COMMUNICATION BETWEEN A COMMUNICATION DEVICE AND A NETWORK DEVICE
First Claim
1. A communication device for communicating with a network device of a communication network, the communication device comprising:
- at least one processor circuit; and
at least one memory connected to the at least one processor circuit and storing program instructions that are executed by the at least one processor to perform operations comprising;
receiving, via a network, a challenge, a first Diffie-Hellman (DH) parameter, and a first verification code for the first DH parameter from the network device;
forwarding said challenge to an identity module;
receiving at least one result parameter as a response from the identity module, the at least one result parameter having been generated by the identity module and being one of a ciphering key (CK), an integrity key (IK) and a response parameter (RES);
determining, based on said result parameter, whether said first DH parameter is authentic;
responsive to determining that the first DH parameter is authentic, generating a second DH parameter and sending, through the network, the second DH parameter to the network device.
3 Assignments
0 Petitions
Accused Products
Abstract
A communication device of a communication network receives, via a network, a challenge, generates a first Diffie Hellman, DH, parameter, a first verification code for the first DH parameter, forwards the challenge or a derivative thereof to an identity module, receives at least one result parameter as response from the identity module, determines, based on the result parameter, whether the first DH parameter is authentic, and if the first DH parameter is authentic, generates and sends a second DH parameter to the network device for session key generation based on the first DH parameter and the second DH parameter.
2 Citations
27 Claims
-
1. A communication device for communicating with a network device of a communication network, the communication device comprising:
-
at least one processor circuit; and at least one memory connected to the at least one processor circuit and storing program instructions that are executed by the at least one processor to perform operations comprising; receiving, via a network, a challenge, a first Diffie-Hellman (DH) parameter, and a first verification code for the first DH parameter from the network device; forwarding said challenge to an identity module; receiving at least one result parameter as a response from the identity module, the at least one result parameter having been generated by the identity module and being one of a ciphering key (CK), an integrity key (IK) and a response parameter (RES); determining, based on said result parameter, whether said first DH parameter is authentic; responsive to determining that the first DH parameter is authentic, generating a second DH parameter and sending, through the network, the second DH parameter to the network device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method for a communication device in communication with a network device of a communication network, the method being performed by the communication device and comprising:
-
receiving, via a network, a challenge, a first Diffie-Hellman (DH) parameter and a first verification code for the first DH parameter from the network device; forwarding said challenge to an identity module; receiving at least one result parameter as a response from the identity module, the at least one result parameter having been generated by the identity module and being one of a ciphering key (CK), an integrity key (IK) and a response parameter (RES); determining, based on said result parameter whether said first DH parameter is authentic; responsive to determining that the first DH parameter is authentic, generating a second DH parameter and sending, through the network, the second DH parameter to the network device. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A computer program product comprising a non-transitory computer-readable storage medium storing program code for a communication device in communication with a network device of a communication network, the program code, which when run in the communication device, causes the communication device to:
-
receive, via a network, a challenge, a first Diffie-Hellman (DH) parameter and a first verification code for the first DH parameter from the network device; forward said challenge to an identity module; receive at least one result parameter as a response from the identity module, the at least one result parameter having been generated by the identity module and being one of a ciphering key (CK), an integrity key (IK) and a response parameter (RES); determine, based on said result parameter whether said first DH parameter is authentic; responsive to determining the first DH parameter is authentic, generate a second DH parameter and send, through the network, the second DH parameter to the network device for session key generation based on the first DH parameter and the second DH parameter.
-
Specification