Methods, systems, and devices for wireless communications are described. A user equipment (UE) may receive a system parameter identified by a network entity (e.g., a public key generator (PKG)), and receive a cell identifier during a connection procedure between the UE and a base station in wireless communication with the UE. The cell identifier may be associated with the base station. The UE may encrypt at least a portion of a message associated with the connection procedure using the cell identifier and the system parameter. In some examples, the portion of the message may include private information. The UE may transmit the message to the base station as part of the connection procedure.

Various aspects of the present disclosure generally relate to wireless communication. In some aspects, a wireless device may receive a sounding waveform via a reciprocal wireless channel. The wireless device may estimate one or more channel parameters associated with the reciprocal wireless channel based at least in part on the sounding waveform. The wireless device may generate a cryptographic key based at least in part on the one or more channel parameters associated with the reciprocal wireless channel. The wireless device may establish a secure communication session over the reciprocal wireless channel based at least in part on the cryptographic key. Numerous other aspects are provided.

A computer-implemented method comprising: establishing, by an operation device, a wireless communication with a remote device; authenticating, by the operation device, the wireless communication with the remote device; receiving, at the operation device, a first command to perform a first operation; establishing a first maximum delay period using an estimated time delay, wherein the estimated time delay comprises an authentication delay, an encryption delay, or a combination thereof; determining, by the operation device, that the first command is received within a first maximum delay period; performing, by the operation device, the first operation; receiving, at the operation device, a second command to perform a second operation; establishing a second maximum delay period using the estimated time delay; determining, by the operation device, that the second command is received within a second maximum delay period; and performing, by the operation device, the second operation instructed in the second command.

The present disclosure provides a security mechanism to mitigate the risk of trackability of a UE engaged in groupcast communication. The security mechanism makes use of cryptographic functions and thus provides a cryptographic-grade protection for groupcast communications. The security mechanism can be implemented without any additional signaling for even additional parameters in existing signaling message.

A method performed by a wireless device (12) for use in a wireless communication system (10). The method comprises: receiving (W2100) signaling (22) indicating how the wireless device (12) is to generate a message authentication code, MAC, (20) for integrity protecting a Radio Resource Control, RRC, message (18) that 5 requests resumption of an RRC connection; generating (W2110) the MAC according to the signaling; and transmitting (W2120) the RRC message and the generated MAC. Further methods, a wireless devices, network nodes, computer programs, carriers and a communication system are also disclosed.

A telecommunication includes a computing device and a mobile device. The computing device is in communication with a blockchain network, a subscription manager data preparation (SM-DP) platform, and the mobile device. The computing device is configured to perform a first set of operations. The first set of operations includes retrieving an identity token from the blockchain network. The identity token is a first non-fungible token uniquely identifying a user of the mobile device. The first set of operations further includes retrieving, from the SM-DP platform, an embedded subscriber identity module (eSIM) profile for the identity token from the blockchain network. The first set of operations further includes generating, via the blockchain network, a second non-fungible token. The second non-fungible token includes the eSIM profile. The mobile device is in communication with the blockchain network.

The techniques described herein provide for authentication of a reader device over a wireless protocol (e.g., NFC or Bluetooth, BLE). The mobile device can receive and store the static public key of the reader device and one or more credentials, each credential specifying access to an electronic lock. The mobile device can receive an ephemeral reader public key, a reader identifier, and a transaction identifier. The mobile device can generate session key using the ephemeral mobile private key and the ephemeral reader public key and send the ephemeral mobile public key to the reader device. The reader device can receive the ephemeral mobile public key and sign and transmit a signature message to the mobile device. The mobile device can validate a reader signature and generate an encrypted credential that the reader can use to access an electronic lock. The reader device can authenticate the mobile device for mutual authentication.

Location-based validation of a wireless authentication device. A request is received by a security hardware computing device for an action requiring authentication in connection with security hardware. A security hardware location is received or accessed. A wireless authentication device location of a wireless authentication device in possession of a requester is received by security hardware computing device. The security hardware computing device receives a mobile device location for a mobile device in possession of the requester. The security hardware computing device determines whether the security hardware location, the mobile device location, and the wireless authentication device location are in a proximity. The security hardware computing device performs the action requiring authentication in connection with the security hardware.

According to an exemplary embodiment, there is provided a method of operating a terminal device. The method includes operating the terminal device in a connected state with respect to the communication network. The method further includes receiving a first signal from a first radio access node in the communication network indicating that the connected state is to be suspended, the first signal having information for use in determining a first key for encrypting data to be sent between the terminal device and the first radio access node or another radio access node in the communication network if the connected state is resumed.

A disclosed method for secured multi-payload antennas operators operations comprises generating, by an antenna operations center (AOC), AOC commands using an antenna location pointing request for each of at least one antenna associated with each of at least one customer. The method further comprises transmitting, by a satellite operation center (SOC), the AOC commands and SOC commands to a vehicle via a ground antenna, where the SOC commands are related to at least one antenna associated with a host. Also, the method comprises generating customer antenna gimballing commands by using the AOC commands, and generating host antenna gimballing commands by using the SOC commands. Further, the method comprises gimballing respectively each of the antenna(s) associated with each of the customer(s) by using the customer antenna gimballing commands, and gimballing respectively each of the antenna(s) associated with the host by using the host antenna gimballing commands.