公开(公告)号：US08666078B2

公开(公告)日：2014-03-04

申请号：US13258981

申请日：2010-05-13

Applicant: Xiaochun Bai ,  Xuwu Zhang

Inventor： Xiaochun Bai ,  Xuwu Zhang

IPC: H04K1/00

CPC classification number: H04W12/04 ,  H04L9/0825 ,  H04L63/06 ,  H04L63/062 ,  H04L63/1441 ,  H04L2209/80 ,  H04W36/0038 ,  H04W36/0061

Abstract: A method and a system for generating a key in a handover process, wherein the method comprises the following steps of: according to an evolved Node-B (eNB) (102) of a User Equipment (UE) (101), i.e. a source eNB, a mobility management entity (MME) (103) learning all adjacent eNBs of the source eNB (S130), and generating keys for the source eNB and each of the adjacent eNBs respectively (S140), encrypting the keys with a corresponding eNB public key respectively to obtain cipher texts (S150), and sending all cipher texts, keys and eNB identifiers to the UE (S160); in a handover process of the UE, a target eNB obtaining a cipher text corresponding to the target eNB from the UE and decrypting the cipher text with its own private key to obtain the key (S260).

Abstract translation: 一种用于在切换过程中生成密钥的方法和系统，其中所述方法包括以下步骤：根据用户设备（UE）（101）的演进节点B（eNB）（102），即源 eNB，学习源eNB的所有相邻eNB的移动性管理实体（MME）（S130）（S130），分别生成源eNB和各个相邻eNB的密钥（S140），用对应的eNB公共密钥 键（S150），向UE发送所有密文，密钥和eNB标识符（S160）; 在UE的切换处理中，目标eNB从UE获得与目标eNB对应的密文，并用其自己的私钥解密密文以获得密钥（S260）。

公开(公告)号：US20120082315A1

公开(公告)日：2012-04-05

申请号：US13258981

申请日：2010-05-13

Applicant: Xiaochun Bai ,  Xuwu Zhang

Inventor： Xiaochun Bai ,  Xuwu Zhang

IPC: H04W12/06 ,  H04W36/00 ,  H04W12/04

CPC classification number: H04W12/04 ,  H04L9/0825 ,  H04L63/06 ,  H04L63/062 ,  H04L63/1441 ,  H04L2209/80 ,  H04W36/0038 ,  H04W36/0061

Abstract: A method and a system for generating a key in a handover process, wherein the method comprises the following steps of: according to an evolved Node-B (eNB) (102) of a User Equipment (UE) (101), i.e. a source eNB, a mobility management entity (MME) (103) learning all adjacent eNBs of the source eNB (S130), and generating keys for the source eNB and each of the adjacent eNBs respectively (S140), encrypting the keys with a corresponding eNB public key respectively to obtain cipher texts (S150), and sending all cipher texts, keys and eNB identifiers to the UE (S160); in a handover process of the UE, a target eNB obtaining a cipher text corresponding to the target eNB from the UE and decrypting the cipher text with its own private key to obtain the key (S260).

Abstract translation: 一种用于在切换过程中生成密钥的方法和系统，其中所述方法包括以下步骤：根据用户设备（UE）（101）的演进节点B（eNB）（102），即源 eNB，学习源eNB的所有相邻eNB的移动性管理实体（MME）（S130）（S130），分别生成源eNB和各个相邻eNB的密钥（S140），用对应的eNB公共密钥 键（S150），向UE发送所有密文，密钥和eNB标识符（S160）; 在UE的切换处理中，目标eNB从UE获得与目标eNB对应的密文，并用其自己的私钥解密密文以获得密钥（S260）。

公开(公告)号：US20120170745A1

公开(公告)日：2012-07-05

申请号：US13258218

申请日：2010-05-10

Applicant: Xiaochun Bai

Inventor： Xiaochun Bai

IPC: H04K1/00

CPC classification number: H04L9/0866 ,  H04L63/0414 ,  H04L2209/80 ,  H04W12/00514 ,  H04W12/02 ,  H04W68/00

Abstract: The disclosure discloses a method and device for encrypting a subscriber identity during a paging procedure, which are particularly adapted to the paging performed by an MME using an IMSI. The method includes: A, using a key generated by the subscriber identity of the called UE to encrypt data Y which is obtained on the basis of the subscriber identity, then performing paging using a cipher text; and B, after the called UE receives the paging, determining by the called UE whether the cipher text is included, and if the cipher text is included, regarding itself as the called UE. In the first preferred embodiment, the data Y is the subscriber identity; in the second preferred embodiment, the data Y is the data combined by the subscriber identity and the random data X, and the random data X is sent along with the cipher text during the paging; in the third preferred embodiment, the data Y is the data combined by the subscriber identity and the random data Z, and the data Y contains the subscriber identity at a specific location, when receiving the paging, the UE performs decryption using the subscriber identity and determines whether the decrypted plaintext contains the subscriber identity at a location the same as the specific location to determine whether the paging is for itself.

Abstract translation: 本公开公开了一种用于在寻呼过程期间加密用户身份的方法和设备，其特别适用于使用IMSI的MME执行的寻呼。 该方法包括：A，使用被叫用户的用户身份生成的密钥，对根据用户身份获得的数据Y进行加密，然后使用密文执行寻呼; 和B，在被叫UE接收到寻呼之后，由被叫UE确定是否包括密文，并且如果包括密文，则将其自身称为被叫UE。 在第一优选实施例中，数据Y是订户身份; 在第二优选实施例中，数据Y是由用户身份和随机数据X组合的数据，随机数据X与寻呼期间的密文一起发送; 在第三优选实施例中，数据Y是由订户身份和随机数据Z组合的数据，并且数据Y在接收到寻呼时在特定位置包含用户身份，UE使用订户身份执行解密， 确定解密的明文是否在与特定位置相同的位置处包含用户标识，以确定寻呼是否为其自身。