments of the present disclosure provide a network access authentication processing method and device. The method includes: receiving a confirmation message sent by user equipment, the confirmation message carrying a first signature token generated by the user equipment according to a first Privacy enhanced Mobile Subscriber Identifier (PMSI); verifying whether the first signature token is valid; and when the first signature token is invalid, obtaining the PMSI to perform network access authentication on the user equipment.

公开(公告)号：US20210345116A1

公开(公告)日：2021-11-04

申请号：US17375829

申请日：2021-07-14

Applicant: ZTE Corporation

Inventor： Shilin YOU ,  Zhenhua XIE ,  Jin PENG ,  Wantao YU ,  Zhaoji LIN

IPC: H04W12/122 ,  H04W12/0431 ,  H04W12/03 ,  H04W12/06 ,  H04W12/75

Abstract: Methods, systems, and devices related to related to digital wireless communication, and more specifically, to techniques related to securing a user authentication procedure. In one exemplary aspect, a method for wireless communication includes transmitting an authentication message from a network node. The method also includes determining a failure value indicating a reason for failure of the authentication message. The method also includes encrypting the failure value and an identifier. The method also includes transmitting an encrypted response message to the network node. In another exemplary aspect, a method for wireless communication includes transmitting an authentication message to a terminal. The method also includes receiving an encrypted response message from the terminal. The method also includes decrypting the encrypted response message to determine the failure value and the indicator.

公开(公告)号：US20170295484A1

公开(公告)日：2017-10-12

申请号：US15503721

申请日：2014-11-12

Applicant: ZTE CORPORATION

Inventor： Shilin YOU ,  Jiyan CAI ,  Zaifeng ZONG ,  Shuang LIANG ,  Zhaoji LIN ,  Jin PENG ,  Yang LI

IPC: H04W8/00 ,  H04W48/10 ,  H04W4/00

CPC classification number: H04W8/005 ,  H04L67/16 ,  H04W4/80 ,  H04W48/10 ,  H04W92/18

Abstract: The present disclosure discloses a near field communication discovery method, apparatus and system. Herein, the method includes: a discovery terminal receiving discovery information allocated by a network side to a discovered terminal, herein the discovery information includes a discovery identity, and the discovery information is transmitted by the network side to the discovered terminal; the discovery terminal performing paging or broadcasting using the discovery identity; and the discovery terminal receiving a response returned by the discovered terminal to determine that the discovered terminal is discovered.

公开(公告)号：US20240305981A1

公开(公告)日：2024-09-12

申请号：US18646542

申请日：2024-04-25

Applicant: ZTE CORPORATION

Inventor： Yuze LIU ,  Shilin YOU ,  Jin PENG ,  Zhen XING ,  Zhaoji LIN

IPC: H04W12/06 ,  H04W12/0431 ,  H04W12/72

CPC classification number: H04W12/06 ,  H04W12/0431 ,  H04W12/72

Abstract: Presented are systems, methods, apparatuses, or computer-readable media for authenticating remote wireless communication devices. An authentication server function (AUSF) may send, to a unified data management (UDM), a request for authentication vectors (AV) in association with a remote wireless communication device seeking authorization to access a network via a relay wireless communication device. The request may include an indicator to indicate to the UDM to bypass storing information related to the AUSF. The AUSF may receive, from the UDM, the AV in response to the request.

公开(公告)号：US20220345307A1

公开(公告)日：2022-10-27

申请号：US17858694

申请日：2022-07-06

Applicant: ZTE Corporation

Inventor： Shilin YOU ,  Jiyan CAI ,  Yuze LIU ,  Jin PENG ,  Wantao YU ,  Zhaoji LIN ,  Yuxin MAO ,  Jianhua LIU

IPC: H04L9/08 ,  H04L9/40 ,  H04W12/041

Abstract: This disclosure generally relates to encrypted communication between terminal devices and service applications via a communication network. Such encrypted communication may be based on various hierarchical levels of encryption keys that are generated and managed by the communication network. Such encrypted communication and key management may be provided by the communication network to the terminal devices as a service that can be subscribed to. The various levels of encryption keys may be managed to improve flexibility of the communication network and to reduce potential security breaches.

