CN101646170B - Method for realizing integration of WAPI and CAPWAP by separation MAC mode - Google Patents
Method for realizing integration of WAPI and CAPWAP by separation MAC mode Download PDFInfo
- Publication number
- CN101646170B CN101646170B CN2009100214194A CN200910021419A CN101646170B CN 101646170 B CN101646170 B CN 101646170B CN 2009100214194 A CN2009100214194 A CN 2009100214194A CN 200910021419 A CN200910021419 A CN 200910021419A CN 101646170 B CN101646170 B CN 101646170B
- Authority
- CN
- China
- Prior art keywords
- website
- access controller
- capwap
- wireless terminal
- terminal point
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 46
- 238000000926 separation method Methods 0.000 title abstract 4
- 230000010354 integration Effects 0.000 title abstract 2
- 230000008569 process Effects 0.000 claims abstract description 27
- 238000004891 communication Methods 0.000 claims abstract description 5
- 230000004044 response Effects 0.000 claims description 21
- 238000005538 encapsulation Methods 0.000 claims description 18
- 238000012795 verification Methods 0.000 claims description 15
- 230000004927 fusion Effects 0.000 claims description 4
- 230000005540 biological transmission Effects 0.000 description 5
- 238000013461 design Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 230000002950 deficient Effects 0.000 description 2
- 238000011161 development Methods 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000012544 monitoring process Methods 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 239000000463 material Substances 0.000 description 1
- 238000005192 partition Methods 0.000 description 1
- 230000002265 prevention Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
- Small-Scale Networks (AREA)
Abstract
The invention relates to a method for realizing the integration of a WAPI and a CAPWAP by a separation MAC mode. The method comprises the following steps: (1) constructing a separation MAC mode of realizing a WPI by an access controller: separating the MAC function and the WAPI function of a wireless access point on a wireless terminal point and the access controller respectively; (2) under the separation MAC mode of realizing the WPI by the access controller, realizing that a CAPWAP specification is bound to a WAPI protocol; (2.1) realizing a correlation connection process among a station, the wireless terminal point and the access controller; (2.2) realizing a notification process which is begun to be executed by a WAI protocol between the access controller and the wireless terminal point; (2.3) realizing an execution process of the WAI protocol between the station and the access controller; (2.4) realizing a notification process finishing the execution of the WAI protocol between the access controller and the wireless terminal point; and (2.5) realizing a process of carrying out secret communication by utilizing the WPI between the wireless terminal point and the station. The invention not only can meet the large-scale allocation requirement of a WLAN but also can ensure the safety of the WLAN under a convergence type system configuration.
Description
Technical field
The present invention relates to a kind of method that realizes WAPI and CAPWAP fusion with separated MAC mode.
Background technology
Wireless access point AP (Access Point) is disposed and termination GB15629.11 function fully among the WLAN (wireless local area network) WLAN (Wireless Local Area Networks) of autonomous formula architectural framework, as independent entity on the network, need manage independently.Differentiate that based on WLAN (wireless local area network) the WLAN that designs with secret infrastructure WAPI (WLAN Authentication and Privacy Infrastructure) all adopts autonomous formula architectural framework at present, but along with WLAN disposes the expansion of scale, the network work pattern of this autonomous formula framework becomes the obstacle of restriction wireless technology development gradually because of its intrinsic defective.
At first, among the WLAN of autonomous formula framework, AP need manage independently as iso-ip Internetworking protocol ISO-IP IP (Internet Protocol) addressable device, comprises monitoring, configuration and control etc.When carrying out the large scale network deployment, a large amount of AP will produce huge administration overhead, cause heavy burden to network.When especially the configuration management mode of AP was different in the net, this phenomenon was more obvious, certainly will hinder the development of wireless technology.
Secondly, among the WLAN of autonomous formula framework, guarantee that there is certain difficulty in the consistency of all AP configuration parameters.Because except that static parameter, more be the parameter that needs dynamic-configuration in the configuration of AP.In extensive WLAN, the workload of the dynamic-configuration of the whole network AP that upgrades in time is very heavy, even can't realize.
The 3rd, among the WLAN, wireless transmission medium is as a kind of shared resource, for improving the performance of network, must monitor each AP in real time and the action attitude that is configured into of these AP is upgraded, and the manual configuration AP parameter relevant with wireless transmission medium will expend great amount of manpower and material resources according to the operating position of current shared medium.
