WO2009096738A3 - 홈 네트워크에서의 통신 보안성을 보장하는 방법 및 이를 위한 장치 - Google Patents

홈 네트워크에서의 통신 보안성을 보장하는 방법 및 이를 위한 장치 Download PDF

Info

Publication number
WO2009096738A3
WO2009096738A3 PCT/KR2009/000468 KR2009000468W WO2009096738A3 WO 2009096738 A3 WO2009096738 A3 WO 2009096738A3 KR 2009000468 W KR2009000468 W KR 2009000468W WO 2009096738 A3 WO2009096738 A3 WO 2009096738A3
Authority
WO
WIPO (PCT)
Prior art keywords
home network
controlled device
same
communication security
tls
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/KR2009/000468
Other languages
English (en)
French (fr)
Other versions
WO2009096738A2 (ko
Inventor
김형식
이주열
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Samsung Electronics Co Ltd
Original Assignee
Samsung Electronics Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Samsung Electronics Co Ltd filed Critical Samsung Electronics Co Ltd
Priority to CN200980112043.6A priority Critical patent/CN101983493B/zh
Priority to EP09705478.7A priority patent/EP2239881B1/en
Publication of WO2009096738A2 publication Critical patent/WO2009096738A2/ko
Publication of WO2009096738A3 publication Critical patent/WO2009096738A3/ko
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/2803Home automation networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/166Implementing security features at a particular protocol layer at the transport layer

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Automation & Control Theory (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Small-Scale Networks (AREA)
  • Telephonic Communication Services (AREA)
  • Computer And Data Communications (AREA)
  • Selective Calling Equipment (AREA)

Abstract

홈 네트워크는 중앙 통제(central administration)에 의한 인프라스트럭쳐에 의존하지 않고 동적으로 셋업되므로, 신뢰성 있는 제3자에 대한 가정 없이 키 분배 스킴을 구현할 필요가 있다. 홈 네트워크에서 제어 장치는 사용자로부터 입력받은 피제어 장치의PIN을 이용하여 피제어 장치와 TLS-PSK 프로토콜을 통해 등록 SAC( Secure Authenticated Channel) 을 생성하고, 이러한 채널을 통해 비밀 키를 공유하며, 공유된 비밀 키를 이용하여 TLS-PSK 프로토콜을 통해 생성된 서비스 SAC을 통해 피제어 장치의 서비스를 이용한다
PCT/KR2009/000468 2008-01-31 2009-01-30 홈 네트워크에서의 통신 보안성을 보장하는 방법 및 이를 위한 장치 Ceased WO2009096738A2 (ko)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN200980112043.6A CN101983493B (zh) 2008-01-31 2009-01-30 确保家用网络中的通信安全的方法及其装置
EP09705478.7A EP2239881B1 (en) 2008-01-31 2009-01-30 Method for ensuring communication security in home network and apparatus for same

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US2496708P 2008-01-31 2008-01-31
US61/024,967 2008-01-31
KR20080069749A KR101495722B1 (ko) 2008-01-31 2008-07-17 홈 네트워크에서의 통신 보안성을 보장하는 방법 및 이를위한 장치
KR10-2008-0069749 2008-07-17

Publications (2)

Publication Number Publication Date
WO2009096738A2 WO2009096738A2 (ko) 2009-08-06
WO2009096738A3 true WO2009096738A3 (ko) 2009-10-22

Family

ID=41205148

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2009/000468 Ceased WO2009096738A2 (ko) 2008-01-31 2009-01-30 홈 네트워크에서의 통신 보안성을 보장하는 방법 및 이를 위한 장치

Country Status (5)

