Method and apparatus to enable multiple wireless connections

US 9,998,964 B2
Filed: 11/14/2016
Issued: 06/12/2018
Est. Priority Date: 11/01/2013
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

initially communicating, by a source wireless access network node, with a user equipment (UE);

as part of a handover procedure to handover the UE from the source wireless access network node to one of candidate target wireless access network nodes in a set of candidate target wireless access network nodes;

generating, by the source wireless access network node for the UE, a plurality of different security configurations, wherein each different security configuration of the plurality of different security configurations is associated with a different respective candidate target wireless access network node in the set of candidate target wireless access network nodes;

sending, by the source wireless access network node, each different security configuration of the plurality of different security configurations to the respective candidate target access wireless network node; and

sending, by the source wireless access network node, security information of the plurality of different security configurations to the UE, the security information useable by the UE for secure communications with the candidate target wireless network nodes.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In some examples, a source wireless access network node generates, for a user equipment (UE), a plurality of security configurations, wherein each security configuration of the plurality of security configurations is associated with a different respective candidate target wireless network node in a set of candidate target wireless access network nodes. The source wireless access network node sends each security configuration of the plurality of security configurations to the respective candidate target wireless network node, and sends security information of the plurality of security configurations to the UE.

Citations

20 Claims

1. A method comprising:
- initially communicating, by a source wireless access network node, with a user equipment (UE);
  
  as part of a handover procedure to handover the UE from the source wireless access network node to one of candidate target wireless access network nodes in a set of candidate target wireless access network nodes;
  
  generating, by the source wireless access network node for the UE, a plurality of different security configurations, wherein each different security configuration of the plurality of different security configurations is associated with a different respective candidate target wireless access network node in the set of candidate target wireless access network nodes;
  
  sending, by the source wireless access network node, each different security configuration of the plurality of different security configurations to the respective candidate target access wireless network node; and
  
  sending, by the source wireless access network node, security information of the plurality of different security configurations to the UE, the security information useable by the UE for secure communications with the candidate target wireless network nodes.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein a security key of the security information for a first of the candidate target wireless access network nodes is useable for protecting communications of the UE in a wireless connection between the UE and the first candidate target wireless access network node.
  - 3. The method of claim 1, further comprising:
    - receiving, by the source wireless access network node, measurements made by the UE of wireless signals received by the UE from neighbor wireless access network nodes of the source wireless access network node; and
      
      determining the set of candidate target wireless access network nodes according to the received measurements, each candidate target wireless access network node of the set of candidate target wireless access network nodes configured to wirelessly communicate with UEs.
  - 4. The method of claim 1, further comprising:
    - as part of the handover procedure to handover the UE from the source wireless access network node to the one of the candidate target wireless access network nodes;
      
      completing the handover procedure by sending, by the source wireless access network node, a configuration message to the one of the candidate target wireless access network nodes.
  - 5. The method of claim 1, further comprising:
    - starting a timer in the source wireless access network node in response to sending a handover request for the UE; and
      
      stopping the timer in response to receiving an acknowledgement from a candidate target wireless access network node.
  - 6. The method of claim 1, further comprising:
    - starting a timer in the source wireless access network node;
      
      upon expiration of the timer, removing a candidate target wireless access network node from the set of candidate target wireless access network nodes.
  - 7. The method of claim 1, wherein each security configuration of the plurality of different security configurations includes a respective different key for protection of data communication with the UE, wherein a first key of a first security configuration of the plurality of different security configurations for protecting communication between the UE and a first candidate target wireless access network node is different from a second key of a second security configuration of the plurality of different security configurations for protecting communication between the UE and a second candidate target wireless access network node.
  - 8. The method of claim 1, wherein each security configuration of the plurality of different security configurations includes a portion of a message authentication code.
  - 9. The method of claim 1, further comprising:
    - receiving, by the source wireless access network node, an access network node key derived from a base key; and
      
      deriving, by the source wireless access network node, a set of one or more user plane keys from the access network node key, the set of one or more user plane keys useable in protection of data communication of the UE with the source wireless access network node.
  - 10. The method of claim 9, further comprising:
    - deriving, by the source wireless access network node of a first cell, a modified access network node key from the access network node key; and
      
      sending, by the source wireless access network node to a wireless access network node associated with a second cell, the modified access network node key that is useable by the wireless access network node associated with the second cell to derive a second set of one or more user plane keys useable in protection of data communication of the UE with the second cell.
  - 11. The method of claim 1, further comprising:
    - receiving, by the source wireless access network node, plural access network node keys derived from a base key for use in protection of data communication of the UE, wherein a first of the plural access network node keys is derived using a parameter associated with a first cell, and a second of the plural access network node keys is derived using a parameter associated with a second cell.

