专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

51. 发明授权

US08811987B2 Method and arrangement for creation of association between user equipment and an access point 有权
标题翻译：用于创建用户设备和接入点之间的关联的方法和装置
公开(公告)号：US08811987B2
公开(公告)日：2014-08-19
申请号：US13140818
申请日：2008-12-19
申请人： Göran Selander , Jari Vikberg , Karl Norrman , Rolf Blom , Mats Näslund
发明人： Göran Selander , Jari Vikberg , Karl Norrman , Rolf Blom , Mats Näslund
IPC分类号： H04M1/66 , H04M3/00 , H04W4/00
CPC分类号： H04W12/08 , H04L63/101 , H04W84/045
摘要： Methods, apparatus, and computer program products for creating an association between a first user equipment and at least one access point assisted by a registration server in a telecommunication network are disclosed. The registration server responds to a first contact request carried out using a first association number for the access point, provided by the first user equipment, receives a first association request for the association with the access point, provided by the first user equipment, authorizes the first association request based on a first authorization information provided by the first user equipment; registers the association between the first user equipment and the access point responsive to authorization of the first association request. The first user equipment is associated with the access point and the association is administered by the registration server.
摘要翻译：公开了用于在第一用户设备和由电信网络中的注册服务器辅助的至少一个接入点之间建立关联的方法，设备和计算机程序产品。注册服务器响应由第一用户设备提供的接入点的第一关联号码执行的第一联系请求，接收由第一用户设备提供的与接入点的关联的第一关联请求，授权基于由第一用户设备提供的第一授权信息的第一关联请求; 响应于第一关联请求的授权，注册第一用户设备和接入点之间的关联。第一用户设备与接入点相关联，该关联由注册服务器管理。

52. 发明申请

US20110107082A1 Storing and Forwarding Media Data 有权
标题翻译：存储和转发媒体数据
公开(公告)号：US20110107082A1
公开(公告)日：2011-05-05
申请号：US12997924
申请日：2008-06-16
申请人： Rolf Blom , Karl Norrman
发明人： Rolf Blom , Karl Norrman
IPC分类号： H04L9/00
CPC分类号： H04L63/168 , H04L65/605 , H04L65/608 , H04L69/22
摘要： A method apparatus for storing and forwarding media data in a communication network. An intermediate node disposed between a media data source node and a client node receives encrypted media data packets from the media data source node. The intermediate node stores the received media data packets in a memory for later sending to the client node, and adjusts fields in the original header of each stored media data packet to create modified media data packets having a modified header, and sends adjustment information to the client node. The adjustment information allows the client node to recreate the original headers from the modified headesr, before decrypting the encrypted media packets with keying materials already sent between the media data source node and the client node. The modified media data packets are then sent to the client node for decryption. This allows the intermediate node to “store and forward” SRTP data without being able to access the encrypted data content.
摘要翻译：一种在通信网络中存储和转发媒体数据的方法装置。设置在媒体数据源节点和客户端节点之间的中间节点从媒体数据源节点接收加密的媒体数据分组。中间节点将接收到的媒体数据分组存储在存储器中用于随后发送到客户端节点，并且调整每个存储的媒体数据分组的原始报头中的字段以创建具有修改的报头的修改的媒体数据分组，并将调整信息发送到客户端节点。调整信息允许客户端节点在已经在媒体数据源节点和客户机节点之间发送的密钥材料解密加密的媒体分组之前，从修改的头节点重新创建原始报头。然后将经修改的媒体数据分组发送到客户端节点进行解密。这允许中间节点“存储和转发”SRTP数据，而不能访问加密的数据内容。

53. 发明申请

US20110059736A1 IDENTIFICATION OF A MANIPULATED OR DEFECT BASE STATION DURING HANDOVER 有权
标题翻译：在切换期间识别操作或缺陷基站
公开(公告)号：US20110059736A1
公开(公告)日：2011-03-10
申请号：US12922314
申请日：2008-08-25
申请人： Karl Norrman , Bernard Smeets , Rolf Blom
发明人： Karl Norrman , Bernard Smeets , Rolf Blom
IPC分类号： H04W24/04
CPC分类号： H04W36/0083 , H04W12/10 , H04W12/12 , H04W36/34 , H04W88/08
摘要： A method of and arrangement for detecting a manipulated or defect base station of a communication network is disclosed, wherein a target base station, having selected one or more algorithms on the basis of a prioritized algorithm list (PAL) and a UE security capabilities (SCAP), reports UE SCAP related information to a core network node. The core network node having knowledge of the UE SCAP compares this information or parts of this information with the retrieved UE SCAP related information in order to be able to identify a manipulated or defect base station when a comparison fails to match.
摘要翻译：公开了一种用于检测通信网络的被操纵或缺陷基站的方法和装置，其中基于优先级算法列表（PAL）和UE安全能力（SCAP）选择了一个或多个算法的目标基站）向核心网络节点报告UE SCAP相关信息。具有UE SCAP知识的核心网络节点将该信息或该部分信息与检索到的UE SCAP相关信息进行比较，以便能够在比较不匹配时识别被操纵或缺陷基站。

