专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2013049587A2 METHOD AND APPARATUS FOR ENABLING ACCESS TO APPLICATIONS INTEGRATED WITH A VISITED NETWORK 审中-公开
标题翻译：用于访问与可视化网络集成的应用程序的方法和装置
公开(公告)号：WO2013049587A2
公开(公告)日：2013-04-04
申请号：PCT/US2012/057946
申请日：2012-09-28
申请人： INTERDIGITAL PATENT HOLDINGS INC. , DE FOY, Xavier , TARGALI, Yousif , SHAHEEN, Kamel M. , LIU, Hang , PATEL, Milan , LOTFALLAH, Osama
发明人： DE FOY, Xavier , TARGALI, Yousif , SHAHEEN, Kamel M. , LIU, Hang , PATEL, Milan , LOTFALLAH, Osama
IPC分类号： H04W8/20 , H04W12/06
CPC分类号： H04L63/0815 , H04L41/0893 , H04L41/5054 , H04L61/1588 , H04L63/102 , H04W4/50 , H04W4/70 , H04W8/04 , H04W8/20 , H04W12/06 , H04W12/08
摘要： A method and apparatus for interworking between a mobile network operator and an application provider are disclosed. A network application function (NAF) may be co-located with an OpenID provider such that an application server may communicate with the NAF to access a home subscriber server (HSS) via a bootstrapping server function (BSF). The interfaces between BSF and HSS, and between BSF and NAF may be enhanced to carry information that is available through Sh interface between the application server and the HSS. When the WTRU is roaming in a visited network, the application server may communicate with the visited network for charging and policing for serving the service request from the WTRU. The application server may be co-located with an NAF, and may authenticate the WTRU using Generic Bootstrapping Architecture, and may communicate with a BSF in a home network via an eZn-proxy function to access an HSS.
摘要翻译：公开了一种用于移动网络运营商和应用提供商之间的互通的方法和装置。网络应用功能（NAF）可以与OpenID提供者共同定位，使得应用服务器可以通过自举服务器功能（BSF）与NAF进行通信以访问归属用户服务器（HSS）。可以增强BSF与HSS之间以及BSF与NAF之间的接口，以承载通过应用服务器与HSS之间的Sh接口可用的信息。当WTRU在被访问网络中漫游时，应用服务器可以与拜访网络进行通信以进行计费和监管，以从WTRU服务服务请求。应用服务器可以与NAF共同定位，并且可以使用通用引导架构认证WTRU，并且可以经由eZn代理功能与家庭网络中的BSF通信以访问HSS。

2. 发明申请

WO2012092604A2 AUTHENTICATION AND SECURE CHANNEL SETUP FOR COMMUNICATION HANDOFF SCENARIOS 审中-公开
标题翻译：通信切换场景的认证和安全通道设置
公开(公告)号：WO2012092604A2
公开(公告)日：2012-07-05
申请号：PCT/US2011/068206
申请日：2011-12-30
申请人： INTERDIGITAL PATENT HOLDINGS, INC. , SHAH, Yogendra, C. , CHA, Inhyok , SCHMIDT, Andreas , GUCCIONE, Louis, J. , CASE, Lawrence , LEICHER, Andreas , TARGALI, Yousif
发明人： SHAH, Yogendra, C. , CHA, Inhyok , SCHMIDT, Andreas , GUCCIONE, Louis, J. , CASE, Lawrence , LEICHER, Andreas , TARGALI, Yousif
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/0209 , H04L63/0815 , H04L63/0892 , H04L63/10 , H04L63/18 , H04W12/04 , H04W12/06 , H04W12/08 , H04W36/0038
摘要： Persistent communication layer credentials generated on a persistent communication layer at one network may be leveraged to perform authentication on another. For example, the persistent communication layer credentials may include application- layer credentials derived on an application layer. The application-layer credentials may be used to establish authentication credentials for authenticating a mobile device for access to services at a network server. The authentication credentials may be derived from the application- layer credentials of another network to enable a seamless handoff from one network to another. The authentication credentials may be derived from the application- layer credentials using reverse bootstrapping or other key derivation functions. The mobile device and/or network entity to which the mobile device is being authenticated may enable communication of authentication information between the communication layers to enable authentication of a device using multiple communication layers.
摘要翻译：可以利用在一个网络上的持久通信层上生成的持久通信层凭证来对另一网络执行认证。例如，持久通信层凭证可以包括在应用层上派生的应用层凭证。应用层凭证可以用于建立用于认证移动设备以访问网络服务器处的服务的认证证书。身份验证凭证可以从另一个网络的应用层凭证导出，以实现从一个网络到另一个网络的无缝切换。认证证书可以使用反向自举或其他密钥派生函数从应用层证书派生。移动设备正在被认证的移动设备和/或网络实体可以启用通信层之间的认证信息的通信，以使得能够使用多个通信层来认证设备。