Country Link
US (1) US8464055B2 (ko)
EP (1) EP2239881B1 (ko)
KR (1) KR101495722B1 (ko)
CN (1) CN101983493B (ko)
WO (1) WO2009096738A2 (ko)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10057239B2 (en) * 2009-12-17 2018-08-21 Pulse Secure, Llc Session migration between network policy servers
CN102186172B (zh) * 2011-04-13 2013-08-28 北京理工大学 用于共享密钥生成的自适应无线信道状态扫描方法
US9026784B2 (en) * 2012-01-26 2015-05-05 Mcafee, Inc. System and method for innovative management of transport layer security session tickets in a network environment
KR102269417B1 (ko) * 2013-10-28 2021-06-28 삼성전자주식회사 멀티 사용자들이 홈 네트워킹을 지원하는 어플리케이션 기반의 기기를 등록하는 방법 및 장치
IN2013CH06149A (ko) 2013-12-30 2015-07-03 Samsung Electronics Co Ltd
CN104581723A (zh) * 2014-12-10 2015-04-29 杭州赫智电子科技有限公司 一种客户端设备联网信息数据的应用方法及装置

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040012859A1 (en) * 2002-07-17 2004-01-22 Pentax Corporation Zoom lens system
KR20050088645A (ko) * 2004-03-02 2005-09-07 주식회사 케이티 터널링된 전송계층보안 방식을 이용한 가입자 아이디 획득방법
US20060174105A1 (en) * 2005-01-27 2006-08-03 Samsung Electronics Co., Ltd. Control device for creating one-time password using pre-input button code, home server for authenticating control device using one-time password, and method for authenticating control device with one-time password
KR20070062199A (ko) * 2005-12-12 2007-06-15 한국전자통신연구원 아이디/패스워드를 이용한 사용자 인증 방법
US20070234041A1 (en) * 2006-03-28 2007-10-04 Nokia Corporation Authenticating an application

