JP2003258817A - Radio communication equipment, control method thereof, and program for realizing the control method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To perform radio communication with high security with a plurality of access points without continuously using a fixed ESS ID (extended service ID) even in the case of communicating with the plurality of access points for moving. <P>SOLUTION: When a prescribed time has passed, a value obtained by updating the ESS ID is produced and an ESS ID update notification packet is transmitted to all stations that have connected to this access point. The stations that have received the ESS ID update notification packet replace the set value of the ESS ID with the updated value of the ESS ID, subsequently transmit a reassociation request packet with the updated value of the ESS ID set therein to the access point to request that the stations can participate in a DS (distribution system) managed with the new ESS ID. The access point transmits a reassociation response packet to the stations, notifying that the stations can participate in the DS, so that the stations can perform a normal communication sequence. <P>COPYRIGHT: (C)2003,JPO

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a wireless communication device for performing highly secure wireless communication, a control method therefor, and a program for implementing the control method.

[0002]

2. Description of the Related Art A wireless interface has an advantage that it does not require troublesome wiring, but it has not spread widely because of low interconnectivity, low transfer rate, and expensive device.

However, there is active standardization work, and the IEEE
Std. 802.11-1999, further IEEE Std. 802.11a-199
9, IEEE Std 802.11b-1999 standard was established. In particular, IEEE Std. 802.11b-1999 is a standard that allows transfer at a maximum of 11 Mbps by using radio waves in the 2.4 GHz band. This enables wired LAN (Local Area Network)
10BASE standardized by IEEE Std. 802.3-
It is now possible to support a transfer rate equivalent to T (transfer rate 10 Mbps).

Further, as the price of the wireless interface device has decreased, the number of cases where it is adopted as a home network or a small office LAN has increased.

FIG. 1 is a diagram showing a general construction example of a wireless LAN.

In the figure, STAi1 (i = 1, ...
, N) represent a plurality of stations (hereinafter referred to as “STA”), which are PCs (Personal Compute).
Information equipment such as r), which is equipped with an interface function for performing wireless communication.

AP2 is an access point (hereinafter referred to as "A
It is a special wireless communication device called "P"), and provides a bridge function between the wireless LAN and the wired LAN 3.

[0008] Further, the AP2 has an ESS ID (Extende
d Service Set ID), that is, STAi1 that can access AP2 by an identifier called extended service ID
Can be managed. This ESS ID is AP
The administrator of No. 2 arbitrarily determines the value, and teaches the value to the user who requests access to AP2. ESSI
A user who has been taught D, that is, who is allowed to access AP2, sets ESSID to STAi1 and AP
2 will be accessible.

[0009]

[Problems to be Solved by the Invention] However, in practice, ST
Since it is possible that Ai1 is moved and used, for example, if a different ESS ID value is used for each AP, the ESS ID of the AP that can be accessed each time it moves.
However, if there are multiple APs, it was not possible to know which AP was optimal for connection.

In order to solve this problem, the ESS ID
There is also a method to specify the setting value of with a specific character string such as blank or "ANY" so that it can accept the transmission / reception requests from all STAs. However, this method allows access from unexpected users. Allow or fixed ESS
You will continue to use the ID and the security will be low.

The present invention has been made by paying attention to this point, and even when a wireless communication environment having a high degree of freedom is constructed such that a plurality of access points are connected while moving, a fixed ESS ID is used. It is an object of the present invention to provide a wireless communication device capable of performing high-security wireless communication with a plurality of access points without continuing to use, a control method therefor, and a program for implementing the control method.

[0012]

In order to achieve the above object, the wireless communication apparatus according to claim 1 is a wireless communication means managed by an extended service identifier and a trigger generating means for generating a trigger under a predetermined condition. A storage means for storing information on the currently connected station, an update means for updating the extended service identifier according to the generated trigger, and all stations stored in the storage means, It is characterized in that it has a notification means for notifying that the extended service identifier has been changed and the updated extended service identifier, and a connecting means for newly making an association with the changed extended service identifier.

