System and method for secure wireless multi-hop network formation
First Claim
1. A method comprising:
- in a multi-hop wireless network comprising a plurality of network nodes, establishing pair-wise security between pairs of neighbouring network nodes;
for at least one pair of network nodes that are not neighbours, establishing security between the pair of network nodes that are not neighbours using tunnel encryption keys derived by the pair of network nodes that are not neighbours on an ad hoc basis.
3 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides methods and devices for a security architecture for use in wireless multi-hop networks. A method for implementing pair-wise encryption key establishment, network node authentication and determining tunnel encryption keys is provided in a following manner. In a multi-hop wireless network including a plurality of network nodes, pair-wise security is established between pairs of neighbouring network nodes of the plurality of network nodes. For example, pair-wise security is established in the form of temporal pair-wise encryption keys. Following establishment of pair-wise security between pairs of neighbouring network nodes, for a pair of network nodes that are not neighbours, tunnel security is established between the pair of network nodes using tunnel encryption keys derived by the pair of network nodes on an ad hoc basis. The tunnel encryption keys are used to form the connection between non-neighbouring network nodes so as to avoid the hop-by-hop encryption/decryption used in conventional multi-hop wireless systems.
-
Citations
20 Claims
-
1. A method comprising:
-
in a multi-hop wireless network comprising a plurality of network nodes, establishing pair-wise security between pairs of neighbouring network nodes; for at least one pair of network nodes that are not neighbours, establishing security between the pair of network nodes that are not neighbours using tunnel encryption keys derived by the pair of network nodes that are not neighbours on an ad hoc basis. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. An apparatus comprising:
-
transmitting circuitry and receiving circuitry configured for communicating with at least one network node; a pair-wise security module configured to establish pair-wise security between neighbouring network nodes; a tunnel key security module configured to establish security between non-neighbouring network nodes using tunnel encryption keys on an ad hoc basis. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification