METHOD AND APPARATUS FOR PROVIDING MACHINE-TO-MACHINE SERVICE

US 20120265983A1
Filed: 04/16/2012
Published: 10/18/2012
Est. Priority Date: 04/15/2011
Status: Active Grant

First Claim

Patent Images

1. A method of providing service by a Machine-to-Machine (M2M) device, the method comprising:

transmitting a request for service to a Network Security Capability (NSEC), the request for service including an identifier of a Device Service Capability Layer (DSCL) of the M2M device;

performing an Extensible Authentication Protocol (EAP) authentication with an M2M Authentication Server (MAS) via the NSEC; and

generating, if the EAP authentication is successful, a service key using a Master Session Key (MSK), a first constant string, and the identifier of the DSCL.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and an apparatus for providing Machine-to-Machine (M2M) service are provided. A method of providing service by an M2M device includes transmitting a request for service to a Network Security Capability (NSEC), the request for service comprising a identifier of a Device Servie Capability Layer (DSCL) of the M2M device, performing an Extensible Authentication Protocol (EAP) authentication with an M2M Authentication Server (MAS) via the NSEC, and generating, if the EAP authentication is successful, a service key using a Master Session Key (MSK), a first constant string, and the identifier of the DSCL.

40 Citations

View as Search Results

16 Claims

1. A method of providing service by a Machine-to-Machine (M2M) device, the method comprising:
- transmitting a request for service to a Network Security Capability (NSEC), the request for service including an identifier of a Device Service Capability Layer (DSCL) of the M2M device;
  
  performing an Extensible Authentication Protocol (EAP) authentication with an M2M Authentication Server (MAS) via the NSEC; and
  
  generating, if the EAP authentication is successful, a service key using a Master Session Key (MSK), a first constant string, and the identifier of the DSCL.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, further comprising generating, after the generating of the service key, an application key using the service key, a second constant string, and an application identification (ID).
  - 3. The method of claim 1, wherein the NSEC generates, if the EAP authentication is successful, the service key using the MSK, the first constant string, and the identifier of the DSCL.
  - 4. The method of claim 1, wherein the performing of the EAP authentication comprises communicating, for the EAP authentication with the NSEC, by using Protocol for carrying Authentication for Network Access (PANA).

5. A Machine-to-Machine (M2M) device for providing service, the M2M device comprising:
- a transmitter for transmitting a request for service to a Network Security Capability (NEC), the request for service including an identifier of a Device Service Capability Layer (DSCL) of the M2M device;
  
  a controller for performing an Extensible Authentication Protocol (EAP) authentication with an M2M Authentication Server (MAS) via the NSEC; and
  
  a key generator for generating, if the EAP authentication is successful, a service key using a Master Session Key (MSK), a first constant string, and the identifier of the DSCL.
- View Dependent Claims (6, 7, 8)
- - 6. The M2M device of claim 5, wherein the key generator is for generating, after the generating of the service key, an application key using the service key, a second constant string, and an application id.
  - 7. The M2M device of claim 5, wherein the NSEC generates, if the EAP authentication is successful, the service key using the Master Session Key (MSK), the first constant string, and the identifier of the DSCL.
  - 8. The M2M device of claim 5, wherein the transmitter communicates with the NSEC, during the EAP authentication with the NSEC, by using Protocol for carrying Authentication for Network Access (PANA).

9. A method of providing service by a Network Security Capability (NSEC) in a Machine-to-Machine (M2M) system, the method comprising:
- determining whether a request for service is received from an M2M device, the request for service including an identifier of a Device Service Capability Layer (DSCL) of the M2M device;
  
  performing, if the request for service is received, an Extensible Authentication Protocol (EAP) authentication with the M2M device and an M2M Authentication Server (MAS); and
  
  generating, if the EAP authentication is successful, a service key using a Master Session Key (MSK), a first constant string, and the identifier of the DSCL.
- View Dependent Claims (10, 11, 12)
- - 10. The method of claim 9, further comprising generating, after the generating of the service key, an application key using the service key, a second constant string, and an application id.
  - 11. The method of claim 9, wherein the M2M device generates, if the EAP authentication is successful, the service key using the Master Session Key (MSK), the first constant string, and the identifier of the DSCL.
  - 12. The method of claim 9, wherein the performing of the EAP authentication comprises communicating, for the EAP authentication with the M2M device, by using Protocol for carrying Authentication for Network Access (PANA);
    - andcommunicating, for the EAP authentication with the M2M Authentication Server (MAS), by using Authentication, Authorization and Accounting (AAA) protocol.

13. A Network Security Capability (NSEC) device for providing service in a Machine-to-Machine (M2M) system, the NSEC device comprising:
- a controller for determining whether a request for service is received from an M2M device, the request for service comprising a identifier of a Device Service Capability Layer (DSCL) of the M2M device, and for performing, if the request for service is received, an Extensible Authentication Protocol (EAP) authentication with the M2M device and an M2M Authentication Server (MAS); and
  
  a key generator for generating, if the authentication is successful, a service key using a Master Session Key (MSK), a first constant string, and the identifier of the DSCL.
- View Dependent Claims (14, 15, 16)
- - 14. The NSEC device of claim 13, wherein the key generator is for generating, after the key generator has generated the service key, an application key using the service key, a second constant string, and an application id.
  - 15. The NSEC device of claim 13, wherein the key generator generates, if the EAP authentication is successful, the service key using the Master Session Key (MSK), the first constant string, and the identifier of the DSCL.
  - 16. The NSEC device of claim 13, further comprising a transceiver for communicating, during the EAP authentication with the M2M device, by using Protocol for carrying Authentication for Network Access (PANA), and for communicating, during the EAP authentication with the M2M Authentication Server (MAS), by using Authentication, Authorization and Accounting (AAA) protocol.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
YEGIN, Alper, BAEK, Youngkyo

Granted Patent

US 9,202,055 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/155
CPC Class Codes

G06F 21/57   Certifying or maintaining t...

G06F 2221/2143   Clearing memory, e.g. to pr...

G06F 9/4401   Bootstrapping security arra...

H04L 2463/061   applying further key deriva...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/126   the source of the received ...

H04L 63/162   at the data link layer

H04W 12/069   using certificates or pre-s...

H04W 4/50   Service provisioning or rec...

H04W 4/70   Services for machine-to-mac...

METHOD AND APPARATUS FOR PROVIDING MACHINE-TO-MACHINE SERVICE

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

40 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND APPARATUS FOR PROVIDING MACHINE-TO-MACHINE SERVICE

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

40 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links