白丝美女被狂躁免费视频网站,500av导航大全精品,yw.193.cnc爆乳尤物未满,97se亚洲综合色区,аⅴ天堂中文在线网官网

Secure short message service over non-access stratum

專利號(hào)
US10785653B2
公開(kāi)日期
2020-09-22
申請(qǐng)人
Nokia Technologies Oy(FI Espoo)
發(fā)明人
Suresh Nair; Anja Jerichow; Nagendra S. Bykampadi
IPC分類
H04W12/10; H04W8/02; H04W12/04; H04W4/14; H04W60/00; H04L9/14; H04L29/06; H04W12/00; H04W8/18; H04W88/18
技術(shù)領(lǐng)域
nas,sms,amf,smsf,message,ue,integrity,equipment,in,user
地域: Espoo

摘要

A short message service (SMS) message is encrypted using an encryption key stored at a user equipment and an access and mobility management function (AMF) and the encrypted SMS message is added to a payload of a non-access stratum (NAS) message that includes an NAS header. Integrity protection is applied to the NAS message using an integrity key stored at the user equipment and the AMF and the integrity-protected NAS message is transmitted. The NAS message is received via an NAS link between the user equipment and the AMF. An integrity check is performed on the NAS message using the integrity key. An encrypted short message service (SMS) message is extracted from a payload of the NAS message in response to the integrity check being successful and the encrypted SMS message is decrypted using the encryption key.

說(shuō)明書(shū)

CROSS-REFERENCE TO RELATED APPLICATIONS

The presentation application is a continuation application of U.S. patent application Ser. No. 15/974,394, entitled “SECURE SHORT MESSAGE SERVICE OVER NON-ACCESS STRATUM” and filed on May 8, 2018 the entirety of which is incorporated by reference herein. This application claims priority to India (IN) Patent Application 201741026689, filed in India on Jul. 27, 2017, the entirety of which is incorporated by reference herein.

BACKGROUND

The non-access stratum (NAS) is a protocol layer implemented in wireless communication protocol stacks between user equipment and a core network. NAS is the highest stratum of the control plane between user equipment and a mobility management entity (MME) or an access and mobility management function (AMF) at the radio interface. The NAS layer manages the establishment of communication sessions and maintains continuous communication as the user equipment moves through the network. Examples of functions supported by the NAS protocols include mobility of the user equipment and session management procedures that are used to establish and maintain connectivity between the user equipment and a packet data network via the mobile data network. In contrast, an access stratum (AS) layer and corresponding AS protocol are used to convey information over an air interface in the wireless portion of the network. The NAS protocol is transported using radio resource control (RRC) messages in Second Generation (2G), Third Generation (3G), Fourth Generation (4G), and Fifth Generation (5G) networks that operate according to the standards defined by the Third Generation Partnership Project (3GPP).