According to a second aspect of the present invention, there is provided the wireless communication device according to the first aspect, wherein the trigger generating means generates a trigger at predetermined time intervals.

According to a third aspect of the present invention, there is provided the wireless communication device according to the second aspect, wherein the predetermined time is a preset time.

According to a fourth aspect of the present invention, there is provided the wireless communication device according to the second aspect, wherein the predetermined time is calculated from a current time.

According to a fifth aspect of the present invention, there is provided the wireless communication device according to the second aspect, wherein the predetermined time is a random value.

According to a sixth aspect of the present invention, there is provided the radio communication device according to the second aspect, wherein a maximum value is set for the predetermined time.

A radio communication apparatus according to a seventh aspect is the radio communication apparatus according to the first aspect, wherein the trigger generating means generates a trigger when a new station is connected.

The radio communication apparatus according to claim 8 is the radio communication apparatus according to claim 1, wherein the trigger generating means generates a trigger when a station being connected is disconnected from the connection. .

A radio communication apparatus according to a ninth aspect is the radio communication apparatus according to the first aspect, wherein the trigger generating means generates a trigger by arbitrarily combining the trigger generating conditions of the second, seventh and eighth aspects. Is characterized by.

In order to achieve the above object, a control method for a wireless communication apparatus according to a tenth aspect of the present invention is a wireless communication step managed by an extended service identifier, a trigger generating step for generating a trigger under a predetermined condition, and a current step. A storing step for storing information of connected stations, an updating step for updating the extended service identifier according to the generated trigger, and an extended service identifier for all stations stored in the storing step. Has been changed and a notification step of notifying the updated extended service identifier, and a connection step of newly associating with the changed extended service identifier.

A method of controlling a wireless communication device according to claim 11 is the method of controlling a wireless communication device according to claim 10, wherein
The trigger generating step is characterized in that a trigger is generated at predetermined time intervals.

A method for controlling a wireless communication device according to a twelfth aspect is the method for controlling a wireless communication device according to the eleventh aspect.
The predetermined time is a preset time.

According to a thirteenth aspect of the present invention, there is provided a wireless communication device control method according to the eleventh aspect, wherein
The predetermined time is calculated from the current time.

A method for controlling a wireless communication device according to a fourteenth aspect is the method for controlling a wireless communication device according to the eleventh aspect.
The predetermined time is a random value.

A wireless communication apparatus control method according to a fifteenth aspect is the wireless communication apparatus control method according to the eleventh aspect.
A maximum value is set for the predetermined time.

A method for controlling a wireless communication device according to a sixteenth aspect is the method for controlling a wireless communication device according to the tenth aspect.
In the trigger generation step, a trigger is generated when a new station is connected.

A method of controlling a wireless communication device according to a seventeenth aspect is the method of controlling a wireless communication device according to the tenth aspect.
The trigger generation step is characterized in that a trigger is generated when a connected station is disconnected from the connection.

A method for controlling a wireless communication device according to claim 18 is the method for controlling a wireless communication device according to claim 10, wherein
In the trigger generating step, a trigger is generated by arbitrarily combining the trigger generating conditions of claims 11, 16 and 17.

In order to achieve the above object, a program according to a nineteenth aspect of the present invention is a program for wireless communication managed by an extended service identifier, a trigger generation procedure for generating a trigger under a predetermined condition, and a currently connected station. Storage procedure for storing the information of the above, the update procedure for updating the extended service identifier according to the generated trigger, and the extended service identifier has been changed in all stations stored in the storage procedure. And a notification procedure for notifying the updated extended service identifier, and a connection procedure for newly associating with the changed extended service identifier.

A program according to a twentieth aspect is the program according to the nineteenth aspect, wherein in the trigger generation procedure,
It is characterized in that a trigger is generated every predetermined time.

The program according to a twenty-first aspect is the program according to the twenty-first aspect, wherein the predetermined time is a preset time.