The 4th, among the WLAN of autonomous formula framework, the adding of safe access network and prevention rogue AP is also comparatively difficult.Because under normal conditions, the deployed position of AP makes and is difficult to it is protected, and will cause the leakage of the security information such as key that loaded in case AP is stolen, utilizes these security information, and the assailant will threaten to network security.
In sum, among the WLAN of autonomous formula framework, especially under the situation of large scale deployment, AP is monitored, disposes and control and will cause heavy administrative burden to network.And, safeguard that the consistency of AP configuration is also very difficult.In addition, the network performance and minimum air interference of striving for maximum shown in AP cooperation one in the shared and dynamic characteristic requirement network of wireless transmission medium, and this configuration management to AP is had higher requirement.Safety is one of the key factor that need consider of design wireless network, and large-scale deployment also will bring huge challenge to the safety of WLAN.This shows that the mode of operation of autonomous formula architectural framework WLAN can't be suitable for the deployment requirements of large scale network, need the convergence type WLAN network system framework of design badly, i.e. the WAPI thin AP architecture based on WAPI.Inherit the safety defect of IEEE 802.11i based on the wireless access point control inevitably with configuration CAPWAP (the ControlAnd Provisioning of Wireless Access Points) WLAN of agreement IEEE 802.11 binding specification at present, needed safer alternative solution.
Summary of the invention
The objective of the invention is to overcome the defective of above-mentioned autonomous formula wlan network architectural framework, a kind of method with CAPWAP standard binding WAPI that is realized the separated MAC mode of wireless local area network security infrastructure WPI (WLANPrivacy Infrastructure) by access controller AC (Access Controller) is provided, proposes a kind of workflow of safer convergence type WLAN architectural framework based on WAPI.By media interviews control MAC (Medium Access Control) function and the WAPI function of AP are divided, realize centralized control and management to the whole network AP, can satisfy the deployment requirements of extensive WLAN.
Technical solution of the present invention is: the present invention realizes the method that WAPI and CAPWAP merge for a kind of with separated MAC mode, and its special character is: this method may further comprise the steps:
1) makes up the separated MAC mode of realizing WPI by access controller: the MAC function and the WAPI function of WAP (wireless access point) are separated to respectively on wireless terminal point and the access controller;
2) realizing realizing the binding of CAPWAP standard and WAPI under the separated MAC mode of WPI by access controller;
2.1) related connection procedure between website and wireless terminal point and the access controller;
2.2) WLAN (wireless local area network) is differentiated the announcement process that infrastructure WAI (WLANAuthentication Infrastructure) agreement begins to carry out between access controller and the wireless terminal point;
2.3) WAI agreement implementation process between website and the access controller;
2.4) the WAI agreement is carried out the announcement process that finishes between access controller and the wireless terminal point;
2.5) utilize WPI to carry out the process of secure communication between wireless terminal point and the website.
Above-mentioned steps 2.1) concrete steps are as follows:
2.1.1) beacon frame of website passive listening wireless terminal point obtains to comprise the relevant parameter of the wireless terminal point of WAPI information element, this WAPI information element comprises that WAI that wireless terminal point is supported differentiates and key management external member, cipher suite etc.; Perhaps website initiatively sends to wireless terminal point and inquires after claim frame, wireless terminal point receive website inquire after claim frame after, inquire after response frame to the website transmission, website receives and inquires after the relevant parameter that response frame promptly obtains to comprise the wireless terminal point of WAPI information element, and this WAPI information element comprises that WAI that wireless terminal point is supported differentiates and key management external member, cipher suite etc.;
2.1.2) website sends the link verification claim frame to access controller, the link verification between request and the access controller;
2.1.3) access controller is according to the link verification claim frame of website, sends the link verification response frame to website;
2.1.4) after the link verification success, website sends association request frame to access controller, it is related that request and access controller carry out, and website comprises WAI discriminating that the WAPI information element determines that website is selected and key management external member, cipher suite etc. in association request frame;
2.1.5) access controller resolves the association request frame of website, sends association response frame to website.
Above-mentioned steps 2.2) concrete steps are as follows:
2.2.1) access controller sends CAPWAP site configuration request (StationConfiguration Request) message to wireless terminal point, comprise in the message to add website Add Station, GB15629.11 and add website (GB15629.11 Add Station), GB15629.11 website session key message elements such as (GB15629.11Station Session Key); Wherein, the A in the GB15629.11 website session key message element is changed to 1 and is used to inform that wireless terminal point closes controlled ports, only transmits the WAI protocol data from corresponding website;
2.2.2) wireless terminal point sends CAPWAP site configuration response (StationConfiguration Response) message to access controller, wherein comprise result code (Result Code) message element, be used to identify result CAPWAP site configuration request message.
