专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20090300358A1 METHOD FOR MANAGING NETWORK KEY AND UPDATING SESSION KEY 有权
标题翻译：用于管理网络密钥和更新会话密钥的方法
公开(公告)号：US20090300358A1
公开(公告)日：2009-12-03
申请号：US12442513
申请日：2007-07-17
申请人： Liaojun Pang , Jun Cao , Haibo Tian , Zhenhai Huang , Bianling Zhang
发明人： Liaojun Pang , Jun Cao , Haibo Tian , Zhenhai Huang , Bianling Zhang
IPC分类号： H04L9/32 , H04L9/06
CPC分类号： H04L9/0891 , H04L2209/80 , H04W12/04 , H04W12/10
摘要： A method for managing network key and updating session key is provided. The step of the key management includes: constructing key request group, constructing key negotiation response group, and constructing key negotiation acknowledgement group. The step of multicasting key management method includes multicasting main key negotiation protocol and multicasting session key distribution protocol. The multicasting main key negotiation protocol comprises key updating informs group, constructing encryption key negotiation request group, constructing key negotiation response group and constructing key negotiation acknowledgement group. The multicasting session key distribution protocol comprises multicasting session key request and multicasting session key distribution.
摘要翻译：提供了一种管理网络密钥和更新会话密钥的方法。密钥管理的步骤包括：构建密钥请求组，建立密钥协商响应组，建立密钥协商确认组。组播密钥管理方法的步骤包括组播主密钥协商协议和组播会话密钥分发协议。组播主密钥协商协议包括密钥更新通知组，构建加密密钥协商请求组，建立密钥协商响应组，构建密钥协商确认组。组播会话密钥分发协议包括组播会话密钥请求和组播会话密钥分发。

2. 发明申请

US20100031031A1 SYSTEMS, METHODS AND COMPUTER-ACCESSIBLE MEDIA FOR ACQUIRING AND AUTHENTICATING PUBLIC KEY CERTIFICATE STATUS 有权
标题翻译：系统，方法和计算机可访问媒体获取和认证公共关键证书状态
公开(公告)号：US20100031031A1
公开(公告)日：2010-02-04
申请号：US12442462
申请日：2007-07-16
申请人： Haibo Tian , Jun Cao , Liaojun Pang , Manxia Tie , Zhenhai Huang , Bianling Zhang
发明人： Haibo Tian , Jun Cao , Liaojun Pang , Manxia Tie , Zhenhai Huang , Bianling Zhang
IPC分类号： H04L9/32
CPC分类号： H04L9/3268 , H04L63/06 , H04L63/08 , H04L63/0823 , H04L2209/60 , H04L2209/80
摘要： Exemplary embodiments of systems, methods and computer-accessible medium can be provided for obtaining and verifying a public key certificate status. In particular, it is possible to construct and send a certificate query request, construct and send a combined certificate query request, construct and send a combined certificate status response, deliver a certificate status response, perform a verification by the general access point, and/or perform a verification by the user equipment. The exemplary embodiments address some of the deficiencies of conventional methods which have a complicated implementation as well as likely inability of such conventional methods to be applied to the network architecture of user equipment, a general access point and a server. The exemplary embodiments of the systems, methods and computer-accessible medium can obtain a user certificate status to provide certificate statuses of the user or the user equipment and the general access point when the user equipment accesses the network via the general access point. Message exchanges can be reduced, bandwidth and calculation resources can be saved, and higher efficiency can be achieved. According to another exemplary embodiment, by way of adding random numbers into the certificate query request and the combined certificate query request, as well as the message m, freshness of the certificate status response can be facilitated and even ensured, and security protection can be enhanced.
摘要翻译：可以提供系统，方法和计算机可访问介质的示例性实施例，以获得和验证公钥证书状态。特别地，可以构建和发送证书查询请求，构造和发送组合的证书查询请求，构造并发送组合证书状态响应，递送证书状态响应，由一般接入点执行验证和/ 或执行用户设备的验证。示例性实施例解决了具有复杂实现的常规方法的一些缺陷以及这种常规方法可能不适用于用户设备，通用接入点和服务器的网络架构的一些缺陷。当用户设备经由通用接入点访问网络时，系统，方法和计算机可访问介质的示例性实施例可以获得用户证书状态以提供用户或用户设备以及通用接入点的证书状态。可以减少消息交换，节省带宽和计算资源，实现更高的效率。根据另一示例性实施例，通过在证书查询请求和组合证书查询请求中添加随机数以及消息m，可以促进并甚至确保证书状态响应的新鲜度，并且可以增强安全性保护。

