Method and device for web redirect authentication in WiFi roaming based on AC and AP interworking

US 9,654,970 B2
Filed: 10/19/2011
Issued: 05/16/2017
Est. Priority Date: 09/16/2011
Status: Active Grant

First Claim

Patent Images

1. A method of managing WiFi roaming comprising:

receiving, at an access point (AP) which supports wireless Internet service for a mobile station, an HTTP request of the mobile station;

redirecting, by the AP, the HTTP request of the mobile station from the AP to a web server over a network, wherein in the redirected HTTP request, a source IP address is replaced with an IP address of an access controller (AC) instead of an IP address of the AP;

in response to said redirecting the HTTP request, receiving, by the web server, a MAC address of the mobile station from the mobile station, and requesting authentication by transmitting to the AC corresponding to the replaced source IP address, login information comprising the MAC address of the mobile station;

performing, by the AC, control via MAC address authentication of the mobile station through communication with an authentication server over the network such that the authentication server starts accounting in response to the MAC address of the mobile station received by the authentication server from the AC being found in a database at the authentication server;

permitting, by the AC, association of the mobile station with the AP based on said performing control via the MAC address authentication; and

receiving, by the authentication server via the AC, accounting information from the AP to which the mobile station is connected and processing, by the authentication server, statistics of the received accounting information for the mobile station.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A WiFi roaming management method and device which redirect an HTTP request of a mobile terminal from an AP to an AC even though the AC and the AP do not exist in the same subnet, which redirects a source IP address for an HTTP request, after transferring, to an IP address of the AC, and which smoothly support a wireless Internet service in a distributed processing system according to a web authentication of the AC in a WiFi roaming method is provided. A terminal session management function and a traffic control function are separated by a premium AC (Access Controller) and a premium AP (Access Point) interworked with a tunneling method according to a CAPWAP protocol.

12 Citations

View as Search Results

11 Claims

1. A method of managing WiFi roaming comprising:
- receiving, at an access point (AP) which supports wireless Internet service for a mobile station, an HTTP request of the mobile station;
  
  redirecting, by the AP, the HTTP request of the mobile station from the AP to a web server over a network, wherein in the redirected HTTP request, a source IP address is replaced with an IP address of an access controller (AC) instead of an IP address of the AP;
  
  in response to said redirecting the HTTP request, receiving, by the web server, a MAC address of the mobile station from the mobile station, and requesting authentication by transmitting to the AC corresponding to the replaced source IP address, login information comprising the MAC address of the mobile station;
  
  performing, by the AC, control via MAC address authentication of the mobile station through communication with an authentication server over the network such that the authentication server starts accounting in response to the MAC address of the mobile station received by the authentication server from the AC being found in a database at the authentication server;
  
  permitting, by the AC, association of the mobile station with the AP based on said performing control via the MAC address authentication; and
  
  receiving, by the authentication server via the AC, accounting information from the AP to which the mobile station is connected and processing, by the authentication server, statistics of the received accounting information for the mobile station.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, wherein, prior to the HTTP request from the mobile station, the AC receives, from the AP, an association request of the mobile station, and in response to the association request, the AC assigns the IP address to the mobile station, and in response to receiving a failure notification from the authentication server for the MAC address authentication of the mobile station through communication with the authentication server, the AP performs said redirecting of the HTTP request to the web server.
  - 3. The method of claim 2, wherein the authentication server and the AC are separate servers.
  - 4. The method of claim 1, wherein the login information further comprises a user identifier (ID) and a password.
  - 5. The method of claim 4, further comprising:
    - transmitting, by the web server, to the mobile station a web authentication box in which the login information is input;
      
      receiving from the mobile station, a selection of a box included in the web authentication box, wherein the selected box provides information for a limited association of the mobile station to uniform resource locators (URLs) indicated in the selected box,permitting, by the AP, the association of the mobile station to the URLs indicated in the selected box regardless of the MAC authentication of the authentication server even when there is no entry of login information.
  - 6. The method of claim 5, wherein the web server manages location-based URLs specific to a location of the AP, and adds the location-based URLs of the AP in the selected box permitting limited association between the location-based URLs and the mobile station.
  - 7. The method of claim 1, wherein the AC and the AP are in different subnets.
  - 8. The method of claim 1, wherein the AC and the AP are connected to each other via the network comprising a plurality of subnets.

9. An access controller (AC) which supports management of WiFi roaming comprising:
- a receiver configured to receive, from a web server, a request for authentication comprising login information with a MAC address of a mobile station which is received by the web server from the mobile station, in response to redirecting, by an access point (AP), an HTTP request of the mobile station from the AP to the web server in which a source IP address of the HTTP request is replaced with an IP address of the AC instead of an IP address of the AP;
  
  an authenticator configured to control via MAC address authentication of the mobile station through communication with an authentication server over a network so that the authentication server starts accounting in response to the MAC address of the mobile station received by the authentication server from the AC being found in a database at the authentication server, and configured to permit association of the mobile station with the AP; and
  
  an accounting processor configured to transmit, to the authentication server, accounting information received from the AP to which the mobile station is connected and wherein the authentication ser1 and ver processes statistics of the received accounting information for the mobile station.
- View Dependent Claims (10, 11)
- - 10. The AC of claim 9, wherein, prior to the HTTP request from the mobile station, the authenticator is further configured to receive, from the AP, an association request of the mobile station, to assign the IP address to the mobile station and to receive a failure notification from the authentication server for the MAC address authentication of the mobile station through communication with the authentication server, and in response to the received failure notification, the AP is configured to redirect the HTTP request to the web server.
  - 11. The AC of claim 9, wherein the AC is in a different subnet from the AP.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
KT Corporation
Original Assignee
KT Corporation
Inventors
Yoon, Joo Young, Han, Kyu Jeong, Ji, Yung Ha
Primary Examiner(s)
Edwards, Linglan
Assistant Examiner(s)
Jones, William B

Application Number

US14/345,538
Publication Number

US 20140359740A1
Time in Patent Office

2,036 Days
Field of Search

370338, 370331, 370329, 370411, 370237, 370253, 370254, 370311, 370312, 370316, 370389, 370224
US Class Current
CPC Class Codes

H04L 2101/622   Layer-2 addresses, e.g. med...

H04L 61/59   using proxies for addressing

H04L 63/0876   based on the identity of th...

H04L 63/0892   by using authentication-aut...

H04W 12/06   Authentication

H04W 8/02   Processing of mobility data...

H04W 8/12   between location registers ...

H04W 84/12   WLAN [Wireless Local Area N...

Method and device for web redirect authentication in WiFi roaming based on AC and AP interworking

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

12 Citations

11 Claims

Specification

Use Cases

Quick Links

Others

Method and device for web redirect authentication in WiFi roaming based on AC and AP interworking

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

12 Citations

11 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others