Address spoofing prevention
First Claim
1. A method for establishing a radio communication link in a radio communication network comprising a wireless local network and a secured network, at least a first wireless terminal and a second wireless terminal being part of the wireless local network, at least the first wireless terminal being capable of communicating with the secured network, the radio communication network implementing layered protocol functions comprising at least Layers 1, 2 and 3 functions, the wireless terminals being identifiable by their Layer 2 and 3 addresses, the secured network comprising a database, the database comprising address correspondence information between Layer 2 and 3 addresses of terminals, the method comprising the following steps in respect of the first wireless terminal establishing a radio communication link with the second wireless terminal:
- the first wireless terminal authenticating itself with the secured network;
the first wireless terminal, by accessing the database and using the Layer 3 address of the second wireless terminal, obtaining the corresponding Layer 2 address of the second terminal from the address correspondence information in the database; and
establishing in the local network the radio communication link with the second wireless terminal by using the Layer 2 address.
3 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to a method for securing a radio communication link establishment in a radio communication network comprising a local network and a secured network. The local network comprises at least a first terminal and a second terminal and at least the first terminal is capable of communicating with the secured network. The radio communication network implements layered protocol functions, comprising at least Layers 1, 2 and 3, the terminals being identifiable by their Layer 2 and 3 addresses. The secured network comprises a database comprising address correspondence information between Layer 2 and 3 addresses of terminals. In the method the first terminal authenticates itself with the secured network and then by using the Layer 3 address of the second terminal, obtaining the address correspondence information provided by the database and thereby determining the corresponding Layer 2 address of the second terminal. Then the first terminal establishes in the local network the radio communication link with the second terminal by using the Layer 2 address.
-
Citations
17 Claims
-
1. A method for establishing a radio communication link in a radio communication network comprising a wireless local network and a secured network, at least a first wireless terminal and a second wireless terminal being part of the wireless local network, at least the first wireless terminal being capable of communicating with the secured network, the radio communication network implementing layered protocol functions comprising at least Layers 1, 2 and 3 functions, the wireless terminals being identifiable by their Layer 2 and 3 addresses, the secured network comprising a database, the database comprising address correspondence information between Layer 2 and 3 addresses of terminals, the method comprising the following steps in respect of the first wireless terminal establishing a radio communication link with the second wireless terminal:
-
the first wireless terminal authenticating itself with the secured network; the first wireless terminal, by accessing the database and using the Layer 3 address of the second wireless terminal, obtaining the corresponding Layer 2 address of the second terminal from the address correspondence information in the database; and establishing in the local network the radio communication link with the second wireless terminal by using the Layer 2 address. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A wireless mobile station arranged for establishing a secure radio communication link in a radio communication network comprising a wireless local network and a secured network, at least the wireless mobile station and a wireless terminal being part of the wireless local network, at least the wireless mobile station being capable of communicating with the secured network, the radio communication network implementing layered protocol functions comprising at least Layers 1, 2 and 3 functions, the wireless mobile station and the wireless terminal being identifiable by their Layer 2 and 3 addresses, the secured network comprising a database, the database comprising address correspondence information between Layer 2 and 3 addresses of wireless terminals, the wireless mobile station configured to:
-
authenticate the wireless mobile station with the secured network; by accessing the database and by using the Layer 3 address of the wireless terminal, obtain the corresponding Layer 2 address of the wireless terminal from the address correspondence information in the database; and establish in the wireless local network a radio communication link with the wireless terminal by using the Layer 2 address. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
Specification