3. 发明授权

US08185091B2 Network access authentication and authorization method and an authorization key updating method 有权
标题翻译：网络访问认证授权方法和授权密钥更新方法
公开(公告)号：US08185091B2
公开(公告)日：2012-05-22
申请号：US12441915
申请日：2007-07-16
申请人： Liaojun Pang , Jun Cao , Haibo Tian , Zhenhai Huang , Bianling Zhang
发明人： Liaojun Pang , Jun Cao , Haibo Tian , Zhenhai Huang , Bianling Zhang
IPC分类号： H04W12/08
CPC分类号： H04L9/3263 , H04L9/3268 , H04L9/3271 , H04L9/3273 , H04L63/061 , H04L63/0823 , H04L63/0869 , H04L2209/80 , H04W12/04 , H04W12/06
摘要： A network access authentication and authorization method includes the steps of: constructing an access and authorization request packet; constructing a certificate authentication request packet, constructing a certificate authentication response packet; constructing an access and authorization response packet; constructing an access and authorization acknowledgement packet. And an authorization key updating method includes the steps of: constructing an access and authorization request packet; constructing an access and authorization response packet; constructing an access and authorization acknowledgement packet. The invention resolves the security problem that a mobile terminal accesses a base station in the wideband wireless multimedia network, and realizes both bi-directional identity authentication of a mobile terminal and a base station and unidirectional identity authentication from a base station to a mobile terminal. The authorization key negotiation calculation is simple, and the key management is simply realized by using message acknowledgement manner. The invention is applied to the wired network and the wireless network, such as the wireless local area network, the wireless metropolitan area network, and the broadband wireless multimedia network etc.
摘要翻译：一种网络接入认证授权方法，包括：构建接入和授权请求报文; 构建证书认证请求报文，构建证书认证响应报文; 构建访问和授权响应包; 构建访问和授权确认包。并且授权密钥更新方法包括以下步骤：构建接入和授权请求分组; 构建访问和授权响应包; 构建访问和授权确认包。本发明解决了移动终端访问宽带无线多媒体网络中的基站的安全问题，实现了移动终端和基站的双向身份认证以及从基站到移动终端的单向身份认证。授权密钥协商计算简单，密钥管理简单地通过使用消息确认方式实现。本发明适用于无线局域网，无线城域网，宽带无线多媒体网络等有线网络和无线网络。

4. 发明申请

US20100009656A1 NETWORK ACCESS AUTHENTICATION AND AUTHORIZATION METHOD AND AN AUTHORIZATION KEY UPDATING METHOD 有权
标题翻译：网络访问认证和授权方法和授权密钥更新方法
公开(公告)号：US20100009656A1
公开(公告)日：2010-01-14
申请号：US12441915
申请日：2007-07-16
申请人： Liaojun Pang , Jun Cao , Haibo Tian , Zhenhai Huang , Bianling Zhang
发明人： Liaojun Pang , Jun Cao , Haibo Tian , Zhenhai Huang , Bianling Zhang
IPC分类号： H04M3/16
CPC分类号： H04L9/3263 , H04L9/3268 , H04L9/3271 , H04L9/3273 , H04L63/061 , H04L63/0823 , H04L63/0869 , H04L2209/80 , H04W12/04 , H04W12/06
摘要： A network access authentication and authorization method includes the steps of: constructing an access and authorization request packet; constructing a certificate authentication request packet, constructing a certificate authentication response packet; constructing an access and authorization response packet; constructing an access and authorization acknowledgement packet. And an authorization key updating method includes the steps of: constructing an access and authorization request packet; constructing an access and authorization response packet; constructing an access and authorization acknowledgement packet. The invention resolves the security problem that a mobile terminal accesses a base station in the wideband wireless multimedia network, and realizes both bi-directional identity authentication of a mobile terminal and a base station and unidirectional identity authentication from a base station to a mobile terminal. The authorization key negotiation calculation is simple, and the key management is simply realized by using message acknowledgement manner. The invention is applied to the wired network and the wireless network, such as the wireless local area network, the wireless metropolitan area network, and the broadband wireless multimedia network etc.
摘要翻译：一种网络接入认证授权方法，包括：构建接入和授权请求报文; 构建证书认证请求报文，构建证书认证响应报文; 构建访问和授权响应包; 构建访问和授权确认包。并且授权密钥更新方法包括以下步骤：构建接入和授权请求分组; 构建访问和授权响应包; 构建访问和授权确认包。本发明解决了移动终端访问宽带无线多媒体网络中的基站的安全问题，实现了移动终端和基站的双向身份认证以及从基站到移动终端的单向身份认证。授权密钥协商计算简单，密钥管理简单地通过使用消息确认方式实现。本发明适用于无线局域网，无线城域网，宽带无线多媒体网络等有线网络和无线网络。

