Method and apparatus for signaling privacy in personal communications systems
First Claim
1. A communication unit for use in a wireless communication system, the communication unit comprising:
- a traffic data key generator for generating a traffic cipher key stream;
a traffic data encryptor coupled to the traffic key generator for encrypting traffic data with the traffic key stream;
a signaling processor which produces signaling data, the signaling data being destined for a signal destination node of the wireless communication system;
a signaling key generator which generates a signaling cipher key stream from a number stored on a subscriber information module (SIM);
a signaling encryptor, coupled to the signaling processor and to the signaling key generator, which encrypts the signaling data using the signaling cipher key stream resulting in encrypted signaling data;
a traffic data source which produces said traffic data, said traffic data being destined for a traffic destination node of the wireless communication system;
a multiplexor coupled to the traffic data encryptor and the signaling encryptor for multiplexing the encrypted traffic data and encrypted signaling data;
a transceiver, for transmitting the multiplexed encrypted signaling data and encrypted traffic data over a first RF link to a node of the wireless communication system.
4 Assignments
0 Petitions
Accused Products
Abstract
A system and method provides signaling privacy for communications between nodes of a communications network (30). Multiple logical links exist between distinct network nodes (38-40, 42, 50-53) of the communication network (30). Signaling privacy is achieved by a subscriber unit (80) providing encryption/decryption of signaling data messages at the messaging level. The subscriber unit (80) employs a signaling encryptor/decryptor (86) along the signaling path, which enables the signaling data messages to be separately encrypted from data on the traffic channel. The encrypted signaling data can then be sent along a different logical link from the traffic, while maintaining cipher key synchronization between the signaling encryptor/decryptor (86) and a network encryptor/decryptor (78) at a remote end of the logical link which transports the encrypted signaling data.
68 Citations
17 Claims
-
1. A communication unit for use in a wireless communication system, the communication unit comprising:
-
a traffic data key generator for generating a traffic cipher key stream; a traffic data encryptor coupled to the traffic key generator for encrypting traffic data with the traffic key stream; a signaling processor which produces signaling data, the signaling data being destined for a signal destination node of the wireless communication system; a signaling key generator which generates a signaling cipher key stream from a number stored on a subscriber information module (SIM); a signaling encryptor, coupled to the signaling processor and to the signaling key generator, which encrypts the signaling data using the signaling cipher key stream resulting in encrypted signaling data; a traffic data source which produces said traffic data, said traffic data being destined for a traffic destination node of the wireless communication system; a multiplexor coupled to the traffic data encryptor and the signaling encryptor for multiplexing the encrypted traffic data and encrypted signaling data; a transceiver, for transmitting the multiplexed encrypted signaling data and encrypted traffic data over a first RF link to a node of the wireless communication system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A wireless communication system comprising:
-
an authentication center (AUC) which produces a signaling cipher key and a random number, and stores the random number on a SIM card; a wireless communication device comprising a signaling key generator for retrieving the random number from the SIM card and generating the signaling cipher key from the random number, and using the signaling cipher key to generate a signaling cipher key stream used to encrypt signaling data resulting in encrypted signaling data; and a gateway which receives the cipher key from the AUC, and uses the cipher key to decrypt the encrypted signaling data received from the wireless communication device through a first logical channel; and a satellite coupled to the wireless communication device by an RF link, said wireless communication device further comprising a traffic key generator for generating a traffic key stream, a traffic encryptor for encrypting traffic data with the traffic key stream, a multiplexor for multiplexing the encrypted signaling data with the encrypted traffic data, and a transceiver for transmitting the multiplexed data over the RF link to the satellite, the encrypted traffic data being routed to a called or calling party through a second logical channel. - View Dependent Claims (11)
-
-
12. A method for securely communicating signaling data from a wireless communication device to a first destination device of a satellite communication system, and communicating traffic data to a second destination device, the method comprising the steps of:
-
generating a signaling cipher key by a signaling key generator using a random number stored on a SIM of the wireless communication device; encrypting the signaling data, by a signaling encryptor, using the cipher key resulting in encrypted signaling data; encrypting traffic data with a traffic data encryptor using a traffic cipher key stream; multiplexing the encrypted signaling data and the encrypted traffic data for transmission to a satellite of the satellite communication system; transmitting the encrypted signaling data over a first logical link to the first destination device, the first logical link comprising a first set of physical links; transmitting the encrypted traffic data over a second logical link to a second destination device, the second logical link comprising a second set of physical links, wherein the first and second sets of physical links comprise a common RF link between the wireless communication device and the satellite. - View Dependent Claims (13)
-
-
14. A method of operating a communication device for securely communicating signaling and traffic data in a wireless communication system, the method comprising the steps of:
-
generating a signaling cipher key stream with a signaling key generator; encrypting signaling data using the signaling cipher key stream, the signaling data comprising channel control information; multiplexing the encrypted signaling data and traffic data for transmission to a satellite of the wireless communication system, wherein the encrypted signaling data is routed over a first logical link to a first destination device, and the traffic data is routed over a second logical link to a second destination device, wherein the first and second logical links share a common RF link between the communication device and the satellite. - View Dependent Claims (15)
-
-
16. A wireless communication system comprising:
-
an authentication center for producing a signaling cipher key and a random number and stores the random number of a SIM card; a gateway which uses the signaling cipher key to decrypt encrypted signaling data, the encrypted signaling data being produced by a wireless communication device using the random number from the SIM card; a satellite communication node coupling the wireless communication device to the wireless communication system by an RF link, wherein multiplexed data comprising encrypted traffic data and the encrypted signaling data is received by the satellite from the wireless communication device, the encrypted traffic data being produced by the wireless communication device using a traffic cipher key that is different from the signaling cipher key, the encrypted traffic data being routed over a first logical link through the wireless communication system to a traffic destination node, the encrypted signaling data being routed over a second logical link through the wireless communication system to the gateway. - View Dependent Claims (17)
-
Specification