Caching a pairwise master key for dropped wireless local area network (WLAN) connections to prevent re-authentication
First Claim
1. A device, comprising:
- a memory storing instructions; and
one or more processors to execute the instructions to;
determine that a first wireless local area network (WLAN) connection, established with a first WLAN access point using an extensible authentication protocol, has been dropped;
store, at the device, a pairwise master key identifier based on determining that the first WLAN connection has been dropped,the pairwise master key identifier being associated with the first WLAN access point and a WLAN controller,the pairwise master key identifier identifying a pairwise master key stored at the WLAN controller, andthe device being different from the first WLAN access point and the WLAN controller;
detect a WLAN signal, associated with a second WLAN access point, after determining that the first WLAN connection has been dropped,the first WLAN access point and the second WLAN access point being controlled by the WLAN controller, andthe first WLAN access point being different from the second WLAN access point;
provide the pairwise master key identifier to the second WLAN access point based on detecting the WLAN signal;
establish a second WLAN connection with the second WLAN access point based on providing the pairwise master key identifier and without re-authenticating using the extensible authentication protocol;
determine that a threshold amount of time has elapsed since storing the pairwise master key identifier; and
delete the pairwise master key identifier from the device based on determining that the threshold amount of time has elapsed.
1 Assignment
0 Petitions
Accused Products
Abstract
A device may determine that a first wireless local area network (WLAN) connection, established with a first WLAN access point using an extensible authentication protocol, has been dropped. The device may store a pairwise master key identifier, associated with the first WLAN access point, based on determining that the first WLAN connection has been dropped. The device may detect a WLAN signal, associated with the first WLAN access point or a second WLAN access point, after determining that the first WLAN connection has been dropped. The device may provide the pairwise master key identifier to the first WLAN access point or the second WLAN access point based on detecting the WLAN signal. The device may establish a second WLAN connection with the first WLAN access point or the second WLAN access point based on providing the pairwise master key identifier and without re-authenticating using the extensible authentication protocol.
18 Citations
20 Claims
-
1. A device, comprising:
-
a memory storing instructions; and one or more processors to execute the instructions to; determine that a first wireless local area network (WLAN) connection, established with a first WLAN access point using an extensible authentication protocol, has been dropped; store, at the device, a pairwise master key identifier based on determining that the first WLAN connection has been dropped, the pairwise master key identifier being associated with the first WLAN access point and a WLAN controller, the pairwise master key identifier identifying a pairwise master key stored at the WLAN controller, and the device being different from the first WLAN access point and the WLAN controller; detect a WLAN signal, associated with a second WLAN access point, after determining that the first WLAN connection has been dropped, the first WLAN access point and the second WLAN access point being controlled by the WLAN controller, and the first WLAN access point being different from the second WLAN access point; provide the pairwise master key identifier to the second WLAN access point based on detecting the WLAN signal; establish a second WLAN connection with the second WLAN access point based on providing the pairwise master key identifier and without re-authenticating using the extensible authentication protocol; determine that a threshold amount of time has elapsed since storing the pairwise master key identifier; and delete the pairwise master key identifier from the device based on determining that the threshold amount of time has elapsed. - View Dependent Claims (2, 3, 4, 15, 16, 19)
-
-
5. A non-transitory computer-readable medium storing instructions, the instructions comprising:
-
one or more instructions that, when executed by one or more processors of a device, cause the one or more processors to; determine that a first wireless local area network (WLAN) connection, established with a first WLAN access point using an 802.11X extensible authentication protocol, has been dropped; store, at the device, a pairwise master key identifier, based on determining that the first WLAN connection has been dropped, the pairwise master key identifier being associated with the first WLAN access point and a WLAN controller, the pairwise master key identifier identifying a pairwise master key stored at the WLAN controller, and the device being different from the first WLAN access point and the WLAN controller; receive a message, associated with a second WLAN access point, after determining that the first WLAN connection has been dropped, the first WLAN access point and the second WLAN access point being controlled by the WLAN controller, and the first WLAN access point being different from the second WLAN access point; provide the pairwise master key identifier to the second WLAN access point based on receiving the message; establish a second WLAN connection with the second WLAN access point based on providing the pairwise master key identifier and without performing re-authentication using the 802.11X extensible authentication protocol; determine that a threshold amount of time has elapsed since storing the pairwise master key identifier; and delete the pairwise master key identifier from the device based on determining that the threshold amount of time has elapsed. - View Dependent Claims (6, 7, 8, 9, 10, 17)
-
-
11. A method, comprising:
-
determining, by a device, that a first wireless local area network (WLAN) connection, established between the device and a first WLAN access point using an extensible authentication protocol, has been dropped; caching, by the device, a pairwise master key identifier associated with the first WLAN access point and a WLAN controller, the pairwise master key identifier identifying a pairwise master key stored at the WLAN controller, and the device being different from the first WLAN access point and the WLAN controller; detecting, by the device, a WLAN signal, associated with a second WLAN access point, after determining that the first WLAN connection has been dropped, the first WLAN access point and the second WLAN access point being controlled by the WLAN controller, and the first WLAN access point being different from the second WLAN access point; providing, by the device, the pairwise master key identifier to the second WLAN access point based on detecting the WLAN signal; causing, by the device, a second WLAN connection to be established between the device and the second WLAN access point based on providing the pairwise master key identifier and without causing the device to be re-authenticated using the extensible authentication protocol; determining, by the device, that a threshold amount of time has elapsed since caching the pairwise master key identifier; and deleting, by the device, the pairwise master key identifier from the device based on determining that the threshold amount of time has elapsed. - View Dependent Claims (12, 13, 14, 18, 20)
-
Specification