최소 단어 이상 선택하여야 합니다.
최대 10 단어까지만 선택 가능합니다.
다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
NTIS 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
DataON 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
Edison 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
Kafe 바로가기국가/구분 | United States(US) Patent 등록 |
---|---|
국제특허분류(IPC7판) |
|
출원번호 | US-0932514 (2004-09-01) |
등록번호 | US-8724803 (2014-05-13) |
발명자 / 주소 |
|
출원인 / 주소 |
|
대리인 / 주소 |
|
인용정보 | 피인용 횟수 : 0 인용 특허 : 300 |
A method and apparatus for secure generation of a short-term key SK for viewing information content in a Multicast-broadcast-multimedia system are described. A short-term key is generated by a memory module residing in user equipment (UE) only when the source of the information used to generate the
A method and apparatus for secure generation of a short-term key SK for viewing information content in a Multicast-broadcast-multimedia system are described. A short-term key is generated by a memory module residing in user equipment (UE) only when the source of the information used to generate the short-term key can be validated. A short-term key can be generated by a Broadcast Access Key (BAK) or a derivative of BAK and a changing value with a Message Authentication Code (MAC) appended to the changing value. A short-term key (SK) can also be generated by using a private key and a short-term key (SK) manager with a corresponding public key distributed to the memory module residing in the user equipment (UE), using a digital signature.
1. A method of securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising: receiving a first value and a first digital signature from a short-term key manager of
1. A method of securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising: receiving a first value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;determining that a source of the first digital signature is the short-term key manager; andcomputing the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key. 2. The method of claim 1, wherein the first value is determined by the short-term key manager. 3. The method of claim 1, wherein the first value includes a time stamp. 4. The method of claim 1, further comprising transmitting the computed short-term key from the secure memory to the mobile equipment. 5. A method of obtaining an encryption key in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising: receiving a packet index value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;determining that a source of the digital signature is the short-term key manager; andcomputing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key. 6. The method of claim 5, wherein the packet index value includes a sequence number. 7. The method of claim 5, further comprising transmitting the encryption key to the mobile equipment. 8. An integrated circuit, comprising: means for verifying a first digital signature using a signature scheme based on a private key and a public key, wherein the public key is stored in a first secure memory of the integrated circuit and the signature scheme is stored in the first secure memory, wherein the first digital signature is provided by a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the digital signature is formed using the private key, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the integrated circuit;means for determining that a source of the first digital signature is the short-term key manager; andmeans for computing a short-term key using a first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the first value is provided by the short-term key manager, and wherein the mobile equipment accesses the content using the short-term key. 9. The integrated circuit of claim 8, wherein the first value is determined by the short-term key manager. 10. The integrated circuit of claim 8, wherein the first value includes a time stamp. 11. A mobile station, comprising: means for receiving a first value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;means for verifying the first digital signature using a signature scheme based on the private key and a public key;means for storing the public key in a first secure memory of the mobile station, wherein the public key stored in the secure memory is not accessible to a mobile equipment of the mobile station;means for storing the signature scheme in the first secure memory;means for determining that a source of the first digital signature is the short-term key manager; andmeans for computing a short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key. 12. The mobile station of claim 11, wherein the first value is determined by the short-term key manager. 13. The mobile station of claim 11, wherein the first value includes a time stamp. 14. A non-transitory computer readable medium embodying a method for securely obtaining a short-term key for accessing content using a mobile station in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising: receiving a first value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;determining that a source of the first digital signature is the short-term key manager; andcomputing the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the short-term key. 15. The non-transitory computer readable medium of claim 14, wherein the first value includes a time stamp. 16. An integrated circuit, comprising: means for verifying a first digital signature using a signature scheme based on a private key and a public key, wherein the public key is stored in a first secure memory of the integrated circuit and the signature scheme is stored in a first secure memory, wherein the first digital signature is provided by a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from the private key; and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the integrated circuit;means for determining that a source of the digital signature is the short-term key manager; andmeans for computing an encryption key using a packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the packet index value is provided by the short-term key manager, and wherein the mobile equipment accesses the content using the encryption key. 17. The integrated circuit of claim 16, wherein the packet index value includes a sequence number. 18. A mobile station, comprising: means for receiving a packet index value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;means for verifying the first digital signature using a signature scheme based on the private key and a public key;means for storing the public key in a first secure memory of the mobile station, wherein the public key stored in the first secure memory is not accessible to a mobile equipment of the mobile station;means for storing the signature scheme in the first secure memory;means for determining that a source of the first digital signature is the short-term key manager; andmeans for computing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key. 19. The mobile station of claim 18, wherein the packet index value includes a sequence number. 20. A non-transitory computer readable medium embodying a method for obtaining an encryption key in a communication system for point-to-multipoint transmission of content to mobile stations, the method comprising: receiving a packet index value and a first digital signature from a short-term key manager of the communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key;verifying the first digital signature using a signature scheme based on the private key and a public key, wherein the public key is stored in a first secure memory of a receiving mobile station and the signature scheme is stored in the first secure memory, and wherein the public key stored in the secure memory is not accessible to a mobile equipment of the receiving mobile station;determining that a source of the digital signature is the short-term key manager; andcomputing an encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature, wherein the mobile equipment accesses the content using the encryption key. 21. The non-transitory computer readable medium of claim 20, wherein the packet index value includes a sequence number. 22. A mobile station, comprising: a mobile equipment configured to: receive a packet index value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key, andaccess the content using an encryption key; and a memory module configured to:verify the first digital signature using a signature scheme based on the private key and a public key,store the public key, wherein the public key stored in the memory module is not accessible to the mobile equipment of the mobile station,store the signature scheme,determine that a source of the first digital signature is the short-term key manager, andcompute the encryption key using the packet index value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature. 23. The mobile station of claim 22, wherein the packet index value includes a sequence number. 24. A mobile station, comprising: a mobile equipment configured to:receive a first value and a first digital signature from a short-term key manager of a communication system for point-to-multipoint transmission of content to mobile stations, wherein the first digital signature is formed from a private key, andaccess the content using a short-term key; and a memory module configured to:verify the first digital signature using a signature scheme based on the private key and a public key,store the public key, wherein the public key stored in the memory module is not accessible to the mobile equipment of the mobile station,store the signature scheme,determine that a source of the first digital signature is the short-term key manager, andcompute the short-term key using the first value and the public key provided that the short-term key manager is determined to have been the source of the first digital signature. 25. The mobile station of claim 24, wherein the first value is determined by the short-term key manager. 26. The mobile station of claim 24, wherein the first value includes a time stamp.
Copyright KISTI. All Rights Reserved.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.