CN104160656B - 用于将客户端设备与网络相连的***和方法 - Google Patents
用于将客户端设备与网络相连的***和方法 Download PDFInfo
- Publication number
- CN104160656B CN104160656B CN201380012082.5A CN201380012082A CN104160656B CN 104160656 B CN104160656 B CN 104160656B CN 201380012082 A CN201380012082 A CN 201380012082A CN 104160656 B CN104160656 B CN 104160656B
- Authority
- CN
- China
- Prior art keywords
- client device
- network
- authorization code
- tls
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 50
- 238000013475 authorization Methods 0.000 claims abstract description 50
- 238000004891 communication Methods 0.000 claims abstract description 21
- 230000006870 function Effects 0.000 description 11
- 150000003839 salts Chemical class 0.000 description 11
- 238000010586 diagram Methods 0.000 description 6
- 230000008859 change Effects 0.000 description 5
- 238000004364 calculation method Methods 0.000 description 4
- 239000000463 material Substances 0.000 description 4
- 238000012986 modification Methods 0.000 description 4
- 230000004048 modification Effects 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 230000015572 biosynthetic process Effects 0.000 description 2
- 238000006243 chemical reaction Methods 0.000 description 2
- 230000006835 compression Effects 0.000 description 2
- 238000007906 compression Methods 0.000 description 2
- 238000013500 data storage Methods 0.000 description 2
- 238000007689 inspection Methods 0.000 description 2
- 238000012360 testing method Methods 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000005611 electricity Effects 0.000 description 1
- 238000005259 measurement Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 210000003205 muscle Anatomy 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 239000005022 packaging material Substances 0.000 description 1
- 238000007639 printing Methods 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
- H04L63/126—Applying verification of the received information the source of the received data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/16—Implementing security features at a particular protocol layer
- H04L63/166—Implementing security features at a particular protocol layer at the transport layer
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0838—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
- H04L9/0847—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving identity based encryption [IBE] schemes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/18—Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/30—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
- H04L9/3066—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy involving algebraic varieties, e.g. elliptic or hyper-elliptic curves
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
Abstract
Description
Claims (13)
Applications Claiming Priority (7)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US201261605598P | 2012-03-01 | 2012-03-01 | |
US61/605,598 | 2012-03-01 | ||
EP13151270.9 | 2013-01-15 | ||
US13/741,598 US9106635B2 (en) | 2012-03-01 | 2013-01-15 | System and method for connecting client devices to a network |
EP13151270.9A EP2634993B1 (en) | 2012-03-01 | 2013-01-15 | Devices and methods for connecting client devices to a network |
US13/741,598 | 2013-01-15 | ||
PCT/CA2013/050150 WO2013127014A1 (en) | 2012-03-01 | 2013-02-28 | System and method for connecting client devices to a network |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104160656A CN104160656A (zh) | 2014-11-19 |
