公开(公告)号：DE60001630T2

公开(公告)日：2003-12-18

申请号：DE60001630

申请日：2000-10-23

Applicant: LUCENT TECHNOLOGIES INC

Inventor： BOYKO VICTOR VLADIMIR ,  GROSSE ERIC ,  MACKENZIE PHILIP DOUGLAS ,  PATEL SARVAR

IPC: G06F21/20 ,  H04L9/08 ,  H04L9/32

Abstract: Secure communication protocols are disclosed in which two parties generate a shared secret which may be used as a secure session key for communication between the parties. The protocols are based on Diffie-Hellman type key exchange in which a Diffie-Hellman value is combined with a function of at least a password using the group operation such that the Diffie-Hellman value may be extracted by the other party using the inverse group operation and knowledge of the password. In one embodiment, each of the parties explicitly authenticates the other party, while in another embodiment, the parties utilize implicit authentication relying on the generation of an appropriate secret session key to provide the implicit authentication. Typically, the parties will be a client computer and a server computer. In accordance with other embodiments of the invention, in order to protect against a security compromise at the server, the server is not in possession of the password, but instead is provided with, and stores, a so-called password verifier which is a function of the password and where the password itself cannot be determined from the value of the password verifier.

公开(公告)号：DE69904525T2

公开(公告)日：2003-09-04

申请号：DE69904525

申请日：1999-02-23

Applicant: LUCENT TECHNOLOGIES INC

Inventor： PATEL SARVAR ,  SUNDARAM GANAPATHY SUBRAMANIAN

IPC: G06F7/58 ,  G09C1/00

Abstract: The present invention is a method for outputting larger bit size pseudo-random number zi that is cryptographically secure. Since larger bit size pseudo-random numbers are being outputted, larger bit size segments of messages may be encrypted resulting in a speedier encryption process than encryption processes of the prior art. In one embodiment, the present invention is a pseudo-random number generator defined by a modular exponential function xi = g  <>i-1 mod p. The output of the pseudo-random number generator being a pseudo-random number zi comprising a j-1 bit size segment of xi. The value of j being less than or equal to m-2c (i.e., j≤m-2c). In an embodiment of the present invention, the pseudo-random number zi includes the j least significant bits of xi excluding the least significant bit of xi.

公开(公告)号：DE69801096T2

公开(公告)日：2002-03-21

申请号：DE69801096

申请日：1998-12-04

Applicant: LUCENT TECHNOLOGIES INC

Inventor： PATEL SARVAR

IPC: H04L9/32 ,  H04W12/06 ,  H04Q7/38

Abstract: The present invention strengthens authentication protocols by making it more difficult for handset impersonators to perform call origination using replay attacks. The present invention accomplishes this goal by using the most significant digits of a telephone number being dialed as a parameter for determining authentication codes. Using the most significant digits makes it more difficult for impersonators to successfully use replay attacks on call origination, wherein the replay attacks involve the appendage of digits to a telephone number to be dialed.

公开(公告)号：DE69801096D1

公开(公告)日：2001-08-16

申请号：DE69801096

申请日：1998-12-04

Applicant: LUCENT TECHNOLOGIES INC

Inventor： PATEL SARVAR

IPC: H04L9/32 ,  H04W12/06 ,  H04Q7/38

Abstract: The present invention strengthens authentication protocols by making it more difficult for handset impersonators to perform call origination using replay attacks. The present invention accomplishes this goal by using the most significant digits of a telephone number being dialed as a parameter for determining authentication codes. Using the most significant digits makes it more difficult for impersonators to successfully use replay attacks on call origination, wherein the replay attacks involve the appendage of digits to a telephone number to be dialed.

公开(公告)号：BR9902940A

公开(公告)日：2000-09-12

申请号：BR9902940

申请日：1999-07-23

Applicant: LUCENT TECHNOLOGIES INC

Inventor： PATEL SARVAR

IPC: G09C1/00 ,  H04B7/26 ,  H04L9/08 ,  H04L9/32 ,  H04M1/68 ,  H04M11/00 ,  H04Q7/32

Abstract: In the method for transferring sensitive information using unsecured communication, a first party receives a public key of a second party, produces an encryption result by performing keyed encryption on at least a first random number using the public key, and transfers the encryption result to the second party over an unsecured communication channel. The second party decrypts the encryption result to obtain the first random number. Authorizing information is then transferred from the first party to the second party over a first encrypted and authenticated communication channel established using the first random number. Sensitive information is further transferred from the second party to the first party over a second encrypted and authenticated communication channel established using the first random number if the second party accepts the authorizing information. Numerous applications exist for the system and method, including the wireless industry wherein the first party is a mobile and the second party is a network.

公开(公告)号：BR9903786A

公开(公告)日：2000-09-05

申请号：BR9903786

申请日：1999-08-19

Applicant: LUCENT TECHNOLOGIES INC

Inventor： PATEL SARVAR

IPC: G09C1/00 ,  G06F12/14 ,  G06F21/24 ,  H04L9/32 ,  H04W12/06 ,  H04W88/02 ,  H04Q7/38 ,  A01B1/06

Abstract: In the method for managing the use of temporary mobile identifiers (TIDs), the mobile and the network each store a list of TIDs for the mobile. Newly determined TIDs are added to the respective TID list such that the TIDs are stored in chronological order. To determine a new TID, the network sends a first challenge to the mobile and the mobile sends a second challenge to the network as part of a TID update protocol. The network and the mobile then determine the new TID based on the first and second challenges. As communication between the mobile and the network continues, the respective TID lists are updated. Namely, when either the network or the mobile confirms a TID, the TIDs older than the confirmed TID are deleted from the TID list. In communicating with one another, the mobile will use the oldest TID on its TID list, while the network will use the newest TID on its TID list.

公开(公告)号：BR9902942A

公开(公告)日：2000-05-09

申请号：BR9902942

申请日：1999-07-23

Applicant: LUCENT TECHNOLOGIES INC

Inventor： PATEL SARVAR

IPC: G09C1/00 ,  H04L9/08 ,  H04L12/64 ,  H04W12/06 ,  H04L9/14

Abstract: In the method for updating secret shared data (SSD) in a wireless communication system, a first party outputs a first random number as a first challenge wherein the first party is one of a network and a mobile. A second party generates a second random number in response to the first challenge. The second party is the mobile if the first party is the network, and the second party is the network if the first party is the mobile. The second party generates a first challenge response by performing a keyed cryptographic function (KCF) on the first challenge and the second random number using a secondary key, which is not the SSD and is derived from a root key. The second party then transfers the second random number, as a second challenge, and the first challenge response to the first party. The first party verifies the second party based on the first and second challenges and the first challenge response, generates a second challenge response by performing the KCF on the second challenge using the secondary key, and transfers the second challenge response to the second party. The second party verifies the first party based on the second challenge and the second challenge response. Both parties respectively establish the SSD based on the first and second challenges.

公开(公告)号：CA2276874A1

公开(公告)日：2000-02-28

申请号：CA2276874

申请日：1999-07-02

Applicant: LUCENT TECHNOLOGIES INC

Inventor： PATEL SARVAR

IPC: H04L9/08 ,  H04L9/14 ,  H04W12/04 ,  H04W12/06 ,  H04W88/02 ,  H04L9/32 ,  H04Q7/36

Abstract: In the method for establishing a session key, a network and a mobile transfer codes between one another. The mobile and the network perform mutual authentication based on the codes. Besides performing this mutual authentication, the mobile and the network to establish the session key based on the codes. In one embodiment, the messages forming part of the intended session are sent with the codes, and form a basis upon which the codes for authentication have been derived.

公开(公告)号：WO2009045317A3

公开(公告)日：2009-09-11

申请号：PCT/US2008011128

申请日：2008-09-24

Applicant: LUCENT TECHNOLOGIES INC ,  MORGAN TODD CARTWRIGHT ,  PATEL SARVAR ,  THOMPSON ROBIN JEFFREY

Inventor： MORGAN TODD CARTWRIGHT ,  PATEL SARVAR ,  THOMPSON ROBIN JEFFREY

IPC: H04W12/06

CPC classification number: H04L9/3271 ,  H04L63/123 ,  H04L65/1016 ,  H04L65/1073 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/06 ,  H04W12/10 ,  H04W84/045

Abstract: The present invention provides a method involving a femtocell in communication with a secure core network such as an Internet Protocol Multimedia Subsystem (IMS) network. The method includes receiving, from the femtocell and at a first secure entity in the IMS network, a global challenge including information indicating a random number. The method also includes receiving an authentication response computed by a mobile unit based on the random number and the first key known by the mobile unit and not known by the femtocell. The method further includes determining, at the first secure entity, that the random number is a legitimate random number provided to the femtocell by the IMS network.

Abstract translation: 本发明提供了一种涉及与诸如因特网协议多媒体子系统（IMS）网络的安全核心网络通信的毫微微小区的方法。 该方法包括从毫微微小区和IMS网络中的第一安全实体接收包括指示随机数的信息的全局挑战。 该方法还包括基于移动单元已知的随机数和第一密钥接收由移动单元计算的认证响应，并且毫微微蜂窝不知道该认证响应。 该方法还包括在第一安全实体处确定随机数是IMS网络提供给毫微微小区的合法随机数。

公开(公告)号：WO2006113206B1

公开(公告)日：2007-01-18

申请号：PCT/US2006013283

申请日：2006-04-10

Applicant: LUCENT TECHNOLOGIES INC ,  PATEL SARVAR

Inventor： PATEL SARVAR

IPC: H04L9/08 ,  H04L29/06

CPC classification number: H04L9/0844 ,  H04L9/0869 ,  H04L63/06 ,  H04L63/08 ,  H04L2209/80 ,  H04L2463/061 ,  H04W12/04

Abstract: The present invention provides a method of key material generation in which the key material is used to authenticate communication for user equipment and at least one network application function. The method includes providing a bootstrapping identifier associated with first key material and a first random number, receiving information indicative of a second random number, and forming second key material based upon the first key material, the first random number, and the second random number.

Abstract translation: 本发明提供了一种密钥材料生成方法，其中密钥材料用于认证用户设备的通信和至少一个网络应用功能。 该方法包括提供与第一密钥材料相关联的自举标识符和第一随机数，接收指示第二随机数的信息，以及基于第一密钥资料，第一随机数和第二随机数形成第二密钥资料。