公开(公告)号：US20190238324A1

公开(公告)日：2019-08-01

申请号：US16320291

申请日：2017-03-30

Applicant: GEMALTO SA

Inventor： Mireille PAULIAC ,  Michel ENDRUSCHAT ,  Ly Thanh PHAN ,  Jean-Yves FINE

IPC: H04L9/08 ,  H04L9/30

CPC classification number: H04L9/088 ,  H04L9/0825 ,  H04L9/0827 ,  H04L9/083 ,  H04L9/0869 ,  H04L9/30 ,  H04L2209/805

Abstract: This invention related to a method for provisioning a first communication device with a set of at least one credential required for accessing to a wireless network by using a second communication device provisioned with a cryptographic key K also known by the wireless network, the first communication device being associated with a certificate comprising a public key PK, said certificate being stored with an associated private key PrK in said first communication device, the method comprising the following steps: receiving by the second communication device a registration request from the first communication device in order to be provisioned with the set of at least one credential; transmitting to the wireless network by the second communication device the registration request to generate a set of at least one credential associated to the first communication device comprising at least a cryptographic key K″, the wireless network being adapted to generate a first random number R1 and a second random number R2; receiving by the second communication device a response from the wireless network comprising R1 and R2; generating K′ by the second communication device using R1 and K; transmitting by the second communication device to the first communication device K′ and R2 to generate K″ using R2 and K′.

公开(公告)号：US20190208419A1

公开(公告)日：2019-07-04

申请号：US16325304

申请日：2017-07-27

Applicant: GEMALTO SA

Inventor： Ly Thanh PHAN

IPC: H04W12/06 ,  H04L9/08 ,  H04L9/32 ,  H04L29/06

CPC classification number: H04W12/06 ,  H04L9/0841 ,  H04L9/3213 ,  H04L9/3234 ,  H04L9/3242 ,  H04L9/3273 ,  H04L63/0876 ,  H04L2209/80

Abstract: The invention proposes an authentication server of a cellular telecommunication network, the authentication server being arranged for generating an authentication token to be transmitted to a telecommunication terminal, the authentication token comprising a message authentication code and a sequence number, wherein the message authentication code is equal to: MACx=KIdx XOR f1(AMF,SQNx,RAND,K) with KIdx being a key index information in the form of a bias of a MAC equal to: MAC=f1(K,AMF,SQNx,RAND) with f1 being a function, K a key, RAND a random number and SQNx a sequence counter relative to a corresponding key Kx derived from the key K and KIdx, and AMF the content of an authentication management field as defined in 3GPP TS 33.102.

公开(公告)号：US20190124512A1

公开(公告)日：2019-04-25

申请号：US16099344

申请日：2017-05-22

Applicant: GEMALTO SA

Inventor： Ly Thanh PHAN ,  Ilan MAHALAL

IPC: H04W12/08 ,  G06F16/27 ,  H04W76/10

Abstract: This invention relates to a method for granting, for a mobile device which is not provisioned with a subscription to access a wireless network, the establishment of an initial wireless communication over a second wireless network (Se-PLMN) operated by a second wireless network operator (Se-MNO), the mobile device belonging to a user, the method comprising the steps of: receiving (801) by the second wireless network (Se-PLMN) an identifier of the mobile device; verifying (802), in an immutable distributed database hosted by a first wireless network operator (Fi-MNO) and the second mobile network operator (Se-MNO) in which data is replicated across a plurality of compute nodes of a network, if at least a published assertion comprising said identifier of the mobile device demonstrates that the user owns a first subscription to the first mobile network operator (Fi-MNO), said subscription allowing said first operator (Fi-MANO) to be charged by the second mobile network operator (Se-MNO) for the establishment of a wireless communication over the second wireless network; in case of a positive verification, granting the establishment of a wireless communication (804) over the second wireless network (Se-PLMN) for the mobile device to be provisioned with a second subscription of a third wireless network operator (Th-MNO).

公开(公告)号：US20190149558A1

公开(公告)日：2019-05-16

申请号：US16099562

申请日：2017-05-22

Applicant: GEMALTO SA

Inventor： Ly Thanh PHAN

IPC: H04L29/06 ,  G06F16/23 ,  H04L9/00

Abstract: This invention relates to a method for managing the status of a connected device by publishing assertions in an immutable distributed database composed of a plurality of compute nodes, a pair of keys comprising a public key and a private key being associated with the connected device. The method comprises the steps of: receiving from a first terminal associated to a first user an instruction message; verifying that the first user is allowed to modify the status of the connected device; sending an assertion request to the immutable distributed database for publishing an assertion comprising the status information.