A program according to a twenty-second aspect is the program according to the twenty-first aspect, wherein the predetermined time is calculated from the current time.

A program according to a twenty-third aspect is the program according to the twenty-first aspect, wherein the predetermined time is a random value.

According to a twenty-fourth aspect of the present invention, in the program of the twenty-first aspect, the maximum value is set for the predetermined time.

A program according to a twenty-fifth aspect is the program according to the nineteenth aspect, wherein in the trigger generation procedure,
It is characterized in that a trigger is generated when a new station is connected.

A program according to a twenty-sixth aspect is the program according to the nineteenth aspect, wherein in the trigger generation procedure,
It is characterized in that a trigger is generated when the station being connected is disconnected from the connection.

A program according to a twenty-seventh aspect is the program according to the nineteenth aspect, wherein in the trigger generation procedure,
A trigger is generated by arbitrarily combining the trigger generating conditions of claims 20, 25, and 26.

[0039]

BEST MODE FOR CARRYING OUT THE INVENTION Embodiments of the present invention will be described in detail below with reference to the drawings.

FIG. 2 is a block diagram showing a functional configuration of STAi1 to which the wireless communication apparatus according to one embodiment of the present invention is applied.

In the figure, the MPU 13 is a control unit for controlling the entire apparatus.

RAM (Random Access Memory) unit 14
Provides a storage area for temporary work, and the ROM (Read
The Only Memory) unit 15 provides a fixed storage area.

Although not shown, an HDD (Hard D
If there is a device that provides a large-capacity rewritable storage area unit such as an isk Drive), the configuration will be more sophisticated.

OS (Operating System) for controlling STAi1
stem) and application software
The STAi 1 operates by the MPU 13 executing the control process instructed by the OS or application, which is stored in the unit 15 or the HDD or the like.

The I / O unit 16 provides an interface function with an input device (not shown) such as a keyboard and a mouse, and an output device such as a printer. The user's instruction is input to the STAi 1 by the input device.

The display section 17 provides an interface function with a display device such as a liquid crystal display or a CRT (not shown). The display device displays the result instructed by the OS or application.

The PHY unit 11 includes an antenna and a T (not shown).
x / Rx switch, RF power amplifier, low noise amplifier, RF / IF converter, dual synthesizer,
It is composed of a Quad IF modem and a baseband processor. The PHY unit 11 is IEEE Std. 802.11b.
The functions of the PHY (physical) layer compliant with the above are provided. PHY
The unit 11 performs predetermined encoding on the transmission packet supplied from the MAC unit 12, and outputs the packet in the air through the antenna. On the contrary, the packet output from another STA is received and decoded, and the MAC is used as a received packet.
Supply to the part 12.

The MAC unit 12 provides a function of a MAC (Medium Access Control) layer based on IEEE Std. 802.11b. Therefore, the MAC unit 12 includes an interface unit with the MPU 13, an interface unit that controls the PHY unit 11, a MAC control unit, a storage unit that stores operation steps of the MAC control unit, and a working memory unit. ing.

When data is transmitted by a user operation or the like, the I / O unit 16 notifies the MPU 13 of a data transmission request. In response to this request, the MPU unit 13
Sets the information such as the transmission destination and the storage address of the transmission data in the MAC unit 12.

In response to this setting, the MAC unit 12 causes the RA
The transmission data is read from the M unit 14 or the ROM unit 15, etc., converted into a packet that can be received by the PHY unit 11, and supplied to the PHY unit 11. The PHY unit 11 adds a header necessary for transmission to the received packet,
It is encoded and output in the air.

On the contrary, when the packet addressed to itself is received, the packet received by the PHY unit 11 is changed to the MAC unit 1
The packet is decrypted so that it can be received at 2, and the packet from which the unnecessary header is removed is supplied to the MAC unit 12. MAC section 1
2 extracts only the data portion from the received packet and writes the data in the RAM unit 14 designated by the MPU 13.

Data can be transmitted and received by wireless communication in the above procedure.

FIG. 3 is a block diagram showing the functional configuration of AP2.

As shown in the figure, the MPU 23 is a control unit for controlling the entire apparatus.

The RAM section 24 provides a temporary work storage area, and the ROM section 25 provides a fixed storage area.

Further, although not shown, if there is a device that provides a large-capacity rewritable storage area such as an HDD, the configuration will be more sophisticated.

The OS, application software, etc. for controlling the AP2 are stored in the ROM section 25 or the HDD, etc., and the MPU 23 executes the control processing instructed by the OS or the application, whereby the AP2 operates.

The I / O unit 26 provides an interface function with an input device such as a switch (not shown) and an output device such as a printer.

The display unit 27 provides an interface function with a display device such as a liquid crystal display or a CRT (not shown). The display device displays the result instructed by the OS or application.

First PHY section 21 and first MAC section 22
Provides a first communication interface, and in the present embodiment, provides a wireless communication interface compliant with IEEE Std 802.11b-1999.

Second PHY section 28 and second MAC section 29
Provides a second communication interface, and in the present embodiment, provides a wired LAN communication interface compliant with IEEE Std 802.3.

By mounting a plurality of communication interfaces in this way, the AP 2 connects the communication packet from the STAi 1 to a terminal connected to another communication medium, that is, a terminal connected to the wired LAN 3 in this embodiment. It will be possible to send to. On the contrary, it becomes possible to relay and transmit the packet addressed to STAi1 from the terminal connected to the wired LAN 3.

FIG. 4 shows an arrangement between STA and AP or STA-S.
It is a flowchart which shows the procedure of the packet communication between TAs. In the figure, the transmitting side of the packet is Tx, and the receiving side is Rx.

When a data communication request occurs at Tx, M
The PU 13 sends the transmission data corresponding to the request in step S
1 is generated in the RAM unit 14. In step S2, the communication data generated in step S1 is divided into divided data pieces having the size of the data size to be transmitted from the beginning.
As the data size at this time, an appropriate value that does not exceed the size of the predetermined maximum length is used. If the communication state is good, the maximum length value is used, and if the communication state is bad, a short data length is designated. Further, step S2
In the case, designated data for designating the destination Rx and prescribed data necessary for packet communication are added as a header at the beginning, and a code for error correction is added at the end, and are generated as a transmission packet. In this embodiment, the header and the error code are IEEE Std. 802.3 and IEEE Std. 8
The one specified in 02.11 shall be used.

When Tx generates a transmission packet, RA
The M unit 14 is instructed to move the generated packet to the MAC unit 12 and perform transmission. The MAC unit 12 has a PH
The state of the medium is investigated by controlling the Y section 11. At this time, if another STA is communicating, the transmission process must be waited until the communication process is completed.
If it is determined in step S3 that communication is possible, a packet is transmitted from the MAC unit 15 through the PHY unit 11 in step S4.

In step S10, Rx is in a packet reception waiting state. Similar to Rx, all APs and STAs are in a packet reception waiting state except when they are transmitting packets.

When the packet is received in step S10, the received packet is temporarily stored in the MAC unit 12.
The MAC unit 12 determines that the packet received in step S11 has no error and that the packet is addressed to itself. If an error has occurred or the packet is not addressed to itself, the MAC unit 12 returns to the reception waiting state of step S10 and discards the received packet.

If there is no error and the packet is addressed to itself, ACK is sent within a predetermined time in step S12.
I have to send back a packet. The MAC unit 12 is
When the ACK packet is transmitted through the PHY unit 11 in step S12, a packet reception interrupt is generated for the MPU 13 in step S13. Upon receiving the reception interrupt, the MPU 13 executes the interrupt routine of the program stored in the ROM unit 15 and moves the packet from the MAC unit 12 to the RAM unit 14. Predetermined processing is performed on the received packet by analysis of the program stored in the ROM unit 15.

