WO2000052905A3 - Method and apparatus for enhanced security in a broadband telephony network - Google Patents

Method and apparatus for enhanced security in a broadband telephony network Download PDF

Info

Publication number
WO2000052905A3
WO2000052905A3 PCT/US2000/005520 US0005520W WO0052905A3 WO 2000052905 A3 WO2000052905 A3 WO 2000052905A3 US 0005520 W US0005520 W US 0005520W WO 0052905 A3 WO0052905 A3 WO 0052905A3
Authority
WO
WIPO (PCT)
Prior art keywords
provisioning server
broadband telephony
user
broadband
key
Prior art date
Application number
PCT/US2000/005520
Other languages
French (fr)
Other versions
WO2000052905A2 (en
Inventor
William A Aiello
Steven Michael Bellovin
Charles Robert Kalmanek Jr
William Todd Marshall
Aviel D Rubin
Original Assignee
At & T Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by At & T Corp filed Critical At & T Corp
Priority to BR0008457-3A priority Critical patent/BR0008457A/en
Priority to CA002371811A priority patent/CA2371811A1/en
Priority to EP00916018A priority patent/EP1157521A2/en
Publication of WO2000052905A2 publication Critical patent/WO2000052905A2/en
Publication of WO2000052905A3 publication Critical patent/WO2000052905A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/045Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply hybrid encryption, i.e. combination of symmetric and asymmetric encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/64Hybrid switching systems
    • H04L12/6418Hybrid transport
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M7/00Arrangements for interconnection between switching centres
    • H04M7/006Networks other than PSTN/ISDN providing telephone service, e.g. Voice over Internet Protocol (VoIP), including next generation networks with a packet-switched transport layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/64Hybrid switching systems
    • H04L12/6418Hybrid transport
    • H04L2012/6472Internet
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/64Hybrid switching systems
    • H04L12/6418Hybrid transport
    • H04L2012/6475N-ISDN, Public Switched Telephone Network [PSTN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/64Hybrid switching systems
    • H04L12/6418Hybrid transport
    • H04L2012/6478Digital subscriber line, e.g. DSL, ADSL, HDSL, XDSL, VDSL
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/64Hybrid switching systems
    • H04L12/6418Hybrid transport
    • H04L2012/6481Speech, voice
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2203/00Aspects of automatic or semi-automatic exchanges
    • H04M2203/60Aspects of automatic or semi-automatic exchanges related to security aspects in telephonic communication systems
    • H04M2203/609Secret communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2207/00Type of exchange or network, i.e. telephonic medium, in which the telephonic communication takes place
    • H04M2207/20Type of exchange or network, i.e. telephonic medium, in which the telephonic communication takes place hybrid systems
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M3/00Automatic or semi-automatic exchanges
    • H04M3/20Automatic or semi-automatic exchanges with means for interrupting existing connections; with means for breaking-in on conversations
    • H04M3/205Eavesdropping prevention - indication of insecurity of line or network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M7/00Arrangements for interconnection between switching centres
    • H04M7/12Arrangements for interconnection between switching centres for working between exchanges having different types of switching equipment, e.g. power-driven and step by step or decimal and non-decimal

Abstract

The broadband telephony interface is provisioned by receiving information authenticating a provisioning server, establishing a communication channel between the user and the provisioning server over which is transmitted authorization information from the user to the provisioning server, and encrypting and transmitting a cryptographic key associated with the user to the provisioning server. The cryptographic key can be a symmetric key or a public key corresponding to a private key stored in the broadband telephony interface. The cryptographic key can be utilized to generate other keys which are utilized to secure communication channels for the telephony service. The broadband telephony interface advantageously can be implemented as untrusted hardware or software that is installed by a customer.
PCT/US2000/005520 1999-03-01 2000-03-01 Method and apparatus for enhanced security in a broadband telephony network WO2000052905A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
BR0008457-3A BR0008457A (en) 1999-03-01 2000-03-01 Method of Providing Interface on a Broadband Telephony Network
CA002371811A CA2371811A1 (en) 1999-03-01 2000-03-01 Method and apparatus for enhanced security in a broadband telephony network
EP00916018A EP1157521A2 (en) 1999-03-01 2000-03-01 Method and apparatus for enhanced security in a broadband telephony network

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US12248199P 1999-03-01 1999-03-01
US60/122,481 1999-03-01
US12947699P 1999-04-15 1999-04-15
US60/129,476 1999-04-15

Publications (2)

Publication Number Publication Date
WO2000052905A2 WO2000052905A2 (en) 2000-09-08
WO2000052905A3 true WO2000052905A3 (en) 2000-12-28

Family

ID=26820561

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2000/005520 WO2000052905A2 (en) 1999-03-01 2000-03-01 Method and apparatus for enhanced security in a broadband telephony network

Country Status (4)

Country Link
EP (1) EP1157521A2 (en)
BR (1) BR0008457A (en)
CA (1) CA2371811A1 (en)
WO (1) WO2000052905A2 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8909793B2 (en) 2000-06-29 2014-12-09 Transnexus, Inc. Intelligent end user devices for clearinghouse services in an Internet telephony system
US9392033B2 (en) 2004-12-13 2016-07-12 Transnexus, Inc. Method and system for securely authorizing VoIP interconnections between anonymous peers of VoIP networks

