会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 1. 发明授权
    • Method for negotiating security-related functions of subscriber station in wireless portable internet system
    • 在无线便携式互联网系统中协商用户台安全相关功能的方法
    • US08656480B2
    • 2014-02-18
    • US11908932
    • 2006-02-14
    • Seok-Heon ChoTae-Yong LeeSun-Hwa LimChul-Sik YoonJun-Hyuk SongJi-Cheol LeeYong Chang
    • Seok-Heon ChoTae-Yong LeeSun-Hwa LimChul-Sik YoonJun-Hyuk SongJi-Cheol LeeYong Chang
    • H04L29/06
    • H04L9/3242H04L63/205H04L2209/80
    • The present invention relates to a subscriber station security-related parameter negotiation method in a wireless portable Internet system. The subscriber station security-related parameter negotiation method includes security-related parameters in transmitting/receiving basic capability negotiation request messages and basic capability negotiation response messages such that the subscriber station and the base station negotiate the subscriber station security-related parameters. The security-related parameters include an authorization policy support subfield used to negotiate an authorization policy between the subscriber station and the base station, and message authentication code mode subfields used to negotiate a message authentication code mode. The base station can inform the subscriber station that authentication or message authentication is not performed and is omitted according to a service provider policy by writing it on the authorization policy support subfield or message authentication code mode subfield. In addition, the subscriber station and the base station can select an authorization policy formed with at least one combination through the authorization policy support subfield of the security negotiation parameters. According to the present invention, the service provider of the wireless portable Internet system can more efficiently and flexibly manage the system by providing a scheme for omitting an authentication function and a message authentication function as well as for supporting various authorization policies and message authentication functions.
    • 本发明涉及无线便携式因特网系统中的用户台安全相关参数协商方法。 用户站安全相关参数协商方法包括发送/接收基本能力协商请求消息中的安全相关参数和基本能力协商响应消息,使得用户台和基站协商用户站安全相关参数。 安全相关参数包括用于在用户站和基站之间协商授权策略的授权策略支持子字段以及用于协商消息认证码模式的消息认证码模式子字段。 基站可以通知订户站认证或消息认证不被执行,并且根据服务提供商策略将其写入授权策略支持子字段或消息认证码模式子字段而被省略。 此外,用户站和基站可以通过安全协商参数的授权策略支持子域,选择通过至少一个组合形成的授权策略。 根据本发明,通过提供省略认证功能和消息认证功能以及支持各种授权策略和消息认证功能的方案,无线便携式因特网系统的服务提供商能够更有效和灵活地管理系统。
    • 2. 发明授权
    • Method for allocating authorization key identifier for wireless portable internet system
    • 分配用于无线便携式互联网系统的授权密钥标识符的方法
    • US07978855B2
    • 2011-07-12
    • US11908211
    • 2005-10-27
    • Seok-Heon ChoSung-Cheol ChangChul-Sik Yoon
    • Seok-Heon ChoSung-Cheol ChangChul-Sik Yoon
    • H04L9/12
    • H04L9/3213H04L9/0825H04L9/0866H04L9/3271H04L63/06H04L63/0823H04L2209/56H04L2209/603H04L2209/80
    • The present invention relates to a method for allocating an authorization key identifier in a wireless portable Internet system. In a privacy key management version 2 (PKMv2) of the wireless portable Internet system, a base station generates PAK identifier, PMK identifier, and authorization key identifier for distinguishing a primary authorization key (PAK) shared by the base station and the subscriber station in an RSA-based authorization, a pairwise master key (PMK) shared by the base station and the subscriber station in an EAP-based authorization, and authorization keys generated by the PAK and the PMK. The base station transmits PAK identifier, PMK identifier, and authorization key identifier to the subscriber station and shares them with the subscriber station. Therefore, the base station and the subscriber station may easily distinguish more than 2 authorization-related keys. In addition, it is possible to transmit the signal message efficiently in the radio channel by reducing the sizes of the PAK identifier, PMK identifier, and authorization key identifier.
    • 本发明涉及一种在无线便携式互联网系统中分配授权密钥标识符的方法。 在无线便携式因特网系统的隐私密钥管理版本2(PKMv2)中,基站生成PAK标识符,PMK标识符和授权密钥标识符,用于区分由基站和用户站共享的主授权密钥(PAK) 基于RSA的授权,基于EAP的授权中由基站和订户站共享的成对主密钥(PMK)以及由PAK和PMK生成的授权密钥。 基站向用户台发送PAK标识符,PMK标识符和授权密钥标识符,并与订户站共享。 因此,基站和用户站可以容易地区分超过2个授权相关的密钥。 此外,可以通过减小PAK标识符,PMK标识符和授权密钥标识符的大小来在无线电信道中有效地发送信号消息。
    • 9. 发明申请
    • METHOD FOR MANAGING GROUP TRAFFIC ENCRYPTION KEY IN WIRELESS PORTABLE INTERNET SYSTEM
    • 无线便携式互联网系统管理集团交通加密密钥的方法
    • US20090235075A1
    • 2009-09-17
    • US11921894
    • 2006-06-09
    • Seok-Heon ChoChul-Sik Yoon
    • Seok-Heon ChoChul-Sik Yoon
    • H04L9/32H04L9/06
    • H04L9/0822H04L9/0833H04L9/0891H04L2209/80
    • The present invention relates to a method for managing a group traffic encryption key (GTEK) in a wireless portable Internet system. In the method, for higher security of a group traffic service such as a multicast service, a broadcast service, and a multicast-broadcast service (MBS), a base station periodically generates and distributes a GTEK to a subscriber station served with the group traffic service. A lifetime of a group key encryption key (GKEK) used for encrypting a GTEK is set greater than that of the GTEK. That is, the GKEK is updated once while the GTEK is updated several times. According to the present invention, security for the group traffic service is increased while reducing radio resource consumption.
    • 本发明涉及一种用于在无线便携式因特网系统中管理组业务加密密钥(GTEK)的方法。 在该方法中,为了组播业务,广播业务,组播广播业务(MBS)等群组业务业务的更高的安全性,基站周期性地生成GTEK,并将GTEK分配给与该组业务 服务。 用于加密GTEK的组密钥加密密钥(GKEK)的生命周期设置为大于GTEK的生命周期。 也就是说,GTEK更新一次,而GTEK被更新几次。 根据本发明,在减少无线电资源消耗的同时增加了组通信业务的安全性。