[go: up one dir, main page]

WO2008146395A1 - ネットワーク中継装置、通信端末及び暗号化通信方法 - Google Patents

ネットワーク中継装置、通信端末及び暗号化通信方法 Download PDF

Info

Publication number
WO2008146395A1
WO2008146395A1 PCT/JP2007/061130 JP2007061130W WO2008146395A1 WO 2008146395 A1 WO2008146395 A1 WO 2008146395A1 JP 2007061130 W JP2007061130 W JP 2007061130W WO 2008146395 A1 WO2008146395 A1 WO 2008146395A1
Authority
WO
WIPO (PCT)
Prior art keywords
communication terminal
relay device
network relay
encryption
communication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/JP2007/061130
Other languages
English (en)
French (fr)
Inventor
Atsushi Kamikura
Shinkichi Ikeda
Yuji Hashimoto
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Panasonic Corp
Original Assignee
Panasonic Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Panasonic Corp filed Critical Panasonic Corp
Priority to EP07744518A priority Critical patent/EP2161872A1/en
Priority to JP2009516131A priority patent/JPWO2008146395A1/ja
Priority to US12/598,591 priority patent/US20100119069A1/en
Priority to PCT/JP2007/061130 priority patent/WO2008146395A1/ja
Publication of WO2008146395A1 publication Critical patent/WO2008146395A1/ja
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • H04L9/0841Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/76Proxy, i.e. using intermediary entity to perform cryptographic operations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/164Implementing security features at a particular protocol layer at the network layer

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

 暗号化通信開始のトリガ発生から実際に暗号化通信が開始されるまでの時間を短縮する。  通信端末11とゲートウェイ装置25との間の通信の暗号化に用いる鍵情報を交換するための鍵交換処理を行うに際し、ネットワーク中継装置15で中継し、鍵交換処理の内容を前半処理と後半処理との2つに区分し、前半処理をネットワーク中継装置15において通信端末11に代わって実行し、「IKE SA」を確立する。そして、前半処理の結果得られた情報をネットワーク中継装置15から通信端末11に転送する。その後、通信端末11とゲートウェイ装置25との間で、鍵交換処理の後半処理を実行し、通信端末11とゲートウェイ装置25とで共通の鍵情報を共有して「IPsec SA」を確立し、この鍵情報を用いて暗号化通信を行う。
PCT/JP2007/061130 2007-05-31 2007-05-31 ネットワーク中継装置、通信端末及び暗号化通信方法 Ceased WO2008146395A1 (ja)

Priority Applications (4)

Application Number Priority Date Filing Date Title
EP07744518A EP2161872A1 (en) 2007-05-31 2007-05-31 Network relay device, communication terminal, and encryption communication method
JP2009516131A JPWO2008146395A1 (ja) 2007-05-31 2007-05-31 ネットワーク中継装置、通信端末及び暗号化通信方法
US12/598,591 US20100119069A1 (en) 2007-05-31 2007-05-31 Network relay device, communication terminal, and encrypted communication method
PCT/JP2007/061130 WO2008146395A1 (ja) 2007-05-31 2007-05-31 ネットワーク中継装置、通信端末及び暗号化通信方法

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2007/061130 WO2008146395A1 (ja) 2007-05-31 2007-05-31 ネットワーク中継装置、通信端末及び暗号化通信方法

Publications (1)

Publication Number Publication Date
WO2008146395A1 true WO2008146395A1 (ja) 2008-12-04

Family

ID=40074677

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2007/061130 Ceased WO2008146395A1 (ja) 2007-05-31 2007-05-31 ネットワーク中継装置、通信端末及び暗号化通信方法

Country Status (4)

Country Link
US (1) US20100119069A1 (ja)
EP (1) EP2161872A1 (ja)
JP (1) JPWO2008146395A1 (ja)
WO (1) WO2008146395A1 (ja)

