Method and device for key generation
First Claim
1. A method for key generation, applied to a universal mobile telecommunications system (UMTS)-long term evolution (LTE) resource convergence scenario that has a base station as an anchor point, the method comprising:
- after establishing a Radio Bearer between a User Equipment (UE), which is served by an LTE system, and a UMTS control node, deriving, according to a root key and a count value of the LTE system, or according to a random number and a root key of the LTE system, a UMTS integrity key and cipher key; and
sending the UMTS integrity key and cipher key to the UMTS control node, so that the UMTS control node implements cipher and integrity protection by using the UMTS integrity key and cipher key.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and a device for key generation are disclosed in embodiments of the present invention. The method for key generation is applied to a UMTS-LTE resource convergence scenario that has a base station as an anchor point, and includes: deriving, according to a root key and a count value of an LTE system, or according to a random number and an LTE system root key, a UMTS integrity key and cipher key, and sending the UMTS integrity key and cipher key to a UMTS control node. The embodiments of the present invention enable the derivation of the UMTS integrity key and cipher key in a UMTS-LTE resource convergence scenario that has a base station as an anchor point, enable a user equipment to communicate securely through a UMTS, and further improve security of data transmitted in the UMTS.
23 Citations
25 Claims
-
1. A method for key generation, applied to a universal mobile telecommunications system (UMTS)-long term evolution (LTE) resource convergence scenario that has a base station as an anchor point, the method comprising:
-
after establishing a Radio Bearer between a User Equipment (UE), which is served by an LTE system, and a UMTS control node, deriving, according to a root key and a count value of the LTE system, or according to a random number and a root key of the LTE system, a UMTS integrity key and cipher key; and sending the UMTS integrity key and cipher key to the UMTS control node, so that the UMTS control node implements cipher and integrity protection by using the UMTS integrity key and cipher key. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for key generation, applied to a universal mobile telecommunications system (UMTS)-long term evolution (LTE) resource convergence scenario that has a base station as an anchor point, the method comprising:
-
after establishing a Radio Bearer between a User Equipment (UE), which is served by an LTE system, and a UMTS control node, sending, by an access network node of the LTE system, a UMTS key derivation instruction message to the UMTS control node, wherein the UMTS key derivation instruction message carries a random number generated by the access network node of the LTE system, so that the UMTS control node generates, according to an internet protocol security key and the random number, a UMTS integrity key and cipher key; and deriving, by the access network node of the LTE system, according to the internet protocol security key and the random number, a UMTS integrity key and cipher key. - View Dependent Claims (8)
-
-
9. A method for key generation, applied to a universal mobile telecommunications system (UMTS)-long term evolution (LTE) resource convergence scenario that has a base station as an anchor point, the method comprising:
-
receiving, by a user equipment (UE) served by an LTE system, a UMTS key derivation instruction message after a Radio Bearer between the UE and a UMTS control node is established; and deriving, by the UE, according to a count value and a root key to the LTE system, or according to a root key of the LTE system and a random number carried in the UMTS key derivation instruction message, a UMTS integrity key and cipher key. - View Dependent Claims (10, 11)
-
-
12. A message sending method, applied to a universal mobile telecommunications system (UMTS)-long term evolution (LTE) resource convergence scenario that has a base station as an anchor point, the method comprising:
-
receiving, by a UMTS control node, a UMTS integrity key and cipher key as well as a user equipment (UE) security capability from an access network node of an LTE system, after a Radio Bearer between the UE, which is served by the LTE system, and the UMTS control node is established; and sending, by the UMTS control node, through the access network node of the LTE system, a security mode command message under integrity protection to the UE, wherein the security mode command message carries;
an integrity algorithm and a cipher algorithm that are selected by the UMTS control node according to the UE security capability, the UE security capability and parameter values generated by the UMTS control node, and an integrity message authentication code generated by the UMTS control node according to the UMTS integrity key, the parameter values generated by the UMTS control node, an integrity sequence number, the security mode command message, and a direction indication. - View Dependent Claims (13)
-
-
