Authentication mechanisms for wireless networks

US 9,591,483 B2
Filed: 07/23/2015
Issued: 03/07/2017
Est. Priority Date: 02/22/2008
Status: Active Grant

First Claim

Patent Images

1. A method performed on a client computing device, the method comprising:

obtaining, by the client computing device, trust information related to a wireless access point from a source other than the wireless access point;

receiving, by the client computing device from the wireless access point while the client computing device is not connected to any network to which access is provided by the wireless access point, an unrequested message that is encrypted;

decrypting, by the client computing device based on the obtained trust information, the received unrequested message;

verifying, by the client computing device based on successful decryption of the received unrequested message, the received unrequested message or an identity of the wireless access point; and

accepting, by the client computing device in response to the verifying, the decrypted message.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Security techniques and security mechanisms for wireless networks that transmit content such as advertisements. According to exemplary techniques, control messages comprising unrequested content (e.g., advertisement data) may be transmitted in response to a request from a client device, while in other exemplary techniques the control messages may be transmitted without any request from a client device. In some exemplary implementations, security mechanisms such as public key cryptography algorithms may be used to secure transmissions. In some of these techniques which implement public key cryptography, a user may be required to retrieve a public key from a source other than the wireless access point transmitting encrypted advertisements (e.g., a sign or terminal in a commercial entity transmitting such advertisements, or from a web service), such that the user may confirm that the encrypted content is from a source matching the retrieved public key and thus confirm the authenticity of a wireless access point.

161 Citations

20 Claims

1. A method performed on a client computing device, the method comprising:
- obtaining, by the client computing device, trust information related to a wireless access point from a source other than the wireless access point;
  
  receiving, by the client computing device from the wireless access point while the client computing device is not connected to any network to which access is provided by the wireless access point, an unrequested message that is encrypted;
  
  decrypting, by the client computing device based on the obtained trust information, the received unrequested message;
  
  verifying, by the client computing device based on successful decryption of the received unrequested message, the received unrequested message or an identity of the wireless access point; and
  
  accepting, by the client computing device in response to the verifying, the decrypted message.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1 where the trust information is obtained from a directory.
  - 3. The method of claim 1 where the trust information is obtained from a sign.
  - 4. The method of claim 1 where the trust information is obtained from a server or a web service.
  - 5. The method of claim 1 where the accepted message comprises location information corresponding to the wireless access point.
  - 6. The method of claim 1 where the trust information comprises a public key associated with the wireless access point.
  - 7. The method of claim 1 where the trust information comprises a public key infrastructure (“
    - PKI”
      
      ) certificate.

8. A system comprising:
- a client computing device configured to obtain trust information related to a wireless access point from a source other than the wireless access point;
  
  a network adapter configured to receive, from the wireless access point while the client computing device is not connected to any network to which access is provided by the wireless access point, an unrequested message that is encrypted;
  
  a processor configured to decrypt, device based on the obtained trust information, the received unrequested message;
  
  the client computing device further configured to verify, based on successful decryption of the received unrequested message, the received unrequested message or an identity of the wireless access point; and
  
  the client computing device further configured to accept, in response to the verified message or the verified identity of the wireless access point, the decrypted message.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system of claim 8 where the trust information is obtained from a directory.
  - 10. The system of claim 8 where the trust information is obtained from a sign.
  - 11. The system of claim 8 where the trust information is obtained from a server or a web service.
  - 12. The system of claim 8 where the accepted message comprises location information corresponding to the wireless access point.
  - 13. The system of claim 8 where the trust information comprises a public key associated with the wireless access point.
  - 14. The system of claim 8 where the trust information comprises a public key infrastructure (“
    - PKI”
      
      ) certificate.

15. At least one computer-readable medium comprising:
- memory that comprises computer-executable instructions that, based on execution by a client computing device, configure the client computing device to;
  
  obtain trust information related to a wireless access point from a source other than the wireless access point;
  
  receive, from the wireless access point while the client computing device is not connected to any network to which access is provided by the wireless access point, an unrequested message that is encrypted;
  
  decrypt, based on the obtained trust information, the received unrequested message;
  
  verify, based on successful decryption of the received unrequested message, the received unrequested message or an identity of the wireless access point; and
  
  accept, based on the verified successful decryption of the received unrequested message or the verified identity of the wireless access point, the decrypted message.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The at least one computer-readable medium of claim 15 where the trust information is obtained from a directory.
  - 17. The at least one computer-readable medium of claim 15 where the trust information is obtained from a sign.
  - 18. The at least one computer-readable medium of claim 15 where the trust information is obtained from a server or a web service.
  - 19. The at least one computer-readable medium of claim 15 where the accepted transmission comprises location information corresponding to the wireless access point.
  - 20. The at least one computer-readable medium of claim 15 where the trust information comprises a public key associated with the wireless access point, or where the trust information comprises a public key infrastructure (“
    - PKI”
      
      ) certificate.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Inventors
Shen, Hui, Hassan, Amer A., Lu, Yi, Kuehnel, Thomas W., Baron, Andrew T., Wu, Deyun
Primary Examiner(s)
Colin, Carl
Assistant Examiner(s)
LAVELLE, GARY E

Application Number

US14/806,985
Publication Number

US 20150327067A1
Time in Patent Office

593 Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06Q 30/02   Marketing; Price estimation...

G06Q 30/0251   Targeted advertisements

G06Q 30/0267   Wireless devices

G06Q 30/0277   Online advertisement

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/60   Digital content management,...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0442   wherein the sending and rec...

H04L 63/0823   using certificates cryptogr...

H04L 63/123   received data contents, e.g...

H04L 63/126   the source of the received ...

H04L 9/30   Public key, i.e. encryption...

H04L 9/3263   involving certificates, e.g...

H04L 9/3271   using challenge-response

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/10   Integrity

H04W 12/12   Detection or prevention of ...

H04W 12/122   Counter-measures against at...

H04W 12/63 : Location-dependent; Proximi...

H04W 4/00 : Services specially adapted ...

H04W 4/02 : Services making use of loca...

H04W 4/80 : Services using short range ...

H04W 48/08 : Access restriction or acces...

H04W 48/16 : Discovering, processing acc...

H04W 84/12 : WLAN [Wireless Local Area N...

View All

Authentication mechanisms for wireless networks

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

161 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication mechanisms for wireless networks

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

161 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links