Method for fast roaming in a wireless network
First Claim
1. A method of supporting a roaming service in a wireless network having an authentication server and a plurality of access points (APs) connected to the authentication server, the method comprising:
- deriving from a known master key a first-level security key to be shared between a station STA and an AP with which the STA attempts to associate when the STA attempts to associate with one of the plurality of APs;
deriving from the first-level security key a second-level security key to be shared between the STA and at least one neighbor AP, the at least one neighbor AP neighboring to the AP with which the STA attempts to associate; and
providing the second-level security key to the at least one neighbor AP,wherein when the STA attempts to roam to the at least one neighbor AP, the at least one neighbor AP pre-authenticates the STA with the second-level security key.
2 Assignments
0 Petitions
Accused Products
Abstract
A roaming service method for a fast and secure wireless network is provided. In an embodiment of the present invention, an AP, which an STA associates with, transmits security keys needed for roaming to neighbor APs of the AP. When the STA moves to one of the neighbor APs, a reassociation is carried out between the STA and the neighbor AP using the already provided security key. In another embodiment of the present invention, an authentication server transmits security keys needed for roaming to neighbor APs to which the STA is likely to move, so that when the STA moves to one of the neighbor APs, a reassociation is carried out between the STA and the neighbor AP using the already provided security key.
-
Citations
27 Claims
-
1. A method of supporting a roaming service in a wireless network having an authentication server and a plurality of access points (APs) connected to the authentication server, the method comprising:
-
deriving from a known master key a first-level security key to be shared between a station STA and an AP with which the STA attempts to associate when the STA attempts to associate with one of the plurality of APs; deriving from the first-level security key a second-level security key to be shared between the STA and at least one neighbor AP, the at least one neighbor AP neighboring to the AP with which the STA attempts to associate; and providing the second-level security key to the at least one neighbor AP, wherein when the STA attempts to roam to the at least one neighbor AP, the at least one neighbor AP pre-authenticates the STA with the second-level security key. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. In a wireless network having an authentication server and a plurality of access points (APs) connected to the authentication server, a method of supporting a roaming service in one of the plurality of APs, comprising:
-
receiving from the authentication server a first-level security key derived from a known master key when a station (STA) attempts to associate with an AP; deriving from the first-level security key a second-level security key for at least one neighbor AP, the at least one neighbor AP neighboring to the AP with which the STA attempts to associate; and providing to the at least one neighbor AP the second-level security key, wherein when the STA attempts to roam to the at least one neighbor AP, the at least one neighbor AP pre-authenticates the STA with the second-level security key. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A method of generating a security key in a wireless network having an authentication server and a plurality of access points (APs) connected to the authentication server, the method comprising:
-
receiving from the authentication server a first-level pairwise master key derived from a known master key; deriving from the first-level pairwise master key a pairwise transient key; and deriving from the first-level pairwise master key a second-level pairwise master key for at least one neighbor AP. - View Dependent Claims (16, 17)
-
-
18. In a wireless network having an authentication server and a plurality of access points (APs) connected to the authentication server, a method of generating a security key in a target AP to which a station (STA) associated with a serving AP attempts to roam, the method comprising:
-
receiving from the serving AP a second-level pairwise master key; deriving from the second-level pairwise master key a pairwise transient key; and deriving from the second-level pairwise master key a new second-level master key for at least one neighbor AP. - View Dependent Claims (19)
-
-
20. A method of supporting a roaming service for a station (STA) in a wireless network having a server for authenticating the STA and managing accounting for the STA and a plurality of access points (APs) connected to the authentication server, the method comprising:
-
receiving from a first AP association information regarding association in the server of the STA with the first AP; notifying by the server at least one neighbor AP that the STA has completely associated with the first AP, the at least one neighbor AP neighboring to the first AP and when the STA attempts to roam to the at least one neighbor AP; sending to the at least one neighbor AP a security key generated based on the association information when the at least one neighbor AP requests the security key for the STA, wherein the at least one neighbor AP authenticates the STA using the security key received from the server. - View Dependent Claims (21, 22, 23)
-
-
24. A method of supporting a roaming service for a station (STA) in a wireless network having a server for authenticating the STA and managing accounting for the STA and a plurality of access points (APs) connected to the authentication server, the method comprising:
-
deriving a first-level pairwise master key to be shared between the STA and a first AP by the server when the STA attempts to associate with the first AP being one of the plurality of APs; deriving from the first-level pairwise master key a second-level pairwise master key; and providing to at least one neighbor AP neighboring to the first AP the second-level pairwise key, wherein when the STA attempts to roam to the at least one neighbor AP, the at least one neighbor AP authenticates the STA with the second-level pairwise master key. - View Dependent Claims (25, 26, 27)
-
Specification