Address spoofing prevention
First Claim
1. A method of a mobile unit establishing a secure wireless communication link in a wireless communication network, comprising:
- accessing, by the mobile unit, a database of a secured network of the wireless communication network, wherein the database comprises address correspondence information between a data link layer address and a network layer address of one or more mobile units;
obtaining the data link layer address of at least one other mobile unit from the address correspondence information in the database via a multicast service; and
establishing a secure wireless communication link with the at least one other mobile unit using the data link layer address of the other mobile unit from the address correspondence information.
0 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to a method for securing a radio communication link establishment in a radio communication network comprising a local network and a secured network. The local network comprises at least a first terminal and a second terminal and at least the first terminal is capable of communicating with the secured network. The radio communication network implements layered protocol functions, comprising at least Layers 1, 2 and 3, the terminals being identifiable by their Layer 2 and 3 addresses. The secured network comprises a database comprising address correspondence information between Layer 2 and 3 addresses of terminals. In the method the first terminal authenticates itself with the secured network and then by using the Layer 3 address of the second terminal, obtaining the address correspondence information provided by the database and thereby determining the corresponding Layer 2 address of the second terminal. Then the first terminal establishes in the local network the radio communication link with the second terminal by using the Layer 2 address.
-
Citations
17 Claims
-
1. A method of a mobile unit establishing a secure wireless communication link in a wireless communication network, comprising:
-
accessing, by the mobile unit, a database of a secured network of the wireless communication network, wherein the database comprises address correspondence information between a data link layer address and a network layer address of one or more mobile units; obtaining the data link layer address of at least one other mobile unit from the address correspondence information in the database via a multicast service; and establishing a secure wireless communication link with the at least one other mobile unit using the data link layer address of the other mobile unit from the address correspondence information. - View Dependent Claims (2, 3, 4, 6, 7, 8)
-
-
5. The method of 1, wherein the multicast service comprises a Multimedia Broadcast Multicast Service.
-
9. A mobile unit, comprising:
a processor configured to; access a database of a secured network of a wireless network, wherein the database comprises address correspondence information between a data link layer address and a network layer address of one or more mobile units; obtain the data link layer address of at least one other mobile unit from the address correspondence information in the database via a multicast service; and establish a secure wireless communication link with the at least one other mobile unit using the data link layer address of the other mobile unit from the address correspondence information. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
17. A non-transitory computer-readable memory medium storing program instructions, the program instructions executable by a mobile unit in a wireless communication network to cause the mobile unit to:
-
access a database of a secured network of the wireless communication network, wherein the database comprises address correspondence information between a data link layer address and a network layer address of one or more mobile units; obtain the data link layer address of at least one other mobile unit from the address correspondence information in the database via a multicast service; and establish a secure wireless communication link with the at least one other mobile unit using the data link layer address of the other mobile unit from the address correspondence information.
-
Specification