| 发明名称 |
AUTONOMOUS AND SEAMLESS KEY DISTRIBUTION MECHANISM |
| 摘要 |
A satellite system comprises first and second devices, one of the first and second devices being a satellite and the other one of the first and second devices being a device arranged to send signals to the satellite and/or receive signals from the satellite. A session key can be distributed in the satellite system by obtaining the session key at the first device, protecting the session key at the first device, based on a private key of the first device and a public key of the second device, and transmitting the protected session key from the first device to the second device. The second device can receive the protected session key from the first device and obtain the session key from the protected session key based on a public key of the first device and a private key of the second device. Replay detection information can be transmitted with the protected session key, for determining whether the session key has been transmitted previously. The protected session key can be transmitted by inserting a predetermined number of bytes of the protected session key into each frame of a data stream, for example a telemetry (TM) data stream as defined in the Consultative Committee for Space Data Systems (CCSDS) TM protocol. Validity information can be transmitted with the protected session key, defining a period in which the session key is valid. The protected session key can be transmitted bonded to a command message, for example a telecommand (TC) as defined in the CCSDS TC protocol. |
| 申请公布号 |
US2016056957(A1) |
申请公布日期 |
2016.02.25 |
| 申请号 |
US201414780988 |
申请日期 |
2014.03.28 |
| 申请人 |
AIRBUS DEFENCE AND SPACE LIMITED |
发明人 |
CLARKE Steve;MCCOY Thomas |
| 分类号 |
H04L9/08;H04W12/04;H04L29/06 |
主分类号 |
H04L9/08 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method of transmitting a session key in a satellite system comprising first and second devices, one of the first and second devices being a satellite and the other one of the first and second devices being a device arranged to send signals to the satellite and/or receive signals from the satellite, the method comprising:
obtaining the session key at the first device; protecting the session key at the first device, based on a private key of the first device and a public key of the second device; and transmitting the protected session key from the first device to the second device. |
| 地址 |
Hertfordshire GB |
