-
公开(公告)号:US20230072080A1
公开(公告)日:2023-03-09
申请号:US17988209
申请日:2022-11-16
IPC分类号: H04W12/041 , H04W76/28 , H04L9/40 , H04W52/02
摘要: According to an exemplary embodiment, there is provided a method of operating a terminal device. The method includes operating the terminal device in a connected state with respect to the communication network. The method further includes receiving a first signal from a first radio access node in the communication network indicating that the connected state is to be suspended, the first signal having information for use in determining a first key for encrypting data to be sent between the terminal device and the first radio access node or another radio access node in the communication network if the connected state is resumed.
-
公开(公告)号:US20210226781A1
公开(公告)日:2021-07-22
申请号:US16303346
申请日:2018-10-30
发明人: Jari ARKKO , Karl NORRMAN , Vesa TORVINEN
摘要: A communication device for communication with a network device during EAP-AKA′. The communication device is operative to: receive a first Perfect Forward Secrecy, PFS, parameter value and at least one attribute value indicating a choice of a Diffie-Hellman group from the network device; receive a cipher key, CK, and an integrity key, IK, generate a modified cipher key, CK′, and a modified integrity key, IK′ based on CK, IK and an access network identity, calculate a second PFS parameter value; send the second PFS parameter value to the network device; calculate a third PFS parameter value; and derive, using a Pseudo-random function, a key based on the third PFS parameter value, CK′, IK′ and an identity associated with the communication device. A network device, methods, further communication devices, a server, computer programs and a computer program product are also disclosed.
-
公开(公告)号:US20210014284A1
公开(公告)日:2021-01-14
申请号:US16968232
申请日:2019-02-15
IPC分类号: H04L29/06
摘要: The disclosure provides techniques for negotiating security mechanisms between security gateways (102A, 102B). In these techniques, an initiating security gateway (102A) sends (302) a request message to a responding security gateway (102B) over a first connection established between the security gateways. The first connection provides integrity protection for 5 the messages. The request message includes one or more security mechanisms supported by the initiating security gateway. Upon receipt, the responding security gateway selects (406) one of the security mechanisms and transmits (408) a response message to the initiating security gateway indicating the selected security mechanism. Signaling messages are then communicated (310, 412) between the security gateways using the selected security 10 mechanism.
-
公开(公告)号:US20180324160A1
公开(公告)日:2018-11-08
申请号:US15766685
申请日:2016-09-20
发明人: Rasmus AXÉN , Stefan JOHANSSON , Karl NORRMAN
CPC分类号: H04L63/062 , H04W12/02 , H04W12/04 , H04W12/08 , H04W12/10 , H04W36/0038
摘要: According to an aspect, there is provided a method of operating a first radio access node in a communication network, the first radio access node supporting a plurality of cells that are divided into one or more groups of cells, wherein at least a first group of cells comprises more than one cell, the method comprising determining (901) a first base key for a communication device that is to connect to the first radio access node via a first cell in the first group of cells; wherein the first base key is determined from an identifier for the first group of cells; using (903) the first base key to determine a first encryption key that is to be used to encrypt communications between the communication device and the first radio access node via the first cell; and in the event that the communication device is to connect to the first group of first radio access node via a second cell in the first group of cells, using (907) the first encryption key to encrypt communications between the communication device and the first radio access node via the second cell.
-
公开(公告)号:US20180084417A1
公开(公告)日:2018-03-22
申请号:US15826003
申请日:2017-11-29
发明人: Dinand ROELAND , Vesa LEHTOVIRTA , Karl NORRMAN , Stefan ROMMER
摘要: A method of protecting WLAN Control Protocol (WLCP) message exchange between a Trusted WLAN Access Gateway (TWAG) (112) of a Trusted WLAN Access Network (TWAN) (110) and a User Equipment (UE) (101) are provided. The method comprises deriving, by an Authentication, Authorization, and Accounting, (AAA) Server (103) of an Evolved Packet Core (EPC) network which is interfaced with the TWAN, and by the UE, a Master Session Key (MSK) and an Extended MSK (EMSK), sending, from the AAA Server to a Trusted WLAN AAA Proxy (TWAP) (113) of the TWAN and an Access Point (AP) (111) of the TWAN, the MSK or a key derived from at least the MSK, and deriving, by the TWAN or by the AAA Server, and by the UE, from the MSK, the EMSK, or the key derived from at least the MSK or the EMSK, a key for protecting the WLCP message exchange.—Corresponding devices, computer programs, and computer program products are further provided.
