Method and apparatus for providing authenticated challenges for broadcast-multicast communications in a communication system
First Claim
1. A method of securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
- receiving a first value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;
verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;
determining that a source of the first digital signature is the short-term key manager; and
computing the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for secure generation of a short-term key SK for viewing information content in a Multicast-broadcast-multimedia system are described. A short-term key is generated by a memory module residing in user equipment (UE) only when the source of the information used to generate the short-term key can be validated. A short-term key can be generated by a Broadcast Access Key (BAK) or a derivative of BAK and a changing value with a Message Authentication Code (MAC) appended to the changing value. A short-term key (SK) can also be generated by using a private key and a short-term key (SK) manager with a corresponding public key distributed to the memory module residing in the user equipment (UE), using a digital signature.
378 Citations
26 Claims
-
1. A method of securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
-
receiving a first value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key; verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station; determining that a source of the first digital signature is the short-term key manager; and computing the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key. - View Dependent Claims (2, 3, 4)
-
-
5. A method of obtaining an encryption key in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
-
receiving a packet index value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key; verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station; determining that a source of the digital signature is the short-term key manager; and computing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key. - View Dependent Claims (6, 7)
-
-
8. An integrated circuit, comprising:
-
means for verifying a first digital signature using a signature scheme based on a private key and a public key, wherein the public key is stored in a first secure memory of the integrated circuit and the signature scheme is stored in the first secure memory, wherein the first digital signature is provided by a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the digital signature is formed using the private key, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the integrated circuit; means for determining that a source of the first digital signature is the short-term key manager; and means for computing a short-term key using a first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the first value is provided by the short-term key manager, and wherein the mobile equipment accesses the content using the short-term key. - View Dependent Claims (9, 10)
-
-
11. A mobile station, comprising:
-
means for receiving a first value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key; means for verifying the first digital signature using a signature scheme based on the private key and a public key; means for storing the public key in a first secure memory of the mobile station, wherein the public key stored in the secure memory is not accessible to a mobile equipment of the mobile station; means for storing the signature scheme in the first secure memory; means for determining that a source of the first digital signature is the short-term key manager; and means for computing a short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key. - View Dependent Claims (12, 13)
-
-
14. A non-transitory computer readable medium embodying a method for securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
-
receiving a first value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key; verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station; determining that a source of the first digital signature is the short-term key manager; and computing the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key. - View Dependent Claims (15)
-
-
16. An integrated circuit, comprising:
-
means for verifying a first digital signature using a signature scheme based on a private key and a public key, wherein the public key is stored in a first secure memory of the integrated circuit and the signature scheme is stored in a first secure memory, wherein the first digital signature is provided by a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from the private key; and
wherein the public key stored in the secure memory is not accessible to a mobile equipment of the integrated circuit;means for determining that a source of the digital signature is the short-term key manager; and means for computing an encryption key using a packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the packet index value is provided by the short-term key manager, and wherein the mobile equipment accesses the content using the encryption key. - View Dependent Claims (17)
-
-
18. A mobile station, comprising:
-
means for receiving a packet index value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key; means for verifying the first digital signature using a signature scheme based on the private key and a public key; means for storing the public key in a first secure memory of the mobile station, wherein the public key stored in the first secure memory is not accessible to a mobile equipment of the mobile station; means for storing the signature scheme in the first secure memory; means for determining that a source of the first digital signature is the short-term key manager; and means for computing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key. - View Dependent Claims (19)
-
-
20. A non-transitory computer readable medium embodying a method for obtaining an encryption key in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising:
-
receiving a packet index value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key; verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station; determining that a source of the digital signature is the short-term key manager; and computing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key. - View Dependent Claims (21)
-
-
22. A mobile station, comprising:
- a mobile equipment configured to;
receive a packet index value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key, and access the content using an encryption key; and
a memory module configured to;verify the first digital signature using a signature scheme based on the private key and a public key, store the public key, wherein the public key stored in the memory module is not accessible to the mobile equipment of the mobile station, store the signature scheme, determine that a source of the first digital signature is the short-term key manager, and compute the encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature. - View Dependent Claims (23)
- a mobile equipment configured to;
-
24. A mobile station, comprising:
-
a mobile equipment configured to; receive a first value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key, and access the content using a short-term key; and
a memory module configured to;verify the first digital signature using a signature scheme based on the private key and a public key, store the public key, wherein the public key stored in the memory module is not accessible to the mobile equipment of the mobile station, store the signature scheme, determine that a source of the first digital signature is the short-term key manager, and compute the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature. - View Dependent Claims (25, 26)
-
Specification