Security enhancement arrangement

US 8,838,963 B2
Filed: 02/04/2005
Issued: 09/16/2014
Est. Priority Date: 02/04/2005
Status: Active Grant

First Claim

Patent Images

1. A system comprising:

a first network comprising one or more devices and a first physical wireless access point device; and

a second network comprising one or more devices and a second physical wireless access point device, the second physical wireless access point device comprising at least one individual radio transceiver enabled to maintain multiple wireless network associations;

wherein the second physical wireless access point device is configured to;

bridge the first and second networks using a radio link established using the at least one individual radio transceiver by;

establishing a plurality of wireless network associations with the first physical wireless access point device using the radio link, each wireless network association uniquely corresponding to one of the second physical wireless access point device and the one or more devices on the second network; and

establishing an encryption tunnel for each of the plurality of wireless network associations, wherein a first encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a first network security protocol and a second encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a second network security protocol that is different from the first network security protocol,wherein the plurality of network associations are established such that the first network is enabled to individually authenticate each of the second physical wireless access point device and the one or more devices on the second network, andwherein the first and second network security protocols are selected from the group consisting of a WPA protocol, an 80211i and a WEP protocol.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed herein is a system for enhancing the security of wireless networks. In one aspect, a wireless access point that functions as a bridge between two networks is provided. The wireless access point is configured to establish separate associations for itself and each device connected to it. This provides for enhanced security in that each device connected to the wireless access point may be separately authenticated and in that separate encryption tunnels are established for each device connected to the wireless access point.

18 Citations

View as Search Results

6 Claims

1. A system comprising:
- a first network comprising one or more devices and a first physical wireless access point device; and
  
  a second network comprising one or more devices and a second physical wireless access point device, the second physical wireless access point device comprising at least one individual radio transceiver enabled to maintain multiple wireless network associations;
  
  wherein the second physical wireless access point device is configured to;
  
  bridge the first and second networks using a radio link established using the at least one individual radio transceiver by;
  
  establishing a plurality of wireless network associations with the first physical wireless access point device using the radio link, each wireless network association uniquely corresponding to one of the second physical wireless access point device and the one or more devices on the second network; and
  
  establishing an encryption tunnel for each of the plurality of wireless network associations, wherein a first encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a first network security protocol and a second encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a second network security protocol that is different from the first network security protocol,wherein the plurality of network associations are established such that the first network is enabled to individually authenticate each of the second physical wireless access point device and the one or more devices on the second network, andwherein the first and second network security protocols are selected from the group consisting of a WPA protocol, an 80211i and a WEP protocol.

2. A method of connecting a plurality of computer devices on a first network to a second network using a first physical wireless access point device configured to act as a wireless bridge, the method comprising:
- establishing a wireless network association between the first physical wireless access point device and a second physical wireless access point device connected to the second network using a radio link established using an individual radio transceiver of the first physical wireless access point device;
  
  establishing one or more additional wireless network associations between the first physical wireless access point device and the second physical wireless access point device using the radio link, each of the one or more additional wireless network associations uniquely corresponding to one or more devices on the first network; and
  
  establishing an encryption tunnel for each of the wireless network associations,establishing an encryption tunnel for each of the wireless network association and the one or more additional wireless network associations, wherein a first encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a first network security protocol and a second encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a second network security protocol that is different from the first network security protocol,wherein the wireless network association and the one or more additional wireless network associations are established such that the first network is enabled to individually authenticate each of the first wireless access point and the one or more devices on the first network, andwherein the first and second network security protocols are selected from the group consisting of a WPA protocol, an 80211i and a WEP protocol.

3. A wireless access point device, the device comprising:
- at least one individual radio transceiver enabled to maintain multiple wireless network associations;
  
  at least one network interface configured to connect to one or more devices on a first network; and
  
  at least one network interface connected to the at least one individual radio transceiver and configured to establish a connection to a second wireless access point device connected to a second network, the connection across a radio link established by the at least one individual radio transceiver;
  
  wherein the wireless access point device is configured to bridge the first and second networks by;
  
  establishing a plurality of wireless network associations with the second wireless access point using the radio link, each wireless network association uniquely corresponding to the wireless access point device and one of the one or more devices on the first network; and
  
  establishing an encryption tunnel for each of the plurality of wireless network associations, wherein a first encryption tunnel between the second wireless access point and the wireless access point device uses a first network security protocol and a second encryption tunnel between the second wireless access point and the wireless access point device uses a second network security protocol that is different from the first network security protocol,wherein the plurality of wireless network associations are established such that the second network is enabled to individually authenticate each of the wireless access point device and the one or more devices on the first network, andwherein the first and second network security protocols are selected from the group consisting of a WPA protocol, an 80211i and a WEP protocol.
- View Dependent Claims (4, 5, 6)
- - 4. The wireless access point device of claim 3 wherein the at least one network interface configured to connect to one or more devices on a first network comprises a wired network interface.
  - 5. The wireless access point device of claim 3 wherein the at least one network interface configured to connect to one or more devices on a first network comprises a second wireless network interface.
  - 6. The wireless access point device of claim 5 wherein the wireless access point is configured to act as a wireless repeater.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Apple Inc.
Inventors
Kearney, Philip F. III, Newberry, Robert Dale Jr., Woodyatt, James, Saxton, John A.
Primary Examiner(s)
WANG, HARRIS C

Application Number

US11/051,923
Publication Number

US 20060179300A1
Time in Patent Office

3,511 Days
Field of Search

713/162
US Class Current

713/162
CPC Class Codes

H04L 63/08   for authentication of entit...

H04W 12/06   Authentication

H04W 88/10   adapted for operation in mu...

H04W 88/16   Gateway arrangements

H04W 92/02   Inter-networking arrangements

Security enhancement arrangement

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

18 Citations

6 Claims

Specification

Solutions

Use Cases

Quick Links

Security enhancement arrangement

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

18 Citations

6 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links