专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08656480B2 Method for negotiating security-related functions of subscriber station in wireless portable internet system 有权
标题翻译：在无线便携式互联网系统中协商用户台安全相关功能的方法
公开(公告)号：US08656480B2
公开(公告)日：2014-02-18
申请号：US11908932
申请日：2006-02-14
申请人： Seok-Heon Cho , Tae-Yong Lee , Sun-Hwa Lim , Chul-Sik Yoon , Jun-Hyuk Song , Ji-Cheol Lee , Yong Chang
发明人： Seok-Heon Cho , Tae-Yong Lee , Sun-Hwa Lim , Chul-Sik Yoon , Jun-Hyuk Song , Ji-Cheol Lee , Yong Chang
IPC分类号： H04L29/06
CPC分类号： H04L9/3242 , H04L63/205 , H04L2209/80
摘要： The present invention relates to a subscriber station security-related parameter negotiation method in a wireless portable Internet system. The subscriber station security-related parameter negotiation method includes security-related parameters in transmitting/receiving basic capability negotiation request messages and basic capability negotiation response messages such that the subscriber station and the base station negotiate the subscriber station security-related parameters. The security-related parameters include an authorization policy support subfield used to negotiate an authorization policy between the subscriber station and the base station, and message authentication code mode subfields used to negotiate a message authentication code mode. The base station can inform the subscriber station that authentication or message authentication is not performed and is omitted according to a service provider policy by writing it on the authorization policy support subfield or message authentication code mode subfield. In addition, the subscriber station and the base station can select an authorization policy formed with at least one combination through the authorization policy support subfield of the security negotiation parameters. According to the present invention, the service provider of the wireless portable Internet system can more efficiently and flexibly manage the system by providing a scheme for omitting an authentication function and a message authentication function as well as for supporting various authorization policies and message authentication functions.
摘要翻译：本发明涉及无线便携式因特网系统中的用户台安全相关参数协商方法。用户站安全相关参数协商方法包括发送/接收基本能力协商请求消息中的安全相关参数和基本能力协商响应消息，使得用户台和基站协商用户站安全相关参数。安全相关参数包括用于在用户站和基站之间协商授权策略的授权策略支持子字段以及用于协商消息认证码模式的消息认证码模式子字段。基站可以通知订户站认证或消息认证不被执行，并且根据服务提供商策略将其写入授权策略支持子字段或消息认证码模式子字段而被省略。此外，用户站和基站可以通过安全协商参数的授权策略支持子域，选择通过至少一个组合形成的授权策略。根据本发明，通过提供省略认证功能和消息认证功能以及支持各种授权策略和消息认证功能的方案，无线便携式因特网系统的服务提供商能够更有效和灵活地管理系统。

2. 发明授权

US07978855B2 Method for allocating authorization key identifier for wireless portable internet system 有权
标题翻译：分配用于无线便携式互联网系统的授权密钥标识符的方法
公开(公告)号：US07978855B2
公开(公告)日：2011-07-12
申请号：US11908211
申请日：2005-10-27
申请人： Seok-Heon Cho , Sung-Cheol Chang , Chul-Sik Yoon
发明人： Seok-Heon Cho , Sung-Cheol Chang , Chul-Sik Yoon
IPC分类号： H04L9/12
CPC分类号： H04L9/3213 , H04L9/0825 , H04L9/0866 , H04L9/3271 , H04L63/06 , H04L63/0823 , H04L2209/56 , H04L2209/603 , H04L2209/80
摘要： The present invention relates to a method for allocating an authorization key identifier in a wireless portable Internet system. In a privacy key management version 2 (PKMv2) of the wireless portable Internet system, a base station generates PAK identifier, PMK identifier, and authorization key identifier for distinguishing a primary authorization key (PAK) shared by the base station and the subscriber station in an RSA-based authorization, a pairwise master key (PMK) shared by the base station and the subscriber station in an EAP-based authorization, and authorization keys generated by the PAK and the PMK. The base station transmits PAK identifier, PMK identifier, and authorization key identifier to the subscriber station and shares them with the subscriber station. Therefore, the base station and the subscriber station may easily distinguish more than 2 authorization-related keys. In addition, it is possible to transmit the signal message efficiently in the radio channel by reducing the sizes of the PAK identifier, PMK identifier, and authorization key identifier.
摘要翻译：本发明涉及一种在无线便携式互联网系统中分配授权密钥标识符的方法。在无线便携式因特网系统的隐私密钥管理版本2（PKMv2）中，基站生成PAK标识符，PMK标识符和授权密钥标识符，用于区分由基站和用户站共享的主授权密钥（PAK）基于RSA的授权，基于EAP的授权中由基站和订户站共享的成对主密钥（PMK）以及由PAK和PMK生成的授权密钥。基站向用户台发送PAK标识符，PMK标识符和授权密钥标识符，并与订户站共享。因此，基站和用户站可以容易地区分超过2个授权相关的密钥。此外，可以通过减小PAK标识符，PMK标识符和授权密钥标识符的大小来在无线电信道中有效地发送信号消息。