Cited By (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2010158006A (ja) * 2008-12-23 2010-07-15 Intel Corp 無線セキュリティ処理の電力効率化用にトランスポート層のセキュリティプロトコルを拡張する方法
JP2010536241A (ja) * 2007-08-09 2010-11-25 アルカテル−ルーセント ユーエスエー インコーポレーテッド セキュリティアソシエーションをセットアップするためのブートストラッピング方法
JP2011508550A (ja) * 2007-12-26 2011-03-10 インターナショナル・ビジネス・マシーンズ・コーポレーション セキュリティ実施ポイントへのセキュリティ・アソシエーション情報の選択的ロードのための方法、装置、およびコンピュータ・プログラム
JP2011521581A (ja) * 2008-05-19 2011-07-21 キネテイツク・リミテツド 可動鍵装置を伴う量子鍵配送
JP2013026686A (ja) * 2011-07-15 2013-02-04 Sony Corp 通信装置及び通信方法、通信システム、並びにコンピューター・プログラム
JP2013509123A (ja) * 2009-10-26 2013-03-07 アルカテル−ルーセント プライベートデジタルコンテンツにアクセスするためのシステムおよび方法
JP2013077900A (ja) * 2011-09-29 2013-04-25 Oki Electric Ind Co Ltd セキュリティ処理代行システム、通信装置、代行装置、通信プログラム及びセキュリティ処理代行プログラム
US8639932B2 (en) 2008-10-27 2014-01-28 Qinetiq Limited Quantum key distribution
US8650401B2 (en) 2008-01-25 2014-02-11 Qinetiq Limited Network having quantum key distribution
US8654979B2 (en) 2008-05-19 2014-02-18 Qinetiq Limited Quantum key device
US8683192B2 (en) 2009-09-29 2014-03-25 Qinetiq Methods and apparatus for use in quantum key distribution
US8681982B2 (en) 2008-12-05 2014-03-25 Qinetiq Limited Method of establishing a quantum key for use between network nodes
US8749875B2 (en) 2008-12-08 2014-06-10 Qinetiq Limited Non-linear optical device
US8762728B2 (en) 2008-12-05 2014-06-24 Qinetiq Limited Method of performing authentication between network nodes
US8792791B2 (en) 2008-05-19 2014-07-29 Qinetiq Limited Multiplexed quantum key distribution
WO2014147836A1 (ja) * 2013-03-22 2014-09-25 株式会社日立製作所 ストレージシステムにおける暗号化機能の保守交換方法及びストレージ装置
US8855316B2 (en) 2008-01-25 2014-10-07 Qinetiq Limited Quantum cryptography apparatus
US8885828B2 (en) 2008-01-25 2014-11-11 Qinetiq Limited Multi-community network with quantum key distribution
US9148225B2 (en) 2008-01-28 2015-09-29 Qinetiq Limited Optical transmitters and receivers for quantum key distribution
JP2015220733A (ja) * 2014-05-21 2015-12-07 三菱電機株式会社 イニシエータ、レスポンダおよびセキュア通信方法
JP2016515369A (ja) * 2013-03-15 2016-05-26 クゥアルコム・インコーポレイテッドQualcomm Incorporated 中継器展開のための認証
US9692595B2 (en) 2010-12-02 2017-06-27 Qinetiq Limited Quantum key distribution
JP2017147565A (ja) * 2016-02-16 2017-08-24 Kddi株式会社 認証ハンドオーバ方法、認証ハンドオーバシステム、認証装置、サービス提供端末、サービス利用端末およびプログラム
JP2017536776A (ja) * 2014-12-02 2017-12-07 中国科学院声学研究所Institute Of Acoustics, Chinese Academy Of Sciences ネットワーク機密データの平文の収集方法及びシステム

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7729366B2 (en) * 2007-10-03 2010-06-01 General Instrument Corporation Method, apparatus and system for network mobility of a mobile communication device
WO2011108268A1 (ja) 2010-03-03 2011-09-09 パナソニック株式会社 記録媒体装置に組み込まれるコントローラ、記録媒体装置、記録媒体装置の製造システム、および記録媒体装置の製造方法
KR102000184B1 (ko) * 2012-12-28 2019-07-16 (주)휴맥스 클라우드 서비스를 제공하기 위한 장치 및 방법, 이를 구비한 시스템
JP5729796B1 (ja) * 2014-06-30 2015-06-03 Necプラットフォームズ株式会社 ゲートウェイ装置、通信システム、通信方法及び通信プログラム
US10505891B2 (en) * 2015-04-02 2019-12-10 Nicira, Inc. Security policy selection for machines with dynamic addresses
US10506074B2 (en) * 2015-09-25 2019-12-10 Verizon Patent And Licensing Inc. Providing simultaneous access to content in a network
US12099997B1 (en) 2020-01-31 2024-09-24 Steven Mark Hoffberg Tokenized fungible liabilities