CN104160656B true CN104160656B (zh) | 2017-08-29 |
Family
ID=47632834
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201380012082.5A Active CN104160656B (zh) | 2012-03-01 | 2013-02-28 | 用于将客户端设备与网络相连的***和方法 |
Country Status (5)
Country | Link |
---|---|
US (2) | US9106635B2 (zh) |
EP (1) | EP2634993B1 (zh) |
CN (1) | CN104160656B (zh) |
CA (1) | CA2865835C (zh) |
WO (1) | WO2013127014A1 (zh) |
Families Citing this family (28)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9531691B2 (en) | 2011-12-16 | 2016-12-27 | Akamai Technologies, Inc. | Providing forward secrecy in a terminating TLS connection proxy |
US9350550B2 (en) * | 2013-09-10 | 2016-05-24 | M2M And Iot Technologies, Llc | Power management and security for wireless modules in “machine-to-machine” communications |
WO2015095463A1 (en) * | 2013-12-18 | 2015-06-25 | Akamai Technologies, Inc. | Providing forward secrecy in a terminating tls connection proxy |
US10389714B2 (en) | 2014-03-31 | 2019-08-20 | Idaax Technologies Private Limited | Increased communication security |
US9426136B2 (en) | 2014-03-31 | 2016-08-23 | EXILANT Technologies Private Limited | Increased communication security |
US9419949B2 (en) | 2014-03-31 | 2016-08-16 | EXILANT Technologies Private Limited | Increased communication security |
US9602486B2 (en) * | 2014-03-31 | 2017-03-21 | EXILANT Technologies Private Limited | Increased communication security |
US9419979B2 (en) * | 2014-03-31 | 2016-08-16 | EXILANT Technologies Private Limited | Increased communication security |
US9426148B2 (en) * | 2014-03-31 | 2016-08-23 | EXILANT Technologies Private Limited | Increased communication security |
US9426135B2 (en) | 2014-03-31 | 2016-08-23 | EXILANT Technologies Private Limited | Increased communication security |
US9485091B2 (en) | 2014-05-01 | 2016-11-01 | International Business Machines Corporation | Dual-party session key derivation |
US9531542B2 (en) | 2014-09-19 | 2016-12-27 | Bank Of America Corporation | Secure remote password |
US9935925B2 (en) * | 2014-10-03 | 2018-04-03 | Intrinsic Id B.V. | Method for establishing a cryptographically protected communication channel |
CN105721409B (zh) * | 2014-12-03 | 2019-06-25 | 西安西电捷通无线网络通信股份有限公司 | 具有wlan功能的设备接入网络的方法及实现该方法的设备 |
DE102015214267A1 (de) * | 2015-07-28 | 2017-02-02 | Siemens Aktiengesellschaft | Verfahren und System zum Erzeugen eines sicheren Kommunikationskanals für Endgeräte |
US9888037B1 (en) * | 2015-08-27 | 2018-02-06 | Amazon Technologies, Inc. | Cipher suite negotiation |
US9912486B1 (en) | 2015-08-27 | 2018-03-06 | Amazon Technologies, Inc. | Countersigned certificates |
US10454689B1 (en) | 2015-08-27 | 2019-10-22 | Amazon Technologies, Inc. | Digital certificate management |
US11197331B2 (en) * | 2016-06-10 | 2021-12-07 | Apple Inc. | Zero-round-trip-time connectivity over the wider area network |
US10484173B2 (en) * | 2017-01-03 | 2019-11-19 | Nxp B.V. | X-only generic mapping function for PACE protocol |
CN108667609B (zh) * | 2017-04-01 | 2021-07-20 | 西安西电捷通无线网络通信股份有限公司 | 一种数字证书管理方法及设备 |
CN108667781A (zh) * | 2017-04-01 | 2018-10-16 | 西安西电捷通无线网络通信股份有限公司 | 一种数字证书管理方法及设备 |
CN109474432B (zh) | 2017-09-07 | 2021-11-02 | 西安西电捷通无线网络通信股份有限公司 | 数字证书管理方法及设备 |
CN108462575B (zh) * | 2018-03-09 | 2020-10-09 | 西安电子科技大学 | 基于无可信中心门限混合加密的上传数据加密方法 |
MX2021012566A (es) * | 2019-04-15 | 2022-01-04 | Aclara Tech Llc | Sistema y método para una mejor seguridad en redes de infraestructura de medición avanzada. |
