Methods and apparatus for providing an insertion and integrity protection system associated with a wireless communication platform
First Claim
Patent Images
1. A method comprising:
- performing a handshake exchange between a wireless supplicant of a host controller and a network interface device driver of the host controller to produce one or more integrity protection information, wherein the host controller resides in a wireless communication node, and wherein the one or more integrity protection information is not accessible to applications operating on the host controller other than the network interface device driver, wherein the one or more integrity protection information is based on one or more encryption keys;
generating a first data integrity value of a protocol data unit (PDU) at the network interface device driver, wherein the first data integrity value is based on the one or more integrity protection information;
storing the first data integrity value in a message integrity check field of the PDU;
providing the one or more integrity protection information and the PDU, separately, to a network interface device operatively coupled to the network interface device driver, wherein the network interface device resides in the wireless communication node;
generating a second data integrity value of the PDU at the network interface device based on the one or more integrity protection information provided to the network interface device;
comparing the first data integrity value of the PDU and the second data integrity value of the PDU at the network interface device;
identifying a condition indicative of integrity of the PDU based on the comparison of the first and second data integrity values; and
transmitting the PDU through the network interface device if the condition indicative of integrity is met.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of methods and apparatus for providing an insertion and integrity protection system associated with a wireless communication platform are generally described herein. Other embodiments may be described and claimed.
-
Citations
30 Claims
-
1. A method comprising:
-
performing a handshake exchange between a wireless supplicant of a host controller and a network interface device driver of the host controller to produce one or more integrity protection information, wherein the host controller resides in a wireless communication node, and wherein the one or more integrity protection information is not accessible to applications operating on the host controller other than the network interface device driver, wherein the one or more integrity protection information is based on one or more encryption keys; generating a first data integrity value of a protocol data unit (PDU) at the network interface device driver, wherein the first data integrity value is based on the one or more integrity protection information; storing the first data integrity value in a message integrity check field of the PDU; providing the one or more integrity protection information and the PDU, separately, to a network interface device operatively coupled to the network interface device driver, wherein the network interface device resides in the wireless communication node; generating a second data integrity value of the PDU at the network interface device based on the one or more integrity protection information provided to the network interface device; comparing the first data integrity value of the PDU and the second data integrity value of the PDU at the network interface device; identifying a condition indicative of integrity of the PDU based on the comparison of the first and second data integrity values; and transmitting the PDU through the network interface device if the condition indicative of integrity is met. - View Dependent Claims (2, 3, 4, 5, 6, 28, 29, 30)
-
-
7. An article of manufacture comprising:
-
a non-transitory storage medium; and a plurality of programming instructions stored on the storage medium, which, in response to execution of the plurality of programming instructions by a computing device, cause the computing device to; perform a handshake exchange between a wireless supplicant of a host controller and a network interface device driver of the host controller to produce one or more integrity protection information, wherein the host controller resides in the computing device, and wherein the one or more integrity protection information is not accessible to applications operating on the host controller other than the network interface device driver, wherein the one or more integrity protection information is based on one or more encryption keys; generate a first data integrity value of a protocol data unit (PDU) at the network interface device driver of the computing device, wherein the first data integrity value is based on the one or more integrity protection information, and wherein the PDU includes the first data integrity value in a message integrity check field of the PDU;
provide the one or more integrity protection information and the PDU, separately, to a network interface device operatively coupled to the network interface device driver, wherein the network interface device resides in the computing device;generate a second data integrity value of the PDU at the network interface device based on the one or more integrity protection information provided to the network interface device; compare the first data integrity value and the second data integrity value of the PDU at the network interface device,; identify a condition indicative of integrity of the data traffic based on the comparison of the first and second data integrity values; and transmit the PDU through the network interface device if the condition indicative of integrity is met. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. An apparatus comprising:
- a network interface device driver of a wireless station configured to generate a first data integrity value of a protocol data unit (PDU), wherein the first data integrity value is based on one or more integrity protection information generated from a handshake exchange between a wireless supplicant of a host controller of the wireless station and the network interface device driver, wherein the network interface device driver reside in the host controller, wherein the one or more integrity protection information is based on one or more encryption keys generated by the network interface device driver and is not accessible to applications operating on the host controller other than the network interface device driver, and wherein the PDU includes the first data integrity value in a message integrity check field of the PDU; and
a network interface device residing in the wireless station and operatively coupled to the network interface device driver, and configured to; obtain the one or more integrity protection information and the PDU separately from the network interface device driver, generate a second data integrity value of the PDU based on the one or more integrity protection information separately obtained by the network interface device, compare the first and second data integrity values, identify a condition indicative of integrity of the PDU based on comparison of the first and second data integrity values, and transmit the PDU if the condition indicative of integrity is met. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21)
- a network interface device driver of a wireless station configured to generate a first data integrity value of a protocol data unit (PDU), wherein the first data integrity value is based on one or more integrity protection information generated from a handshake exchange between a wireless supplicant of a host controller of the wireless station and the network interface device driver, wherein the network interface device driver reside in the host controller, wherein the one or more integrity protection information is based on one or more encryption keys generated by the network interface device driver and is not accessible to applications operating on the host controller other than the network interface device driver, and wherein the PDU includes the first data integrity value in a message integrity check field of the PDU; and
-
22. A system comprising:
-
a processor; a network interface device driver operatively coupled to the processor and configured to generate a first data integrity value of a protocol data unit (PDU), wherein the first data integrity value is based on one or more integrity protection information generated from a handshake exchange between a wireless supplicant of a host controller of the system and the network interface device driver, wherein the one or more integrity protection information is based on one or more encryption keys generated by the processor and is not accessible to applications operating on the host controller other than the network interface device driver, and wherein the PDU includes the first data integrity value in a message integrity check field of the PDU; a network interface card operatively coupled to the processor and the network interface device driver, and configured to; obtain the one or more integrity protection information and the PDU separately from the processor, generate a second data integrity value of the PDU based on the one or more integrity protection information separately obtained by the network interface device, compare the first and second data integrity values, identify a condition indicative of integrity of the PDU based on the comparison of the first and second data integrity values, and transmit the PDU if the condition indicative of integrity is met; and an omni-directional antenna operatively coupled to the network interface card. - View Dependent Claims (23, 24, 25, 26, 27)
-
Specification