Above-mentioned steps 2.3) concrete steps are as follows:
2.3.1) WAI discrimination process between access controller and the website; Comprise: be transmitted to website after the WAI authentication data that wireless terminal point encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from access controller is sealed off; After encapsulating according to the CAPWAP data encapsulation form of CAPWAP GB15629.11 binding specification definition, send to access controller from the WAI authentication data of website;
2.3.2) WAI unicast key agreement process between access controller and the website; Comprise: be transmitted to website after the WAI unicast key agreement data that wireless terminal point encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from access controller are sealed off; Send to access controller after CAPWAP data encapsulation form from the definition of the data based CAPWAP GB15629.11 of the WAI unicast key agreement binding specification of website encapsulated;
2.3.3) WAI multicast key notification process between access controller and the website; Comprise: be transmitted to website after the WAI multicast key notification data that wireless terminal point encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from access controller are sealed off; Send to access controller after CAPWAP data encapsulation form from the definition of the data based CAPWAP GB15629.11 of the WAI multicast key notification binding specification of website encapsulated.
Above-mentioned steps 2.4) concrete steps are as follows:
2.4.1) access controller sends CAPWAP site configuration request message to wireless terminal point, comprise in the message and add website, GB15629.11 adds website, GB15629.11 website session key message element; According to the MAC Address that adds website in the station message element, wireless terminal point is opened corresponding with it controlled ports, transmits all data from this website, comprises WAI protocol data and non-WAI protocol data;
2.4.2) wireless terminal point sends CAPWAP site configuration response message to access controller, wherein comprises the result code message element, is used to identify the result to CAPWAP site configuration request message.
Above-mentioned steps 2.5) concrete steps are as follows:
2.5.1) the access controller encrypting and transmitting goes to the data of website;
2.5.2) access controller deciphering is from the data of website.
The invention provides and a kind of CAPWAP standard binding WAPI realized communication interaction flow process between the WLAN entity of separated MAC mode of WPI by AC, MAC function and the WAPI function of AP are separated on wireless terminal point WTP (Wireless Terminal Point) and the AC, by WTP realize with site STA (Station) between the GB15629.11 standard-required real-time information alternately, comprise beacon frame, to the response of inquiring after claim frame etc., non real-time interaction by between AC realization and the STA comprises association, WAPI agreement etc.And realize communicating by letter between AC and the WTP based on CAPWAP GB15629.11 binding specification.The partition mode of this AP function is called the separated MAC mode of being realized WPI by AC.The present invention compared with prior art has following advantage: the present invention proposes a kind of method that merges with separated MAC mode realization WAPI and CAPWAP, overcome the limitation that can't be suitable for extensive WLAN deployment requirements at present based on the autonomous formula network architecture of WAPI agreement.It adopts the pattern of separated MAC, realizes unified monitoring, configuration and the control of AC to WTP, thereby reaches the purpose that WTP among the WLAN is managed concentratedly; Employing with WAPI and the seamless fusion of convergence type WLAN architectural framework, can ensure the safety of WLAN by the mode that AC realizes the WAPI agreement.The present invention not only can satisfy the large scale deployment demand of WLAN, and can guarantee the fail safe of WLAN under the convergence type architectural framework.
Description of drawings
Fig. 1 is the message flow chart that CAPWAP standard binding WAPI is realized the separated MAC mode of WPI by AC;
Embodiment
Referring to Fig. 1, according to a preferred embodiment of the invention, its concrete grammar is as follows:
1) makes up the separated MAC mode of realizing WPI by AC: MAC function and the WAPI function of AP are separated to respectively on WTP and the AC;
2) realizing by AC under the separated MAC mode of WPI, realizing CAPWAP standard binding WAPI;
2.1) related connection procedure between STA and WTP and the AC;
2.1.1) beacon frame of STA passive listening WTP obtains the relevant parameter of WTP, comprises WAPI information element (WAI that WTP supports differentiates and key management external member, cipher suite etc.); Perhaps STA initiatively sends to WTP and inquires after claim frame, WTP receive STA inquire after claim frame after, inquire after response frame to the STA transmission, STA receives the relevant parameter that response frame obtains WTP of inquiring after of WTP, and comprises WAPI information element (WAI discriminating that WTP supports and key management external member, cipher suite etc.);
2.1.2) STA obtain WTP inquire after response after, send the link verification claim frame to AC, the link verification between request and the AC;
2.1.3) AC is according to the link verification claim frame of STA, sends the link verification response frame to STA;
2.1.4) after the link verification success, STA sends association request frame to AC, it is related that request and AC carry out, and STA comprises WAI discriminating that the WAPI information element determines that STA selects and key management external member, cipher suite etc. in the association request;
2.1.5) AC resolves the association request frame of STA, sends association response frame to STA.
