| 发明名称 | Method and apparatus for provisioning a temporary identity module using a key-sharing scheme | ||
| 摘要 | A method and apparatus for providing a temporary identity module to a device (1) in a communication network. An RO Server (2) receives a request for an identity module (51) from the device (1). It then obtains an identity module and generates an encryption key (S4, S5). The encryption key is partitioned into a plurality of slices such that no slice comprises the whole encryption key (S6). Each slice is sent (S8, S9) to respective further devices (10, 11) accessible by the server (2) such that no single further device (10, 11) receives sufficient slices to reconstruct the encryption key. A location key is generated (S10) that identifies each slice and the further device (10, 11) to which each slice has been sent. The identity module is encrypted using the encryption key (S11) and sent to the device (1) along with the location key (S12). The device (1) can subsequently use the location key to obtain the slices and reconstruct the encryption key. | ||
| 申请公布号 | US9282084(B2) | 申请公布日期 | 2016.03.08 |
| 申请号 | US201013990524 | 申请日期 | 2010.12.07 |
| 申请人 | Telefonaktiebolaget L M Ericsson (publ) | 发明人 | Hjelm Johan;Åström Michael;Montero Arizmendi Gerardo |
| 分类号 | H04L29/06;H04L9/08;H04W12/04;H04W12/06 | 主分类号 | H04L29/06 |
| 代理机构 | Murphy, Bilak & Homiller, PLLC | 代理人 | Murphy, Bilak & Homiller, PLLC |
| 主权项 | 1. A device for use in a communication network, the device comprising: transmitter circuitry; receiver circuitry; and processor circuitry, operatively connected to the transmitter circuitry and receiver circuit and configured to: send to a server, using the transmitter circuitry, a request for an identity module for use in registering with the communication network;receive from the server, using the receiver circuitry and in response to the request, an encrypted identity module and a location key, the location key comprising the location of encryption key slices stored at further devices;send a request for an encryption key slice to each further device identified by the location key, using the receiver circuitry and in response to receiving the encrypted identity module and the location key;receive from each further device, using the receiver circuitry and in response to the request for an encryption key slice, an encryption key slice;reconstruct the received encryption key slices to form an encryption key; anduse the encryption key to decrypt the received encrypted identity module. | ||
| 地址 | Stockholm SE | ||