Key exchange method and apparatus

US 9,924,354 B2
Filed: 09/02/2015
Issued: 03/20/2018
Est. Priority Date: 03/05/2013
Status: Expired due to Fees

First Claim

Patent Images

1. A key exchange method, wherein a device to device (D2D) link is established between a first user equipment and a second user equipment, and the method comprises:

acquiring, by a network device, a first key;

sending, by the network device, a message comprising the first key to the second user equipment;

determining, by the network device, a cryptographic algorithm usable by the first user equipment and the second user equipment, the cryptographic algorithm including an encryption algorithm and an integrity protection algorithm;

sending, by the network device, the cryptographic algorithm to the first user equipment and the second user equipment, whereinthe first user equipment is configured toacquire the first key,generate an encryption key according to the first key and the encryption algorithm,generate an integrity protection key according to the first key and the integrity protection algorithm, andwhen transmitting a first information to the second user equipment using the D2D link, use the encryption key to encrypt the first information and the integrity protection key to perform integrity protection on the first information,the second user equipment is configured to, upon receiving the first key from the network device,generate the encryption key according to the first key and the encryption algorithm,generate the integrity protection key according to the first key and the integrity protection algorithm, andwhen transmitting a second information to the first user equipment using the D2D link, use the encryption key to encrypt the second information and the integrity protection key to perform integrity protection on the second information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the present invention disclose a key exchange method and apparatus, which relate to the communications field, and can enable user equipments establishing a D2D link to share a set of keys, and further, information security can be achieved when a user equipment transmits service data or a signaling message through a Ud interface. A specific solution is that: a network device acquires a first key, and sends a message including the first key to a second user equipment, so that the second user equipment uses, when communicating with a first user equipment by using a D2D link, the first key to protect transmitted information. The present invention is applicable to an exchange process of keys for protecting data on a D2D link.

17 Citations

View as Search Results

38 Claims

1. A key exchange method, wherein a device to device (D2D) link is established between a first user equipment and a second user equipment, and the method comprises:
- acquiring, by a network device, a first key;
  
  sending, by the network device, a message comprising the first key to the second user equipment;
  
  determining, by the network device, a cryptographic algorithm usable by the first user equipment and the second user equipment, the cryptographic algorithm including an encryption algorithm and an integrity protection algorithm;
  
  sending, by the network device, the cryptographic algorithm to the first user equipment and the second user equipment, whereinthe first user equipment is configured toacquire the first key,generate an encryption key according to the first key and the encryption algorithm,generate an integrity protection key according to the first key and the integrity protection algorithm, andwhen transmitting a first information to the second user equipment using the D2D link, use the encryption key to encrypt the first information and the integrity protection key to perform integrity protection on the first information,the second user equipment is configured to, upon receiving the first key from the network device,generate the encryption key according to the first key and the encryption algorithm,generate the integrity protection key according to the first key and the integrity protection algorithm, andwhen transmitting a second information to the first user equipment using the D2D link, use the encryption key to encrypt the second information and the integrity protection key to perform integrity protection on the second information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The key exchange method according to claim 1, wherein the acquiring, by the network device, the first key comprises:
    - acquiring, by the network device, a second key, wherein the second key is a shared key between the network device and the first user equipment; and
      
      generating, by the network device, the first key according to the second key and a first parameter by using a key derivation function, wherein;
      
      the network device is an evolved Node B (eNB), a mobility management entity (MME), or a proximity service server; and
      
      the first parameter comprises a packet data convergence protocol (PDCP) serial number between the eNB and the first user equipment, or the first parameter comprises a non-access stratum message serial number between the MME and the first user equipment, or the first parameter comprises a random number generated by the network device.
  - 3. The key exchange method according to claim 1, wherein:
    - the first key is a random key acquired by the network device; and
      
      the acquiring, by the first user equipment, the first key comprises;
      
      sending, by the network device, a message comprising the first key to the first user equipment.
  - 4. The key exchange method according to claim 3, wherein:
    - before the sending, by the network device, the message comprising the first key to the first user equipment, the method further comprises;
      
      receiving, by the network device, a first public key from the first user equipment; and
      
      encrypting, by the network device, the first key by using the first public key, wherein;
      
      the first public key and a first private key that is reserved by the first user equipment form a first public-private key pair;
      
      orbefore the sending, by the network device, the message comprising the first key to the first user equipment, the method further comprises;
      