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004128782A (ja) 2002-10-01 2004-04-22 Fujitsu Ltd 鍵交換代理ネットワークシステム
WO2005025174A1 (en) * 2003-09-04 2005-03-17 Nokia Corporation Location privacy in a communication system
JP2007096751A (ja) * 2005-09-29 2007-04-12 Ntt Data Corp パスワード認証鍵交換装置、システム、方法、及びコンピュータプログラム

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080137863A1 (en) * 2006-12-06 2008-06-12 Motorola, Inc. Method and system for using a key management facility to negotiate a security association via an internet key exchange on behalf of another device

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004128782A (ja) 2002-10-01 2004-04-22 Fujitsu Ltd 鍵交換代理ネットワークシステム
WO2005025174A1 (en) * 2003-09-04 2005-03-17 Nokia Corporation Location privacy in a communication system
JP2007096751A (ja) * 2005-09-29 2007-04-12 Ntt Data Corp パスワード認証鍵交換装置、システム、方法、及びコンピュータプログラム

Cited By (28)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2010536241A (ja) * 2007-08-09 2010-11-25 アルカテル−ルーセント ユーエスエー インコーポレーテッド セキュリティアソシエーションをセットアップするためのブートストラッピング方法
US8667151B2 (en) 2007-08-09 2014-03-04 Alcatel Lucent Bootstrapping method for setting up a security association
JP2011508550A (ja) * 2007-12-26 2011-03-10 インターナショナル・ビジネス・マシーンズ・コーポレーション セキュリティ実施ポイントへのセキュリティ・アソシエーション情報の選択的ロードのための方法、装置、およびコンピュータ・プログラム
US8885828B2 (en) 2008-01-25 2014-11-11 Qinetiq Limited Multi-community network with quantum key distribution
US8855316B2 (en) 2008-01-25 2014-10-07 Qinetiq Limited Quantum cryptography apparatus
US8650401B2 (en) 2008-01-25 2014-02-11 Qinetiq Limited Network having quantum key distribution
US9148225B2 (en) 2008-01-28 2015-09-29 Qinetiq Limited Optical transmitters and receivers for quantum key distribution
US8755525B2 (en) 2008-05-19 2014-06-17 Qinetiq Limited Quantum key distribution involving moveable key device
JP2011521581A (ja) * 2008-05-19 2011-07-21 キネテイツク・リミテツド 可動鍵装置を伴う量子鍵配送
US8792791B2 (en) 2008-05-19 2014-07-29 Qinetiq Limited Multiplexed quantum key distribution
US8654979B2 (en) 2008-05-19 2014-02-18 Qinetiq Limited Quantum key device
US8639932B2 (en) 2008-10-27 2014-01-28 Qinetiq Limited Quantum key distribution
US8762728B2 (en) 2008-12-05 2014-06-24 Qinetiq Limited Method of performing authentication between network nodes
US8681982B2 (en) 2008-12-05 2014-03-25 Qinetiq Limited Method of establishing a quantum key for use between network nodes
US8749875B2 (en) 2008-12-08 2014-06-10 Qinetiq Limited Non-linear optical device
JP2010158006A (ja) * 2008-12-23 2010-07-15 Intel Corp 無線セキュリティ処理の電力効率化用にトランスポート層のセキュリティプロトコルを拡張する方法
US8683192B2 (en) 2009-09-29 2014-03-25 Qinetiq Methods and apparatus for use in quantum key distribution
JP2013509123A (ja) * 2009-10-26 2013-03-07 アルカテル−ルーセント プライベートデジタルコンテンツにアクセスするためのシステムおよび方法
US9692595B2 (en) 2010-12-02 2017-06-27 Qinetiq Limited Quantum key distribution
JP2013026686A (ja) * 2011-07-15 2013-02-04 Sony Corp 通信装置及び通信方法、通信システム、並びにコンピューター・プログラム
JP2013077900A (ja) * 2011-09-29 2013-04-25 Oki Electric Ind Co Ltd セキュリティ処理代行システム、通信装置、代行装置、通信プログラム及びセキュリティ処理代行プログラム
US9729311B2 (en) 2011-09-29 2017-08-08 Oki Electric Industry Co., Ltd. Proxy system for security processing without entrusting certified secret information to a proxy
JP2016515369A (ja) * 2013-03-15 2016-05-26 クゥアルコム・インコーポレイテッドQualcomm Incorporated 中継器展開のための認証
US9369278B2 (en) 2013-03-22 2016-06-14 Hitachi, Ltd. Method for maintenance or exchange of encryption function in storage system and storage device
WO2014147836A1 (ja) * 2013-03-22 2014-09-25 株式会社日立製作所 ストレージシステムにおける暗号化機能の保守交換方法及びストレージ装置
JP2015220733A (ja) * 2014-05-21 2015-12-07 三菱電機株式会社 イニシエータ、レスポンダおよびセキュア通信方法
JP2017536776A (ja) * 2014-12-02 2017-12-07 中国科学院声学研究所Institute Of Acoustics, Chinese Academy Of Sciences ネットワーク機密データの平文の収集方法及びシステム
JP2017147565A (ja) * 2016-02-16 2017-08-24 Kddi株式会社 認証ハンドオーバ方法、認証ハンドオーバシステム、認証装置、サービス提供端末、サービス利用端末およびプログラム

