Data management and encryption in a distributed computing system
US-2024305442-A1 · Sep 12, 2024 · US
Method, network element, and mobile station for negotiating encryption algorithms
US9729523B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9729523-B2 |
| Application number | US-201414550734-A |
| Country | US |
| Kind code | B2 |
| Filing date | Nov 21, 2014 |
| Priority date | Sep 8, 2009 |
| Publication date | Aug 8, 2017 |
| Grant date | Aug 8, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method, network element, and mobile station (MS) are disclosed. The method includes: obtaining information that a plug-in card of the MS does not support a first encryption algorithm; deleting the first encryption algorithm from an encryption algorithm list permitted by a core network element according to the information that the plug-in card of the MS does not support the first encryption algorithm; sending the encryption algorithm list excluding the first encryption algorithm to an access network element, so that the access network element selects an encryption algorithm according to the encryption algorithm list excluding the first encryption algorithm and the MS capability information sent from the MS and sends the selected encryption algorithm to the MS. By using the method, network element, and MS, errors due to the fact that the plug-in card of the MS does not support an encryption algorithm may be avoided during the encryption process.
First claim
Opening claim text (preview).
What is claimed is: 1. A method for negotiating encryption algorithms in a communication system, wherein the communication system comprises a core network element, an access network element and a mobile station (MS), and wherein an A5/4 encryption algorithm is supported by the MS, and is not supported by a plug-in card of the MS, the method comprising: obtaining, by the core network element, information that the plug-in card of the MS does not support the A5/4 encryption algorithm according to an authentication vector of the MS; determining, by the core network element, an encryption algorithm list excluding the A5/4 encryption algorithm according to the information that the plug-in card of the MS does not support the A5/4 encryption algorithm; and sending, by the core network element, the encryption algorithm list to the access network element to ensure that an encryption algorithm excluding the A5/4 encryption algorithm is selected by the access network element for data encryption, even if an encryption algorithm list including the A5/4 encryption algorithm is sent by the MS to the access network element. 2. The method of claim 1 , wherein the obtaining information that the plug-in card of the MS does not support the A5/4 encryption algorithm according to the authentication vector of the MS comprises, if a key part of an authentication vector of the MS includes a 64-bit encryption key, acquiring that the plug-in card of the MS does not support the A5/4 encryption algorithm. 3. The method of claim 1 , wherein the obtaining the information that the plug-in card of the MS does not support the A5/4 encryption algorithm according to the authentication vector of the MS comprises, if the authentication vector of the MS is an authentication triplet, acquiring that the type of the plug-in card of the MS is a subscriber identity module (SIM) card, and further acquiring that the plug-in card of the MS does not support the A5/4 encryption algorithm. 4. The method of claim 1 , wherein the core network element comprises a mobile switch center (MSC) or a visitor location register (VLR). 5. The method of claim 1 , wherein the access network element comprises a Based Station Controller (BSC). 6. The method of claim 1 , wherein the plug-in card of the MS is a subscriber identity module card. 7. A core network element used in a communication system, wherein the communication system further comprises an access network element and a mobile station (MS), and wherein an A5/4 encryption algorithm is supported by the MS, and is not supported by a plug-in card of the MS, the core network element comprising: an obtaining unit, configured to obtain information that the plug-in card of the MS does not support the A5/4 encryption algorithm according to an authentication vector of the MS; an algorithm deleting unit, configured to determine an encryption algorithm list excluding the A5/4 encryption algorithm according to the information that the plug-in card of the MS does not support the A5/4 encryption algorithm; and a sending unit, configured to send the encryption algorithm list to the access network element to ensure that an encryption algorithm excluding the A5/4 encryption algorithm is selected by the access network element for data encryption, even if an encryption algorithm list including the A5/4 encryption algorithm is sent by the MS to the access network element. 8. The core network element of claim 7 , wherein the obtaining unit is configured to determine the plug-in card of the MS does not support the A5/4 encryption algorithm according to a key part of an authentication vector of the MS comprises a 64-bit encryption key. 9. The core network element of claim 7 , wherein the obtaining unit is configured to determine that the plug-in card of the MS is a subscriber identity module (SIM) card according to an authentication vector of the MS being an authentication triplet, so as to determine the plug-in card of the MS does not support the A5/4 encryption algorithm. 10. The core network element of claim 7 , wherein the core network element is a mobile switch center (MSC), or a visitor location register (VLR).
Assignees
Inventors
Classifications
Access security · CPC title
Challenge-response · CPC title
File encryption · CPC title
involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved (negotiation of communication capabilities H04L69/24) · CPC title
- H04L9/12Primary
Transmitting and receiving encryption devices synchronised or initially set up in a particular manner · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9729523B2 cover?
- A method, network element, and mobile station (MS) are disclosed. The method includes: obtaining information that a plug-in card of the MS does not support a first encryption algorithm; deleting the first encryption algorithm from an encryption algorithm list permitted by a core network element according to the information that the plug-in card of the MS does not support the first encryption al…
- Who is the assignee on this patent?
- Huawei Tech Co Ltd
- What technology area does this patent fall under?
- Primary CPC classification H04L9/12. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Aug 08 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).