Key-derivation verification in telecommunications network

US 10,637,858 B2
Filed: 07/12/2018
Issued: 04/28/2020
Est. Priority Date: 02/23/2018
Status: Active Grant

First Claim

Patent Images

1. A method comprising, by a serving network:

receiving, from a home-network node, identity data associated with a network terminal, wherein the identity data comprises a subscriber identifier (SID) and a terminal identifier (TID), wherein the TID is a Permanent Equipment Identifier (PEI);

determining a tied key using a tying key derivation function (TKDF) based on the SID and TID;

preparing an authentication request based on first security data, the preparing comprising at least one of;

encrypting the first security data based on the tied key to provide the authentication request;

ormarking the first security data to provide the authentication request, the marking comprising;

determining a first message authentication code (MAC) based on the tied key and the first security data; and

providing the authentication request comprising the first security data and the MAC; and

transmitting the authentication request to the network terminal.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A telecommunications network includes a serving network and a home network. In some examples the serving network receives, from the home network, identity data associated with a network terminal. The serving network determines a tied key using a tying key derivation function (TKDF) based on the identity data, then prepares an authentication request based on the tied key and sends the request to the terminal. In some examples, the home network receives the identity data from the access network and determines a tied key using a TKDF. The home network then determines a confirmation message based on the first tied key. In some examples, the serving network receives the identity data from the home network, and receives a network-slice selector associated with the network terminal. The serving network determines a tied key using a TKDF based on the identity data and the network-slice selector.

15 Citations

19 Claims

1. A method comprising, by a serving network:
- receiving, from a home-network node, identity data associated with a network terminal, wherein the identity data comprises a subscriber identifier (SID) and a terminal identifier (TID), wherein the TID is a Permanent Equipment Identifier (PEI);
  
  determining a tied key using a tying key derivation function (TKDF) based on the SID and TID;
  
  preparing an authentication request based on first security data, the preparing comprising at least one of;
  
  encrypting the first security data based on the tied key to provide the authentication request;
  
  ormarking the first security data to provide the authentication request, the marking comprising;
  
  determining a first message authentication code (MAC) based on the tied key and the first security data; and
  
  providing the authentication request comprising the first security data and the MAC; and
  
  transmitting the authentication request to the network terminal.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1, further comprising, before receiving the identity data:
    - receiving, from the network terminal, an attach request comprising identification data; and
      
      transmitting, to the home-network node, the identification data.
  - 3. The method according to claim 2, wherein:
    - the identification data comprises encrypted data; and
      
      the identity data comprisesthe SID including a Subscriber Permanent Identifier (SUPI).
  - 4. The method according to claim 1, further comprising, after transmitting the authentication request:
    - receiving, from the network terminal, an authentication response;
      
      extracting verification data from the authentication response; and
      
      determining, based on the verification data, that the authentication response is associated with the tied key.
  - 5. The method according to claim 4, further comprising decrypting the authentication response.
  - 6. The method according to claim 4, the determining comprising:
    - determining a second MAC based on the authentication response and the tied key; and
      
      determining that the second MAC matches the verification data.
  - 7. The method according to claim 1, further comprising:
    - determining an indirectly-tied key based on the tied key; and
      
      at least one of;
      
      encrypting the first security data using the indirectly-tied key to provide the authentication request;
      
      ordetermining the first MAC using the indirectly-tied key.

8. One or more non-transitory computer-readable media comprising instructions that, when executed by one or more processors, cause the one or more processors to perform operations comprising:
- receiving, from a home-network node, identity data associated with a network terminal, wherein the identity data comprises a subscriber identifier (SID) and a terminal identifier (TIP), wherein the TIP is an International Mobile Equipment Identifier (IMEI);
  
  receiving a network-slice selector associated with the network terminal;
  
  determining a tied key using a tying key derivation function (TKDF) based on the SID, TIP, and the network-slice selector;
  
  preparing an authentication request based on first security data, the preparing comprising at least one of;
  
  encrypting the first security data based on the tied key to provide the authentication request;
  
  ormarking the first security data to provide the authentication request, the marking comprising;
  
  determining a first message authentication code (MAC) based on the tied key and the first security data; and
  
  providing the authentication request comprising the first security data and the MAC; and
  
