Methods and apparatus for secure wireless networking
First Claim
1. A wired network for providing secure, authenticated access to wireless network clients, comprising:
- a server connected to a wireless network access point, the server being operative to perform authentication for wireless clients establishing a connection to the server through the wireless network access point, the server being operative to establish a connection session upon authentication of a client, the server being also operative to provide the client with a wired network address valid for the connection session upon authentication of the client, the server being further operative to encrypt communications with the wireless network access point, the server being further operative to provide a cryptographic key valid for the connection session to the client upon authentication of the client; and
a user database accessible to the server for use in validating wireless clients.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques for secure connections between wireless network clients and wired network resources are described. An insecure wireless network comprising a plurality of wireless access points provides a connection for wireless network clients to a wired network server which in turn provides controlled access to a wired network. When a wireless network user wishes to connect to the wired network, the user provides authentication information to the wired network server through the wireless network client and the wireless network access point. Once the wired network server has verified the authentication information, the wired network server provides the wireless network client with a temporary wired network address as well as a unique session encryption key, which is used to encrypt all data transferred between the wireless network client and the wired network server during a connection session.
156 Citations
15 Claims
-
1. A wired network for providing secure, authenticated access to wireless network clients, comprising:
-
a server connected to a wireless network access point, the server being operative to perform authentication for wireless clients establishing a connection to the server through the wireless network access point, the server being operative to establish a connection session upon authentication of a client, the server being also operative to provide the client with a wired network address valid for the connection session upon authentication of the client, the server being further operative to encrypt communications with the wireless network access point, the server being further operative to provide a cryptographic key valid for the connection session to the client upon authentication of the client; and
a user database accessible to the server for use in validating wireless clients. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A wireless network for providing secure authenticated communication between clients of the wireless network and a wired network, comprising:
-
a wireless network access point operative to establish a connection with a server operating as a portal between the wireless network and a wired network, the wireless network access point being operative to conduct communications with the server, the wireless network access point being further operative to receive authentication information from clients and transfer the authentication information to the server and to receive a cryptoprocessing key from the server and transfer the key to each of the clients; and
a plurality of wireless network clients operative to establish connections with the wireless network access point, each client being operative to conduct encrypted communications with the server through the access point, to pass authentication information to the network access point and receive address information and cryptoprocessing data from the network access point to allow communication with the wired network, each client being operative to conduct encrypted transfer of data to and from the wired network through the access point upon receiving the address and cryptoprocessing information. - View Dependent Claims (8, 9)
-
-
10. A method of secure communication between wireless network clients and a wired network, comprising the steps of:
-
establishing a connection between an SB server connected to the wired network and a wireless network access point;
establishing a connection between the SB server and a network client communicating with the SB server through the wireless network access point;
exchanging encryption keys between the SB server and the wireless network client;
performing authentication for the wireless network client;
if authentication fails, rejecting connection to the wired network; and
if authentication passes, accepting connection to the wired network, providing a temporary wired network address and a unique session encryption key to the wireless network client and providing access to wired network resources in response to requests by the wireless network client. - View Dependent Claims (11, 12, 13, 14, 15)
-
Specification