3. 发明授权

US07907733B2 Method for managing traffic encryption key in wireless portable internet system and protocol configuration method thereof, and operation method of traffic encryption key state machine in subscriber station 有权
标题翻译：在无线便携式互联网系统中管理流量加密密钥的方法及其协议配置方法以及用户站中业务加密密钥状态机的操作方法
公开(公告)号：US07907733B2
公开(公告)日：2011-03-15
申请号：US10591625
申请日：2005-03-04
申请人： Seok-Heon Cho , Sung-Cheol Chang , Chul-Sik Yoon
发明人： Seok-Heon Cho , Sung-Cheol Chang , Chul-Sik Yoon
IPC分类号： H04K1/00 , H04L9/00 , H04L9/08
CPC分类号： H04L9/0822 , H04L9/0833 , H04L9/0891 , H04L63/068 , H04L2209/80 , H04W4/06 , H04W12/04 , H04W84/12
摘要： Disclosed is a traffic encryption key (TEK) management method for automatically generating a TEK for a multicast or broadcast service by a base station to periodically update a TEK used by a subscriber station. The base station transmits the first Key Update Command message for updating a group key encryption key (GKEK) for encrypting the TEK and the second Key Update Command message for updating the TEK to the subscriber station to update the TEK. The base station establishes an M & B TEK Grace Time which is different from a TEK Grace Time established by the subscriber station, transmits the first message including a new GKEK to the subscriber station through a primary management connection before the M & B TEK Grace Time, and transmits the second message including a new TEK encrypted with the new GKEK thereto through a broadcast connection after the M & B TEK Grace Time.
摘要翻译：公开了一种用于由基站自动生成多播或广播服务的TEK以便周期性地更新用户台使用的TEK的流量加密密钥（TEK）管理方法。基站向用户台发送用于更新用于加密TEK的组密钥加密密钥（GKEK）的第一密钥更新命令消息和用于更新TEK的第二密钥更新命令消息以更新TEK。基站建立与用户台建立的TEK宽限时间不同的M＆B TEK宽限时间，在M＆B TEK宽限时间之前通过主管理连接将包含新GKEK的第一消息发送给用户站并且在M＆B TEK宽限期之后通过广播连接发送包括用新GKEK加密的新TEK的第二消息。