  transmitting the authentication request to the network terminal.
- View Dependent Claims (9, 10, 11, 12)
- - 9. The one or more non-transitory computer-readable media according to claim 8, wherein the operations further comprise, before receiving the identity data:
    - receiving, from the network terminal, an attach request comprising identification data and the network-slice selector; and
      
      transmitting, to the home-network node, the identification data.
  - 10. The one or more non-transitory computer-readable media according to claim 8, wherein the operations further comprise, after transmitting the authentication request:
    - receiving, from the network terminal, an authentication response;
      
      extracting verification data from the authentication response; and
      
      determining, based on the verification data, that the authentication response is associated with the tied key.
  - 11. The one or more non-transitory computer-readable media according to claim 10, the determining comprising:
    - determining a second MAC based on the authentication response and the tied key; and
      
      determining that the second MAC matches the verification data.
  - 12. The one or more non-transitory computer-readable media according to claim 8, wherein the operations further comprise:
    - determining an indirectly-tied key based on the tied key; and
      
      at least one of;
      
      encrypting the first security data using the indirectly-tied key to provide the authentication request;
      
      ordetermining the first MAC using the indirectly-tied key.

13. A system of a serving network, comprising:
- one or more processors; and
  
  programming instructions that, when executed by the one or more processors, cause the system to perform operations comprising;
  
  receiving, from a home-network node, identity data associated with a network terminal, wherein the identity data comprises a subscriber identifier (SID) and a terminal identifier (TID), wherein the TID is a Permanent Equipment Identifier (PEI);
  
  determining a tied key using a tying key derivation function (TKDF) based on the SID and TID data;
  
  preparing an authentication request based on first security data, the preparing comprising at least one of;
  
  encrypting the first security data based on the tied key to provide the authentication request;
  
  ormarking the first security data to provide the authentication request, the marking comprising;
  
  determining a first message authentication code (MAC) based on the tied key and the first security data; and
  
  providing the authentication request comprising the first security data and the MAC; and
  
  transmitting the authentication request to the network terminal.
- View Dependent Claims (14, 15, 16, 17, 18, 19)
- - 14. The system according to claim 13, wherein the operations further comprise, before receiving the identity data:
    - receiving, from the network terminal, an attach request comprising identification data; and
      
      transmitting, to the home-network node, the identification data.
  - 15. The system according to claim 14, wherein:
    - the identification data comprises encrypted data; and
      
      the identity data comprises;
      
      the SID including a Subscriber Permanent Identifier (SUPI).
  - 16. The system according to claim 13, wherein the operations further comprise, after transmitting the authentication request:
    - receiving, from the network terminal, an authentication response;
      
      extracting verification data from the authentication response; and
      
      determining, based on the verification data, that the authentication response is associated with the tied key.
  - 17. The system according to claim 16, wherein the operations further comprise decrypting the authentication response.
  - 18. The system according to claim 16, the determining comprising:
    - determining a second MAC based on the authentication response and the tied key; and
      
      determining that the second MAC matches the verification data.
  - 19. The system according to claim 13, wherein the operations further comprise:
    - determining an indirectly-tied key based on the tied key; and
      
      at least one of;
      
      encrypting the first security data using the indirectly-tied key to provide the authentication request;
      
      ordetermining the first MAC using the indirectly-tied key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
T-Mobile USA, Inc. (Deutsche Telekom AG)
Original Assignee
T-Mobile USA, Inc. (Deutsche Telekom AG)
Inventors
Targali, Yousif
Primary Examiner(s)
Tran, Khoi H
Assistant Examiner(s)
Hannan, B M M

Application Number

US16/033,555
Publication Number

US 20190268335A1
Time in Patent Office

656 Days
Field of Search

455410, 455411
US Class Current
CPC Class Codes

H04L 63/0876   based on the identity of th...

H04L 9/0643   Hash functions, e.g. MD5, S...

H04L 9/0861   Generation of secret inform...

H04L 9/3236   using cryptographic hash fu...

H04W 12/041   Key generation or derivation

H04W 12/06   Authentication

H04W 12/106   Packet or message integrity

H04W 12/71   Hardware identity

H04W 12/72   Subscriber identity

Key-derivation verification in telecommunications network

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

15 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Key-derivation verification in telecommunications network

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links