| 发明名称 | Systems and methods for securing network communications | ||
| 摘要 | Secure communications may be established amongst network entities for performing authentication and/or verification of the network entities. For example, a user equipment (UE) may establish a secure channel with an identity provider, capable of issuing user identities for authentication of the user/UE. The UE may also establish a secure channel with a service provider, capable of providing services to the UE via a network. The identity provider may even establish a secure channel with the service provider for performing secure communications. The establishment of each of these secure channels may enable each network entity to authenticate to the other network entities. The secure channels may also enable the UE to verify that the service provider with which it has established the secure channel is an intended service provider for accessing services. | ||
| 申请公布号 | US8850545(B2) | 申请公布日期 | 2014.09.30 |
| 申请号 | US201213428836 | 申请日期 | 2012.03.23 |
| 申请人 | InterDigital Patent Holdings, Inc. | 发明人 | Cha Inhyok;Guccione Louis J.;Schmidt Andreas;Leicher Andreas;Shah Yogendra C. |
| 分类号 | H04L29/06;H04W12/06;H04L29/08;H04L9/32;G06F21/33;G06F21/42 | 主分类号 | H04L29/06 |
| 代理机构 | Baker & Hostetler LLP | 代理人 | Baker & Hostetler LLP |
| 主权项 | 1. In a system comprising a user equipment (UE), a service provider associated with a cloud-hosted virtual machine, and an identity provider comprising a local identity provider, a method for establishing secure communications between the service provider and the UE, the method comprising: establishing, at the UE, a secure channel between the UE and the service provider; sending, to the identity provider, authentication parameters for performing an authentication of the UE with the identity provider; determining, at the UE, an authentication assertion that indicates a successful authentication of the UE; and verifying, at the UE, that the service provider with which the secure channel has been established is an intended service provider for performing authentication for access to services, wherein the service provider is verified using at least one parameter generated during the establishment of the secure channel, and wherein establishing the secure channel between the UE and the service provider comprises establishing the secure channel between the local identity provider and the service provider associated with the cloud-hosted virtual machine to enable access to services provided by the cloud-hosted virtual machine. | ||
| 地址 | Wilmington DE US | ||