AUTHENTICATION IN A PACKET DATA NETWORK

US 20070060106A1
Filed: 07/25/2006
Published: 03/15/2007
Est. Priority Date: 03/31/2000
Status: Active Grant

First Claim

Patent Images

1. A method in a system comprising a mobile node;

a packet data network and a telecommunication network;

the mobile node being capable of communicating directly over two different communication links, a telecommunications network link with the telecommunications network and a packet data network link with the packet data network;

the method comprising;

storing in the mobile node and in the telecommunication network a mobile node identity and a shared secret specific to the mobile node identity corresponding to the mobile node, which mobile node identity and shared secret are capable of authenticating the mobile node to the telecommunications network for communications over the telecommunications network link;

providing the mobile node with a protection code;

sending the mobile node identity and the protection code from the mobile node to the packet data network over the packet data network link;

the telecommunication network providing the packet data network with authentication information corresponding to said mobile node identity, the authentication information comprising a challenge and a session secret, wherein said session secret corresponds to the mobile node identity and the session secret is derivable from the challenge together with the shared secret;

forming cryptographic information using at least the protection code and the session secret;

the packet data network sending the challenge and the cryptographic information to the mobile node over the packet data network link;

the mobile node checking the validity of the cryptographic information using the challenge and the shared secret;

the mobile node deriving based on the shared secret, the session secret and a first response corresponding to the challenge;

the mobile node sending the first response to the packet data network over the packet data network link; and

the packet data network checking the first response for authenticating the mobile node.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Authentication method for authenticating a mobile node to a packet data network, in which a shared secret for both the mobile node and the packet data network is arranged by using a shared secret of the mobile node and a telecommunications network authentication centre. In the method, the mobile node sends its subscriber identity to the packet data network together with a replay attack protector. The packet data network obtains authentication triplets, forms a session key using them, and sends back to the mobile node challenges and a cryptographic authenticator made by using the session key. The mobile node can then form the rest of the authentication triplets using the challenges and then form the session key. With the session key, the mobile node can check the validity of the cryptographic authenticator. If the authenticator is correct, the mobile node sends a cryptographic response formed using the session key to the packet data network for authenticating itself to the packet data network.

46 Citations

View as Search Results

51 Claims

1. A method in a system comprising a mobile node;
- a packet data network and a telecommunication network;
  
  the mobile node being capable of communicating directly over two different communication links, a telecommunications network link with the telecommunications network and a packet data network link with the packet data network;
  
  the method comprising;
  
  storing in the mobile node and in the telecommunication network a mobile node identity and a shared secret specific to the mobile node identity corresponding to the mobile node, which mobile node identity and shared secret are capable of authenticating the mobile node to the telecommunications network for communications over the telecommunications network link;
  
  providing the mobile node with a protection code;
  
  sending the mobile node identity and the protection code from the mobile node to the packet data network over the packet data network link;
  
  the telecommunication network providing the packet data network with authentication information corresponding to said mobile node identity, the authentication information comprising a challenge and a session secret, wherein said session secret corresponds to the mobile node identity and the session secret is derivable from the challenge together with the shared secret;
  
  forming cryptographic information using at least the protection code and the session secret;
  
  the packet data network sending the challenge and the cryptographic information to the mobile node over the packet data network link;
  
  the mobile node checking the validity of the cryptographic information using the challenge and the shared secret;
  
  the mobile node deriving based on the shared secret, the session secret and a first response corresponding to the challenge;
  
  the mobile node sending the first response to the packet data network over the packet data network link; and
  
  the packet data network checking the first response for authenticating the mobile node.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. Method according to claim 1, further comprising:
    - providing the mobile node with a subscriber identity for the telecommunications network; and
      
