专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明公开

EP3242436A1 CRYPTOGRAPHIC KEY GENERATION 审中-公开
标题翻译：密码密钥生成
公开(公告)号：EP3242436A1
公开(公告)日：2017-11-08
申请号：EP17166183.8
申请日：2008-07-21
申请人： Telefonaktiebolaget LM Ericsson (publ)
发明人： Norrman, Karl , Näslund, Mats
IPC分类号： H04L9/08 , H04L9/32
CPC分类号： H04W12/06 , H04L9/065 , H04L9/0819 , H04L9/0838 , H04L9/0866 , H04L9/0869 , H04L9/0891 , H04L9/14 , H04L9/3271 , H04L2209/24 , H04L2209/80 , H04L2463/061 , H04W12/04
摘要： A technique for generating a cryptographic key (120) is provided. The technique is particularly useful for protecting the communication between two entities (202, 302; 204, 304) cooperatively running a distributed security operation. The technique comprises providing at least two parameters (106, 108), the first parameter (106) comprising or deriving from some cryptographic keys (110, 112) which have been computed by the first entity (202, 302) by running the security operation; and the second parameter (108) comprising or deriving from a token (116) having a different value each time the security (114) operation is initiated by the second entity (204, 304) for the first entity (202, 302). A key derivation function is applied to the provided parameters (106, 108) to generate the desired cryptographic key (120).
摘要翻译：提供了一种用于生成密码密钥（120）的技术。该技术对保护协作运行分布式安全操作的两个实体（202,302; 204,304）之间的通信特别有用。该技术包括提供至少两个参数（106,108），所述第一参数（106）包括或来自已经由所述第一实体（202,302）通过运行所述安全操作而计算出的一些密码密钥（110,112） ; 并且每当所述第二实体（204,304）针对所述第一实体（202,302）发起所述安全（114）操作时，所述第二参数（108）包括或者从具有不同值的令牌（116）导出。将密钥推导函数应用于提供的参数（106,108）以生成期望的密码密钥（120）。

2. 发明授权

EP2357858B3 Enhanced security design for cryptography in mobile communication systems 有权
公开(公告)号：EP2357858B3
公开(公告)日：2018-06-06
申请号：EP11161433.5
申请日：2004-09-10
申请人： Telefonaktiebolaget LM Ericsson (publ)
发明人： Blom, Rolf , Näslund, Mats , Arkko, Jari
IPC分类号： H04W12/04
CPC分类号： H04W12/04 , H04L9/0844 , H04L9/3273 , H04L63/0428 , H04L63/06 , H04L2209/80 , H04W12/02 , H04W12/06
摘要： A basic idea according to the invention is to enhance or update the basic cryptographic security algorithms by an algorithm-specific modification of the security key information generated in the normal key agreement procedure of the mobile communication system. For communication with the mobile terminal, the network side normally selects an enhanced version of one of the basic cryptographic security algorithms supported by the mobile, and transmits information representative of the selected algorithm to the mobile terminal. The basic security key resulting from the key agreement procedure (AKA, 10) between the mobile terminal and the network is then modified (22) in dependence on the selected algorithm to generate an algorithm-specific security key. The basic security algorithm (24) is then applied with this algorithm-specific security key as key input to enhance security for protected communication in the mobile communications network.

3. 发明公开

EP3876573A1 SECURITY ARRANGEMENTS IN COMMUNICATION BETWEEN A COMMUNICATION DEVICE AND A NETWORK DEVICE 有权
公开(公告)号：EP3876573A1
公开(公告)日：2021-09-08
申请号：EP21171317.7
申请日：2015-07-13
申请人： Telefonaktiebolaget LM Ericsson (publ)
发明人： Näslund, Mats , Norrman, Karl , Arkko, Jari , Sahlin, Bengt
IPC分类号： H04W12/06 , H04W12/04 , H04L9/08 , H04L9/32 , G06F21/60 , H04L29/06 , H04W12/041 , H04W12/0431 , H04W12/069 , H04W12/10
摘要： A first network device (MME) of a first communication network obtains a challenge (RAND), generates a first PFS parameter (PFSi), obtains a first verification code (VCiA) for the first PFS parameter (PFSi), and sends the challenge(RAND), the first PFS parameter (PFSi) and the first verification code (VCiA) to a communication device (ME), which in turn receives the challenge (RAND), the first PFS parameter (PFSi) and the first verification code (VCiA), forwards the challenge or a derivative thereof to an identity module (USIM), receives at least one result parameter (CK/IK, RES) as response from the identity module (USIM), determines, based on the result parameter (CK/IK, RES), whether the first PFS parameter (PFSi) is authentic, and if the determination is positive generates and sends the second PFS parameter (PFS2) to the first network device, which in turn verifies the second PFS parameter (PFS2) .