54. 发明申请

US20100316223A1 Method and Arrangement in a Telecommunication System 有权
标题翻译：电信系统中的方法和布置
公开(公告)号：US20100316223A1
公开(公告)日：2010-12-16
申请号：US12677675
申请日：2008-05-20
申请人： Rolf Blom , Gunnar Mildh , Karl Norrman
发明人： Rolf Blom , Gunnar Mildh , Karl Norrman
IPC分类号： H04L9/08 , H04L9/00 , H04L29/06
CPC分类号： H04L9/083 , H04L9/0816 , H04L9/0869 , H04L63/062 , H04L2209/24 , H04L2209/80 , H04L2463/061 , H04W8/20 , H04W12/04 , H04W92/10
摘要： A security key, K_eNB, for protecting RRC/UP traffic between a User Equipment, UE, and a serving eNodeB is established by a method and an arrangement in a Mobility Management Entity, MME, and in said UE, of an Evolved Packet System, EPS. The MME and the UE derives the security key, K_eNB, from at least an NAS uplink sequence number, NAS_U_SEQ, sent from the UE to the MME, and from an Access Security Management Entity-key, K_ASME, shared between the MME and the UE.
摘要翻译：用于在用户设备，UE和服务eNodeB之间保护RRC / UP业务的安全密钥K_eNB通过移动性管理实体MME中的所述UE和所述UE中的演进分组系统的方法和配置来建立， EPS。 MME和UE从从UE发送到MME的至少一个NAS上行链路序列号NAS_U_SEQ以及从MME和UE之间共享的接入安全管理实体密钥K_ASME中导出安全密钥K_eNB 。

55. 发明授权

US09253178B2 Method and apparatus for authenticating a communication device 有权
标题翻译：用于认证通信设备的方法和设备
公开(公告)号：US09253178B2
公开(公告)日：2016-02-02
申请号：US13979476
申请日：2011-07-19
申请人： Rolf Blom , Mats Näslund , Karl Norrman
发明人： Rolf Blom , Mats Näslund , Karl Norrman
IPC分类号： H04L29/00 , H04L29/06 , H04L9/08 , H04L9/32 , H04W12/06 , H04W4/00
CPC分类号： H04L63/08 , H04L9/0833 , H04L9/321 , H04L9/3271 , H04L63/104 , H04L63/107 , H04L2209/80 , H04W4/70 , H04W12/06
摘要： According to an aspect of the present invention there is provided a method of operating a communication device, the communication device being part of a group comprising two or more communication devices that share a subscription to a communication network. The method comprises receiving a group authentication challenge from the network, at least part of the group authentication challenge having been generated using group authentication information that is associated with the shared subscription. The device then generates a device specific response to the group authentication challenge using the group authentication information and device specific authentication information and sends the device specific response to the network. The device is for example a member of a machine-type communication device group.
摘要翻译：根据本发明的一个方面，提供了一种操作通信设备的方法，所述通信设备是包括共享对通信网络的订阅的两个或更多个通信设备的组的一部分。该方法包括从网络接收组认证挑战，使用与共享订阅相关联的组认证信息已经生成了组认证挑战的至少一部分。然后，该设备使用组认证信息和设备特定认证信息生成对组认证挑战的设备特定响应，并将设备特定响应发送到网络。该设备例如是机器型通信设备组的成员。