4. 发明申请

US20090240944A1 GENERATION METHOD AND UPDATE METHOD OF AUTHORIZATION KEY FOR MOBILE COMMUNICATION 有权
标题翻译：用于移动通信的授权密钥的生成方法和更新方法
公开(公告)号：US20090240944A1
公开(公告)日：2009-09-24
申请号：US12480521
申请日：2009-06-08
申请人： Seok-Heon Cho , Chul-Sik Yoon
发明人： Seok-Heon Cho , Chul-Sik Yoon
IPC分类号： H04L9/32 , H04L9/06
CPC分类号： H04W12/04 , H04L9/0844 , H04L9/0891 , H04L63/068 , H04L63/123 , H04L2209/80 , H04L2463/062 , H04W12/10 , H04W88/08
摘要： The present invention relates to an authorization key generating method and an authorization key updating method in a mobile communication system. A terminal and a base station generate an authorization key by using a terminal random value and a base station random value that are exchanged in an authorization key generating procedure as input data. In addition, a lifetime of an authorization key is established to be shorter than a lifetime of a root key, and the authorization key is updated with an updating period that is shorter than that of the root period.
摘要翻译：本发明涉及移动通信系统中的授权密钥生成方法和授权密钥更新方法。终端和基站通过使用在授权密钥生成过程中交换的终端随机值和基站随机值作为输入数据来生成授权密钥。此外，建立授权密钥的寿命短于根密钥的寿命，并且以比根周期的更新周期更新的更新周期来更新授权密钥。

5. 发明授权

US08397071B2 Generation method and update method of authorization key for mobile communication 有权
标题翻译：移动通信授权密钥的生成方法和更新方法
公开(公告)号：US08397071B2
公开(公告)日：2013-03-12
申请号：US12480521
申请日：2009-06-08
申请人： Seok-Heon Cho , Chul-Sik Yoon
发明人： Seok-Heon Cho , Chul-Sik Yoon
IPC分类号： H04L9/32 , H04L9/00
CPC分类号： H04W12/04 , H04L9/0844 , H04L9/0891 , H04L63/068 , H04L63/123 , H04L2209/80 , H04L2463/062 , H04W12/10 , H04W88/08
摘要： The present invention relates to an authorization key generating method and an authorization key updating method in a mobile communication system. A terminal and a base station generate an authorization key by using a terminal random value and a base station random value that are exchanged in an authorization key generating procedure as input data. In addition, a lifetime of an authorization key is established to be shorter than a lifetime of a root key, and the authorization key is updated with an updating period that is shorter than that of the root period.
摘要翻译：本发明涉及移动通信系统中的授权密钥生成方法和授权密钥更新方法。终端和基站通过使用在授权密钥生成过程中交换的终端随机值和基站随机值作为输入数据来生成授权密钥。此外，建立授权密钥的寿命短于根密钥的寿命，并且以比根周期的更新周期更新的更新周期来更新授权密钥。

6. 发明授权

US08140054B2 Method for authenticating subscriber station, method for configuring protocol thereof, and apparatus thereof in wireless portable internet system 有权
标题翻译：用于认证用户站的方法，其协议的配置方法及其装置在无线便携式互联网系统中
公开(公告)号：US08140054B2
公开(公告)日：2012-03-20
申请号：US10578113
申请日：2004-10-29
申请人： Ae-Soon Park , Seok-Heon Cho , Sun-Hwa Lim , Yeong-Jin Kim , Jee-Hwan Ahn
发明人： Ae-Soon Park , Seok-Heon Cho , Sun-Hwa Lim , Yeong-Jin Kim , Jee-Hwan Ahn
IPC分类号： H04M1/66
CPC分类号： H04L63/08 , H04L63/0892 , H04L63/166 , H04L63/205 , H04L69/22 , H04L69/24 , H04W12/06 , H04W84/12
摘要： Disclosed are a subscriber station authentication method, a protocol configuration method, and a device thereof in a wireless portable Internet system. In the subscriber station authentication method, an authentication mode between a subscriber station (10) and a base station (20) is negotiated, and the authentication mode is negotiated by the base station (20) according to the authentication mode negotiation. The authentication modes include an authentication mode based on the IEEE 802.16 privacy standard protocol and an authentication mode based on the standardized authentication protocol of the upper layer. Authentication is performed by the base station (10) in the case of the authentication mode based on the IEEE 802.16 privacy standard protocol, and the authentication is performed through message transmission using a diameter protocol between a base station (10) and an authentication server (40) in the case of the authentication mode based on the standardized authentication protocol of the upper layer.
摘要翻译：在无线便携式因特网系统中公开了用户站认证方法，协议配置方法及其装置。在用户站认证方法中，协商用户站（10）与基站（20）之间的认证方式，并且根据认证方式协商由基站（20）协商认证方式。认证方式包括基于IEEE 802.16隐私标准协议的认证方式和基于上层标准认证协议的认证方式。在基于IEEE 802.16隐私标准协议的认证模式的情况下，由基站（10）进行认证，并且通过使用基站（10）和认证服务器（10）之间的直径协议的消息传输来执行认证在基于上层的标准化认证协议的认证模式的情况下，如图40所示。

