Automatic generation of private authentication key for wireless communication systems

US 5,794,139 A
Filed: 10/10/1995
Issued: 08/11/1998
Est. Priority Date: 08/29/1994
Status: Expired due to Fees

First Claim

Patent Images

1. Apparatus for use in a cellular mobile telephone system wherein data signals are communicated between a mobile station and a base station, said mobile station having stored therein mobile station identification data, a global random number periodically received from said base station and a unique random number received from said base station, said apparatus comprising:

unique random number receiving means for receiving said unique random number transmitted by said base station; and

authentication key generating means at said mobile station responsive to at least the stored mobile station identification data and unique random number for automatically generating said authentication key, said authentication key being an A-key, and said authentication key generating means being operable to automatically generate said authentication key during an initial installation operation of said mobile station, said authentication key being maintained in semi-permanent memory in a non-transitory, non-transmissible state within said mobile station.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Apparatus and method for automatically generating an authentication key (A-Key) in a mobile station wherein the mobile station periodically receives random numbers from a base station, and automatically generates the authentication key from a received random number and from mobile station identification data stored in the mobile station. The mobile station identification data may include the electronic serial number of the mobile station, a user selected value, and a cellular system selected value. In addition, mixing registers may be utilized by an encoding algorithm, such as the CAVE algorithm, for encoding the random numbers and the identification data to automatically generate the mobile station authentication key.

104 Citations

View as Search Results

31 Claims

1. Apparatus for use in a cellular mobile telephone system wherein data signals are communicated between a mobile station and a base station, said mobile station having stored therein mobile station identification data, a global random number periodically received from said base station and a unique random number received from said base station, said apparatus comprising:
- unique random number receiving means for receiving said unique random number transmitted by said base station; and
  
  authentication key generating means at said mobile station responsive to at least the stored mobile station identification data and unique random number for automatically generating said authentication key, said authentication key being an A-key, and said authentication key generating means being operable to automatically generate said authentication key during an initial installation operation of said mobile station, said authentication key being maintained in semi-permanent memory in a non-transitory, non-transmissible state within said mobile station.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 30)
- - 2. The apparatus of claim 1, wherein said mobile station identification data includes a unique electronic serial number associated with said mobile station.
  - 3. The apparatus of claim 1, wherein said mobile station identification data includes a user selected value randomly generated at said mobile station.
  - 4. The apparatus of claim 1, wherein said mobile station identification data includes a system value supplied to said mobile station by a service provider associated with said base station.
  - 5. The apparatus of claim 1, wherein said mobile station identification data includes a unique electronic serial number associated with said mobile station, a user selected value randomly generated at said mobile station, a system value supplied to said mobile station by a service provider associated with said base station, and an authentication algorithm version number.
  - 6. The apparatus of claim 1, wherein said authentication key generating means further responds to the stored global random number for automatically generating said authentication key.
  - 7. The apparatus of claim 6, wherein said authentication key generating means includes registers for storing said mobile station identification data, said global random number and said unique random number.
  - 8. The apparatus of claim 7, wherein said authentication key generating means utilizes the mobile station identification data, the global random number and the unique random number stored in the registers in accordance with a predetermined encoding algorithm to generate said authentication key.
  - 9. The apparatus of claim 8, wherein said predetermined encoding algorithm is a CAVE-type algorithm.
  - 10. The apparatus of claim 8, wherein said authentication key generating means includes means for combining the contents of predetermined registers, and a linear feedback shift register for storing said combined contents.
  - 11. The apparatus of claim 10, further comprising means for loading said linear feedback shift register with an electronic serial number associated with said mobile station when said combined contents is null.
  - 12. The apparatus of claim 10, wherein said authentication key generating means utilizes values stored in said registers and linear feedback shift register for automatically generating said authentication key.
  - 13. The apparatus of claim 1, wherein said unique random number is received in a unique challenge authentication order message transmitted by said base station to said mobile station.
  - 14. The apparatus of claim 13, further comprising unique challenge authentication response generating means at said mobile station for generating a unique challenge authentication response in response to said mobile station identification data, said unique random number and said authentication key, and transmitting means for transmitting to said base station said unique challenge authentication response for use in said base station to verify a successful authentication key generated by said mobile station.
  - 30. The apparatus of claim 1, wherein said authentication key generating means is not responsive to another authentication key.

