首页>
外国专利>
METHOD AND DEVICES ALLOWING SECURE COMMUNICATION PROTECTED AGAINST FLOODING AND DENIAL OF SERVICE (DoS) ATTACKS IN A TELECOMMUNICATIONS NETWORK
METHOD AND DEVICES ALLOWING SECURE COMMUNICATION PROTECTED AGAINST FLOODING AND DENIAL OF SERVICE (DoS) ATTACKS IN A TELECOMMUNICATIONS NETWORK
展开▼
机译:允许针对通信网络中的洪水和拒绝服务(DoS)攻击进行安全通信的方法和设备
展开▼
页面导航
摘要
著录项
相似文献
摘要
The invention relates to a method allowing secure communication in a telecommunications network, in which a transaction between an entity A and an entity B of the network comprises the following steps, namely: entity A sends an authorisation request to an authorisation server S, in which entity A is identified and authenticated; entity A informs the authorisation server S of the intention thereof to communicate with entity B; the authorisation server S determines a secret key KSB that it shares with entity B; the authorisation server S creates a session key KAB,N which it sends to entity A, said session key KAB,N being a one-way function of the secret key KSB and also being a function of an integer N, known as the transaction number, assigned to said transaction; the authorisation server S also creates a transaction identifier which is a function dependent on at least said transaction number N in a non-reversible manner; the authorisation server S provides entity B with elements comprising at least the transaction identifier; entity B checks at least that the value of the received transaction identifier appears in a set of values pre-calculated by entity B and corresponding to at least one predicted value for the transaction number; and, if this is the case, entity B first deduces therefrom the current value of the transaction number N and subsequently the value of the session key KAB,N.展开▼
机译:本发明涉及一种允许在电信网络中进行安全通信的方法,其中,网络的实体 A I>与实体 B I>之间的事务包括以下步骤,即:实体 A I>向授权服务器 S I>发送授权请求,授权服务器 S I>在其中标识和认证实体A;实体 A I>向授权服务器 S I>通知其与实体 B I>通信的意图;授权服务器 S I>确定与实体 B I共享的密钥 K I> SB I> Sub> >;授权服务器 S I>创建一个会话密钥 K I> AB,N I> Sub>,并将其发送给实体 A < / I>,表示会话密钥 K I> AB,N I> Sub>是秘密密钥 K I>的单向功能 SB I> Sub>,并且也是分配给所述交易的整数 N I>(称为交易号)的函数;授权服务器 S I>还以不可逆的方式创建交易标识符,该交易标识符是至少依赖于所述交易号 N I>的功能;授权服务器 S I>向实体 B I>提供至少包括交易标识符的元素;实体 B I>至少检查接收到的交易标识符的值是否出现在由实体 B I>预先计算的一组值中,并且该值对应于交易的至少一个预测值数;如果是这种情况,则实体 B I>首先从中推导出交易号 N I>的当前值,然后推论会话密钥 K I > AB,N。 I> Sub>
展开▼