Family Cites Families (43)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6263437B1 (en) * 1998-02-19 2001-07-17 Openware Systems Inc Method and apparatus for conducting crypto-ignition processes between thin client devices and server devices over data networks
US20030054810A1 (en) * 2000-11-15 2003-03-20 Chen Yih-Farn Robin Enterprise mobile server platform
EP1233570A1 (en) * 2001-02-16 2002-08-21 TELEFONAKTIEBOLAGET L M ERICSSON (publ) Method and system for establishing a wireless communications link
KR20030074826A (ko) * 2001-02-16 2003-09-19 텔레폰악티에볼라겟엘엠에릭슨(펍) 무선 통신 링크를 설정하는 방법 및 시스템
JP2004048660A (ja) * 2002-05-24 2004-02-12 Sony Corp 情報処理システムおよび方法、情報処理装置および方法、記録媒体、並びにプログラム
CN1180566C (zh) 2002-08-26 2004-12-15 联想(北京)有限公司 一种实现网络设备间安全可靠互连的方法
KR100906677B1 (ko) 2002-09-03 2009-07-08 엘지전자 주식회사 UPnP 네트워크의 원격지 보안 접속 시스템 및 방법
JP4246705B2 (ja) * 2002-09-30 2009-04-02 パナソニック株式会社 宅内端末装置及び通信システム
KR100493890B1 (ko) * 2003-01-28 2005-06-10 삼성전자주식회사 다양한 디바이스의 지원이 가능한 사용자 인터페이스 변환시스템 및 방법
US7644275B2 (en) * 2003-04-15 2010-01-05 Microsoft Corporation Pass-thru for client authentication
US7017181B2 (en) * 2003-06-25 2006-03-21 Voltage Security, Inc. Identity-based-encryption messaging system with public parameter host servers
US7685341B2 (en) * 2005-05-06 2010-03-23 Fotonation Vision Limited Remote control apparatus for consumer electronic appliances
KR100608575B1 (ko) * 2003-09-29 2006-08-03 삼성전자주식회사 자동 소유권 인증이 가능한 홈 네트워크 장치, 홈네트워크 시스템 및 그 방법
KR101044937B1 (ko) * 2003-12-01 2011-06-28 삼성전자주식회사 홈 네트워크 시스템 및 그 관리 방법
US7600113B2 (en) * 2004-02-20 2009-10-06 Microsoft Corporation Secure network channel
US20050240680A1 (en) * 2004-04-27 2005-10-27 Jose Costa-Requena Method and apparatus for a life management server
US7530098B2 (en) * 2004-04-28 2009-05-05 Scenera Technologies, Llc Device ownership transfer from a network
WO2005109209A1 (ja) * 2004-05-10 2005-11-17 Matsushita Electric Industrial Co., Ltd. コンテンツ利用システム
CN101006701A (zh) * 2004-08-16 2007-07-25 皇家飞利浦电子股份有限公司 用于在无线通用即插即用(UPnP)网络中建立安全环境的方法和系统
US7545932B2 (en) * 2004-10-29 2009-06-09 Thomson Licensing Secure authenticated channel
EP1805929B1 (en) * 2004-10-29 2010-08-11 Thomson Licensing Secure authenticated channel
KR100677152B1 (ko) * 2004-11-17 2007-02-02 삼성전자주식회사 사용자 바인딩을 이용한 홈 네트워크에서의 콘텐츠 전송방법
KR100678897B1 (ko) * 2004-11-23 2007-02-07 삼성전자주식회사 홈 네트워크 장치 간의 보안 연결을 위한 시스템 및 방법
KR100599131B1 (ko) * 2004-12-09 2006-07-12 삼성전자주식회사 홈 네트워크를 위한 보안장치 및 그의 보안 설정 방법
KR100704627B1 (ko) * 2005-04-25 2007-04-09 삼성전자주식회사 보안 서비스 제공 장치 및 방법
KR100781508B1 (ko) * 2005-04-28 2007-12-03 삼성전자주식회사 사용자에게 적응된 서비스 환경을 제공하는 방법 및 이를위한 장치
JP4358795B2 (ja) 2005-07-22 2009-11-04 日立ソフトウエアエンジニアリング株式会社 Tlsセッション情報の引継ぎ方法及びコンピュータシステム
US20070079113A1 (en) * 2005-09-30 2007-04-05 Amol Kulkarni Automatic secure device introduction and configuration
US8041035B2 (en) * 2005-12-30 2011-10-18 Intel Corporation Automatic configuration of devices upon introduction into a networked environment
JP4638821B2 (ja) 2006-01-05 2011-02-23 パナソニック株式会社 ホームゲートウェイ
CN101438256B (zh) * 2006-03-07 2011-12-21 索尼株式会社 信息处理设备、信息通信系统、信息处理方法
JP2007272868A (ja) 2006-03-07 2007-10-18 Sony Corp 情報処理装置、情報通信システム、および情報処理方法、並びにコンピュータ・プログラム
US7882356B2 (en) * 2006-10-13 2011-02-01 Microsoft Corporation UPnP authentication and authorization
WO2008051052A1 (en) * 2006-10-26 2008-05-02 Samsung Electronics Co., Ltd. Method of synchronizing information shared between a plurality of universal plug and play devices and apparatus therefor
US8769284B2 (en) * 2006-12-29 2014-07-01 Nokia Corporation Securing communication
US8694783B2 (en) * 2007-01-22 2014-04-08 Samsung Electronics Co., Ltd. Lightweight secure authentication channel
KR101434569B1 (ko) * 2007-04-06 2014-08-27 삼성전자 주식회사 홈 네트워크에서 보안 서비스를 제공하는 장치 및 방법
US8782414B2 (en) * 2007-05-07 2014-07-15 Microsoft Corporation Mutually authenticated secure channel
CN103001940A (zh) * 2007-10-05 2013-03-27 交互数字技术公司 由wtru使用的用于建立安全本地密钥的方法
US8495375B2 (en) * 2007-12-21 2013-07-23 Research In Motion Limited Methods and systems for secure channel initialization
KR101478621B1 (ko) * 2008-01-15 2015-01-02 삼성전자주식회사 UPnP 네트워크에 다중으로 원격 접속 서비스를제공하는 UPnP 장치 및 그 방법
KR101499549B1 (ko) * 2008-01-15 2015-03-06 삼성전자주식회사 원격 접속 서비스를 제공하는 UPnP 장치 및 그 방법
KR101495723B1 (ko) * 2008-01-15 2015-02-25 삼성전자주식회사 복수의 원격 접속을 지원하는 UPnP(UniversalPlug and Play) RAS(Remote Access Server) 장치 및 그 방법

