Network application function authorisation in a generic bootstrapping architecture

A technology of general bootstrapping architecture and application functions, applied in the field of authorized subscriber user equipment

Inactive Publication Date: 2014-12-24
TELEFON AB LM ERICSSON (PUBL)
View PDF2 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This problem can be exacerbated when there are multipl...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network application function authorisation in a generic bootstrapping architecture
  • Network application function authorisation in a generic bootstrapping architecture
  • Network application function authorisation in a generic bootstrapping architecture

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0035] The Generic Bootstrapping Architecture (GBA), defined in 3GPP Technical Specification TS 33.220, provides mechanisms by which a client terminal (UE) can be authenticated to a network application function (NAF), and a secure session key is obtained for use between the UE and the NAF . Such as figure 2 As shown, GBA provides the following mechanism: UE uses Bootstrap Server Function (BSF) to perform bootstrapping to authenticate UE to BSF, and obtain master key Ks and bootstrap transaction identifier (B-TID). During bootstrapping, the BSF obtains the GBA User Security Settings (GUSS) from the Home Subscriber System (HSS). Then the UE derives the application-specific key Ks-NAF based on Ks and the NAF identifier NAF_ID, where NAF_ID is constructed as the concatenation of the fully qualified domain name (FQDN) of the NAF and the security protocol identifier of the reference point Ua, where the connection between the UE and the NAF The communication between is via said re...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

There is provided a method of authorising a subscriber user equipment to access a Network Application Function, NAF, in a Generic Bootstrapping Architecture, GBA. The method comprises, at a Bootstrapping Server Function, BSF, receiving a request for key material for the subscriber user equipment from the NAF, wherein the NAF is associated with one or more NAF identifiers, NAF_IDs, obtaining subscriber information from a Home Subscriber System, HSS, the information including one or more NAF_IDs that are valid for the subscriber, authorising the subscriber user equipment on the basis of the identity of said NAF and the NAF_ID(s) included within the subscriber information. In the event that the subscriber user equipment is authorised, key material is derived using a NAF_ID that is contained within said subscriber information; and the key material is sent to said NAF.

Description

technical field [0001] The present invention relates to methods and apparatus used in a generic bootstrap architecture. More specifically, the present invention relates to methods and apparatus for authorizing subscriber user equipment. Background technique [0002] To facilitate provisioning of services to user terminals, mobile networks such as 3G networks typically require the establishment of a secure communication channel or "security association" between a client terminal (eg, mobile terminal) and a network-based service node providing the service. The Generic Bootstrapping Architecture (GBA) defined in 3GPP Technical Specification TS 33.220V11.1.0 (2011-12) provides a mechanism that can authenticate a client terminal (UE) to a network application function (NAF) (ie, an application server) The secure session key obtained for use between the client terminal and the NAF. figure 1 Schematically shows an example of a simple network model of GBA as described in 3GPP TS33....

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04W12/08
CPCG06F21/575G06F21/604G06F2221/2117G06F2221/2141G06F2221/2145H04L9/083H04L9/321H04L63/062H04L63/0815H04L2209/80H04L2463/061H04W12/08H04W12/0431H04W12/04
Inventor 普拉耶沃·库马·纳卡米奥斯卡·奥尔松
Owner TELEFON AB LM ERICSSON (PUBL)
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap