| 发明名称 | Authentication and secure channel setup for communication handoff scenarios | ||
| 摘要 | Persistent communication layer credentials generated on a persistent communication layer at one network may be leveraged to perform authentication on another. For example, the persistent communication layer credentials may include application-layer credentials derived on an application layer. The application-layer credentials may be used to establish authentication credentials for authenticating a mobile device for access to services at a network server. The authentication credentials may be derived from the application-layer credentials of another network to enable a seamless handoff from one network to another. The authentication credentials may be derived from the application-layer credentials using reverse bootstrapping or other key derivation functions. The mobile device and/or network entity to which the mobile device is being authenticated may enable communication of authentication information between the communication layers to enable authentication of a device using multiple communication layers. | ||
| 申请公布号 | US9614831(B2) | 申请公布日期 | 2017.04.04 |
| 申请号 | US201514684906 | 申请日期 | 2015.04.13 |
| 申请人 | InterDigital Patent Holdings, Inc. | 发明人 | Shah Yogendra C.;Cha Inhyok;Schmidt Andreas;Guccione Louis J.;Case Lawrence;Leicher Andreas;Targali Yousif |
| 分类号 | G06F21/00;H04L29/06;H04W12/08;H04W12/06;H04W36/00;H04W12/04 | 主分类号 | G06F21/00 |
| 代理机构 | Baker & Hostetler LLP | 代理人 | Baker & Hostetler LLP |
| 主权项 | 1. A method for generating an authentication credential for use in an authentication of a mobile device, the method comprising: establishing, via an application layer between the mobile device and a network server, an application-layer credential that is shared with the network server, wherein the application-layer credential is configured to authenticate the mobile device on the application layer for receiving a service from the network server using a first network; discovering a network communication entity on a second network; and generating, based on the application-layer credential, the authentication credential for performing authentication on a communication layer of the second network, wherein the authentication at the second network enables the mobile device to switch from the first network to the second network and receive the service from the network server using the second network, the application-layer credential surviving the switch from the first network to the second network. | ||
| 地址 | Wilmington DE US | ||