Method and device for protecting data on Un interface

A data protection and data technology, applied in the field of communication, can solve the problems of inability to achieve security protection and meet the needs of such data security, and achieve the effect of comprehensive security protection and meeting the needs of security protection

Active Publication Date: 2014-04-30
NOKIA TECH OY
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Traditional LTE security mechanisms may not be able to meet the security requirements of this type of data
In addition, the RN system introduces the requirement of RB granularity protection. Traditional security mechanisms cannot achieve such fine-grained security protection.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for protecting data on Un interface
  • Method and device for protecting data on Un interface
  • Method and device for protecting data on Un interface

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0032] This embodiment provides a data protection method on a Un interface.

[0033] image 3 It is the overall flowchart of the method of the embodiment of the present invention, such as image 3 As shown, the method includes:

[0034] S301. Negotiate the corresponding integrity protection algorithm and encryption algorithm for the signaling data carried in the signaling radio bearer SRB on the Un interface, the signaling data carried in the data radio bearer DRBs, and the service data carried in the data radio bearer DRBd ;

[0035] S302. Perform security protection on the signaling data carried in the SRB, the signaling data carried in the DRBs, and the service data carried in the DRBd by using the negotiated integrity protection algorithm and encryption algorithm.

[0036] Optionally, according to the data granularity of security protection, S301 may include two cases: one is according to the granularity of the radio bearer RB type, the signaling data carried in the SRB...

Embodiment 2

[0294] This embodiment provides a data protection system on the Un interface, so as to implement the data protection method on the Un interface provided in Embodiment 1. Figure 9 is the link relationship diagram of the system. Such as Figure 9 As shown, the system includes: an anchor eNB10 and a user equipment 20, the anchor eNB10 and the user equipment 20 are connected through a Un interface;

[0295] The anchor eNB10 negotiates with the user equipment 20 to bear the signaling data on the SRB for the signaling on the Un interface, the signaling data on the DRBs that carry the signaling data in the DRB, and the bearer service For the service data on the DRBd of the data, select the corresponding integrity protection algorithm and encryption algorithm; the user equipment 20 uses the integrity protection algorithm and encryption algorithm selected by the anchor eNB to encrypt the signaling data carried in the SRB , signaling data carried in DRBs and service data carried in D...

Embodiment 3

[0309] The embodiment of the present invention also provides a data protection device on the Un interface, the device includes: a negotiating unit, for the signaling data on the Un interface, the signaling data on the SRB is wirelessly carried, and the data wirelessly carries the signaling data in the DRB The signaling data on the DRBs, and the service data on the DRBd that carries the service data, select the corresponding integrity protection algorithm and encryption algorithm; the protection unit uses the integrity protection algorithm and encryption algorithm selected by the anchor eNB to protect the The signaling data carried in the SRB, the signaling data carried in the DRBs, and the service data carried in the DRBd are protected for security.

[0310] The protection unit includes: a storage unit for pre-storing the integrity protection algorithm distinguishing factor and encryption algorithm distinguishing factor corresponding to the SRB, DRBs and DRBd; an integrity key ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

Methods and apparatus are provided for protecting data carried on an Un interface. The method includes: negotiating an integrity protection algorithm and an encryption algorithm for signaling data on a signaling radio bearer SRB over the Un interface, signaling data on a data radio bearer DRBs over the Un interface, and user data on a data radio bearer DRBd over the Un interface, respectively; and performing security protection for the signaling data on the SRB, the signaling data on the DRBs, and the user data on the DRBd with the respective integrity protection algorithm and encryption algorithm. According to the method and system in the embodiments, integrity protection algorithms and encryption algorithms are adopted for data on three classes of RBs over the Un interface are protected with respective integrity protection algorithm and encryption algorithm. Therefore, the security protection on the Un interface is more comprehensive, and the security protection requirements of data on different RBs can be met.

Description

technical field [0001] The invention relates to the technical field of communications, in particular to a data protection method and device on a Un interface. Background technique [0002] In the existing LTE system, there is only an air interface between the eNB and the UE. There are two types of data on the air interface, one is the control plane data of the RRC signaling transmitted on the SRB (signaling radio bearer, signaling bearer) ; One type is user plane data transmitted on a DRB (data radio bearer, data bearer). Both integrity protection and encryption protection are performed on the RRC control plane data; only encryption protection is performed on the user plane data. When selecting an encryption algorithm, only the same encryption algorithm can be selected for control plane and user plane data. [0003] The algorithm negotiation process of the existing LTE system is as follows: figure 1 As shown, during the AS (Access Stratum) algorithm negotiation process of...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/00H04W12/02H04W12/037H04W12/106
CPCH04W84/047H04W92/20H04W12/08H04W12/10H04W12/02H04L63/205H04W12/037H04W12/033H04W12/106H04L9/14
Inventor 张冬梅陈璟张丽佳陈卓
Owner NOKIA TECH OY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap