专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2009038831A3 METHODS AND APPARATUS FOR PROVIDING PMIP KEY HIERARCHY IN WIRELESS COMMUNICATION NETWORKS 审中-公开
标题翻译：用于在无线通信网络中提供PMIP密钥层级的方法和设备
公开(公告)号：WO2009038831A3
公开(公告)日：2009-05-14
申请号：PCT/US2008065562
申请日：2008-06-02
申请人： QUALCOMM INC , NARAYANAN VIDYA , HSU RAYMOND TAH-SHENG , DONDETI LAKSHMINATH REDDY , WANG JUN , ULUPINAR FATIH
发明人： NARAYANAN VIDYA , HSU RAYMOND TAH-SHENG , DONDETI LAKSHMINATH REDDY , WANG JUN , ULUPINAR FATIH
IPC分类号： H04L29/06
CPC分类号： H04L63/06 , H04L9/0836 , H04L2209/76 , H04L2209/80 , H04W12/04 , H04W12/06 , H04W80/04 , H04W88/02
摘要： A method is provided for securing a PMIP tunnel between a serving gateway and a new access node through which an access terminal communicates. A PMIP key hierarchy unique to each access terminal is maintained by the gateway. The gateway uses a first node key to secure PMIP tunnels when authentication of the access terminal has been performed. A PMIP key is generated based on the first node key and the PMIP key is sent to the new access node to assist in establishing and securing a PMIP tunnel between the gateway and the new access node. Otherwise, when authentication of the access terminal has not been performed, the gateway generates a second node key and sends it to an intermediary network node which then generates and sends a PMIP key to the new access node. This second key is then used to secure the PMIP tunnel.
摘要翻译：提供了一种用于保护服务网关与接入终端通信所通过的新接入节点之间的PMIP隧道的方法。网关维护每个接入终端唯一的PMIP密钥层次结构。当执行接入终端的认证时，网关使用第一节点密钥来保护PMIP隧道。基于第一节点密钥生成PMIP密钥，并且PMIP密钥被发送到新接入节点，以协助建立和保护网关与新接入节点之间的PMIP隧道。否则，当没有执行接入终端的认证时，网关生成第二节点密钥并将其发送到中间网络节点，中间网络节点然后生成并向新接入节点发送PMIP密钥。然后使用第二个密钥来保护PMIP隧道。

2. 发明申请

WO2007121190A3 METHOD AND APPARATUS FOR BINDING MULTIPLE AUTHENTICATIONS 审中-公开
标题翻译：用于绑定多个认证的方法和装置
公开(公告)号：WO2007121190A3
公开(公告)日：2008-02-07
申请号：PCT/US2007066344
申请日：2007-04-10
申请人： QUALCOMM INC , DONDETI LAKSHMINATH REDDY , NARAYANAN VIDYA
发明人： DONDETI LAKSHMINATH REDDY , NARAYANAN VIDYA
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/0815 , H04L63/10 , H04L63/14 , H04L63/1466
摘要： Techniques for binding multiple authentications for a peer are described. In one design, multiple authentications for the peer may be bound based on a unique identifier for the peer. The unique identifier may be a pseudo-random number and may be exchanged securely between the peer, an authentication server, and an authenticator in order to prevent a man-in-the-middle attack. Data for all authentications bound by the unique identifier may be exchanged securely based on one or more cryptographic keys generated by all or a subset of these authentications. In another design, multiple levels of security may be used for multiple authentications for a peer. The peer may perform a first authentication with a first authentication server and obtain a first cryptographic key and may also perform a second authentication with the first authentication server or a second authentication server and obtain a second cryptographic key. The peer may thereafter securely exchange data using the two keys using nested security.
摘要翻译：描述用于绑定对等体的多个认证的技术。在一种设计中，可以基于对等体的唯一标识符来绑定对等体的多个认证。唯一标识符可以是伪随机数，并且可以在对等体，认证服务器和认证者之间安全地进行交换，以防止中间人攻击。基于唯一标识符所绑定的所有认证的数据可以基于由这些认证的全部或一部分生成的一个或多个密码密钥进行安全交换。在另一种设计中，可以将多级安全性用于对等体的多个认证。对等体可以执行与第一认证服务器的第一认证并获得第一密码密钥，并且还可以对第一认证服务器或第二认证服务器执行第二认证，并获得第二密码密钥。然后，对等体可以使用嵌套的安全性使用两个密钥安全地交换数据。

