WO2008098510A1 - Procédé et appareil d'acquisition d'informations de contrôleur d'accès dans un réseau local sans fil - Google Patents

Procédé et appareil d'acquisition d'informations de contrôleur d'accès dans un réseau local sans fil Download PDF

Info

Publication number
WO2008098510A1
WO2008098510A1 PCT/CN2008/070278 CN2008070278W WO2008098510A1 WO 2008098510 A1 WO2008098510 A1 WO 2008098510A1 CN 2008070278 W CN2008070278 W CN 2008070278W WO 2008098510 A1 WO2008098510 A1 WO 2008098510A1
Authority
WO
WIPO (PCT)
Prior art keywords
wtp
message
information
standby
aaa server
Prior art date
Application number
PCT/CN2008/070278
Other languages
English (en)
Chinese (zh)
Inventor
Chengping Ye
Changsheng Wan
Wei Yan
Original Assignee
Huawei Technologies Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co., Ltd. filed Critical Huawei Technologies Co., Ltd.
Publication of WO2008098510A1 publication Critical patent/WO2008098510A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0892Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Definitions

  • the present invention relates to the field of communications, and more particularly to a method and apparatus for obtaining access controller information in a wireless local area network.
  • the physical layer of the STA is connected to the wireless medium; the AP is an entity capable of providing a delivery service for the STA.
  • WLAN has two service sets: BSS (Basic Service
  • the BSS consists of an AP and a STA associated with the AP.
  • the scope covered by an AP is the basic service set.
  • the association between the STA and the AP uses the basic service set identifier (BSSID).
  • BSSID basic service set identifier
  • An ESS is a structured network consisting of multiple APs and a distributed system connecting them. All APs must share the same Extended Service Set Identifier (ES SID), and an ESS can contain multiple BSSs.
  • the networking and deployment of the AN is redefined.
  • the CAPWAP working group divided the WLAN into an autonomous architecture and centralized structure (Centralized WLAN).
  • Self-organizing structure is all WTP (Wireless Termination)
  • each WTP transmits data over Ethernet.
  • the centralized structure is currently the most commonly used networking structure. As shown in Figure 1, in the centralized structure, WTP passes AC (Access).
  • WTP can have one or more ACs.
  • This networking method can separate data, control and management.
  • the control plane can be placed on the AC.
  • it is divided into local MAC, split MAC, and remote MAC.
  • Local The MAC fabric mode is a mode in which the access policy and management of the network is placed on the AC, and the 802.11 MAC function is placed on the WTP (including 802.11 management and control frames).
  • the MAC structure pattern is different from the local MAC structure, which is 802.11
  • the MAC function (including 802.11 management and control frames) is centralized on the AC, and the AC provides management and monitoring services for the WTP.
  • the WTP only provides services for some real services.
  • the MAC structure mode is that WTP only provides the physical layer function, and all other functions are concentrated on the AC. In this way, the burden of WTP is the lightest.
  • WTP can obtain the address of the AC through static configuration, but this method is not easy to manage and control.
  • WTP can also obtain the address of the AC through the CAPWAP protocol. For example, the WTP sends a discovery request message, and the AC that receives the message returns a discovery response to the WTP.
  • the obvious shortcoming of this method is that it is not convenient for centralized management of AC itself.
  • the embodiment of the present invention provides a method for obtaining access controller information in a wireless local area network, where the method includes
  • the authentication, authorization, and account AAA server receives the message of the request authentication sent by the WTP, and authenticates the WTP. After the authentication is passed, the message that the AC information is requested is sent to the access controller AC information server; [10] The AAA server obtains AC information suitable for the WTP from a message returned by the AC information server, and sends a message containing the AC information to the WTP.
  • the embodiment of the present invention further provides a method for obtaining access controller information in a wireless local area network, including: [12]
  • the AAA server receives a message sent by the standby AC to verify the WTP, and the request is verified by the WTP.
  • the message is: the standby AC receives the message sent by the WTP transmission after the request to establish a connection with the standby AC;
  • the AAA server After the AAA server passes the verification of the WTP, it sends a message that the WTP authentication is passed to the standby AC, and after the standby AC receives the message that the WTP authentication passes, sends a response message to the WTP. .
  • An embodiment of the present invention provides an apparatus for obtaining access controller information in a wireless local area network, where the apparatus includes: [15] an authentication module, configured to: after receiving the message requesting authentication sent by the WTP, authenticating the WTP, and outputting the authentication result;
  • the AC selection module is configured to: after the authentication module passes the WTP authentication, obtain AC information suitable for the WTP from the AC information server, and send the AC information to the WTP.
  • An embodiment of the present invention provides an AAA server, where the AAA server includes an apparatus for obtaining access controller information in a wireless local area network, where the apparatus includes:
  • an authentication module configured to: after receiving the message requesting authentication sent by the WTP, authenticating the WTP, and outputting the authentication result;
  • the AC selection module is configured to: after the authentication module passes the WTP authentication, obtain AC information suitable for the WTP from the AC information server, and send the AC information to the WTP.
  • the embodiment of the present invention provides a network for obtaining access controller information, where the network includes: [21] a wireless termination point, configured to send a message requesting authentication;
  • the AAA server is configured to: after receiving the message sent by the wireless endpoint, authenticate the wireless termination point, and send a message requesting access to the controller information after the authentication is passed;
  • the access controller information server is configured to: after receiving the message sent by the AAA server, select an access controller information that is suitable for the wireless termination point, and pass the access controller information by using the The AAA server forwards to the wireless endpoint.
  • the embodiment of the present invention further provides an apparatus for obtaining access controller information in a wireless local area network, including: [25] a selecting module for selecting a standby AC;
  • the verification module is configured to: after receiving the message that the request sent by the WTP is connected to the standby AC selected by the selecting module, verify the WTP, and send the verification result to the establishing module;
  • the establishing module is configured to establish a connection between the standby AC selected by the selecting module and the WTP after the verification module passes the WTP verification.
  • An embodiment of the present invention further provides an AAA server, where the AAA server includes an apparatus for obtaining access controller information in a wireless local area network, where the apparatus includes:
  • the selection module is used to select an alternate AC
  • the verification module is configured to: after receiving the message that the request sent by the WTP is connected to the standby AC selected by the selecting module, verify the WTP, and send the verification result to the establishing module; [31]
  • the establishing module is configured to establish a connection between the standby AC selected by the selecting module and the WTP after the verification module passes the WTP verification.
  • the embodiment of the present invention further provides a network for obtaining access controller information, where the network includes: [33] a wireless termination point, configured to send a message requesting authentication;
  • an AAA server configured to: after receiving the message sent by the wireless endpoint, authenticate the wireless endpoint, and send a message requesting access to the controller information after the authentication is passed;
  • an access controller information server configured to: after receiving the message sent by the AAA server, select an access controller information that is suitable for the wireless termination point, and pass the access controller information by using the The AAA server forwards to the wireless endpoint.
  • An embodiment of the present invention further provides an apparatus for obtaining access controller information in a wireless local area network, where the apparatus includes:
  • the verification module is configured to: after receiving the message that the request sent by the WTP is connected to the standby AC selected by the selecting module, verify the WTP, and send the verification result to the establishing module;
  • the establishing module is configured to establish a connection between the standby AC selected by the selecting module and the WTP after the verification module passes the WTP verification.
  • An embodiment of the present invention further provides an AAA server, where the AAA server includes:
  • the verification module is configured to: after the WTP request establishes a connection with the standby AC, verify the WTP, and send a verification result to the standby AC, where the verification result is used to determine whether between the WTP and the standby AC. establish connection.
  • the embodiment of the present invention provides a method for obtaining AC information by using the AAA server and the AC information server, and solves the problem that the WTP cannot establish a connection with the AC because the AC information cannot be obtained.
  • FIG. 1 is a schematic diagram of a WLAN networking with a centralized structure
  • FIG. 2 is a flowchart of a method for obtaining access controller information when the WTP is first started in the embodiment of the present invention.
  • FIG. 3 is an embodiment of the present invention, when the WTP is started for the first time, access control is obtained.
  • Message flow chart 4 is a flow chart of a method for enabling a standby AC when the WTP and the current AC are disconnected according to an embodiment of the present invention;
  • FIG. 5 is a message flow diagram of enabling an alternate AC when the WTP and the current AC are disconnected according to an embodiment of the present invention
