Processing

Please wait...

Settings

Settings

Goto Application

1. WO2021065394 - COMMUNICATION SYSTEM, COMMUNICATION PATH ESTABLISHMENT METHOD, AND NON-TRANSITORY COMPUTER READABLE MEDIUM STORING PATH ESTABLISHMENT PROGRAM THEREIN

Publication Number WO/2021/065394
Publication Date 08.04.2021
International Application No. PCT/JP2020/034088
International Filing Date 09.09.2020
IPC
H04W 12/08 2021.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity
08Access security
G09C 1/00 2006.01
GPHYSICS
09EDUCATING; CRYPTOGRAPHY; DISPLAY; ADVERTISING; SEALS
CCIPHERING OR DECIPHERING APPARATUS FOR CRYPTOGRAPHIC OR OTHER PURPOSES INVOLVING THE NEED FOR SECRECY
1Apparatus or methods whereby a given sequence of signs, e.g. an intelligible text, is transformed into an unintelligible sequence of signs by transposing the signs or groups of signs or by replacing them by others according to a predetermined system
H04L 9/08 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
08Key distribution
H04L 9/32 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system
H04W 76/10 2018.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
76Connection management
10Connection setup
H04W 84/12 2009.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
84Network topologies
02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN  or WLL
10Small scale networks; Flat hierarchical networks
12WLAN
CPC
G09C 1/00
GPHYSICS
09EDUCATION; CRYPTOGRAPHY; DISPLAY; ADVERTISING; SEALS
CCIPHERING OR DECIPHERING APPARATUS FOR CRYPTOGRAPHIC OR OTHER PURPOSES INVOLVING THE NEED FOR SECRECY
1Apparatus or methods whereby a given sequence of signs, e.g. an intelligible text, is transformed into an unintelligible sequence of signs by transposing the signs or groups of signs or by replacing them by others according to a predetermined system
H04L 9/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
H04L 9/32
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
H04W 12/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements; Authentication; Protecting privacy or anonymity
08Access security
H04W 76/10
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
76Connection management
10Connection setup
H04W 84/12
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
84Network topologies
02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
10Small scale networks; Flat hierarchical networks
12WLAN [Wireless Local Area Networks]
Applicants
  • NECプラットフォームズ株式会社 NEC PLATFORMS, LTD. [JP]/[JP]
Inventors
  • 佐藤 智洋 SATO Tomohiro
Agents
  • 家入 健 IEIRI Takeshi
Priority Data
2019-18343304.10.2019JP
Publication Language Japanese (JA)
Filing Language Japanese (JA)
Designated States
Title
(EN) COMMUNICATION SYSTEM, COMMUNICATION PATH ESTABLISHMENT METHOD, AND NON-TRANSITORY COMPUTER READABLE MEDIUM STORING PATH ESTABLISHMENT PROGRAM THEREIN
(FR) SYSTÈME DE COMMUNICATION, PROCÉDÉ D'ÉTABLISSEMENT DE TRAJET DE COMMUNICATION ET SUPPORT NON TRANSITOIRE LISIBLE PAR ORDINATEUR STOCKANT UN PROGRAMME D'ÉTABLISSEMENT DE TRAJET EN SON SEIN
(JA) 通信システム、通信経路確立方法、および経路確立プログラムを格納した非一時的なコンピュータ可読媒体
Abstract
(EN)
This communication system comprises: an AP (1-3); an STA (1-4) belonging to the AP (1-3); a verification server (1-1) for performing verification when the AP (1-3) receives a verification request from the STA (1-4); and a database in which legitimate information of the AP (1-3) is recorded. The AP (1-3) sends a verification server certificate signed by a trusted certification authority to the STA (1-4), and upon receiving a verification request from the STA (1-4), sends the content thereof to the verification server. The AP (1-3) performs cryptographic communication using a random number contained in a verification response as a seed, and encrypts and sends, to the STA (1-4), the content of the verification response. The STA (1-4) generates a symmetric key, checks the content of the response, receives the verification server certificate, verifies the presence or absence of the signature by the trusted certification authority, and encrypts and sends, to the AP (1-3), information of a connection destination and a random number as a verification request. The STA (1-4) decrypts the content of the verification response to check whether or not a verification result and the random number are included, decrypts the content of the verification server certificate, and makes a pass/fail decision on the basis of whether or not the information contained in the verification request is in the record of the database.
(FR)
La présente invention concerne un système de communication qui comprend : un AP (1-3) ; une STA (1-4) appartenant à l'AP (1-3) ; un serveur de vérification (1-1) pour effectuer une vérification lorsque l'AP (1-3) reçoit une requête de vérification provenant de la STA (1-4) ; et une base de données dans laquelle des informations légitimes de l'AP (1-3) sont enregistrées. L'AP (1-3) envoie un certificat de serveur de vérification signé par une autorité de certification de confiance à la STA (1-4) et, lors de la réception d'une requête de vérification provenant de la STA (1-4), envoie le contenu de celle-ci au serveur de vérification. L'AP (1-3) réalise une communication cryptographique à l'aide d'un nombre aléatoire contenu dans une réponse de vérification en tant que germe et crypte et envoie, à la STA (1-4), le contenu de la réponse de vérification. La STA (1-4) génère une clé symétrique, vérifie le contenu de la réponse, reçoit le certificat de serveur de vérification, vérifie la présence ou l'absence de la signature par l'autorité de certification de confiance et crypte et envoie, à l'AP (1-3), des informations d'une destination de connexion et un nombre aléatoire en tant que requête de vérification. La STA (1-4) décrypte le contenu de la réponse de vérification pour vérifier si un résultat de vérification et le nombre aléatoire sont inclus ou non, décrypte le contenu du certificat de serveur de vérification et effectue une décision de réussite/échec sur la base du fait que les informations contenues dans la requête de vérification sont ou non dans l'enregistrement de la base de données.
(JA)
AP(1-3)と、AP(1-3)に帰属するSTA(1-4)と、AP(1-3)がSTA(1-4)からの検証要求を受信した場合に検証を行う検証サーバ(1-1)と、正規のAP(1-3)の情報が登録されたデータベースと、を備え、AP(1-3)は、信頼できる認証局の署名がされた検証サーバ証明書をSTA(1-4)に送信し、STA(1-4)からの検証要求を受信した場合に内容を検証サーバへ送信し、前記検証応答の中に含まれる乱数を種とした暗号通信を行い、検証応答内容を暗号化してSTA(1-4)に送信し、STA(1-4)は共通鍵を生成して応答内容を確認し、検証サーバ証明書を受信して信頼できる認証局の署名の有無を検証し、検証要求として接続先の情報および乱数を暗号化してAP(1-3)へ送信し、STA(1-4)は、検証応答内容を復号化し検証の合否および乱数が含まれているかを確認し、検証サーバ証明書の内容を復号化し、検証要求に含まれる情報をデータベースのレコードの有無により合否判定を行う。
Also published as
Latest bibliographic data on file with the International Bureau