14. A core network node for a long term evolution (LTE) system, applied to a universal mobile telecommunications system (UMTS) LTE resource convergence scenario that has a base station as an anchor point, the core network node comprising:
-
non-transitory computer readable storage medium to store program(s), and computer hardware configured, including configured by the program(s), to implement; after establishing a Radio Bearer between a User Equipment (UE), which is served by the LTE system, and a UMTS control node, to derive, according to a non-access stratum root key to the LTE system and a current non-access stratum count value of the LTE system, or according to a non-access stratum root key to the LTE system and a random number generated by the core network node, a UMTS integrity key and cipher key; and to send the UMTS integrity key and cipher key derived by the first generation module to the UMTS control node, so that the UMTS control node implements cipher and integrity protection by using the UMTS integrity key and cipher key. - View Dependent Claims (15, 16)
-
-
17. An access network node for a long term evolution (LTE) system, applied to a universal mobile telecommunications system (UMTS) LTE resource convergence scenario that has a base station as an anchor point, the access network node comprising:
-
non-transitory computer readable storage medium to store program(s), and computer hardware configured, including configured by the program(s), to implement; after establishing a Radio Bearer between a User Equipment (UE), which is served by the LTE system, and a UMTS control node, to derive, according to an access layer root key to the LTE system and a packet data convergence protocol count value of the LTE system, or according to an access layer root key to the LTE system and a random number generated by the access network node, a UMTS integrity key and cipher key; and to send the UMTS integrity key and cipher key derived by the second generation module to the UMTS control node, so that the UMTS control node implements cipher and integrity protection by using the UMTS integrity key and cipher key. - View Dependent Claims (18)
-
-
19. An access network node for a long term evolution (LTE) system, applied to a universal mobile telecommunications system (UMTS) LTE resource convergence scenario that has a base station as an anchor point, the access network node comprising:
-
non-transitory computer readable storage medium to store program(s), and computer hardware configured, including configured by the program(s), to implement; to send a UMTS key derivation instruction message to a control node of a UMTS after a Radio Bearer between a User Equipment (UE) served by an LTE system and the UMTS control node is established, wherein the UMTS key derivation instruction message carries a random number generated by the access network node, so that the UMTS control node generates, according to an internet protocol security key and the random number, a UMTS integrity key and cipher key; and to derive, according to the internet protocol security key and the random number, a UMTS integrity key and cipher key. - View Dependent Claims (20)
-
-
21. A user equipment (UE), applied to a universal mobile telecommunications system (UMTS)-long term evolution (LTE) resource convergence scenario that has a base station as an anchor point, the UE comprising:
-
non-transitory computer readable storage medium to store program(s), and computer hardware configured, including configured by the program(s), to implement; to receive a UMTS key derivation instruction message after a Radio Bearer between the UE, which is served by an LTE system, and a UMTS control node is established; and to derive, according to a count value and a root key to the LTE system, or according to a root key of the LTE system and a random number carried in the UMTS key derivation instruction message, a UMTS integrity key and cipher key. - View Dependent Claims (22, 23)
-
-
24. A control node for a universal mobile telecommunication system (UMTS), applied to a UMTS-long term evolution (LTE) system resource convergence scenario that has a base station as an anchor point, the UMTS control node comprising:
-
non-transitory computer readable storage medium to store program(s), and computer hardware configured, including configured by the program(s), to implement; to receive a UMTS integrity key and cipher key as well as a user equipment (UE) security capability from an access network node of the LTE system after a Radio Bearer between the UE, which is served by the LTE system, and the UMTS control node is established; and to send, through the access network node of the LTE system, a security mode command message under integrity protection to UE, wherein the security mode command message carries;
an integrity algorithm and a cipher algorithm that are selected by the UMTS control node according to the UE security capability, the UE security capability and parameter values generated by the UMTS control node, and an integrity message authentication code generated by the UMTS control node according to the UMTS integrity key, the parameter values generated by the UMTS control node, an integrity sequence number, the security mode command message, and a direction indication. - View Dependent Claims (25)
-
Specification