Access point, terminal, encryption key configuration system, encryption key configuration method, and program
First Claim
1. An access point that connects to terminals to network through a wireless LAN connection device equipped on said terminals, said access point comprising:
- an operation receiving unit that receives a prescribed operation;
a detection unit that detects a status of a connection configuration required for connection to the network, when said prescribed operation is received by said operation receiving unit;
a mode activation unit that, when the detected status of the connection configuration indicates that the connection configuration remain to be performed, activates a restricted receiving mode in which only a packet including information specific to one of said terminals is accepted as an initial configuration packet;
a terminal identification unit that, when said initial configuration packet sent from a first terminal among said terminals is received while the restricted receiving mode is active, identifies the first terminal that sent the initial configuration packet based on said terminal-specific information;
an encryption key setting unit that, prior to the commencement of subsequent communications with said first terminal identified by said terminal identification unit, sets a first encryption key to be used for communications with said first terminal to a value corresponding to an encryption key set in said first terminal, using said terminal-specific information; and
a communication unit that performs wireless communication with said first terminal while decoding wireless communication data using said first encryption key.
1 Assignment
0 Petitions
Accused Products
Abstract
An object of the present invention is to enable the configuration tasks needed to form a wireless LAN to be performed using a simple method while increasing security during such configuration. In a wireless network configuration system GH1 including an encryption key setting system LH1, where an access point 20 determines after the power thereto is turned ON that configuration for connection to a wireless LAN has not yet be carried out, the access point 20 activates a restricted receiving mode in which only an initial configuration packet is accepted. A terminal 50 that has sent an initial configuration packet and the access point 20 that has received such initial configuration packet while the restricted receiving mode is active each create an identical WEP key with reference to the data on a CD-ROM 51 or the data in a ROM 12, respectively, and set and register the created WEP key in itself.
-
Citations
21 Claims
-
1. An access point that connects to terminals to network through a wireless LAN connection device equipped on said terminals, said access point comprising:
-
an operation receiving unit that receives a prescribed operation;
a detection unit that detects a status of a connection configuration required for connection to the network, when said prescribed operation is received by said operation receiving unit;
a mode activation unit that, when the detected status of the connection configuration indicates that the connection configuration remain to be performed, activates a restricted receiving mode in which only a packet including information specific to one of said terminals is accepted as an initial configuration packet;
a terminal identification unit that, when said initial configuration packet sent from a first terminal among said terminals is received while the restricted receiving mode is active, identifies the first terminal that sent the initial configuration packet based on said terminal-specific information;
an encryption key setting unit that, prior to the commencement of subsequent communications with said first terminal identified by said terminal identification unit, sets a first encryption key to be used for communications with said first terminal to a value corresponding to an encryption key set in said first terminal, using said terminal-specific information; and
a communication unit that performs wireless communication with said first terminal while decoding wireless communication data using said first encryption key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An encryption key setting system that sets in an access point comprising a wireless LAN transponder and one terminal of terminals equipped a wireless LAN connection device an encryption key used for encoding in advance the wireless communication data transmitted wirelessly between said access point and said terminal, wherein:
-
said terminal comprises;
a transmission unit that wirelessly transmits an initial configuration packet including information specific to said terminal based on a prescribed instruction issued from said terminal; and
a setting unit that, after the transmission of said initial configuration packet by said transmission unit but prior to communication with said access point, sets the encryption key to be used for communications with said access point to a prescribed value based on said terminal-specific information, and said access point comprises;
an operation receiving unit that receives a prescribed operation;
a detection unit that detects a status of a connection configuration required for connection to the network, when said prescribed operation is received by said operation receiving unit;
a mode activation unit that, when the detected status of the connection configuration indicates that the connection configuration remain to be performed, activates a restricted receiving mode in which only a packet including information specific to a terminal is accepted as an initial configuration packet;
a terminal identification unit that, when said initial configuration packet sent from a first terminal among said terminals is received while the restricted receiving mode is active, identifies the first terminal that sent the initial configuration packet based on said terminal-specific information; and
an encryption key setting unit that, prior to the commencement of subsequent communications with said first terminal identified by said terminal identification unit, sets a first encryption key to be used for communications with said first terminal to a value corresponding to an encryption key set in said first terminal, using said terminal-specific information. - View Dependent Claims (13, 14, 15)
-
-
16. A method for setting in an access point comprising a wireless LAN transponder and one terminal of terminals equipped a wireless LAN connection device an encryption key used to encode in advance the wireless communication data transmitted wirelessly between said access point and said terminal, the method comprising:
-
on the side of said terminal, wirelessly transmitting an initial configuration packet that includes information specific to said terminal based on a prescribed instruction; and
setting the encryption key to be used for communications with said access point to a prescribed value based on said terminal-specific information, after the transmission of said initial configuration packet but prior to communication with said access point, and on the side of said access point, detecting a status of a connection configuration required for connection to the network, when a prescribed operation is received;
activating a restricted receiving mode in which only a packet including information specific to a terminal is accepted as an initial configuration packet, when the detected status of the connection configuration indicates that the connection configuration remain to be performed;
identifying the first terminal that sent the initial configuration packet based on said terminal-specific information, when said initial configuration packet sent from a first terminal among said terminals is received while the restricted receiving mode is active; and
setting a first encryption key to be used for communications with said first terminal to a value corresponding to an encryption key set in said first terminal, using said terminal-specific information prior to the commencement of subsequent communications with said first terminal identified by said terminal identification unit. - View Dependent Claims (17, 18, 19, 20)
-
-
21. An encryption key setting system that sets in an access point that comprises a wireless LAN transponder and in a terminal that includes a wireless LAN connection device an encryption key used for encoding wireless communication data that is exchanged wirelessly between said access point and said terminal, said system comprising:
-
an RFID tag that includes an RFID chip having a communication range that is narrower than the wireless communication range for the wireless communication data, and that stores information pertaining to the encryption key valid between said terminal and said access point;
wherein said access point and said terminal each comprise;
an information retrieval unit that retrieves the encryption key information stored in said RFID tag; and
an setting unit that sets in its own device the encryption key valid between said terminal and said access point based on said information retrieved by said information retrieval unit.
-
Specification