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7203956B2 (en) 1999-12-22 2007-04-10 Transnexus, Inc. System and method for the secure enrollment of devices with a clearinghouse server for internet telephony and multimedia communications
EP1319281B1 (en) 2000-09-11 2007-05-09 TransNexus, Inc. Clearinghouse server for internet telephony and multimedia communications
US7525956B2 (en) 2001-01-11 2009-04-28 Transnexus, Inc. Architectures for clearing and settlement services between internet telephony clearinghouses
WO2005089147A2 (en) 2004-03-11 2005-09-29 Transnexus, Inc. Method and system for routing calls over a packet switched computer network
US8924722B2 (en) 2008-04-07 2014-12-30 Nokia Siemens Networks Oy Apparatus, method, system and program for secure communication

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5216715A (en) * 1989-06-16 1993-06-01 Siemens Aktiengesellschaft Key distribution in public communication networks taking account of security gradations
FR2709903A1 (en) * 1993-09-10 1995-03-17 Thomson Csf Method and device for security-protecting communications, using an integrated services digital network
DE4416595A1 (en) * 1994-05-11 1995-11-16 Deutsche Bundespost Telekom Securing coded, confidential message transmissions
DE19521484A1 (en) * 1995-06-13 1996-12-19 Deutsche Telekom Ag Method and device for authenticating subscribers to digital switching centers

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5216715A (en) * 1989-06-16 1993-06-01 Siemens Aktiengesellschaft Key distribution in public communication networks taking account of security gradations
FR2709903A1 (en) * 1993-09-10 1995-03-17 Thomson Csf Method and device for security-protecting communications, using an integrated services digital network
DE4416595A1 (en) * 1994-05-11 1995-11-16 Deutsche Bundespost Telekom Securing coded, confidential message transmissions
DE19521484A1 (en) * 1995-06-13 1996-12-19 Deutsche Telekom Ag Method and device for authenticating subscribers to digital switching centers

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
CLAASSEN G J ET AL: "SECURE COMMUNICATION PROCEDURE FOR ISDN", PROCEEDINGS SOUTHERN AFRICAN CONFERENCE ON COMMUNICATIONS AND SIGNAL PROCESSING,US,IEEE, NEW YORK, NY, 24 June 1988 (1988-06-24), pages 165 - 170, XP002028403 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8909793B2 (en) 2000-06-29 2014-12-09 Transnexus, Inc. Intelligent end user devices for clearinghouse services in an Internet telephony system
US9392033B2 (en) 2004-12-13 2016-07-12 Transnexus, Inc. Method and system for securely authorizing VoIP interconnections between anonymous peers of VoIP networks

Also Published As

Publication number Publication date
CA2371811A1 (en) 2000-09-08
EP1157521A2 (en) 2001-11-28
BR0008457A (en) 2004-06-01
WO2000052905A2 (en) 2000-09-08

Similar Documents

Publication Publication Date Title
US5222140A (en) Cryptographic method for key agreement and user authentication
FI108590B (en) Mobile phone encryption system
JP2883243B2 (en) Remote party authentication / encryption key distribution method
WO2003032126A3 (en) Multi-factor authentication system
EP1161806B1 (en) Key management for telephone calls to protect signaling and call packets between cta's
CN104486077B (en) A kind of end-to-end cryptographic key negotiation method of VoIP real time datas safe transmission
WO2022060471A3 (en) Secure communication with two post-quantum cryptography key encapsulations and authentication
WO2007063420A3 (en) Authentication in communications networks
WO2006027650A3 (en) Service authentication
EP0792042A3 (en) Method of effecting communications using common cryptokey
US20050185638A1 (en) Out-of-band signaling for network based computer session synchronization with crossbars
CN102572817B (en) Method and intelligent memory card for realizing mobile communication confidentiality
US20070239994A1 (en) Bio-metric encryption key generator
TW431108B (en) Method for establishing a key using over-the-air communication and password protocol and password protocol
RU2495532C2 (en) Method and apparatus for end-to-end encrypted communication
AU4267999A (en) Preventing unauthorized use of service
CA2264809A1 (en) Method and apparatus for encrypting radio traffic in a telecommunications network
WO2004034213A3 (en) Localized network authentication and security using tamper-resistant keys
WO2011017099A3 (en) Secure communication using asymmetric cryptography and light-weight certificates
CA2546553A1 (en) System and method for provisioning and authenticating via a network
MY142660A (en) Certificate based authentication authorization accounting scheme for loose coupling interworking
CN102202299A (en) Realization method of end-to-end voice encryption system based on 3G/B3G
WO2008078101A3 (en) Method and device for mutual authentication
JP2011211704A (en) Confidential communication method using vpn, system and program for the method, and recording medium for the program
CA2540590A1 (en) System and method for secure access

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): BR CA

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE

121 Ep: the epo has been informed by wipo that ep was designated in this application
AK Designated states

Kind code of ref document: A3

Designated state(s): BR CA

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
WWE Wipo information: entry into national phase

Ref document number: 2000916018

Country of ref document: EP

ENP Entry into the national phase

Ref document number: 2371811

Country of ref document: CA

Ref country code: CA

Ref document number: 2371811

Kind code of ref document: A

Format of ref document f/p: F

WWP Wipo information: published in national office

Ref document number: 2000916018

Country of ref document: EP