首页> 外国专利> METHOD AND DEVICES ALLOWING SECURE COMMUNICATION PROTECTED AGAINST FLOODING AND DENIAL OF SERVICE (DoS) ATTACKS IN A TELECOMMUNICATIONS NETWORK

METHOD AND DEVICES ALLOWING SECURE COMMUNICATION PROTECTED AGAINST FLOODING AND DENIAL OF SERVICE (DoS) ATTACKS IN A TELECOMMUNICATIONS NETWORK

机译：允许针对通信网络中的洪水和拒绝服务（DoS）攻击进行安全通信的方法和设备

页面导航

摘要
著录项
相似文献

摘要

The invention relates to a method allowing secure communication in a telecommunications network, in which a transaction between an entity A and an entity B of the network comprises the following steps, namely: entity A sends an authorisation request to an authorisation server S, in which entity A is identified and authenticated; entity A informs the authorisation server S of the intention thereof to communicate with entity B; the authorisation server S determines a secret key K_SBthat it shares with entity B; the authorisation server S creates a session key K_AB,Nwhich it sends to entity A, said session key K_AB,Nbeing a one-way function of the secret key K_SB and also being a function of an integer N, known as the transaction number, assigned to said transaction; the authorisation server S also creates a transaction identifier which is a function dependent on at least said transaction number N in a non-reversible manner; the authorisation server S provides entity B with elements comprising at least the transaction identifier; entity B checks at least that the value of the received transaction identifier appears in a set of values pre-calculated by entity B and corresponding to at least one predicted value for the transaction number; and, if this is the case, entity B first deduces therefrom the current value of the transaction number N and subsequently the value of the session key K_AB,N.

机译：本发明涉及一种允许在电信网络中进行安全通信的方法，其中，网络的实体 A 与实体 B 之间的事务包括以下步骤，即：实体 A 向授权服务器 S 发送授权请求，授权服务器 S 在其中标识和认证实体A;实体 A 向授权服务器 S 通知其与实体 B 通信的意图;授权服务器 S 确定与实体 B K _{SB >;授权服务器 S 创建一个会话密钥 K _{AB，N ，并将其发送给实体 A < / I>，表示会话密钥 K _{AB，N 是秘密密钥 K 的单向功能_{SB ，并且也是分配给所述交易的整数 N （称为交易号）的函数;授权服务器 S 还以不可逆的方式创建交易标识符，该交易标识符是至少依赖于所述交易号 N 的功能;授权服务器 S 向实体 B 提供至少包括交易标识符的元素;实体 B 至少检查接收到的交易标识符的值是否出现在由实体 B 预先计算的一组值中，并且该值对应于交易的至少一个预测值数;如果是这种情况，则实体 B 首先从中推导出交易号 N 的当前值，然后推论会话密钥 K _AB，N。}}}} 展开▼

著录项

公开/公告号WO2011039460A3

专利类型

公开/公告日2012-04-05

原文格式PDF

申请/专利权人 FRANCE TELECOM;BATTISTELLO PATRICK;GILBERT HENRI;
展开▼

申请/专利号WO2010FR52028

发明设计人 BATTISTELLO PATRICK;GILBERT HENRI;
展开▼

申请日2010-09-28

分类号H04L9/08;H04L9/32;H04L29/06;

国家 WO

入库时间 2022-08-21 17:19:29

相似文献

专利

外文文献

中文文献

1. 允许电信网络中的安全通信而免于服务的拒绝(DoS)和浸灌攻击的方法和装置 [P] . 中国专利： CN102668497B . 2015.03.04

2. 允许电信网络中的安全通信而免于服务的拒绝(DoS)和浸灌攻击的方法和装置 [P] . 中国专利： CN102668497A . 2012-09-12

3. METHOD AND DEVICES ALLOWING COMMUNICATION SECURE AGAINST DENIAL OF SERVICES (DOS) AND AGAINST FLOODING ATTACKS IN A TELECOMMUNICATIONS NETWORK [P] . 欧洲知识产权局专利： EP2484084B1 . 2019-03-27

