WO2014033199A1 - Method and devices for pairing within a group of wireless devices - Google Patents

Method and devices for pairing within a group of wireless devices Download PDF

Info

Publication number
WO2014033199A1
WO2014033199A1 PCT/EP2013/067868 EP2013067868W WO2014033199A1 WO 2014033199 A1 WO2014033199 A1 WO 2014033199A1 EP 2013067868 W EP2013067868 W EP 2013067868W WO 2014033199 A1 WO2014033199 A1 WO 2014033199A1
Authority
WO
WIPO (PCT)
Prior art keywords
wireless
secret data
secure connection
setting
direct
Prior art date
Application number
PCT/EP2013/067868
Other languages
French (fr)
Inventor
Walter Dees
Johannes Arnoldus Cornelis Bernsen
Original Assignee
Koninklijke Philips N.V.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Koninklijke Philips N.V. filed Critical Koninklijke Philips N.V.
Priority to EP13756120.5A priority Critical patent/EP2891352B1/en
Priority to BR112015004063-2A priority patent/BR112015004063B1/en
Priority to JP2015529020A priority patent/JP6290890B2/en
Priority to RU2015111201A priority patent/RU2662687C2/en
Priority to MX2015002397A priority patent/MX345279B/en
Priority to US14/423,312 priority patent/US9445449B2/en
Priority to CN201380045532.0A priority patent/CN104584606B/en
Priority to ES13756120T priority patent/ES2712960T3/en
Publication of WO2014033199A1 publication Critical patent/WO2014033199A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • H04W76/14Direct-mode setup
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/062Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/065Network architectures or network communication protocols for network security for supporting key management in a packet data network for group communications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/50Secure pairing of devices
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Definitions

  • the invention relates to a system for wireless communication comprising a group of wireless devices and a portable device, each device comprising a radio transceiver for wirelessly exchanging data with the other devices,
  • first wireless device of the group accommodating a first host function and a second wireless device of the group accommodating a second host function, the first and second wireless devices being the same wireless device or different wireless devices;
  • the group of wireless devices sharing first secret data and configured for wireless communication to the first wireless device accommodating the first host function via respective first secure connections based on the first secret data.
  • the invention further relates to portable device, a host device, a wireless device, a method and a computer program product for use in the above system for wireless communication.
  • the invention relates to the field of secure wireless communication, e.g. via Wi-Fi, and more specific to a secure setup for a wireless docking system.
  • Wi-Fi Protected Access WPA
  • Wi-Fi connections are protected for confidentiality and integrity by cryptographic means, using technologies such as WPA2.
  • the security in WPA2 can be based on two systems. The first one is Pre-Shared Key mode (PSK, also known as Personal mode) and is designed for home and small office networks. The second one relies on the use of an 802. IX authentication server and is designed for enterprise networks.
  • PSK Pre-Shared Key mode
  • 802. IX authentication server 802. IX authentication server
  • Wi-Fi Simple Configuration (a.k.a. Wi-Fi
  • Wi-Fi Simple Configuration, Technical Specification, Version 2.0.2, 2011 also from the Wi-Fi Alliance
  • Wi-Fi Simple Configuration, Technical Specification, Version 2.0.2, 2011 is a standard that allows a first device that knows the Passphrase, e.g. a Wireless LAN Access Point, to send it to a second device in a secure way, without the user having to enter the Passphrase in the second device. Instead, the user may for example push a button on both devices within a limited time, or enter an 8-digit PIN that is listed on the first device in the second device, in order to receive a passphrase. This typically involves a user action, i.e. a so-called user pairing action.
  • US2010/0153727 describes enhanced security for direct link communications between multiple wireless devices, which exchange nonces that are used for generating a common nonce.
  • a group identification information element is generated from at least the common nonce and is forwarded to an authentication server.
  • the authentication server generates a group direct link master key from the group identification information element to match devices as part of a key agreement group.
  • Group keys are also generated based on the common nonce. So a secure group of devices for direct link communication is created.
  • an Access Point In the Wi-Fi Infrastructure, an Access Point (AP), or rather its Registrar, stores and manages the credentials for the network it is responsible for.
  • a Wi-Fi device that wishes access to the Wi-Fi Infrastructure network of an AP needs to obtain the network credentials in a pairing operation with the AP. Once the secure connection with the AP is set up, the Wi- Fi device can communicate with other Wi-Fi devices associated with the AP.
  • the traditional infrastructure has the disadvantage that connections are indirect, because all communication needs to pass through the access point. In many cases however, it is beneficial (e.g. for reducing latency, improving the connection speed) that devices would be able to set up a direct link between each other without having to relay the traffic through the access point.
  • Two technologies Wi-Fi Direct and Tunnelled Direct Link Setup (TDLS) have been created to be able to set up such direct Wi-Fi link between devices.
  • Wi-Fi Direct (a.k.a. Wi-Fi Peer to Peer), known from the document "Wi-Fi Wi-Fi Peer-to-Peer (P2P) Technical Specification, Version 1.1, 2010", also from the Wi-Fi Alliance is a standard that allows Wi-Fi devices to connect to each other with no need for a wireless access point.
  • Wi-Fi Direct plays an important role for connecting standalone wireless devices and peripherals, such as display devices/peripherals supporting Wi-Fi Display, and I/O devices/peripherals supporting Wi-Fi Serial Bus (e.g. wireless mouse, keyboard, printer, USB hub). It is therefore an important technology for wireless docking, a technology to enable a portable device to connect to a multitude of wireless peripherals.
  • Wi-Fi Direct a user pairing step typically needs to be performed for every new Wi-Fi Direct connection that is created. When two Wi-Fi Direct devices want to communicate, one of them becomes the so-called Group Owner (GO). The other device takes the client role.
  • GO Group Owner
  • a GO has many similarities with an AP. It may for example allow other devices to join the P2P group, and offer possibilities to distribute traffic between the different devices in the P2P group.
  • devices would be able to communicate directly with each other without having to relay traffic. In case of Wi-Fi Direct this would mean that you would have to connect to and pair with each of the other devices individually. This is cumbersome, especially if multiple devices are involved. For example, for wireless docking of a portable device with a multitude of wireless peripherals, it would be very user unfriendly if the user would need to perform a user pairing step with each wireless peripheral individually. It is therefore very important to keep the amount of pairing actions to a minimum.
  • Tunnelled Direct Link Setup (TDLS), known from the document "IEEE Std 802.1 lz-2010 Part 11 : Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) specifications, Amendment 7: Extensions to Direct-Link Setup (DLS), published by IEEE on 14 October 2010"
  • TDLS Tunnelled Direct Link Setup
  • MAC Medium Access Control
  • PHY Physical Layer
  • DLS Extensions to Direct-Link Setup
  • TDLS has several drawbacks:
  • TDLS has several compatibility problems when used in a Wi-Fi Direct network (e.g. TDLS through the Wi-Fi Direct GO to set up a direct link between different devices within a Wi-Fi Direct P2P group). For example, the power save mechanisms of Wi- Fi Direct and TDLS are not compatible and can cause conflicts.
  • TDLS Peer Key (TPK) Handshake The exchange of security credentials for the TDLS direct link is done through a TDLS Peer Key (TPK) Handshake.
  • TPK TDLS Peer Key
  • the problem is that this handshake between the two TDLS devices is done via the AP. Since the AP can decrypt the messages of the TDLS devices involved, it means that the AP can overhear this handshake, and is able to recover the key that TDLS devices agree on for the direct connection.
  • PSK mode also other devices associated with the same AP will be able to overhear this traffic, for example in the following manner: when a Wi-Fi device associates with an AP using PSK, it uses the Passphrase and other information in a so-called Four- Way Handshake to generate/derive a link key called Pairwise Transient Key (PTK).
  • PTK Pairwise Transient Key
  • the PTK is used for the encryption and authentication of the traffic between that Wi-Fi device and the AP.
  • Traffic meant for another device is re-encrypted by the AP with the link key (PTK) that the AP and the other device have derived from the Passphrase.
  • PTK link key
  • the AP has a different PTK for each associated Wi-Fi device, any device associated with the AP, in possession of the Passphrase, can compute the PTK that is used by listening into the Four- Way Handshake between the other device and the AP. Since by using this PTK the device can decrypt the communication between the other device and the AP, this means that it can also overhear the TDLS Peer Key Handshake, and compute the key that is used to protect the TDLS direct link between the two TDLS devices. Hence, TDLS by default does not provide secure private communication over the direct link.
  • the pairing of a wireless device and the connection setup always has to go through the access point to which all devices in the group must be connected. You cannot directly connect with any of the clients/stations (e.g. the display) in the group unless you first set up a connection with the access point/group owner. This means that you may need to be physically close to the access point/group owner to perform the pairing steps, since you are not able to connect with the group through one of the other devices in the group.
  • a system for secure communication that keeps the number of user pairing steps to a minimum, prevents eavesdropping of the direct links between devices, and provides flexibility in connecting to the group.
  • the portable device comprises a device communication processor for
  • the second wireless device accommodating the second host function comprises a host communication processor for
  • the at least one wireless device comprises a communication processor for
  • the method of wireless communication in the system of wireless devices as described in the opening paragraph comprises
  • the main elements of the secure system and method enable a portable device A (e.g. Wi-Fi Direct compatible) to connect to a group G of wireless devices.
  • the group G is preconfigured to act as a group connected to a wireless device accommodating a first host function and shares a common secret SI used for securing the communication within the group.
  • the group may for example comprise a wireless docking host and wireless peripherals.
  • the device A connects to one of the wireless devices, which functions as a second host device by accommodating a second host function, in the group using secret S2 for securing the communication via the second secure connection.
  • the devices in the group and device A get instructed about another secret S3, followed by device A to start listening for incoming connections, followed by one or more devices setting up a direct secure wireless connection with device A using the secret S3 for automated pairing with device A, e.g. in a manner that is compatible with Wi-Fi Direct.
  • the second host device is the same device as the wireless device accommodating the first host function.
  • group G may contain devices that are only capable of supporting a P2P Client or a Wi-Fi station (STA) role, and not a P2P Group owner or Wi-Fi Access Point (AP) role.
  • STA Wi-Fi station
  • AP Wi-Fi Access Point
  • the measures have the effect that a wireless secure communication system and secure protocol are provided for distributing the secrets used for setting up secure direct links with minimal user pairing steps, in a manner that prevents eavesdropping of the direct links between devices, and which in addition offers extra flexibility by allowing any device capable of performing the function of the second host to be the entry point to the group of wireless devices performing a function.
  • the group of devices may provide a docking environment for a portable device like a smart phone (a.k.a. dockee).
  • the dockee does not always have to use the same device in the docking system (e.g. an AP or GO) for connecting with the group, but instead may connect to any device in the group accommodating said second host function.
  • the invention is also based on the following recognition (using the Wi-Fi environment as an example).
  • a group of Wi-Fi Direct devices together perform functions for another wireless device (such as wireless docking)
  • it is desirable that the other wireless device is able to set up one or more peer-to-peer links with any of the wireless devices in the group without having to perform a user pairing action with each of these devices from the group individually.
  • Wi-Fi Direct has the concept of a group owner (GO). If all the Wi-Fi Direct devices in the group would connect to the same GO, and the GO supports the so-called Intra- BSS distribution feature of Wi-Fi Direct, then it is sufficient for the other wireless device to connect to this GO to be able to communicate with all the devices in the group.
  • An Intra-BSS Distribution field indicates if the P2P Device is hosting, or intends to host, a P2P Group that provides a data distribution service between Clients in the P2P Group. However, all communication would have to go through the GO. This is very inefficient, and increases the latency of the communication. For functions such as wireless docking, latency is an important issue. The connection with the wireless display, mouse, keyboard etc.
  • Wi-Fi Direct imposes certain restrictions on devices, such as the restriction that a P2P device can only be connected to a single GO. Once connected to a GO the P2P Device changes roles, i.e. the device becomes a P2P client.
  • Wi-Fi Direct defines various restrictions for P2P Clients, such as restrictions on discoverability and communicating between P2P clients.
  • the number of simultaneous P2P client instances that can typically run on a single device is also very limited.
  • Many low-end wireless peripherals (such as a Wi-Fi mouse or keyboard) are expected to even have further restrictions due to their resource limitations, such as supporting only the P2P Client role and supporting only a single Wi-Fi link.
  • the device communication processor is further arranged for controlling the communication via said direct wireless connections as a group owner.
  • a device may control a group of devices as a group owner, for example in WLAN executing the AP role.
  • the first device takes a Wi-Fi Direct group owner role when setting up Wi-Fi Direct P2P connections between the devices in a subset G' of further wireless devices and first device.
  • the device communication processor is further arranged for setting up respective different direct wireless secure connections with respective wireless devices of respective different subsets using a respective pairing procedure based on respective different third secret data.
  • the device communication processor is further arranged for setting up respective different direct wireless secure connections with respective wireless devices of respective different subsets using a respective pairing procedure based on respective different third secret data.
  • multiple subsets are accommodated to communicate with the first device via different instances of the third secret data.
  • the device communication processor is further arranged for receiving the second instruction including respective different third secret data for multiple subsets.
  • multiple subsets are accommodated to communicate with the portable device via a single instruction.
  • the device communication processor is further arranged for generating the third secret data and transferring the third secret data to the device accommodating the second host function.
  • the portable device controls security by controlling the generation of the third secret data.
  • the device communication processor is arranged for disconnecting the second secure connection before initiating setting up the respective direct wireless secure connection with a respective wireless device of the subset.
  • the device communication processor is arranged for disconnecting the second secure connection before initiating setting up the respective direct wireless secure connection with a respective wireless device of the subset.
  • less radio transceiver capability is required and less capacity of the wireless medium is used.
  • the device communication processor is arranged for providing a persistent grouping, and accordingly for, after disconnecting the respective direct wireless secure connection based on said third secret data, setting up a further respective direct wireless secure connection based again on said third secret data.
  • a portable device e.g. a dockee
  • reconnects the secure
  • the device communication processor is arranged for using the second secret data or the third secret data acquired during earlier pairing when, after disconnecting the respective direct wireless secure connection based on said third secret data, reconnecting with the respective wireless device of the subset for setting up a respective direct wireless secure connection.
  • a portable device e.g. a dockee
  • reconnects the secure communication is restored faster.
  • the second secure connection comprises a Wi-Fi Direct P2P connection.
  • the connection may be a Wi-Fi Direct P2P connection and where the second secret data (S2) is a Wi-Fi Passphrase, e.g. the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK).
  • PMK Wi-Fi Pairwise Master Key
  • PSK Wi-Fi Pre-shared key
  • the respective direct wireless secure connection comprises a Wi-Fi Direct Peer to Peer connection
  • the respective direct wireless secure connection comprises a Tunneled Direct Link Setup (TDLS) connection
  • the direct connections between the devices in subset G' and the first device may be Wi-Fi Direct P2P connections and where the third secret data is a Wi-Fi Passphrase, e.g. the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK).
  • the direct connections between the devices in subset G' and the first device are TDLS connections.
  • the pairing procedure may comprise a Wi-Fi Protected Access (WPA/WPA2) or Wi-Fi Simple Configuration procedure.
  • WPA/WPA2 Wi-Fi Protected Access
  • Wi-Fi Simple Configuration procedure may already be available in the wireless device, and may be shared.
  • a pre-configuration step involves designating device the device accommodating the second host function to be a Wi-Fi Direct P2P Group Owner of a P2P group consisting of the second host device and the devices in group G, and pairing each of the devices in group with the second host device to get the common secret SI from the second host device and where S 1 is the Passphrase (the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK).