7. 发明申请

US20110261960A1 METHOD FOR ALLOCATING AUTHORIZATION KEY IDENTIFIER FOR WIRELESS PORTABLE INTERNET SYSTEM 有权
标题翻译：用于无线便携式互联网系统的授权密钥标识符分配方法
公开(公告)号：US20110261960A1
公开(公告)日：2011-10-27
申请号：US13155042
申请日：2011-06-07
申请人： Seok-Heon CHO , Sung-Cheol CHANG , Chul-Sik YOON
发明人： Seok-Heon CHO , Sung-Cheol CHANG , Chul-Sik YOON
IPC分类号： H04W12/06 , H04W12/04
CPC分类号： H04L9/3213 , H04L9/0825 , H04L9/0866 , H04L9/3271 , H04L63/06 , H04L63/0823 , H04L2209/56 , H04L2209/603 , H04L2209/80
摘要： A method and authentication apparatus for sharing information for identifying an Authorization Key (AK) with a Base Station (BS) in a subscriber station are provided. The method includes, in the subscriber station, sharing a root key with the BS by performing an authentication with the BS, sharing an AK derived from the root key with the BS, sharing an AK sequence number of the AK with the BS, and sharing an AK Identifier (AKID) of the AK with the BS. The AK sequence number is generated by a sequence number of the root key. The AKID is generated by a parameter including the AK, the AK sequence number, a Medium Access Control (MAC) address of the subscriber station, and a BS Identifier (BSID) of the BS.
摘要翻译：提供了一种用于在订户站中用于与基站（BS）一起识别授权密钥（AK）的信息共享的方法和认证装置。该方法包括在用户站中通过与BS进行认证与BS共享根密钥，与BS共享从根密钥导出的AK，与BS共享AK的AK序列号，并共享 AK的AK标识符（AKID）与BS。 AK序列号由根密钥的序列号生成。 AKID由包括用户站的AK，AK序列号，媒体访问控制（MAC）地址以及BS的BS标识符（BSID）的参数生成。

8. 发明申请

US20110044281A1 METHOD OF TRANSMITING CONTROL INFORMATION AND TERMINAL THEREOF 有权
标题翻译：传输控制信息及其终端的方法
公开(公告)号：US20110044281A1
公开(公告)日：2011-02-24
申请号：US12990696
申请日：2009-05-06
申请人： Sung Cheol Chang , Kwang Jae Lim , Sung Kyung Kim , Seok Heon Cho , Chul Sik Yoon
发明人： Sung Cheol Chang , Kwang Jae Lim , Sung Kyung Kim , Seok Heon Cho , Chul Sik Yoon
IPC分类号： H04W28/00
CPC分类号： H04W28/065 , H04B7/0417 , H04W52/08 , H04W72/1268
摘要： A terminal transmits control information to a base station by using a periodically allocated dedicated channel. In further detail, the terminal checks control information that needs to be transmitted, detects a priority of the checked control information, and selects control information to be transmitted to the base station based on the detected priority. The terminal forms a PDU by multiplexing the selected control information, and transmits the PDU to the base station.
摘要翻译：终端通过使用周期性分配的专用信道向基站发送控制信息。更详细地，终端检查需要发送的控制信息，检测被检查的控制信息的优先级，并且基于检测到的优先级来选择要发送到基站的控制信息。终端通过多路复用所选择的控制信息来形成PDU，并将PDU发送到基站。