      generating, by the network device, a third key according to a second key; and
      
      encrypting, by the network device, the first key by using the third key, wherein the second key is a shared key between the network device and the first user equipment; and
      
      the sending, by the network device, a message comprising the first key to the first user equipment comprises sending, by the network device, a message comprising an encrypted first key to the first user equipment.
  - 5. The key exchange method according to claim 3, wherein the sending, by the network device, the message comprising the first key to the first user equipment comprises:
    - sending, by the network device, the message comprising the first key to the first user equipment by using an encrypted connection between the network device and the first user equipment.
  - 6. The key exchange method according to claim 1, wherein:
    - before the sending, by the network device, the message comprising the first key to the second user equipment, the method further comprises;
      
      receiving, by the network device, a second public key from the second user equipment; and
      
      encrypting, by the network device, the first key by using the second public key, wherein;
      
      the second public key and a second private key that is reserved by the second user equipment form a second public-private key pair;
      
      orbefore the sending, by the network device, the message comprising the first key to the second user equipment, the method further comprises;
      
      acquiring, by the network device, a fourth key, wherein the fourth key is a shared key between the network device and the second user equipment; and
      
      generating, by the network device, a fifth key according to the fourth key, and encrypting the first key by using the fifth key; and
      
      the sending, by the network device, the message comprising the first key to the second user equipment comprises sending, by the network device, a message comprising an encrypted first key to the second user equipment.
  - 7. The key exchange method according to claim 1, wherein the sending, by the network device, a message comprising the first key to the second user equipment comprises sending, by the network device, the message comprising the first key to the second user equipment by using an encrypted connection between the network device and the second user equipment.
  - 8. The key exchange method according to claim 1, wherein the determining, the cryptographic algorithm comprises:
    - determining, by the network device according to a prestored cryptographic algorithm list, a security capability of the first user equipment, and a security capability of the second user equipment, a cryptographic algorithm that is applicable to the first user equipment and the second user equipment and whose priority ranks first in the cryptographic algorithm list;
      
      wherein;
      
      the security capability of the first user equipment is used to indicate a cryptographic algorithm applicable to the first user equipment,the security capability of the second user equipment is used to indicate a cryptographic algorithm applicable to the second user equipment,the encryption algorithm is used to encrypt data transmitted on the D2D link, andthe integrity protection algorithm is used to perform integrity protection on information transmitted on the D2D link.
  - 9. The key exchange method according to claim 1, wherein the sending, by the network device, the message comprising the first key to the second user equipment comprises, if the network device is not a network device serving the second user equipment, sending, by the network device, the message comprising the first key to second user equipment through the network device serving the second user equipment.

10. A key exchange method, wherein a device to device (D2D) link is established between a first user equipment and a second user equipment, and the method comprises:
- acquiring, by the first user equipment, a first key;
  
  receiving, by the first user equipment, a cryptographic algorithm from a network device, the cryptographic algorithm including an encryption algorithm and an integrity protection algorithm;
  
  generating, by the first user equipment, an encryption key according to the first key and the encryption algorithm;
  
  generating, by the first user equipment, an integrity protection key according to the first key and the integrity protection algorithm;
  
  using, by the first user equipment when transmitting a first information to the second user equipment by using the D2D link, the first encryption key to encrypt the first information and the integrity protection key to perform integrity protection on the first information,wherein the second user equipment is configured to receive the first key from the network device, generate the encryption key according to the first key and the encryption algorithm, generate the integrity protection key according to the first key and the integrity protection algorithm, and, when transmitting a second information to the first user equipment using the D2D link, use the encryption key to encrypt a second information and the integrity protection key to perform integrity protection on the second information.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
- - 11. The key exchange method according to claim 10, whereinthe network device is an evolved Node B (eNB), a mobility management entity (MME), or a proximity service server.
  - 12. The key exchange method according to claim 10, wherein:
    - the acquiring, by the first user equipment, a first key comprises;
      
      acquiring, by the first user equipment, a second key, wherein the second key is a shared key between the network device and the first user equipment; and
      
      generating, by the first user equipment, the first key according to the second key and a first parameter by using a key derivation function, wherein;
      
      the first parameter comprises a packet data convergence protocol (PDCP) serial number between an evolved Node B (eNB) and the first user equipment, orthe first parameter comprises a non-access stratum message serial number between a mobility management entity (MME) and the first user equipment, orthe first parameter comprises a random number generated by the network device;
      
