公开(公告)号：US20150326401A1

公开(公告)日：2015-11-12

申请号：US14804643

申请日：2015-07-21

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Wenjun JIN ,  Ying XIONG ,  Jiajia CHEN ,  Jiangsheng WANG

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3268 ,  H04L63/0823 ,  H04L63/123

Abstract: Embodiments of the present invention disclose a method, an apparatus, and a system for increasing network security. The method for increasing network security includes: receiving, by a network management system, a certificate message reported by a network element; generating, by the network management system, a first list; when determining that a certificate corresponding to certificate information in the first list needs to be revoked, generating, by the network management system, a certificate revocation request file according to the certificate information, and removing the certificate information in the first list from the first list; and sending, by the network management system, the certificate revocation request file to a public key infrastructure (PKI) system.

Abstract translation: 本发明的实施例公开了一种用于增加网络安全性的方法，装置和系统。 增加网络安全性的方法包括：由网络管理系统接收由网元报告的证书消息; 由网络管理系统生成第一个列表; 当确定与第一列表中的证书信息相对应的证书需要被撤销时，由网络管理系统根据证书信息生成证书吊销请求文件，并从第一列表中删除第一列表中的证书信息 ; 并由网络管理系统将证书吊销请求文件发送到公钥基础设施（PKI）系统。

公开(公告)号：US20220109994A1

公开(公告)日：2022-04-07

申请号：US17551562

申请日：2021-12-15

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Longhua GUO ,  Li HU ,  Yinghao JIN ,  Wenjun JIN

IPC: H04W12/122 ,  H04W48/16 ,  H04W12/106

Abstract: This application relates to the field of communications technologies, and discloses a method and apparatus. The method includes: A real base station receives a first uplink NAS message and an identifier of a first device. The real base station obtains a first hash value of first system information of a cell corresponding to the identifier of the first device. The real base station sends an N2 message to a core network device, where the N2 message includes the first uplink NAS message and the first hash value of the first system information. The core network device receives the N2 message from the real base station, and sends an integrity protected first downlink NAS message to a terminal, where the first downlink NAS message is forwarded by the real base station to the terminal, and the first downlink NAS message includes the first hash value of the first system information.

公开(公告)号：US20210076353A1

公开(公告)日：2021-03-11

申请号：US17100351

申请日：2020-11-20

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Hong LI ,  Lin SHU ,  Tao LIU ,  Wenjun JIN ,  Chao ZHUO ,  Hongqiang CHEN

IPC: H04W68/00 ,  H04W12/10 ,  H04W8/08 ,  H04W12/00

Abstract: The mobility management network element performs security protection on a paging identity of a terminal device by using a security context obtained by negotiating with the terminal device, to obtain a first paging identity, and sends a first paging message to a base station. The base station sends a second paging message to the terminal device, where the second paging message carries the first paging identity and first indication information, and the first indication information is used to indicate that the first paging identity is a security-protected paging identity. The terminal device performs security verification on the first paging identity by using the security context based on the first indication information, to obtain a second paging identity, and processing the second paging message based on the second paging identity and an identity of the terminal device.