Method for pre-identifying wireless local area network terminal and wireless local area network system

Method for pre-identifying wireless local area network terminal and wireless local area network system

  • CN 101,527,908 B
  • Filed: 04/08/2009
  • Issued: 04/20/2011
  • Est. Priority Date: 04/08/2009
  • Status: Active Grant
First Claim
Patent Images

1. the method for pre-identifying of a WLAN terminal is characterized in that, this method comprises:

  • The current access point AP that sets up security association with site STA carries out carrying out the mutual checking of both sides'"'"' certificate alternately with purpose AP receiving after pre-discriminating that described STA sends begins grouping;

    If the checking result to the certificate of described purpose AP is that certificate is effective, then described current AP sends to described purpose AP with the key information of the security association that itself and described STA set up, and described purpose AP preserves described key information;

    Comprise the base key that STA and current AP consult generation in the described key information;

    Wherein, described current AP and purpose AP carry out the mutual checking of both sides'"'"' certificate in the following way;

    Described current AP sends pre-the discriminating to described purpose AP and starts grouping;

    Comprise in this grouping;

    the certificate of described current AP;

    After receiving pre-discriminating startup grouping, described purpose AP sends the request of certificate authentication grouping to authentication server;

    Comprise in this grouping;

    the certificate of described current AP and the certificate of described purpose AP;

    Perhaps, receive after pre-discriminating starts grouping, described purpose AP sends the pre-authentication response packet that comprises purpose AP certificate to current AP, sends the request of certificate authentication grouping that comprises current AP and purpose AP certificate to authentication server by current AP;

    After receiving the request of certificate authentication grouping, authentication server verifies the certificate of described current AP and the certificate of described purpose AP, and the signature packets of certificate verification result and authentication server is contained in sends to described purpose AP and current AP in the certificate authentication response packet.

View all claims
    ×
    ×

    Thank you for your feedback

    ×
    ×