公开(公告)号：US20200336899A1

公开(公告)日：2020-10-22

申请号：US16916481

申请日：2020-06-30

Applicant: Huawei Technologies Co., Ltd.

Inventor： He Li ,  Jing Chen

IPC: H04W12/00 ,  H04W76/15 ,  H04W12/10

Abstract: A method, an apparatus, and a system for dual-connectivity communication, where the method may include: sending, by a master Node, a first message to a secondary Node, where the first message includes a user plane security policy, and the user plane security policy is used by the secondary Node to determine a user plane security protection method between the secondary Node and a user terminal; receiving, by the master Node, a second message from the secondary Node, where the second message includes user plane security enabling type indication information, and the user plane security enabling type indication information is used to indicate a user plane security protection method between the secondary Node and the user terminal; and sending, by the master Node, a third message to the user terminal, where the third message includes the user plane security enabling type indication information.

公开(公告)号：US20200275508A1

公开(公告)日：2020-08-27

申请号：US16874117

申请日：2020-05-14

Applicant: Huawei Technologies Co., Ltd.

Inventor： Li Hu ,  Bingzhao Li ,  Jing Chen ,  Tingting Geng

IPC: H04W76/18 ,  H04W12/04 ,  H04W12/10 ,  H04W76/34

Abstract: This application provides a connection resume request method and an apparatus to avoid key asynchronization between a terminal and a source base station in the scenario that a target base station rejects resuming of a RRC connection of the terminal including: generating, by a terminal, a new access stratum key; sending, by the terminal to a target base station, a connection resume request message requesting to resume a radio resource control (RRC) connection; receiving, by the terminal, a connection resume rejection message from the target base station, wherein the connection resume rejection message indicates that the resuming of the RRC connection that is rejected; and resuming, by the terminal, the new access stratum key to a previous access stratum key, wherein the previous access stratum key is an access stratum key that is used, before the apparatus enters an inactive state, by the terminal and the source base station.

公开(公告)号：US20200275269A1

公开(公告)日：2020-08-27

申请号：US16874064

申请日：2020-05-14

Applicant: Huawei Technologies Co., Ltd.

Inventor： He Li ,  Jing Chen ,  Huan Li

IPC: H04W12/06 ,  H04W12/00 ,  H04W12/04 ,  H04W48/08

Abstract: A secure communication method and a secure communications apparatus related to the field of communications technologies and applied to a terminal. The terminal has a first security context and a second security context, the first security context is used by the terminal to communicate with a first network, the second security context is used by the terminal to communicate with a second network, and the first security context and the second security context include different first information.

公开(公告)号：US20200137577A1

公开(公告)日：2020-04-30

申请号：US16728764

申请日：2019-12-27

Applicant: Huawei Technologies Co., Ltd.

Inventor： He Li ,  Jing Chen ,  Li Hu

IPC: H04W12/10 ,  H04W76/27 ,  H04W80/10 ,  H04W8/08 ,  H04W12/04 ,  H04L29/06 ,  H04W12/00 ,  H04W12/08 ,  H04W12/02 ,  H04W92/10

Abstract: A communication method and a related apparatus, where a base station obtains a security policy, where the security policy includes integrity protection indication information, and where the integrity protection indication information is used to instruct the base station whether to enable integrity protection for a terminal device. When the integrity protection indication information instructs the base station to enable integrity protection for the terminal device, the base station sends a target user plane integrity protection indication information to the terminal device.

公开(公告)号：US20200029217A1

公开(公告)日：2020-01-23

申请号：US16588599

申请日：2019-09-30

Applicant: Huawei Technologies Co., Ltd.

Inventor： Jing Chen ,  Kai Pan ,  He Li

IPC: H04W12/06 ,  H04L29/06 ,  H04L29/08 ,  H04W12/08 ,  H04W76/11 ,  H04W8/18

Abstract: This application provides a user authentication method and an apparatus. Before establishing, for a terminal device, a session used to transmit service data, an SMF entity receives a session establishment request message; determines, based on the session establishment request message, to perform user authentication on a user using the terminal device; and sends a session establishment message to a UPF entity, where the session establishment message is used to establish a first session for the terminal device, and a session attribute of the first session is: a session used to transmit only a user authentication message. Subsequently, the terminal device and an AAA server transmit the user authentication message through the first session, to complete user authentication.