3. 发明申请

WO2013003535A1 AUTOMATED NEGOTIATION AND SELECTION OF AUTHENTICATION PROTOCOLS 审中-公开
标题翻译：自动协商和选择认证协议
公开(公告)号：WO2013003535A1
公开(公告)日：2013-01-03
申请号：PCT/US2012/044543
申请日：2012-06-28
申请人： INTERDIGITAL PATENT HOLDINGS, INC. , CHA, Inhyok , LEICHER, Andreas , SCHMIDT, Andreas , GUCCIONE, Louis, J. , SHAH, Yogendra , TARGALI, Yousif
发明人： CHA, Inhyok , LEICHER, Andreas , SCHMIDT, Andreas , GUCCIONE, Louis, J. , SHAH, Yogendra , TARGALI, Yousif
IPC分类号： H04W12/06 , H04L29/06
CPC分类号： H04L63/08 , H04L9/0816 , H04L9/32 , H04L12/2856 , H04L63/0815 , H04L63/102 , H04L63/205 , H04W12/06
摘要： Wireless telecommunications networks may implement various forms of authentication. There are a variety of different user and device authentication protocols that follow a similar network architecture, involving various network entities such as a user equipment (UE), a service provider (SP), and an authentication endpoint (AEP). To select an acceptable authentication protocol or credential for authenticating a user or UE, authentication protocol negotiations may take place between various network entities. For example, negotiations may take place in networks implementing a single-sign on (SSO) architecture and/or networks implementing a Generic Bootstrapping Architecture (GBA).
摘要翻译：无线电信网络可以实现各种形式的认证。存在各种不同的用户和设备认证协议，其遵循类似的网络架构，涉及诸如用户设备（UE），服务提供商（SP）和认证端点（AEP）的各种网络实体。为了选择用于验证用户或UE的可接受的认证协议或凭证，认证协议协商可以在各种网络实体之间进行。例如，可以在实现单点登录（SSO）架构和/或实现通用引导架构（GBA）的网络的网络中进行协商。

4. 发明申请

WO2014093613A1 INDEPENDENT IDENTITY MANAGEMENT SYSTEMS 审中-公开
标题翻译：独立的身份管理系统
公开(公告)号：WO2014093613A1
公开(公告)日：2014-06-19
申请号：PCT/US2013/074654
申请日：2013-12-12
申请人： INTERDIGITAL PATENT HOLDINGS, INC.
发明人： GUCCIONE, Louis, J. , CHOYI, Vinod, K. , SHAH, Yogendra, C. , SCHMIDT, Andreas , BRUSILOVSKY, Alec , TARGALI, Yousif
IPC分类号： H04L29/06
CPC分类号： H04L63/083 , H04L63/08 , H04L63/0853 , H04L63/0861 , H04L63/105 , H04L63/205 , H04W12/06
摘要： Systems, methods and apparatus embodiments are described herein for authenticating a user and/or a user equipment (UE). For example, a user and/or UE may request access to a service controlled by a service provider (SP). The user may be authenticated by an identity provider (IdP), producing a result. A user assertion may be provided to the SP, and the user assertion may comprise the user authentication result. The UE may be authenticated with another IdP, producing an associated result. A device assertion may be provided to the SP and may comprise the device authentication result. A master IdP may bind the assertions together and a consolidated assertion may be provided to the SP so that the user/UE can receive access to a service that is provided by the SP.
摘要翻译：本文描述了用于认证用户和/或用户设备（UE）的系统，方法和设备实施例。例如，用户和/或UE可以请求对由服务提供商（SP）控制的服务的访问。用户可以由身份提供商（IdP）认证，产生结果。可以向SP提供用户断言，并且用户断言可以包括用户认证结果。 UE可以用另一个IdP认证，产生相关联的结果。可以向SP提供设备断言，并且可以包括设备认证结果。主IdP可以将断言绑定在一起，并且可以向SP提供合并的断言，使得用户/ UE可以接收对由SP提供的服务的访问。

5. 发明申请

WO2014008238A1 FAST INITIAL LINK SETUP DISCOVERY FRAMES 审中-公开
标题翻译：快速初始链接建立发现框架
公开(公告)号：WO2014008238A1
公开(公告)日：2014-01-09
申请号：PCT/US2013/049034
申请日：2013-07-02
申请人： INTERDIGITAL PATENT HOLDINGS, INC.
发明人： WANG, Lei , MURIAS, Ronald G. , TARGALI, Yousif , ZHANG, Guodong , OLESEN, Robert L.
IPC分类号： H04W48/12 , H04W48/18 , H04W36/00
CPC分类号： H04W76/11 , H04W36/0061 , H04W48/12 , H04W48/16 , H04W48/18 , H04W84/12
摘要： A method for use in a wireless station includes receiving a fast initial link setup discovery (FD) frame from an access point (AP) between instances of a full beacon frame and determining whether to associate with the AP based on the received FD frame. The FD frame includes FD frame contents and a FD frame control field. The FD frame control field includes a service set identifier (SSID) length field, corresponding to a length of a variable length SSID field in the FD frame contents; and any one or more of: a capability presence indicator, an access network options presence indicator, a security presence indicator, an AP configuration change count presence indicator, or an AP next target beacon transmission time presence indicator. Each of the presence indicators is used to indicate whether a corresponding field is present in the FD frame contents.
摘要翻译：一种在无线站中使用的方法包括在完整信标帧的实例之间从接入点（AP）接收快速的初始链路建立发现（FD）帧，并且基于接收到的FD帧确定是否与AP相关联。 FD帧包括FD帧内容和FD帧控制字段。 FD帧控制字段包括对应于FD帧内容中的可变长度SSID字段的长度的服务集标识符（SSID）长度字段; 以及以下任何一个或多个：能力存在指示符，接入网络选项存在指示符，安全存在指示符，AP配置改变计数存在指示符或AP下一个目标信标传输时间存在指示符。每个存在指示符用于指示FD帧内容中是否存在相应的字段。

6. 发明申请

WO2014047135A2 GENERALIZED CRYPTOGRAPHIC FRAMEWORK 审中-公开
标题翻译：一般CRYPTOGRAPHIC框架
公开(公告)号：WO2014047135A2
公开(公告)日：2014-03-27
申请号：PCT/US2013/060341
申请日：2013-09-18
申请人： INTERDIGITAL PATENT HOLDINGS, INC.
发明人： SHAH, Yogendra, C. , CHOYI, Vinod, K. , TARGALI, Yousif
IPC分类号： G06F21/60 , H04W12/00
CPC分类号： H04L63/0428 , G06F21/602 , H04L63/0861 , H04W12/02 , H04W12/04 , H04W12/06 , H04W88/02
摘要： A user equipment (UE) comprises communication circuitry that establishes communication between the UE and a network, at least one processor, a plurality of security modules, a plurality of cryptographic function modules, and a cryptographic framework module. The security modules may each implement a different security method for securely communicating or authenticating with the network. Each different security method may require execution of one or more of a plurality of different cryptographic functions. Each of the cryptographic function modules may execute one or more of the plurality of different cryptographic functions. For example, the cryptographic framework module may receive a request from a select one security module. In response to the request, the cryptographic framework module may automatically invoke a select one of the cryptographic function modules iteratively, as required, to provide the requested cryptographic type and strength.
摘要翻译：用户设备（UE）包括在UE和网络之间建立通信的通信电路，至少一个处理器，多个安全模块，多个加密功能模块和加密框架模块。安全模块可以各自实现用于与网络安全地通信或认证的不同的安全方法。每个不同的安全方法可能需要执行多个不同密码功能中的一个或多个。每个加密功能模块可以执行多个不同密码功能中的一个或多个。例如，加密框架模块可以从选择的一个安全模块接收请求。响应于该请求，加密框架模块可以根据需要自动地迭代地调用加密功能模块中的选择一个以提供所请求的加密类型和强度。

7. 发明申请

WO2014028691A1 ENHANCEMENTS TO ENABLE FAST SECURITY SETUP 审中-公开
标题翻译：增强快速安全设置
公开(公告)号：WO2014028691A1
公开(公告)日：2014-02-20
申请号：PCT/US2013/055062
申请日：2013-08-15
申请人： INTERDIGITAL PATENT HOLDINGS, INC.
发明人： CHOYI, Vinod K. , SHAH, Yogendra C. , HOWRY, Dolores F. , DEMIR, Alpaslan , CHINCHOLI, Amith V. , GOYAL, Sanjay , TARGALI, Yousif
IPC分类号： H04L29/06 , H04W12/08 , H04W12/04
CPC分类号： H04W12/06 , H04L63/061 , H04L63/08 , H04L63/18 , H04W12/04 , H04W12/08 , H04W84/12 , H04W88/06
摘要： WTRUs, ARSs, APs, WLG/AAA proxies, networks, and methods thereon are disclosed for fast security setup on a multi-RAT WTRU. Methods of sharing security associations between RATs on a multi-RAT WTRU are disclosed. Methods of caching security associations are disclosed. Methods are disclosed for alerting an ANDSF server of an AP that should be considered for association. Enhancements to advertisements from an AP are disclosed where the advertisements may include SSID with a FQDN, a HESSID type information, or TAI type information. Methods of resolving AP identities to a reachable address are disclosed. An address resolution protocol is disclosed for resolving AP identities. ARSs are disclosed that may resolve a BSSID to a network routable address. Protocols for carrying AP identities and security parameters are disclosed. Methods are disclosed of using ANDSF to provide the WTRU with security information and parameters of an AP. An RSN may indicate security capabilities.
摘要翻译： WTRU，ARS，AP，WLG / AAA代理，网络和其上的方法被公开用于在多RAT WTRU上的快速安全设置。公开了在多RAT WTRU上的RAT之间共享安全关联的方法。披露了缓存安全关联的方法。公开了用于警报应考虑进行关联的AP的ANDSF服务器的方法。公开了对来自AP的广告的增强，其中广告可以包括具有FQDN的SSID，HESSID类型信息或TAI类型信息。公开了将AP身份解析为可达地址的方法。公开了解决AP身份的地址解析协议。公开了可以将BSSID解析为网络可路由地址的ARS。公开了携带AP身份和安全参数的协议。公开了使用ANDSF向WTRU提供AP的安全信息和参数的方法。 RSN可以指示安全功能。

8. 发明申请

WO2013165605A1 ONE ROUND TRIP AUTHENTICATION USING SINGLE SIGN-ON SYSTEMS 审中-公开
标题翻译：使用单一标志系统进行单循环验证
公开(公告)号：WO2013165605A1
公开(公告)日：2013-11-07
申请号：PCT/US2013/032073
申请日：2013-03-15
申请人： INTERDIGITAL PATENT HOLDINGS, INC.
发明人： TARGALI, Yousif , CHOYI, Vinod, Kumar , SHAH, Yogendra, C. , CHAUDRY, Aamer, Sattar , SCHMIDT, Andreas , LEICHER, Andreas
IPC分类号： H04L29/06 , H04W12/06 , H04W84/12 , H04W88/08
CPC分类号： H04L63/0815 , H04L63/162 , H04W12/06 , H04W84/12 , H04W88/08
摘要： Optimized authentication of a user device at an access point wherein the user device establishes a security association with a single sign- on server (SSO) implemented by an identity provider. The SSO server dynamically generates credentials which are used by the user device to gain secure access to the access point.
摘要翻译：在用户设备与由身份提供商实现的单一登录服务器（SSO）建立安全关联的接入点处的用户设备的优化认证。 SSO服务器动态生成用户设备使用的凭据，以获得对接入点的安全访问。

9. 发明申请

WO2013151752A1 ON-DEMAND IDENTITY AND CREDENTIAL SIGN-UP 审中-公开
标题翻译：需求特征和资格认证
公开(公告)号：WO2013151752A1
公开(公告)日：2013-10-10
申请号：PCT/US2013/032172
申请日：2013-03-15
申请人： INTERDIGITAL PATENT HOLDINGS, INC.
发明人： CHOYI, Vinod, Kumar , TARGALI, Yousif , SHAH, Yogendra, C.
IPC分类号： H04L29/06 , H04W12/06 , H04W8/18 , H04W4/00
CPC分类号： H04L63/0815 , H04W12/06
摘要： An identity and credentials may allow a mobile device to communicate with one or more service providers that provide a service. A hotspot network that provides access to the internet is an example of such a service provider. A user equipment (UE), such as a wireless transmit/recite unit (WTRU), may authenticate with an identity provider, such as an OpenID identity provider, to establish an original identity. A new identity may be requested from the identity provider, and a selected one credential that is associated with the new identity may be requested and obtained from the identity provider. The selected one credential may be required to access a service that is provided by a network entity, such as a hotspot network for example. The UE may authenticate with the network entity using the new identity and the selected credential.
摘要翻译：身份和凭证可以允许移动设备与提供服务的一个或多个服务提供商进行通信。提供对互联网的访问的热点网络是这样的服务提供商的示例。诸如无线发射/背诵单元（WTRU）的用户设备（UE）可以与诸如OpenID身份提供商的身份提供商进行身份验证，以建立原始身份。可以从身份提供商请求新的身份，并且可以从身份提供者请求并获得与新身份相关联的所选一个凭证。可能需要所选择的一个凭证来访问例如由诸如热点网络的网络实体提供的服务。 UE可以使用新的身份和所选凭证与网络实体进行身份验证。

10. 发明申请

WO2013134669A1 HOTSPOT EVOLUTION SUPPORT AND DISCOVERY THROUGH NON-3GPP ACCESS NETWORKS 审中-公开
标题翻译：通过非3GPP接入网络的HOTSPOT演进支持和发现
公开(公告)号：WO2013134669A1
公开(公告)日：2013-09-12
申请号：PCT/US2013/029933
申请日：2013-03-08
申请人： INTERDIGITAL PATENT HOLDINGS, INC.
发明人： LIVET, Catherine , REZNIK, Alexander , PERRAS, Michelle , TARGALI, Yousif , CHITRAPU, Prabhakar , SHAHEEN, Kamel M. , KARAMPATSIS, Dimitrios , ZUNIGA, Juan, Carlos
IPC分类号： H04W48/16
CPC分类号： H04W48/08 , H04W84/02
摘要： Systems, methods, and instrumentalities are disclosed to assist a user equipment (UE) in accessing a wireless local area network (WLAN). A first UE may obtain information from one or more WLANs. The information may include, for example, an access network query protocol (ANQP) element associated with a WLAN. The first UE may send the information to an access network discovery and selection function (ANDSF). The ANDSF may update an ANDSF management object (MO) based on the received information. The ANDSF may receive information from a plurality of UEs relating to one or more WLANs. The ANDSF may send the updated ANDSF MO to at least one of a second UE or an access point. The updated ANDSF MO may comprise information about WLAN networks available to the second UE. The second UE may forego an ANQP query of a WLAN when the updated ANDSF MO includes information about the WLAN.
摘要翻译：公开了系统，方法和手段来帮助用户设备（UE）访问无线局域网（WLAN）。第一UE可以从一个或多个WLAN获取信息。该信息可以包括例如与WLAN相关联的接入网络查询协议（ANQP）元素。第一UE可以将信息发送到接入网络发现和选择功能（ANDSF）。 ANDSF可以基于接收到的信息来更新ANDSF管理对象（MO）。 ANDSF可以从与一个或多个WLAN相关的多个UE接收信息。 ANDSF可以将更新的ANDSF MO发送到第二UE或接入点中的至少一个。更新的ANDSF MO可以包括关于可用于第二UE的WLAN网络的信息。当更新的ANDSF MO包括关于WLAN的信息时，第二UE可以放弃WLAN的ANQP查询。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式