Processing

Please wait...

Settings

Settings

Goto Application

1. CN113872765 - Identity credential application method, identity authentication method, equipment and device

Office
China
Application Number 202010611975.3
Application Date 30.06.2020
Publication Number 113872765
Publication Date 31.12.2021
Publication Kind A
IPC
H04L 9/32
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system
H04L 29/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04L 9/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
08Key distribution
CPC
H04L 9/3247
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3247involving digital signatures
H04L 63/123
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
12Applying verification of the received information
123received data contents, e.g. message integrity
H04L 63/0435
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
04for providing a confidential data exchange among entities communicating through data packet networks
0428wherein the data content is protected, e.g. by encrypting or encapsulating the payload
0435wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
H04L 9/0861
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
H04L 9/32
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
H04L 9/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
Applicants HUAWEI TECHNOLOGIES CO., LTD.
华为技术有限公司
Inventors PAN SHIRAN
潘适然
FANG XIWEN
方习文
Agents 北京龙双利达知识产权代理有限公司 11329
北京龙双利达知识产权代理有限公司 11329
Title
(EN) Identity credential application method, identity authentication method, equipment and device
(ZH) 身份凭据的申请方法、身份认证的方法、设备及装置
Abstract
(EN) The invention provides an identity credential application method, an identity authentication method, equipment and a device, and the method comprises the steps that first equipment sends a first message to second equipment, and the first message comprises identity credential application information of the first equipment; the first equipment receives a second message sent by the second equipment, the second message comprises processed identity credential application information, and the processed identity credential application information is obtained after the identity credential application information of the first equipment is signed by a private key of the second equipment or obtained after the identity credential application information is encrypted by a symmetric key; the first equipment sends a third message to third-party equipment, the third message comprises the processed identity credential application information and is used for requesting the third-party equipment to register the identity credential of the first equipment, where the third-party equipment and the second equipment trust each other. According to the technical scheme, the security of the identity credential registration process of the equipment can be ensured, and the coverage of the authentication equipment is improved.
(ZH) 本申请提供了一种身份凭据的申请方法、身份认证的方法、设备及装置,该方法包括第一设备向第二设备发送第一消息,该第一消息包括该第一设备的身份凭据申请信息;该第一设备接收该第二设备发送的第二消息,该第二消息包括处理后的身份凭据申请信息,其中该处理后的身份凭据申请信息是该第一设备的身份凭据申请信息经该第二设备的私钥签名之后得到的,或者经对称密钥加密之后得到的;该第一设备向第三方设备发送第三消息,该第三消息包括该处理后的身份凭据申请信息,用于向该第三方设备请求注册该第一设备的身份凭据,其中该第三方设备与该第二设备相互信任。上述技术方案能够保证设备注册身份凭据过程的安全性,提升认证设备覆盖面。
Related patent documents