专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

11. 发明申请

US20110263225A1 METHOD AND APPARATUS FOR NETWORK PERSONALIZATION OF SUBSCRIBER DEVICES 有权
标题翻译：用于订户设备网络个性化的方法和装置
公开(公告)号：US20110263225A1
公开(公告)日：2011-10-27
申请号：US13091013
申请日：2011-04-20
申请人： Adrian Edward ESCOTT , Anand Palanigounder , Brian M. Rosenberg
发明人： Adrian Edward ESCOTT , Anand Palanigounder , Brian M. Rosenberg
IPC分类号： H04W12/00
CPC分类号： H04W12/06 , H04L63/0823 , H04L63/0869 , H04W48/02 , H04W76/10 , H04W88/02
摘要： A method and apparatus are provided for a subsidizing service provider entity to personalize a subscriber device to ensure the subscriber device cannot be used in a network of a different service provider entity. As the service provider entity subsidizes the subscriber device, it desires to ensure that subscriber device is personalized such that the subscriber device may operate only in its network and not a network of a different service provider entity. The subscriber device is pre-configured with a plurality of provider-specific and/or unassociated root certificates by the manufacturer of the subscriber device. A communication service is established between the service provider entity and the subscriber device allowing for the mutual authentication of the subscriber device and the service provider entity. After mutual authentication, the service provider entity sends a command to the subscriber device to disable/delete some/all root certificates that are unassociated with the service provider entity.
摘要翻译：提供了一种用于补贴服务提供商实体个人化用户设备以确保订户设备不能在不同服务提供商实体的网络中使用的方法和装置。当服务提供商实体补贴用户设备时，它希望确保订户设备被个性化，使得订户设备可以仅在其网络中操作，而不是不同于不同服务提供商实体的网络。用户设备由用户设备的制造商预先配置有多个提供者特定和/或未相关的根证书。在服务提供商实体和用户设备之间建立通信服务，允许用户设备和服务提供商实体的相互认证。在相互认证之后，服务提供商实体向用户设备发送命令以禁用/删除与服务提供商实体不相关的一些/所有根证书。

12. 发明授权

US10075420B2 Shared circuit switched security context 有权
公开(公告)号：US10075420B2
公开(公告)日：2018-09-11
申请号：US13639469
申请日：2010-05-04
申请人： Xipeng Zhu , Wolfgang Granzow , Adrian Edward Escott
发明人： Xipeng Zhu , Wolfgang Granzow , Adrian Edward Escott
IPC分类号： H04L29/06 , H04L9/32 , H04W36/00 , H04L9/08 , H04W12/04
CPC分类号： H04L63/06 , H04L9/0841 , H04L9/0869 , H04L9/3271 , H04L2209/80 , H04W12/04 , H04W36/0022 , H04W36/0038
摘要： Creation of update of a security context between user equipment and MSC/VLR (Mobile Switching Centre/Visitor Location Register) for circuit switched domain services is provided. The creation or update is based on conversion of the security context used in an evolved Universal Terrestrial Radio Access Network (E-UTRAN) in the Mobility Management Entity (MME) to a security context for the circuit switched domain target system and transferring it to a MSC/VLR. When user equipment is moved from E-UTRAN to GSM EDGE Radio Access Network/Universal Terrestrial Radio Access Network (GERAN/UTRAN), a MME does not need to perform authentication and key agreement procedures to establish shared circuit switched security context for the user equipment.