  • FIG. 6 is a structural diagram of an apparatus for obtaining access controller information in a wireless local area network according to an embodiment of the present invention
  • FIG. 7 is a structural diagram of an AAA server having the function of obtaining access controller information according to an embodiment of the present invention.
  • FIG. 8 is a structural diagram of a network for obtaining access controller information according to an embodiment of the present invention.
  • FIG. 9 is a structural diagram of another apparatus for obtaining access controller information in a wireless local area network according to an embodiment of the present invention.
  • FIG. 10 is a structural diagram of another AAA server having the function of obtaining access controller information according to an embodiment of the present invention.
  • FIG. 11 is a structural diagram of another network for obtaining access controller information according to an embodiment of the present invention.
  • the embodiment of the present invention proposes a WTP using AAA (Authentication, Authorization and Accounting) protocol and ACIS (AC Information).
  • AAA Authentication, Authorization and Accounting
  • ACIS AC Information
  • AC Information Server A method of obtaining and authenticating AC information.
  • the WTP is started for the first time, or when the WTP and the current AC are interrupted, the AC information can be obtained using the method proposed by the embodiment of the present invention.
  • the WTP sends a message requesting authentication to the AAA server.
  • the AAA server authenticates the WTP.
  • the message sends the request AC information to the ACIS.
  • the AAA server obtains AC information suitable for WTP from the message returned by the ACIS, and sends a message containing the AC information to the WTP.
  • Step 101 The WTP sends an authentication request message to the AAA server.
  • the authentication request message includes the WTP-ID encrypted with WTP-AAA_key, and also includes the WTP identifier (WT).
  • WTP MAC type WTP MAC
  • the WTP identifier is used to identify the WTP identity. This identifier is unique in a mobile domain.
  • the discovery type is used to describe how to discover the WTP.
  • the WTP descriptor is used to describe the status of the requesting AC. For example, the current WTP number of the AC connection, and the maximum connection WTP. Number; WTP
  • the MAC type indicates the type of MAC supported by WTP. For example, WTP supports split MAC, and local MAC supports both.
  • WTP frame tunnel mode indicates the tunnel mode supported by WTP.
  • Step 102 After receiving the authentication request message, the AAA server verifies the WTP-ID.
  • the AAA server decrypts the encrypted WTP-ID obtained from the authentication request message with WTP-AAA_key, and compares the decrypted WTP-ID with the WTP-ID obtained from the authentication request message, if two If the WTP-ID is the same, step 104 is performed. If the two WTP-IDs are different, step 103 is performed.
  • Step 103 The AAA server returns an error code to WTP.
  • Step 104 The AAA server sends an AC information request message to the ACIS.
  • the AC information request message includes the WTP identifier (WTP-ID), the discovery type (Discovery)
  • WTP MAC Type WTP MAC Type
  • Step 105 The ACIS searches its own information table according to the WTP-ID, and returns the AC suitable for WTP request to the AAA server with an AC information reply message.
  • the AC information response message includes a preferred AC, and may also include at least one standby AC, and each AC includes an AC descriptor (AC Descriptor) and an AC name (AC Name).
  • AC Descriptor is used to indicate the status of the requesting AC, such as the current WTP number of the AC connection, and the maximum connection W.
  • AC Name is the identifier of an AC in a domain.
  • Step 106 After receiving the AC information response message, the AAA server generates a random number for the preferred AC, and generates a WTP-AC_key by using the random number, and sends a first AC verification request message to the preferred AC.
  • the AAA server uses the generated random number and the shared secret material generated between the WTP and the AAA server.
  • the first AC check request message includes WTP-AC_key and the AC name obtained from the AC information reply message.
  • Step 107 After receiving the first AC verification request message, the preferred AC checks the received AC and sends it to the AA.
  • the A server sends a first AC check response message.
  • the preferred AC compares the AC name obtained from the first AC check request message with its own AC name. If the two AC names are the same, the first AC check response message indicating that the preferred AC request is successful is sent to the AAA server. If the two AC names are different, send a first AC check response message indicating that the preferred AC request failed to the AAA server.
  • Step 108 The AAA server receives the first AC check response message, and determines the content of the first AC check response message. If the first AC check response message indicates that the preferred AC request is successful, step 109 is performed, if the first AC check is performed. If the response message indicates that the preferred AC request fails, the AAA server selects the standby AC as the preferred AC, and step 106 is performed.
  • Step 109 The AAA server sends an authentication response message to the WTP.
