公开(公告)号：US20190260717A1

公开(公告)日：2019-08-22

申请号：US16398063

申请日：2019-04-29

Applicant: QUALCOMM Incorporated

Inventor： Soo Bum LEE ,  Anand PALANIGOUNDER ,  Adrian Edward ESCOTT

IPC: H04L29/06 ,  H04L29/08 ,  H04W4/70 ,  H04L9/14 ,  H04L9/08 ,  H04L12/24 ,  H04W88/16 ,  H04W12/10 ,  H04W12/04

Abstract: Aspects of security schemes (e.g., integrity protection, encryption, or both) are described. A measure of access stratum security can be realized without overhead associated with establishing and/or maintaining the per-cellular-device access stratum security context at a Cellular Internet of Things (CIoT) base station (C-BS). A gateway (e.g., a CIoT Serving Gateway Node (C-SGN)) may derive a first key. The first key may be only known to the C-SGN. The C-SGN may derive a second key from the first key and a parameter unique to the C-BS. The C-SGN may also derive a third key from the second key and an identity of a cellular device. The C-SGN may send the second and third keys to the C-BS and cellular device, respectively. Small data messages encrypted and/or integrity protected by the cellular device may be decrypted and/or verified by the C-BS.

公开(公告)号：US20190116496A1

公开(公告)日：2019-04-18

申请号：US15892067

申请日：2018-02-08

Applicant: QUALCOMM Incorporated

Inventor： Amer CATOVIC ,  Lenaig Genevieve CHAPONNIERE ,  Anand PALANIGOUNDER

IPC: H04W12/06 ,  H04W8/02 ,  H04L29/06 ,  H04L9/32

Abstract: Protected configuration data may be sent to user equipment subscribed to a first wireless communication network by a second wireless communication network with which the user equipment is registered. The first wireless communication network may protect the configuration data based on at least one first key when sending the data to the second wireless communication network. The second wireless communication network may send the configuration data to user equipment in messages protected by at least one second key. User equipment receives the message from the second wireless communication network, extracts the configuration data using the at least one second key, determines whether the configuration data has been altered at least in part based on the at least one first key, and applies the configuration data if the configuration data has not been altered. The protected configuration data may be sent in an information element of a control plane message.

公开(公告)号：US20180091551A1

公开(公告)日：2018-03-29

申请号：US15277912

申请日：2016-09-27

Applicant: QUALCOMM Incorporated

Inventor： Anand PALANIGOUNDER ,  Rosario CAMMAROTA ,  Darren LASKO

IPC: H04L29/06 ,  H04L9/32

CPC classification number: H04L63/166 ,  G06F9/45558 ,  G06F21/00 ,  G06F21/53 ,  G06F21/606 ,  G06F2009/45587 ,  G06F2009/45595 ,  H04L9/3247 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0853 ,  H04L63/0869 ,  H04L63/12

Abstract: Techniques for establishing one or more end-to-end secure channels in a data center are provided. A method according to these techniques includes obtaining, at a secure module (SM) associated with a virtual machine (VM) operating on a node of the data center, a VM-specific signature key for the VM from a Hardware Security Module (HSM), and performing a cryptographic signing operation at the SM associated with establishing an end-to-end secure channel between the VM and another networked entity using the VM-specific signature key responsive to a request from the VM.

公开(公告)号：US20140053281A1

公开(公告)日：2014-02-20

申请号：US13659689

申请日：2012-10-24

Applicant: QUALCOMM INCORPORATED

Inventor： Olivier Jean BENOIT ,  Peerapol TINNAKORNSRISUPHAP ,  Etan Gur COHEN ,  Anand PALANIGOUNDER

IPC: G06F21/00

CPC classification number: H04W60/00 ,  G06K19/06037 ,  H04L12/2809 ,  H04L29/06551 ,  H04L29/06782 ,  H04L41/0806 ,  H04L41/0809 ,  H04L41/28 ,  H04L63/08 ,  H04L63/083 ,  H04L63/10 ,  H04W12/06 ,  H04W84/18

Abstract: An electronic device obtains a device password associated with the new enrollee device to be configured for a communication network. The device password is provided to a network registrar to cause the network registrar to configure the new enrollee device for the communication network. The network registrar performs an enrollment process based upon the device password and provides feedback to the electronic device to indicate whether or not the new enrollee device was successfully added to the communication network. Alternatively, when an electronic device detects the presence of a new enrollee device to be configured for the communication network, the electronic device generates a device password for the new enrollee device and provides the device password to the new enrollee device and to the network registrar, thereby causing the network registrar to initiate an enrollment process for the new enrollee device based upon the device password.

Abstract translation: 电子设备获得与要配置用于通信网络的新登记器设备相关联的设备密码。 将设备密码提供给网络注册器，以使网络注册商配置通信网络的新注册设备。 网络注册器基于设备密码执行注册过程，并向电子设备提供反馈，以指示新的登记器设备是否已成功添加到通信网络。 或者，当电子设备检测到要为通信网络配置的新的登记器设备的存在时，电子设备生成新的登记者设备的设备密码，并将设备密码提供给新的登记者设备和网络注册器， 从而使得网络注册商基于设备密码启动新的登记者设备的注册过程。

公开(公告)号：US20250048455A1

公开(公告)日：2025-02-06

申请号：US18362784

申请日：2023-07-31

Applicant: QUALCOMM Incorporated

Inventor： Toru UCHINO ,  Bharat SHRESTHA ,  Umesh PHUYAL ,  Prasad Reddy KADIRI ,  Anand PALANIGOUNDER

IPC: H04W76/10 ,  H04W12/06 ,  H04W36/30

Abstract: The apparatus may be a wireless device configured to receive a set of security parameters associated with one of a layer 1 (L1) link reestablishment procedure or a layer 2 (L2) link reestablishment procedure, detect a failure of a radio link at the wireless device. The apparatus may further be configured to transmit, for a network node, at least one of an L1 link recovery request or an L2 link recovery request, including an authentication value based on the set of security parameters, and receive, based on at least one of the L1 link recovery request or the L2 link recovery request, a link recovery message.

公开(公告)号：US20250047479A1

公开(公告)日：2025-02-06

申请号：US18780348

申请日：2024-07-22

Applicant: QUALCOMM Incorporated

Inventor： Anand PALANIGOUNDER ,  Adrian Edward ESCOTT

IPC: H04L9/08 ,  H04L9/06 ,  H04W12/72

Abstract: Disclosed are wireless communications systems and techniques. For example, a wireless communication device (e.g., a user equipment (UE)) compares a first key identifier (generated from a key stored in a first storage unit, such as a universal subscriber identity module) to a second key identifier (stored in a second storage unit, such as non-volatile memory) to identify a mismatch between the key identifiers. Based on the mismatch, the device replaces, in the second storage unit, the second key identifier. In some examples, the device verifies integrity of a message using the key, replaces the second key identifier with the first key identifier, and updates a counter based on the message. In a second illustrative example, the device replaces the key with a replacement key, replaces the second key identifier with the third key identifier based on the replacement key, and resets a counter.

公开(公告)号：US20240155412A1

公开(公告)日：2024-05-09

申请号：US18491435

申请日：2023-10-20

Applicant: QUALCOMM Incorporated

Inventor： Anand PALANIGOUNDER ,  Aziz GHOLMIEH ,  Lenaig Genevieve CHAPONNIERE ,  Adrian Edward ESCOTT

IPC: H04W28/02 ,  H04W76/10

CPC classification number: H04W28/0247 ,  H04W76/10

Abstract: Disclosed are systems and techniques for wireless communications. For instance, a process may include transmitting a first radio resource control (RRC) message, the first RRC message including a first establishment cause value indicating that an apparatus does not have priority access. The process may also include determining that priority access may be used by the apparatus, transmitting a second RRC message, the second RRC message including a second establishment cause value indicating that the apparatus has priority access, and accessing a wireless network using the priority access.

公开(公告)号：US20230231708A1

公开(公告)日：2023-07-20

申请号：US18094868

申请日：2023-01-09

Applicant: QUALCOMM Incorporated

Inventor： Anand PALANIGOUNDER ,  Adrian Edward ESCOTT ,  Soo Bum LEE

IPC: H04L9/08 ,  H04W12/04

CPC classification number: H04L9/088 ,  H04W12/04

Abstract: A user device having a security context with a first network based on a first key may establish a security context with a second network. In a method, the user device may generate a key identifier based on the first key and a network identifier of the second network. The user device may forward the key identifier to the second network for forwarding to the first network by the second network to enable the first network to identify the first key at the first network. The user device may receive a key count from the second network. The key count may be associated with a second key forwarded to the second network from the first network. The user device may generate the second key based on the first key and the received key count thereby establishing a security context between the second network and the user device.

公开(公告)号：US20230093720A1

公开(公告)日：2023-03-23

申请号：US17931505

申请日：2022-09-12

Applicant: QUALCOMM Incorporated

Inventor： Adrian Edward ESCOTT ,  Soo Bum LEE ,  Anand PALANIGOUNDER ,  Hongil KIM

IPC: H04L9/08

Abstract: In embodiments of systems and methods for synchronous content presentation, a user equipment (UE) may generate a freshness parameter, generate a unique session key based on a first session key and the freshness parameter, and send the freshness parameter to a Network Application Function (NAF) of a network device in a configuration that will enable the NAF to generate the unique session key. The network device may receive the freshness parameter, receive from a Key Server Function (KSF) the first session key, and generate based on the freshness parameter and the first session key the unique session key. The UE and the network device may then conduct secure communications using the unique session key without exchanging the unique session key between the two devices.

公开(公告)号：US20220150684A1

公开(公告)日：2022-05-12

申请号：US17649295

申请日：2022-01-28

Applicant: QUALCOMM Incorporated

Inventor： Anand PALANIGOUNDER ,  Adrian Edward ESCOTT ,  Lenaig Genevieve CHAPONNIERE

IPC: H04W8/12 ,  H04W8/20 ,  H04L9/32 ,  H04W48/18 ,  H04W12/06 ,  H04W12/106 ,  H04W12/0431

Abstract: Aspects directed towards steering of roaming (SoR) are disclosed. In one example, a communication from a public land mobile network (PLMN) is received by a user equipment (UE) in which the communication indicates an acceptance of a UE registration with the PLMN. This example further includes performing a determination of whether an SoR indicator associated with a home PLMN (HPLMN) is embedded within the communication. The UE then manages PLMN selection according to the determination. In another example, a UE is configured to operate according to an SoR configuration in which the UE is configured to ascertain whether an SoR indicator is embedded within a communication from a PLMN. An SoR indicator associated with an HPLMN is then generated and subsequently transmitted from the HPLMN to the UE via the PLMN.