Processing

Please wait...

Settings

Settings

Goto Application

1. WO2015174903 - DEVICE AUTHENTICATION TO CAPILLARY GATEWAY

Publication Number WO/2015/174903
Publication Date 19.11.2015
International Application No. PCT/SE2014/050607
International Filing Date 16.05.2014
IPC
H04W 4/00 2009.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
4Services specially adapted for wireless communication networks; Facilities therefor
H04L 29/06 2006.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04W 12/06 2009.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity
06Authentication
H04W 48/00 2009.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
48Access restriction; Network selection; Access point selection
H04W 88/16 2009.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
88Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
16Gateway arrangements
CPC
H04L 63/0823
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
08for supporting authentication of entities communicating through a packet data network
0823using certificates
H04L 63/10
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
10for controlling access to network resources
H04L 67/12
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
67Network-specific arrangements or communication protocols supporting networked applications
12adapted for proprietary or special purpose networking environments, e.g. medical networks, sensor networks, networks in a car or remote metering networks
H04W 12/0431
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements; Authentication; Protecting privacy or anonymity
04Key management, e.g. using generic bootstrapping architecture [GBA]
043using a trusted network node as an anchor
0431Key distribution or pre-distribution; Key agreement
H04W 12/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements; Authentication; Protecting privacy or anonymity
06Authentication
H04W 12/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements; Authentication; Protecting privacy or anonymity
08Access security
Applicants
  • TELEFONAKTIEBOLAGET LM ERICSSON (PUBL) [SE]/[SE]
Inventors
  • SLAVOV, Kristian
  • SALMELA, Patrik
Agents
  • EGRELIUS, Fredrik
Priority Data
Publication Language English (en)
Filing Language English (EN)
Designated States
Title
(EN) DEVICE AUTHENTICATION TO CAPILLARY GATEWAY
(FR) AUTHENTIFICATION DE DISPOSITIF VIS-À-VIS D'UNE PASSERELLE CAPILLAIRE
Abstract
(EN) It is disclosed a method and a capillary gateway, CGW, (50, 60, 204, 304) capable to determine whether to allow a first machine-to-machine, M2M, device network access. The CGW is adapted to intercept (310) an authentication request message sent from a M2M device, and intercept (318) an authentication response message sent from a M2M management service. If the CGW determines that the authentication is successful based on the authentication response message and that there is a valid subscription for the M2M device and the authentication response message is received from a trusted management service, the CGW may allow (414) the first M2M device network access. Embodiments of the present disclosure have the advantage that disclosure can provide low-powered devices Internet reachability based on user subscriptions in non-traditional scenarios such as where devices are deployed straight out-of-the-box, i.e., without any customization.
(FR) L'invention concerne un procédé et une passerelle capillaire, CGW, (50, 60, 204, 304) capables de déterminer s'il y a lieu d'autoriser un premier dispositif de machine à machine, M2M, à accéder à un réseau. La CGW est prévue pour intercepter (310) un message de demande d'authentification émanant d'un dispositif M2M, et intercepter (318) un message de réponse d'authentification émanant d'un service de gestion M2M. Si la CGW détermine que l'authentification a réussi d'après le message de réponse d'authentification et qu'il existe un abonnement valide pour le dispositif M2M et si le message de réponse d'authentification est reçu en provenance d'un service de gestion de confiance, la CGW peut autoriser (414) le premier dispositif M2M à accéder au réseau. Les modes de réalisation de la présente invention ont l'avantage de pouvoir assurer une accessibilité à Internet de dispositifs de faible puissance en se basant sur des abonnements d'utilisateurs dans des scénarios non traditionnels comme ceux où des dispositifs sont déployés directement dans l'état de livraison, c.à.d. sans aucune personnalisation.
Related patent documents
Latest bibliographic data on file with the International Bureau