  • the authentication response message sent by the AAA server includes the random number generated in step 106 and the preferred AC in step 108.
  • Step 110 After receiving the authentication response message, the WTP calculates the WT according to the random number in the authentication response message.
  • P-AC_key sends the first AC discovery request message to the preferred AC.
  • the first AC discovery request message includes WTP-ID, WTP-ID, discovery type, encrypted with WTP-AC_key,
  • WTP descriptor WTP frame tunnel mode
  • WTP MAC type WTP MAC
  • Step 111 After receiving the first AC discovery request message, the AC checks the WTP-ID and sends the first
  • the AC finds a response message to the WTP.
  • the preferred AC decrypts the encrypted WTP-ID, and compares the decrypted WTP-ID with the WTP-ID obtained from the first AC discovery request message. If the two WTP-IDs are the same, the preferred AC sends a notification request to the WTP. The successful first AC discovery response message, if the two WTP-IDs are not the same, the preferred AC sends a first AC discovery response message indicating that the request failed to the WTP.
  • Step 112 After receiving the first AC discovery response message, the WTP determines the content of the first AC discovery response message. If the WTP receives the first AC discovery response message indicating that the request is successful, the step S113 is performed, if the WTP receives the indication request. If the failed first AC discovery response message is sent, the WTP resends the authentication request message to the AAA server, and step 101 is performed.
  • Step 113 WTP performs other CAPWAP operations.
  • the WTP obtains the AC information through the AAA server and the ACIS, the possibility that the WTP obtains the AC information is greatly improved, and the WTP can also implement the bootstrapping.
  • WTP will be disconnected from the current AC for some reason, so WTP will activate the standby AC.
  • the WTP selects a standby AC and sends a message to the standby AC to establish a connection with the standby AC.
  • the standby AC After receiving the message sent by the WTP, the standby AC sends a message requesting WTP authentication to the AAA server. After the WTP authentication is passed, the WTP authentication message is sent to the standby AC. After receiving the WTP authentication message, the standby AC sends a response message to the WTP.
  • Step 201 The WTP generates a random number for the standby AC, and calculates the WTP-AC_key by using the random number and the shared secret material between the WTP and the AAA server.
  • Step 202 The WTP sends the first AC Discovery Request message to the standby AC.
  • the first AC discovery request message includes a WTP-ID encrypted with WTP-AAA_key, a WTP-ID encrypted with WTP-AC_key, a random number encrypted with WTP-AAA_key, and also includes a WTP-ID, a discovery type, and a WTP descriptor. , WTP frame tunnel mode, WTP
  • the random number encrypted by WTP-AAA_key is the random number generated in step 201.
  • Step 203 After receiving the first AC discovery request message, the standby AC sends a WTP authentication request message to the AAA server.
  • WTP Authentication Request message includes WTP-ID encrypted with WTP-AAA_key
  • Step 204 After receiving the WTP verification request message, the AAA server decrypts the random number sent by the WTP, and uses the random number to calculate the WTP-AC_key and sends the WT to the standby AC.
  • Step 205 After receiving the WTP verification confirmation message, the standby AC checks the WTP-ID and sends the first A.
  • the standby AC After receiving the WTP verification confirmation message, the standby AC decrypts the encrypted WTP-ID with the WTP-AC_key obtained from the WTP verification confirmation message, and decrypts the decrypted WTP-ID with the first AC discovery request message. The obtained WTP-ID is compared. If the two WTP-IDs are the same, the standby AC sends a first AC discovery response message indicating that the request is successful to the WTP. If the two WTP-IDs are different, the standby AC sends the WTP to the WTP. Indicates the first AC discovery response message indicating that the request failed.
  • Step 206 After receiving the first AC discovery response message, the WTP determines the content of the first AC discovery response message. If the WTP receives the first AC discovery response message indicating that the request is successful, step 207 is performed, if the WTP receives the indication request. If the failed first AC finds the response message, the WTP enables the other standby ACs, and step 201 is performed.
  • WTP When the WTP receives the first AC discovery response message indicating that the request failed, WTP can enable other alternate ACs if there are other alternate ACs available. In addition, WTP can be enabled for the first boot process.
  • Step 207 WTP performs other CAPWAP operations.
  • the WTP obtains the AC information through the AAA server, so that when the WTP is disconnected from the current AC, the WTP can implement the connection between the WTP and the AC by starting the standby AC, thereby ensuring continuous communication. Sex.
  • an embodiment of the present invention provides a device for obtaining access controller information in a wireless local area network.
  • the device includes an authentication module and an AC selection module
  • the authentication module is configured to: after receiving the message requesting authentication sent by the WTP, authenticate the WTP, and send the authentication result to the AC selection module;