US10848481B1 (en) * | 2019-05-17 | 2020-11-24 | The Florida International University Board Of Trustees | Systems and methods for revocation management in an AMI network |
CN111259356B (zh) * | 2020-02-17 | 2022-09-02 | 北京百度网讯科技有限公司 | 授权方法、辅助授权组件、管理服务器和计算机可读介质 |
JP2023008607A (ja) * | 2021-07-06 | 2023-01-19 | 株式会社野村総合研究所 | 検証可能なクレームを取得するユーザ装置、当該ユーザ装置を含むシステム及び検証可能なクレームを取得する方法 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1969501A (zh) * | 2004-04-30 | 2007-05-23 | 捷讯研究有限公司 | 安全地产生共享密钥的***和方法 |
US7814538B2 (en) * | 2005-12-13 | 2010-10-12 | Microsoft Corporation | Two-way authentication using a combined code |
CN102215487A (zh) * | 2010-04-09 | 2011-10-12 | 国际商业机器公司 | 通过公共无线网络安全地接入专用网络的方法和*** |
Family Cites Families (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7139917B2 (en) * | 2000-06-05 | 2006-11-21 | Phoenix Technologies Ltd. | Systems, methods and software for remote password authentication using multiple servers |
WO2001097480A2 (en) | 2000-06-12 | 2001-12-20 | Mediashell Corp. | System and method for controlling the access to digital works through a network |
US7246236B2 (en) * | 2002-04-18 | 2007-07-17 | Nokia Corporation | Method and apparatus for providing peer authentication for a transport layer session |
US7448068B2 (en) | 2002-10-21 | 2008-11-04 | Microsoft Corporation | Automatic client authentication for a wireless network protected by PEAP, EAP-TLS, or other extensible authentication protocols |
US7467405B2 (en) | 2004-06-22 | 2008-12-16 | Taiwan Semiconductor Manufacturing Company, Ltd. | Method and apparatus for detecting an unauthorized client in a network of computer systems |
US20060095767A1 (en) * | 2004-11-04 | 2006-05-04 | Nokia Corporation | Method for negotiating multiple security associations in advance for usage in future secure communication |
US7764785B2 (en) * | 2004-11-08 | 2010-07-27 | King Fahd University Of Petroleum And Minerals | Method for communicating securely over an insecure communication channel |
DE602005020702D1 (de) * | 2005-10-18 | 2010-05-27 | Telecom Italia Spa | Verfahren zur skalarmultiplikation in gruppen elliptischer kurven über primkörpern für nebenkanal-attacken-beständige kryptosysteme |
US7664259B2 (en) * | 2006-03-09 | 2010-02-16 | Motorola, Inc. | Encryption and verification using partial public key |
US8311214B2 (en) * | 2006-04-24 | 2012-11-13 | Motorola Mobility Llc | Method for elliptic curve public key cryptographic validation |
US8074265B2 (en) * | 2006-08-31 | 2011-12-06 | Red Hat, Inc. | Methods and systems for verifying a location factor associated with a token |
GB0623101D0 (en) * | 2006-11-20 | 2006-12-27 | British Telecomm | Secure network architecture |
US20080263363A1 (en) * | 2007-01-22 | 2008-10-23 | Spyrus, Inc. | Portable Data Encryption Device with Configurable Security Functionality and Method for File Encryption |
EP2334008A1 (en) * | 2009-12-10 | 2011-06-15 | Tata Consultancy Services Limited | A system and method for designing secure client-server communication protocols based on certificateless public key infrastructure |
WO2011120125A1 (en) * | 2010-03-31 | 2011-10-06 | Irdeto Canada Corporation | System and method for protecting cryptographic assets from a white-box attack |
US8856509B2 (en) * | 2010-08-10 | 2014-10-07 | Motorola Mobility Llc | System and method for cognizant transport layer security (CTLS) |
WO2012158453A1 (en) * | 2011-05-16 | 2012-11-22 | Panasonic Corporation | Duplication judgment device and duplication management system |
-
2013
- 2013-01-15 EP EP13151270.9A patent/EP2634993B1/en active Active