56. 发明授权

US08966105B2 Sending secure media streams 有权
标题翻译：发送安全媒体流
公开(公告)号：US08966105B2
公开(公告)日：2015-02-24
申请号：US12999178
申请日：2009-02-20
申请人： Rolf Blom , Yi Cheng , John Mattsson , Mats Nåslund , Karl Norrman
发明人： Rolf Blom , Yi Cheng , John Mattsson , Mats Nåslund , Karl Norrman
IPC分类号： G06F15/16 , H04L29/06
CPC分类号： H04L65/605 , H04L63/0428 , H04L65/608
摘要： A method and apparatus for sending a first secured media stream having a payload via an intermediate node. The intermediate node receives from a sender the first secured media stream. An end-to-end context identifier and a hop-by-hop context identifier are determined for the first secured media stream, where the hop-by-hop context identifier relates to the intermediate node and the end-to-end identifier relates to the sender. A second secured media stream is generated, which includes at least the payload of the first secured media stream and the context identifiers to identify the first secured media stream. The second secured media stream is sent to a receiving node, and the context identifiers are also sent to the receiving node. The context identifiers are usable by the receiving node to recover the first secured media stream.
摘要翻译：一种用于经由中间节点发送具有有效载荷的第一安全媒体流的方法和装置。中间节点从发送器接收第一安全媒体流。针对第一安全媒体流确定端到端上下文标识符和逐跳上下文标识符，其中逐跳上下文标识符与中间节点相关，并且端到端标识符与发件人。生成第二安全媒体流，其包括至少第一安全媒体流的有效载荷和上下文标识符以识别第一安全媒体流。第二安全媒体流被发送到接收节点，并且上下文标识符也被发送到接收节点。上下文标识符可由接收节点使用以恢复第一安全媒体流。

57. 发明申请

US20140096193A1 ACCESS THROUGH NON-3GPP ACCESS NETWORKS 有权
标题翻译：通过非3GPP接入网络访问
公开(公告)号：US20140096193A1
公开(公告)日：2014-04-03
申请号：US14090828
申请日：2013-11-26
申请人： Mats Näslund , Jari Arkko , Rolf Blom , Vesa Petteri Lehtovirta , Karl Norrman , Stefan Rommer , Bengt Sahlin
发明人： Mats Näslund , Jari Arkko , Rolf Blom , Vesa Petteri Lehtovirta , Karl Norrman , Stefan Rommer , Bengt Sahlin
IPC分类号： H04L29/06
CPC分类号： H04W12/06 , G06F21/30 , H04L63/0272 , H04L63/08 , H04L63/0892 , H04L63/1433 , H04L63/162 , H04L63/164 , H04L63/20 , H04W60/00 , H04W72/0493
摘要： When setting up communication from a user equipment UE (1), such as for providing IP access for the UE in order to allow it to use some service, information or an indication of at least one network property relating to a first network, e.g. the current access network (3, 3′), is sent to the UE from a node (13) in a second network such as the home network (5) of the subscriber of the UE. The information or indication can be sent in a first stage of an authentication procedure being part of the setting up of a connection from the UE. In particular, the network property can indicate whether the access network (3, 3′) is trusted or not.
摘要翻译：当从用户设备UE（1）建立通信时，例如用于为UE提供IP接入，以便允许其使用与第一网络相关的一些服务，信息或至少一个网络属性的指示，例如，当前接入网络（3,3'）从诸如UE的用户的归属网络（5）的第二网络中的节点（13）发送到UE。可以在认证过程的第一阶段中发送信息或指示，这是作为来自UE的连接的建立的一部分。特别地，网络属性可以指示接入网络（3,3'）是否被信任。

