Authentication and authorization in proximity based service communication

US 10,574,635 B2
Filed: 08/03/2017
Issued: 02/25/2020
Est. Priority Date: 06/28/2013
Status: Active Grant

First Claim

Patent Images

1. A UE (User Equipment) for one-to-one direct communication, the UE comprising:

at least one processor; and

at least one memory coupled to the at least one processor, the memory storing instructions that, when executed by the at least one processor, cause the at least one processor to;

receive, from another UE, a first message including first information and second information related to a session key;

derive a confidential key and an integrity key based on the second information;

perform a first check that the received first information is the same as a first information possessed by the UE;

perform a second check of an integrity protection on the first message based on the integrity key; and

perform the one-to-one direct communication with the another UE using the confidentiality key and the integrity key if both the first check and the second check pass.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of performing authentication and authorization in Proximity based Service (ProSe) communication by a requesting device (31) which sends a request of a communication and a receiving device (32) which receives the request from the requesting device (31) and (32), the method including deriving session keys Kpc and Kpi from an unique key Kp at the requesting and receiving devices (31) and (32), using the session keys Kpc and Kpi for ProSe communication setup and direct communication between the requesting and receiving devices (31) and (32), starting the direct communication with the requesting and receiving devices (31) and (32). The key Kpc is confidentiality key and the key Kpi is integrity protection key.

Citations

12 Claims

1. A UE (User Equipment) for one-to-one direct communication, the UE comprising:
- at least one processor; and
  
  at least one memory coupled to the at least one processor, the memory storing instructions that, when executed by the at least one processor, cause the at least one processor to;
  
  receive, from another UE, a first message including first information and second information related to a session key;
  
  derive a confidential key and an integrity key based on the second information;
  
  perform a first check that the received first information is the same as a first information possessed by the UE;
  
  perform a second check of an integrity protection on the first message based on the integrity key; and
  
  perform the one-to-one direct communication with the another UE using the confidentiality key and the integrity key if both the first check and the second check pass.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The UE according to claim 1, wherein the another UE checks the integrity protection on a second message received from the UE.
  - 3. The UE according to claim 1, wherein the first message includes an algorithm for key derivation.
  - 4. The UE according to claim 1, wherein the UE and the another UE support ProSe (Proximity Services).
  - 5. The UE according to claim 1, wherein the UE and the another UE get an authorization from a network including at least a ProSe (Proximity Services) Function and a ProSe application server.
  - 6. The UE according to claim 1, wherein the UE and the another UE perform mutual authentication.

7. A communication method of a UE (User Equipment) for one-to-one direct communication, the communication method comprising:
- receiving, from another UE, a first message including first information and second information related to a session key;
  
  deriving a confidential key and an integrity key based on the second information;
  
  performing a first check that the received first information is the same as a first information possessed by the UE;
  
  performing a second check of an integrity protection on the first message based on the integrity key; and
  
  performing the one-to-one direct communication with the another UE using the confidentiality key and the integrity key if both the first check and the second check pass.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The communication method according to claim 7, wherein the another UE checks the integrity protection on a second message received from the UE.
  - 9. The communication method according to claim 7, wherein the first message includes an algorithm for key derivation.
  - 10. The communication method according to claim 7, wherein the UE and the another UE support ProSe (Proximity Services).
  - 11. The communication method according to claim 7, wherein the UE and the another UE get an authorization from a network including at least a ProSe (Proximity Services) Function and a ProSe application server.
  - 12. The communication method according to claim 7, wherein the UE and the another UE perform mutual authentication.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NEC Corporation
Original Assignee
NEC Corporation
Inventors
Zhang, Xiaowei, Prasad, Anand Raghawa
Primary Examiner(s)
Patel, Haresh N

Application Number

US15/667,900
Publication Number

US 20170359322A1
Time in Patent Office

936 Days
Field of Search

726 4
US Class Current
CPC Class Codes

H04L 2209/80   Wireless

H04L 63/06   for supporting key manageme...

H04L 63/08   for authentication of entit...

H04L 9/0833   involving conference or gro...

H04L 9/088   Usage controlling of secret...

H04L 9/3242   involving keyed hash functi...

H04W 12/02   Protecting privacy or anony...

H04W 12/03   Protecting confidentiality,...

H04W 12/0431   Key distribution or pre-dis...

H04W 12/104   Location integrity, e.g. se...

H04W 12/106   Packet or message integrity

H04W 12/108   Source integrity

H04W 4/80   Services using short range ...

H04W 76/10   Connection setup

H04W 76/14   Direct-mode setup

Authentication and authorization in proximity based service communication

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication and authorization in proximity based service communication

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links