专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08904167B2 Method and apparatus for securing wireless relay nodes 有权
标题翻译：用于保护无线中继节点的方法和装置
公开(公告)号：US08904167B2
公开(公告)日：2014-12-02
申请号：US13011678
申请日：2011-01-21
申请人： Adrian Edward Escott , Anand Palanigounder , Fatih Ulupinar , Brian M. Rosenberg
发明人： Adrian Edward Escott , Anand Palanigounder , Fatih Ulupinar , Brian M. Rosenberg
IPC分类号： H04L29/06 , H04B7/155 , H04B7/26 , H04W12/06 , H04W16/26
CPC分类号： H04B7/155 , H04B7/2606 , H04L63/0428 , H04L63/164 , H04W12/06 , H04W16/26
摘要： In order to mitigate the security risk posed by the insertion of a relay node within a communication network, both device authentication and subscriber authentication are performed on the relay node. Device and subscriber authentication may be bound together so that a relay node is granted access to operate within the network only if both device and subscriber authentication are successful. Additionally, a communication network (or authentication node) may further verify that a subscriber identifier (received as part of subscriber authentication) is associated with the corresponding device type (identified by the device identifier in the corresponding device authentication) as part of the subscriber authentication process.
摘要翻译：为了减轻在通信网络内插入中继节点带来的安全隐患，在中继节点上进行设备认证和用户认证。设备和用户认证可以绑定在一起，以便只有在设备和用户认证都成功的情况下，中继节点被授权才能在网络内操作。另外，作为用户认证的一部分，通信网络（或认证节点）可以进一步验证用户标识符（作为用户认证的一部分接收）与对应的设备类型（由相应的设备认证中的设备标识符标识）相关联处理。

2. 发明申请

US20110185397A1 Method And Apparatus For Securing Wireless Relay Nodes 有权
标题翻译：用于保护无线中继节点的方法和装置
公开(公告)号：US20110185397A1
公开(公告)日：2011-07-28
申请号：US13011678
申请日：2011-01-21
申请人： Adrian Edward Escott , Anand Palanigounder , Fatih Ulupinar , Brian M. Rosenberg
发明人： Adrian Edward Escott , Anand Palanigounder , Fatih Ulupinar , Brian M. Rosenberg
IPC分类号： G06F21/20
CPC分类号： H04B7/155 , H04B7/2606 , H04L63/0428 , H04L63/164 , H04W12/06 , H04W16/26
摘要： In order to mitigate the security risk posed by the insertion of a relay node within a communication network, both device authentication and subscriber authentication are performed on the relay node. Device and subscriber authentication may be bound together so that a relay node is granted access to operate within the network only if both device and subscriber authentication are successful. Additionally, a communication network (or authentication node) may further verify that a subscriber identifier (received as part of subscriber authentication) is associated with the corresponding device type (identified by the device identifier in the corresponding device authentication) as part of the subscriber authentication process.
摘要翻译：为了减轻在通信网络内插入中继节点带来的安全隐患，在中继节点上进行设备认证和用户认证。设备和用户认证可以绑定在一起，以便只有在设备和用户认证都成功的情况下，中继节点被授权才能在网络内操作。另外，作为用户认证的一部分，通信网络（或认证节点）可以进一步验证用户标识符（作为用户认证的一部分接收）与对应的设备类型（由相应的设备认证中的设备标识符标识）相关联处理。

3. 发明授权

US08473002B2 Method and apparatus for network personalization of subscriber devices 有权
公开(公告)号：US08473002B2
公开(公告)日：2013-06-25
申请号：US13091013
申请日：2011-04-20
申请人： Adrian Edward Escott , Anand Palanigounder , Brian M. Rosenberg
发明人： Adrian Edward Escott , Anand Palanigounder , Brian M. Rosenberg
IPC分类号： H04W88/02
CPC分类号： H04W12/06 , H04L63/0823 , H04L63/0869 , H04W48/02 , H04W76/10 , H04W88/02
摘要： A method and apparatus are provided for a subsidizing service provider entity to personalize a subscriber device to ensure the subscriber device cannot be used in a network of a different service provider entity. As the service provider entity subsidizes the subscriber device, it desires to ensure that subscriber device is personalized such that the subscriber device may operate only in its network and not a network of a different service provider entity. The subscriber device is pre-configured with a plurality of provider-specific and/or unassociated root certificates by the manufacturer of the subscriber device. A communication service is established between the service provider entity and the subscriber device allowing for the mutual authentication of the subscriber device and the service provider entity. After mutual authentication, the service provider entity sends a command to the subscriber device to disable/delete some/all root certificates that are unassociated with the service provider entity.