12. A source wireless access network node comprising:
- a processor; and
  
  a non-transitory storage medium storing instructions executable on the processor to;
  
  initially communicate with a user equipment (UE);
  
  as part of a handover procedure to handover the UE from the source wireless access network node to one of candidate target wireless access network nodes in a set of candidate target wireless access network nodes;
  
  generate, for the UE, a plurality of different security configurations, wherein each different security configuration of the plurality of different security configurations is associated with a different respective candidate target wireless access network node in the set of candidate target wireless access network nodes;
  
  send each different security configuration of the plurality of different security configurations to the respective candidate target wireless access network node; and
  
  send security information of the plurality of different security configurations to the UE, the security information useable by the UE for secure communications with the candidate target wireless network nodes.
- View Dependent Claims (13, 14, 15, 16, 17, 18)
- - 13. The source wireless access network node of claim 12, wherein the instructions are executable on the processor to further:
    - receive measurements made by the UE of wireless signals received by the UE from neighbor wireless access network nodes of the source wireless access network node; and
      
      determine the set of candidate target wireless access network nodes according to the received measurements.
  - 14. The source wireless access network node of claim 12, wherein the instructions are executable on the processor to:
    - as part of the handover procedure to handover the UE from the source wireless access network node to the one of the candidate target wireless access network nodes;
      
      complete the handover procedure by sending, by the source wireless access network node, a configuration message to the one of the candidate target wireless access network nodes.
  - 15. The source wireless access network node of claim 12, wherein the instructions are executable on the processor to further:
    - start a timer in the source wireless access network node in response to sending a handover request for the UE; and
      
      stop the timer in response to receiving an acknowledgement from a candidate target wireless access network node.
  - 16. The source wireless access network node of claim 12, wherein the instructions are executable on the processor to further:
    - start a timer in the source wireless access network node;
      
      upon expiration of the timer, remove a candidate target wireless access network node from the set of candidate target wireless access network nodes.
  - 17. The source wireless access network node of claim 12, wherein each security configuration of the plurality of different security configurations includes a respective different key for protection of data communication with the UE, wherein a first key of a first security configuration of the plurality of different security configurations for protecting communication between the UE and a first candidate target wireless access network node is different from a second key of a second security configuration of the plurality of different security configurations for protecting communication between the UE and a second candidate target wireless access network node.
  - 18. The source wireless access network node of claim 12, wherein each security configuration of the plurality of different security configurations includes a portion of a message authentication code.

19. A non-transitory machine-readable storage medium storing instructions that upon execution cause a source wireless access network node to:
- initially communicate with a user equipment (UE);
  
  as part of a handover procedure to handover the UE from the source wireless access network node to one of candidate target wireless access network nodes in a set of candidate target wireless access network nodes;
  
  generate, for the UE, a plurality of different security configurations, wherein each different security configuration of the plurality of different security configurations is associated with a different respective candidate target wireless access network node in the set of candidate target wireless access network nodes;
  
  send each different security configuration of the plurality of different security configurations to the respective candidate target wireless access network node; and
  
  send security information of the plurality of different security configurations to the UE, the security information useable by the UE for secure communications with the candidate target wireless network nodes.
- View Dependent Claims (20)
- - 20. The non-transitory machine-readable storage medium of claim 19, wherein the instructions upon execution cause the source wireless access network node to:
    - as part of the handover procedure to handover the UE from the source wireless access network node to the one of the candidate target wireless access network nodes;
      
      complete the handover procedure by sending, by the source wireless access network node, a configuration message to the one of the candidate target wireless access network nodes.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
Blackberry Limited
Inventors
Blankenship, Yufei Wu, Gao, Shiwei
Primary Examiner(s)
Pham, Chi H
Assistant Examiner(s)
Huang, Weibin

Application Number

US15/350,440
Publication Number

US 20170064590A1
Time in Patent Office

575 Days
Field of Search
US Class Current
CPC Class Codes

H04W 12/041   Key generation or derivation

H04W 12/084   using delegated authorisati...

H04W 16/32   Hierarchical cell structures

H04W 24/10   Scheduling measurement repo...

H04W 36/0077   of access information of ta...

H04W 36/00835   Determination of neighbour ...

H04W 36/08   Reselecting an access point

H04W 48/08   Access restriction or acces...

Method and apparatus to enable multiple wireless connections

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus to enable multiple wireless connections

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links