Method for securing data traffic in a mobile network environment
First Claim
1. A method in a mobile network environment for securing data traffic between an external network and a terminal of a mobile user coupled to the external network, wherein the mobile user can be authenticated in a home location network by way of a private home location key pair, the method which comprises:
- a) producing a private external key pair by exchanging partial keys between the terminal and a data securing device of the external network;
b) transmitting from the data securing device to the home location network an item of key information based on at least one of the partial keys and a message certified by the terminal by way of a first home location key of the private home location key pair;
c) verifying the certification of the message in the home location network with a second home location key of the private home location key pair, and producing a certificate for the key information;
d) transmitting the certificate to the data securing device; and
e) accepting the private external key pair for securing the data traffic subject to verification of the certificate transmitted from the home location network.
1 Assignment
0 Petitions
Accused Products
Abstract
In order to secure data traffic between an external network and a mobile user terminal coupled to the external network, the terminal and a data securing device of the external network produce a pair of private external keys by exchanging partial keys. One item of key information based on at least one of the partial keys, and one message certified by the terminal with a first home location key of the pair of home location keys, are transmitted by the data securing device to the home location network. The certification of the message is verified with a second home location key of the pair of home location keys and a certificate is issued for the key information. The certificate thus provided is transmitted to the data securing device and the pair of private external keys is accepted, subject to the verification of the transmitted certificate, in order to secure data traffic.
-
Citations
18 Claims
-
1. A method in a mobile network environment for securing data traffic between an external network and a terminal of a mobile user coupled to the external network, wherein the mobile user can be authenticated in a home location network by way of a private home location key pair, the method which comprises:
-
a) producing a private external key pair by exchanging partial keys between the terminal and a data securing device of the external network; b) transmitting from the data securing device to the home location network an item of key information based on at least one of the partial keys and a message certified by the terminal by way of a first home location key of the private home location key pair; c) verifying the certification of the message in the home location network with a second home location key of the private home location key pair, and producing a certificate for the key information; d) transmitting the certificate to the data securing device; and e) accepting the private external key pair for securing the data traffic subject to verification of the certificate transmitted from the home location network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
Specification