      forming from the subscriber identity a Network Access Identifier as the mobile node identity by the mobile node.
  - 3. Method according to claim 1, further comprising recognizing the telecommunications network at the packet data network directly from the mobile node identity.
  - 4. Method according to claim 1, further comprising providing the packet data network with a shared session key based on the at least one session secret.
  - 5. Method according to claim 1, wherein the forming of the cryptographic information using at least the protection code and the session secret is carried out by the telecommunication network.
  - 6. Method according to claim 1, wherein the mobile node is configured to obtain from a subscriber identity module a mobile node identity and the session secret based on a shared secret specific for the mobile node identity.
  - 7. Method according to claim 6, further comprising:
    - forming a local connection between the mobile node and a subscriber identity module;
      
      the mobile node receiving the mobile node identity from the subscriber identity module over the local connection; and
      
      the mobile node receiving a session secret specific to the mobile node identity from the subscriber identity module over the local connection.
  - 8. Method according to claim 1, further comprising:
    - obtaining a second response by the telecommunications network; and
      
      using the second response in the checking the first response.
  - 9. Method according to claim 1, further comprising sending the challenge from the telecommunications network to the mobile node via the packet data network.
  - 10. Method according to claim 1, wherein the protection code is based on time.
  - 11. Method according to claim 1, wherein the challenge is based on RAND codes of at least two authentication triplets of the telecommunications network.
  - 12. Method according to claim 1, further comprising:
    - generating a shared session key for Internet Key Exchange, wherein the shared session key is based on the at least one session secret and the at least one challenge; and
      
      using the shared session key in Internet Key Exchange to establish a session between the mobile node and the packet data network.

13. A system comprising:
- a packet data network having an access to an authentication gateway of a telecommunications network;
  
  a mobile node comprising;
  
  a first transceiver configured to communicate directly with the telecommunications network;
  
  a second transceiver configured to communicate directly with the packet data network; and
  
  a memory configured to store in the mobile node a protection code and a mobile node identity and a shared secret specific to the mobile node identity corresponding to the mobile node, which mobile node identity and shared secret are capable of authenticating the mobile node to the telecommunications network for communications over the first transceiver;
  
  wherein the second transceiver is configured to send the mobile node identity and the protection code from the mobile node to the packet data network;
  
  the packet data network being configured to pass the protection code to the authentication gateway and respectively to obtain cryptographic information and a challenge corresponding to the mobile node, which cryptographic information is derivable from the protection code in combination with the shared secret and the challenge;
  
  the packet data network being further configured to pass the challenge and the cryptographic information to the mobile node;
  
  the mobile node further comprising a processor configured to check the cryptographic information based on the challenge in combination with the protection code and the shared secret;
  
  so as to authenticate the packet data network;
  
  wherein the processor is further configured to derive a session secret and a first response based on the challenge and the shared secret, the session secret and a first response corresponding to the challenge;
  
  the second transceiver being further configured to send the first response to the packet data network so as to authenticate the mobile node to the packet data network;
  
  wherein the packet data network is further configured to check the first response for authenticating the mobile node.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 14. A system according to claim 13, wherein:
    - the mobile node is provided with a subscriber identity for the telecommunications network; and
      
      the mobile node identity is a network access identifier formed from the subscriber identity.
  - 15. A system according to claim 13, wherein the packet data network is configured to recognize the telecommunications network directly from the mobile node identity.
  - 16. A system according to claim 13, wherein the packet data network is configured to obtain from the gateway a shared session key for communication with the mobile node, which shared session key is based on the at least one session secret.
  - 17. A system according to claim 13, wherein the forming of the cryptographic information using at least the protection code and the session secret is carried out by the telecommunication network.
  - 18. A system according to claim 13, wherein the mobile node is configured to obtain from a Subscriber Identity Module the mobile node with a mobile node identity and the session secret based on a shared secret specific for the mobile node identity.
  - 19. A system according to claim 18, wherein the mobile node is further configured to form a local connection between the mobile node and a subscriber identity module;
    - to receive the mobile node identity from the subscriber identity module over the local connection; and
      
      to receive a session secret specific to the mobile node identity from the subscriber identity module over the local connection.
  - 20. A system according to claim 13, wherein the telecommunications network is further configured to obtain a second response;
    - and to use the second response in the checking the first response.
  - 21. A system according to claim 13, wherein the packet data network is configured to pass the challenge from the telecommunications network to the mobile node.
  - 22. A system according to claim 13, wherein the protection code is based on time.
  - 23. A system according to claim 13, wherein the challenge is based on RAND codes of at least two authentication triplets of the telecommunications network.
  - 24. A system according to claim 13, further wherein the packet data network is further configured to obtain from the gateway a shared session key for internet key exchange, wherein the shared session key is based on the at least one session secret and the at least one challenge;
    - and wherein the packet data network is further configured to use the shared session key in internet key exchange to establish a session between the mobile node and the packet data network.

