Key negotiation method and system, network entity and computer storage medium

US 10,454,909 B2
Filed: 07/01/2015
Issued: 10/22/2019
Est. Priority Date: 12/23/2014
Status: Active Grant

First Claim

Patent Images

1. A key negotiation method applied to a network entity, comprising:

generating a Machine Type Communication (MTC) communication key between an MTC device or MTC application and a network by utilizing a key distribution algorithm for MTC communication according to a root key for the MTC communication maintained by the network entity;

generating an MTC group key by utilizing a key distribution algorithm for MTC group communication according to the root key;

issuing the generated MTC communication key and the generated MTC group key to the MTC device or MTC application via a secure method so as to allow the MTC device or MTC application to securely store the MTC communication key and the MTC group key;

issuing a key update notification to all the MTC devices or MTC applications;

receiving acknowledgement formation returned by the MTC devices or MTC applications; and

issuing a MTC group identification and a new MTC communication key and/or MTC group key corresponding to the MTC group identification to a corresponding MTC device or MTC application via a secure method so as to allow the corresponding MTC device or MTC application to update with and securely store the new MTC communication key and/or MTC group key corresponding to the MTC group identification.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed is a key negotiation method including that a network entity generates an MTC communication key between an MTC device or an MTC application and a network by utilizing a key distribution algorithm for MTC communication according to a root key for the MTC communication maintained by the network entity. The network entity generates an MTC group key by utilizing a key distribution algorithm for MTC group communication according to the root key. The network entity issues the generated MTC communication key and the generated MTC group key to the MTC device or the MTC application via a secure method so as to allow the MTC device or the MTC application to securely store the MTC communication key and the MTC group key. Also disclosed are a network entity, a key negotiation system and a computer storage medium.

19 Citations

View as Search Results

10 Claims

1. A key negotiation method applied to a network entity, comprising:
- generating a Machine Type Communication (MTC) communication key between an MTC device or MTC application and a network by utilizing a key distribution algorithm for MTC communication according to a root key for the MTC communication maintained by the network entity;
  
  generating an MTC group key by utilizing a key distribution algorithm for MTC group communication according to the root key;
  
  issuing the generated MTC communication key and the generated MTC group key to the MTC device or MTC application via a secure method so as to allow the MTC device or MTC application to securely store the MTC communication key and the MTC group key;
  
  issuing a key update notification to all the MTC devices or MTC applications;
  
  receiving acknowledgement formation returned by the MTC devices or MTC applications; and
  
  issuing a MTC group identification and a new MTC communication key and/or MTC group key corresponding to the MTC group identification to a corresponding MTC device or MTC application via a secure method so as to allow the corresponding MTC device or MTC application to update with and securely store the new MTC communication key and/or MTC group key corresponding to the MTC group identification.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method according to claim 1, before generating the MTC communication key and the MTC group key, the method further comprising:
    - creating an MTC group and generating the MTC group identification;
      
      receiving MTC group register request information sent by the MTC device or MTC application; and
      
      validating or certificating the MTC device or MTC application, and after passing the validation or certification, updating and storing a relationship table of the MTC group identification and identity information of the MTC device or MTC application according to related information in the received MTC group register request information.
  - 3. The method according to claim 2, before issuing the generated MTC communication key and the MTC group key to the MTC device or MTC application via the secure method, the method further comprising:
    - issuing an MTC group notification to the MTC device or MTC application; and
      
      receiving acknowledgement information returned by the MTC device or MTC application.
  - 4. The method according to claim 3, after issuing the MTC communication key and the MTC group key, the method further comprising:
    - receiving acknowledgement information returned by the MTC device or MTC application.
  - 5. The method according to claim 1, wherein generating the MTC communication key between the MTC device or MTC application and the network by utilizing the key distribution algorithm for the MTC communication according to the root key for the MTC communication maintained by the network entity comprises:
    - taking the root key, the identity information of the MTC device or MTC application and one random number as distribution parameters, and putting the distribution parameters into the key distribution algorithm for the MTC communication to generate the MTC communication key.
  - 6. The method according to claim 1, wherein generating the MTC group key by utilizing the key distribution algorithm for the MTC group communication according to the root key comprises:
    - taking the root key and one random number as distribution parameters, and putting the distribution parameters into the key distribution algorithm for the MTC group communication to generate the MTC group key.

