| 摘要 |
FIELD: information technologies. ^ SUBSTANCE: method of mutual authentication provides protection of applications with mobile terminals that support inherited modules for subscriber identification (for instance, SIM GSM or R-UIM CDMA2000, which do not support mechanisms AKA 3G). Exchange of query-response keys is realized between bootstrapping server function (BSF) and mobile terminal (MT). BSF generates authentication inquiry and sends it to MT according to mechanism of server-authenticated open key. MT receives query and defines whether it originated from BSF, on the basis of bootstrapping server certificate. MT formulates reply to authentication query on the basis of keys derived from authentication query and earlier jointly used secret key. BSF receives authentication reply and determines whether it originated from MT. As soon as verification is completed, BSF and MT independently calculate key of application protection provision, which BSF sends to inquiring function of network application for establishment of protected communication with MT. ^ EFFECT: improved protection of applications. ^ 24 cl, 6 dwg |