5. 发明授权

US08306229B2 Method for managing network key and updating session key 有权
标题翻译：管理网络密钥和更新会话密钥的方法
公开(公告)号：US08306229B2
公开(公告)日：2012-11-06
申请号：US12442513
申请日：2007-07-17
申请人： Liaojun Pang , Jun Cao , Haibo Tian , Zhenhai Huang , Bianling Zhang
发明人： Liaojun Pang , Jun Cao , Haibo Tian , Zhenhai Huang , Bianling Zhang
IPC分类号： H04L29/06
CPC分类号： H04L9/0891 , H04L2209/80 , H04W12/04 , H04W12/10
摘要： A method for managing network key and updating session key is provided. The step of the key management includes: constructing key request group, constructing key negotiation response group, and constructing key negotiation acknowledgement group. The step of multicasting key management method includes multicasting main key negotiation protocol and multicasting session key distribution protocol. The multicasting main key negotiation protocol comprises key updating informs group, constructing encryption key negotiation request group, constructing key negotiation response group and constructing key negotiation acknowledgement group. The multicasting session key distribution protocol comprises multicasting session key request and multicasting session key distribution.
摘要翻译：提供了一种管理网络密钥和更新会话密钥的方法。密钥管理的步骤包括：构建密钥请求组，建立密钥协商响应组，建立密钥协商确认组。组播密钥管理方法的步骤包括组播主密钥协商协议和组播会话密钥分发协议。组播主密钥协商协议包括密钥更新通知组，构建加密密钥协商请求组，建立密钥协商响应组，构建密钥协商确认组。组播会话密钥分发协议包括组播会话密钥请求和组播会话密钥分发。

6. 发明授权

US08195935B2 Systems, methods and computer-accessible media for acquiring and authenticating public key certificate status 有权
标题翻译：用于获取和验证公钥证书状态的系统，方法和计算机可访问媒体
公开(公告)号：US08195935B2
公开(公告)日：2012-06-05
申请号：US12442462
申请日：2007-07-16
申请人： Haibo Tian , Jun Cao , Liaojun Pang , Manxia Tie , Zhenhai Huang , Bianling Zhang
发明人： Haibo Tian , Jun Cao , Liaojun Pang , Manxia Tie , Zhenhai Huang , Bianling Zhang
IPC分类号： H04L29/06
CPC分类号： H04L9/3268 , H04L63/06 , H04L63/08 , H04L63/0823 , H04L2209/60 , H04L2209/80
摘要： Exemplary embodiments of systems, methods and computer-accessible medium can be provided for obtaining and verifying a public key certificate status. In particular, it is possible to construct and send a certificate query request, construct and send a combined certificate query request, construct and send a combined certificate status response, deliver a certificate status response, perform a verification by the general access point, and/or perform a verification by the user equipment. The exemplary embodiments address some of the deficiencies of conventional methods which have a complicated implementation as well as likely inability of such conventional methods to be applied to the network architecture of user equipment, a general access point and a server. The exemplary embodiments of the systems, methods and computer-accessible medium can obtain a user certificate status to provide certificate statuses of the user or the user equipment and the general access point when the user equipment accesses the network via the general access point. Message exchanges can be reduced, bandwidth and calculation resources can be saved, and higher efficiency can be achieved. According to another exemplary embodiment, by way of adding random numbers into the certificate query request and the combined certificate query request, as well as the message m, freshness of the certificate status response can be facilitated and even ensured, and security protection can be enhanced.
摘要翻译：可以提供系统，方法和计算机可访问介质的示例性实施例，以获得和验证公钥证书状态。特别地，可以构建和发送证书查询请求，构造和发送组合的证书查询请求，构造并发送组合证书状态响应，递送证书状态响应，由一般接入点执行验证和/ 或执行用户设备的验证。示例性实施例解决了具有复杂实现的常规方法的一些缺陷以及这种常规方法可能不适用于用户设备，通用接入点和服务器的网络架构的一些缺陷。当用户设备经由通用接入点访问网络时，系统，方法和计算机可访问介质的示例性实施例可以获得用户证书状态以提供用户或用户设备以及通用接入点的证书状态。可以减少消息交换，节省带宽和计算资源，实现更高的效率。根据另一示例性实施例，通过在证书查询请求和组合证书查询请求中添加随机数以及消息m，可以促进并甚至确保证书状态响应的新鲜度，并且可以增强安全性保护。