-
公开(公告)号:US20240305978A1
公开(公告)日:2024-09-12
申请号:US18670285
申请日:2024-05-21
IPC分类号: H04W12/041 , H04L9/40 , H04W52/02 , H04W76/28
CPC分类号: H04W12/041 , H04L63/0428 , H04W52/0251 , H04W76/28 , H04L2209/80
摘要: According to an exemplary embodiment, there is provided a method of operating a terminal device. The method includes operating the terminal device in a connected state with respect to the communication network. The method further includes receiving a first signal from a first radio access node in the communication network indicating that the connected state is to be suspended, the first signal having information for use in determining a first key for encrypting data to be sent between the terminal device and the first radio access node or another radio access node in the communication network if the connected state is resumed.
-
公开(公告)号:US20220294606A1
公开(公告)日:2022-09-15
申请号:US17635400
申请日:2020-08-06
发明人: Karl NORRMAN , Martin ISAKSSON
摘要: A method performed by a first entity in a communications network is provided. The first entity belongs to a plurality of entities configured to perform federated learning to develop a model. In the method, the first entity trains a model using a machine-learning algorithm, generating a model update. The first entity generates a first mask, receives an indication of one or more respective second masks from a subset of the remaining entities of the plurality of entities, and combines the first mask and the respective second masks to generate a combined mask. The first entity transmits an indication of the first mask to one or more third entities of the plurality of entities. The first entity applies the combined mask to the model update to generate a masked model update and transmits the masked model update to an aggregating entity of the communications network.
-
公开(公告)号:US20180295515A1
公开(公告)日:2018-10-11
申请号:US16002786
申请日:2018-06-07
发明人: Vesa LEHTOVIRTA , Karl NORRMAN , Monica WIFVESSON
摘要: There is provided a method for authentication in device to device discovery. A method performed by a Discoverer device, comprises broadcasting a direct discovery request, receiving a direct discovery response from a Discoveree device, the direct discovery response comprising a first token, and obtaining a determination of whether the first
-
公开(公告)号:US20170272985A1
公开(公告)日:2017-09-21
申请号:US15306806
申请日:2016-09-20
发明人: Rasmus AXÉN , Karl NORRMAN
CPC分类号: H04W36/0038 , H01P1/2005 , H01P3/12 , H01P5/107 , H04W12/04 , H04W36/08 , H04W88/02 , H04W88/08 , H04W92/20
摘要: According to an aspect, there is provided a method of operating a first radio access node in a communication network, the method comprising determining whether a first base key that is used to determine a first encryption key for encrypting communications between a communication device and the first radio access node can be used by a second radio access node for determining a second encryption key for encrypting communications between the communication device and the second radio access node; and if the first base key can be used by the second radio access node, sending the first base key to the second radio access node during handover of the communication device from the first radio access node to the second radio access node.
-
公开(公告)号:US20230164562A1
公开(公告)日:2023-05-25
申请号:US18095607
申请日:2023-01-11
IPC分类号: H04W12/106 , H04W8/24 , H04W28/18 , H04W60/00 , H04W12/033 , H04W12/041
CPC分类号: H04W12/106 , H04W8/24 , H04W28/18 , H04W60/00 , H04W12/033 , H04W12/041
摘要: A method for operating a User Equipment (UE) is disclosed, the UE configured to connect to a communication network. The method comprises: indicating to the communication network an Integrity Protection for User Plane (IPUP) mode supported by the UE when requesting registration with the communication network. The IPUP mode comprises one of: use of Integrity Protection for User Plane data exchanged with the UE, non-use of Integrity Protection for User Plane data exchanged with the UE, or use of Integrity Protection for User Plane data, and non-use of Confidentiality Protection for User Plane data.
-
-
-
-
-
-
-
-
-
搜索结果
36 条记录 (耗时 0.03 秒)