9. 发明申请

US20090235075A1 METHOD FOR MANAGING GROUP TRAFFIC ENCRYPTION KEY IN WIRELESS PORTABLE INTERNET SYSTEM 有权
标题翻译：无线便携式互联网系统管理集团交通加密密钥的方法
公开(公告)号：US20090235075A1
公开(公告)日：2009-09-17
申请号：US11921894
申请日：2006-06-09
申请人： Seok-Heon Cho , Chul-Sik Yoon
发明人： Seok-Heon Cho , Chul-Sik Yoon
IPC分类号： H04L9/32 , H04L9/06
CPC分类号： H04L9/0822 , H04L9/0833 , H04L9/0891 , H04L2209/80
摘要： The present invention relates to a method for managing a group traffic encryption key (GTEK) in a wireless portable Internet system. In the method, for higher security of a group traffic service such as a multicast service, a broadcast service, and a multicast-broadcast service (MBS), a base station periodically generates and distributes a GTEK to a subscriber station served with the group traffic service. A lifetime of a group key encryption key (GKEK) used for encrypting a GTEK is set greater than that of the GTEK. That is, the GKEK is updated once while the GTEK is updated several times. According to the present invention, security for the group traffic service is increased while reducing radio resource consumption.
摘要翻译：本发明涉及一种用于在无线便携式因特网系统中管理组业务加密密钥（GTEK）的方法。在该方法中，为了组播业务，广播业务，组播广播业务（MBS）等群组业务业务的更高的安全性，基站周期性地生成GTEK，并将GTEK分配给与该组业务服务。用于加密GTEK的组密钥加密密钥（GKEK）的生命周期设置为大于GTEK的生命周期。也就是说，GTEK更新一次，而GTEK被更新几次。根据本发明，在减少无线电资源消耗的同时增加了组通信业务的安全性。

10. 发明申请

US20070281665A1 Method for Requesting, Generating and Distributing Service-Specific Traffic Encryption Key in Wireless Portable Internet System, Apparatus for the Same, and Protocol Configuration Method for the Same 有权
标题翻译：在无线便携式互联网系统中请求，生成和分发服务特定流量加密密钥的方法，相同的设备及其协议配置方法
公开(公告)号：US20070281665A1
公开(公告)日：2007-12-06
申请号：US10582440
申请日：2004-12-08
申请人： Seok-Heon Cho , Ae-Soon Park , Chul-Sik Yoon , Kyung-Soo Kim , Jee Hwan Ahn
发明人： Seok-Heon Cho , Ae-Soon Park , Chul-Sik Yoon , Kyung-Soo Kim , Jee Hwan Ahn
IPC分类号： H04M1/66
CPC分类号： H04L63/062 , H04W4/06 , H04W12/04
摘要： Disclosed are a method for requesting, generating and distributing a service-specific traffic encryption key in a wireless portable Internet system, an apparatus for the same, and a protocol configuration method for the same. In the present invention, a subscriber station sends a Key Request message for requesting a service-specific traffic encryption key to the base station using a PKM-REQ MAC message, and a base station analyzes the Key Request message to generate the requested service-specific traffic encryption key. Subsequently, the base station sends a Key Reply message, including the generated service-specific traffic encryption key, to the subscriber station using a PKM-RSP MAC message. If the base station fails to generate the key, the base station sends a Key Reject message, including a reason for the failure, to the subscriber station.
摘要翻译：公开了一种用于请求，生成和分发无线便携式因特网系统中的服务专用业务加密密钥的方法，用于其的设备及其协议配置方法。在本发明中，用户站使用PKM-REQ MAC消息向基站发送用于请求业务专用业务加密密钥的密钥请求消息，并且基站分析密钥请求消息以生成所请求的服务特定流量加密密钥。随后，基站使用PKM-RSP MAC消息向订户站发送包括生成的服务特定业务加密密钥的密钥应答消息。如果基站无法生成密钥，则基站向用户台发送包括故障原因的密钥拒绝消息。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式