25. In a mobile node capable of communicating directly over two different communication links, a telecommunications network link with the telecommunications network and a packet data network link with the packet data network, a method comprising:
- storing a mobile node identity and a shared secret specific to the mobile node identity corresponding to the mobile node, which mobile node identity and shared secret are capable of authenticating the mobile node to the telecommunications network for communications over the telecommunications network link;
  
  obtaining a protection code;
  
  sending the mobile node identity and the protection code to the packet data network over the packet data network link;
  
  receiving a challenge and cryptographic information from the packet data network over the packet data network link;
  
  checking the validity of the cryptographic information using the challenge and the shared secret;
  
  deriving based on the shared secret a session secret and a first response corresponding to the challenge; and
  
  sending the first response to the packet data network over the packet data network link to prove authenticity.
- View Dependent Claims (26, 27, 28, 29, 30)
- - 26. Method according to claim 25, wherein the mobile node obtains from a Subscriber Identity Module a mobile node identity and the session secret based on a shared secret specific for the mobile node identity.
  - 27. Method according to claim 26, further comprising:
    - forming a local connection between the mobile node and a subscriber identity module;
      
      the mobile node receiving the mobile node identity from the subscriber identity module over the local connection; and
      
      the mobile node receiving a session secret specific to the mobile node identity from the subscriber identity module over the local connection.
  - 28. Method according to claim 25, wherein the protection code is based on time.
  - 29. Method according to claim 25, wherein the challenge is based on RAND codes of at least two authentication triplets of the telecommunications network.
  - 30. Method according to claim 25, further comprising:
    - generating a shared session key for internet key exchange, wherein the shared session key is based on the at least one session secret and the at least one challenge; and
      
      using the shared session key in internet key exchange to establish a session between the mobile node and the packet data network.

31. A mobile node comprising:
- a first transceiver configured to communicate directly with a telecommunications network;
  
  a second transceiver configured to communicate directly with a packet data network; and
  
  a memory configured to store in the mobile node a protection code and a mobile node identity and a shared secret specific to the mobile node identity corresponding to the mobile node, which mobile node identity and shared secret are capable of authenticating the mobile node to the telecommunications network for communications over the first transceiver;
  
  wherein the second transceiver has been configured to send the mobile node identity and the protection code from the mobile node to the packet data network and to receive cryptographic information and a challenge corresponding to the mobile node, which cryptographic information is derivable from the protection code in combination with the shared secret and the challenge;
  
  the mobile node further comprising a processor configured to check the cryptographic information based on the challenge in combination with the protection code and the shared secret in order to authenticate the packet data network;
  
  wherein the processor is further configured to derive a session secret and a first response based on the challenge and the shared secret, the session secret and a first response corresponding to the challenge; and
  
  the second transceiver being further configured to send the first response to the packet data network so as to authenticate the mobile node to the packet data network.
- View Dependent Claims (32, 33, 34, 35, 36, 37)
- - 32. A mobile node according to claim 31, further comprising:
    - a memory configured to store a subscriber identity for the telecommunications network; and
      
      the processor is further configured to form from the subscriber identity a network access identifier as the mobile node identity.
  - 33. A mobile node according to claim 31, wherein the mobile node is configured to obtain from a Subscriber Identity Module the mobile node with a mobile node identity and the session secret based on a shared secret specific for the mobile node identity.
  - 34. A mobile node according to claim 31, wherein the mobile node is further configured to form a local connection between the mobile node and a subscriber identity module;
    - to receive the mobile node identity from the subscriber identity module over the local connection; and
      
      to receive a session secret specific to the mobile node identity from the subscriber identity module over the local connection.
  - 35. A mobile node according to claim 31, wherein the protection code is based on time.
  - 36. A mobile node according to claim 31, wherein the challenge is based on RAND codes of at least two authentication triplets of the telecommunications network.
  - 37. A mobile node according to claim 31, wherein the mobile node is configured to obtain a shared session key for internet key exchange, wherein the shared session key is based on the at least one session secret and the at least one challenge;
    - and to use the shared session key in internet key exchange to establish a session between the mobile node and the packet data network.