2.2) the WAI agreement begins to carry out between AC and the WTP announcement process;
2.2.1) AC sends CAPWAP site configuration request message to WTP, comprise in the message and add website (MAC Address of STA), GB15629.11 adds website (WLAN ID), GB15629.11 website session key message elements such as (A are changed to 1).Wherein, the A in the website session key message element is changed to 1 and is used to inform that WTP closes controlled ports, only transmits the WAI protocol data from corresponding STA;
2.2.2) WTP sends CAPWAP site configuration response message to AC, wherein comprises message elements such as result code, is used to identify the result to CAPWAP site configuration request message.
2.3) WAI agreement implementation process between STA and the AC;
2.3.1) WAI discrimination process between AC and the STA; Comprise: be transmitted to STA after the WAI authentication data that WTP encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from AC is sealed off; After encapsulating according to the CAPWAP data encapsulation form of CAPWAPGB15629.11 binding specification definition, send to AC from the WAI authentication data of STA;
2.3.2) WAI unicast key agreement process between AC and the STA; Comprise: be transmitted to STA after the WAI unicast key agreement data that WTP encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from AC are sealed off; Send to AC after CAPWAP data encapsulation form from the definition of the data based CAPWAP GB15629.11 of the WAI unicast key agreement binding specification of STA encapsulated;
2.3.3) WAI multicast key notification process between AC and the STA; Comprise: be transmitted to STA after the WAI multicast key notification data that WTP encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from AC are sealed off; Send to AC after CAPWAP data encapsulation form from the definition of the data based CAPWAP GB15629.11 of the WAI multicast key notification binding specification of STA encapsulated.
2.4) the WAI agreement is carried out the announcement process that finishes between AC and the WTP;
2.4.1) AC sends CAPWAP site configuration request message to WTP, comprise in the message and add website (MAC Address of STA), GB15629.11 adds website (WLAN ID), GB15629.11 website session key message elements such as (C are changed to 1); According to the MAC Address that adds STA in the station message element, WTP opens corresponding with it controlled ports, transmits all data from this STA, comprises WAI protocol data and non-WAI protocol data;
2.4.2) WTP sends CAPWAP site configuration response message to AC, wherein comprises message elements such as result code, is used to identify the result to CAPWAP site configuration request message.
2.5) utilize WPI to carry out the process of secure communication between WTP and the STA;
2.5.1) the AC encrypting and transmitting goes to the data of STA;
2.5.2) AC deciphering is from the data of STA.
Claims (6)
1. realize the method for WAPI and CAPWAP fusion with separated MAC mode for one kind, it is characterized in that: this method may further comprise the steps:
1) makes up the separated media access control MAC pattern that realizes wireless local area network security infrastructure WPI by access controller: the MAC function and the WLAN (wireless local area network) discriminating of WAP (wireless access point) are separated to respectively on wireless terminal point and the access controller with secret infrastructure WAPI function;
2) realizing by access controller under the separated MAC mode of WPI, realizing that concrete steps comprise with wireless access point control and configuration CAPWAP standard binding WAPI:
2.1) related connection procedure between website and wireless terminal point and the access controller;
2.2) WLAN (wireless local area network) is differentiated the announcement process that infrastructure WAI agreement begins to carry out between access controller and the wireless terminal point;
2.3) WAI agreement implementation process between website and the access controller;
2.4) the WAI agreement is carried out the announcement process that finishes between access controller and the wireless terminal point;
2.5) utilize WPI to carry out the process of secure communication between wireless terminal point and the website.
2. a kind of method that merges with separated MAC mode realization WAPI and CAPWAP according to claim 1, it is characterized in that: concrete steps described step 2.1) are as follows:
2.1.1) beacon frame of website passive listening wireless terminal point obtains to comprise the parameter of the wireless terminal point of WAPI information element; Perhaps website initiatively sends to wireless terminal point and inquires after claim frame, wireless terminal point receive website inquire after claim frame after, send to website and to inquire after response frame, website is received and is inquired after the parameter that response frame promptly obtains to comprise the wireless terminal point of WAPI information element; Described WAPI information element comprises that WAI that wireless terminal point is supported differentiates and key management external member, cipher suite;
2.1.2) website sends the link verification claim frame to access controller, the link verification between request and the access controller;
2.1.3) access controller is according to the link verification claim frame of website, sends the link verification response frame to website;
2.1.4) after the link verification success, website sends association request frame to access controller, it is related that request and access controller carry out, and website comprises WAI discriminating that the WAPI information element determines that website is selected and key management external member, cipher suite in association request frame;
2.1.5) access controller resolves the association request frame of website, sends association response frame to website.
3. a kind of method that merges with separated MAC mode realization WAPI and CAPWAP according to claim 1, it is characterized in that: concrete steps described step 2.2) are as follows:
2.2.1) access controller sends CAPWAP site configuration request message to wireless terminal point, comprises the MAC Address of site STA, ID and the GB15629.11 website session key message element of WLAN that site STA will add in the message; Wherein, the A in the website session key message element is changed to 1 and is used to inform that wireless terminal point closes controlled ports, only transmits the WAI protocol data from corresponding website;
2.2.2) wireless terminal point sends CAPWAP site configuration response message to access controller, comprising the result code message element, is used to identify the result to CAPWAP site configuration request message.
4. a kind of method that merges with separated MAC mode realization WAPI and CAPWAP according to claim 1, it is characterized in that: concrete steps described step 2.3) are as follows:
2.3.1) WAI discrimination process between access controller and the website; Comprise: be transmitted to website after the WAI authentication data that wireless terminal point encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from access controller is sealed off; After encapsulating according to the CAPWAP data encapsulation form of CAPWAP GB15629.11 binding specification definition, send to access controller from the WAI authentication data of website;
2.3.2) WAI unicast key agreement process between access controller and the website; Comprise: be transmitted to website after the WAI unicast key agreement data that wireless terminal point encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from access controller are sealed off; Send to access controller after CAPWAP data encapsulation form from the definition of the data based CAPWAP GB15629.11 of the WAI unicast key agreement binding specification of website encapsulated;
2.3.3) WAI multicast key notification process between access controller and the website; Comprise: be transmitted to website after the WAI multicast key notification data that wireless terminal point encapsulates the CAPWAP data encapsulation form by the definition of CAPWAP GB15629.11 binding specification from access controller are sealed off; Send to access controller after CAPWAP data encapsulation form from the definition of data based CAPWAP GB 15629.11 binding specification of the WAI multicast key notification of website encapsulated.
5. a kind of method that merges with separated MAC mode realization WAPI and CAPWAP according to claim 1, it is characterized in that: concrete steps described step 2.4) are as follows:
2.4.1) access controller sends CAPWAP site configuration request message to wireless terminal point, comprises the MAC Address of site STA, ID and the GB15629.11 website session key message element of WLAN that site STA will add in the message; According to the MAC Address of site STA, wireless terminal point is opened corresponding with it controlled ports, transmits all data from this website, comprises WAI protocol data and non-WAI protocol data;
2.4.2) wireless terminal point sends CAPWAP site configuration response message to access controller, comprising the result code message element, is used to identify the result to CAPWAP site configuration request message.