BRIEF DESCRIPTION OF THE DRAWINGS

權(quán)利要求

1
What is claimed is:1. A user equipment comprising:a memory configured to store a first non-access stratum (NAS) context comprising an address of the user equipment, a plurality of encryption keys, and a plurality of integrity keys, wherein the plurality of encryption keys and the plurality of integrity keys are associated with a plurality of NAS links between the user equipment and an access and mobility management function (AMF) that stores a second NAS context comprising the plurality of encryption keys and the plurality of integrity keys; anda processor configured to encrypt an SMS message based on the first NAS context, generate an NAS message including the encrypted SMS message, and apply integrity protection to the NAS message based on the first NAS context.2. The user equipment of claim 1, further comprising:a transmitter configured to transmit the NAS message over a first NAS link selected from the plurality of NAS links between the user equipment and the AMF.3. The user equipment of claim 2, wherein the processor is configured to select a first encryption key from the plurality of encryption keys and a first integrity key from the plurality of integrity keys, and where in the first encryption key and the first integrity key correspond to the first NAS link.4. The user equipment of claim 3, wherein the processor is configured to encrypt the SMS message using the first encryption key and add the encrypted SMS message to a payload of the NAS message that includes an NAS header.5. The user equipment of claim 4, wherein the processor is configured to apply integrity protection to the NAS message using the first integrity key.6. The user equipment of claim 5, wherein the processor is configured to generate the first NAS context in response to the user equipment registering with the AMF.7. The user equipment of claim 1, wherein the plurality of NAS links comprise at least one of a fixed NAS link, a mobile NAS link, and a non-Third Generation Partnership Project (non-3GPP) NAS link.8. A user equipment comprising:a memory configured to store a first non-access stratum (NAS) context comprising an address of the user equipment, a plurality of encryption keys, and a plurality of integrity keys, wherein the plurality of encryption keys and the plurality of integrity keys are associated with a plurality of NAS links between the user equipment and an access and mobility management function (AMF) that stores a second NAS context comprising the plurality of encryption keys and the plurality of integrity keys; anda processor configured to verify the integrity of an NAS message based on the first context and decrypt an SMS message included in the NAS message based on the first NAS context.9. The user equipment of claim 8, further comprising:a receiver configured to receive the NAS message over a first NAS link selected from the plurality of NAS links between the user equipment and the AMF.10. The user equipment of claim 9, wherein the processor is configured to select a first encryption key from the plurality of encryption keys and a first integrity key from the plurality of integrity keys, and where in the first encryption key and the first integrity key correspond to the first NAS link.11. The user equipment of claim 10, wherein the processor is configured to decrypt the SMS message using the first encryption key.12. The user equipment of claim 11, wherein the processor is configured to verify the integrity of the NAS message using the first integrity key.13. The user equipment of claim 12, wherein the processor is configured to generate the first NAS context in response to the user equipment registering with the AMF.14. The user equipment of claim 8, wherein the plurality of NAS links comprise at least one of a fixed NAS link, a mobile NAS link, and a non-Third Generation Partnership Project (non-3GPP) NAS link.15. A user equipment comprising:a memory configured to store a first non-access stratum (NAS) context comprising an address of the user equipment, a plurality of encryption keys, and a plurality of integrity keys, wherein the plurality of encryption keys and the plurality of integrity keys are associated with a plurality of NAS links between the user equipment and an access and mobility management function (AMF) that stores a second NAS context comprising the plurality of encryption keys and the plurality of integrity keys;a transceiver configured to transmit a mobile-originated NAS message and receive a mobile-terminated SAS message; anda processor configured to:generate the mobile-originated NAS message by encrypting a mobile-originated SMS message based on the first NAS context, adding the encrypted mobile-originated SMS message to the mobile-originated NAS message, and applying integrity protection to the mobile-originated NAS message based on the first NAS context, andprocess the mobile-terminated NAS message by verifying the integrity of the mobile-terminated NAS message based on the first NAS context and decrypting a mobile-terminated SMS message included in the mobile-terminated NAS message based on the first NAS context.16. The user equipment of claim 15, wherein the processor is configured to select a first encryption key from the plurality of encryption keys and a first integrity key from the plurality of integrity keys, and where in the first encryption key and the first integrity key correspond to the first NAS link.17. The user equipment of claim 16, wherein the processor is configured to encrypt the mobile-originated SMS message using the first encryption key and add the encrypted mobile-originated SMS message to a payload of the mobile-originated NAS message that includes an NAS header.18. The user equipment of claim 17, wherein the processor is configured to apply integrity protection to the mobile-originated NAS message using the first integrity key.19. The user equipment of claim 16, wherein the processor is configured to decrypt the mobile-terminated SMS message using the first encryption key.20. The user equipment of claim 19, wherein the processor is configured to verify the integrity of the mobile-terminated NAS message using the first integrity key.21. The user equipment of claim 16, wherein the processor is configured to generate the first NAS context in response to the user equipment registering with the AMF.22. The user equipment of claim 15, wherein the plurality of NAS links comprise at least one of a fixed NAS link, a mobile NAS link, and a non-Third Generation Partnership Project (non-3GPP) NAS link.
微信群二維碼
意見(jiàn)反饋