公开(公告)号：US10419938B2

公开(公告)日：2019-09-17

申请号：US16026777

申请日：2018-07-03

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Jing Chen ,  Qi Li ,  Lin Shu

IPC: H04W12/10 ,  H04W12/08 ,  H04L9/32 ,  H04L29/06 ,  H04W8/24 ,  H04W12/04 ,  H04W12/06 ,  H04W12/12

Abstract: The present disclosure relates to mobile communications technologies, and in particular, to a mobile communication method, apparatus, and device. The method includes receiving, by a user equipment (UE), a non-access stratum (NAS) security mode command message from a mobility management entity MME, where the NAS security mode command message carries first verification matching information used to verify UE capability information received by the MME. Based on the first verification matching information, the UE determines whether the UE capability information received by the MME is consistent with UE capability information sent by the UE to the MME. In response to determining that the UE capability information received by the MME is consistent with the UE capability information sent by the UE to the MME, the UE sends a NAS security mode complete message to the MME.

公开(公告)号：US20190274051A1

公开(公告)日：2019-09-05

申请号：US16404163

申请日：2019-05-06

Applicant: Huawei Technologies Co., Ltd.

Inventor： He Li ,  Jing Chen

IPC: H04W12/10 ,  H04W12/04 ,  H04W12/12 ,  H04W12/00

Abstract: A security protection method and an apparatus to implement security protection for a plurality of non-access stratum (NAS) connection links. The method includes determining, by a terminal, a first parameter, where the first parameter is used to indicate an access technology used to transmit a non-access stratum NAS message. The terminal can support at least two access technologies, and can separately maintain a corresponding NAS COUNT for each of the at least two access technologies. The method further includes performing, by the terminal, security protection on the NAS message based on the first parameter, a NAS key, and a NAS COUNT corresponding to an access technology used to transmit the NAS message. This application is applicable to a process of performing security protection on a NAS message.

公开(公告)号：US10320754B2

公开(公告)日：2019-06-11

申请号：US14885235

申请日：2015-10-16

Applicant: Huawei Technologies Co., Ltd.

Inventor： Jiangwei Ying ,  Jing Chen ,  Lingli Pang ,  Xiaoxiao Zheng

IPC: H04L29/06 ,  H04W4/70 ,  H04L9/14 ,  H04L29/08 ,  H04L12/06 ,  H04W12/04 ,  H04W88/02 ,  H04W88/12 ,  H04W12/02 ,  H04W12/10

Abstract: The present invention provides a data transmission method and apparatus, where the method includes: performing, by UE, security processing on a NAS PDU by using a security parameter and a security algorithm, where data to be transmitted is encapsulated in the NAS PDU; and sending, by the UE, the NAS PDU to a serving SGSN by using an RNC. The present invention can improve efficiency of transmitting a small data packet, and further provide a security mechanism to ensure security of transmitting the small data packet.

公开(公告)号：US09980106B2

公开(公告)日：2018-05-22

申请号：US15243333

申请日：2016-08-22

Applicant: Huawei Technologies Co., Ltd.

Inventor： Lijia Zhang ,  Jing Chen ,  Yixian Xu ,  Yali Guo

IPC: H04B7/00 ,  H04W4/14 ,  H04W48/14 ,  H04W4/00 ,  H04L12/58 ,  H04W12/08

CPC classification number: H04W4/14 ,  H04L51/30 ,  H04W4/70 ,  H04W12/08 ,  H04W12/12 ,  H04W48/14

Abstract: Embodiments provide an MTC device communication method, device, and system. A second network element receives, a query message sent by a first network element after the first network element identifies that a type of a received short message is a preset-type short message. The query message comprises an identifier of a receiver of the short message and an identifier of a sender of the short message. The second network element checks whether the sender is authorized to send the preset-type short message to the receiver. The second network element sends a message to the first network element indicating whether or not to send the short message to the receiver.

公开(公告)号：US09775028B2

公开(公告)日：2017-09-26

申请号：US14264587

申请日：2014-04-29

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Lijia Zhang ,  Jing Chen ,  Yixian Xu

IPC: H04L29/06 ,  H04W12/04 ,  H04W4/00 ,  H04W4/08 ,  H04W88/08

CPC classification number: H04W12/04 ,  H04L63/062 ,  H04L63/065 ,  H04W4/08 ,  H04W4/70 ,  H04W88/08

Abstract: Embodiments of the present invention provide a method and a related device for generating a group key. The method includes: obtaining a group ID of a group where a machine type communication MTC device is located; obtaining a group communication root key corresponding to the group ID; generating a group key corresponding to the group ID according to the group communication root key; and sending the group key encrypted by using an access stratum key of the MTC device to the MTC device, so that the MTC device obtains the group key through decryption according to the access stratum key of the MTC device. According to the foregoing technical solutions, a base station may allocate, to an MTC device, a group key corresponding to a group where the MTC device is located.