GENERATING SECURITY MATERIAL

US 20100333185A1
Filed: 06/08/2010
Published: 12/30/2010
Est. Priority Date: 06/24/2009
Status: Active Grant

First Claim

Patent Images

1. A method for establishing a secure, direct, station-to-station communication between a first station and a second station in a topology comprising a central secret holder and provider that allows secure, direct, station-to-station communications and that allows secure station-to-station broadcast communications, in which the first station and the second station have previously established a security association (SA) with a topology control point (PCP), the method comprising:

creating pair-wise unique material for the first station,wherein the pair-wise unique material is computed as a function of (i) a known shared secret associated with the PCP, (ii) a first piece of unique data associated with the first station, and (iii) a second piece of unique data associated with the second station; and

securely communicating the pair-wise unique material from the first station to the second station.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An apparatus and method establish a secure, direct, station-to-station communication between a first station and a second station in a topology (e.g., PBSS) having a central secret holder/provider that allows secure, direct, station-to-station communications and that allows secure station-to-station broadcast communications. The first station and the second station will have previously established a security association (SA) with a topology control point (PCP). The method includes creating pair-wise unique material for the first station. The pair-wise unique material is computed as a function of (i) a known shared secret associated with the PCP, (ii) a first piece of unique data associated with the first station, and (iii) a second piece of unique data associated with the second station. The method includes securely communicating the pair-wise unique material from the first station to the second station.

Citations

20 Claims

1. A method for establishing a secure, direct, station-to-station communication between a first station and a second station in a topology comprising a central secret holder and provider that allows secure, direct, station-to-station communications and that allows secure station-to-station broadcast communications, in which the first station and the second station have previously established a security association (SA) with a topology control point (PCP), the method comprising:
- creating pair-wise unique material for the first station,wherein the pair-wise unique material is computed as a function of (i) a known shared secret associated with the PCP, (ii) a first piece of unique data associated with the first station, and (iii) a second piece of unique data associated with the second station; and
  
  securely communicating the pair-wise unique material from the first station to the second station.
- View Dependent Claims (2, 3, 4, 5, 11)
- - 2. The method of claim 1, wherein:
    - the known shared secret is a group transient key (GTK) separately provided by the PCP to the first station and the second station, the first piece of unique data is a media access control (MAC) address associated with the first station, or a nonce;
      
      the second piece of unique data is a MAC address associated with the second station or a nonce.
  - 3. The method of claim 2, further comprising using an extensible authentication protocol over local area network (EAPoL) four-way handshake to communicate the first piece of unique data and the second piece of unique data between the first station and the second station.
  - 4. The method of claim 3, further comprising:
    - in response to a race condition associated with colliding EAPoL four-way handshake establishment attempts by the first station and the second station, selectively resolving the race condition based on the MAC address of the first member and the second member or another unique identifier of the first member and the second member.
  - 5. The method of claim 3, further comprising:
    - securing a communication between the first member and the second member using the pair-wise unique material.
  - 11. The method of claim 1, further comprising:
    - creating group-wise security material for a broadcasting member of the topology, wherein the broadcasting member has established an SA with the PCP, and wherein the broadcasting member is to securely transmit a message to one or more other stations in the topology, the group-wise security material being computed as a function of (i) a known broadcast secret associated with the PCP and (ii) a piece of unique data associated with the broadcasting member; and
      
      securely communicating the group-wise security material from the broadcasting member to the one or more other members of the topology, wherein the known shared secret is a group transient key (GTK) provided by the PCP, wherein the first piece of unique data is a media access control (MAC) address associated with the first station or a nonce, and wherein the second piece of unique data is a MAC address associated with the second station or a nonce, and wherein the known broadcast secret is the GTK provided by the PCP, and wherein the unique data is a MAC address associated with the broadcasting member or a nonce.

6. A method, comprising:
- creating group-wise security material for a broadcasting member of a piconet basic service set (PBSS), wherein the broadcasting member has previously established a security association (SA) with a PBSS control point (PCP), and wherein the broadcasting member is to securely transmit a message to one or more members of the PBSS, where the message will not transit the PCP,wherein the group-wise security material is computed as a function of a known secret associated with the PCP and a piece of unique data associated with the broadcasting member; and
  
  securely communicating the group-wise security material from the broadcasting member to one or more other members of the PBSS.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The method of claim 6, the known secret being a group transient key (GTK) provided by the PCP, and the piece of unique data being a media access control (MAC) address associated with the broadcasting member, or a nonce.
  - 8. The method of claim 6, further comprising:
    - using an extensible authentication protocol over local area network (EAPoL) four-way handshake to communicate the piece of unique data or the group-wise security material to the PCP.
  - 9. The method of claim 6, further comprising:
    - communicating the group-wise security material from the PCP to the one or more other members of the PBSS; and
      
      communicating group-wise security information associated with the one or more other members of the PBSS to the broadcasting member.
  - 10. The method of claim 6, further comprising:
    - using the group-wise security material to secure a communication between the broadcasting member and the one or more other members of the PBSS.

12. An apparatus for computing a pair-wise transient key for a first station (S_i) and a second station (S_j) of a piconent basic service set (PBSS), S_iand S_jhaving previously established a security association (SA) with a PBSS control point (PCP), S_iand S_jto perform a secure, station-to-station communication that does not transit the PCP, the method comprising:
- pair-wise key logic to compute the pair-wise transient key (PTK), and where, according to;
  
  PTK_ij=f(GTK_PCP, Unique_SI, Unique_SJ)wherein GTK_PCPis a group transient key generated by the PCP,wherein Unique_SIis information unique to S_i, andwherein Unique_SJis information unique to S_j;
  
  andpair-wise communication logic to securely communicate the PTK_ijbetween S_iand S_j.
- View Dependent Claims (13, 14, 15, 16, 20)
- - 13. The apparatus of claim 12, Unique_Sibeing a media access control (MAC) address associated with S_ior a nonce, and Unique_Sjbeing a MAC address associated with S_jor a nonce.
  - 14. The apparatus of claim 13, wherein the pair-wise communication logic securely communicates Unique_Siand Unique_Sjbetween _Siand S_jusing an extensible authentication protocol over local area network (EAPoL) four-way handshake.
  - 15. The apparatus of claim 13, further comprising:
    - race logic to resolve a first message race condition associated with colliding EAPoL four-way handshake establishment attempts by S_iand S_jbased on the MAC address of S_iand S_j.
  - 16. The apparatus of claim 13, further comprising:
    - computing PTK_ijaccording to;
      
      PTK_ij=f(GTK_PCP, Unique_Si, Unique_Sj, additional parameters)wherein the additional parameters are based, at least in part, on beacon information provided by the PCP.
  - 20. The apparatus of claim 12, further comprising:
    - group-wise key logic to compute, for a broadcasting member S_Bof the PBSS, a group-wise transient key (GTK_B), where S_Bhas previously established an SA with the PCP, and where S_Bis to perform a secure, station-to-station communication that does not transit the PCP, where the secure, station-to-station communication involves one or more other members of the PBSS,wherein the GTK_Bis computed according to;
      
      GTK_B=f(GTK_PCP, Unique_SB)wherein GTK_PCPis a group transient key generated by the PCP, andwherein Unique_SBis information unique to S_B;
      
      andgroup-wise communication logic to securely communicate GTK_Bfrom S_Bto the one or more other members of the PBSS.

17. An apparatus to compute a group-wise transient key (GTK_B) for a broadcasting member S_Bof a piconet basic service set (PBSS), where S_Bhas previously established a security association (SA) with a PBSS control point (PCP), and where S_Bis to perform a secure, station-to-station communication that does not transit the PCP, where the secure, station-to-station communication will involve one or more other members of the PBSS, comprising:
- group-wise key logic to compute GTK_B,according to;
  
  GTK_B=f(GTK_PCP, Unique_SB)wherein GTK_Bis a group transient key generated by the PCP, andwherein Unique_SBis information unique to S_B;
  
  andgroup-wise communication logic to securely communicate GTK_Bfrom S_Bto the one or more other members of the PBSS.
- View Dependent Claims (18, 19)
- - 18. The apparatus of claim 17, Unique_SBbeing a media access control (MAC) address associated with S_Bor a nonce.
  - 19. The apparatus of claim 17, wherein the group-wise communication logic securely communicates Unique_SBand GTK_SBto the PCP using an extensible authentication protocol over local area network (EAPoL) four-way handshake, wherein the group-wise communication logic signals the PCP to selectively distribute the GTK_SBto one or more members of the PBSS, and wherein the group-wise communication logic signals the PCP to selectively distribute group transient keys associated with other members of the PBSS to S_B.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Marvell Asia Pte Limited (Marvell Technology Group Limited)
Original Assignee
Marvell World Trade Limited (Marvell Technology Group Limited)
Inventors
LIU, Yong, LAMBERT, Paul A.

Granted Patent

US 8,813,201 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/6
CPC Class Codes

H04L 2209/601   Broadcast encryption

H04L 63/062   for key distribution, e.g. ...

H04L 63/065   for group communications cr...

H04L 63/0892   by using authentication-aut...

H04L 9/0833   involving conference or gro...

H04W 12/041   Key generation or derivation

H04W 12/0431   Key distribution or pre-dis...

H04W 84/045   using private Base Stations...

GENERATING SECURITY MATERIAL

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

GENERATING SECURITY MATERIAL

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links