公开(公告)号：US20220295269A1

公开(公告)日：2022-09-15

申请号：US17826914

申请日：2022-05-27

Applicant: ZTE Corporation

Inventor： Shilin YOU ,  Hongjun LIU ,  Jiyan CAI ,  Zaifeng ZONG ,  Jin PENG ,  Zhaoji LIN ,  Yunyin ZHANG

IPC: H04W12/03 ,  H04W12/02 ,  H04W12/069 ,  H04W12/75 ,  H04W12/72 ,  H04W12/06 ,  H04W12/08

Abstract: Embodiments of the prevent invention provide a network access authentication method and device. The method comprises: receiving an authentication request message sent by a first serving network, wherein the authentication request message carries a user equipment pseudonym identifier generated by a user equipment; determining whether a local user equipment pseudonym identifier is asynchronous with the user equipment pseudonym identifier generated by the user equipment; and obtaining, if the determination result is yes, an encrypted international mobile subscriber identity (IMSI) to carry out network access authentication on the user equipment. The embodiments of the present invention can solve the problem that a network access process in the related art does not provide a processing method for the case where the user equipment pseudonym identifier in the user equipment is asynchronous with the user equipment pseudonym identifier in a home network.

公开(公告)号：US20220104012A1

公开(公告)日：2022-03-31

申请号：US17423629

申请日：2020-01-19

Applicant: ZTE Corporation

Inventor： Jin PENG ,  Shilin YOU ,  Zhenhua XIE ,  Wantao YU ,  Zhaoji LIN ,  Wei CAO

IPC: H04W12/06 ,  H04W12/0431 ,  H04W12/122 ,  H04W12/106

Abstract: Provided are an authentication processing method and device, a storage medium and an electronic device, the method includes: a terminal receives a first authentication request message from a network side; the terminal determines whether the number of times of receiving the first authentication request message is greater than a predetermined threshold; and when the number of times is greater than the predetermined threshold, the terminal stops responding to the first authentication request message.

公开(公告)号：US20210306855A1

公开(公告)日：2021-09-30

申请号：US17289968

申请日：2019-08-07

Applicant: ZTE CORPORATION

Inventor： Shilin YOU ,  Jiyan CAI ,  Jianhua LIU ,  Zhaoji LIN ,  Jin PENG ,  Boshan ZHANG

IPC: H04W12/06 ,  G06F21/57 ,  H04W12/72

Abstract: proviced is an authentication method based on a GBA, and the method includes: a BSF receives an initialization request message sent by a UE, wherein the initialization request message carries a first identifier of the UE, and the first identifier comprises at least one of the following: a SUCI, an identifier converted from the SUCI, and a TMPI associated with the subscriber identity; the BSF acquires an AV of the UE according to the first ID; the BSF completes GBA authentication with the UE according to the acquired AV. In this way, the privacy of the SUPI is protected for the UE, and the SUCI or the identifier converted from the SUCI is used to perform the bootstrapping process of the GBA, thereby improving the security of the GBA authentication process.

公开(公告)号：US20240137757A1

公开(公告)日：2024-04-25

申请号：US18240998

申请日：2023-08-30

Applicant: ZTE CORPORATION

Inventor： Yuze LIU ,  Shilin YOU ,  Jin PENG ,  Zhen XING ,  Zhaoji LIN

IPC: H04W12/041 ,  H04W12/0433 ,  H04W12/06

CPC classification number: H04W12/041 ,  H04W12/0433 ,  H04W12/06

Abstract: Presented are systems and methods for authorization of proximity based services. A first wireless communication device may send, to a second wireless communication device, a message to access a network via the second wireless communication device as a relay node, using at least one authentication and key management for applications (AKMA) service. The message may include an AKMA key identifier (A-KID) and a freshness parameter. The first wireless communication device may generate a validation token to validate against another validation token of the second wireless communication device. The first wireless communication device may generate the validation token using the freshness parameter and a proximity based service function (PBSF) key (KPBSF).