Also Published As

Publication number Publication date
JPWO2008146395A1 (ja) 2010-08-12
US20100119069A1 (en) 2010-05-13
EP2161872A1 (en) 2010-03-10

Similar Documents

Publication Publication Date Title
WO2008146395A1 (ja) ネットワーク中継装置、通信端末及び暗号化通信方法
TW200746851A (en) Secured media communication across enterprise gateway
WO2005043281A3 (en) Method, apparatus and program for establishing encrypted communication channel between apparatuses
WO2006053220A3 (en) Method and apparatus for providing secure wireless communication
NO20080870L (no) Autentisering og autorisering av en ekstern klient
WO2008030523A3 (en) Real privacy management authentication system
WO2008030705A3 (en) Method and apparatus for establishing security associations between nodes of an ad hoc wireless network
WO2004051964A3 (en) Tunneled authentication protocol for preventing man-in-the-middle attacks
FI20001837A0 (fi) Autentikointi
WO2013096678A3 (en) Ip address discovery for tdls
MY165817A (en) Method and apparatus for binding subscriber authentication and device authentication in communication systems
MY147120A (en) Method of integrating quantum key distribution with internet key exchange protocol
WO2009060899A1 (ja) 共通鍵設定方法、中継装置、及びプログラム
WO2009108523A3 (en) Method and system for mutual authentication of nodes in a wireless communication network
WO2012018528A3 (en) Methods for anonymous authentication and key agreement
WO2008063360A3 (en) Remote access
GB2478093A (en) Improved automated trading system
WO2008144022A3 (en) Methods and systems for exchanging near real time roaming data exchange (nrtrde) files between a visited network and a home network in real time
TW200635307A (en) A method and apparatus for securing communications between a smartcard and a terminal
WO2008105946A3 (en) AUTOMATED METHOD FOR SECURELY ESTABLISHING SIMPLE NETWORK MANAGEMENT PROTOCOL VERSION 3 (SNMPv3) AUTHENTICATION AND PRIVACY KEYS
WO2011130554A3 (en) Power savings through cooperative operation of multiradio devices
WO2008070283A3 (en) Key management facility to negotiate security association on behalf of another device
SG143127A1 (en) Client credential based secure session authentication method and apparatus
WO2009065923A3 (en) Method and apparatus for establishing a cryptographic relationship in a mobile communications network
WO2009085717A3 (en) Method and device for transmitting groupcast data in a wireless mesh communication network

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07744518

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2009516131

Country of ref document: JP

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: 12598591

Country of ref document: US

WWE Wipo information: entry into national phase

Ref document number: 2007744518

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: DE