Key generation in a communication system
First Claim
Patent Images
1. A method for key generation in a communication system, comprising:
- authenticating an access to a Wireless Local Area Network (WLAN);
generating a Master Session Key (MSK) for the access; and
sending an access accept message including the MSK.
1 Assignment
0 Petitions
Accused Products
Abstract
A communication system generates a Master Session Key (MSK) for accesses to a system entity that does not provide encryption to traffic. Both the home server and the user generate the same MSK. The MSK is used to generate encryption keys for traffic. In one embodiment the MSK is generated using a hashing function and information specific to the requestor. The home server determines the need to generate the MSK based on information contained in an access request message. Once generated, the MSK is provided to the system entity to enable the entity to encrypt communications.
65 Citations
24 Claims
-
1. A method for key generation in a communication system, comprising:
-
authenticating an access to a Wireless Local Area Network (WLAN);
generating a Master Session Key (MSK) for the access; and
sending an access accept message including the MSK. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method for key generation in a communication system, comprising:
-
requesting authentication of an access to a Wireless Local Area Network (WLAN);
receiving an access accept message including a Master Session Key (MSK) for the access; and
generating at least one encryption key as a function of the MSK, wherein the at least one encryption key is used to encrypt traffic for the access.
-
-
7. An apparatus for key generation in a communication system, comprising:
-
means for authenticating an access to a Wireless Local Area Network (WLAN);
means for generating a Master Session Key (MSK) for the access; and
means for determining an encryption key from the MSK.
-
-
8. An apparatus for key generation in a communication system, comprising:
-
means for requesting authentication of an access to a Wireless Local Area Network (WLAN);
means for receiving an access accept message including a Master Session Key (MSK) for the access; and
means for generating at least one encryption key as a function of the MSK, wherein the at least one encryption key is used to encrypt traffic for the access.
-
-
9. An apparatus, comprising:
-
a processing unit;
an authentication procedure unit coupled to the processing unit, adapted to request authentication of an access to a system, and adapted to compute a response to a challenge for the authentication; and
a Master Session Key (MSK) generation unit coupled to the processing unit, adapted to generate an MSK, wherein the MSK is for generating at least one encryption key to encrypt traffic for the access. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A method in a communication system, comprising:
-
receiving an access request message for an access to the communication system, the access request message having a first field;
determining the state of the first field; and
if the state is a first value, generating a Master Session Key (MSK) for the access. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21)
-
-
22. An infrastructure element in a communication system, comprising:
-
means for receiving an access request message for an access to the communication system, the access request message having a first field;
means for determining the state of the first field; and
means for generating a Master Session Key (MSK) for the access if the state is a first value.
-
-
23. An access request message format for a communication system, comprising:
-
a type field identifying a type of attribute information for an access to the communication system; and
a value field for the attribute information, the value field comprising;
a second type field identifying a type of sub-attribute information for the access; and
a second value field for the sub-attribute information. - View Dependent Claims (24)
-
Specification