4. 发明授权

EP2528268B1 Cyptographic key generation 有权
标题翻译： Cyptographic密钥生成
公开(公告)号：EP2528268B1
公开(公告)日：2017-05-24
申请号：EP12005934.0
申请日：2008-07-21
申请人： Telefonaktiebolaget LM Ericsson (publ)
发明人： Näslund, Mats , Norrman, Karl
IPC分类号： H04L9/08 , H04L9/32 , H04L9/06
CPC分类号： H04W12/06 , H04L9/065 , H04L9/0819 , H04L9/0838 , H04L9/0866 , H04L9/0869 , H04L9/0891 , H04L9/14 , H04L9/3271 , H04L2209/24 , H04L2209/80 , H04L2463/061 , H04W12/04
摘要： A technique for generating a cryptographic key (120) is provided. The technique is particularly useful for protecting the communication between two entities (202, 302; 204, 304) cooperatively running a distributed security operation. The technique comprises providing at least two parameters (106, 108), the first parameter (106) comprising or deriving from some cryptographic keys (110, 112) which have been computed by the first entity (202, 302) by running the security operation; and the second parameter (108) comprising or deriving from a token (116) having a different value each time the security (114) operation is initiated by the second entity (204, 304) for the first entity (202, 302). A key derivation function is applied to the provided parameters (106, 108) to generate the desired cryptographic key (120).
摘要翻译：提供了一种用于生成密码密钥（120）的技术。该技术对保护协作运行分布式安全操作的两个实体（202,302; 204,304）之间的通信特别有用。所述技术包括向密钥导出函数提供输入，所述输入包括至少两个参数（106,108），所述第一参数（106）包括或从一些密码密钥（110,112）导出，所述密码密钥已经由第一通过运行所述安全操作和所述第二参数（108），所述第二参数（108）包括或从由所述第二实体（204,304）为所述第一实体（202,302）计算的令牌（116）操作。将密钥导出函数应用于所提供的输入以生成期望的密码密钥（120）。

5. 发明公开

EP2536095A1 Service access authentication method and system 有权
标题翻译：二氧化碳污染物管理系统
公开(公告)号：EP2536095A1
公开(公告)日：2012-12-19
申请号：EP11170110.8
申请日：2011-06-16
申请人： TELEFONAKTIEBOLAGET LM ERICSSON (publ)
发明人： Smeets, Bernard , Näslund, Mats
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/0815 , H04L63/0884
摘要： An access authentication system for authenticating a subscriber of a service, the access authentication system comprising an operator access authentication system and one or more private access authentication systems, each private access authentication system being communicatively connectable with the operator access authentication system, the operator access authentication system being adapted to provide one or more authentication functions for facilitating authentication of subscribers of the service based on respective subscriber authentication data items associated with credentials of the subscriber; wherein each private access authentication system is adapted to communicate one or more subscriber authentication data items to said operator access authentication system; and wherein each private access authentication system is further adapted to communicate one or more verification data items indicative of the private access authentication system operating in at least one predetermined state.
摘要翻译：用于认证服务的用户的接入认证系统，所述接入认证系统包括操作者接入认证系统和一个或多个私有接入认证系统，每个专用接入认证系统可与所述运营商接入认证系统通信地连接，所述操作员接入认证系统适于提供一个或多个认证功能，用于基于与所述订户的凭证相关联的相应订户认证数据项促进对所述服务的订户的认证; 其中每个专用接入认证系统适于将一个或多个用户认证数据项传送到所述操作员接入认证系统; 并且其中每个专用接入认证系统进一步适于传送指示在至少一个预定状态下操作的私有接入认证系统的一个或多个验证数据项。

6. 发明授权

EP2658163B1 Cryptographic key generation 有权
标题翻译：密钥生成
公开(公告)号：EP2658163B1
公开(公告)日：2016-12-14
申请号：EP13003646.0
申请日：2008-07-21
申请人： Telefonaktiebolaget LM Ericsson (publ)
发明人： Näslund, Mats , Norrman, Karl
IPC分类号： H04L9/08 , H04L9/32 , H04L9/06
CPC分类号： H04W12/06 , H04L9/065 , H04L9/0819 , H04L9/0838 , H04L9/0866 , H04L9/0869 , H04L9/0891 , H04L9/14 , H04L9/3271 , H04L2209/24 , H04L2209/80 , H04L2463/061 , H04W12/04
摘要： A technique for generating a cryptographic key (120) is provided. The technique is particularly useful for protecting the communication between two entities (202, 302; 204, 304) cooperatively running a distributed security operation. The technique comprises providing at least two parameters (106, 108), the first parameter (106) comprising or deriving from some cryptographic keys (110, 112) which have been computed by the first entity (202, 302) by running the security operation; and the second parameter (108) comprising or deriving from a token (116) having a different value each time the security (114) operation is initiated by the second entity (204, 304) for the first entity (202, 302). A key derivation function is applied to the provided parameters (106, 108) to generate the desired cryptographic key (120).

7. 发明授权

EP2536095B1 SERVICE ACCESS AUTHENTICATION METHOD AND SYSTEM 有权
标题翻译：业务接入认证方法及系统
公开(公告)号：EP2536095B1
公开(公告)日：2016-04-13
申请号：EP11170110.8
申请日：2011-06-16
申请人： Telefonaktiebolaget LM Ericsson (publ)
发明人： Smeets, Bernard , Näslund, Mats
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/0815 , H04L63/0884

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式