Method for the access of the mobile terminal to the WLAN and for the data communication via the wireless link securely
First Claim
1. A method for the secure access of a mobile terminal to a Wireless Local Area Network (WLAN) and for secure data communication via wireless link, wherein when a Mobile Terminal (MT) logs on a wireless Access Point (AP), the Mobile Terminal (MT) and the Access Point (AP) execute a two-way certificate authentication wherein a Mobile Terminal (MT) certificate and an Access Point (AP) certificate are transmitted to an Authentication Server (AS) through the Access Point (AP) and are authenticated through the Authentication Server (AS), then the authentication result of the Mobile Terminal (MT) certificate and the Access Point (AP) certificate are returned from the Authentication Server (AS) to the Access Point (AP) and the Mobile Terminal (MT) so that the Access Point (AP) obtains the authentication result of the Mobile Terminal (MT) and the Mobile Terminal (MT) obtains the authentication result of the Access Point (AP);
- and the Mobile Terminal (MT) and the Access Point (AP) perform negotiation of secret key for conversation.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention relates to a method for the secure access of mobile terminal to the Wireless Local Area Network (WLAN) and for secure data communication via wireless link, which, combining the common key encryption technology and the symmetry encryption technology, has resolved the failure in WLAN to provide effective control on secure MT access, and overcome the limitation on the confidentiality of the data communication via wireless link. When MT logs on AP, both parts must perform the certificate authentication through AS. Only the MT holding the legitimate certificate can access to AP holing the legitimate certificate; MT and AP perform the negotiation of common key for conversation, complete the dynamic revision of the secret key in each authentication, each secret key and in the process of conversation to achieve confidential data communication. Anyway, the method has not only achieved control on the access of MT, but also ensured the security of MT access and high confidentiality of communication.
-
Citations
22 Claims
-
1. A method for the secure access of a mobile terminal to a Wireless Local Area Network (WLAN) and for secure data communication via wireless link, wherein when a Mobile Terminal (MT) logs on a wireless Access Point (AP), the Mobile Terminal (MT) and the Access Point (AP) execute a two-way certificate authentication wherein a Mobile Terminal (MT) certificate and an Access Point (AP) certificate are transmitted to an Authentication Server (AS) through the Access Point (AP) and are authenticated through the Authentication Server (AS), then the authentication result of the Mobile Terminal (MT) certificate and the Access Point (AP) certificate are returned from the Authentication Server (AS) to the Access Point (AP) and the Mobile Terminal (MT) so that the Access Point (AP) obtains the authentication result of the Mobile Terminal (MT) and the Mobile Terminal (MT) obtains the authentication result of the Access Point (AP);
- and the Mobile Terminal (MT) and the Access Point (AP) perform negotiation of secret key for conversation.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
22. A method for the secure access of mobile terminal to the Wireless Local Area Network (WLAN) and for secure data communication via wireless link, wherein when a Mobile Terminal (MT) logs on a wireless Access Point (AP), the Mobile Terminal (MT) and the Access Point (AP) execute a two-way certificate authentication wherein a Mobile Terminal (MT) certificate and an Access Point (AP) certificate are transmitted to an Authentication Server (AS) through the Access Point (AP) and are authenticated through the Authentication Server (AS), then the authentication results of the Mobile Terminal (MT) certificate and the Access Point (AP) certificate are returned from the Authentication Server (AS) to the Access Point (AP) and the Mobile Terminal (MT) so that the Access Point (AP) obtains the authentication result of the Mobile Terminal (MT) and the Mobile Terminal (MT) obtains the authentication result of the Access Point (AP).
Specification