Processing

Please wait...

Settings

Settings

Goto Application

1. WO2011001076 - METHOD FOR CHANGING AN AUTHENTICATION KEY

Publication Number WO/2011/001076
Publication Date 06.01.2011
International Application No. PCT/FR2010/051303
International Filing Date 25.06.2010
IPC
H04W 12/06 2009.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity
06Authentication
H04L 29/06 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04L 9/32 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system
H04L 9/08 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
08Key distribution
H04W 12/04 2009.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity
04Key management
CPC
H04L 2463/061
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
2463Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
061applying further key derivation, e.g. deriving traffic keys from a pair-wise master key
H04L 63/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
06for supporting key management in a packet data network
H04L 63/0853
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
08for supporting authentication of entities communicating through a packet data network
0853using an additional device, e.g. smartcard, SIM or a different communication terminal
H04W 12/0609
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity ; ; Protecting confidentiality; Key management; Integrity; Mobile application security; Using identity modules; Secure pairing of devices; Context aware security; Lawful interception
06Authentication
0609using certificates or pre-shared keys
H04W 88/02
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
88Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
02Terminal devices
Applicants
  • FRANCE TELECOM [FR]/[FR] (AllExceptUS)
  • MICHAU, Benoit [FR]/[FR] (UsOnly)
  • ROUSSEL, Jean-Luc [FR]/[FR] (UsOnly)
  • COUREAU, Laurent [FR]/[FR] (UsOnly)
Inventors
  • MICHAU, Benoit
  • ROUSSEL, Jean-Luc
  • COUREAU, Laurent
Agents
  • FRANCE TELECOM R&D/PIV/BREVETS
Priority Data
095447430.06.2009FR
Publication Language French (FR)
Filing Language French (FR)
Designated States
Title
(EN) METHOD FOR CHANGING AN AUTHENTICATION KEY
(FR) PROCÉDÉ DE CHANGEMENT D'UNE CLÉ D'AUTHENTIFICATION
Abstract
(EN)
The invention relates to a method for changing an authentication key, said key being associated with a subscriber identification number by the safety module of a communication terminal via a network, the safety module storing a first subscriber authentication key in a first network (12) in association with a first subscriber identification number in the first network, as well as a master key for generating keys specific to a second network (13), wherein the method includes: a step (24) of the safety module receiving a random number provided by the first network; a step (26) of the safety module calculating a second subscriber authentication key in the second network using the master key and the received random number; and a step (32) of storing, in the safety module, the second calculated authentication key in association with a second identification number.
(FR)
L'invention concerne un procédé de changement d'une clé d'authentification, ladite clé étant associée à un numéro d'identification d'abonné, par un module de sécurité d'un terminal de communication à travers un réseau, le module de sécurité stockant une première clé d'authentification d'abonné dans un premier réseau (12) en association avec un premier numéro d'identification de l'abonné dans le premier réseau, ainsi qu'une clé maîtresse de génération de clés propre à un deuxième réseau (13), le procédé comprenant : - une étape (24) de réception par le module de sécurité d'un aléa fourni par le premier réseau, - une étape (26) de calcul par le module de sécurité d'une deuxième clé d'authentification de l'abonné dans le deuxième réseau à partir de la clé maîtresse et de l'aléa reçu, - une étape (32) de stockage dans le module de sécurité de la deuxième clé d'authentification calculée, en association avec un deuxième numéro d'identification.
Also published as
Latest bibliographic data on file with the International Bureau