  • PMK Wi-Fi Pairwise Master Key
  • PSK Wi-Fi Pre-shared key
  • the host communication processor is arranged for generating the third secret data.
  • the host device controls security by controlling the generation of the third secret data.
  • the host communication processor is arranged for generating a respective, different set of the third secret data for respective, different instances of the first device.
  • overhearing of communication is prevented among different first devices.
  • the host communication processor is arranged for generating a respective, different set of the third secret data when the device (A), after having disconnected the second secure connection, is setting up the second secure connection a respective, further time.
  • replay attacks are avoided by generating different sets of third secret data.
  • the host communication processor is arranged for generating a respective, different set of the third secret data for a respective, different subset of the wireless devices in the group.
  • multiple subsets are possible.
  • the host communication processor is arranged for generating the third secret data based on, or equal to, the second secret data.
  • the third secret data may be chosen to be different of the second secret data, which enhances security.
  • the third secret data may be generated based on the second secret data, which enhances efficiency.
  • the third secret data may be chosen to be equal to the second secret data, which enhances speed as less data needs to be transferred.
  • the host communication processor is arranged for assigning a limited lifetime to the third secret data, and/or assigning a lifetime to the third secret data depending on an authorization level of the device (A).
  • access to the secure system is limited in time, or a guest or owner may be assigned different rights.
  • the host communication processor is arranged for transferring a third instruction to the respective wireless device of the subset for disconnecting the first secure connection before setting up the respective direct wireless secure connection to the device.
  • the host communication processor is arranged for transferring a third instruction to the respective wireless device of the subset for disconnecting the first secure connection before setting up the respective direct wireless secure connection to the device.
  • the host device is a wireless docking host or a wireless docking station.
  • the host device may be the same device as the first wireless host device and/or the second wireless host device.
  • the first and second host function may be implemented in a single docking host or wireless docking station.
  • the respective communication processor is arranged for initiating the setting up of the respective direct wireless secure connection to the portable device.
  • the wireless device controls the setting up.
  • the respective communication processor is arranged for disconnecting the first secure connection before setting up the respective direct wireless secure connection to the portable device.
  • less radio transceiver capability is required and less capacity of the wireless medium is used.
  • the respective communication processor is arranged for restoring the first secure connection after disconnecting the respective direct wireless secure connection to the portable device.
  • the preconfigured group is automatically reconnected after the first device has been disconnected.
  • the host device is capable of being part of two independent Wi-Fi
  • Direct P2P groups one group consisting of the devices in group G, and one consisting of the portable device having a P2P connection with the host device.
  • the host device informs other devices in the group G of the secret S3 before portable device A connects.
  • the connection of the portable device to the group e.g. the docking procedure, is accomplished faster.
  • the host device supports Wi-Fi Direct Persistent Group operation.
  • the host device invites the devices in group G to connect to the host device using the Wi-Fi Direct P2P invitation procedure.
  • the automated pairing procedure is based on Wi-Fi Protected Access (e.g. WPA or WPA2).
  • the automated pairing procedure is based on Wi-Fi Simple Configuration.
  • the portable device supports Wi-Fi Direct intra-BSS distribution so that the wireless devices in the group G can still communicate with each other to perform a function together, without requiring a backbone.
  • the portable device supports Wi-Fi Direct Persistent Grouping operation, and uses the third secret data retrieved during a first connection with the group through the second host device to connect to the devices of subset G' in a subsequent connection.
  • Figure 1 shows a wireless docking system during pre-configuration
  • Figure 2 shows a wireless device establishing a connection to a host
  • Figure 3 shows a wireless host instructing connected wireless devices
  • Figure 4 shows a wireless device directly connected further wireless devices.
  • the figures are purely diagrammatic and not drawn to scale. In the Figures, elements which correspond to elements already described may have the same reference numerals.
  • Wireless docking is about enabling portable devices (so called wireless dockees or WDs) to wirelessly connect to a group of wireless peripherals, so that applications on the portable device can make use of these peripherals to improve the experience and productivity of working/inter acting with these applications.
  • the grouping of peripherals the discovery of groups of peripherals, managing the connections to groups of peripherals, is performed by a so-called wireless docking host (WDH).
  • WDH wireless docking host
  • Possible wireless dockees include (but are not limited to) mobile phones, laptops, tablets, portable media players, cameras.
  • Possible WDHs include (but are not limited to) dedicated wireless docking station devices, display devices, audio devices, printers, PCs.
  • Possible peripherals include (but are not limited to) wireless mice, keyboards, display devices, audio devices, webcams, printers, storage devices, USB hubs. These peripherals are considered to support standards such as Wi-Fi Serial Bus and Wi-Fi Display to make their functionality available through the wireless network to other devices such as dockees and WDHs.
  • Wired peripherals may be connected to the wireless network by connecting them to a intermediate device via wires, and the intermediate device being wirelessly connectable as defined in this document, e.g. a USB Hub device which supports Wi-Fi Serial Bus.
  • Peripherals and dockees can also be WDHs by themselves.
  • FIG. 1 shows a wireless docking system during pre-configuration.
  • the wireless docking system has a wireless docking host device H 100, and several wireless peripheral devices PI ... Pn 110, 120, 130, 140.
  • the devices all have a Wi-Fi radio transceiver 101, 111 and support participating in a Wi-Fi Direct P2P group.
  • Some peripheral devices may be restricted to only support acting as a P2P Client or a legacy client.
  • FIG. 1 illustrates an initial situation of pre-configuring a set of peripherals for wireless docking.
  • the peripheral devices form a group 190 of wireless devices that are connected to a host device H 100 through Wi-Fi Direct connections 150 SCI ... SCn, which acts as group owner (P2P GO) of the P2P group formed by H and the peripherals PI ... Pn acting as P2P Clients.
  • the wireless devices have a respective communication processor 112, shown as having the function of the P2P Client.
  • communication processor of such wireless devices and/or host devices is known as such and may be implemented in a dedicated integrated circuit, in a programmable circuit and/or in firmware that is executed on a microcontroller or dedicated processor.
  • the communication processors are arranged to execute the communication process as explained below.
  • Wi-Fi Direct connections SCI ... SCn requires a pairing step, e.g. using Wi-Fi Simple Configuration (WSC).
  • WSC Wi-Fi Simple Configuration
  • H a common secret SI is provided by H to establish a secure connection based on Wi-Fi Protected Access
  • the secret SI may be the Passphrase (the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK), which is used in the four-way handshake to set-up Wi-Fi Protected Access (WPA/WPA2).
  • PMK Wi-Fi Pairwise Master Key
  • PSK Wi-Fi Pre-shared key
  • Wireless docking host device H also has a host communication processor 102 (also called Wireless Docking management) in order to store the information about peripherals, keep track of the connections, establish secrets, instruct other devices, configuring which peripherals together form a wireless docking environment.
  • host communication processor 102 also called Wireless Docking management
  • FIG 2 shows a wireless device establishing a connection to a host.
  • the wireless device 200 is called a dockee D and is shown in a wireless docking system similar to Figure 1 above.
  • the wireless device has a Wi-Fi radio transceiver 201 and a communication processor PROC 202 for controlling the communication process.
  • This particular implementation example only shows the solution whereby the dockee sets up an initial docking connection (so-called pilot connection) to the wireless docking host H and not to any of the devices PI ... Pn. It is noted that, similarly, the dockee may set up the initial connection to any of one the further wireless devices PI ..Pn, when such wireless device is arranged to perform the host function for setting up the initial connection. Hence the host functions may be performed by a single device, or may be distributed among different devices.
  • the secret S2 is the Passphrase (the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK), which is used in the four- way handshake to set-up Wi-Fi Protected Access (WPA/WPA2).
