Unlock instant, AI-driven research and patent intelligence for your innovation.

Method for implementing user and equipment authentication separately employing diameter protocol

A protocol implementation and user technology, applied in the field of communication systems, can solve problems such as two-round authentication that does not support separate authentication of users and devices, and achieve strong practicability and simple implementation

Inactive Publication Date: 2009-05-20
SAMSUNG ELECTRONICS CO LTD +1
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Therefore, the current diameter authentication protocol does not support two rounds of authentication (double authentication) in which users and devices are authenticated separately.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for implementing user and equipment authentication separately employing diameter protocol
  • Method for implementing user and equipment authentication separately employing diameter protocol

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0034] Using double EAP authentication, a certain MS uses the embodiment of the initial access process of the method proposed in the present invention, refer to figure 2 , The main steps include:

[0035] 1) MS and Authenticator exchange authentication strategies through BS;

[0036] 2) The Authenticator selects the authentication method and sends an authentication request AuthRelay_EAP_TRANSFER message to the MS through the BS, which contains information such as EAP-Request / Identity;

[0037] 3) After the MS receives the EAP_TRANSFER (EAP-Request / Identity) message, it replies EAP_TRANSFER (EAP-response / Identity) to the Authenticator through the BS and reports the identity required for authentication;

[0038] 4) When the Authenticator receives MS EAP-Identiy, it sets the state of the Diameter authentication state machine to IDLE, and the initial value of the first round of authentication success flag is Flase; and according to the received MS EAP-payload, it constructs a DER mess...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method for realizing the respective authentication of a user and equipment by adopting a Diameter protocol. An authenticator sets the initial state of a Diameter client authentication state machine as IDLE; the authenticator constructs a corresponding DER message according to an attribute value related to the MS authentication, and sends the DER message to an AAA authentication server; the authenticator analyzes a DEA message when receiving the DEA message from the AAA authentication server, and the first round of authentication is successfully finished if the analyzed DEA message contains the attribute value which is successfully authenticated; a mark for the first round of successful authentication is set as TRUE; the authenticator constructs a corresponding DER message according to an attribute value related to the MS authentication, and sends the DER message to the AAA authentication server; the authenticator analyzes a DEA message when receiving the DEA message from the AAA authentication server; and if the analyzed DEA message contains the attribute value which is successfully authenticated, the authenticator is changed into an open state, and the authentication is finished. The method can support both single authentication and double authentication; and the method can support the double authentication through slight modification based on the prior diameter authentication state machine, and has backward compatibility.

Description

Technical field [0001] The present invention relates to a communication system, in particular to a method in a mobile Wimax system that adopts a diameter protocol to realize user and device authentication (Double EAP). Background technique [0002] Four authentication methods are defined in the latest Wimax specification on network structure version 1.0.0: user authentication: User single EAP; device authentication: Device Single EAP; simultaneous user and device authentication: User / Device Single EAP; user and device separately Authentication: Double EAP (two EAP processes are executed). [0003] The method of user and device authentication separately (ie double EAP) requires two rounds of authentication: the first round of device authentication and the second round of user authentication. If the authentication of the user (User) and the mobile station (MS) needs to be performed separately, the double EAP method can be selected. A typical application scenario is: when the authen...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L9/32H04L12/28
Inventor 王春花时忆杰
Owner SAMSUNG ELECTRONICS CO LTD