Authentication method for mobile communications
First Claim
1. A mobile communication authentication method for authenticating a mobile station which accesses for roaming a network different from a home network of the mobile station, said mobile station and said home network having the same secret key and using the same cipher function, said method comprising the steps of:
- preliminarily authenticating said mobile station by sending from said home network to said roamed network, a plurality of pairs of first random numbers and calculation results of the cipher function, said calculation being performed at said home network using said secret key and said first random numbers, sending, from said roamed network to said mobile station, third random numbers formed by coupling second random numbers produced at said roamed network with said first random numbers, sending, from said mobile station to said roamed network, calculation results of the cipher function, said calculation being performed at said mobile station using said secret key and said sent third random numbers, and confirming, at said roamed network, coincidence of the calculation results sent from said mobile station with the calculation results sent from said home network; and
authenticating said mobile station by using a pair of said second random number and of said calculation result with respect to the second random number, sent from said mobile station.
4 Assignments
0 Petitions
Accused Products
Abstract
In the preliminary authentication stage, the mobile station (35) is authenticated by sending from the home network (30) to the roamed network (31), a plurality of pairs of first random numbers (RNDa1, . . . , RNDan) and calculation results (SRESa1, . . . , SRESan) of the cipher function (f), which calculation is performed at the home network using the secret key (ki) and the first random numbers (RNDa1, . . . , RNDan), by sending, from the roamed network to the mobile station, third random numbers formed by coupling second random numbers (RNDb1, . . . , RNDbm) produced at the roamed network with the first random numbers (RNDa1, . . . , RNDan), by sending, from the mobile station to the roamed network, calculation results (SRESa1, . . . , SRESan, SRESb1, . . . , SRESbm)) of the cipher function (f), which calculation is performed at the mobile station using the secret key (ki) and the sent third random numbers, and by confirming, at the roamed network, coincidence of the calculation results (SRESa1, . . . , SRESan) sent from the mobile station with the calculation results (SRESa1, . . . , SRESan) sent from the home network. In the main authentication, the mobile station is authenticated by using a pair of the second random number (RNDb1, . . . , RNDbm) and of the calculation result (SRESb1, . . . , SRESbm) with respect to the second random number (RNDb1, . . . , RNDbm), sent from the mobile station.
-
Citations
15 Claims
-
1. A mobile communication authentication method for authenticating a mobile station which accesses for roaming a network different from a home network of the mobile station, said mobile station and said home network having the same secret key and using the same cipher function, said method comprising the steps of:
-
preliminarily authenticating said mobile station by sending from said home network to said roamed network, a plurality of pairs of first random numbers and calculation results of the cipher function, said calculation being performed at said home network using said secret key and said first random numbers, sending, from said roamed network to said mobile station, third random numbers formed by coupling second random numbers produced at said roamed network with said first random numbers, sending, from said mobile station to said roamed network, calculation results of the cipher function, said calculation being performed at said mobile station using said secret key and said sent third random numbers, and confirming, at said roamed network, coincidence of the calculation results sent from said mobile station with the calculation results sent from said home network; and authenticating said mobile station by using a pair of said second random number and of said calculation result with respect to the second random number, sent from said mobile station. - View Dependent Claims (2, 3)
-
-
4. A mobile communication authentication method for authenticating a mobile station which accesses for roaming a network different from a home network of said mobile station, said mobile station and said home network having the same secret key and using the same cipher function, bit length of random numbers used in said roamed network being shorter than that used in said home network, said method comprising the steps of:
sending from said home network to said roamed network, calculation results of the cipher function, said calculation being performed at said home network using said secret key and random numbers extended by means of an extension function to the bit length of the random numbers used in said home network, sending, from said roamed network to said mobile station, random numbers before extension, sending, from said mobile station to said roamed network, calculation results of the cipher function, said calculation being performed at said mobile station using said secret key and random numbers extended by means of an extension function to the bit length of the random numbers used in said home network, and confirming, at said roamed network, coincidence of the calculation result sent from said mobile station with the calculation result sent from said home network. - View Dependent Claims (5, 6, 7)
-
8. A mobile communication authentication method for authenticating a mobile station which accesses for roaming a network different from a home network of said mobile station, said mobile station and said home network having the same secret key and using the same cipher function, bit length of random numbers used in said roamed network being shorter than that used in said home network, said method comprising the steps of:
-
preliminarily authenticating said mobile station by sending from said home network to said roamed network, a plurality of pairs of first random numbers and calculation results of the cipher function, said calculation being performed at said home network using said secret key and said first random numbers, sending, from said roamed network to said mobile station, third random numbers formed by coupling second random numbers produced and extended at said roamed network by means of an extension function to the bit length of the random numbers used in said home network with said first random numbers, sending, from said mobile station to said roamed network, calculation results of the cipher function, said calculation being performed at said mobile station using said secret key and said sent third random numbers, and confirming, at said roamed network, coincidence of the calculation results sent from said mobile station with the calculation results sent from said home network; and authenticating said mobile station by using a pair of said second random number and of said calculation result with respect to the second random number, sent from said mobile station. - View Dependent Claims (9, 10)
-
-
11. A mobile communication authentication method for authenticating a smart card connected to a mobile station, which accesses for roaming a network different from a home network of said smart card, said smart card and said home network having the same secret key and using the same cipher function, bit length of random numbers used in said roamed network being shorter than that used in said home network, said method comprising the steps of:
-
preliminary authenticating said mobile station by sending from said home network to said roamed network, a plurality of pairs of first random numbers and calculation results of the cipher function, said calculation being performed at said home network using said secret key and said first random numbers, sending, from said roamed network to said smart card, third random numbers formed by coupling second random numbers produced and extended at said roamed network by means of an extension function to the bit length of the random numbers used in said home network with said first random numbers, sending, from said smart card to said roamed network, calculation results of the cipher function, said calculation being performed at said smart card using said secret key and said sent third random numbers, and confirming, at said roamed network, coincidence of the calculation results sent from said smart card with the calculation results sent from said home network; and authenticating said smart card connected to said mobile station by using a pair of said second random number and of said calculation result with respect to the second random number, sent from said smart card. - View Dependent Claims (12, 13)
-
-
14. A mobile communication authentication method for authenticating a smart card connected to a mobile station, which accesses for roaming a network different from a home network of said smart card, said smart card and said home network having the same first secret key and using the same first cipher function, said mobile station and said roamed network having the same second secret key and using the same second cipher function, said method comprising the steps of:
-
authenticating said mobile station by sending, from said roamed network to said mobile station at least one random number, sending, from said mobile station to said roamed network, at least one calculation result of the second cipher function, said calculation being performed at said mobile station using said second secret key and the random number sent from said roamed network, and confirming, at said roamed network, coincidence of the calculation result sent from said mobile station with a calculation result calculated at said roamed network; and authenticating said smart card by sending from said roamed network to said smart card at least one random number, sending from said smart card to said roamed network, a least one calculation result of the first cipher function, said calculation being performed at said smart card using said first secret key and the random number sent from said roamed network, and confirming, at said roamed network, coincidence of the calculation result sent from said smart card with a calculation result sent from said home network. - View Dependent Claims (15)
-
Specification