      orthe acquiring, by the first user equipment, a first key comprises receiving, by the first user equipment, a message that is from the network device and comprises the first key.
  - 13. The key exchange method according to claim 12, wherein before the receiving, by the first user equipment, the message that is from the network device and comprises the first key, the method further comprises:
    - sending, by the first user equipment, a public key to the network device; and
      
      encrypting, by the network device, the first key by using the public key,wherein the public key and a private key that is reserved by the first user equipment form a public-private key pair.
  - 14. The key exchange method according to claim 13, wherein the receiving, by the first user equipment, the message that is from the network device and comprises the first key comprises receiving, by the first user equipment, a message that is from the network device and comprises a first key encrypted by using the public key.
  - 15. The key exchange method according to claim 12, wherein the receiving, by the first user equipment, the message that is from the network device and comprises the first key comprises receiving, by the first user equipment by using an encrypted connection between the first user equipment and the network device, the message that is from the network device and comprises the first key.
  - 16. The key exchange method according to claim 12, wherein the receiving, by the first user equipment, the message that is from the network device and comprises the first key comprises:
    - receiving, by the first user equipment, a message that is from the network device and comprises a first key encrypted by using a third key,wherein the third key is a key generated by the network device according to the second key.
  - 17. The key exchange method according to claim 12, wherein the receiving, by the first user equipment, the message that is from the network device and comprises the first key comprises:
    - if the network device is not a network device serving the first user equipment, receiving, by the first user equipment, a message that is from the network device serving the first user equipment and comprises the first key, wherein the message comprising the first key is received from the network device by the network device serving the first user equipment.

18. A key exchange method, wherein a device to device (D2D) link is established between a first user equipment and a second user equipment, and the method comprises:
- acquiring, by the first user equipment, a first Diffie-Hellman (DH) exchange value by generating the first DH exchange value using a first value of a primitive root parameter and a second value of a prime number parameter;
  
  sending, by the first user equipment, the first DH exchange value to a network device, so that;
  
  the network device sends the first DH exchange value to the second user equipment;
  
  the second user equipment acquires a second DH exchange value by generating the second DH exchange value using the first value and the second value as a primitive root parameter and a prime number parameter, respectively;
  
  further, the second user equipment generates a key according to the first DH exchange value; and
  
  further, the second user equipment sends the second DH exchange value to the network device; and
  
  receiving, by the first user equipment, the second DH exchange value from the network device, and generating the key according to the second DH exchange value, wherein;
  
  the key is used to protect data transmitted on the D2D link.

19. A key exchange method, wherein a device to device (D2D) link is established between a first user equipment and a second user equipment, and the method comprises:
- receiving, by a network device, a first Diffie-Hellman (DH) exchange value from the first user equipment, the DH exchange value having been generated by the first user equipment using a first value of a primitive root parameter and a second value of a prime number parameter;
  
  sending, by the network device, the first DH exchange value to the second user equipment, so that the second user equipment acquires a second DH exchange value having been generated by the second user equipment by using the first value and the second value as a primitive root parameter and a prime number parameter, respectively, and further, the second user equipment generates a key according to the first DH exchange value;
  
  receiving, by the network device, the second DH exchange value from the second user equipment; and
  
  sending, by the network device, the second DH exchange value to the first user equipment, so that the first user equipment generates the key according to the second DH exchange value.

20. A network device, wherein a device to device (D2D) link is established between a first user equipment configured to acquire and use a first key and a second user equipment, and the network device comprises:
- a transmitter; and
  
  at least one processor, configured toacquire a first key used by the first user equipment,determine a cryptographic algorithm usable by the first user equipment and the second user equipment, the cryptographic algorithm including an encryption algorithm and an integrity protection algorithm,control the transmitter to send the cryptographic algorithm to the first user equipment, so that the first user equipment acquires the first key, generates an encryption key according to the first key and the encryption algorithm, generates an integrity protection key according to the first key and the integrity protection algorithm, and uses, when transmitting a first information to the second user equipment using the D2D link, the encryption key to encrypt the first information and the integrity protection key to perform integrity protection on the first information, andcontrol the transmitter to send the cryptographic algorithm and a message comprising the first key to the second user equipment, so that the second user equipment generates an encryption key according to the first key and the encryption algorithm, generates an integrity protection key according to the first key and the integrity protection algorithm and uses, when transmitting a second information to the first user equipment by using the D2D link, the encryption key to encrypt the second information and the integrity protection key to perform integrity protection on the second information.
- View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28)
- - 21. The network device according to claim 20, whereinthe at least one processor is further configured to:
    - acquire a second key, wherein the second key is a shared key between the network device and the first user equipment; and
      