At Tx, when the packet is transmitted at step S4, the MAC unit 12 starts a timer and monitors at steps S5 and S6 whether or not an ACK packet is received within a predetermined time. If the ACK packet cannot be received within the predetermined time, it is determined that a time-out occurs in step S5 and the process proceeds to step S7. When the ACK packet is received within the predetermined time, step S6
To step S7.

In step S7, the reception is notified to the MPU 13 by the reception interrupt of the MAC unit 12, and the ACK is received.
The packet is stored from the MAC unit 12 to a predetermined place in the RAM unit 14 and analyzed. As a result of the analysis, when it is determined that the transmission cannot be normally performed, it is determined that the retransmission is necessary, the process returns to step S3, and the same packet is transmitted again.

If it is determined that the packet can be normally transmitted, the process proceeds to step S8 to check whether all the transmission data have been transmitted. If the transmission data still remains, the process proceeds to step S9, a transmission packet is generated as in step S2, and the process proceeds to step S3. When there is no transmission data, the transmission process ends.

FIG. 5 is a flowchart showing a procedure for establishing a connection between the STA and the AP, performing communication, and ending the communication. This flowchart shows a flow in which the STA attempts to join the distribution system (DS) provided by the AP from the initialized state. By participating in this DS, the STA can communicate with the AP and other STAs. Actually, since a plurality of STAs are connected to one AP to perform communication, the processing is performed one-to-many, but for simplicity of explanation, it will be described as one-to-one. The packet transmission / reception process shown in FIG.
This is along the flow described in FIG.

After initialization of the AP in step S21, the AP enters a state of waiting for authentication in step S22. At this time, another STA may actually be in a state of already participating in the DS and performing communication.

After the initialization is completed in step S31, the STA transmits an authentication request packet indicating an authentication request in step S32 in order to establish a communication connection. When sending this authentication request packet,
In some cases, the authentication request packet is transmitted to the AP designated in advance, and in other cases, the authentication request packet is transmitted after searching the currently communicable AP as its preprocessing.

The STA sends an authentication request packet including an authentication algorithm identifier, an authentication identity assertion, an authentication transaction sequence number, and authentication subordinate information. After transmitting the authentication request packet, it waits for reception of the authentication response packet from the AP for a predetermined time. When the time-out occurs, it is determined in step S33 that the authentication has failed, the process returns to step S32, and the authentication process is performed again.

Upon receiving the authentication request packet in step S22, the AP transmits an authentication response packet so that the STA can join the DS. The authentication response packet includes the authentication algorithm identifier, the authentication identity assertion, the authentication transaction sequence number, the authentication dependency information, and the authentication result.

Upon receiving the authentication response packet in step S32, the STA receives step S33.
Then, it is determined that the authentication is normally completed, and the process proceeds to the association process of step S34.

In step S34, the STA transmits an association request packet. The association request packet contains the I of the STA requesting the association.
P (Internet Protocol) address, IP address of AP that STA wants to associate with, and ESS I
D is included. At this time, the ESS ID is a special value used only for joining the DS. In this embodiment, a blank line or a character string of "ANY" is used.

After transmitting the association request packet, it waits for reception of the association response packet from the AP for a predetermined time. When the time is out, step S
In 35, it is determined that the association has failed, the process returns to step S34, and the association process is performed again.

When the AP receives the association request packet in step S23, the AP transmits an association response packet. This association response packet contains the result of the association and, if successful, the association identifier.

The STA checks the result of the association contained in the association response packet received in step S35, and if successful, proceeds to step S36, and if unsuccessful, proceeds to step S34.

When the AP gives the STA permission of association in step S23, the AP transmits a user authentication request packet to the STA in step S24.

Upon receiving the user authentication request packet in step S36, the STA sends the user authentication response packet to the A
Send to P. The user authentication response packet contains the user name and password.

The AP determines whether the user is an authorized user based on the user name and password of the user authentication response packet received in step S25. The combination of the user name and the password at this time is assumed to be registered in advance by the administrator.

