Wireless communication device and method for over-the-air application service
First Claim
1. A method of providing an over-the-air (OTA) application to a wireless device comprising:
- receiving a request for an OTA application at an authentication center from the wireless device;
generating a random number and sending the random number to the wireless device in response to the request;
receiving a signed response (Sres) from the wireless device, the signed response generated by the wireless device based on the random number and a user key (Ki) stored within the wireless device; and
authenticating the wireless device by comparing the signed response (Sres) received from the wireless device with a predicted signed response (Sres),when the wireless device is authenticated, the method further comprises;
adding the random number to one protocol data unit (PDU) of a plurality of PDUs comprising the OTA application;
encrypting the PDUs using a cipher key (Kc) generated with the random number; and
sending the encrypted PDUs to the wireless device,wherein the wireless device extracts the random number from the one PDU that includes the random number, calculates a calculated cipher key (Kcc) from the extracted random number and the user key (Ki), and either accepts or rejects installation of the OTA application based on a comparison of the calculated cipher key (Kcc) and a generated cipher key (Kc).
1 Assignment
0 Petitions
Accused Products
Abstract
A communication network provides over-the-air (OTA) applications and application services to wireless devices in a way that provides authentication and helps insure confidentiality and/or information integrity. An authentication center authenticates a wireless device by comparing a signed response from the device with a predicted signed response. The signed responses may be generated from a random number, the device'"'"'s identification number and user key. When the wireless device is authenticated, the OTA application may be sent to the wireless device in protocol data units (PDUs). Prior to sending the PDUs, a random number may be added to one of the PDUs. When receiving the PDUs, the device may extract the random number and calculate a cipher key using the number and a user key. The OTA application may be accepted when the calculated cipher key matches a prior generated cipher key.
15 Citations
22 Claims
-
1. A method of providing an over-the-air (OTA) application to a wireless device comprising:
-
receiving a request for an OTA application at an authentication center from the wireless device; generating a random number and sending the random number to the wireless device in response to the request; receiving a signed response (Sres) from the wireless device, the signed response generated by the wireless device based on the random number and a user key (Ki) stored within the wireless device; and authenticating the wireless device by comparing the signed response (Sres) received from the wireless device with a predicted signed response (Sres), when the wireless device is authenticated, the method further comprises; adding the random number to one protocol data unit (PDU) of a plurality of PDUs comprising the OTA application; encrypting the PDUs using a cipher key (Kc) generated with the random number; and sending the encrypted PDUs to the wireless device, wherein the wireless device extracts the random number from the one PDU that includes the random number, calculates a calculated cipher key (Kcc) from the extracted random number and the user key (Ki), and either accepts or rejects installation of the OTA application based on a comparison of the calculated cipher key (Kcc) and a generated cipher key (Kc). - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 15, 16)
-
-
10. A method of receiving an over-the-air (OTA) application by a wireless device comprising:
-
receiving a random number from an authentication center in response to a request for an over-the-air (OTA) application; sending a signed response (Sres) to the authentication center, the signed response generated based on the received random number and a user key (Ki) stored within the wireless device; generating a generated cipher key (Kc) from the received random number and the user key (Ki); when authenticated, receiving a plurality of encrypted protocol data units (PDUs) that include the OTA application, one of the encrypted PDUs including the random number; extracting the random number from the one PDU; calculating a calculated cipher key (Kcc) from the extracted random number and the user key (Ki); and either accepting or rejecting installation of the OTA application based on a comparison of the calculated cipher key (Kcc) and the generated cipher key (Kc), wherein a processing element within the wireless device generates the signed response, generates the generated cipher key, extracts the random number, calculates the calculated cipher key and either accepts or rejects the installation. - View Dependent Claims (11, 12, 13, 14)
-
-
17. A wireless communication device comprising:
-
a receiver to receive a random number from an authentication center in response to a request for an over-the-air (OTA) application; a transmitter to transmit a signed response to the authentication center, the signed response generated based on the received random number and a user key (Ki) stored within the wireless communication device; and a processing element to generate the signed response, wherein when authenticated, the receiver receives a plurality of encrypted protocol data units (PDUs) that include the OTA application, one of the encrypted PDUs including the random number, the processing element extracts the random number from the one PDU and calculates a calculated cipher key (Kcc) from the extracted random number and the user key (Ki), the processing element either accepts or rejects installation of the OTA application based on a comparison of the calculated cipher key (Kcc) and a generated cipher key (Kc), wherein the processing element generates the generated cipher key (Kc) from the received random number and the user key (Ki). - View Dependent Claims (18, 19)
-
-
20. A semiconductor device comprising:
-
a processing element to generate a signed response based on a random number and a user key (Ki), and to generate a generated cipher key (Kc) from the random number and the user key (Ki); and memory to store the generated cipher key (Kc) and instructions for execution by the processing element, wherein the random number is received from an authentication center in response to a request for an over-the-air (OTA) application and the signed response is sent to the authentication center, wherein in response to the request and when authenticated by the authentication center, a plurality of encrypted protocol data units (PDUs) is received that include the OTA application, one of the encrypted PDUs including the random number, wherein the processing element extracts the random number from the one encrypted PDU calculates a calculated cipher key (Kcc) from the extracted random number and the user key (Ki), and either accepts or rejects installation of the OTA application based on a comparison of the calculated cipher key (Kcc) and the generated cipher key (Kc). - View Dependent Claims (21, 22)
-
Specification