6. a kind of method that merges with separated MAC mode realization WAPI and CAPWAP according to claim 1, it is characterized in that: concrete steps described step 2.5) are as follows:
2.5.1) the access controller encrypting and transmitting goes to the data of website;
2.5.2) access controller deciphering is from the data of website.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100214194A CN101646170B (en) | 2009-02-27 | 2009-02-27 | Method for realizing integration of WAPI and CAPWAP by separation MAC mode |
| PCT/CN2009/075922 WO2010097004A1 (en) | 2009-02-27 | 2009-12-24 | Method for realizing integration of wapi and capwap by separated mac mode |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100214194A CN101646170B (en) | 2009-02-27 | 2009-02-27 | Method for realizing integration of WAPI and CAPWAP by separation MAC mode |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101646170A CN101646170A (en) | 2010-02-10 |
| CN101646170B true CN101646170B (en) | 2011-08-17 |
Family
ID=41657835
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009100214194A Expired - Fee Related CN101646170B (en) | 2009-02-27 | 2009-02-27 | Method for realizing integration of WAPI and CAPWAP by separation MAC mode |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN101646170B (en) |
| WO (1) | WO2010097004A1 (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102404720B (en) * | 2010-09-19 | 2014-10-08 | 华为技术有限公司 | Sending method and sending device of secret key in wireless local area network |
| CN111865748B (en) * | 2020-06-10 | 2023-10-20 | 新华三技术有限公司 | Communication system and communication method |
| CN113965982B (en) * | 2021-09-09 | 2024-02-13 | 南方电网数字平台科技(广东)有限公司 | WAPI wireless access point, wireless system and control method thereof |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1905504A (en) * | 2006-07-31 | 2007-01-31 | 西安西电捷通无线网络通信有限公司 | Method for implementing virtual LAN based on WAPI system in WLAN |
| CN101192923A (en) * | 2006-11-30 | 2008-06-04 | 北京中电华大电子设计有限责任公司 | WAPI and CCMP coexistence method and device in 802.11 chip |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100486198C (en) * | 2006-11-21 | 2009-05-06 | 杭州华三通信技术有限公司 | Method to search access controller in wireless LAN and proxy server |
| CN101335666B (en) * | 2007-06-29 | 2013-03-20 | 杭州华三通信技术有限公司 | Configuration transmitting method, access control equipment and access point |
| CN101577916B (en) * | 2009-02-27 | 2011-07-06 | 西安西电捷通无线网络通信股份有限公司 | Method for realizing convergence of WAPI and CAPWAP in local MAC mode |
-
2009
- 2009-02-27 CN CN2009100214194A patent/CN101646170B/en not_active Expired - Fee Related
- 2009-12-24 WO PCT/CN2009/075922 patent/WO2010097004A1/en active Application Filing
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1905504A (en) * | 2006-07-31 | 2007-01-31 | 西安西电捷通无线网络通信有限公司 | Method for implementing virtual LAN based on WAPI system in WLAN |
| CN101192923A (en) * | 2006-11-30 | 2008-06-04 | 北京中电华大电子设计有限责任公司 | WAPI and CCMP coexistence method and device in 802.11 chip |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101646170A (en) | 2010-02-10 |
| WO2010097004A1 (en) | 2010-09-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101577978B (en) | Method for realizing convergence WAPI network architecture in local MAC mode | |
| CN102349319B (en) | Setup and configuration of relay nodes | |
| CN109417709B (en) | Method and system for authenticating access in a mobile wireless network system | |
| CN104168669B (en) | The method and system of cell access is managed for using cellular infrastructure | |
| CN101557592B (en) | STA roaming switching method for completing WPI by AC in convergent-type WLAN and system thereof | |
| WO2019047197A1 (en) | Method and system to integrate fixed access into converged 5g core | |
| WO2011116589A1 (en) | Combination network and method for wireless sensor network terminal to join in network | |
| JP2016526805A (en) | Secure system and method for secure communication | |
| CN101577905B (en) | Method for realizing convergence WAPI network architecture in separated MAC mode | |
| CN101562812B (en) | STA switching method when WPI is finished by AC in convergence type WLAN and system thereof | |
| CN108990063A (en) | Communication system, network and user equipment and its communication means | |
| CN102223634A (en) | Method and device for controlling mode of accessing user terminal into Internet | |
| CN101730102B (en) | System and method for implementing authentication on user of home base station | |
| CN101577916B (en) | Method for realizing convergence of WAPI and CAPWAP in local MAC mode | |
| CN101562811B (en) | STA roaming switching method when WPI is finished by WTP in convergence type WLAN and system thereof | |
| CN101577904B (en) | Method for realizing convergence WAPI network architecture in separated MAC mode | |
| CN101646171B (en) | Method for realizing integration of WAPI and CAPWAP by separation MAC mode | |
| CN101646170B (en) | Method for realizing integration of WAPI and CAPWAP by separation MAC mode | |
| WO2010124569A1 (en) | Method and system for user access control | |
| CN109905298B (en) | Home base station, system and method for accessing home base station to network | |
| EP3311599B1 (en) | Ultra dense network security architecture and method | |
| US20130171982A1 (en) | Method and apparatus for remote secure access to wireless network | |
| CN101557591B (en) | STA switching method for completing WPI by WTP in convergent-type WLAN and system thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20110817 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |