专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

31. 发明申请

US20070113085A1 METHODS FOR SECURE AND BANDWIDTH EFFICIENT CRYPTOGRAPHIC SYNCHRONIZATION 有权
标题翻译：安全和带宽有效的同步同步方法
公开(公告)号：US20070113085A1
公开(公告)日：2007-05-17
申请号：US11470554
申请日：2006-09-06
申请人： Mats Naslund , Karl Norrman , Vesa Lehtovirta , Alex Raith
发明人： Mats Naslund , Karl Norrman , Vesa Lehtovirta , Alex Raith
IPC分类号： H04L9/00
CPC分类号： H04L9/12 , H04L9/0861 , H04L9/16
摘要： Methods for cryptographic synchronization of data packets. A roll-over counter (ROC) value is periodically appended to and transmitted with a data packet when a function of the packet sequence number equals a predetermined value. The ROC effectively synchronizes the cryptographic transformation of the data packets. Although the disclosed methods are generally applicable to many transmission protocols, they are particularly adaptable for use in systems wherein the data packets are transmitted to a receiver using the Secure Real-Time Transport Protocol (SRTP) as defined in Internet Engineering Task Force (IETF) Request for Comments (RFC) 3711.
摘要翻译：数据包的密码同步方法。当分组序列号的功能等于预定值时，翻转计数器（ROC）值周期性地附加到数据分组并与数据分组一起发送。 ROC有效地同步数据包的加密转换。虽然所公开的方法通常适用于许多传输协议，但是它们特别适用于在使用因特网工程任务组（IETF）中定义的安全实时传输协议（SRTP）将数据分组发送到接收机的系统中，请求注释（RFC）3711。

32. 发明授权

US08660270B2 Method and arrangement in a telecommunication system 有权
标题翻译：电信系统中的方法和布置
公开(公告)号：US08660270B2
公开(公告)日：2014-02-25
申请号：US12677675
申请日：2008-05-20
申请人： Rolf Blom , Gunnar Mildh , Karl Norrman
发明人： Rolf Blom , Gunnar Mildh , Karl Norrman
IPC分类号： H04L9/32 , H04M1/66
CPC分类号： H04L9/083 , H04L9/0816 , H04L9/0869 , H04L63/062 , H04L2209/24 , H04L2209/80 , H04L2463/061 , H04W8/20 , H04W12/04 , H04W92/10
摘要： A security key, K_eNB, for protecting RRC/UP traffic between a User Equipment, UE, and a serving eNodeB is established by a method and an arrangement in a Mobility Management Entity, MME, and in said UE, of an Evolved Packet System, EPS. The MME and the UE derives the security key, K_eNB, from at least an NAS uplink sequence number, NAS_U_SEQ, sent from the UE to the MME, and from an Access Security Management Entity-key, K_ASME, shared between the MME and the UE.
摘要翻译：用于在用户设备，UE和服务eNodeB之间保护RRC / UP业务的安全密钥K_eNB通过移动性管理实体MME中的所述UE和所述UE中的演进分组系统的方法和配置来建立， EPS。 MME和UE从从UE发送到MME的至少一个NAS上行链路序列号NAS_U_SEQ以及从MME和UE之间共享的接入安全管理实体密钥K_ASME中导出安全密钥K_eNB 。

33. 发明授权

US08122240B2 Method and apparatus for establishing a security association 有权
标题翻译：用于建立安全关联的方法和装置
公开(公告)号：US08122240B2
公开(公告)日：2012-02-21
申请号：US11305329
申请日：2005-12-19
申请人： Rolf Blom , Karl Norrman
发明人： Rolf Blom , Karl Norrman
IPC分类号： H04L29/06
CPC分类号： H04W12/04 , H04L9/0841 , H04L9/3271 , H04L63/0435 , H04L63/062 , H04L67/26 , H04L2209/56 , H04L2209/80 , H04W84/042
摘要： A method for establishing a security association between a client and a service node for the purpose of pushing information from the service node to the client, where the client and a key server share a base secret. The method comprises sending a request for generation and provision of a service key from the service node to a key server, the request identifying the client and the service node, generating a service key at the key server using the identities of the client and the service node, the base secret, and additional information, and sending the service key to the service node together with said additional information, forwarding said additional information from the service node to the client, and at the client, generating said service key using the received additional information and the base key. A similar approach may be used to provide p2p key management.
摘要翻译：一种用于在客户机和服务节点之间建立安全关联以便将信息从服务节点推送到客户端的方法，其中客户端和密钥服务器共享基本秘密。该方法包括从服务节点向密钥服务器发送生成和提供服务密钥的请求，所述请求标识客户端和服务节点，使用客户端和服务的身份在密钥服务器生成服务密钥节点，基本秘密和附加信息，以及将服务密钥与所述附加信息一起发送到服务节点，将所述附加信息从服务节点转发到客户端，并且在客户端处，使用接收到的附加信息生成所述服务密钥信息和基本键。可以使用类似的方法来提供p2p密钥管理。

34. 发明申请

US20110305339A1 Key Establishment for Relay Node in a Wireless Communication System 审中-公开
标题翻译：无线通信系统中继节点的关键建立
公开(公告)号：US20110305339A1
公开(公告)日：2011-12-15
申请号：US12964991
申请日：2010-12-10
申请人： Karl Norrman , Rolf Blom , Gunnar Mildh , Ingrid Nordstrand
发明人： Karl Norrman , Rolf Blom , Gunnar Mildh , Ingrid Nordstrand
IPC分类号： H04K1/00
CPC分类号： H04W12/0013 , H04L63/0272 , H04L63/0442 , H04L63/164 , H04L63/166 , H04L2463/061 , H04W12/003 , H04W88/08
摘要： Techniques for providing additional security for the wireless interface between a relay node and a donor base station are based on a security association established between the relay node and the donor base station. In an example method implemented in a relay node, communications with a donor base station are established and a first cryptographic key is generated according to a radio access protocol. A security association between the relay node and the donor base station is then established, using a credential stored at the relay node, and a second cryptographic key is derived from the first cryptographic key, using the stored credential, or one or more parameters relating to the security association, or information exchanged within the security association. The second key is used to protect user plane data relayed from one or more mobile terminals to the donor base station.
摘要翻译：用于为中继节点和施主基站之间的无线接口提供附加安全性的技术基于在中继节点和施主基站之间建立的安全关联。在中继节点中实现的示例性方法中，建立与施主基站的通信，并且根据无线电接入协议生成第一密码密钥。然后使用存储在中继节点处的凭证建立中继节点和施主基站之间的安全关联，并且使用存储的凭证从第一密码密钥导出第二密码密钥，或者与安全关联或在安全关联中交换的信息。第二个密钥用于保护从一个或多个移动终端中继到被授权基站的用户平面数据。

35. 发明申请

US20110302627A1 USER AUTHENTICATON 有权
标题翻译：用户认证
公开(公告)号：US20110302627A1
公开(公告)日：2011-12-08
申请号：US13201694
申请日：2009-02-18
申请人： Rolf Blom , Luis Barriga , Karl Norrman
发明人： Rolf Blom , Luis Barriga , Karl Norrman
IPC分类号： G06F21/00 , G06F7/04
CPC分类号： H04W12/06 , H04L63/0492 , H04L63/18 , H04L67/04
摘要： A method of authenticating access to a service comprises: a) receiving at a mobile terminal, over a bi-directional near-field communication channel between the mobile terminal and a browser, at least part of the identifier of a service; b) comparing, at the mobile terminal, at least part of the identifier received at the mobile terminal with a set of identifiers stored in the mobile device; and c) authenticating access to the service on the basis of whether at least part of the identifier received at the mobile terminal matches an identifier in the set. The mobile terminal may stored a set of URLs, and may compare a received URL (or part URL) with the set of stored URLs. It may generate an alert to the user if at least part of the URL received at the mobile terminal does not match a stored URL. User names and keys are not required to be stored on the web-browser, so the web-browser does not need to maintain a password database. This improves security, since a password database would be vulnerable to malicious code.
摘要翻译：认证对服务的访问的方法包括：a）在移动终端处通过移动终端和浏览器之间的双向近场通信信道，至少部分服务的标识符进行接收; b）在移动终端处将在移动终端处接收到的标识符的至少一部分与存储在移动设备中的一组标识符进行比较; 以及c）基于在所述移动终端中接收到的所述标识符的至少一部分是否匹配所述集合中的标识符来认证对所述服务的访问。移动终端可以存储一组URL，并且可以将接收到的URL（或部分URL）与存储的URL集合进行比较。如果在移动终端处接收到的URL的至少一部分与存储的URL不匹配，则它可以向用户生成警报。用户名和密钥不需要存储在Web浏览器上，因此Web浏览器不需要维护密码数据库。这提高了安全性，因为密码数据库将容易受到恶意代码的攻击。

36. 发明申请

US20100284368A1 Wireless LAN Mobility 有权
标题翻译：无线局域网移动
公开(公告)号：US20100284368A1
公开(公告)日：2010-11-11
申请号：US12743694
申请日：2007-11-23
申请人： Wassim Haddad , Karl Norrman
发明人： Wassim Haddad , Karl Norrman
IPC分类号： H04W36/00 , H04W84/02
CPC分类号： H04L63/0823 , H04L63/0807 , H04W12/06 , H04W36/0011 , H04W84/12
摘要： A method of performing hand-off of a Mobile Node from a previous Access Point to a new Access Point within a WLAN domain, where the previous and new Access Points are connected respectively to previous and new Access Routers. The method comprises, following a MAC authentication exchange between the Mobile Node and the new Access Point, sending a MAC Reassociation Request from the Mobile Node to the New Access Point, forwarding said Reassociation Request to said new Access Router, and sending the Reassociation Request from said new Access Router to said previous Access Router within an IP hand-off request, and authenticating the Reassociation Request at the previous Access Router and initiating the tunnelling of IP packets received at the previous Access Router and destined for said Mobile Node, towards said new Access Router.
摘要翻译：执行移动节点从先前接入点切换到WLAN域内的新接入点的方法，其中先前和新的接入点分别连接到先前和新的接入路由器。该方法包括：在移动节点和新的接入点之间的MAC认证交换之后，从移动节点向新的接入点发送MAC重新关联请求，将所述重新关联请求转发到所述新的接入路由器，并将所述重新关联请求从在IP切换请求中将所述新的接入路由器表示到所述先前的接入路由器，并且在先前的接入路由器上认证重新发送请求，并且发起在先前的接入路由器接收并发往所述移动节点的IP分组的隧道，朝向所述新的接入路由器

37. 发明申请

US20100267363A1 Methods and Apparatuses Generating a Radio Base Station Key in a Cellular Radio System 有权
标题翻译：在蜂窝无线电系统中生成无线基站密钥的方法和装置
公开(公告)号：US20100267363A1
公开(公告)日：2010-10-21
申请号：US12746879
申请日：2008-07-01
申请人： Rolf Blom , Magnus Lindstrom , Karl Norrman
发明人： Rolf Blom , Magnus Lindstrom , Karl Norrman
IPC分类号： H04M3/16
CPC分类号： H04W12/04 , H04J11/0069 , H04L9/0656 , H04L2463/061 , H04W88/08
摘要： In a method and a system for providing secure communication in a cellular radio system radio base station key is generated by determining a set of data bits known to both the UE and the radio base station, and creating the radio base station key in response to the determined set of data.
摘要翻译：在用于在蜂窝无线电系统中提供安全通信的方法和系统中，通过确定UE和无线电基站已知的一组数据比特来生成无线基站密钥，并响应于该无线基站密钥创建无线基站密钥确定的数据集。

38. 发明授权

US09301224B2 Method and apparatus in a network node for establishing neighbor cell relations in a wireless network 有权
标题翻译：用于在无线网络中建立邻居小区关系的网络节点中的方法和装置
公开(公告)号：US09301224B2
公开(公告)日：2016-03-29
申请号：US14379402
申请日：2012-02-27
申请人： Tobias Ahlstrom , Fredrik Gunnarsson , Elisabeth Hansson , Karl Norrman , Elena Myhre
发明人： Tobias Ahlstrom , Fredrik Gunnarsson , Elisabeth Hansson , Karl Norrman , Elena Myhre
IPC分类号： H04W36/00 , H04W24/02
CPC分类号： H04W36/0083 , H04W24/02
摘要： Disclosed is a method in a network node (106) for establishing neighbor cell relations in a wireless network for a source cell (107) served by the network node (106). The method comprises establishing (34) a temporary neighbor cell relation for a received unknown neighbor cell identification; verifying (36) validity of the temporary neighbor cell relation, and establishing (38) a permanent neighbor cell relation based on the established temporary neighbor cell relation, if the temporary neighbor cell relation is found valid, thus avoiding that a false neighbor cell identification results in a faulty permanent neighbor cell relation. Disclosed is also a corresponding apparatus in a network node for establishing neighbor cell relations in a wireless network.
摘要翻译：公开了一种网络节点（106）中用于在由网络节点（106）服务的源小区（107）的无线网络中建立邻居小区关系的方法。该方法包括建立（34）接收到的未知相邻小区标识的临时邻居小区关系; 验证（36）临时邻居关系的有效性，并建立（38）基于建立的临时邻居小区关系的永久邻居小区关系，如果临时邻居小区关系被发现有效，则避免假邻居小区识别结果在一个有缺陷的永久相邻细胞关系。还公开了一种用于在无线网络中建立邻居小区关系的网络节点中的对应装置。

