Diameter end-to-end security with a multiway handshake
US10277576B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Jun 28, 2018 |
| Grant date | Apr 30, 2019 |
| Priority date | — |
| Expiry date | Jun 28, 2038 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/55
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method of enhancing end-to-end security of the Diameter protocol. A client transmits a Request message to the server. The request message has a signature, which is generated by encrypting a hash result calculated by the client using predefined AVPs of the Request message. The server validates the signature by independently calculating the hash result and determining whether the hash result within the signature matches the calculated result. Upon successful validation of the signature, the server transmits an Answer message to the client. The Answer message contains a nonce value and a request for Authenticator message from the client. The client transmits an Authenticator message having a second signature based on the hash result calculated using the nonce. The server compares the received hash result with the calculated hash result. If there is a match, the server updates the information requested in the Request message.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.