38. A method in a packet data network, comprising:
- receiving from a mobile node a mobile node identity and a protection code;
  
  passing to a telecommunications network the mobile node identity and the protection code;
  
  receiving from the telecommunications network a challenge and cryptographic information based on at least the protection code together with the challenge, wherein the cryptographic information is derivable from a shared secret accessible to the mobile node and to the telecommunications network but not to the packet data network;
  
  sending the challenge and the cryptographic information to the mobile node;
  
  receiving from the mobile node a response corresponding to the challenge; and
  
  verifying with the telecommunications network if the response is correct so as to authenticate the mobile node to the packet data network.
- View Dependent Claims (39, 40)
- - 39. A method according to claim 38, further comprising recognizing the telecommunications network at the packet data network directly from the mobile node identity.
  - 40. A method according to claim 38, further comprising providing an access point in the packet data network and communicating with the mobile node over the access point the mobile node identity, protection code, challenge, cryptographic information and the response.

41. A packet data network comprising:
- a unit configured to receive from a mobile node a mobile node identity and a protection code;
  
  a unit configured to pass to a telecommunications network the mobile node identity and the protection code;
  
  a unit configured to receive from the telecommunications network a challenge and cryptographic information based on at least the protection code together with the challenge, wherein the cryptographic information is derivable from a shared secret accessible to the mobile node and to the telecommunications network but not to the packet data network;
  
  a unit configured to send the challenge and the cryptographic information to the mobile node;
  
  a unit configured to receive from the mobile node a response corresponding to the challenge; and
  
  a unit configured to verify with the telecommunications network if the response is correct so as to authenticate the mobile node to the packet data network.
- View Dependent Claims (42, 43)
- - 42. A packet data network according to claim 41, further comprising a unit configured to recognize the telecommunications network at the packet data network directly from the mobile node identity.
  - 43. A packet data network according to claim 41, further comprising an access point configured to communicate with the mobile node the mobile node identity, protection code, challenge, cryptographic information and the response.

44. A method in a gateway for interfacing a packet data access network and a telecommunications network, which telecommunications network has subscribers and an access to an authentication server that knows shared secrets of the subscribers, the method comprising:
- receiving a mobile node identity and a protection code from the packet data access network;
  
  providing the authentication server with the mobile node identity;
  
  receiving from the authentication server a challenge and a session secret, which session secret corresponds to the mobile node identity in combination with the challenge and the shared secret;
  
  forming cryptographic information using at least the protection code and the session secret;
  
  providing the packet data access network with the challenge and the cryptographic information for further transmission to a mobile node;
  
  receiving from the mobile node via the packet data access network a first response corresponding to the challenge, based on the shared secret specific to the subscriber identity; and
  
  verifying the first response for authenticating the mobile node.
- View Dependent Claims (45, 47)
- - 45. A method according to claim 44, wherein the gateway is operated by the operator of the telecommunications network.
  - 47. A gateway according to claim 45, wherein the gateway is operated by the operator of the telecommunications network.

46. Gateway for interfacing a packet data access network and a telecommunications network, which telecommunications network has subscribers and an access to an authentication server that knows shared secrets of the subscribers, the gateway comprising:
- an input configured to receive a mobile node identity and a protection code from the packet data access network;
  
  an output configured to provide the authentication server with the mobile node identity;
  
  an input configured to receive from the authentication server a challenge and a session secret, which session secret corresponds to the mobile node identity in combination with the challenge and the shared secret;
  
  a unit configured to form cryptographic information using at least the protection code and the session secret;
  
  an output for providing the packet data access network with the challenge and the cryptographic information for further transmission to a mobile node;
  
  an input for receiving from the mobile node via the packet data access network a first response corresponding to the challenge, based on the shared secret specific to the subscriber identity; and
  
  a unit for verifying the first response for authenticating the mobile node.

48. Computer readable medium comprising a computer program for controlling a mobile node capable of communicating directly over two different communication links, a telecommunications network link with the telecommunications network and a packet data network link with the packet data network, the medium comprising:
- computer executable code to store a mobile node identity and a shared secret specific to the mobile node identity corresponding to the mobile node, which mobile node identity and shared secret are capable of authenticating the mobile node to the telecommunications network for communications over the telecommunications network link;
  
  computer executable code to enable the mobile node to obtain a protection code;
  
  computer executable code to enable the mobile node to send the mobile node identity and the protection code to the packet data network over the packet data network link;
  
  computer executable code to enable the mobile node to receive a challenge and cryptographic information from the packet data network over the packet data network link;
  
  computer executable code to enable the mobile node to check the validity of the cryptographic information using the challenge and the shared secret;
  
  computer executable code to enable the mobile node to derive based on the shared secret a session secret and a first response corresponding to the challenge; and
  
  computer executable code to enable the mobile node to send the first response to the packet data network.

49. Computer readable medium comprising a computer program for controlling a packet data network, the medium comprising:
- computer executable code to enable the network to receive from a mobile node a mobile node identity and a protection code;
  
  computer executable code to enable the network to pass to a telecommunications network the mobile node identity and the protection code;
  
  computer executable code to enable the network to receive from the telecommunications network a challenge and cryptographic information based on at least the protection code together with the challenge, wherein the cryptographic information is derivable from a shared secret accessible to the mobile node and to the telecommunications network but not to the packet data network;
  
  computer executable code to enable the network to send the challenge and the cryptographic information to the mobile node;
  
  computer executable code to enable the network to receive from the mobile node a response corresponding to the challenge; and
  
  computer executable code to enable the network to verify with the telecommunications network if the response is correct so as to authenticate the mobile node to the packet data network.
- View Dependent Claims (50)
- - 50. A computer readable medium according to claim 49, wherein the packet data network further comprises an access point, the medium further comprising computer executable code to enable the packet data network to communicate with the mobile node over the access point the mobile node identity, protection code, challenge, cryptographic information and the response.

51. Computer readable medium comprising a computer program for controlling a gateway interfacing a packet data access network and a telecommunications network which telecommunications network has subscribers and an access to an authentication server that knows shared secrets of the subscribers, the medium comprising:
- computer executable code to enable the gateway to receive a mobile node identity and a protection code from the packet data access network;
  
  computer executable code to enable the gateway to provide the authentication server with the mobile node identity;
  
  computer executable code to enable the gateway to receive from the authentication server a challenge and a session secret, which session secret corresponds to the mobile node identity in combination with the challenge and the shared secret;
  
  computer executable code to enable the gateway to form cryptographic information using at least the protection code and the session secret;
  
  computer executable code to enable the gateway to provide the packet data access network with the challenge and the cryptographic information for further transmission to a mobile node;
  
  computer executable code to enable the gateway to receive from the mobile node via the packet data access network a first response corresponding to the challenge, based on the shared secret specific to the subscriber identity; and
  
  computer executable code to enable the gateway to verify the first response for authenticating the mobile node.

Specification

Resources

Litigation Campaign Assessment

Granted Patent

US 7,512,796 B2
Time in Patent Office

Days
Field of Search
US Class Current

455/410
CPC Class Codes

H04L 63/0435   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 63/0869   for achieving mutual authen...

H04L 63/162   at the data link layer

H04W 12/0431   Key distribution or pre-dis...

H04W 12/06   Authentication

AUTHENTICATION IN A PACKET DATA NETWORK

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

46 Citations

51 Claims

Specification

Solutions

Use Cases

Quick Links

AUTHENTICATION IN A PACKET DATA NETWORK

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

46 Citations

51 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links