58. 发明申请

US20140053241A1 Authenticating a Device in a Network 有权
标题翻译：验证网络中的设备
公开(公告)号：US20140053241A1
公开(公告)日：2014-02-20
申请号：US14113047
申请日：2011-04-27
申请人： Karl Norrman , Rolf Blom , Mats Näslund
发明人： Karl Norrman , Rolf Blom , Mats Näslund
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/062 , H04L63/0876 , H04L63/20 , H04W12/04 , H04W12/06
摘要： There is disclosed a system for authentication of a device in a network by establishing a second security context between the device and a serving network node when a first security context has previously been established, assisted by an authentication server, based on a random value and a secret shared between an identity module associated with the device and the authentication server. First re-use information from the establishment of the first security context is stored at the authentication server and at the device, the first re-use information enabling secure generation of the second security context from the random value and the secret. Second re-use information may be generated or stored at the device. A context regeneration request is generated at the device, the context regeneration request authenticated at least partly based on the secret. The context regeneration request is sent to the serving network node. The context regeneration request is sent from the serving network node to the authentication server. The context regeneration request is verified at the authentication server. The second security context is generated at the authentication server based on at least the secret, the random value, and the first and second re-use information. The second security context is communicated from the authentication server to the serving network node.
摘要翻译：公开了一种用于通过基于随机值和由认证服务器辅助的先前建立第一安全上下文而在设备和服务网络节点之间建立第二安全上下文的网络中的设备的认证系统。在与设备相关联的身份模块和认证服务器之间共享秘密。来自建立第一安全上下文的第一重新使用信息被存储在认证服务器和设备处，第一重用信息使得能够从随机值和秘密中安全地生成第二安全上下文。可以在设备处生成或存储第二重用信息。在设备上生成上下文再生请求，上下文再生请求至少部分地基于秘密进行认证。上下文再生请求被发送到服务网络节点。上下文再生请求从服务网络节点发送到认证服务器。认证服务器验证上下文再生请求。至少基于秘密，随机值以及第一和第二再利用信息，在认证服务器产生第二安全上下文。第二安全上下文从认证服务器传送到服务网络节点。

59. 发明授权

US08620267B2 Identification of a manipulated or defect base station during handover 有权
标题翻译：在切换期间识别被操纵或缺陷基站
公开(公告)号：US08620267B2
公开(公告)日：2013-12-31
申请号：US12922314
申请日：2008-08-25
申请人： Karl Norrman , Bernard Smeets , Rolf Blom
发明人： Karl Norrman , Bernard Smeets , Rolf Blom
IPC分类号： H04M1/66 , H04W24/00 , H04W36/00
CPC分类号： H04W36/0083 , H04W12/10 , H04W12/12 , H04W36/34 , H04W88/08
摘要： A method of and arrangement for detecting a manipulated or defect base station of a communication network is disclosed, wherein a target base station, having selected one or more algorithms on the basis of a prioritized algorithm list (PAL) and a UE security capabilities (SCAP), reports UE SCAP related information to a core network node. The core network node having knowledge of the UE SCAP compares this information or parts of this information with the retrieved UE SCAP related information in order to be able to identify a manipulated or defect base station when a comparison fails to match.
摘要翻译：公开了一种用于检测通信网络的被操纵或缺陷基站的方法和装置，其中基于优先级算法列表（PAL）和UE安全能力（SCAP）选择了一个或多个算法的目标基站）向核心网络节点报告UE SCAP相关信息。具有UE SCAP知识的核心网络节点将该信息或该部分信息与检索到的UE SCAP相关信息进行比较，以便能够在比较不匹配时识别被操纵或缺陷基站。

60. 发明申请

US20110093609A1 Sending Secure Media Streams 有权
标题翻译：发送安全媒体流
公开(公告)号：US20110093609A1
公开(公告)日：2011-04-21
申请号：US12999178
申请日：2009-02-20
申请人： Rolf Blom , Yi Cheng , John Mattsson , Mats Näslund , Karl Norrman
发明人： Rolf Blom , Yi Cheng , John Mattsson , Mats Näslund , Karl Norrman
IPC分类号： G06F15/16
CPC分类号： H04L65/605 , H04L63/0428 , H04L65/608
摘要： A method and apparatus for sending a first secured media stream having a payload via an intermediate node. The intermediate node receives from a sender the first secured media stream. An end-to-end context identifier and a hop-by-hop context identifier are determined for the first secured media stream, where the hop-by-hop context identifier relates to the intermediate node and the end-to-end identifier relates to the sender. A second secured media stream is generated, which includes at least the payload of the first secured media stream and the context identifiers to identify the first secured media stream. The second secured media stream is sent to a receiving node, and the context identifiers are also sent to the receiving node. The context identifiers are usable by the receiving node to recover the first secured media stream.
摘要翻译：一种用于经由中间节点发送具有有效载荷的第一安全媒体流的方法和装置。中间节点从发送器接收第一安全媒体流。针对第一安全媒体流确定端到端上下文标识符和逐跳上下文标识符，其中逐跳上下文标识符与中间节点相关，并且端到端标识符与发件人。生成第二安全媒体流，其包括至少第一安全媒体流的有效载荷和上下文标识符以识别第一安全媒体流。第二安全媒体流被发送到接收节点，并且上下文标识符也被发送到接收节点。上下文标识符可由接收节点使用以恢复第一安全媒体流。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式