机译：允许拒绝服务（DOS）的通信安全和电信网络中的洪水攻击的方法和设备

4. METHOD AND DEVICES ALLOWING COMMUNICATION SECURE AGAINST DENIAL OF SERVICES (DOS) AND AGAINST FLOODING ATTACKS IN A TELECOMMUNICATIONS NETWORK [P] . 欧洲知识产权局专利： EP2484084A2 . 2012-08-08

机译：允许拒绝服务（DOS）的通信安全和电信网络中的洪水攻击的方法和设备

5. DENIAL-OF-SERVICE ATTACK PROTECTING METHOD, DENIAL-OF-SERVICE ATTACK PROTECTING SYSTEM, DENIAL-OF-SERVICE ATTACK PROTECTING DEVICE, REPEATER, DENIAL-OF-SERVICE ATTACK PROTECTING PROGRAM, AND PROGRAM FOR REPEATER [P] . 韩国专利： KR20060063932A . 2006-06-12

机译：服务拒绝攻击保护方法，服务拒绝攻击保护系统，服务拒绝攻击保护设备，中继器，服务拒绝攻击保护程序以及中继器程序

1. Intrusion Detection System for Denial-of-Service flooding attacks in SIP communication networks [J] . Sven Ehlert, Yacine Rebahi, Thomas Magedanz International Journal of Security and Networks . 2009,第3期

2. Machine learning approach for secure communication in wireless video sensor networks against denial‐of‐service attacks [J] . Swaminathan Ramesh, Calpakkam Yaashuwanth, Bala Anand Muthukrishnan International journal of communication systems . 2020,第12期

3. A Bayesian game model and network availability model for small cells under denial of service (DoS) attack in 5G wireless communication network [J] . Lalropuia K. C., Gupta Vandana Wireless Networks . 2020,第1期

4. The SYN Flood Denial-of-Service Attack in a Protected Network [C] . Erin A. Thead 8th World Multi-Conference on Systemics, Cybernetics and Informatics(SCI 2004) vol.10: Systemics and Information Systems, Technologies and Applications . 2004

5. On network-layer packet traceback: Tracing denial-of-service (DoS) and distributed denial-of-service (DDoS) attacks. [D] . Wu, Chien-Lung. 2004

6. A Quality of Service-Aware Secured Communication Scheme for Internet of Things-Based Networks [O] . Fazlullah Khan, Ateeq ur Rehman, Abid Yahya, 2019

7. Modeling the Identification of the Profile of Cyber Attacks Based on Analysis of the Device Behavior in the Telecommunication Services Provider Network [O] . I.P. Bolodurina, D.I. Parfenov, L.S. Zabrodina, 2019

1. Method of Distribution Network Resources after Restoration, the Networks MPLS-TE Use of Various Telecommunications Technologies to Construct Backbone Networks [J] . Mohammad Alhihi . 通讯、网络与系统学国际期刊（英文） . 2017,第11期

2. Hadoop Based Defense Solution to Handle Distributed Denial of Service (DDoS) Attacks [J] . Shweta Tripathi ,Brij Gupta ,Ammar Almomani . 信息安全（英文） . 2013,第3期

3. A Secure Routing Method for Detecting False Reports and Wormhole Attacks in Wireless Sensor Networks [J] . Hyeon Myeong Choi ,Su Man Nam ,Tae Ho Cho . 无线传感网络（英文） . 2013,第3期

4. Experimental Evaluation of Juniper Network's Netscreen-5GT Security Device against Layer4 Flood Attacks [J] . Sanjeev Kumar ,Raja Sekhar Reddy Gade . 信息安全（英文） . 2011,第1期

5. Cache Hit Ratio Maximization in Device-to-Device Communications Overlaying Cellular Networks [J] . Liang Zhong ,Xueqian Zheng ,Yong Liu . 中国通信 . 2020,第002期

6. 针对VoIP系统的拒绝服务攻击研究 [C] . 郑康锋 ,杨义先 ,钮心忻 . 第十届全国青年通信学术会议 . 2005

7. 分布式拒绝服务DDoS攻击检测与防范方法研究 [A] . 罗淇方 . 2006