Abstract: Devices (110,120) and methods are described to establish secure communication between a first and a second device over a physical channel according to a security protocol. The protocol establishes first integrity data in the first device and second integrity data in the second device. The protocol has at least two security levels. The applied security level is selectable based on grading information transferred via the physical channel. Advantageously, a grading indicator indicative of a minimum security level as minimally required in at least one of the first device (110) and second device (120) is transferred via the physical channel, while integrity protection of the grading indicator is provided based on the integrity data. Thereby, a man-in-the-middle attack by a further device (130) to downgrade the security level may be prevented.

Abstract: A non-SI device (120) is arranged for wireless communication (130) and cooperates with an SI device (110) having access to a subscriber identity. The non-SI device has a transceiver (121) to communicate in a local network and a processor (122) to establish an association with the SI. A non-SI public key is provided to the SI device via a first communication channel. A verification code is shared with the SI device via a second communication channel. The channels are different and include an out-of-band channel (140). Proof of possession of a non-SI private key is provided to the SI device via the first or the second communication channel. From the SI device, a certificate is received that is related to the SI and comprises a signature computed over at least part of the non-SI public key. The certificate reliably enables the non-SI device to access the core network via the local network and a gateway between the local network and the core network.

Abstract: A wireless communication system enables one-sided authentication of a responder device (120) by an initiator device (110) and mutual authentication of both devices. Embodiments of the initiator may have a message unit (116) and a state machine (117). The initiator starts by acquiring a responder public key via an out-of-band action and sends an authentication request. The responder sends an authentication response comprising responder authentication data based on a responder private key and a mutual progress status indicative of the mutual authentication being in progress for enabling the responder device to acquire an initiator public key via a responder out-of-band action. The initiator state machine is arranged to provide a mutual authenticating state, engaged upon receiving the mutual progress status, for awaiting mutual authentication. Thereby long time-out periods during wireless communication are avoided, while also enabling the initiator to report communication errors to the user within a short time.

Abstract: This application relates to devices and a method to establish a secure wireless link for communication between a first and a second device over a wireless physical channel, wherein a paring protocol requires sending over the wireless channel identifying information by the first device, the identifying information being data suitable for identifying the device sending the identifying information, or a user thereof, wherein the first device encrypts and transmits the identifying information and random information by using a public key information of the second device. The second device receives the encrypted identifying and random information and, using private key information associated with the public key information, it extracts the identifying information. The devices use a secret uniquely related to the identifying information to derive a session key and then use the session key to establish the secure wireless link.

Abstract: A non-SI device (120) is arranged for wireless communication (130) and cooperates with an SI device (110) having access to a subscriber identity. The non-SI device has a transceiver (121) to communicate in a local network and a processor (122) to establish an association with the SI. A non-SI public key is provided to the SI device via a first communication channel. A verification code is shared with the SI device via a second communication channel. The channels are different and include an out-of-band channel (140). Proof of possession of a non-SI private key is provided to the SI device via the first or the second communication channel. From the SI device, security data is received that is related to the SI and is computed using the non-SI public key. The security data reliably enables the non-SI device to access the core network via the local network and a gateway between the local network and the core network.

Abstract: There is provided a method of configuring an Enrollee device for communications in a wireless network comprises a Configurator device, the Configurator and Enrollee devices performing at least part of a configuration protocol, the Enrollee device encrypting Enrollee identifying information using a public key information of the Configurator and random information to produce a first encrypted message, the Enrollee device transmitting the first encrypted message to the Configurator device, the Configurator device receiving the first encrypted message, the Configurator device decrypting the first encrypted message using private key information associated with the public key, the Configurator device identifying the Enrollee device using the Enrollee identifying information and deciding whether or not it should continue the configuration based on the Enrollee identifying information. There are also provided Configurator and Enrollee devices arranged to perform the method.

Abstract: There is provided a method of configuring an Enrollee device for communications in a wireless network. The method comprises, on the Enrollee side, providing a Configurator device, executing a configuration protocol, and sending by the Enrollee device, during an execution of the configuration protocol, an announcement message comprising an indication of a type of a public key previously used by the Enrollee as part of the protocol if an attempt by the Enrollee device to connect to the network has failed following an earlier execution of part of the configuration protocol. There are also provided an Enrollee and Configurator devices arranged to execute the method.

Abstract: In a network system for wireless communication an enrollee accesses the network via a configurator. The enrollee acquires a data pattern that represents a network public key via an out-of-band channel by a sensor. The enrollee derives a first shared key based on the network public key and the first enrollee private key, and encodes a second enrollee public key using the first shared key, and generates a network access request. The configurator also derives the first shared key, and verifies whether the encoded second enrollee public key was encoded by the first shared key, and, if so, generates security data and cryptographically protects data using a second shared key, and generates a network access message. The enrollee processor also derives the second shared key and verifies whether the data was cryptographically protected and, if so, engages the secure communication based on the second enrollee private key and the security data.

Abstract: A wireless communication system enables one-sided authentication of a responder device (120) by an initiator device (110) and mutual authentication of both devices. Embodiments of the initiator may have a message unit (116) and a state machine (117). The initiator starts by acquiring a responder public key via an out-of-band action and sends an authentication request. The responder sends an authentication response comprising responder authentication data based on a responder private key and a mutual progress status indicative of the mutual authentication being in progress for enabling the responder device to acquire an initiator public key via a responder out-of-band action. The initiator state machine is arranged to provide a mutual authenticating state, engaged upon receiving the mutual progress status, for awaiting mutual authentication. Thereby long time-out periods during wireless communication are avoided, while also enabling the initiator to report communication errors to the user within a short time.

Abstract: This application relates to devices and a method to establish a secure wireless link for communication between a first and a second device over a wireless physical channel, wherein a paring protocol requires sending over the wireless channel identifying information by the first device, identifying information being data suitable for identifying the device sending the identifying information or a user thereof wherein the first device encrypts and transmits the identifying information by using a public key information of the second device and random information, the second device receives the encrypted identifying information and using private key information associated with the public key information it extracts the identifying information. The devices use a secret uniquely related to the identifying information to derive a session key and then use the session key to establish the secure wireless link.

Abstract: A device (110) arranged for wireless communication (130) has a processor (112) to execute a handover sequence to establish a new connection with a further device (120). A handover request message has a protocol indication indicating one or more alternative communication protocols that are supported by the requester and a channel indication indicating at least one channel to be used for a new connection. Upon receiving a first handover request message including an initial protocol indication and an initial channel indication, it is determined whether the new connection is to be established based on the initial protocol indication and via a selected channel based on the initial channel indication. If not so, the processor determines a second protocol indication and a second channel indication indicating at least one further channel to be used for the new connection and sends a second handover request message. Effectively the role of handover requester and handover selector are switched.

Abstract: A non-SI device (120) is arranged for wireless communication (130) and cooperates with an SI device (110) having access to a subscriber identity. The non-SI device has a transceiver (121) to communicate in a local network and a processor (122) to establish an association with the SI. A non-SI public key is provided to the SI device via a first communication channel. A verification code is shared with the SI device via a second communication channel. The channels are different and include an out-of-band channel (140). Proof of possession of a non-SI private key is provided to the SI device via the first or the second communication channel. From the SI device, security data is received that is related to the SI and is computed using the non-SI public key. The security data reliably enables the non-SI device to access the core network via the local network and a gateway between the local network and the core network.

Abstract: A wireless communication system comprises a host device (110) and mobile devices (120) arranged for wireless communication and for distance (140) measurement. The host device has a user interface (113) comprising a connect button (115), and is arranged to execute a connection sequence upon a user activating the connect button. The connection sequence first determines respective distances between the host and respective mobile devices. A first mobile device is identified exhibiting a movement. Then a connection action is executed regarding a connection between the first mobile device and the host device. The mobile device is arranged for executing a ranging protocol and, upon subsequently receiving a connection message, executing a connection action regarding a connection between the first mobile device and the host device. Effectively a connection may be established upon the user of a mobile device pressing a single button on a selected host device and moving the mobile device.