      generate the first key according to the second key and a first parameter by using a key derivation function;
      
      the network device is an evolved Node B (eNB), a mobility management entity (MME), or a proximity service server; and
      
      the first parameter comprisesa packet data convergence protocol (PDCP) serial number between the eNB and the first user equipment, ora non-access stratum message serial number between the MME and the first user equipment, ora random number generated by the network device.
  - 22. The network device according to claim 20, wherein the first key is a random key acquired by the network device;
    - andthe transmitter is further configured to;
      
      after the at least one processor acquires the first key, send a message comprising the first key to the first user equipment.
  - 23. The network device according to claim 22, wherein:
    - the network device further comprises a receiver, configured to;
      
      before the transmitter sends the message comprising the first key to the first user equipment, receive a first public key from the first user equipment, the at least one processor is further configured to encrypt the first key by using the first public key, andthe first public key and a first private key that is reserved by the first user equipment form a first public-private key pair;
      
      or, wherein;
      
      the at least one processor is further configured to generate a third key according to a second key, and encrypt the first key by using the third key,the second key is a shared key between the network device and the first user equipment; and
      
      the transmitter is further configured to send a message comprising a first key encrypted by the at least one processor to the first user equipment.
  - 24. The network device according to claim 22, wherein the transmitter is further configured to send the message comprising the first key to the first user equipment by using an encrypted connection between the network device and the first user equipment.
  - 25. The network device according to claim 23, wherein:
    - the receiver is further configured to;
      
      before the transmitter sends the message comprising the first key to the second user equipment, receive a second public key from the second user equipment; and
      
      the at least one processor is further configured to encrypt the first key by using the second public key, andthe second public key and a second private key that is reserved by the second user equipment form a second public-private key pair;
      
      or, wherein;
      
      the at least one processor is further configured to;
      
      acquire a fourth key, the fourth key being a shared key between the network device and the second user equipment; and
      
      generate a fifth key according to the fourth key, and encrypt the first key by using the fifth key; and
      
      the transmitter is further configured to send a message comprising a first key encrypted by the at least one processor to the second user equipment.
  - 26. The network device according to claim 20, wherein the transmitter is further configured to send the message comprising the first key to the second user equipment by using an encrypted connection between the network device and the second user equipment.
  - 27. The network device according to claim 20, wherein:
    - the at least one processor is further configured to determine the cryptographic algorithm by determining, according to a prestored cryptographic algorithm list, a security capability of the first user equipment, and a security capability of the second user equipment, a cryptographic algorithm that is applicable to the first user equipment, that is applicable to the second user equipment, and whose priority ranks first in the cryptographic algorithm list;
      
      the security capability of the first user equipment is used to indicate a cryptographic algorithm applicable to the first user equipment,the security capability of the second user equipment is used to indicate a cryptographic algorithm applicable to the second user equipment,the encryption algorithm is used to encrypt data transmitted on the D2D link, andthe integrity protection algorithm is used to perform integrity protection on information transmitted on the D2D link.
  - 28. The network device according to claim 20, wherein the transmitter is further configured to:
    - if the network device is not a network device serving the second user equipment, send the message comprising the first key to the second user equipment through the network device serving the second user equipment.

29. A user equipment, wherein a device to device (D2D) link is established between the user equipment and a second user equipment, and the user equipment comprises:
- a receiver to receive a cryptographic algorithm from a network device, the cryptographic algorithm including an encryption algorithm and an integrity protection algorithm;
  
  at least one processor, configured toacquire a first key,generate encryption key according to the first key and the encryption algorithm;
  
  generate an integrity protection key according to the first key and the integrity protection algorithm; and
  
  a memory, configured to store the first key acquired by the at least one processor, wherein;
  
  the at least one processor is further configured to use,when communicating with the second user equipment by using the D2D link by transmitting a first information to the second user equipment, use the encryption key to encrypt a first information and the integrity protection key to perform integrity protection on the first information, andreceive a second information from the second user equipment by using the D2D link, the second information being protected by the second user equipment using the first key by the second information having been encrypted using the encryption key generated according to the first key and the encryption algorithm.
- View Dependent Claims (30, 31, 32, 33, 34, 35, 36)
- - 30. The user equipment according to claim 29, whereinthe network device is an evolved Node B (eNB), a mobility management entity (MME), or a proximity service server.
  - 31. The user equipment according to claim 29, wherein:
    - the at least one processor is further configured to;
      
      acquire a second key, the second key being a shared key between the network device and the user equipment; and
      
      generate the first key according to the second key and a first parameter by using a key derivation function; and
      
      the first parameter comprises a packet data convergence protocol (PDCP) serial number between an evolved Node B (eNB) and the first user equipment, or the first parameter comprises a non-access stratum message serial number between a mobility management entity (MME) and the first user equipment, or the first parameter comprises a random number generated by the network device;
      
      or, wherein;
      
      the receiver is further configured to receive a message that is from the network device and comprises the first key.
  - 32. The user equipment according to claim 31, further comprising:
    - a transmitter, configured to;
      
      before the receiver receives the message that is from the network device and comprises the first key, send a public key to the network device, wherein;
      
      the received message that is from the network device and comprises the first key is encrypted using the public key, andthe public key and a private key that is reserved by the user equipment form a public-private key pair.
  - 33. The user equipment according to claim 32, wherein the receiver is further configured to receive a message that is from the network device and comprises a first key encrypted by using the public key.
  - 34. The user equipment according to claim 31, wherein the receiver is further configured to receive, by using an encrypted connection between the user equipment and the network device, the message that is from the network device and comprises the first key.
  - 35. The user equipment according to claim 31, wherein:
    - the receiver is further configured to receive a message that is from the network device and comprises a first key encrypted by using a third key, and the third key is a key generated by the network device according to the second key.
  - 36. The user equipment according to claim 31, wherein the receiver is further configured to:
    - if the network device is not a network device serving the user equipment, receive a message that is from the network device serving the user equipment and comprises the first key, wherein the message comprising the first key is received from the network device by the network device serving the user equipment.

37. A user equipment, wherein a device to device (D2D) link is established between the user equipment and a second user equipment, and the user equipment comprises:
- a transmitter;
  
  a receiver; and
  
  at least one processor, configured toacquire a first Diffie-Hellman (DH) exchange value by generating the first DH exchange value using a first value of a primitive root parameter and a second value of a prime number parameter;
  
  control the transmitter to send the first DH exchange value to a network device, so that the network device sends the first DH exchange value to the second user equipment;
  
  the second user equipment acquires a second DH exchange value by generating the second DH exchange value using the first value and the second value as a primitive root parameter and a prime number parameter, respectively;
  
  further, the second user equipment generates a key according to the first DH exchange value; and
  
  further, the second user equipment sends the second DH exchange value to the network device; and
  
  upon the receiver receiving the second DH exchange value from the network device, generate the key according to the second DH exchange value, wherein;
  
  the key is used to protect data transmitted on the D2D link.

38. A network device, wherein a device to device (D2D) link is established between a first user equipment and a second user equipment, and the network device comprises:
- a receiver, configured to receive a first Diffie-Hellman (DH) exchange value from the first user equipment, the DH exchange value having been generated by the first user equipment using a first value of a primitive root parameter and a second value of a prime number parameter; and
  
  a transmitter, configured to send the first DH exchange value to the second user equipment, so that the second user equipment acquires a second DH exchange value having been generated by the second user equipment by using the first value and the second value as a primitive root parameter and a prime number parameter, respectively, and further, the second user equipment generates a key according to the first DH exchange value, whereinthe receiver is further configured to receive the second DH exchange value from the second user equipment; and
  
  the transmitter is further configured to send the second DH exchange value to the first user equipment, so that the first user equipment generates the key according to the second DH exchange value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Huawei Technologies Co., Ltd. (Huawei Investment & Holding Co., Ltd.)
Original Assignee
Huawei Technologies Co., Ltd. (Huawei Investment & Holding Co., Ltd.)
Inventors
Zhang, Dongmei, Chen, Jing
Primary Examiner(s)
Hoffman, Brandon

Application Number

US14/842,945
Publication Number

US 20150382189A1
Time in Patent Office

930 Days
Field of Search

None
US Class Current
CPC Class Codes

H04L 63/06   for supporting key manageme...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/205   involving negotiation or de...

H04L 9/0819   Key transport or distributi...

H04W 12/041   Key generation or derivation

H04W 12/0431   Key distribution or pre-dis...

H04W 76/14   Direct-mode setup

Key exchange method and apparatus

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

17 Citations

38 Claims

Specification

Solutions

Use Cases

Quick Links

Key exchange method and apparatus

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

17 Citations

38 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links