Method of implementing authentication of high-rate packet data services
First Claim
1. A method for implementing authentication of high-rate packet data (HRPD) services, the method comprising the steps of:
- (A) taking, by way of an Access Terminal (AT), user information in a User Identity Module (UIM) as a user identifier and starting an authentication of extended authentication protocol (EAP);
(B) obtaining, by way of a Mobile Switching Center/Visiting Location Register (MSC/VLR), a random number and a first authentication number corresponding to the random number based on the user identifier, wherein said first authentication number is calculated with Shared Secret Data (SSD) stored at a network side and said random number; and
,(C) calculating, by way of the AT, a second authentication number based on said random number and SSD stored in AT, judging, by way of the MSC/VLR, by comparing whether the first authentication number and the second authentication number are consistent, such that, if yes, the authentication succeeds, and otherwise, the authentication fails.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed is a method for implementing authentication of high rate packet data (HRPD) services, applicable to multi-mode networks including IS95/CDMA2000 1x and CDMA2000 HRPD networks. The method includes an Access Terminal (AT) using the user information in the User Identity Module (UIM) as the user identifier and starting an authentication in accordance with the Extended Authentication Protocol (EAP). A Mobile Switching Center (MSC)/Visiting Location Register (VLR) obtains a random number and a first authentication number based on the user identifier, and the AT calculates a second authentication number based on said random number. The MSC/VLR compares the first authentication number with the second authentication number to determine whether they are consistent. If consistent, the authentication is successful. Otherwise, the authentication is aborted. With the disclosed method, authentication can be made by using the original MSC and HLR/AC in the CDMA IS95 or CDMA2000 1x network. The method allows low cost and easy operation for the user as well as convenient maintenance for the operator.
17 Citations
20 Claims
-
1. A method for implementing authentication of high-rate packet data (HRPD) services, the method comprising the steps of:
-
(A) taking, by way of an Access Terminal (AT), user information in a User Identity Module (UIM) as a user identifier and starting an authentication of extended authentication protocol (EAP); (B) obtaining, by way of a Mobile Switching Center/Visiting Location Register (MSC/VLR), a random number and a first authentication number corresponding to the random number based on the user identifier, wherein said first authentication number is calculated with Shared Secret Data (SSD) stored at a network side and said random number; and
,(C) calculating, by way of the AT, a second authentication number based on said random number and SSD stored in AT, judging, by way of the MSC/VLR, by comparing whether the first authentication number and the second authentication number are consistent, such that, if yes, the authentication succeeds, and otherwise, the authentication fails. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for implementing authentication of high-rate packet data (HRPD) services, the method comprising the steps of:
-
(A) receiving, by way of a Mobile Switching Center/Visiting Location Register (MSC/VLR), a user identifier from an Access Terminal (AT)which takes user information in a User Identity Module (UIM) as the user identifier and starts an authentication of extended authentication protocol (EAP); (B) obtaining, by way of the MSC/VLR, a random number and a first authentication number corresponding to the random number based on the user identifier, wherein said first authentication number is calculated with Shared Secret Data (SSD) stored at a network side and said random number; and
,(C) judging, by way of the MSC/VLR after receiving a second authentication number calculated by the AT based on said random number and SSD stored in the AT, by comparing whether the first authentication number and the second authentication number are consistent, such that, if yes, the authentication succeeds, and otherwise, the authentication fails. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A Mobile Switching Center/Visiting Location Register (MSC/VLR) for implementing authentication of high-rate packet data (HRPD) services, configured to implement the method comprising:
-
receiving, by way of a Mobile Switching Center/Visiting Location Register (MSC/VLR), user information in a User Identity Module (UIM) from an Access Terminal (AT) as a user identifier and starting the authentication of extended authentication protocol (EAP); obtaining, by way of the MSC/VLR, a random number and a first authentication number corresponding to the random number based on the user identifier, wherein said first authentication number is calculated with Shared Secret Data (SSD) stored at a network side and said random number; and judging, by way of the MSC/VLR after receiving a second authentication number calculated by the AT based on said random number and SSD stored in the AT, by comparing whether the first authentication number and the second authentication number are consistent, such that, if yes, the authentication succeeds, and otherwise, the authentication fails. - View Dependent Claims (20)
-
Specification