Abstract: There is provided a method, Configurator and Enrollee devices and a system thereof. The method is one of configuring an Enrollee device for communications in a wireless network, the method be arranged for execution by a Configurator device (9) and an Enrollee device. The Configurator and Enrollee devices may be arranged to communicate using a wireless communication protocol and participate in a configuration protocol, the configuration protocol being arranged to configure the Enrollee device to communicate in the wireless network, the Enrollee device having been previously configured to communicate in the wireless network.

Abstract: A wireless communication system comprises a host device (110) and mobile devices (120) arranged for wireless communication and for distance (140) measurement. The host device has a user interface (113) comprising a connect button (115), and is arranged to execute a connection sequence upon a user activating the connect button. The connection sequence first determines respective distances between the host and respective mobile devices. A first mobile device is identified exhibiting a movement. Then a connection action is executed regarding a connection between the first mobile device and the host device. The mobile device is arranged for executing a ranging protocol and, upon subsequently receiving a connection message, executing a connection action regarding a connection between the first mobile device and the host device. Effectively a connection may be established upon the user of a mobile device pressing a single button on a selected host device and moving the mobile device.

Abstract: A device (110) arranged for wireless communication (130) has a processor (112) to execute a handover sequence to establish a new connection with a further device (120). A handover request message has a protocol indication indicating one or more alternative communication protocols that are supported by the requester and a channel indication indicating at least one channel to be used for a new connection. Upon receiving a first handover request message including an initial protocol indication and an initial channel indication, it is determined whether the new connection is to be established based on the initial protocol indication and via a selected channel based on the initial channel indication. If not so, the processor determines a second protocol indication and a second channel indication indicating at least one further channel to be used for the new connection and sends a second handover request message. Effectively the role of handover requester and handover selector are switched.

Abstract: In a network system (100) for wireless communication an enrollee (110) accesses the network via a configurator (130). The enrollee acquires a data pattern (140) that represents a network public key via an out-of-band channel by a sensor (113). The enrollee derives a first shared key based on the network public key and the first enrollee private key, and encodes a second enrollee public key using the first shared key, and generates a network access request. The configurator also derives the first shared key, and verifies whether the encoded second enrollee public key was encoded by the first shared key, and, if so, generates security data and cryptographically protects data using a second shared key, and generates a network access message. The enrollee processor also derives the second shared key and verifies whether the data was cryptographically protected and, if so, engages the secure communication based on the second enrollee private key and the security data.

Abstract: A device (110) arranged for wireless communication (130) has a processor (112) to execute a handover sequence to establish a new connection with a further device (120). A handover request message has a protocol indication indicating one or more alternative communication protocols that are supported by the requester and a channel indication indicating at least one channel to be used for a new connection. Upon receiving a first handover request message including an initial protocol indication and an initial channel indication, it is determined whether the new connection is to be established based on the initial protocol indication and via a selected channel based on the initial channel indication. If not so, the processor determines a second protocol indication and a second channel indication indicating at least one further channel to be used for the new connection and sends a second handover request message. Effectively the role of handover requester and handover selector are switched.

Abstract: A device is arranged for distance measurement according to a ranging protocol using a measurement message from a second device. Based on a first arrival time of the measurement message a first distance (151) between the first device (110) and the second device (120) is determined. A third device (130) acts as a cooperating device that is located at a trusted distance (150). The cooperating device determines a third arrival time of the same measurement message, and transfers support data to the first device, the support data being based on the third arrival time. The first device obtains a third distance (153) between the third device and the second device using the support data. Then a verification test is performed on the first distance (151), the trusted distance (150) and the third distance (153). The first distance is reliable when said distances correspond to a viable spatial constellation (100) of the devices.

Abstract: In a network system for wireless communication an enrollee accesses the network via a configurator. The enrollee acquires a data pattern that represents a network public key via an out-of-band channel by a sensor. The enrollee derives a first shared key based on the network public key and the first enrollee private key, and encodes a second enrollee public key using the first shared key, and generates a network access request. The configurator also derives the first shared key, and verifies whether the encoded second enrollee public key was encoded by the first shared key, and, if so, generates security data and cryptographically protects data using a second shared key, and generates a network access message. The enrollee processor also derives the second shared key and verifies whether the data was cryptographically protected and, if so, engages the secure communication based on the second enrollee private key and the security data.