13. 发明授权

US09084110B2 Apparatus and method for transitioning enhanced security context from a UTRAN/GERAN-based serving network to an E-UTRAN-based serving network 有权
标题翻译：用于将增强的安全上下文从基于UTRAN / GERAN的服务网络转移到基于E-UTRAN的服务网络的装置和方法
公开(公告)号：US09084110B2
公开(公告)日：2015-07-14
申请号：US13159212
申请日：2011-06-13
申请人： Adrian Edward Escott , Anand Palanigounder
发明人： Adrian Edward Escott , Anand Palanigounder
IPC分类号： H04W12/04 , H04L29/06 , H04L9/08 , H04W36/00
CPC分类号： H04W12/04 , H04L9/08 , H04L63/06 , H04W36/0038
摘要： Disclosed is a method for transitioning an enhanced security context from a UTRAN/GERAN-based serving network to an E-UTRAN-based serving network. In the method, the remote station the remote station generates first and second session keys, in accordance with the enhanced security context, using a first enhanced security context root key associated with a UTRAN/GERAN-based serving network and a first information element. The remote station receives a first message from the E-UTRAN-based serving network. The first message signals to the remote station to generate a second enhanced security context root key for use with the E-UTRAN-based serving network. The remote station generates, in response to the first message, the second enhanced security context root key from the first enhanced security context root key using the s first and second session keys as inputs. The remote station protects wireless communications, on the E-UTRAN-based serving network, based on the second enhanced security context root key.
摘要翻译：公开了一种用于将增强的安全上下文从基于UTRAN / GERAN的服务网络转换到基于E-UTRAN的服务网络的方法。在该方法中，远程站使用与基于UTRAN / GERAN的服务网络和第一信息元素相关联的第一增强型安全上下文根密钥，根据增强的安全上下文生成第一和第二会话密钥。远程站从基于E-UTRAN的服务网络接收第一消息。第一消息向远程站发信号以产生用于与基于E-UTRAN的服务网络一起使用的第二增强安全上下文根密钥。响应于第一消息，远程站使用第一和第二会话密钥作为输入，从第一增强安全上下文根密钥生成第二增强安全上下文根密钥。远程站基于第二增强安全上下文根密钥来保护基于E-UTRAN的服务网络上的无线通信。

14. 发明授权

US08473002B2 Method and apparatus for network personalization of subscriber devices 有权
公开(公告)号：US08473002B2
公开(公告)日：2013-06-25
申请号：US13091013
申请日：2011-04-20
申请人： Adrian Edward Escott , Anand Palanigounder , Brian M. Rosenberg
发明人： Adrian Edward Escott , Anand Palanigounder , Brian M. Rosenberg
IPC分类号： H04W88/02
CPC分类号： H04W12/06 , H04L63/0823 , H04L63/0869 , H04W48/02 , H04W76/10 , H04W88/02
摘要： A method and apparatus are provided for a subsidizing service provider entity to personalize a subscriber device to ensure the subscriber device cannot be used in a network of a different service provider entity. As the service provider entity subsidizes the subscriber device, it desires to ensure that subscriber device is personalized such that the subscriber device may operate only in its network and not a network of a different service provider entity. The subscriber device is pre-configured with a plurality of provider-specific and/or unassociated root certificates by the manufacturer of the subscriber device. A communication service is established between the service provider entity and the subscriber device allowing for the mutual authentication of the subscriber device and the service provider entity. After mutual authentication, the service provider entity sends a command to the subscriber device to disable/delete some/all root certificates that are unassociated with the service provider entity.

15. 发明申请

US20120140731A1 DETERMINING A NON-ACCESS STRATUM MESSAGE COUNT IN HANDOVER 有权
标题翻译：在切换中确定非访问条码消息
公开(公告)号：US20120140731A1
公开(公告)日：2012-06-07
申请号：US12958234
申请日：2010-12-01
申请人： Vitaly Drapkin , Adrian Edward Escott , Rekha S. Iyer , Thomas Klingenbrunn , Kuo-Chun Lee , Shyamal Ramachandran
发明人： Vitaly Drapkin , Adrian Edward Escott , Rekha S. Iyer , Thomas Klingenbrunn , Kuo-Chun Lee , Shyamal Ramachandran
IPC分类号： H04W36/00
CPC分类号： H04W36/0038 , H04L2463/061 , H04W12/04 , H04W36/00 , H04W36/0066
摘要： Techniques for deriving message counts based at least in part on a locally stored message count and at least a portion of a message count received from a remote network node are disclosed. The message counts can relate to downlink (DL) non-access stratum (NAS) counts. In one aspect, a device can receive a number of least significant bits of the DL NAS count in a handover message. The device can derive a DL NAS count by utilizing a remaining portion of most significant bits of a locally stored DL NAS count, and can determine whether to increment or decrement the most significant bits based at least in part on a parameter to handle cases where the least significant bits of the locally stored DL NAS count have wrapped due to overflow and/or underflow.
摘要翻译：公开了至少部分地基于从远程网络节点接收的本地存储的消息计数和消息计数的至少一部分来导出消息计数的技术。消息计数可以与下行（DL）非接入层（NAS）计数有关。在一个方面，设备可以在切换消息中接收DL NAS计数的多个最低有效位。该设备可以通过利用本地存储的DL NAS计数的最高有效位的剩余部分来导出DL NAS计数，并且可以至少部分地基于参数来确定是否增加或减少最高有效位，以处理其中本地存储的DL NAS计数的最低有效位由于溢出和/或下溢而被包裹。

