Methods and apparatus for scalable distributed management of wireless virtual private networks
First Claim
Patent Images
1. A mobile communication system, comprising a plurality of leader nodes, each leader having logic contributing to management of a VPN having a plurality of group members, wherein communication between group members are encrypted using a VPN group key, each leader node comprising:
- authentication logic authenticating VPN group members;
acceptance logic coordinating acceptance of group members with other leader nodes; and
logic verifying authentication of a mobile station seeking group membership when said mobile station is authenticated by f+1 leader nodes, wherein f is the maximum tolerable number of fault leader nodes and 3f+1 is less than or equal to the total number of leader nodes, and at least 2f+1 leaders received a request to authenticate said mobile station seeking group membership.
4 Assignments
0 Petitions
Accused Products
Abstract
An application of intrusion tolerant concepts to a software infrastructure for supporting secure group applications. This application is suited for use with network layer protocols such as TBRPF and is particularly adapted for wireless networks, and more specifically mobile ad hoc networks.
-
Citations
7 Claims
-
1. A mobile communication system, comprising a plurality of leader nodes, each leader having logic contributing to management of a VPN having a plurality of group members, wherein communication between group members are encrypted using a VPN group key, each leader node comprising:
- authentication logic authenticating VPN group members;
acceptance logic coordinating acceptance of group members with other leader nodes; and
logic verifying authentication of a mobile station seeking group membership when said mobile station is authenticated by f+1 leader nodes, wherein f is the maximum tolerable number of fault leader nodes and 3f+1 is less than or equal to the total number of leader nodes, and at least 2f+1 leaders received a request to authenticate said mobile station seeking group membership. - View Dependent Claims (2, 3, 4, 5, 6, 7)
- authentication logic authenticating VPN group members;
Specification