7. 发明授权

US08312278B2 Access authentication method applying to IBSS network 有权
标题翻译：访问IBSS网络的认证方法
公开(公告)号：US08312278B2
公开(公告)日：2012-11-13
申请号：US12740082
申请日：2008-10-30
申请人： Manxia Tie , Jun Cao , Xiaolong Lai , Jiandong Li , Liaojun Pang , Zhenhai Huang
发明人： Manxia Tie , Jun Cao , Xiaolong Lai , Jiandong Li , Liaojun Pang , Zhenhai Huang
IPC分类号： H04L9/32
CPC分类号： H04W12/06 , H04L63/1466 , H04L63/162 , H04W12/04 , H04W84/12
摘要： An access authentication method applying to IBSS network involves the following steps of: 1) performing authentication role configuration for network entities; 2) authenticating an authentication entity and a request entity that have been performed the authentication role configuration via an authentication protocol; and 3) after finishing the authentication, the authentication entity and the request entity perform the key negotiation, wherein, the message integrity check field and protocol synchronization lock-in field are added in a key negotiation message. The access authentication method applying to IBSS network provided by the invention has the advantages of the better safeness and the higher execution efficiency.
摘要翻译：适用于IBSS网络的接入认证方法包括以下步骤：1）对网络实体进行认证角色配置; 2）通过认证协议认证已经执行认证角色配置的认证实体和请求实体; 和3）认证完成后，认证实体和请求实体进行密钥协商，其中消息完整性检查字段和协议同步锁定字段被添加到密钥协商消息中。适用于本发明提供的IBSS网络的接入认证方法具有安全性更高，执行效率更高的优点。

8. 发明申请

US20100268954A1 METHOD OF ONE-WAY ACCESS AUTHENTICATION 有权
标题翻译：单向通信认证方法
公开(公告)号：US20100268954A1
公开(公告)日：2010-10-21
申请号：US12741567
申请日：2008-11-07
申请人： Liaojun Pang , Jun Cao , Manxia Tie , Zhenhai Huang
发明人： Liaojun Pang , Jun Cao , Manxia Tie , Zhenhai Huang
IPC分类号： H04L9/32
CPC分类号： H04L9/3242 , H04L9/0847 , H04L9/321 , H04L9/3271 , H04L2209/80
摘要： A method of one-way access authentication is disclosed. The method includes the following steps. According to system parameters set up by a third entity, a second entity sends an authentication request and key distribution grouping message to a first entity. The first entity verifies the validity of the message sent from the second entity, and if it is valid, the first entity generates authentication and key response grouping message and sends it to the second entity, which verifies the validity of the message sent from the first entity, and if it is valid, the second entity generates the authentication and key confirmation grouping message and sends the message to the first entity. The first entity verifies the validity of the authentication and key conformation grouping message, and if it is valid, the authentication succeeds and the key is regarded as the master key of agreement.
摘要翻译：公开了一种单向接入认证方法。该方法包括以下步骤。根据由第三实体建立的系统参数，第二实体向第一实体发送认证请求和密钥分发分组消息。第一实体验证从第二实体发送的消息的有效性，并且如果其有效，则第一实体生成认证和密钥响应分组消息并将其发送到第二实体，其验证从第一实体发送的消息的有效性实体，如果有效，则第二实体生成认证和密钥确认分组消息，并将消息发送到第一实体。第一个实体验证认证和密钥组合分组消息的有效性，如果认证成功，则认证成功，密钥被视为协商的主密钥。