  • PMK Wi-Fi Pairwise Master Key
  • PSK Wi-Fi Pre-shared key
  • secret S2 may be distributed using Wi-Fi Simple Configuration or secret S2 may be pre-configured in all relevant devices.
  • D connects to H's P2P GO, whereby D automatically becomes P2P Client.
  • D and H form a new P2P group, independent from the P2P group established between H and the peripherals, whereby either D or H can become P2P GO.
  • FIG 3 shows a wireless host instructing connected wireless devices.
  • a wireless host H 310 is shown in the wireless docking system similar to Figure 1 and Figure 2 above.
  • the Figure illustrates the dockee D 200 and peripherals PI ...Pn 110,120 receiving instructions from the wireless docking host H 310.
  • H instructs one or more peripherals through instructions II...In 320, and also the dockee through instruction DI 330, about using secret S3 during an automated pairing step between the peripherals and D.
  • instructions and messaging can take any format using many different communication protocols, ranging from binary encoded instructions in MAC frames to XML encoded instructions over HTTP.
  • the instructions may also include information about which actions that the devices need to perform after receiving them, such as breaking the connection with H and setting up a connection with D.
  • the peripherals may need to be provided with information about the Service Set Identifier SSID that D will use for advertising its Wi-Fi Direct capabilities, and D may need to be provided with information such as unique identifiers of the peripherals that will establish a connection.
  • One or more peripheral device Pi may also remain connected to H. These devices may receive an instruction to remain connected to H, or to disconnect from H. In Figure 3, it is assumed that devices P3 ... Pn-1 receive an instruction to remain connected to H.
  • the secret data S3 is also sent to the dockee D.
  • D and the one or more peripherals can set-up WPA/WPA2 protected connections directly using the four- way handshake and that the execution of a Wi-Fi Simple Configuration procedure, involving possible user interaction to enter PIN codes, is not required. Not having to execute the Wi-Fi Simple Configuration procedure also speeds up the docking procedure.
  • FIG 4 shows a wireless device directly connected further wireless devices.
  • a wireless device D 400 is shown in the wireless docking system similar to Figure 1 , 2 and 3 above.
  • the Figure illustrates the dockee D 400 and a subset, e.g. three peripherals
  • peripheral 130 is not connected to the dockee D and remains only connected to the wireless docking host 100.
  • the figure shows the situation where devices PI, P2 and Pn have set-up direct connections SP1, SP2 and SPn with dockee device D, using secret data S3 (pass phrase S3) indicated by 420.
  • D acts as a Wi-Fi Direct Group owner (indicated by P2P GO unit 403 in the Figure) for SD1, SD2 and SDn.
  • the connections SCI, SC2 and SCn with H may be released or may stay active.
  • the dotted lines in Figure 4 reflect that.
  • the docking involves the Dockee D changing roles and becoming a P2P GO for the subset of wireless peripherals.
  • S3 may be used as a common secret (Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK)) to derive the link key (Pairwise Transient Key).
  • PMK Wi-Fi Pairwise Master Key
  • PSK Wi-Fi Pre-shared key
  • S3 is used in the Wi-Fi Protected Setup pairing procedure, where instead of the user entering e.g. a PIN code, the PIN is derived from S3.
  • the above wireless docking system may be applied to connect a wireless dockee D directly to a display device or a (USB) mouse/keyboard for reducing latency.
  • the devices may be instructed to use a predefined configuration set.
  • Disconnected devices may go to sleep.
  • the wireless host may instruct them to wake up at a particular regular interval to be able to discover them and connect with them again.
  • a wireless peripheral device P e.g. a Wi-Fi- display
  • a wireless host H may be initially connected to a wireless host H via a secure channel C based on a link key
  • the enhanced wireless docking system as described above may be implemented as follows.
  • the example wireless docking system there is one wireless host WDH through which a wireless device WD can dock.
  • the WDH is connected to peripherals PF through wired and wireless interfaces and may also have built-in PFs. It is further assumed that some of the wireless PFs have extra functionality built-in so that they can be instructed to connect directly to a docked WD, or are equipped to perform the wireless host functions.
  • PFs can be quickly connected to a WD (no need to execute the Wi-Fi Simple Configuration WSC protocol), and without user intervention.
  • a WD that is only allowed to dock once is, after undocking, not enabled anymore to connect automatically again with the PFs or WDH it was docked with.
  • the Wi-Fi communication between a WD and the WDH it is docked with is protected for privacy and integrity. Also other WDs that may have previously docked with that WDH cannot decrypt this communication or tamper with it without detection.
  • the Wi-Fi communication between a WD and the PFs it is directly connected with during docking is protected for privacy and integrity.
  • a WD that is allowed to dock more than once has to perform WSC only once when it docks for the first time and can dock without using WSC when it docks again.
  • a WD and WDH can both be pre- configured such that the WD can always dock automatically.
  • set-up (or configuration) phase In the example enhanced wireless docking system the following phases are defined: set-up (or configuration) phase, undocked mode, docking phase, and undocking phase, either controlled or uncontrolled.
  • a WDH sets itself up as a P2P GO for a P2P Group Gl with SSID SSID1 and Passphrase PP1.
  • the WDH accepts only PFs for joining Gl .
  • a number of PFs join Gl using PBC or WSC-PIN for obtaining PP1.
  • the PFs may also be pre-configured for SSID 1 and PP1.
  • the WDH sets itself up as a P2P GO for a P2P Group G2 with SSID SSID2 but does not decide on a pass phrase yet for G2.
  • the WDH may send Beacon frames for G2.
  • the WDH responds to Probe Request frames.
  • the WDH gives information that it is a WDH, on its PFs, on its WDEs, etc. in the relevant Information Elements.
  • the WDH accepts only WDs for joining G2.
  • a WD that has discovered G2 asks to join G2. This triggers the docking action. If the WD is not allowed to dock, the requested docking action is refused. If the WD has docked before and if that WD is allowed to dock again, the WDH sets as pass phrase PP2 for G2 the pass phrase that it has used before with that WD. In all other cases (so when the WD has never docked before, or when it has docked before but was allowed to dock only once), the WDH generates a new random PP2 as pass phrase for G2.
  • the WDH sends SSID2, PP2, the WD address and WD ID to all PFs using P2P Group Gl (so encrypted with a key derived from PPl and therefore kept private for all WDs and all other devices). If the WD is pre-configured with a pass phrase for this WDH or still possesses a pass phrase from a previous docking session, it may try and use that pass phrase in a four- way handshake. Otherwise, or when using the old pass phrase fails, the WD performs WSC for P2P Group G2 with the WDH for obtaining PP2. WSC may use PBS, or WSC-PIN using either the WD or WDH PIN.
  • the WD and WDH set up a payload connection through the WDH to PFs and the WD is docked.
  • the WD exchanges GO role with the WDH.
  • the WDH sends the addresses/IDs of all PFs that support setting up a direct Wi-Fi connection to the WD. It may exclude the addresses of PFs for which the payload connection is best routed through the WDH for some reason. We call these the 'direct' PFs. All other PFs are called the 'indirect' PFs.
  • P2P Group Gl as the communication means, the WDH asks the direct PFs to join P2P Group G2 using the pass phrase PP2. Effectively in this example the second secret data equals the third secret data.
  • the direct PFs Since the direct PFs now know PP2, they do not need to perform WSC to join G2, which saves considerable time, even if e.g. PINs are pre-provisioned. These PFs simply execute the four- way handshake with the WD using the pass phrase that they know (PP2). The WD has obtained the addresses of the direct PFs involved so knows which ones to expect for connection. Both the WD, through G2, and the PFs, through Gl, can signal to the WDH that P2P Group G2 joins have succeeded or failed. A PF may fail to join P2P Group G2 e.g. if the distance between the PF and the WD is too large. The direct PFs for which joining failed become indirect PFs and remain connected to the WDH.
  • the WD sets-up direct payload connections for PFs that have joined G2 successfully (i.e. the direct PFs). These payload connections are protected using a key derived from PP2.
