Radio LAN access authentication system
First Claim
1. A wireless LAN access authentication system in a network system comprising a plurality of wireless LAN network systems and a center station that controls said plurality of wireless LAN network systems in a centralized manner,each of said plurality of wireless LAN network systems comprising at least two access point sections accessed by a radio terminal apparatus that transmits/receives a radio signal through a radio section and a gateway apparatus which relays transmission/reception of data signals and control signals between said access point sections,said center station comprising a center station gateway apparatus that relays transmission/reception of data signals and control signals between the gateway apparatuses of said plurality of wireless LAN network systems and an authentication server that performs access authentication on said radio terminal apparatus which has accessed said access point sections and distributes cryptographic keys used for encryption of a radio section through which said access-authenticated radio terminal apparatus carries out communication to said radio terminal apparatus and said access point section,said wireless LAN access authentication system comprising:
- an access control section provided for each of said plurality of wireless LAN network systems for controlling the situation of access of said radio terminal apparatus in the own communication area to said authentication server and checking the presence/absence of access of said radio terminal apparatus to said authentication server when said radio terminal apparatus moves to a communication area of a new access point section; and
a cryptographic key control section provided for each of said plurality of wireless LAN network systems for controlling cryptographic keys distributed from said authentication server and distributing, when said access control section confirms that said radio terminal apparatus which has moved to the communication area of the other access point section has already accessed said authentication server, the cryptographic key for said radio section through which said radio terminal apparatus carries out communication to said radio terminal apparatus and said new access point section in the area to which said radio terminal apparatus has moved.
4 Assignments
0 Petitions
Accused Products
Abstract
A wireless LAN access authentication system capable of shortening the time required for an access authentication procedure of a radio terminal apparatus. In this wireless LAN access authentication system, when a radio terminal apparatus 116 of a user who has sent an access request is already registered through initial access, a gateway apparatus 111 searches for a WEP key assigned to the radio terminal apparatus 116 through a WEP key control section 306 and redistributes the WEP key registered beforehand to a new access point section 124 in the destination area and the radio terminal apparatus 116. The radio terminal apparatus 116 and access point section 124 to which the WEP key has been distributed encrypt transmission/reception data in a predetermined radio section using the redistributed WEP key and carry out a communication.
-
Citations
8 Claims
-
1. A wireless LAN access authentication system in a network system comprising a plurality of wireless LAN network systems and a center station that controls said plurality of wireless LAN network systems in a centralized manner,
each of said plurality of wireless LAN network systems comprising at least two access point sections accessed by a radio terminal apparatus that transmits/receives a radio signal through a radio section and a gateway apparatus which relays transmission/reception of data signals and control signals between said access point sections, said center station comprising a center station gateway apparatus that relays transmission/reception of data signals and control signals between the gateway apparatuses of said plurality of wireless LAN network systems and an authentication server that performs access authentication on said radio terminal apparatus which has accessed said access point sections and distributes cryptographic keys used for encryption of a radio section through which said access-authenticated radio terminal apparatus carries out communication to said radio terminal apparatus and said access point section, said wireless LAN access authentication system comprising: -
an access control section provided for each of said plurality of wireless LAN network systems for controlling the situation of access of said radio terminal apparatus in the own communication area to said authentication server and checking the presence/absence of access of said radio terminal apparatus to said authentication server when said radio terminal apparatus moves to a communication area of a new access point section; and a cryptographic key control section provided for each of said plurality of wireless LAN network systems for controlling cryptographic keys distributed from said authentication server and distributing, when said access control section confirms that said radio terminal apparatus which has moved to the communication area of the other access point section has already accessed said authentication server, the cryptographic key for said radio section through which said radio terminal apparatus carries out communication to said radio terminal apparatus and said new access point section in the area to which said radio terminal apparatus has moved. - View Dependent Claims (2, 3, 4)
-
-
5. A wireless LAN access authentication method in a network system comprising a plurality of wireless LAN network systems and a center station that controls said plurality of wireless LAN network systems in a centralized manner,
