公开(公告)号：EP0436799B1

公开(公告)日：1996-09-18

申请号：EP90121567.3

申请日：1990-11-10

Applicant: ALCATEL STK A/S

Inventor： Presttun, Kare

IPC: H04L9/08

CPC classification number: H04L63/062 ,  H04L9/0827 ,  H04L63/0428 ,  H04Q3/622 ,  H04Q11/0428 ,  H04Q2213/13095 ,  H04Q2213/13174 ,  H04Q2213/13176 ,  H04Q2213/13205 ,  H04Q2213/13209 ,  H04Q2213/1322 ,  H04Q2213/13339 ,  H04Q2213/13395

公开(公告)号：EP0436799A3

公开(公告)日：1992-09-02

申请号：EP90121567.3

申请日：1990-11-10

Applicant: ALCATEL STK A/S

Inventor： Presttun, Kare

IPC: H04L9/08

CPC classification number: H04L63/062 ,  H04L9/0827 ,  H04L63/0428 ,  H04Q3/622 ,  H04Q11/0428 ,  H04Q2213/13095 ,  H04Q2213/13174 ,  H04Q2213/13176 ,  H04Q2213/13205 ,  H04Q2213/13209 ,  H04Q2213/1322 ,  H04Q2213/13339 ,  H04Q2213/13395

Abstract: This invention relates to a communication network intended for secure transmission of speech and data, including different types of subscriber terminals (10-15) and switching modules (4-6), and where the network further comprise crypto devices to undertake encryption/decryption of information transmitted through the network. At least one of the crypto devices is constituted by a crypto-pool device (7,8,9) having a number of crypto modules (CM) physically separated from the switching modules (4,5,6). Each crypto-pool (7,8,9; 20) is provided with a managing device (MA, 26) for communicating with a ciphering key distribution authority through standar­dized communication protocols and distribute keys to the relevant CM through a control path (25) of the crypto-pool. Each crypto-pool has access to an authentication server (AS, 16; 41,43) providing a directory of security certificates necessary in the authentication process when initiating a network connection.

公开(公告)号：EP0436799A2

公开(公告)日：1991-07-17

申请号：EP90121567.3

申请日：1990-11-10

Applicant: ALCATEL STK A/S

Inventor： Presttun, Kare

IPC: H04L9/08

CPC classification number: H04L63/062 ,  H04L9/0827 ,  H04L63/0428 ,  H04Q3/622 ,  H04Q11/0428 ,  H04Q2213/13095 ,  H04Q2213/13174 ,  H04Q2213/13176 ,  H04Q2213/13205 ,  H04Q2213/13209 ,  H04Q2213/1322 ,  H04Q2213/13339 ,  H04Q2213/13395

Abstract: This invention relates to a communication network intended for secure transmission of speech and data, including different types of subscriber terminals (10-15) and switching modules (4-6), and where the network further comprise crypto devices to undertake encryption/decryption of information transmitted through the network. At least one of the crypto devices is constituted by a crypto-pool device (7,8,9) having a number of crypto modules (CM) physically separated from the switching modules (4,5,6). Each crypto-pool (7,8,9; 20) is provided with a managing device (MA, 26) for communicating with a ciphering key distribution authority through standar­dized communication protocols and distribute keys to the relevant CM through a control path (25) of the crypto-pool. Each crypto-pool has access to an authentication server (AS, 16; 41,43) providing a directory of security certificates necessary in the authentication process when initiating a network connection.

Abstract translation: 本发明涉及用于语音和数据的安全传输的通信网络，包括不同类型的用户终端（10-15）和交换模块（4-6），并且其中网络还包括加密/解密的加密/解密 通过网络传输的信息。 密码装置中的至少一个由具有与切换模块（4,5,6）物理分离的多个加密模块（CM）的密码池装置（7,8,9）构成。 每个密码池（7,8,9; 20）都设有管理设备（MA 26），用于通过标准化通信协议与加密密钥分发机构通信，并通过控制路径（25）将密钥分配给相关CM， 的密码池。 每个加密池可以访问认证服务器（AS，16; 41,43），在发起网络连接时提供认证过程中必需的安全证书目录。