  • the AC selection module is used to obtain the appropriate information from the AC information server after the authentication module passes the WTP authentication.
  • This embodiment obtains AC information through the authentication module and the AC selection module, which greatly improves W.
  • an embodiment of the present invention provides an AAA server, where the AAA server includes an apparatus for obtaining access controller information in a wireless local area network, where the apparatus includes an authentication module and an AC selection module.
  • the authentication module is configured to: after receiving the message requesting authentication sent by the WTP, authenticate the WTP, and send the authentication result to the AC selection module;
  • the AC selection module is used to obtain the appropriate information from the AC information server after the authentication module passes the WTP authentication.
  • a device for obtaining access controller information in a wireless local area network is added to the AAA server, so that the AAA server not only has the functions of authentication, authorization, and account, but also provides a wireless termination point. For access to controller information.
  • an embodiment of the present invention provides a network for obtaining access controller information, where the network includes a wireless termination point, an AAA server, and an access controller information server.
  • the wireless endpoint is used to send a message requesting authentication to the AAA server;
  • the AAA server After receiving the message sent by the wireless endpoint, the AAA server authenticates the wireless endpoint, and sends a message requesting access to the controller information to the access controller information server after the authentication is passed;
  • the access controller information server After receiving the message sent by the AAA server, the access controller information server selects the access controller information suitable for the wireless endpoint, and forwards the access controller information to the wireless endpoint through the AAA server.
  • a wireless termination point provides a network for obtaining access controller information, and the wireless termination point of the network can obtain an access controller suitable for itself without an access controller being available. Information, thereby establishing a connection.
  • an embodiment of the present invention further provides an apparatus for obtaining access controller information in a wireless local area network, where the apparatus includes a selection module, a verification module, and an establishment module;
  • the selection module is used to select an alternate AC
  • the verification module is configured to: after receiving the message that the request sent by the WTP is connected with the standby AC selected by the selection module, verify the WTP, and send the verification result to the establishing module;
  • the setup module is used to select the alternate AC and WT selected in the module after the verification module passes the WTP verification.
  • a connection is established between P.
  • the standby AC is enabled by the selection module and the verification module, so that when the connection between the WTP and the current AC is interrupted, the connection between the WTP and the AC can be implemented by starting the standby AC, thereby ensuring continuity of communication. .
  • an embodiment of the present invention further provides an AAA server, where the AAA server includes means for obtaining access controller information in a wireless local area network, where the apparatus includes a verification module;
  • the verification module receives the message sent by the WTP and establishes a connection with the standby AC selected by the module, and then verifies the WTP, and sends the verification result to the establishment module;
  • the setup module is used to select the alternate AC and WT selected in the module after the verification module passes the WTP verification.
  • a connection is established between P.
  • a verification module is added to the AAA server, so that the AAA server not only has the verification.
  • authorization and account functions can also provide access controller information for wireless endpoints.
  • an embodiment of the present invention further provides a network for obtaining access controller information, where the network includes a wireless termination point and an AAA server;
  • the wireless endpoint is used to send a message to the AAA server requesting to establish a connection with the standby access controller;
  • the AAA server is configured to verify the wireless endpoint after receiving the message sent by the wireless endpoint, and After the verification is passed, the message that the verification is passed is sent to the wireless endpoint.
  • a wireless termination point provides a network for obtaining access controller information, and the wireless termination point of the network can obtain an access controller suitable for itself without an access controller being available. Information, thereby establishing a connection.
  • Embodiments of the invention may be implemented in software, for example, utilized.
  • Language programming such as C++ or JAVA
  • the corresponding software can be stored in a readable storage medium, such as a computer hard disk, memory.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