7. A network entity, comprising:
- a processor, a transmitter and a receiver, whereinthe processor is configured to;
  
  generate a Machine Type Communication (MTC) communication key between an MTC device or MTC application and a network by utilizing a key distribution algorithm for MTC communication according to a maintained root key for the MTC communication; and
  
  generate an MTC group key by utilizing a key distribution algorithm for MTC group communication according to the root key; and
  
  the transmitter is configured to issue the generated MTC communication key and the generated MTC group key to the MTC device or MTC application via a secure method so as to allow the MTC device or MTC application to securely store the MTC communication key and the MTC group key;
  
  wherein the receiver is configured to receive the acknowledgement information returned by the MTC device or MTC application after securely storing the MTC communication key and the MTC group key by the MTC device or MTC application; and
  
  the transmitter is further configured to issue a key update notification to all MTC devices or MTC applications, and issue a MTC group identification and a new MTC communication key and/or MTC group key corresponding to the MTC group identification to a corresponding MTC device or MTC application via a secure method so as to allow the corresponding MTC device or MTC application to update with and securely store the new MTC communication key and/or MTC group key corresponding to the MTC group identification.
- View Dependent Claims (8, 9)
- - 8. The network entity according to claim 7, whereinthe processor is further configured to create an MTC group, generate the MTC group identification, validate or certificate the MTC device or MTC application, after passing the validation and or certification, update and store a relationship table of the MTC group identification and identity information of the MTC device or MTC application according to related information in a received MTC group register request information;
    - the receiver is further configured to receive MTC group register request information sent by the MTC device or MTC application.
  - 9. The network entity according to claim 8, wherein the transmitter is further configured to issue an MTC group notification to the MTC device or MTC application, and issue the generated MTC communication key and the generated MTC group key to the MTC device or MTC application via a secure method in response to trigger from the receiver;
    - andthe receiver is further configured to trigger the transmitter after receiving acknowledge information returned by the MTC device or MTC application.

10. A non-transitory computer storage medium, comprising a set of instructions, which, when being executed, cause at least one processor to execute a key negotiation method applied to a network entity, wherein the method comprising:
- generating a Machine Type Communication (MTC) communication key between an MTC device or MTC application and a network by utilizing a key distribution algorithm for MTC communication according to a root key for the MTC communication maintained by the network entity;
  
  generating an MTC group key by utilizing a key distribution algorithm for MTC group communication according to the root key; and
  
  issuing the generated MTC communication key and the generated MTC group key to the MTC device or MTC application via a secure method so as to allow the MTC device or MTC application to securely store the MTC communication key and the MTC group key;
  
  issuing a key update notification to all the MTC devices or MTC applications;
  
  receiving acknowledgement formation returned by the MTC devices or MTC applications; and
  
  issuing a MTC group identification and a new MTC communication key and/or MTC group key corresponding to the MTC group identification to a corresponding MTC device or MTC application via a secure method so as to allow the corresponding MTC device or MTC application to update with and securely store the new MTC communication key and/or MTC group key corresponding to the MTC group identification.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
ZTE Corporation
Original Assignee
ZTE Corporation
Inventors
Yu, Wantao
Primary Examiner(s)
Jamshidi, Ghodrat

Application Number

US15/537,118
Publication Number

US 20170346798A1
Time in Patent Office

1,574 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/44   Program or device authentic...

H04L 63/06   for supporting key manageme...

H04L 63/062   for key distribution, e.g. ...

H04L 63/065   for group communications cr...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 9/08   Key distribution or managem...

H04L 9/3263   involving certificates, e.g...

H04W 12/0431   Key distribution or pre-dis...

H04W 4/08   User group management

H04W 4/70   Services for machine-to-mac...

Key negotiation method and system, network entity and computer storage medium

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

19 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Key negotiation method and system, network entity and computer storage medium

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

19 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links