  • the WD and WDH set up a payload connection through the WDH to the other PFs (i.e. the indirect PFs), and the WD is docked. If the WDH supports more than one WD simultaneously, it may set up a new SSID to accept a new WD for docking.
  • undocking may be done in a controlled or uncontrolled way.
  • Controlled docking is whereby the WD indicates to the WDH that it wants to undock.
  • Uncontrolled undocking is when the WDH detects somehow that the WD has left or became unreachable without having received an indication from the WD that it wants to undock.
  • a WD When a WD wants to undock, it sends the WDH a message using P2P Group G2 as the communication means that it wants to undock.
  • the WDH acknowledges the successful reception of this message.
  • the WD shall end the P2P Group G2 session by sending the WDH and PFs in G2 De-authentication frames with reason code 3.
  • the PFs tear down the payload connections.
  • P2P Group Gl as the communication means, the WDH instructs the direct PFs to delete the used PP2.
  • the PFs may only do this if the WD is not allowed to dock again.
  • the PFs have to store pass phrase and WD ID combinations for later use for the WDs that are allowed to dock again. This may save some time during the docking operation.
  • the WDH has to keep track though of which PF has received which pass phrases.
  • the WDH instructs the indirect PFs to tear down the payload connections.
  • the WDH assumes the GO role again of P2P Group G2 and sets the passphrase to undecided.
  • the WDH may now advertise the undocked state again.
  • the WDH During Uncontrolled Undocking the WDH somehow decides that the WD has left or became unreachable without having received an indication from the WD that it wants to undock.
  • the WDH informs all PFs to tear down the (direct or indirect) payload
  • the WDH instructs the direct PFs to delete the used PP2. Alternatively, it may only do this if the WD is not allowed to dock again. In this case, the PFs have to store pass phrase and WD ID combinations for later use for the WDs that are allowed to dock again. This may save some time during the docking operation.
  • the WDH has to keep track though of which PF has received which pass phrases. The WDH assumes the GO role again of P2P Group G2 and sets the passphrase to undecided. The WDH may now advertise the undocked state again.
  • the invention is also suitable for any wireless system where an unconnected wireless device needs to connect to a group of devices.
  • the invention is relevant to Wi-Fi Docking enabled devices, Wi-Fi Serial Bus devices, Wi-Fi Display devices, and any other devices supporting Wi-Fi Direct ranging from portable audio devices, mobile phones, laptops, tablets to Wi-Fi mice, keyboards, display devices, printers, cameras.
  • the invention may be implemented in hardware and/or software, using programmable components.
  • a method for implementing the invention has the steps corresponding to the functions defined for the system as described with reference to Figure 1.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

System for wireless communication comprises a group of wireless devices (110,120,130,140) that include at least one wireless host device (100) securely connected based on first secret data (240) shared by the group. A second secure connection is set-up between a portable wireless device (200) and a wireless host device based on second secret data (250). At least one of the wireless devices is instructed to apply a third secret data for setting up a direct wireless secure connection with the portable wireless device (200). Also the portable wireless device is instructed via the second secure connection to apply the third secret data for setting up the direct secure connections with the wireless devices based on the third secret data. Finally a respective direct wireless secure connection is set-up between the second device and a respective wireless device based on the third secret data. Advantageously latency is reduced in a secure wireless docking system.

Description

METHOD AND DEVICES FOR PAIRING WITHIN A GROUP OF WIRELESS
DEVICES
FIELD OF THE INVENTION
The invention relates to a system for wireless communication comprising a group of wireless devices and a portable device, each device comprising a radio transceiver for wirelessly exchanging data with the other devices,
- a first wireless device of the group accommodating a first host function and a second wireless device of the group accommodating a second host function, the first and second wireless devices being the same wireless device or different wireless devices;
- the group of wireless devices sharing first secret data and configured for wireless communication to the first wireless device accommodating the first host function via respective first secure connections based on the first secret data.
The invention further relates to portable device, a host device, a wireless device, a method and a computer program product for use in the above system for wireless communication.
The invention relates to the field of secure wireless communication, e.g. via Wi-Fi, and more specific to a secure setup for a wireless docking system.
BACKGROUND OF THE INVENTION
In wireless communication, such as Wi-Fi known from the IEEE 802.1 1 documents, devices need to be paired in order to set up a secure connection, for examples as described in the document "Wi-Fi Protected Access (WPA), Enhanced Security
Implementation Based on IEEE P802.1 li standard, Version 3.1 , August, 2004, by the Wi-Fi Alliance" available via www.wi-fl.org. Although the invention is further elucidated using the Wi-Fi system, it is noted that the invention may similarly be applied in other wireless communication systems, such as Bluetooth (see e.g. BLUETOOTH SPECIFICATION, Core Package version 2.1 + EDR, issued: 26 July 2007).
Wi-Fi connections are protected for confidentiality and integrity by cryptographic means, using technologies such as WPA2. The security in WPA2 can be based on two systems. The first one is Pre-Shared Key mode (PSK, also known as Personal mode) and is designed for home and small office networks. The second one relies on the use of an 802. IX authentication server and is designed for enterprise networks.
In PSK mode, all devices that communicate with each other share a 256 bit key, which is also called the 'Passphrase'. Wi-Fi Simple Configuration (a.k.a. Wi-Fi
Protected set-up), known from the document "Wi-Fi Simple Configuration, Technical Specification, Version 2.0.2, 2011", also from the Wi-Fi Alliance, is a standard that allows a first device that knows the Passphrase, e.g. a Wireless LAN Access Point, to send it to a second device in a secure way, without the user having to enter the Passphrase in the second device. Instead, the user may for example push a button on both devices within a limited time, or enter an 8-digit PIN that is listed on the first device in the second device, in order to receive a passphrase. This typically involves a user action, i.e. a so-called user pairing action.
US2010/0153727 describes enhanced security for direct link communications between multiple wireless devices, which exchange nonces that are used for generating a common nonce. A group identification information element is generated from at least the common nonce and is forwarded to an authentication server. The authentication server generates a group direct link master key from the group identification information element to match devices as part of a key agreement group. Group keys are also generated based on the common nonce. So a secure group of devices for direct link communication is created.
SUMMARY OF THE INVENTION
In the Wi-Fi Infrastructure, an Access Point (AP), or rather its Registrar, stores and manages the credentials for the network it is responsible for. A Wi-Fi device that wishes access to the Wi-Fi Infrastructure network of an AP needs to obtain the network credentials in a pairing operation with the AP. Once the secure connection with the AP is set up, the Wi- Fi device can communicate with other Wi-Fi devices associated with the AP. The traditional infrastructure has the disadvantage that connections are indirect, because all communication needs to pass through the access point. In many cases however, it is beneficial (e.g. for reducing latency, improving the connection speed) that devices would be able to set up a direct link between each other without having to relay the traffic through the access point. Two technologies Wi-Fi Direct and Tunnelled Direct Link Setup (TDLS) have been created to be able to set up such direct Wi-Fi link between devices.
Wi-Fi Direct (a.k.a. Wi-Fi Peer to Peer), known from the document "Wi-Fi Wi-Fi Peer-to-Peer (P2P) Technical Specification, Version 1.1, 2010", also from the Wi-Fi Alliance is a standard that allows Wi-Fi devices to connect to each other with no need for a wireless access point. Wi-Fi Direct plays an important role for connecting standalone wireless devices and peripherals, such as display devices/peripherals supporting Wi-Fi Display, and I/O devices/peripherals supporting Wi-Fi Serial Bus (e.g. wireless mouse, keyboard, printer, USB hub). It is therefore an important technology for wireless docking, a technology to enable a portable device to connect to a multitude of wireless peripherals. In Wi-Fi Direct, a user pairing step typically needs to be performed for every new Wi-Fi Direct connection that is created. When two Wi-Fi Direct devices want to communicate, one of them becomes the so-called Group Owner (GO). The other device takes the client role.