16. 发明申请

US20110314522A1 Method and apparatus for relay node management and authorization 有权
标题翻译：中继节点管理和授权的方法和装置
公开(公告)号：US20110314522A1
公开(公告)日：2011-12-22
申请号：US13162332
申请日：2011-06-16
申请人： Anand PALANIGOUNDER , Adrian Edward Escott
发明人： Anand PALANIGOUNDER , Adrian Edward Escott
IPC分类号： G06F21/00
CPC分类号： H04W12/06 , H04B7/155 , H04L41/0803 , H04L41/28 , H04W24/02 , H04W84/045 , H04W84/047
摘要： Methods and apparatuses are provided for deploying relay nodes in a communication network. A relay node can initially be wirelessly authenticated to a network entity using initial security credentials. In response to a successful authentication, the relay node is authorized to wirelessly communicate with the communication network for a limited purpose of configuring the relay node for relay device operations. The relay node can receive new security credentials from the communication network, and is subsequently re-authenticated to the network entity using the new security credentials. In response to a successful re-authentication, the relay node is authorized by the network to operate as a relay device for conveying traffic between one or more access terminals and the communication network.
摘要翻译：提供了用于在通信网络中部署中继节点的方法和装置。中继节点最初可以使用初始安全凭证对网络实体进行无线认证。响应于成功的认证，中继节点被授权与通信网络无线通信，用于配置用于中继设备操作的中继节点的有限目的。中继节点可以从通信网络接收新的安全凭证，并且随后使用新的安全凭证对网络实体进行重新认证。响应于成功的重新认证，中继节点被网络授权用作中继设备，用于在一个或多个接入终端与通信网络之间传送业务。

17. 发明申请

US20110185397A1 Method And Apparatus For Securing Wireless Relay Nodes 有权
标题翻译：用于保护无线中继节点的方法和装置
公开(公告)号：US20110185397A1
公开(公告)日：2011-07-28
申请号：US13011678
申请日：2011-01-21
申请人： Adrian Edward Escott , Anand Palanigounder , Fatih Ulupinar , Brian M. Rosenberg
发明人： Adrian Edward Escott , Anand Palanigounder , Fatih Ulupinar , Brian M. Rosenberg
IPC分类号： G06F21/20
CPC分类号： H04B7/155 , H04B7/2606 , H04L63/0428 , H04L63/164 , H04W12/06 , H04W16/26
摘要： In order to mitigate the security risk posed by the insertion of a relay node within a communication network, both device authentication and subscriber authentication are performed on the relay node. Device and subscriber authentication may be bound together so that a relay node is granted access to operate within the network only if both device and subscriber authentication are successful. Additionally, a communication network (or authentication node) may further verify that a subscriber identifier (received as part of subscriber authentication) is associated with the corresponding device type (identified by the device identifier in the corresponding device authentication) as part of the subscriber authentication process.
摘要翻译：为了减轻在通信网络内插入中继节点带来的安全隐患，在中继节点上进行设备认证和用户认证。设备和用户认证可以绑定在一起，以便只有在设备和用户认证都成功的情况下，中继节点被授权才能在网络内操作。另外，作为用户认证的一部分，通信网络（或认证节点）可以进一步验证用户标识符（作为用户认证的一部分接收）与对应的设备类型（由相应的设备认证中的设备标识符标识）相关联处理。

18. 发明申请

US20110159841A1 SYSTEMS, APPARATUS AND METHODS TO FACILITATE HANDOVER SECURITY 有权
标题翻译：系统，装置和方法来加强切换安全
公开(公告)号：US20110159841A1
公开(公告)日：2011-06-30
申请号：US12822700
申请日：2010-06-24
申请人： Adrian Edward Escott , Anand Palanigounder , Osok Song
发明人： Adrian Edward Escott , Anand Palanigounder , Osok Song
IPC分类号： H04W36/00 , H04M1/66
CPC分类号： H04W12/04 , H04L9/0872 , H04L2209/80 , H04L2463/061 , H04W36/0038 , H04W36/14 , H04W84/045
摘要： Systems, methods and apparatus for facilitating handover security are provided. In some embodiments, the method can include deriving a key value for handover from a GERAN/UTRAN system to an E-UTRAN system using a first input value. The method can also include deriving a key value for a connection establishment using a second input value, wherein the first input value is different from the second input value and is different from input values derived subsequent to the second input value, and wherein the first input value, the second input value and the input values derived subsequent to the second input value are configured to be input to a same key derivation function configured to output a key for use between a network entity and user equipment.
摘要翻译：提供了便于切换安全的系统，方法和装置。在一些实施例中，该方法可以包括使用第一输入值导出从GERAN / UTRAN系统切换到E-UTRAN系统的密钥值。该方法还可以包括使用第二输入值导出连接建立的密钥值，其中第一输入值不同于第二输入值，并且不同于在第二输入值之后导出的输入值，并且其中第一输入将第二输入值和在第二输入值之后导出的输入值配置为输入到配置为输出用于网络实体和用户设备之间的密钥的相同密钥导出功能。

19. 发明授权

US09197669B2 Apparatus and method for signaling enhanced security context for session encryption and integrity keys 有权
标题翻译：用于通知用于会话加密和完整性密钥的增强安全上下文的装置和方法
公开(公告)号：US09197669B2
公开(公告)日：2015-11-24
申请号：US13084378
申请日：2011-04-11
申请人： Adrian Edward Escott , Anand Palanigounder
发明人： Adrian Edward Escott , Anand Palanigounder
IPC分类号： H04L29/06 , H04L9/08 , H04W12/04 , H04W12/06
CPC分类号： H04L63/20 , H04L9/085 , H04W12/04 , H04W12/06 , H04W36/0038 , H04W36/14
摘要： Disclosed is a method for establishing an enhanced security context between a remote station and a serving network. In the method, the remote station forwards a first message to the serving network, wherein the first message includes an information element signaling that the remote station supports an enhanced security context. The remote station generates at least one session key, in accordance with the enhanced security context, using the information element. The remote station receives, in response to the first message, a second message having an indication that the serving network supports the enhanced security context. The remote station, in response to the second message, has wireless communications protected by the at least one session key.
摘要翻译：公开了一种用于在远程站和服务网络之间建立增强的安全上下文的方法。在该方法中，远程站将第一消息转发到服务网络，其中第一消息包括信令元素，其指示远程站支持增强的安全上下文。远程站使用信息元素根据增强的安全上下文生成至少一个会话密钥。远程站响应于第一消息接收具有指示服务网络支持增强的安全上下文的第二消息。远程站响应于第二消息具有由至少一个会话密钥保护的无线通信。

20. 发明授权

US08904167B2 Method and apparatus for securing wireless relay nodes 有权
标题翻译：用于保护无线中继节点的方法和装置
公开(公告)号：US08904167B2
公开(公告)日：2014-12-02
申请号：US13011678
申请日：2011-01-21
申请人： Adrian Edward Escott , Anand Palanigounder , Fatih Ulupinar , Brian M. Rosenberg
发明人： Adrian Edward Escott , Anand Palanigounder , Fatih Ulupinar , Brian M. Rosenberg
IPC分类号： H04L29/06 , H04B7/155 , H04B7/26 , H04W12/06 , H04W16/26
CPC分类号： H04B7/155 , H04B7/2606 , H04L63/0428 , H04L63/164 , H04W12/06 , H04W16/26
摘要： In order to mitigate the security risk posed by the insertion of a relay node within a communication network, both device authentication and subscriber authentication are performed on the relay node. Device and subscriber authentication may be bound together so that a relay node is granted access to operate within the network only if both device and subscriber authentication are successful. Additionally, a communication network (or authentication node) may further verify that a subscriber identifier (received as part of subscriber authentication) is associated with the corresponding device type (identified by the device identifier in the corresponding device authentication) as part of the subscriber authentication process.
摘要翻译：为了减轻在通信网络内插入中继节点带来的安全隐患，在中继节点上进行设备认证和用户认证。设备和用户认证可以绑定在一起，以便只有在设备和用户认证都成功的情况下，中继节点被授权才能在网络内操作。另外，作为用户认证的一部分，通信网络（或认证节点）可以进一步验证用户标识符（作为用户认证的一部分接收）与对应的设备类型（由相应的设备认证中的设备标识符标识）相关联处理。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式