Association, authentication, and security in a network

US 20070195956A1
Filed: 03/24/2006
Published: 08/23/2007
Est. Priority Date: 07/27/2005
Status: Active Grant

First Claim

Patent Images

1. A method of establishing a secure channel between a first device and a second device in a network, the method comprising the steps of:

providing a first key associated with the first device;

scheduling within one or more time slots the transmission of a second key associated with the second device;

encrypting the second key using the first key; and

sending the encrypted second key at the scheduled one or more time slots.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods, devices, and systems are provided facilitating security within a network managed by a central coordinator. In some embodiments, the exchange of security keys is performed within one or more time slots that are defined by the central coordinator and known to stations exchanging these security keys. Furthermore, security, e.g., association may be initiated by one user action.

Citations

24 Claims

1. A method of establishing a secure channel between a first device and a second device in a network, the method comprising the steps of:
- providing a first key associated with the first device;
  
  scheduling within one or more time slots the transmission of a second key associated with the second device;
  
  encrypting the second key using the first key; and
  
  sending the encrypted second key at the scheduled one or more time slots.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1 wherein the network is a power line network.
  - 3. The method of claim 1 wherein the network utilizes one or more time-scheduling technologies.
  - 4. The method of claim 1 wherein information about the scheduled one or more time slots is communicated in the network using one or more beacons.
  - 5. The method of claim 1 further comprising the steps of:
    - listening within the scheduled one or more time slots for the encrypted second key; and
      
      decrypting the encrypted second key using a private key associated with the first key.
  - 6. The method of claim 1 further comprising the step of sending a third key encrypted using the second key.
  - 7. The method of claim 1 further comprising the step of transmitting messages within the network, wherein at least one of the messages is encrypted using the second key.

8. A method of secure communication between a first device and a second device within a network, the method comprising the steps of:
- requesting network association by the first device;
  
  establishing a secure channel between the first device and the second device by exchanging a first key and a second key, wherein the first key is associated with the first device and the second key is associated with the second device, wherein the second key is encrypted using the first key, and wherein the encrypted second key is sent at a scheduled one or more time slots; and
  
  authenticating the first device within the network, wherein the authenticating step comprises providing a set of network credentials comprising a network encryption key and a network authentication key via the established secure channel.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The method of claim 8, wherein the step of requesting network association is initiated, by a user, by providing one user action.
  - 10. The method of claim 9, wherein the step of requesting network association further comprises detecting a set of available networks with which the first device may be associated.
  - 11. The method of claim 8, wherein the step of authenticating the first device is initiated, by a user, by providing one user action.
  - 12. The method of claim 8, wherein the step of establishing a secure channel further comprises exchanging a third key encrypted using the second key.
  - 13. The method of claim 8 wherein the second device is a central coordinator.

14. A device adapted to be operably coupled to a network, the device comprising:
- a key module adapted to determine one or more keys;
  
  an encryption/decryption module adapted to encrypt and decrypt messages in the network; and
  
  a communication module adapted to;
  
  establish a secure channel with at least one station, wherein the secure channel is established by exchanging a first key and a second key, wherein the first key, the second key, or both the first key and the second key are determined by the key module, wherein the second key is encrypted by the encryption/decryption module using the first key, and wherein the encrypted second key is exchanged within one or more scheduled time slots.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. The device of claim 14 further comprising:
    - an association module adapted to request association with the network.
  - 16. The device of claim 14 further comprising:
    - an authentication module adapted to grant or reject association with the network,
  - 17. The device of claim 16, wherein the authentication module is further adapted to send a set of network credentials.
  - 18. The device of claim 14 further comprising:
    - a network scheduling module adapted to;
      
      schedule the one or more scheduled time slots to at least one station in the network, including in response to hearing a request for one or more keys;
      
      transmit beacons controlling activities in the network.
  - 19. The device of claim 14 wherein the communication module is further adapted to establish a secure channel by exchanging an additional third key, wherein the third key is encrypted by the second key.
  - 20. The device of claim 14, wherein the network is a power line network.

21. A system comprising:
- a first device adapted to;
  
  send a first key associated with the first device; and
  
  request a second key associated with a second device;
  
  a second device adapted to;
  
  encrypt the second public key using the first public key; and
  
  send the second key within a scheduled one or more time slots allocated for the second device to send the second public key;
  
  a network operably coupled to the first device and the second device.
- View Dependent Claims (22, 23, 24)
- - 22. The system of claim 21, wherein the first device is further adapted to:
    - listen within the scheduled one or more time slots for the encrypted second key; and
      
      decrypt the encrypted second key using a private key associated with the first key.
  - 23. The system of claim 21, wherein the first device is further adapted to send a third key encrypted using the second key.
  - 24. The system of claim 21, wherein the network is a power line network.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sharp Kabushiki Kaisha (Hon Hai Precision Industry Co., Ltd.)
Original Assignee
Sharp Laboratories of America Incorporated (Hon Hai Precision Industry Co., Ltd.)
Inventors
Gavette, Sherman

Granted Patent

US 8,509,442 B2
Time in Patent Office

Days
Field of Search
US Class Current

380/277
CPC Class Codes

H04L 2209/08   Randomization, e.g. dummy o...

H04L 2463/062   applying encryption of the ...

H04L 63/06   for supporting key manageme...

H04L 9/0825   using asymmetric-key encryp...

H04L 9/0844   with user authentication or...

Association, authentication, and security in a network

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Association, authentication, and security in a network

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links