Together they form a so-called P2P group. A GO has many similarities with an AP. It may for example allow other devices to join the P2P group, and offer possibilities to distribute traffic between the different devices in the P2P group. However, as mentioned before, it is beneficial that devices would be able to communicate directly with each other without having to relay traffic. In case of Wi-Fi Direct this would mean that you would have to connect to and pair with each of the other devices individually. This is cumbersome, especially if multiple devices are involved. For example, for wireless docking of a portable device with a multitude of wireless peripherals, it would be very user unfriendly if the user would need to perform a user pairing step with each wireless peripheral individually. It is therefore very important to keep the amount of pairing actions to a minimum.
Tunnelled Direct Link Setup (TDLS), known from the document "IEEE Std 802.1 lz-2010 Part 11 : Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) specifications, Amendment 7: Extensions to Direct-Link Setup (DLS), published by IEEE on 14 October 2010", is a option in Wi-Fi that enables setting up a direct link between two devices that are both connected to the same Wi-Fi Access Point, without needing to pair again to set up a secure direct connection. This is done as follows. Once a TDLS enabled Wi- Fi Device is connected to the AP, it can send a request to another TDLS enabled device that is connected to the same AP to set up a direct connection. After exchanging information such as the security credentials and information about which Wi-Fi channel to use, the two devices can start a private secure direct link between the two devices.
However, TDLS has several drawbacks:
All devices involved must support concurrent operation (to maintain a direct link to the other device and a link to the AP simultaneously, including operating on two different frequencies), whereas many portable and wireless peripheral devices are only able to set up and maintain a single Wi-Fi connection and/or single frequency Wi-Fi connections. TDLS has several compatibility problems when used in a Wi-Fi Direct network (e.g. TDLS through the Wi-Fi Direct GO to set up a direct link between different devices within a Wi-Fi Direct P2P group). For example, the power save mechanisms of Wi- Fi Direct and TDLS are not compatible and can cause conflicts.
The exchange of security credentials for the TDLS direct link is done through a TDLS Peer Key (TPK) Handshake. The problem is that this handshake between the two TDLS devices is done via the AP. Since the AP can decrypt the messages of the TDLS devices involved, it means that the AP can overhear this handshake, and is able to recover the key that TDLS devices agree on for the direct connection. When PSK mode is used, also other devices associated with the same AP will be able to overhear this traffic, for example in the following manner: when a Wi-Fi device associates with an AP using PSK, it uses the Passphrase and other information in a so-called Four- Way Handshake to generate/derive a link key called Pairwise Transient Key (PTK). The PTK is used for the encryption and authentication of the traffic between that Wi-Fi device and the AP. Traffic meant for another device is re-encrypted by the AP with the link key (PTK) that the AP and the other device have derived from the Passphrase. Although the AP has a different PTK for each associated Wi-Fi device, any device associated with the AP, in possession of the Passphrase, can compute the PTK that is used by listening into the Four- Way Handshake between the other device and the AP. Since by using this PTK the device can decrypt the communication between the other device and the AP, this means that it can also overhear the TDLS Peer Key Handshake, and compute the key that is used to protect the TDLS direct link between the two TDLS devices. Hence, TDLS by default does not provide secure private communication over the direct link.
The pairing of a wireless device and the connection setup always has to go through the access point to which all devices in the group must be connected. You cannot directly connect with any of the clients/stations (e.g. the display) in the group unless you first set up a connection with the access point/group owner. This means that you may need to be physically close to the access point/group owner to perform the pairing steps, since you are not able to connect with the group through one of the other devices in the group.
It is an object of the invention to provide a system for secure communication that keeps the number of user pairing steps to a minimum, prevents eavesdropping of the direct links between devices, and provides flexibility in connecting to the group. For this purpose, in the system for wireless communication as described in the opening paragraph,
the portable device comprises a device communication processor for
- setting up a second secure connection with the second wireless device accommodating the second host function using a pairing procedure based on second secret data different from the first secret data,
- receiving a second instruction via the second secure connection, and, according to the second instruction,
- setting up a respective direct wireless secure connection with at least one wireless device of the group using a respective pairing procedure based on third secret data, the third secret data differing from the first secret data;
the second wireless device accommodating the second host function comprises a host communication processor for
- setting up the second secure connection with the portable device using the pairing procedure based on the second secret data,
- transferring to the at least one wireless device via the first secure connection a first instruction to apply the third secret data for setting up a direct wireless secure connection with the portable device, and
- transferring to the portable device via the second secure connection a second instruction to apply the third secret data for setting up the direct wireless secure connection with the at least one wireless device based on the third secret data;
the at least one wireless device comprises a communication processor for
- receiving the first instruction via the first secure connection, and, according to the first instruction,
- setting up the respective direct wireless secure connection with the portable device using a respective pairing procedure based on the third secret data.
For this purpose, according to a further aspect of the invention, the method of wireless communication in the system of wireless devices as described in the opening paragraph comprises
- setting up a second secure connection between the portable device and the second wireless device accommodating the second host function using a pairing procedure based on second secret data different from the first secret data;
- transferring to at least one wireless device of the group via the first secure connection a first instruction to apply a third secret data for setting up a direct wireless secure connection with the portable device, the third secret data differing from the first secret data (240), and - transferring to the portable device via the second secure connection a second instruction to apply the third secret data for setting up the direct wireless secure connection with the at least one wireless device based on the third secret data;
- setting up a respective direct wireless secure connection between the portable device and the at least one wireless device using a respective pairing procedure based on the third secret data.
The main elements of the secure system and method enable a portable device A (e.g. Wi-Fi Direct compatible) to connect to a group G of wireless devices. The group G is preconfigured to act as a group connected to a wireless device accommodating a first host function and shares a common secret SI used for securing the communication within the group. The group may for example comprise a wireless docking host and wireless peripherals. The device A connects to one of the wireless devices, which functions as a second host device by accommodating a second host function, in the group using secret S2 for securing the communication via the second secure connection. Subsequently, the devices in the group and device A get instructed about another secret S3, followed by device A to start listening for incoming connections, followed by one or more devices setting up a direct secure wireless connection with device A using the secret S3 for automated pairing with device A, e.g. in a manner that is compatible with Wi-Fi Direct. Optionally, the second host device is the same device as the wireless device accommodating the first host function.
Hence the first and second host function may be implemented in a single wireless device. Furthermore, group G may contain devices that are only capable of supporting a P2P Client or a Wi-Fi station (STA) role, and not a P2P Group owner or Wi-Fi Access Point (AP) role.
The measures have the effect that a wireless secure communication system and secure protocol are provided for distributing the secrets used for setting up secure direct links with minimal user pairing steps, in a manner that prevents eavesdropping of the direct links between devices, and which in addition offers extra flexibility by allowing any device capable of performing the function of the second host to be the entry point to the group of wireless devices performing a function. For example, the group of devices may provide a docking environment for a portable device like a smart phone (a.k.a. dockee). In particular the dockee does not always have to use the same device in the docking system (e.g. an AP or GO) for connecting with the group, but instead may connect to any device in the group accommodating said second host function. The invention is also based on the following recognition (using the Wi-Fi environment as an example). When a group of Wi-Fi Direct devices together perform functions for another wireless device (such as wireless docking), it is desirable that the other wireless device is able to set up one or more peer-to-peer links with any of the wireless devices in the group without having to perform a user pairing action with each of these devices from the group individually.
Wi-Fi Direct has the concept of a group owner (GO). If all the Wi-Fi Direct devices in the group would connect to the same GO, and the GO supports the so-called Intra- BSS distribution feature of Wi-Fi Direct, then it is sufficient for the other wireless device to connect to this GO to be able to communicate with all the devices in the group. An Intra-BSS Distribution field indicates if the P2P Device is hosting, or intends to host, a P2P Group that provides a data distribution service between Clients in the P2P Group. However, all communication would have to go through the GO. This is very inefficient, and increases the latency of the communication. For functions such as wireless docking, latency is an important issue. The connection with the wireless display, mouse, keyboard etc. needs to be as low latency as possible. Therefore it is important to be able to set up direct (i.e. peer-to- peer) connections with multiple or even all members of the group. However, that would require multiple user pairing steps to be performed for every wireless dockee that would want to connect to this group of peripherals. For reasons mentioned in the previous section, using TDLS is not an option to overcome this problem.
Another problem is that Wi-Fi Direct imposes certain restrictions on devices, such as the restriction that a P2P device can only be connected to a single GO. Once connected to a GO the P2P Device changes roles, i.e. the device becomes a P2P client. Wi-Fi Direct defines various restrictions for P2P Clients, such as restrictions on discoverability and communicating between P2P clients. Furthermore, the number of simultaneous P2P client instances that can typically run on a single device is also very limited. Many low-end wireless peripherals (such as a Wi-Fi mouse or keyboard) are expected to even have further restrictions due to their resource limitations, such as supporting only the P2P Client role and supporting only a single Wi-Fi link.
The inventors have seen that the above problems are overcome by the secure protocol that generates, via the second host, the third secret data and instructs the portable device (dockee) and wireless devices of the group to apply the third secret data for connecting the first device to the selected wireless devices of the group, e.g. constituting a preconfigured docking environment. Optionally, in the portable device, the device communication processor is further arranged for controlling the communication via said direct wireless connections as a group owner. In general in a wireless network system a device may control a group of devices as a group owner, for example in WLAN executing the AP role. In an example in Wi-Fi, the first device takes a Wi-Fi Direct group owner role when setting up Wi-Fi Direct P2P connections between the devices in a subset G' of further wireless devices and first device.
Optionally, in the portable device, the device communication processor is further arranged for setting up respective different direct wireless secure connections with respective wireless devices of respective different subsets using a respective pairing procedure based on respective different third secret data. Advantageously, multiple subsets are accommodated to communicate with the first device via different instances of the third secret data.
Optionally, in the portable device, the device communication processor is further arranged for receiving the second instruction including respective different third secret data for multiple subsets. Advantageously, multiple subsets are accommodated to communicate with the portable device via a single instruction.
Optionally, in the portable device, the device communication processor is further arranged for generating the third secret data and transferring the third secret data to the device accommodating the second host function. Advantageously, the portable device controls security by controlling the generation of the third secret data.
Optionally, in the portable device, the device communication processor is arranged for disconnecting the second secure connection before initiating setting up the respective direct wireless secure connection with a respective wireless device of the subset. Advantageously, less radio transceiver capability is required and less capacity of the wireless medium is used.
Optionally, in the portable device, the device communication processor is arranged for providing a persistent grouping, and accordingly for, after disconnecting the respective direct wireless secure connection based on said third secret data, setting up a further respective direct wireless secure connection based again on said third secret data. Advantageously, when a portable device, e.g. a dockee, reconnects, the secure
communication is restored faster.
Optionally, in the portable device, the device communication processor is arranged for using the second secret data or the third secret data acquired during earlier pairing when, after disconnecting the respective direct wireless secure connection based on said third secret data, reconnecting with the respective wireless device of the subset for setting up a respective direct wireless secure connection. Advantageously, when a portable device, e.g. a dockee, reconnects, the secure communication is restored faster.
Optionally, the second secure connection comprises a Wi-Fi Direct P2P connection. In practice, the connection may be a Wi-Fi Direct P2P connection and where the second secret data (S2) is a Wi-Fi Passphrase, e.g. the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK).
Optionally, the respective direct wireless secure connection comprises a Wi-Fi Direct Peer to Peer connection, and/or the respective direct wireless secure connection comprises a Tunneled Direct Link Setup (TDLS) connection. In practice, the direct connections between the devices in subset G' and the first device may be Wi-Fi Direct P2P connections and where the third secret data is a Wi-Fi Passphrase, e.g. the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK). Alternatively, the direct connections between the devices in subset G' and the first device are TDLS connections. Furthermore, the pairing procedure may comprise a Wi-Fi Protected Access (WPA/WPA2) or Wi-Fi Simple Configuration procedure. Advantageously, such known pairing procedure may already be available in the wireless device, and may be shared.
Optionally, a pre-configuration step involves designating device the device accommodating the second host function to be a Wi-Fi Direct P2P Group Owner of a P2P group consisting of the second host device and the devices in group G, and pairing each of the devices in group with the second host device to get the common secret SI from the second host device and where S 1 is the Passphrase (the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK).
Optionally, in the host device, the host communication processor is arranged for generating the third secret data. Advantageously, the host device controls security by controlling the generation of the third secret data.
Optionally, in the host device, the host communication processor is arranged for generating a respective, different set of the third secret data for respective, different instances of the first device. Advantageously, overhearing of communication is prevented among different first devices.
Optionally, in the host device, the host communication processor is arranged for generating a respective, different set of the third secret data when the device (A), after having disconnected the second secure connection, is setting up the second secure connection a respective, further time. Advantageously, replay attacks are avoided by generating different sets of third secret data.
Optionally, in the host device, the host communication processor is arranged for generating a respective, different set of the third secret data for a respective, different subset of the wireless devices in the group. Advantageously, multiple subsets are
accommodated to communicate with the first device via different instances of the third secret data.
Optionally, in the host device, the host communication processor is arranged for generating the third secret data based on, or equal to, the second secret data. Basically, the third secret data may be chosen to be different of the second secret data, which enhances security. Advantageously, the third secret data may be generated based on the second secret data, which enhances efficiency. Also, the third secret data may be chosen to be equal to the second secret data, which enhances speed as less data needs to be transferred.
Optionally, in the host device, the host communication processor is arranged for assigning a limited lifetime to the third secret data, and/or assigning a lifetime to the third secret data depending on an authorization level of the device (A). Advantageously, access to the secure system is limited in time, or a guest or owner may be assigned different rights.
Optionally, in the host device, the host communication processor is arranged for transferring a third instruction to the respective wireless device of the subset for disconnecting the first secure connection before setting up the respective direct wireless secure connection to the device. Advantageously, less radio transceiver capability is required and less capacity of the wireless medium is used.
Optionally, the host device is a wireless docking host or a wireless docking station. In practice, the host device may be the same device as the first wireless host device and/or the second wireless host device. Hence the first and second host function may be implemented in a single docking host or wireless docking station.
Optionally, in the wireless device, the respective communication processor is arranged for initiating the setting up of the respective direct wireless secure connection to the portable device. Advantageously, the wireless device controls the setting up.
Optionally, in the wireless device, the respective communication processor is arranged for disconnecting the first secure connection before setting up the respective direct wireless secure connection to the portable device. Advantageously, less radio transceiver capability is required and less capacity of the wireless medium is used. Optionally, in the wireless device, the respective communication processor is arranged for restoring the first secure connection after disconnecting the respective direct wireless secure connection to the portable device. Advantageously, the preconfigured group is automatically reconnected after the first device has been disconnected.
Optionally, the host device is capable of being part of two independent Wi-Fi
Direct P2P groups, one group consisting of the devices in group G, and one consisting of the portable device having a P2P connection with the host device.
Optionally, the host device informs other devices in the group G of the secret S3 before portable device A connects. Advantageously, the connection of the portable device to the group, e.g. the docking procedure, is accomplished faster.