L'invention concerne un procédé et un appareil, destinés à acquérir des informations de contrôleur d'accès dans un réseau local sans fil, appartenant au domaine des communications. Le procédé d'acquisition d'informations de contrôleur d'accès dans un réseau local sans fil comporte les étapes suivantes : réception par un serveur AAA du message demandant la certification envoyé par le WTP, certification du WTP, envoi d'un message demandant des informations de contrôleur d'accès (CA) au serveur d'informations de CA après que la certification a été validée; acquisition par le serveur AAA d'informations de CA correspondant au WTP à partir du message de retour du serveur d'informations de CA et envoi du message comprenant les informations de CA au WTP, ce qui améliore la possibilité d'acquisition du CA par le WTP.
PCT/CN2008/070278 2007-02-13 2008-02-04 Procédé et appareil d'acquisition d'informations de contrôleur d'accès dans un réseau local sans fil WO2008098510A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CNA2007100050640A CN101247295A (zh) 2007-02-13 2007-02-13 一种在无线局域网获得接入控制器信息的方法和装置
CN200710005064.0 2007-02-13

Publications (1)

Publication Number Publication Date
WO2008098510A1 true WO2008098510A1 (fr) 2008-08-21

Family

ID=39689671

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2008/070278 WO2008098510A1 (fr) 2007-02-13 2008-02-04 Procédé et appareil d'acquisition d'informations de contrôleur d'accès dans un réseau local sans fil

Country Status (2)

Country Link
CN (1) CN101247295A (fr)
WO (1) WO2008098510A1 (fr)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101577916B (zh) * 2009-02-27 2011-07-06 西安西电捷通无线网络通信股份有限公司 一种以本地mac模式实现wapi与capwap融合的方法
CN101646171B (zh) * 2009-02-27 2011-08-17 西安西电捷通无线网络通信股份有限公司 以分离mac模式实现wapi与capwap融合的方法
US8478854B2 (en) * 2009-05-14 2013-07-02 Avaya Inc. Tolerant device licensing in a distributed environment
CN101557591B (zh) * 2009-05-14 2011-01-26 西安西电捷通无线网络通信股份有限公司 会聚式wlan中由wtp完成wpi时的sta切换方法及其系统
CN103916853A (zh) * 2012-12-31 2014-07-09 中兴通讯股份有限公司 一种无线局域网中接入节点的控制方法及通信系统
WO2015027456A1 (fr) * 2013-08-30 2015-03-05 华为技术有限公司 Procédé d'accès par wtp, procédé de gestion, appareil et système
EP3043621B1 (fr) * 2013-10-10 2018-08-29 Huawei Technologies Co., Ltd. Point de terminaison sans fil, procédé et système de commande associés et point de commande sans fil
CN104812021B (zh) * 2015-04-01 2018-12-25 新华三技术有限公司 一种ap接入ac的方法及装置
CN110138622B (zh) * 2019-06-04 2022-05-27 江苏创通电子股份有限公司 基于云技术的无线局域网管理系统

