Security enhancement arrangement
First Claim
Patent Images
1. A system comprising:
- a first network comprising one or more devices and a first physical wireless access point device; and
a second network comprising one or more devices and a second physical wireless access point device, the second physical wireless access point device comprising at least one individual radio transceiver enabled to maintain multiple wireless network associations;
wherein the second physical wireless access point device is configured to;
bridge the first and second networks using a radio link established using the at least one individual radio transceiver by;
establishing a plurality of wireless network associations with the first physical wireless access point device using the radio link, each wireless network association uniquely corresponding to one of the second physical wireless access point device and the one or more devices on the second network; and
establishing an encryption tunnel for each of the plurality of wireless network associations, wherein a first encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a first network security protocol and a second encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a second network security protocol that is different from the first network security protocol,wherein the plurality of network associations are established such that the first network is enabled to individually authenticate each of the second physical wireless access point device and the one or more devices on the second network, andwherein the first and second network security protocols are selected from the group consisting of a WPA protocol, an 80211i and a WEP protocol.
3 Assignments
0 Petitions
Accused Products
Abstract
Disclosed herein is a system for enhancing the security of wireless networks. In one aspect, a wireless access point that functions as a bridge between two networks is provided. The wireless access point is configured to establish separate associations for itself and each device connected to it. This provides for enhanced security in that each device connected to the wireless access point may be separately authenticated and in that separate encryption tunnels are established for each device connected to the wireless access point.
18 Citations
6 Claims
-
1. A system comprising:
-
a first network comprising one or more devices and a first physical wireless access point device; and a second network comprising one or more devices and a second physical wireless access point device, the second physical wireless access point device comprising at least one individual radio transceiver enabled to maintain multiple wireless network associations; wherein the second physical wireless access point device is configured to; bridge the first and second networks using a radio link established using the at least one individual radio transceiver by; establishing a plurality of wireless network associations with the first physical wireless access point device using the radio link, each wireless network association uniquely corresponding to one of the second physical wireless access point device and the one or more devices on the second network; and establishing an encryption tunnel for each of the plurality of wireless network associations, wherein a first encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a first network security protocol and a second encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a second network security protocol that is different from the first network security protocol, wherein the plurality of network associations are established such that the first network is enabled to individually authenticate each of the second physical wireless access point device and the one or more devices on the second network, and wherein the first and second network security protocols are selected from the group consisting of a WPA protocol, an 80211i and a WEP protocol.
-
-
2. A method of connecting a plurality of computer devices on a first network to a second network using a first physical wireless access point device configured to act as a wireless bridge, the method comprising:
-
establishing a wireless network association between the first physical wireless access point device and a second physical wireless access point device connected to the second network using a radio link established using an individual radio transceiver of the first physical wireless access point device; establishing one or more additional wireless network associations between the first physical wireless access point device and the second physical wireless access point device using the radio link, each of the one or more additional wireless network associations uniquely corresponding to one or more devices on the first network; and establishing an encryption tunnel for each of the wireless network associations, establishing an encryption tunnel for each of the wireless network association and the one or more additional wireless network associations, wherein a first encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a first network security protocol and a second encryption tunnel between the second physical wireless access point device and the first physical wireless access point device uses a second network security protocol that is different from the first network security protocol, wherein the wireless network association and the one or more additional wireless network associations are established such that the first network is enabled to individually authenticate each of the first wireless access point and the one or more devices on the first network, and wherein the first and second network security protocols are selected from the group consisting of a WPA protocol, an 80211i and a WEP protocol.
-
-
3. A wireless access point device, the device comprising:
-
at least one individual radio transceiver enabled to maintain multiple wireless network associations; at least one network interface configured to connect to one or more devices on a first network; and at least one network interface connected to the at least one individual radio transceiver and configured to establish a connection to a second wireless access point device connected to a second network, the connection across a radio link established by the at least one individual radio transceiver; wherein the wireless access point device is configured to bridge the first and second networks by; establishing a plurality of wireless network associations with the second wireless access point using the radio link, each wireless network association uniquely corresponding to the wireless access point device and one of the one or more devices on the first network; and establishing an encryption tunnel for each of the plurality of wireless network associations, wherein a first encryption tunnel between the second wireless access point and the wireless access point device uses a first network security protocol and a second encryption tunnel between the second wireless access point and the wireless access point device uses a second network security protocol that is different from the first network security protocol, wherein the plurality of wireless network associations are established such that the second network is enabled to individually authenticate each of the wireless access point device and the one or more devices on the first network, and wherein the first and second network security protocols are selected from the group consisting of a WPA protocol, an 80211i and a WEP protocol. - View Dependent Claims (4, 5, 6)
-
Specification