3. 发明申请

WO2008024999A3 SYSTEMS AND METHODS FOR KEY MANAGEMENT FOR WIRELESS COMMUNICATIONS SYSTEMS 审中-公开
标题翻译：无线通信系统的关键管理系统与方法
公开(公告)号：WO2008024999A3
公开(公告)日：2008-05-15
申请号：PCT/US2007076800
申请日：2007-08-24
申请人： QUALCOMM INC , NARAYANAN VIDYA , DONDETI LAKSHMINATH REDDY , AGASHE PARAG ARUN , BENDER PAUL E
发明人： NARAYANAN VIDYA , DONDETI LAKSHMINATH REDDY , AGASHE PARAG ARUN , BENDER PAUL E
IPC分类号： H04L29/06 , H04W12/04 , H04W36/00
CPC分类号： H04L63/062 , H04L9/0844 , H04L9/0891 , H04L2209/80 , H04L2463/061 , H04W12/04 , H04W36/08
摘要： A novel key management approach is provided for securing communication handoffs between an access terminal (118) and two access points (110,112). This approach provides for securely handing off communications between an access terminal and access point without risking exposure a master key for the access terminal. Temporary master keys (I-MK) are derived for low latency handoffs and secure authentication between a new access point (112) and the access terminal! In one aspect, a distributive key management scheme is provided in which a current access point (110) generates a new security key (based on its own security key) that is used by the next access point with which an access terminal communicates. In another aspect, a centralized key management scheme is provided in which a central authenticator (120) maintains, generates, and distributes new security keys (based on a master security key associated with the access terminal) to access points.
摘要翻译：提供了一种新颖的密钥管理方法，用于保护接入终端（118）和两个接入点（110,112）之间的通信切换。这种方法提供了安全地切断接入终端和接入点之间的通信，而不会冒着接入终端的主密钥的风险。导出临时主密钥（I-MK）用于低延迟切换和新接入点（112）与接入终端之间的安全认证！一方面，提供了一种分配密钥管理方案，其中当前接入点（110）生成由接入终端与之通信的下一个接入点使用的新的安全密钥（基于其自己的安全密钥）。在另一方面，提供一种集中式密钥管理方案，其中中央认证器（120）维护，生成和分发新的安全密钥（基于与接入终端相关联的主安全密钥）到接入点。

4. 发明申请

WO2010075338A3 SECURE NODE IDENTIFIER ASSIGNMENT IN A DISTRIBUTED HASH TABLE FOR PEER-TO-PEER NETWORKS 审中-公开
标题翻译：安全的节点标识符分配在对等网络的分布式散列表中
公开(公告)号：WO2010075338A3
公开(公告)日：2010-10-07
申请号：PCT/US2009069113
申请日：2009-12-22
申请人： QUALCOMM INC , XIAO LU , NARAYANAN VIDYA , HARDIE EDWARD THOMAS LINGHAM , JAYARAM RANJITH S , SUBRAMANIAN RAMACHANDRAN , DONDETI LAKSHMINATH REDDY
发明人： XIAO LU , NARAYANAN VIDYA , HARDIE EDWARD THOMAS LINGHAM , JAYARAM RANJITH S , SUBRAMANIAN RAMACHANDRAN , DONDETI LAKSHMINATH REDDY
IPC分类号： H04L29/06 , H04L29/12
CPC分类号： H04L63/126 , H04L63/1458 , H04L63/1466 , H04L67/104 , H04L67/1046 , H04L67/1057 , H04L2463/142
摘要： A multi-party commitment method is provided whereby a joining node uses contributions provided by contributor nodes in a peer-to-peer overlay network to generate a node identifier. The joining node generates a first contribution and sends a join request to an introducer node (or a plurality of contributor nodes), where the join request seeks to obtain one or more contributions for generating the node identifier within an identifier space of the overlay network. A hash of the first contribution may be included as part of the join request. In response, the joining node may receive a plurality of contributions, wherein the contributions are bound to each other and the first contribution by a prior external multi-node commitment operation. The joining node can then generate its node identifier as a function of the first contribution and the received contributions. Consequently, collusion between nodes and malicious manipulation during ID generation can be frustrated.
摘要翻译：提供多方承诺方法，由此加入节点使用由对等覆盖网络中的贡献者节点提供的贡献来生成节点标识符。加入节点生成第一贡献并向引导者节点（或多个贡献者节点）发送加入请求，其中加入请求试图获得用于在覆盖网络的标识符空间内生成节点标识符的一个或多个贡献。第一个贡献的散列可以作为加入请求的一部分包含在内。作为响应，加入节点可以接收多个贡献，其中贡献彼此相关并且第一贡献通过先前的外部多节点承诺操作。随后加入节点可以根据第一贡献和接收到的贡献生成其节点标识符。因此，ID生成期间节点之间的串通和恶意操作可能会受挫。

