US 12,284,517 B1
Customer-managed authentication for radio-based networks
Diwakar Gupta, Seattle, WA (US); Kaixiang Hu, Fremont, CA (US); Benjamin Wojtowicz, San Francisco, CA (US); Upendra Bhalchandra Shevade, Washington, DC (US); and Shane Ashley Hall, Kirkland, WA (US)
Assigned to Amazon Technologies, Inc., Seattle, WA (US)
Filed by Amazon Technologies, Inc., Seattle, WA (US)
Filed on Nov. 15, 2021, as Appl. No. 17/526,801.
Int. Cl. H04M 1/66 (2006.01); H04W 12/0433 (2021.01); H04W 12/069 (2021.01); H04W 12/40 (2021.01); H04W 12/69 (2021.01)
CPC H04W 12/069 (2021.01) [H04W 12/0433 (2021.01); H04W 12/40 (2021.01); H04W 12/69 (2021.01)] 20 Claims
OG exemplary drawing
 
1. A system, comprising:
a radio-based network provisioned for an organization, the radio-based network comprising a radio access network and an associated core network, at least a portion of the associated core network being provisioned in a cloud provider network; and
at least one computing device in the cloud provider network configured to at least:
receive a specification from the organization of at least one of: a cryptographic algorithm or a key length;
generate a primary key for a client device based at least in part on the specification;
store the primary key in the cloud provider network in an organization-specific data store using an organization-specific key;
receive a request for network connectivity via the radio-based network from the client device, the request specifying at least one session key derived from the primary key; and
validate the at least one session key based at least in part on the primary key retrieved from the organization-specific data store and decrypted using the organization-specific key.