If the user authentication in step S25 does not recognize that the user is a legitimate user, the process advances to step S28 to send a disauthentication request packet to the ST.
Send to A and withdraw permission to send from STA.

Upon receiving the disauthentication request packet, the STA is notified of the end of communication in step S38, and ends the communication process in step S39.

If the user authentication in step S25 identifies the user as a legitimate user, the AP determines in step S26.
The management information of the STAs that are allowed to communicate is added to the management table that manages all STAs that are currently communicating. This management information includes information acquired by authentication, association, and user authentication.

Between steps S27 and S37, the STA and AP can communicate with each other.

In the middle of the communicable state, for example, STA
If there is a request to reconfigure the communication network or a request to end the communication, step S38.
Then, a disauthentication request packet is transmitted from the STA to the AP, and the communication state ends.

Next, the characteristic control operation of the present invention will be described with reference to FIGS. 6 and 7.

FIG. 6 is a flow chart showing the procedure of the ESS ID update processing start timer operation executed by the AP, and FIG. 7 is a flowchart showing the ESS ID update timer operation procedure of FIG.
5 is a flowchart showing a procedure of operations of an AP and a STA at the time of executing an interrupt routine when the updating process of FIG.

In step S41, the ESS is set in the AP.
The ID change process start timer is initialized. This processing is performed when the power of the AP is turned on. At this time, the timer that generates the timing for updating the ESS ID is initialized and the update condition is set. Here, the update condition is a predetermined time. For example, it is set to a value set by the administrator, such as 1 hour interval, 1 day, 1 week.

When the initialization is completed, the timer is started in step S42. Then, in step S43, the timer continues to operate until the predetermined time is reached. When the predetermined time is reached, the timer is stopped in step S43, the value is initialized, and the process proceeds to step S44. In step S44,
An ESS ID interrupt notification notifying that the ESS ID update activation timer has reached a predetermined time is sent to the MPU 23. This timer may be implemented in either hardware or software.

ESS ID notified in step S44
When the MPU 23 receives the update interrupt, the corresponding ESS ID update interrupt routine is read from the ROM section 24 and executed.

When the ESS ID update interrupt routine is activated, the ESSID update interrupt is cleared in step S51. After that, in step S52, E is set so as not to accept the ESS ID update interrupt during processing.
Mask the SSID update interrupt.

In step S53, the updated value of ESS ID is generated. The algorithm that produces the value is
(1) Use the time at that time, (2) Count values sequentially, (3) ST currently connected
For example, the number of A is adopted. To further increase confidentiality, there is a method of generating a random number and adopting the value. It is also possible to employ a plurality of the above values as the parameters when generating this random number.

In step S54, "0" is assigned to the variable i. i is incremented by 1 each time the processing from step S55 to step S59 is performed,
At 58, it is compared to the number of STAs currently connected to the AP. This loop ends when i becomes equal to the value of the number of connected STAs. The number of STAs can be calculated based on the STA management information updated in step S26.

At step S55, the i-th S from the AP
The ESS ID update notification packet is transmitted to TAi.
The ESS ID update notification packet includes a command indicating that the ESS ID is updated and the ESS ID after the update.

In step S61, the STAi having received the ESS ID update notification packet replaces the set value of the ESS ID with the updated ESS ID value. After that, in step S62, the reassociation request packet in which the updated ESS ID value is set is transmitted to the AP to request the AP to participate in the DS managed by the new ESS ID.

The AP sends the reassociation request packet in which the updated ESS ID value is set in step S
When it is received at 56, it transmits a reassociation response packet to the STAi and notifies that it has joined the DS.
Upon receiving the reassociation response packet, the STAi proceeds to step S63, performs communication restoration processing, and can perform a normal communication sequence.

In step S57, it is determined whether or not the reassociation process for STAi has been completed normally.
If the process cannot be completed normally, the process returns to step S56 and the reassociation process is performed again. This reprocessing is repeated a predetermined number of times. If the STAi cannot be normally terminated even after the reassociation process is performed a predetermined number of times, it is determined that the STAi is not within the communicable range, and the process proceeds to the next STAi + 1.

