Authentication method for mobile communications

US 5,596,641 A
Filed: 03/14/1995
Issued: 01/21/1997
Est. Priority Date: 03/17/1994
Status: Expired due to Term

First Claim

Patent Images

1. A mobile communication authentication method for authenticating a mobile station which accesses for roaming a network different from a home network of the mobile station, said mobile station and said home network having the same secret key and using the same cipher function, said method comprising the steps of:

preliminarily authenticating said mobile station by sending from said home network to said roamed network, a plurality of pairs of first random numbers and calculation results of the cipher function, said calculation being performed at said home network using said secret key and said first random numbers, sending, from said roamed network to said mobile station, third random numbers formed by coupling second random numbers produced at said roamed network with said first random numbers, sending, from said mobile station to said roamed network, calculation results of the cipher function, said calculation being performed at said mobile station using said secret key and said sent third random numbers, and confirming, at said roamed network, coincidence of the calculation results sent from said mobile station with the calculation results sent from said home network; and

authenticating said mobile station by using a pair of said second random number and of said calculation result with respect to the second random number, sent from said mobile station.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In the preliminary authentication stage, the mobile station (35) is authenticated by sending from the home network (30) to the roamed network (31), a plurality of pairs of first random numbers (RNDa₁, . . . , RNDa_n) and calculation results (SRESa₁, . . . , SRESa_n) of the cipher function (f), which calculation is performed at the home network using the secret key (ki) and the first random numbers (RNDa₁, . . . , RND_an), by sending, from the roamed network to the mobile station, third random numbers formed by coupling second random numbers (RNDb₁, . . . , RNDb_m) produced at the roamed network with the first random numbers (RNDa₁, . . . , RNDan), by sending, from the mobile station to the roamed network, calculation results (SRESa₁, . . . , SRESa_n, SRESb₁, . . . , SRESb_m)) of the cipher function (f), which calculation is performed at the mobile station using the secret key (ki) and the sent third random numbers, and by confirming, at the roamed network, coincidence of the calculation results (SRESa₁, . . . , SRESa_n) sent from the mobile station with the calculation results (SRESa₁, . . . , SRESa_n) sent from the home network. In the main authentication, the mobile station is authenticated by using a pair of the second random number (RNDb₁, . . . , RNDb_m) and of the calculation result (SRESb₁, . . . , SRESb_m) with respect to the second random number (RNDb₁, . . . , RNDb_m), sent from the mobile station.

Citations

15 Claims

1. A mobile communication authentication method for authenticating a mobile station which accesses for roaming a network different from a home network of the mobile station, said mobile station and said home network having the same secret key and using the same cipher function, said method comprising the steps of:
- preliminarily authenticating said mobile station by sending from said home network to said roamed network, a plurality of pairs of first random numbers and calculation results of the cipher function, said calculation being performed at said home network using said secret key and said first random numbers, sending, from said roamed network to said mobile station, third random numbers formed by coupling second random numbers produced at said roamed network with said first random numbers, sending, from said mobile station to said roamed network, calculation results of the cipher function, said calculation being performed at said mobile station using said secret key and said sent third random numbers, and confirming, at said roamed network, coincidence of the calculation results sent from said mobile station with the calculation results sent from said home network; and
  
  authenticating said mobile station by using a pair of said second random number and of said calculation result with respect to the second random number, sent from said mobile station.
- View Dependent Claims (2, 3)
- - 2. The method as claimed in claim 1, wherein the number of said first random numbers is smaller than that of said second random numbers.
  - 3. The method as claimed in claim 1, wherein said third random numbers are sent from said roamed network in accordance with a sending order rearranged in random.

4. A mobile communication authentication method for authenticating a mobile station which accesses for roaming a network different from a home network of said mobile station, said mobile station and said home network having the same secret key and using the same cipher function, bit length of random numbers used in said roamed network being shorter than that used in said home network, said method comprising the steps of:
- sending from said home network to said roamed network, calculation results of the cipher function, said calculation being performed at said home network using said secret key and random numbers extended by means of an extension function to the bit length of the random numbers used in said home network, sending, from said roamed network to said mobile station, random numbers before extension, sending, from said mobile station to said roamed network, calculation results of the cipher function, said calculation being performed at said mobile station using said secret key and random numbers extended by means of an extension function to the bit length of the random numbers used in said home network, and confirming, at said roamed network, coincidence of the calculation result sent from said mobile station with the calculation result sent from said home network.
- View Dependent Claims (5, 6, 7)
- - 5. The method as claimed in claim 4, wherein said mobile station and said roamed network have the extension functions, and wherein said roamed network produces random numbers and extends using said extension function bit length of the random numbers.
  - 6. The method as claimed in claim 4, wherein said mobile station and said home network have the extension functions, and wherein said home network produces random numbers and extends bit length of the random numbers using the extension function.
  - 7. The method as claimed in claim 4, wherein said extension function is a block cipher system of CBC mode.