39. 发明授权

US09106409B2 Method and apparatus for handling keys used for encryption and integrity 有权
标题翻译：用于处理用于加密和完整性的密钥的方法和装置
公开(公告)号：US09106409B2
公开(公告)日：2015-08-11
申请号：US11726527
申请日：2007-03-22
申请人： Rolf Blom , Karl Norrman , Mats Näslund
发明人： Rolf Blom , Karl Norrman , Mats Näslund
IPC分类号： H04L9/08 , H04L29/06 , H04W12/04
CPC分类号： H04L63/062 , H04L9/0844 , H04L9/0891 , H04L2209/80 , H04W12/04
摘要： A method and an arrangement for providing keys for protecting communication between a terminal (300) and service points in a communication network. A basic key (Ik) is first established with a service control node (304) when the terminal has entered the network. An initial modified key (Ik1) is then created in both the service control node and the terminal, by applying a predetermined first function (f) to at least the basic key and an initial value of a key version parameter (v). The initial modified key is sent to a first service point (302), such that it can be used to protect communication between the terminal and the first service point. When the terminal switches to a second service point (306), the first service point and the terminal both create a second modified key (Ik2) by applying a predetermined second function (g) to the initial modified key, and the first service point sends the second modified key to the second service point.
摘要翻译：一种用于提供用于保护终端（300）与通信网络中的服务点之间的通信的密钥的方法和装置。当终端进入网络时，首先与服务控制节点（304）建立基本密钥（Ik）。然后，通过将预定的第一函数（f）应用于至少基本密钥和密钥版本参数（v）的初始值，在服务控制节点和终端两者中创建初始修改密钥（Ik1）。初始修改的密钥被发送到第一服务点（302），使得其可以用于保护终端和第一服务点之间的通信。当终端切换到第二服务点（306）时，第一服务点和终端都通过对初始修改密钥应用预定的第二功能（g）来创建第二修改密钥（Ik2），并且第一服务点发送第二个修改密钥到第二个服务点。

40. 发明授权

US08874091B2 Automatic device capabilities change notification 有权
标题翻译：自动设备功能更改通知
公开(公告)号：US08874091B2
公开(公告)日：2014-10-28
申请号：US11997658
申请日：2006-07-11
申请人： Karl Norrman
发明人： Karl Norrman
IPC分类号： H04L29/08 , H04W8/22 , H04M3/42 , H04W8/18
CPC分类号： H04W8/22 , H04L67/04 , H04L67/303 , H04M3/42136 , H04M3/42178 , H04W8/18
摘要： An improved approach to mobile device capability management is described herein where a capability management device is provided at a mobile communication network. Upon change of a mobile device capability, a related notification is sent to the capability management device which applies a policy decision whether to track the capability change at the network side or not. Should the decision be ‘yes’, the capability management device starts a device management session to collect further information on a mobile device capability change beyond the information made available with the mobile device capability change notification. After retrieval of the mobile device capability change information, the capability management device will update its mobile device capability state accordingly.
摘要翻译：本文描述了移动设备能力管理的改进方法，其中在移动通信网络处提供能力管理设备。在更改移动设备能力时，将相关通知发送到能力管理设备，该能力管理设备应用策略决定是否跟踪网络侧的能力变化。如果该决定为“是”，则能力管理设备启动设备管理会话以收集有关移动设备能力改变的进一步信息，超出移动设备能力改变通知所提供的信息。检索移动设备能力变化信息后，能力管理设备将相应地更新其移动设备能力状态。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式