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040208187A1 (en) * 2003-04-16 2004-10-21 Jerry Mizell Home agent redirection for mobile IP
JP2004304824A (ja) * 1999-10-05 2004-10-28 Nec Corp 無線lanシステムにおける認証方法と認証装置
CN1625853A (zh) * 2002-04-23 2005-06-08 Sk电信有限公司 在公共无线局域网中具有移动性的认证系统和方法
CN1265580C (zh) * 2002-12-26 2006-07-19 华为技术有限公司 一种对网络用户进行认证和业务管理的方法
CN1283062C (zh) * 2004-06-24 2006-11-01 华为技术有限公司 无线局域网用户实现接入认证的方法

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004304824A (ja) * 1999-10-05 2004-10-28 Nec Corp 無線lanシステムにおける認証方法と認証装置
CN1625853A (zh) * 2002-04-23 2005-06-08 Sk电信有限公司 在公共无线局域网中具有移动性的认证系统和方法
CN1265580C (zh) * 2002-12-26 2006-07-19 华为技术有限公司 一种对网络用户进行认证和业务管理的方法
US20040208187A1 (en) * 2003-04-16 2004-10-21 Jerry Mizell Home agent redirection for mobile IP
CN1283062C (zh) * 2004-06-24 2006-11-01 华为技术有限公司 无线局域网用户实现接入认证的方法

Also Published As

Publication number Publication date
CN101247295A (zh) 2008-08-20

Similar Documents

Publication Publication Date Title
US8959601B2 (en) Client configuration during timing window
US9232398B2 (en) Method and apparatus for link setup
RU2407181C1 (ru) Аутентификация безопасности и управление ключами в инфраструктурной беспроводной многозвенной сети
US7587598B2 (en) Interlayer fast authentication or re-authentication for network communication
JP3869392B2 (ja) 公衆無線lanサービスシステムにおけるユーザ認証方法および該方法をコンピュータで実行させるためのプログラムを記録した記録媒体
WO2008098510A1 (fr) Procédé et appareil d'acquisition d'informations de contrôleur d'accès dans un réseau local sans fil
CN101616410B (zh) 一种蜂窝移动通信网络的接入方法和系统
JP5042834B2 (ja) 無線携帯インターネットシステムでeapを利用する保安関係交渉方法
US7155526B2 (en) Method and system for transparently and securely interconnecting a WLAN radio access network into a GPRS/GSM core network
WO2013119043A1 (fr) Procédé et appareil pour associer une station (sta) à un point d'accès (ap)
US20050226423A1 (en) Method for distributes the encrypted key in wireless lan
US20120026916A1 (en) Method and System for Transporting Configuration Protocol Messages Across a Distribution System (DS) in a Wireless Local Area Network (WLAN)
JP2018523950A (ja) 直接通信キーの確立のための方法および装置
WO2011144174A1 (fr) Procédé, dispositif et système de configuration de dispositif d'accès
WO2008006306A1 (fr) Procédé et dispositif de dérivation d'une clé interface locale
WO2009152749A1 (fr) Procédé, système et appareil d'authentification d'association
WO2004102884A1 (fr) Procede d'authentification par reseau local radio
WO2011137782A1 (fr) Procédé, dispositif et système de transmission d'une clé dans un réseau local sans fil
WO2006097041A1 (fr) Forme d'authentification generale et procede pour mettre en place l'authentification
WO2013107423A1 (fr) Procédé, système et dispositif d'authentification pour accès réseau
WO2007028328A1 (fr) Procede, systeme et dispositif de negociation a propos d'une cle de chiffrement partagee par equipement utilisateur et equipement externe
KR20080086127A (ko) 이동통신 네트워크 및 상기 이동통신 네트워크에서 이동 노드의 인증을 수행하는 방법 및 장치
WO2009074050A1 (fr) Procede, systeme et appareil d'authentification de dispositif de point d'acces
US20150381611A1 (en) Method and network node for obtaining a permanent identity of an authenticating wireless device
WO2007022731A1 (fr) Procede, systeme et equipement de negociation de cle de cryptage dans une trame de verification universelle amelioree

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08706651

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 08706651

Country of ref document: EP

Kind code of ref document: A1