Method and apparatus for providing authenticated challenges for broadcast-multicast communications in a communication system

US 8,724,803 B2
Filed: 09/01/2004
Issued: 05/13/2014
Est. Priority Date: 09/02/2003
Status: Active Grant

First Claim

Patent Images

1. A method of securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:

receiving a first value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;

verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;

determining that a source of the first digital signature is the short-term key manager; and

computing the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus for secure generation of a short-term key SK for viewing information content in a Multicast-broadcast-multimedia system are described. A short-term key is generated by a memory module residing in user equipment (UE) only when the source of the information used to generate the short-term key can be validated. A short-term key can be generated by a Broadcast Access Key (BAK) or a derivative of BAK and a changing value with a Message Authentication Code (MAC) appended to the changing value. A short-term key (SK) can also be generated by using a private key and a short-term key (SK) manager with a corresponding public key distributed to the memory module residing in the user equipment (UE), using a digital signature.

378 Citations

26 Claims

1. A method of securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
- receiving a first value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;
  
  verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;
  
  determining that a source of the first digital signature is the short-term key manager; and
  
  computing the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, wherein the first value is determined by the short-term key manager.
  - 3. The method of claim 1, wherein the first value includes a time stamp.
  - 4. The method of claim 1, further comprising transmitting the computed short-term key from the secure memory to the mobile equipment.

5. A method of obtaining an encryption key in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
- receiving a packet index value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;
  
  verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;
  
  determining that a source of the digital signature is the short-term key manager; and
  
  computing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key.
- View Dependent Claims (6, 7)
- - 6. The method of claim 5, wherein the packet index value includes a sequence number.
  - 7. The method of claim 5, further comprising transmitting the encryption key to the mobile equipment.

8. An integrated circuit, comprising:
- means for verifying a first digital signature using a signature scheme based on a private key and a public key, wherein the public key is stored in a first secure memory of the integrated circuit and the signature scheme is stored in the first secure memory, wherein the first digital signature is provided by a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the digital signature is formed using the private key, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the integrated circuit;
  
  means for determining that a source of the first digital signature is the short-term key manager; and
  
  means for computing a short-term key using a first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the first value is provided by the short-term key manager, and wherein the mobile equipment accesses the content using the short-term key.
- View Dependent Claims (9, 10)
- - 9. The integrated circuit of claim 8, wherein the first value is determined by the short-term key manager.
  - 10. The integrated circuit of claim 8, wherein the first value includes a time stamp.

11. A mobile station, comprising:
- means for receiving a first value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;
  
  means for verifying the first digital signature using a signature scheme based on the private key and a public key;
  
  means for storing the public key in a first secure memory of the mobile station, wherein the public key stored in the secure memory is not accessible to a mobile equipment of the mobile station;
  
  means for storing the signature scheme in the first secure memory;
  
  means for determining that a source of the first digital signature is the short-term key manager; and
  
  means for computing a short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key.
- View Dependent Claims (12, 13)
- - 12. The mobile station of claim 11, wherein the first value is determined by the short-term key manager.
  - 13. The mobile station of claim 11, wherein the first value includes a time stamp.

14. A non-transitory computer readable medium embodying a method for securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
- receiving a first value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;
  
  verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;
  
  determining that a source of the first digital signature is the short-term key manager; and
  
  computing the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key.
- View Dependent Claims (15)
- - 15. The non-transitory computer readable medium of claim 14, wherein the first value includes a time stamp.

16. An integrated circuit, comprising:
- means for verifying a first digital signature using a signature scheme based on a private key and a public key, wherein the public key is stored in a first secure memory of the integrated circuit and the signature scheme is stored in a first secure memory, wherein the first digital signature is provided by a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from the private key; and
  
  wherein the public key stored in the secure memory is not accessible to a mobile equipment of the integrated circuit;
  
  means for determining that a source of the digital signature is the short-term key manager; and
  
  means for computing an encryption key using a packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the packet index value is provided by the short-term key manager, and wherein the mobile equipment accesses the content using the encryption key.
- View Dependent Claims (17)
- - 17. The integrated circuit of claim 16, wherein the packet index value includes a sequence number.

18. A mobile station, comprising:
- means for receiving a packet index value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;
  
  means for verifying the first digital signature using a signature scheme based on the private key and a public key;
  
  means for storing the public key in a first secure memory of the mobile station, wherein the public key stored in the first secure memory is not accessible to a mobile equipment of the mobile station;
  
  means for storing the signature scheme in the first secure memory;
  
  means for determining that a source of the first digital signature is the short-term key manager; and
  
  means for computing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key.
- View Dependent Claims (19)
- - 19. The mobile station of claim 18, wherein the packet index value includes a sequence number.

20. A non-transitory computer readable medium embodying a method for obtaining an encryption key in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
- receiving a packet index value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;
  
  verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;
  
  determining that a source of the digital signature is the short-term key manager; and
  
  computing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key.
- View Dependent Claims (21)
- - 21. The non-transitory computer readable medium of claim 20, wherein the packet index value includes a sequence number.

22. A mobile station, comprising:
- a mobile equipment configured to;
  
  receive a packet index value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key, andaccess the content using an encryption key; and
  
  a memory module configured to;
  
  verify the first digital signature using a signature scheme based on the private key and a public key,store the public key, wherein the public key stored in the memory module is not accessible to the mobile equipment of the mobile station,store the signature scheme,determine that a source of the first digital signature is the short-term key manager, andcompute the encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature.
- View Dependent Claims (23)
- - 23. The mobile station of claim 22, wherein the packet index value includes a sequence number.

24. A mobile station, comprising:
- a mobile equipment configured to;
  
  receive a first value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key, andaccess the content using a short-term key; and
  
  a memory module configured to;
  
  verify the first digital signature using a signature scheme based on the private key and a public key,store the public key, wherein the public key stored in the memory module is not accessible to the mobile equipment of the mobile station,store the signature scheme,determine that a source of the first digital signature is the short-term key manager, andcompute the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature.
- View Dependent Claims (25, 26)
- - 25. The mobile station of claim 24, wherein the first value is determined by the short-term key manager.
  - 26. The mobile station of claim 24, wherein the first value includes a time stamp.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Qualcomm, Inc.
Original Assignee
Qualcomm, Inc.
Inventors
Semple, James, Rose, Gregory Gordon
Primary Examiner(s)
Zand, Kambiz
Assistant Examiner(s)
Jackson, Jenise E

Application Number

US10/932,514
Publication Number

US 20050138379A1
Time in Patent Office

3,541 Days
Field of Search

713/163, 713/176, 713277-278, 380/44, 726/26
US Class Current

380/44
CPC Class Codes

H04L 2209/60   Digital content management,...

H04L 2209/80   Wireless network architectu...

H04L 63/067   using one-time keys cryptog...

H04L 63/0823   using certificates cryptogr...

H04L 63/123   received data contents, e.g...

H04L 63/126   the source of the received ...

H04L 9/0822   using key encryption key

H04L 9/3242   involving keyed hash functi...

H04L 9/3247   involving digital signatures

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 12/10   Integrity

H04W 12/61   Time-dependent

H04W 4/06   Selective distribution of b...

Method and apparatus for providing authenticated challenges for broadcast-multicast communications in a communication system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

378 Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for providing authenticated challenges for broadcast-multicast communications in a communication system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

378 Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links