ENHANCING SECURITY IN A WIRELESS NETWORK
First Claim
1. A method of enhancing security in a wireless mesh network including a plurality of network devices, the method comprising:
- allocating a plurality of shared wireless links accessible to each of the plurality of network devices, wherein each link is associated with a communication timeslot of a predetermined duration and with a carrier frequency;
preventing unauthorized access to the plurality of shared wireless links by verifying a session key supplied by each of the plurality of network devices to access one of the plurality of shared wireless links;
transmitting an advertisement packet from a neighbor device, wherein the neighbor device is one of the plurality of network devices, including;
providing a link map identifying a set of join links in the advertisement packet, wherein the set of join links is a subset of the plurality of shared wireless links;
receiving a join request from a joining device over one of set of join links, wherein the join request is responsive to the advertisement packet and wherein the neighbor device is configured to receive incoming data over the one of set of join links; and
processing the join request, including;
authenticating the joining device by communicating with the joining device via the neighbor device over the one of set of join links; and
granting the joining device access to the plurality of shared wireless links by transmitting the session key to the joining device if the joining device is successfully authenticated.
6 Assignments
0 Petitions
Accused Products
Abstract
A method of enhancing security in a wireless mesh communication network operating in a process control environment and including a plurality of wireless network devices includes processing a join request from a wireless device wishing to join the wireless mesh communication network, providing a limited network functionality to the wireless device if the join request is granted, requesting a complete approval of the wireless device; and granting a full network functionality to the wireless device if the complete approval of the wireless device is received.
-
Citations
13 Claims
-
1. A method of enhancing security in a wireless mesh network including a plurality of network devices, the method comprising:
-
allocating a plurality of shared wireless links accessible to each of the plurality of network devices, wherein each link is associated with a communication timeslot of a predetermined duration and with a carrier frequency; preventing unauthorized access to the plurality of shared wireless links by verifying a session key supplied by each of the plurality of network devices to access one of the plurality of shared wireless links; transmitting an advertisement packet from a neighbor device, wherein the neighbor device is one of the plurality of network devices, including; providing a link map identifying a set of join links in the advertisement packet, wherein the set of join links is a subset of the plurality of shared wireless links; receiving a join request from a joining device over one of set of join links, wherein the join request is responsive to the advertisement packet and wherein the neighbor device is configured to receive incoming data over the one of set of join links; and processing the join request, including; authenticating the joining device by communicating with the joining device via the neighbor device over the one of set of join links; and granting the joining device access to the plurality of shared wireless links by transmitting the session key to the joining device if the joining device is successfully authenticated. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of enhancing security of a wireless communication protocol servicing a plurality of wireless network devices in a mesh communication network, wherein the mesh communication network operates in a process control environment, the method comprising:
-
defining a communication timeslot of a predetermined duration; generating a network schedule including at least one superframe having repeating superframe cycles, each having a number of communication timeslots;
wherein each of the plurality of wireless network devices transmit and receives data according to the network schedule;maintaining an absolute slot number indicative of a number of communication timeslots scheduled since a start time of the wireless network; and sending a data packet associated with one of a plurality of layers associated with the wireless communication protocol from one of the plurality of wireless network devices to another one of the plurality of wireless network devices, including; generating a first message integrity code for the data packet based on the absolute slot number. - View Dependent Claims (10, 11, 12, 13)
-
Specification