4. 发明授权

US09002357B2 Systems, apparatus and methods to facilitate handover security 有权
标题翻译：促进移交安全的系统，装置和方法
公开(公告)号：US09002357B2
公开(公告)日：2015-04-07
申请号：US12822700
申请日：2010-06-24
申请人： Adrian Edward Escott , Anand Palanigounder , Osok Song
发明人： Adrian Edward Escott , Anand Palanigounder , Osok Song
IPC分类号： H04W4/00 , H04M1/68 , H04W12/04 , H04W36/00 , H04L9/08 , H04W36/14 , H04W84/04
CPC分类号： H04W12/04 , H04L9/0872 , H04L2209/80 , H04L2463/061 , H04W36/0038 , H04W36/14 , H04W84/045
摘要： Systems, methods and apparatus for facilitating handover security are provided. In some embodiments, the method can include deriving a key value for handover from a GERAN/UTRAN system to an E-UTRAN system using a first input value. The method can also include deriving a key value for a connection establishment using a second input value, wherein the first input value is different from the second input value and is different from input values derived subsequent to the second input value, and wherein the first input value, the second input value and the input values derived subsequent to the second input value are configured to be input to a same key derivation function configured to output a key for use between a network entity and user equipment.
摘要翻译：提供了便于切换安全的系统，方法和装置。在一些实施例中，该方法可以包括使用第一输入值导出从GERAN / UTRAN系统切换到E-UTRAN系统的密钥值。该方法还可以包括使用第二输入值导出连接建立的密钥值，其中第一输入值不同于第二输入值，并且不同于在第二输入值之后导出的输入值，并且其中第一输入将第二输入值和在第二输入值之后导出的输入值配置为输入到配置为输出用于网络实体和用户设备之间的密钥的相同密钥导出功能。

5. 发明申请

US20110255691A1 APPARATUS AND METHOD FOR TRANSITIONING ENHANCED SECURITY CONTEXT FROM A UTRAN-BASED SERVING NETWORK TO A GERAN-BASED SERVING NETWORK 审中-公开
标题翻译：从基于UTRAN的服务器网络向基于GERAN的服务器网络转移增强安全性背景的设备和方法
公开(公告)号：US20110255691A1
公开(公告)日：2011-10-20
申请号：US13084324
申请日：2011-04-11
申请人： Adrian Edward Escott , Anand Palanigounder
发明人： Adrian Edward Escott , Anand Palanigounder
IPC分类号： H04W12/06
CPC分类号： H04L63/20 , H04L9/085 , H04W12/04 , H04W12/06 , H04W36/0038 , H04W36/14
摘要： Disclosed is a method for transitioning an enhanced security context from a UTRAN-based serving network to a GERAN-based serving network. In the method, the remote station the remote station generates first and second session keys, in accordance with the enhanced security context, using an enhanced security context root key and a first information element. The remote station receives a first message from the UTRAN-based serving network. The first message includes a second information element signaling to the remote station to generate third and fourth session keys for use with the GERAN-based serving network. The remote station generates, in response to the first message, the third and fourth session keys using the second information element and the first and second session keys. The remote station protects wireless communications, on the GERAN-based serving network, based on the third and fourth session keys.
摘要翻译：公开了一种用于将增强的安全上下文从基于UTRAN的服务网络转换到基于GERAN的服务网络的方法。在该方法中，远程站根据增强的安全上下文使用增强的安全上下文根密钥和第一信息元素来生成第一和第二会话密钥。远程站从基于UTRAN的服务网络接收第一消息。第一消息包括向远程站发信号的第二信息单元以产生用于与基于GERAN的服务网络一起使用的第三和第四会话密钥。远程站使用第二信息元素和第一和第二会话密钥来响应于第一消息生成第三和第四会话密钥。远程站基于第三和第四会话密钥保护基于GERAN的服务网络上的无线通信。

