Systems, methods, and devices for secure device-to-device discovery and communication
First Claim
Patent Images
1. User equipment (UE), comprising:
- a memory device to store instructions; and
a baseband processor to execute the instructions to;
process a discovery response message from a peer UE to determine whether or not the discovery response message includes a payload comprising first a shared secret value (SSV);
generate a direct communication request to the peer UE, wherein the direct communication request comprises a first signature authenticating an identity of a user of the UE;
if the discovery response message includes the payload comprising the first SSV, use the first SSV provided in the payload of the discovery response message to encrypt the direct communication request;
if the discovery response message does not include the payload comprising the first SSV, generate a second SSV to share with the peer UE and encode the second SSV into a payload of the direct communication request;
decrypt, using the first SSV if included in the discovery response message, or using the second SSV if the first SSV is not included in the discovery response message, a direct communication response from the peer UE to authenticate an identity of the peer UE, wherein the direct communication response comprises a second signature authenticating the identity of a user of the peer UE; and
in response to the direct communication response from the peer UE to authenticate the identity of the peer UE, engage in direct communication with the peer UE using the first SSV if included in the discovery response message, or using the second SSV if the first SSV is not included in the discovery response message,wherein common key material, for communication between the UE and the peer UE, is generated and communicated between the UE and the peer UE based on a Sakai-Kasahara Key Encryption (SAKKE) scheme.
2 Assignments
0 Petitions
Accused Products
Abstract
A user equipment (UE) is configured to send a direct communication request to a peer UE, wherein the direct communication request comprises a signature authenticating an identity of the UE. The UE is configured to process a direct communication response from the peer UE to authenticate an identity of the peer UE, wherein the direct communication response comprises a signature authenticating the identity of the peer UE. In response to processing the direct communication response from the peer UE to authenticate the identity of the peer UE, the UE is configured to engage in direct communication with the peer UE.
13 Citations
11 Claims
-
1. User equipment (UE), comprising:
-
a memory device to store instructions; and a baseband processor to execute the instructions to; process a discovery response message from a peer UE to determine whether or not the discovery response message includes a payload comprising first a shared secret value (SSV); generate a direct communication request to the peer UE, wherein the direct communication request comprises a first signature authenticating an identity of a user of the UE; if the discovery response message includes the payload comprising the first SSV, use the first SSV provided in the payload of the discovery response message to encrypt the direct communication request; if the discovery response message does not include the payload comprising the first SSV, generate a second SSV to share with the peer UE and encode the second SSV into a payload of the direct communication request; decrypt, using the first SSV if included in the discovery response message, or using the second SSV if the first SSV is not included in the discovery response message, a direct communication response from the peer UE to authenticate an identity of the peer UE, wherein the direct communication response comprises a second signature authenticating the identity of a user of the peer UE; and in response to the direct communication response from the peer UE to authenticate the identity of the peer UE, engage in direct communication with the peer UE using the first SSV if included in the discovery response message, or using the second SSV if the first SSV is not included in the discovery response message, wherein common key material, for communication between the UE and the peer UE, is generated and communicated between the UE and the peer UE based on a Sakai-Kasahara Key Encryption (SAKKE) scheme. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A baseband processor comprising:
-
memory to store an identity of a user corresponding to the baseband processor; and circuitry to; discover, based on a discovery response message, a proximal user equipment (UE); determine whether the discovery response message includes a first shared secret value (SSV); format a message comprising a payload authenticating the identity of the user corresponding to the baseband processor to send to the proximal UE; if the discovery response message includes the first SSV, encrypt the message comprising the payload using the first SSV; if the discovery response message does not include the first SSV, generate a second SSV to include in the payload to share with the proximal UE; authenticate an identity of a user of the proximal UE; and communicate directly with the proximal UE to encrypt and decrypt direct messages using the first or second SSV, wherein common key material, for communication with the proximal UE, is generated and communicated with the proximal UE based on a Sakai-Kasahara Key Encryption (SAKKE) scheme. - View Dependent Claims (9, 10, 11)
-
Specification