System and method for authenticating cellular telephonic communication
First Claim
1. A method for authenticating a transmitting unit in a cellular network having an authentication unit and an intermediate unit, comprising the steps of:
- (1) generating a first signal representing a combination of a first random signal having a random value and a first count signal in the transmitting unit;
(2) generating a first encrypted signal in response to a first key signal and said first signal in the transmitting unit;
(3) transmitting a first feature signal from the transmitting unit to the authentication unit, said first feature signal including an identification signal identifying said first feature signal as an authentication signal, said first encrypted signal, and said first signal;
(4) generating a second count signal from said first signal;
(5) generating a second encrypted signal in response to a second key signal and said first signal in the authentication unit; and
(6) determining that the transmitting unit is authentic if a value of said first count signal is within a first predetermined value of a value of said second count signal and said first encrypted signal is equal to said second encrypted signal in said authentication unit.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method for authenticating a mobile station (MS) in a cellular network. The present invention is an authentication technique that uses the AMPS standard, or a derivative thereof, can authenticate a MS automatically, does not require modifications to the BS, MSC, or VLR, can detect mobile identification number/electronic serial number (MIN/ESN) clones, detects MIN/ESN clones that re-transmit the authentication results of the present invention, and can be easily and inexpensively added to MSs 102 that are based on the AMPS standard (and derivatives thereof). The present invention uses the AMPS-based MSs to automatically execute special authentication procedures using standard MS-to-BS and BS-to-MS messages. The present invention also uses a corresponding network authentication function that can be implemented in either (a) a modified HLR/AC, or (b) a new network component that has access to the signaling information between the HLR and the MSC/VLR.
46 Citations
16 Claims
-
1. A method for authenticating a transmitting unit in a cellular network having an authentication unit and an intermediate unit, comprising the steps of:
-
(1) generating a first signal representing a combination of a first random signal having a random value and a first count signal in the transmitting unit; (2) generating a first encrypted signal in response to a first key signal and said first signal in the transmitting unit; (3) transmitting a first feature signal from the transmitting unit to the authentication unit, said first feature signal including an identification signal identifying said first feature signal as an authentication signal, said first encrypted signal, and said first signal; (4) generating a second count signal from said first signal; (5) generating a second encrypted signal in response to a second key signal and said first signal in the authentication unit; and (6) determining that the transmitting unit is authentic if a value of said first count signal is within a first predetermined value of a value of said second count signal and said first encrypted signal is equal to said second encrypted signal in said authentication unit. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for authenticating a transmitting unit in a cellular network having an authentication unit and an intermediate unit, comprising the steps of:
-
(1) generating a first signal representing a combination of a first random signal having a random value and a first count signal in the transmitting unit; (2) generating a first encrypted signal in response to a first key signal and said first signal in the transmitting unit; (3) transmitting a first feature signal from the transmitting unit to the authentication unit, said first feature signal including an identification signal identifying said first feature signal as an authentication signal, said first encrypted signal, and said first count signal; (4) generating a second signal representing a combination of a first random signal having a random value and a first count signal in the authentication unit; (5) generating a second encrypted signal in response to a second key signal and said second signal in the authentication unit; and (6) determining that the transmitting unit is authentic if a value of said first count signal is within a first predetermined value of a value of a second count signal and said first encrypted signal is equal to said second encrypted signal, in said authentication unit. - View Dependent Claims (8, 9, 10, 11)
-
-
12. A system for authenticating a first transmission signal, the system comprising:
-
a transmitting unit, for transmitting an authentication signal, said transmitting unit including; a counter unit, for storing a first count signal, a value of said first count signal is modified for every transmission of said transmitting unit; a random signal generator for generating a first signal representing a combination of a first random signal having a random value and a first count signal; an encrypted signal generator, coupled to said random signal generator, for generating a first encrypted signal in response to a first key signal and said first signal in the transmitting unit; an authentication signal generator, coupled to said encrypted signal generator, for generating a first feature signal, said first feature signal including an identification signal identifying said first feature signal as an authentication signal, said first encrypted signal, and said first signal; an authentication unit, disposed to receive said first feature signal, for authenticating said first feature signal, including; a second encrypted signal generator, for generating a second encrypted signal in response to a second key signal and said first signal; and an authentication unit, coupled to said second encrypted signal generator, for identifying said first feature signal as authentic if a value of said first count signal is within a first predetermined value of a value of said second count signal and said first encrypted signal is equal to said second encrypted signal. - View Dependent Claims (13, 14, 15, 16)
-
Specification