Wireless network controller certification authority
First Claim
Patent Images
1. A method in a controller of a wireless communication network, the method comprising the steps of:
- connecting to one or more first access points of a first wireless network, each access point including a hardware processor and routing messages to and from a set of mobile devices;
connecting to a second wireless network including a second set of access points, each of the second set of access points including a hardware processor;
selecting, for at least one of the set of mobile devices, one of the second set of access points for exchanging messages with, and routing messages on behalf of, the at least one of the set of mobile devices;
issuing, from a certification authority of the controller, certificates of key ownership with respect to authentication of the one or more first access points in order to communicate with the second set of access points; and
determining whether to allow messages between the one or more first access points and the second set of access points in response to the certificates.
4 Assignments
0 Petitions
Accused Products
Abstract
A controller for a wireless network includes processing elements, an interface for communication with access points for the wireless network, and an interface to another network. The processing elements oversee communication between that other network and the access points, and the controller acts as a certification authority for authenticating access points using public key techniques.
-
Citations
12 Claims
-
1. A method in a controller of a wireless communication network, the method comprising the steps of:
-
connecting to one or more first access points of a first wireless network, each access point including a hardware processor and routing messages to and from a set of mobile devices; connecting to a second wireless network including a second set of access points, each of the second set of access points including a hardware processor; selecting, for at least one of the set of mobile devices, one of the second set of access points for exchanging messages with, and routing messages on behalf of, the at least one of the set of mobile devices; issuing, from a certification authority of the controller, certificates of key ownership with respect to authentication of the one or more first access points in order to communicate with the second set of access points; and determining whether to allow messages between the one or more first access points and the second set of access points in response to the certificates. - View Dependent Claims (2, 3, 4)
-
-
5. A method, in an access point of a wireless communication network, the method comprising the steps of:
-
routing messages to and from a set of mobile devices using one or more access points in a first wireless network; receiving a certificate of key ownership with respect to authentication from a controller including a hardware processor and having a certification authority coupled to the first wireless network and to a second wireless network including a set of second access points, wherein the controller selects, for each of the set of mobile devices, one of said access points for exchanging messages with, and routing messages on behalf of, each of the mobile devices, wherein the controller determines whether to allow messages between the access points and at least one of the set of second access points, in response to the certificate issued by the certification authority. - View Dependent Claims (6, 7, 8)
-
-
9. A non-transitory computer-readable medium including one or more instructions executable by a controller with a hardware processor to perform a method, the method comprising the steps of:
-
connecting to one or more first access points of a first wireless network, each access point including a hardware processor and routing messages to and from a set of mobile devices; connecting to a second wireless network including a second set of access points, each of the second set of access points including a hardware processor; selecting, for at least one of the set of mobile devices, one of the second set of access points for exchanging messages with, and routing messages on behalf of, the at least one of the set of mobile devices; issuing, from a certification authority of the controller, certificates of key ownership with respect to authentication of the one or more first access points in order to communicate with the second set of access points; and determining whether to allow messages between the one or more first access points and the second set of access points in response to the certificates. - View Dependent Claims (10, 11, 12)
-
Specification