| 摘要 |
An authentication method, system and device are provided by the embodiments of the present invention. Said method includes the following steps: an Application Server (AS) receives an AS access request, which carries a user identifier, transmitted by a User Equipment (UE); the AS generates a key generation request based on the user identifier and transmits it to a network side; the AS receives the key transmitted by the network side, and authenticates the UE according to the key. In the present invention, generating the key between a terminal without a card and the AS is implemented, and the AS authenticates the UE using the generated key, and the security of the data transmission is improved. |
| 主权项 |
1. A method for authenticating a cardless terminal, the method comprising:
receiving, by an Application Server (AS), an AS access request containing a user identifier (ID) from a User Equipment (UE), wherein the UE is the cardless terminal; generating, by the AS, a key generation request containing the user ID and an AS ID; transmitting the key generation request to a gateway equipment at a network side, wherein the gateway equipment forms a authentication data request according to the key generation request; transmitting, by the gateway equipment, the authentication data request to an Home Subscriber Station (HSS), wherein the authentication data request comprises the user ID; generating, by the HSS, a first key, according to the user ID contained in the authentication data request, transmitting, by the HSS, the first key to the gateway equipment; generating, by the gateway equipment, a second key, according to the first key, the AS ID and a secret key parameter; receiving, by the AS, the second key generated by the gateway equipment; and authenticating, by the AS, the UE according to the second key. |
