Address spoofing prevention
First Claim
1. A method for securing a radio communication link establishment in a radio communication network comprising a local network and a secured network, at least a first terminal and a second terminal being part of the local network, at least the first terminal being capable of communicating with the secured network, the radio communication network implementing layered protocol functions, comprising at least Layers 1, 2 and 3, the terminals being identifiable by their Layer 2 and 3 addresses, the secured network comprising a database comprising address correspondence information between Layer 2 and 3 addresses of terminals, the method comprises the following steps in respect of the first terminal establishing a radio communication link with the second terminal:
- the first terminal authenticating itself with the secured network;
the first terminal, by using the Layer 3 address of the second terminal, obtaining the corresponding Layer 2 address of the second terminal from the address correspondence information comprised in the database; and
establishing in the local network the radio communication link with the second terminal by using the Layer 2 address.
3 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to a method for securing a radio communication link establishment in a radio communication network comprising a local network and a secured network. The local network comprises at least a first terminal and a second terminal and at least the first terminal is capable of communicating with the secured network. The radio communication network implements layered protocol functions, comprising at least Layers 1, 2 and 3, the terminals being identifiable by their Layer 2 and 3 addresses. The secured network comprises a database comprising address correspondence information between Layer 2 and 3 addresses of terminals. In the method the first terminal authenticates itself with the secured network and then by using the Layer 3 address of the second terminal, obtaining the address correspondence information provided by the database and thereby determining the corresponding Layer 2 address of the second terminal. Then the first terminal establishes in the local network the radio communication link with the second terminal by using the Layer 2 address.
51 Citations
10 Claims
-
1. A method for securing a radio communication link establishment in a radio communication network comprising a local network and a secured network, at least a first terminal and a second terminal being part of the local network, at least the first terminal being capable of communicating with the secured network, the radio communication network implementing layered protocol functions, comprising at least Layers 1, 2 and 3, the terminals being identifiable by their Layer 2 and 3 addresses, the secured network comprising a database comprising address correspondence information between Layer 2 and 3 addresses of terminals, the method comprises the following steps in respect of the first terminal establishing a radio communication link with the second terminal:
-
the first terminal authenticating itself with the secured network; the first terminal, by using the Layer 3 address of the second terminal, obtaining the corresponding Layer 2 address of the second terminal from the address correspondence information comprised in the database; and establishing in the local network the radio communication link with the second terminal by using the Layer 2 address. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A mobile station arranged for establishing a secure radio communication link in a radio communication network comprising a local network and a secured network, at least the mobile station and a terminal being part of the local network, at least the mobile station being capable of communicating with the secured network, the radio communication network implementing layered protocol functions, comprising at least Layers 1, 2 and 3, the mobile station and the terminals being identifiable by their Layer 2 and 3 addresses, the secured network comprising a database comprising address correspondence information between Layer 2 and 3 addresses of terminals, the mobile station comprises:
-
means for authenticating itself with the secured network; means for, by using the Layer 3 address of the terminal, obtaining the corresponding Layer 2 address of the terminal from the address correspondence information comprised in the database; and means for establishing in the local network a radio communication link with the terminal by using the Layer 2 address.
-
Specification