Methods and apparatus for a keying mechanism for end-to-end service control protection
First Claim
Patent Images
1. A method comprising:
- providing a mobile station (STA) with a service controller identification of a service controller, when associating the STA with a wireless network;
forwarding to the service controller, on behalf of the STA, a service configuration request received from the STA, that includes a first random number generated by the STA in response to receipt of the service controller identification, for the service controller to symmetrically generate a temporal integrity pairwise key (TIPK) for secured control communication between the service controller the STA, the TIPK comprising the first random number and a second random number to be generated by the service controller in response to receipt of the first random number; and
forwarding to the STA, on behalf of the service controller, a service configuration response received from the service controller that includes the second random number generated by the service controller, for the STA to symmetrically generate the TIPK for said secured control communication with the service controller.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the present invention provide methods and apparatus for a keying mechanism for end-to-end service control protection within wireless networks. Other embodiments may be described and claimed.
-
Citations
22 Claims
-
1. A method comprising:
-
providing a mobile station (STA) with a service controller identification of a service controller, when associating the STA with a wireless network;
forwarding to the service controller, on behalf of the STA, a service configuration request received from the STA, that includes a first random number generated by the STA in response to receipt of the service controller identification, for the service controller to symmetrically generate a temporal integrity pairwise key (TIPK) for secured control communication between the service controller the STA, the TIPK comprising the first random number and a second random number to be generated by the service controller in response to receipt of the first random number; and
forwarding to the STA, on behalf of the service controller, a service configuration response received from the service controller that includes the second random number generated by the service controller, for the STA to symmetrically generate the TIPK for said secured control communication with the service controller. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An apparatus comprising:
-
a transmit block adapted to transmit, for a mobile station (STA) hosting the apparatus, service configuration request and service control messages to a service controller that controls at least one service related to wireless communication within a wireless network;
a receive block operatively coupled to the transmit block and adapted to receive service configuration response and service control messages from the service controller; and
a control block operatively coupled to the transmit and receive blocks, the control block being adapted to generate a first random number for inclusion with a service configuration request message, on receipt of a service controller identification, when associating the STA to a network, and to symmetrically generate a temporal integrity pairwise key (TIPK) comprising the first random number and a second random number received with a service configuration response message, the second random number generated by the service controller in response to the receipt of the first random number. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13)
-
-
14. A system comprising:
-
an omnidirectional antenna;
a service controller operatively coupled to the antenna to control a service for a wireless network that includes at least one service related to wireless communication, the service controller being adapted to receive a service configuration message from a network access point (AP) on behalf of a mobile station (STA), the service configuration message including a first random number generated by the STA, and to transmit a service configuration response message that includes a second random number to the AP for forwarding to the STA, the service controller being further adapted to generate the second random number and to symmetrically generate a unique temporal integrity pairwise key (TIPK) for secured control message communication with the STA, the TIPK comprising the first random number and the second random. - View Dependent Claims (15, 16)
-
-
17. An article of manufacture comprising:
-
a storage medium; and
a plurality of instructions stored in the storage medium and designed to enable a mobile station (STA) to perform a plurality of STA operations, a service controller to perform a plurality of service controller operations, or both;
the plurality of STA operations including;
receiving for a first STA from a first access point (AP) a service controller identification as part of associating the first STA with a wireless network;
generating a first random number for the first STA in response to receipt of the service controller identification;
transmitting for the first STA to the first service controller, through the AP, a first service configuration request that includes the first random number generated by the first STA;
receiving, for the first STA, via the first AP, a first service configuration response that includes a second random number generated by the first service controller in response to receipt of the first random number; and
generating, for the first STA, a first temporal integrity pairwise key (TIPK) comprising the first and second random numbers, for secured control message communication between the first STA and the first service controller, the first TIPK being symmetric to a TIPK generated at the service controller;
the plurality of service controller operations including;
receiving from a second STA, by a second service controller, a second service configuration request including a third random number generated by the second STA;
generating by the second service controller a fourth random number, in response to receipt of the third random number;
responding, to the second STA, a second service configuration response that includes the fourth random number; and
generating a second TIPK comprising the third and fourth random numbers to control secured control message communication between the second STA and the second service controller, the second TIPK being symmetric to a TIPK being generated by the second STA. - View Dependent Claims (18, 19, 20, 21, 22)
-
Specification