each of said plurality of wireless LAN network systems comprising at least two access point sections accessed by a radio terminal apparatus that transmits/receives a radio signal through a radio section and a gateway apparatus which relays transmission/reception of data signals and control signals between said access point sections, and said center station comprising a center station gateway apparatus that relays transmission/reception of data signals and control signals between the gateway apparatuses of said plurality of wireless LAN network systems and an authentication server that performs access authentication on said radio terminal apparatus which has accessed said access point sections and distributes cryptographic keys used for encryption of a radio section through which said access-authenticated radio terminal apparatus carries out communication to said radio terminal apparatus and said access point section, said wireless LAN access authentication method comprising: -
an access control step of controlling the situation of access of said radio terminal apparatus in each of said wireless LAN network systems to said authentication server and checking the presence/absence of access of said radio terminal apparatus to said authentication server when said radio terminal apparatus moves to a communication area of a new access point section; and a cryptographic key control step of controlling cryptographic keys distributed from said authentication server and distributing, when it is confirmed in said access control step that the radio terminal apparatus which has moved to the communication area of the other access point section has already accessed said authentication server, the cryptographic key for the radio section through which said radio terminal apparatus carries out communication to said radio terminal apparatus and said new access point section in the area to which said radio terminal apparatus has moved.
-
-
6. A gateway apparatus in each of wireless LAN networks in a wireless LAN access authentication system in a network system comprising a plurality of wireless LAN network systems and a center station that controls said plurality of wireless LAN network systems in a centralized manner,
each of said plurality of wireless LAN network systems comprising at least two access point sections accessed by a radio terminal apparatus that transmits/receives a radio signal through a radio section, said center station comprising a center station gateway apparatus that relays transmission/reception of data signals and control signals between the gateway apparatuses of said plurality of wireless LAN network systems and an authentication server that performs access authentication on said radio terminal apparatus which has accessed said access point section and distributes cryptographic keys used for encryption of a radio section through which said access-authenticated radio terminal apparatus carries out communication to said radio terminal apparatus and said access point section, said gateway apparatus comprising: -
a transmission/reception section that transmits/receives said data signals and said control signals to/from the center station gateway apparatus of said center station; an access control section that controls the situation of access of said radio terminal apparatus to said authentication server within each of said wireless LAN networks and checks the presence/absence of access of said radio terminal apparatus to said authentication server when said radio terminal apparatus moves to a communication area of a new access point section; and a cryptographic key control section that controls said cryptographic keys distributed from said authentication server through said access control section and distributes, when it is confirmed that said radio terminal apparatus which has moved to the communication area of the other access point section has already accessed said authentication server, said cryptographic key for the radio section through which said radio terminal apparatus carries out communication to said radio terminal apparatus and the new access point section in the area to which said radio terminal apparatus has moved. - View Dependent Claims (7)
-
-
8. A radio terminal apparatus used in a wireless LAN access authentication system in a network system comprising a plurality of wireless LAN network systems and a center station which controls said plurality of wireless LAN network systems in a centralized manner,
each of said plurality of wireless LAN network systems comprising at least two access point sections accessed by a radio terminal apparatus transmitting/receiving a radio signal through a radio section and a gateway apparatus that relays transmission/reception of data signals and control signals between said access point sections, said center station comprising a center station gateway apparatus that relays transmission/reception of data signals and control signals between the gateway apparatuses of said plurality of wireless LAN network systems and an authentication server that performs access authentication on said radio terminal apparatus which has accessed said access point section and distributes the cryptographic key used for encryption of the radio section through which said access-authenticated radio terminal apparatus carries out communication to said radio terminal apparatus and said access point section, said radio terminal apparatus comprising an information card in which ID information is recorded when access authentication is performed by said authentication server of said center station.
Specification