8. A mobile communication authentication method for authenticating a mobile station which accesses for roaming a network different from a home network of said mobile station, said mobile station and said home network having the same secret key and using the same cipher function, bit length of random numbers used in said roamed network being shorter than that used in said home network, said method comprising the steps of:
- preliminarily authenticating said mobile station by sending from said home network to said roamed network, a plurality of pairs of first random numbers and calculation results of the cipher function, said calculation being performed at said home network using said secret key and said first random numbers, sending, from said roamed network to said mobile station, third random numbers formed by coupling second random numbers produced and extended at said roamed network by means of an extension function to the bit length of the random numbers used in said home network with said first random numbers, sending, from said mobile station to said roamed network, calculation results of the cipher function, said calculation being performed at said mobile station using said secret key and said sent third random numbers, and confirming, at said roamed network, coincidence of the calculation results sent from said mobile station with the calculation results sent from said home network; and
  
  authenticating said mobile station by using a pair of said second random number and of said calculation result with respect to the second random number, sent from said mobile station.
- View Dependent Claims (9, 10)
- - 9. The method as claimed in claim 8, wherein the number of said first random numbers is smaller than that of said second random numbers.
  - 10. The method as claimed in claim 8, wherein said third random numbers are sent from said roamed network in accordance with a sending order rearranged in random.

11. A mobile communication authentication method for authenticating a smart card connected to a mobile station, which accesses for roaming a network different from a home network of said smart card, said smart card and said home network having the same secret key and using the same cipher function, bit length of random numbers used in said roamed network being shorter than that used in said home network, said method comprising the steps of:
- preliminary authenticating said mobile station by sending from said home network to said roamed network, a plurality of pairs of first random numbers and calculation results of the cipher function, said calculation being performed at said home network using said secret key and said first random numbers, sending, from said roamed network to said smart card, third random numbers formed by coupling second random numbers produced and extended at said roamed network by means of an extension function to the bit length of the random numbers used in said home network with said first random numbers, sending, from said smart card to said roamed network, calculation results of the cipher function, said calculation being performed at said smart card using said secret key and said sent third random numbers, and confirming, at said roamed network, coincidence of the calculation results sent from said smart card with the calculation results sent from said home network; and
  
  authenticating said smart card connected to said mobile station by using a pair of said second random number and of said calculation result with respect to the second random number, sent from said smart card.
- View Dependent Claims (12, 13)
- - 12. The method as claimed in claim 11, wherein the number of said first random numbers is smaller than that of said second random numbers.
  - 13. The method as claimed in claim 11, wherein said third random numbers are sent from said roamed network in accordance with a sending order rearranged in random.

14. A mobile communication authentication method for authenticating a smart card connected to a mobile station, which accesses for roaming a network different from a home network of said smart card, said smart card and said home network having the same first secret key and using the same first cipher function, said mobile station and said roamed network having the same second secret key and using the same second cipher function, said method comprising the steps of:
- authenticating said mobile station by sending, from said roamed network to said mobile station at least one random number, sending, from said mobile station to said roamed network, at least one calculation result of the second cipher function, said calculation being performed at said mobile station using said second secret key and the random number sent from said roamed network, and confirming, at said roamed network, coincidence of the calculation result sent from said mobile station with a calculation result calculated at said roamed network; and
  
  authenticating said smart card by sending from said roamed network to said smart card at least one random number, sending from said smart card to said roamed network, a least one calculation result of the first cipher function, said calculation being performed at said smart card using said first secret key and the random number sent from said roamed network, and confirming, at said roamed network, coincidence of the calculation result sent from said smart card with a calculation result sent from said home network.
- View Dependent Claims (15)
- - 15. The method as claimed in claim 14, wherein the random numbers sent from said roamed network to said mobile station are produced at said roamed network by dividing a random number sent from said home network.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
KDDI Corporation
Original Assignee
Kokusai Denshi Denwa Company Limited (KDDI Corporation)
Inventors
Mizuno, Toshio, Yamaguchi, Akira, Takeuchi, Yoshio, Sakai, Seiichiro, Suzuki, Toshinori, Ohashi, Masayoshi
Primary Examiner(s)
Cain, David C.

Application Number

US08/404,290
Time in Patent Office

679 Days
Field of Search

380/23, 380/4, 380/49, 380/46, 380/28, 379/58
US Class Current

380/248
CPC Class Codes

H04L 2209/80   Wireless

H04L 9/3271   using challenge-response

H04W 12/062   Pre-authentication

H04W 12/069   using certificates or pre-s...

Authentication method for mobile communications

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication method for mobile communications

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links