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040012859A1 (en) * 2002-07-17 2004-01-22 Pentax Corporation Zoom lens system
KR20050088645A (ko) * 2004-03-02 2005-09-07 주식회사 케이티 터널링된 전송계층보안 방식을 이용한 가입자 아이디 획득방법
US20060174105A1 (en) * 2005-01-27 2006-08-03 Samsung Electronics Co., Ltd. Control device for creating one-time password using pre-input button code, home server for authenticating control device using one-time password, and method for authenticating control device with one-time password
KR20070062199A (ko) * 2005-12-12 2007-06-15 한국전자통신연구원 아이디/패스워드를 이용한 사용자 인증 방법
US20070234041A1 (en) * 2006-03-28 2007-10-04 Nokia Corporation Authenticating an application

Also Published As

Publication number Publication date
CN101983493B (zh) 2014-11-19
US20090198998A1 (en) 2009-08-06
EP2239881A4 (en) 2013-11-27
EP2239881A2 (en) 2010-10-13
US8464055B2 (en) 2013-06-11
WO2009096738A2 (ko) 2009-08-06
KR20090084632A (ko) 2009-08-05
KR101495722B1 (ko) 2015-02-26
EP2239881B1 (en) 2020-04-01
CN101983493A (zh) 2011-03-02

Similar Documents

Publication Publication Date Title
CN100389555C (zh) 一种适合有线和无线网络的接入认证方法
US8831224B2 (en) Method and apparatus for secure pairing of mobile devices with vehicles using telematics system
CN105577680B (zh) 密钥生成方法、解析加密数据方法、装置及密钥管理中心
TW200640220A (en) System and method for providing a multi-credential authentication protocol
RU2008146960A (ru) Способ и система предоставления защищенной связи с использованием сотовой сети для множества устройств специализированной связи
WO2009110703A3 (ko) 홈 네트워크에서 인증 정보를 관리하는 방법 및 그 장치
NO20080532L (no) Distribuert enkel logg-pa-tjeneste
WO2011017099A3 (en) Secure communication using asymmetric cryptography and light-weight certificates
MX2010003403A (es) Metodo y estructura de autentificacion.
WO2008078101A3 (en) Method and device for mutual authentication
WO2007063420A3 (en) Authentication in communications networks
TW200742384A (en) Communication system, key managing/distributing server, terminal apparatus, and data communication method used therefor, and program
WO2012040324A3 (en) Shared secret establishment and distribution
GB2464552B (en) Authentication system and method for authenticating a user terminal with an access node providing restricted access to a communication network
WO2015179849A3 (en) Network authentication system with dynamic key generation
WO2010117587A3 (en) Identity management services provided by network operator
WO2011068738A3 (en) Systems and methods for securing data in motion
WO2011014043A3 (en) Method and apparatus for creating security context and managing communication in mobile communication network
TW200733639A (en) Peer-to-peer communication in AD HOC wireless network
WO2003032126A3 (en) Multi-factor authentication system
WO2012141555A3 (en) Method and apparatus for providing machine-to-machine service
WO2006120288A3 (en) Method for distributing certificates in a communication system
AU2003239059A1 (en) An arrangement and a method relating to ip network access
WO2009096738A3 (ko) 홈 네트워크에서의 통신 보안성을 보장하는 방법 및 이를 위한 장치
WO2009098130A3 (en) Method and system for mobile device credentialing

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200980112043.6

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09705478

Country of ref document: EP

Kind code of ref document: A2

WWE Wipo information: entry into national phase

Ref document number: 2009705478

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: DE