15. In a cellular mobile telephone system wherein a mobile station communicates with a base station, and wherein said mobile station has stored therein mobile station identification data, a global random number periodically received from said base station, and a unique random number received from said base station, the method of automatically generating an authentication key comprising the steps of:
- receiving at said mobile station said unique random number from said base station; and
  
  automatically generating during an initial installation operation of said mobile station said authentication key in response to said unique random number, said authentication key being an A-key, said authentication key being maintained in semi-permanent memory in a non-transitory, non-transmissible state within said mobile station.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 31)
- - 16. The method of claim 15, wherein the step of automatically generating said authentication key is further responsive to said stored mobile station identification data.
  - 17. The method of claim 16, wherein said mobile station identification data includes a unique electronic serial number associated with said mobile station.
  - 18. The method of claim 16, wherein said mobile station identification data includes a user selected value randomly generated at said mobile station.
  - 19. The method of claim 16, wherein said mobile station identification data includes a system value supplied to said mobile station by a service provider associated with said base station.
  - 20. The method of claim 16, wherein said mobile station identification data includes a unique electronic serial number associated with said mobile station, a user selected value randomly generated at said mobile station, a system value supplied to said mobile station by a service provider associated with said base station, and an authentication algorithm version number.
  - 21. The method of claim 16, wherein the step of automatically generating said authentication key is further responsive to the stored global random number.
  - 22. The method of claim 21, further comprising the step of storing said mobile station identification data, said global random number and said unique random number in registers in said mobile station.
  - 23. The method of claim 22, wherein the step of automatically generating said authentication key comprises combining the mobile station identification number, the global random number and the unique random number stored in said registers in accordance with a predetermined encoding algorithm.
  - 24. The method of claim 23, wherein said predetermined encoding algorithm is a CAVE-type algorithm.
  - 25. The method of claim 23, wherein the contents of predetermined registers are combined and then stored in a linear feedback shift register of said mobile station.
  - 26. The method of claim 25, further comprising the step of storing an electronic serial number associated with said mobile station in said linear feedback shift register when the combined contents of said predetermined registers is null.
  - 27. The method of claim 25, wherein the step of automatically generating said authentication key is carried out by utilizing values stored in said registers and linear feedback shift register.
  - 28. The method of claim 25, wherein said unique random number is received in a unique challenge authentication order message transmitted by said base station to said mobile station.
  - 29. The method of claim 28, further comprising the steps of generating at said mobile station a unique challenge authentication response from said authentication key, said mobile station identification data and said unique random number, and transmitting to said base station said unique challenge authentication response for use in said base station to verify a successful authentication key generated by said mobile station.
  - 31. The method of claim 15, wherein said step of automatically generating said authentication key is not responsive to another authentication key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sony Corporation (Sony Group Corp.), Sony Electronics Inc. (Sony Group Corp.)
Original Assignee
Sony Corporation (Sony Group Corp.), Sony Electronics Inc. (Sony Group Corp.)
Inventors
Mizikovsky, Semyon, Anderson, Geoffrey, Yasuda, Hiroshi, Akahane, Masaaki, Douma, Peter
Primary Examiner(s)
CUMMING, WILLIAM D

Application Number

US08/541,528
Time in Patent Office

1,036 Days
Field of Search

379/58, 379/59, 379/61, 379/63, 380/21, 380/23, 380/28, 380/43, 380/44, 380/46, 380/47, 380/48, 380/49, 380/50, 340/825.31, 340/825.34, 455/33.1, 455/33.3, 455/54.1
US Class Current

455/403
CPC Class Codes

H04L 2209/80   Wireless network architectu...

H04L 63/0876   based on the identity of th...

H04L 9/0869   involving random numbers or...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3271   using challenge-response

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 12/71   Hardware identity

Automatic generation of private authentication key for wireless communication systems

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

104 Citations

31 Claims

Specification

Solutions

Use Cases

Quick Links

Automatic generation of private authentication key for wireless communication systems

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

104 Citations

31 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links