6. 发明授权

US09385862B2 Method and apparatus for binding subscriber authentication and device authentication in communication systems 有权
标题翻译：用于在通信系统中绑定用户认证和设备认证的方法和装置
公开(公告)号：US09385862B2
公开(公告)日：2016-07-05
申请号：US13161336
申请日：2011-06-15
申请人： Adrian Edward Escott , Anand Palanigounder
发明人： Adrian Edward Escott , Anand Palanigounder
IPC分类号： H04L9/08 , H04L29/06 , H04W12/04 , H04L9/32 , H04W12/06 , H04W88/02
CPC分类号： H04L9/0816 , H04L9/0838 , H04L9/0844 , H04L9/32 , H04L9/3271 , H04L9/3273 , H04L63/061 , H04L63/0823 , H04L63/0853 , H04L2463/061 , H04L2463/082 , H04W12/04 , H04W12/06 , H04W88/02
摘要： An authentication method is provided between a device (e.g., a client device or access terminal) and a network entity. A removable storage device may be coupled to the device and stores a subscriber-specific key that may be used for subscriber authentication. A secure storage device may be coupled to the device and stores a device-specific key used for device authentication. Subscriber authentication may be performed between the device and a network entity. Device authentication may also be performed of the device with the network entity. A security key may then be generated that binds the subscriber authentication and the device authentication. The security key may be used to secure communications between the device and a serving network.
摘要翻译：在设备（例如，客户端设备或接入终端）与网络实体之间提供认证方法。可移动存储设备可以耦合到设备并且存储可以用于用户认证的用户专用密钥。安全存储设备可以耦合到设备并存储用于设备认证的设备专用密钥。可以在设备和网络实体之间执行用户认证。还可以使用网络实体对设备执行设备认证。然后可以生成绑定用户认证和设备认证的安全密钥。安全密钥可以用于保护设备和服务网络之间的通信。

7. 发明授权

US08839373B2 Method and apparatus for relay node management and authorization 有权
标题翻译：中继节点管理和授权的方法和装置
公开(公告)号：US08839373B2
公开(公告)日：2014-09-16
申请号：US13162332
申请日：2011-06-16
申请人： Anand Palanigounder , Adrian Edward Escott
发明人： Anand Palanigounder , Adrian Edward Escott
IPC分类号： H04W12/08 , H04L12/24 , H04W12/06 , H04B7/155 , H04W84/04 , H04W24/02
CPC分类号： H04W12/06 , H04B7/155 , H04L41/0803 , H04L41/28 , H04W24/02 , H04W84/045 , H04W84/047
摘要： Methods and apparatuses are provided for deploying relay nodes in a communication network. A relay node can initially be wirelessly authenticated to a network entity using initial security credentials. In response to a successful authentication, the relay node is authorized to wirelessly communicate with the communication network for a limited purpose of configuring the relay node for relay device operations. The relay node can receive new security credentials from the communication network, and is subsequently re-authenticated to the network entity using the new security credentials. In response to a successful re-authentication, the relay node is authorized by the network to operate as a relay device for conveying traffic between one or more access terminals and the communication network.
摘要翻译：提供了用于在通信网络中部署中继节点的方法和装置。中继节点最初可以使用初始安全凭证对网络实体进行无线认证。响应于成功的认证，中继节点被授权与通信网络无线通信，用于配置用于中继设备操作的中继节点的有限目的。中继节点可以从通信网络接收新的安全凭证，并且随后使用新的安全凭证对网络实体进行重新认证。响应于成功的重新认证，中继节点被网络授权用作中继设备，用于在一个或多个接入终端与通信网络之间传送业务。

8. 发明授权

US09084110B2 Apparatus and method for transitioning enhanced security context from a UTRAN/GERAN-based serving network to an E-UTRAN-based serving network 有权
标题翻译：用于将增强的安全上下文从基于UTRAN / GERAN的服务网络转移到基于E-UTRAN的服务网络的装置和方法
公开(公告)号：US09084110B2
公开(公告)日：2015-07-14
申请号：US13159212
申请日：2011-06-13
申请人： Adrian Edward Escott , Anand Palanigounder
发明人： Adrian Edward Escott , Anand Palanigounder
IPC分类号： H04W12/04 , H04L29/06 , H04L9/08 , H04W36/00
CPC分类号： H04W12/04 , H04L9/08 , H04L63/06 , H04W36/0038
摘要： Disclosed is a method for transitioning an enhanced security context from a UTRAN/GERAN-based serving network to an E-UTRAN-based serving network. In the method, the remote station the remote station generates first and second session keys, in accordance with the enhanced security context, using a first enhanced security context root key associated with a UTRAN/GERAN-based serving network and a first information element. The remote station receives a first message from the E-UTRAN-based serving network. The first message signals to the remote station to generate a second enhanced security context root key for use with the E-UTRAN-based serving network. The remote station generates, in response to the first message, the second enhanced security context root key from the first enhanced security context root key using the s first and second session keys as inputs. The remote station protects wireless communications, on the E-UTRAN-based serving network, based on the second enhanced security context root key.
摘要翻译：公开了一种用于将增强的安全上下文从基于UTRAN / GERAN的服务网络转换到基于E-UTRAN的服务网络的方法。在该方法中，远程站使用与基于UTRAN / GERAN的服务网络和第一信息元素相关联的第一增强型安全上下文根密钥，根据增强的安全上下文生成第一和第二会话密钥。远程站从基于E-UTRAN的服务网络接收第一消息。第一消息向远程站发信号以产生用于与基于E-UTRAN的服务网络一起使用的第二增强安全上下文根密钥。响应于第一消息，远程站使用第一和第二会话密钥作为输入，从第一增强安全上下文根密钥生成第二增强安全上下文根密钥。远程站基于第二增强安全上下文根密钥来保护基于E-UTRAN的服务网络上的无线通信。