9. 发明授权

US08412943B2 Two-way access authentication method 有权
标题翻译：双向访问认证方式
公开(公告)号：US08412943B2
公开(公告)日：2013-04-02
申请号：US12741982
申请日：2008-11-07
申请人： Liaojun Pang , Jun Cao , Manxia Tie , Zhenhai Huang
发明人： Liaojun Pang , Jun Cao , Manxia Tie , Zhenhai Huang
IPC分类号： H04L29/00
CPC分类号： H04L9/3247 , G06F21/445 , G06Q20/3823 , G06Q20/388 , G06Q20/4097 , H04L9/0847 , H04L9/321 , H04L9/3271 , H04L63/0869 , H04L2209/80 , H04W12/06
摘要： A two-way access authentication method comprises: According to the system parameters pre-established by the third entity, the first entity sends the access authentication request packet to the second entity, then the second entity validates whether the signature of first entity is correct, and if yes, the share master key of second entity is calculated; the second entity generates the access authentication response packet and sends it to the first entity, then the first entity validates whether the signature of access authentication response packet and the message integrity check code are correct; if yes, the share master key of first entity is calculated; the first entity sends the access authentication acknowledge packet to the second entity, then the second entity validates the integrity of the access authentication acknowledge packet, if passing the validation, the share master key of first entity is consistent with that of the second entity, and the access authentication is achieved. For improving the security, after received the access authentication request packet sent by the first entity, the second entity may perform the identity validity validation and generates the access authentication response packet after passing the validation.
摘要翻译：双向接入认证方法包括：根据第三实体预先建立的系统参数，第一实体向第二实体发送接入认证请求报文，第二实体验证第一实体的签名是否正确，如果是，则计算第二实体的共享主密钥; 第二实体生成接入认证响应报文并将其发送给第一实体，则第一实体验证接入认证响应报文的签名和消息完整性检查码是否正确; 如果是，则计算第一实体的共享主密钥; 第一实体向第二实体发送接入认证确认分组，则第二实体验证接入认证确认分组的完整性，如果通过验证，则第一实体的共享主密钥与第二实体的共享主密钥一致，实现了访问认证。为了提高安全性，在接收到由第一实体发送的接入认证请求分组之后，第二实体可以在通过验证之后执行身份有效性验证并生成接入认证响应分组。

10. 发明申请

US20110314286A1 ACCESS AUTHENTICATION METHOD APPLYING TO IBSS NETWORK 有权
标题翻译：应用于IBSS网络的访问认证方法
公开(公告)号：US20110314286A1
公开(公告)日：2011-12-22
申请号：US12740082
申请日：2008-10-30
申请人： Manxia Tie , Jun Cao , Xiaolong Lai , Jiandong Li , Liaojun Pang , Zhenhai Huang
发明人： Manxia Tie , Jun Cao , Xiaolong Lai , Jiandong Li , Liaojun Pang , Zhenhai Huang
IPC分类号： H04L9/08 , G06F15/16
CPC分类号： H04W12/06 , H04L63/1466 , H04L63/162 , H04W12/04 , H04W84/12
摘要： An access authentication method applying to IBSS network involves the following steps of: 1) performing authentication role configuration for network entities; 2) authenticating an authentication entity and a request entity that have been performed the authentication role configuration via an authentication protocol; and 3) after finishing the authentication, the authentication entity and the request entity perform the key negotiation, wherein, the message integrity check field and protocol synchronization lock-in field are added in a key negotiation message. The access authentication method applying to IBSS network provided by the invention has the advantages of the better safeness and the higher execution efficiency.
摘要翻译：适用于IBSS网络的接入认证方法包括以下步骤：1）对网络实体进行认证角色配置; 2）通过认证协议认证已经执行认证角色配置的认证实体和请求实体; 和3）认证完成后，认证实体和请求实体进行密钥协商，其中消息完整性检查字段和协议同步锁定字段被添加到密钥协商消息中。适用于本发明提供的IBSS网络的接入认证方法具有安全性更高，执行效率更高的优点。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式