If it is determined in step S58 that the reassociation process for all STAs has been completed, the process proceeds to step S60, and the masking of the ESS ID update interrupt is released so that the ESS ID update interrupt can be accepted. This is in a state of waiting for the next ESS ID update interrupt.

In the method described so far, the ESS ID
Although the method of managing the update timing of the above with a timer that periodically generates an interrupt at a predetermined time interval is shown, the secrecy is further enhanced by making the timing of the interrupt generation random. To make the timing of occurrence random,
When the timer is started in step S42, the time-out time may be randomly set and set. The algorithm that determines this time is the same as when determining the update value of the ESS ID, and the method of generating a random number from the conditions at that time, counting the value sequentially, and the number of currently connected STAs is used. Can be adopted. However, in this case, the random number is a real number of 0 to 1,
By multiplying the generated random number by the predetermined maximum time,
It may be changed within a predetermined maximum time.

Also, a new STA can be used without using a timer.
The ESS ID may be updated every time the is connected. In that case, the ESS ID update routine may be activated in the step following step S25.
Further, this process may be combined with the ESS ID update process by the timer.

Also, the ESS ID may be updated every time the connected STA is disconnected from the network. In that case, in the step following step S28,
It suffices to activate the ESS ID update routine. Furthermore, this process and the process of updating the ESS ID by the timer,
You may combine the update process of ESS ID by the connection of a new STA.

A storage medium recording the program code of software for implementing the functions of the above-described embodiments is supplied to the system or apparatus, and the computer (or CPU or MPU) of the system or apparatus stores the storage medium in the storage medium. It goes without saying that the object of the present invention can also be achieved by reading and executing the executed program code.

In this case, the program code itself read from the storage medium realizes the novel function of the present invention, and the storage medium storing the program code constitutes the present invention.

As a storage medium for supplying the program code, for example, a flexible disk, a hard disk, an optical disk, a magneto-optical disk, a CD-RO.
M, CD-R, magnetic tape, non-volatile memory card,
A ROM or the like can be used. Further, the program code may be supplied from the server computer via the communication network.

Further, by executing the program code read by the computer, not only the functions of the above-described embodiments are realized, but also the OS or the like running on the computer is executed based on the instruction of the program code. It goes without saying that a case where some or all of the actual processing is performed and the functions of the above-described embodiments are realized by the processing is also included.

Further, after the program code read from the storage medium is written in the memory provided in the function expansion board inserted into the computer or the function expansion unit connected to the computer, based on the instruction of the program code, It goes without saying that a case where a CPU or the like included in the function expansion board or the function expansion unit performs some or all of the actual processing and the processing realizes the functions of the above-described embodiments is also included.

[0111]

As described above, according to the present invention,
Highly secure wireless communication can be performed by changing the value of the ESS ID in a timely manner.

[Brief description of drawings]

FIG. 1 is a diagram showing a general construction example of a wireless LAN.

FIG. 2 is a block diagram showing a functional configuration of STAi1 to which the wireless communication device according to the embodiment of the present invention is applied.

3 is a block diagram showing a functional configuration of the AP of FIG.

FIG. 4 is a flowchart showing a procedure of packet communication between STA-AP or STA-STA.

FIG. 5 is a flowchart showing a procedure from establishing a connection between STAs and APs to performing communication and ending the communication.

FIG. 6 is a flowchart showing a procedure of an ESS ID update processing start timer operation executed by the AP.

7 is an AP when an interrupt routine is executed when the ESS ID update process is activated by the timer operation of FIG.
3 is a flowchart showing a procedure of operations of STA and STA.