- 2013-01-15 US US13/741,598 patent/US9106635B2/en active Active
- 2013-02-28 CA CA2865835A patent/CA2865835C/en active Active
- 2013-02-28 CN CN201380012082.5A patent/CN104160656B/zh active Active
- 2013-02-28 WO PCT/CA2013/050150 patent/WO2013127014A1/en active Application Filing
-
2015
- 2015-07-14 US US14/799,392 patent/US9621545B2/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1969501A (zh) * | 2004-04-30 | 2007-05-23 | 捷讯研究有限公司 | 安全地产生共享密钥的***和方法 |
US7814538B2 (en) * | 2005-12-13 | 2010-10-12 | Microsoft Corporation | Two-way authentication using a combined code |
CN102215487A (zh) * | 2010-04-09 | 2011-10-12 | 国际商业机器公司 | 通过公共无线网络安全地接入专用网络的方法和*** |
Also Published As
Publication number | Publication date |
---|---|
US9621545B2 (en) | 2017-04-11 |
CA2865835A1 (en) | 2013-09-06 |
EP2634993B1 (en) | 2017-01-11 |
EP2634993A1 (en) | 2013-09-04 |
CA2865835C (en) | 2021-02-16 |
US20130232554A1 (en) | 2013-09-05 |
US20150319164A1 (en) | 2015-11-05 |
WO2013127014A1 (en) | 2013-09-06 |
US9106635B2 (en) | 2015-08-11 |
CN104160656A (zh) | 2014-11-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104160656B (zh) | 用于将客户端设备与网络相连的***和方法 | |
JP7454035B2 (ja) | ブロックチェーンにより実装される方法及びシステム | |
EP3437247B1 (en) | System and method for distribution of identity based key material and certificate | |
Karuppiah et al. | A secure remote user mutual authentication scheme using smart cards | |
US9698985B2 (en) | Authentication | |
CN108965338B (zh) | 多服务器环境下的三因素身份认证及密钥协商的方法 | |
US8971540B2 (en) | Authentication | |
CN104378374B (zh) | 一种基于安全套接层建立通信的方法及*** | |
BR102019015369A2 (pt) | Sistema para provisionar uma conexão segura a uma conexão interdispositivo e método para provisionar uma conexão segura a uma conexão interdispositivo entre um primeiro dispositivo e um segundo e sistema | |
CN107040373A (zh) | 相互认证方法及认证设备 | |
CN110268676A (zh) | 基于身份的自认证签名方案的私有密钥计算***和方法 | |
US9106644B2 (en) | Authentication | |
Amin et al. | A Two‐Factor RSA‐Based Robust Authentication System for Multiserver Environments | |
CN106797313A (zh) | 利用动态密钥生成的网络认证*** | |
CN105119894B (zh) | 基于硬件安全模块的通信***及通信方法 | |
Tsai et al. | A chaotic map‐based anonymous multi‐server authenticated key agreement protocol using smart card | |
CN109075965A (zh) | 使用口令码验证的前向安全密码技术的方法、***和装置 | |
Guo et al. | An efficient and secure certificateless authentication protocol for healthcare system on wireless medical sensor networks | |
CN112468983B (zh) | 一种低功耗的电力物联网智能设备接入认证方法及其辅助装置 | |
Rana et al. | Cryptanalysis and improvement of biometric based content distribution framework for digital rights management systems | |
Malina et al. | Efficient and secure access control system based on programmable smart cards | |
Truong et al. | Chebyshev Polynomial‐Based Authentication Scheme in Multiserver Environment | |
Pippal et al. | A novel smart card mutual authentication scheme for session transfer among registered devices | |
Kiiver | NFC Security Solution for Web Applications |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right |
Effective date of registration: 20191031 Address after: Voight, Ontario, Canada Patentee after: BlackBerry Ltd. Address before: Rika Univ. Patentee before: CERTICOM Corp. |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20240605 Address after: Ai Erlandubailin Patentee after: Maliki Innovation Co.,Ltd. Country or region after: Ireland Address before: Voight, Ontario, Canada Patentee before: BlackBerry Ltd. Country or region before: Canada |
|
TR01 | Transfer of patent right |