5. 发明申请

WO2009155567A3 METHODS AND APPARATUS FOR EVENT DISTRIBUTION AND ROUTING IN PEER-TO-PEER OVERLAY NETWORKS 审中-公开
标题翻译：在对等网络中进行事件分发和路由的方法和装置
公开(公告)号：WO2009155567A3
公开(公告)日：2010-04-01
申请号：PCT/US2009048044
申请日：2009-06-19
申请人： QUALCOMM INC , JAYARAM RANJITH , HARDIE EDWARD THOMAS LINGHAM , DONDETI LAKSHMINATH REDDY , NARAYANAN VIDYA
发明人： JAYARAM RANJITH , HARDIE EDWARD THOMAS LINGHAM , DONDETI LAKSHMINATH REDDY , NARAYANAN VIDYA
IPC分类号： H04L29/08
CPC分类号： H04L67/104 , H04L45/02 , H04L45/028 , H04L67/1059
摘要： Methods and apparatus for event distribution and routing in peer-to-peer overlay networks. A method is provided for event distribution and routing in a peer-to-peer overlay network that comprises a plurality of nodes. The method includes identifying a plurality of buckets on the overlay network, wherein each bucket includes one or more nodes, respectively, identifying bucket groups, wherein each bucket group includes a selected number of buckets, respectively, distributing events based on the bucket groups, and updating a routing table based on the events. A node includes a transceiver and a processor coupled to the transceiver and configured to identify a plurality of buckets on the overlay network, wherein each bucket includes one or more nodes, respectively, identify bucket groups, wherein each bucket group includes a selected number of buckets, respectively, distribute events based on the bucket groups, and update a routing table based on the events.
摘要翻译：对等覆盖网络中事件分发和路由的方法和装置。提供了一种用于包括多个节点的对等覆盖网络中的事件分发和路由的方法。该方法包括识别覆盖网络上的多个桶，其中每个桶分别包括一个或多个节点，标识桶组，其中每个桶组分别包括选定数量的桶，基于桶组分配事件，以及基于事件更新路由表。节点包括收发机和处理器，其耦合到收发器并且被配置为识别覆盖网络上的多个桶，其中每个桶分别包括一个或多个节点，以识别桶组，其中每个桶组包括选定数量的桶分别基于桶组分配事件，并根据事件更新路由表。

6. 发明申请

WO2007092793A2 METHOD AND APPARATUS FOR CONTENT PROTECTION IN WIRELESS COMMUNICATIONS 审中-公开
标题翻译：无线通信中内容保护的方法与装置
公开(公告)号：WO2007092793A2
公开(公告)日：2007-08-16
申请号：PCT/US2007061577
申请日：2007-02-02
申请人： QUALCOMM INC , LO CHARLES N , WANG JUN , DONDETI LAKSHMINATH REDDY , HAWKES PHILIP MICHAEL
发明人： LO CHARLES N , WANG JUN , DONDETI LAKSHMINATH REDDY , HAWKES PHILIP MICHAEL
IPC分类号： G06F21/00 , H04L29/06
CPC分类号： H04L63/06 , G06F21/10 , G06F2221/0797 , H04L2463/101 , H04W12/04
摘要： Disclosed is a method for securely presenting content in a mobile station. The mobile station may have a smart module, a security agent, and an air interface for communicating with a content provider and with a remote content rights manager. The smart module stores content presentation units and has a proxy content rights manager for when the mobile station is unable to receive secure content keys from the remote content rights manager using the air interface. In the method, content presentation units are transferred from the remote rights manager to the smart module for storage. Secure content keys are requested from the smart module for allowing presentation of content requested while the mobile station is unable to communicate with the remote rights manager. The secure content keys are transferred, based on a stored content presentation unit, from the proxy content rights manager to the security agent for allowing content presentation.
摘要翻译：公开了一种在移动台中安全地呈现内容的方法。移动台可以具有智能模块，安全代理和用于与内容提供商和远程内容权限管理器通信的空中接口。智能模块存储内容呈现单元，并且具有代理内容权限管理器，用于当移动站不能使用空中接口从远程内容权限管理器接收安全内容密钥时。在该方法中，内容呈现单元从远程权限管理器传送到智能模块进行存储。从智能模块请求安全内容密钥，以允许在移动台无法与远程权限管理器通信时呈现所请求的内容。安全内容密钥基于存储的内容呈现单元从代理内容权限管理器传送到安全代理以允许内容呈现。

7. 发明申请

WO2007082190A3 APPARATUS AND METHODS OF SELECTIVE COLLECTION AND SELECTIVE PRESENTATION OF CONTENT 审中-公开
标题翻译：选择性选择和选择性内容提供的装置和方法
公开(公告)号：WO2007082190A3
公开(公告)日：2009-01-15
申请号：PCT/US2007060248
申请日：2007-01-08
申请人： QUALCOMM INC , COLLINS BRUCE , WALKER GORDON KENT , BROWN JEFFERY N , WANG JUN , BENNETT CHRISTOPHER JOHN , LO CHARLES N , JIN HAIPENG , DONDETI LAKSHMINATH REDDY , GELLENS RANDALL COLEMAN , MAGGENTI MARK
发明人： COLLINS BRUCE , WALKER GORDON KENT , BROWN JEFFERY N , WANG JUN , BENNETT CHRISTOPHER JOHN , LO CHARLES N , JIN HAIPENG , DONDETI LAKSHMINATH REDDY , GELLENS RANDALL COLEMAN , MAGGENTI MARK
IPC分类号： G06Q30/00 , H04L29/08
CPC分类号： H04L67/2804 , G06Q30/02 , H04L67/04 , H04L67/20 , H04L67/22 , H04L67/2852 , H04L67/306 , H04L67/32
摘要： Disclosed are apparatus and methods operable to distribute targeted content. Additionally, disclosed are corresponding apparatus and methods operable to selectively choose and cache selected ones from among the distributed targeted content, and to further choose ones from among the cached content to present on a device. In some aspects, selective caching of content may be based upon a match between predetermined content attribute information and predetermined profile information. Further, in some aspects, an indicator is operable to trigger the selective inclusion of one or more of the cached content in a presentation of other content, which may be based on a match between a desired content attribute associated with the indicator and the respective predetermined content attribute information of the cached content.
摘要翻译：公开了可操作以分发目标内容的装置和方法。此外，公开了相应的装置和方法，其可操作以选择性地从分布式目标内容中选择和缓存所选择的内容，并且进一步从缓存的内容中选择要呈现在设备上的内容。在一些方面，内容的选择性高速缓存可以基于预定内容属性信息和预定简档信息之间的匹配。此外，在一些方面，指示符可操作以触发将其中一个或多个缓存的内容选择性地包含在其他内容的呈现中，其可以基于与指示符相关联的期望内容属性与相应预定的内容之间的匹配缓存内容的内容属性信息。

8. 发明申请

WO2008045773A3 METHOD AND APPARATUS FOR MUTUAL AUTHENTICATION 审中-公开
标题翻译：用于认证的方法和装置
公开(公告)号：WO2008045773A3
公开(公告)日：2008-06-12
申请号：PCT/US2007080525
申请日：2007-10-05
申请人： QUALCOMM INC , PEREZ ARAM , DONDETI LAKSHMINATH REDDY
发明人： PEREZ ARAM , DONDETI LAKSHMINATH REDDY
IPC分类号： H04L9/32
CPC分类号： H04L63/0869 , H04L9/0869 , H04L9/3242 , H04L9/3263 , H04L9/3273 , H04L63/0442 , H04L63/0876 , H04L2209/38 , H04L2209/603 , H04L2209/80 , H04W12/04 , H04W12/06
摘要： Disclosed is a method for mutual authentication between a station, having a digital rights agent, and a secure removable media device. The digital rights agent initiates mutual authentication by sending a message to the secure removable media device. The secure removable media device encrypts a first random number using a public key associated with the digital rights agent. The digital rights agent decrypts the encrypted first random number, and encrypts a second random number and a first hash based on at least the first random number. The secure removable media device decrypts the encrypted second random number and the first hash, verifies the first hash to authenticate the digital rights agent, and generates a second hash based on at least the second random number. The digital rights agent verifies the second hash to authenticate the secure removable media device.
摘要翻译：公开了一种具有数字版权代理的站和安全可移动媒体设备之间的相互验证的方法。数字版权代理通过向安全可移动媒体设备发送消息来发起相互认证。安全可移动媒体设备使用与数字版权代理相关联的公钥来加密第一随机数。数字权利代理解密加密的第一随机数，并且至少基于第一随机数加密第二随机数和第一散列。安全可移动媒体设备解密加密的第二随机数和第一散列，验证第一散列以验证数字版权代理，并且至少基于第二随机数生成第二散列。数字权利代理验证第二个散列来验证安全可移动媒体设备。

9. 发明专利

BRPI0811296A2 未知
公开(公告)号：BRPI0811296A2
公开(公告)日：2015-01-27
申请号：BRPI0811296
申请日：2008-05-07
申请人： QUALCOMM INC
发明人： PATWHARDHAN RAVINDRA , NARAYANAN VIDYA , ULUPINAR FATIH , DONDETI LAKSHMINATH REDDY , AGASHE PARAG ARUN , TINNAKORNSRISUPHAP PEERAPOL , HSU RAYMOND TAH-SHENG , WANG JUN
IPC分类号： H04L29/06 , H04L12/22
摘要： Disclosed is a method for multiple EAP-based authentications in a wireless communication system. In the method, a first master session key (MSK) is generated in a first EAP-based authentication for a first-type access. A first temporal session key (TSK) is generated from the first master session key (MSK). A second EAP-based authentication is performed, using the first temporal session key (TSK), for a second-type access. First-type access and second-type access are provided after the first and second EAP-based authentications are successfully completed.

10. 发明专利

BRPI0715788A2 未知
公开(公告)号：BRPI0715788A2
公开(公告)日：2013-07-16
申请号：BRPI0715788
申请日：2007-08-24
申请人： QUALCOMM INC
发明人： NARAYANAN VIDYA , DONDETI LAKSHMINATH REDDY , AGASHE PARAG ARUN , BENDER PAUL E
IPC分类号： H04L29/06 , H04W12/04 , H04W36/00
摘要： A novel key management approach is provided for securing communication handoffs between and access terminal and two access points. This approach provides for securely handing off communications between an access terminal and access point without risking exposure a master key for the access terminal. Temporary master keys are derived for low latency handoffs and secure authentication between a new access point and the access terminal. In one aspect, a distributive key management scheme is provided in which a current access point generates a new security key (based on its own security key) that is used by the next access point with which an access terminal communicates. In another aspect, a centralized key management scheme is provided in which a central authenticator maintains, generates, and distributes new security keys (based on a master security key associated with the access terminal) to access points.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式