[Explanation of symbols]

1 station 2 access points 3 Wired LAN 11 PHY section 12 MAC section 13 MPU 14 RAM section 15 ROM section 16 I / O section 17 Display 21 First PHY Section 22 First MAC unit 23 MPU 24 RAM 25 ROM section 26 I / O department 27 Display 28 Second PHY section 29 Second MAC unit

Claims (28)

[Claims] 1. A wireless communication means managed by an extended service identifier, a trigger generation means for generating a trigger under a predetermined condition, a storage means for storing information on a currently connected station, and the generated trigger. Update means for updating the extended service identifier, and notifying means for notifying that all the stations stored in the storage means have changed the extended service identifier and the updated extended service identifier. And a connection unit that newly associates with the changed extended service identifier. 2. The wireless communication device according to claim 1, wherein the trigger generating means generates a trigger at every predetermined time. 3. The wireless communication device according to claim 2, wherein the predetermined time is a preset time. 4. The wireless communication device according to claim 2, wherein the predetermined time is calculated from a current time. 5. The wireless communication device according to claim 2, wherein the predetermined time is a random value. 6. The wireless communication device according to claim 2, wherein a maximum value is set for the predetermined time. 7. The wireless communication device according to claim 1, wherein the trigger generation unit generates a trigger when a new station is connected. 8. The wireless communication device according to claim 1, wherein the trigger generation unit generates a trigger when a station being connected is disconnected from the connection. 9. The wireless communication apparatus according to claim 1, wherein the trigger generating means generates a trigger by arbitrarily combining the trigger generating conditions of claims 2, 7 and 8. 10. A wireless communication step managed by an extended service identifier, a trigger generating step for generating a trigger under a predetermined condition, a storing step for storing information of a currently connected station, and the generated trigger. An updating step of updating the extended service identifier, and a notifying step of notifying that all the stations stored in the storing step have changed the extended service identifier and the updated extended service identifier. And a connection step of newly making an association with the changed extended service identifier. 11. The trigger generating step generates a trigger at every predetermined time.
A method for controlling the wireless communication device described. 12. The method for controlling a wireless communication device according to claim 11, wherein the predetermined time is a preset time. 13. The method of controlling a wireless communication device according to claim 11, wherein the predetermined time is calculated from a current time. 14. The method of controlling a wireless communication device according to claim 11, wherein the predetermined time is a random value. 15. The method of controlling a wireless communication device according to claim 11, wherein a maximum value is set for the predetermined time. 16. The method of controlling a wireless communication device according to claim 10, wherein in the trigger generating step, a trigger is generated when a new station is connected. 17. The method for controlling a wireless communication device according to claim 10, wherein in the trigger generating step, a trigger is generated when a station being connected is disconnected from the connection. 18. The method of controlling a wireless communication device according to claim 10, wherein in the trigger generating step, a trigger is generated by arbitrarily combining the trigger generating conditions of claims 11, 16 and 17. 19. A wireless communication procedure managed by an extended service identifier, a trigger generation procedure for generating a trigger under a predetermined condition, a storage procedure for storing information of a currently connected station, and the generated trigger. Update procedure for updating the extended service identifier, and a notification procedure for notifying all stations stored in the storing procedure that the extended service identifier has been changed and the updated extended service identifier And a program for causing a computer to realize a connection procedure for newly associating with the changed extended service identifier. 20. The program according to claim 19, wherein the trigger generating procedure generates a trigger at every predetermined time. 21. The program according to claim 20, wherein the predetermined time is a preset time. 22. The program according to claim 20, wherein the predetermined time is calculated from a current time. 23. The program according to claim 20, wherein the predetermined time is a random value. 24. The program according to claim 20, wherein a maximum value is set for the predetermined time. 25. The program according to claim 19, wherein the trigger generation procedure generates a trigger when a new station is connected. 26. The program according to claim 19, wherein in the trigger generation procedure, a trigger is generated when a connected station is disconnected from the connection. 27. The trigger generation procedure according to claim 2,
20. The program according to claim 19, wherein the trigger is generated by arbitrarily combining the trigger generation conditions of 0, 25, and 26. 28. A storage medium storing the program according to any one of claims 19 to 27.