9. 发明申请

US20110314522A1 Method and apparatus for relay node management and authorization 有权
标题翻译：中继节点管理和授权的方法和装置
公开(公告)号：US20110314522A1
公开(公告)日：2011-12-22
申请号：US13162332
申请日：2011-06-16
申请人： Anand PALANIGOUNDER , Adrian Edward Escott
发明人： Anand PALANIGOUNDER , Adrian Edward Escott
IPC分类号： G06F21/00
CPC分类号： H04W12/06 , H04B7/155 , H04L41/0803 , H04L41/28 , H04W24/02 , H04W84/045 , H04W84/047
摘要： Methods and apparatuses are provided for deploying relay nodes in a communication network. A relay node can initially be wirelessly authenticated to a network entity using initial security credentials. In response to a successful authentication, the relay node is authorized to wirelessly communicate with the communication network for a limited purpose of configuring the relay node for relay device operations. The relay node can receive new security credentials from the communication network, and is subsequently re-authenticated to the network entity using the new security credentials. In response to a successful re-authentication, the relay node is authorized by the network to operate as a relay device for conveying traffic between one or more access terminals and the communication network.
摘要翻译：提供了用于在通信网络中部署中继节点的方法和装置。中继节点最初可以使用初始安全凭证对网络实体进行无线认证。响应于成功的认证，中继节点被授权与通信网络无线通信，用于配置用于中继设备操作的中继节点的有限目的。中继节点可以从通信网络接收新的安全凭证，并且随后使用新的安全凭证对网络实体进行重新认证。响应于成功的重新认证，中继节点被网络授权用作中继设备，用于在一个或多个接入终端与通信网络之间传送业务。

10. 发明申请

US20110159841A1 SYSTEMS, APPARATUS AND METHODS TO FACILITATE HANDOVER SECURITY 有权
标题翻译：系统，装置和方法来加强切换安全
公开(公告)号：US20110159841A1
公开(公告)日：2011-06-30
申请号：US12822700
申请日：2010-06-24
申请人： Adrian Edward Escott , Anand Palanigounder , Osok Song
发明人： Adrian Edward Escott , Anand Palanigounder , Osok Song
IPC分类号： H04W36/00 , H04M1/66
CPC分类号： H04W12/04 , H04L9/0872 , H04L2209/80 , H04L2463/061 , H04W36/0038 , H04W36/14 , H04W84/045
摘要： Systems, methods and apparatus for facilitating handover security are provided. In some embodiments, the method can include deriving a key value for handover from a GERAN/UTRAN system to an E-UTRAN system using a first input value. The method can also include deriving a key value for a connection establishment using a second input value, wherein the first input value is different from the second input value and is different from input values derived subsequent to the second input value, and wherein the first input value, the second input value and the input values derived subsequent to the second input value are configured to be input to a same key derivation function configured to output a key for use between a network entity and user equipment.
摘要翻译：提供了便于切换安全的系统，方法和装置。在一些实施例中，该方法可以包括使用第一输入值导出从GERAN / UTRAN系统切换到E-UTRAN系统的密钥值。该方法还可以包括使用第二输入值导出连接建立的密钥值，其中第一输入值不同于第二输入值，并且不同于在第二输入值之后导出的输入值，并且其中第一输入将第二输入值和在第二输入值之后导出的输入值配置为输入到配置为输出用于网络实体和用户设备之间的密钥的相同密钥导出功能。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式