摘要 |
<p>An authentication process for a cellular phone network wherein if a subscriber attempts a call (100) an encrypted result, or a signed response, previously stored in the subscriber's cell phone, is transmitted (101) to a Mobile Switching Center (MSC). If the signed response matches the encrypted result (102) previously stored in an Authentication Center (AuC) access is granted and the call proceeds (104), if not the call is rejected (103). The Authentication Center (AuC) generates a random number (105) and derives a new encrypted result by means of a CAVE algorithm using the random number and the subscriber's unique key previously stored in a database at the AuC (106). This new encrypted result is stored (107) at the AuC replacing the previously-stored encrypted result, and a Mobile Switching Center (MSC) transmits the new random number to the cellular phone (108). The cellular phone then derives a new encrypted result, or a signed response (109). The new signed result is stored in the cellular phone replacing the previously stored signed response (110).</p> |