Optionally, the host device supports Wi-Fi Direct Persistent Group operation. Optionally, the host device invites the devices in group G to connect to the host device using the Wi-Fi Direct P2P Invitation procedure. Optionally, the automated pairing procedure is based on Wi-Fi Protected Access (e.g. WPA or WPA2). Optionally, the automated pairing procedure is based on Wi-Fi Simple Configuration. Optionally, the portable device supports Wi-Fi Direct intra-BSS distribution so that the wireless devices in the group G can still communicate with each other to perform a function together, without requiring a backbone. Optionally, the portable device supports Wi-Fi Direct Persistent Grouping operation, and uses the third secret data retrieved during a first connection with the group through the second host device to connect to the devices of subset G' in a subsequent connection.
Advantageously, such options are extensions of existing elements of Wi-Fi enabled devices.
Further preferred embodiments of the device and method according to the invention are given in the appended claims, disclosure of which is incorporated herein by reference.
BRIEF DESCRIPTION OF THE DRAWINGS
These and other aspects of the invention will be apparent from and elucidated further with reference to the embodiments described by way of example in the following description and with reference to the accompanying drawings, in which
Figure 1 shows a wireless docking system during pre-configuration,
Figure 2 shows a wireless device establishing a connection to a host,
Figure 3 shows a wireless host instructing connected wireless devices, and Figure 4 shows a wireless device directly connected further wireless devices. The figures are purely diagrammatic and not drawn to scale. In the Figures, elements which correspond to elements already described may have the same reference numerals.
DETAILED DESCRIPTION OF EMBODIMENTS
A detailed implementation example for a wireless docking system is discussed now. Wireless docking is about enabling portable devices (so called wireless dockees or WDs) to wirelessly connect to a group of wireless peripherals, so that applications on the portable device can make use of these peripherals to improve the experience and productivity of working/inter acting with these applications. The grouping of peripherals, the discovery of groups of peripherals, managing the connections to groups of peripherals, is performed by a so-called wireless docking host (WDH).
Possible wireless dockees include (but are not limited to) mobile phones, laptops, tablets, portable media players, cameras. Possible WDHs include (but are not limited to) dedicated wireless docking station devices, display devices, audio devices, printers, PCs. Possible peripherals include (but are not limited to) wireless mice, keyboards, display devices, audio devices, webcams, printers, storage devices, USB hubs. These peripherals are considered to support standards such as Wi-Fi Serial Bus and Wi-Fi Display to make their functionality available through the wireless network to other devices such as dockees and WDHs. Wired peripherals may be connected to the wireless network by connecting them to a intermediate device via wires, and the intermediate device being wirelessly connectable as defined in this document, e.g. a USB Hub device which supports Wi-Fi Serial Bus.
Peripherals and dockees can also be WDHs by themselves.
Figure 1 shows a wireless docking system during pre-configuration. The wireless docking system has a wireless docking host device H 100, and several wireless peripheral devices PI ... Pn 110, 120, 130, 140. The devices all have a Wi-Fi radio transceiver 101, 111 and support participating in a Wi-Fi Direct P2P group. Some peripheral devices may be restricted to only support acting as a P2P Client or a legacy client.
Figure 1 illustrates an initial situation of pre-configuring a set of peripherals for wireless docking. The peripheral devices form a group 190 of wireless devices that are connected to a host device H 100 through Wi-Fi Direct connections 150 SCI ... SCn, which acts as group owner (P2P GO) of the P2P group formed by H and the peripherals PI ... Pn acting as P2P Clients. Thereto the wireless devices have a respective communication processor 112, shown as having the function of the P2P Client. In practice the
communication processor of such wireless devices and/or host devices is known as such and may be implemented in a dedicated integrated circuit, in a programmable circuit and/or in firmware that is executed on a microcontroller or dedicated processor. The communication processors are arranged to execute the communication process as explained below.
Setting up Wi-Fi Direct connections SCI ... SCn requires a pairing step, e.g. using Wi-Fi Simple Configuration (WSC). During the pairing step, a common secret SI is provided by H to establish a secure connection based on Wi-Fi Protected Access
(WPA/WPA2). The secret SI may be the Passphrase (the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK), which is used in the four-way handshake to set-up Wi-Fi Protected Access (WPA/WPA2).
There are many possibilities to distribute the secret SI, e.g. secret SI may be distributed using Wi-Fi Simple Configuration or secret S 1 may be pre-configured in all relevant devices. Wireless docking host device H also has a host communication processor 102 (also called Wireless Docking management) in order to store the information about peripherals, keep track of the connections, establish secrets, instruct other devices, configuring which peripherals together form a wireless docking environment.
Figure 2 shows a wireless device establishing a connection to a host. The wireless device 200 is called a dockee D and is shown in a wireless docking system similar to Figure 1 above. The wireless device has a Wi-Fi radio transceiver 201 and a communication processor PROC 202 for controlling the communication process.
In the system the wireless dockee D establishes a Wi-Fi Direct connection C
250 with a wireless docking host H 210 in order to dock with a set of peripherals. This particular implementation example only shows the solution whereby the dockee sets up an initial docking connection (so-called pilot connection) to the wireless docking host H and not to any of the devices PI ... Pn. It is noted that, similarly, the dockee may set up the initial connection to any of one the further wireless devices PI ..Pn, when such wireless device is arranged to perform the host function for setting up the initial connection. Hence the host functions may be performed by a single device, or may be distributed among different devices.
During the pairing step between D and H in order to set up connection C, H makes sure that for safety reasons a secret S2 unequal to SI is provided by H to establish a secure connection based on Wi-Fi Protected Access (WPA/WPA2). Similar to connection SCI ... SCn based on secret data SI as indicated by connection lines 240, the secret S2 is the Passphrase (the Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK), which is used in the four- way handshake to set-up Wi-Fi Protected Access (WPA/WPA2). There are many possibilities to distribute the secret S2, e.g. secret S2 may be distributed using Wi-Fi Simple Configuration or secret S2 may be pre-configured in all relevant devices. In this implementation example, D connects to H's P2P GO, whereby D automatically becomes P2P Client. Alternatively, D and H form a new P2P group, independent from the P2P group established between H and the peripherals, whereby either D or H can become P2P GO.
Figure 3 shows a wireless host instructing connected wireless devices. A wireless host H 310 is shown in the wireless docking system similar to Figure 1 and Figure 2 above. The Figure illustrates the dockee D 200 and peripherals PI ...Pn 110,120 receiving instructions from the wireless docking host H 310.
The figure shows that H instructs one or more peripherals through instructions II...In 320, and also the dockee through instruction DI 330, about using secret S3 during an automated pairing step between the peripherals and D. These instructions and messaging can take any format using many different communication protocols, ranging from binary encoded instructions in MAC frames to XML encoded instructions over HTTP.
In addition to secret data S3, the instructions may also include information about which actions that the devices need to perform after receiving them, such as breaking the connection with H and setting up a connection with D. The peripherals may need to be provided with information about the Service Set Identifier SSID that D will use for advertising its Wi-Fi Direct capabilities, and D may need to be provided with information such as unique identifiers of the peripherals that will establish a connection. One or more peripheral device Pi may also remain connected to H. These devices may receive an instruction to remain connected to H, or to disconnect from H. In Figure 3, it is assumed that devices P3 ... Pn-1 receive an instruction to remain connected to H.
Using the channel C, protected by a key derived from secret data S2, the secret data S3 is also sent to the dockee D. This means that D and the one or more peripherals can set-up WPA/WPA2 protected connections directly using the four- way handshake and that the execution of a Wi-Fi Simple Configuration procedure, involving possible user interaction to enter PIN codes, is not required. Not having to execute the Wi-Fi Simple Configuration procedure also speeds up the docking procedure.
Figure 4 shows a wireless device directly connected further wireless devices. A wireless device D 400 is shown in the wireless docking system similar to Figure 1 , 2 and 3 above. The Figure illustrates the dockee D 400 and a subset, e.g. three peripherals
110,120,140, of the peripherals PI ...Pn being directly connected, and optionally disconnected indicated by dashed lines 430 from the wireless docking host H 100. In the Figure one peripheral 130 is not connected to the dockee D and remains only connected to the wireless docking host 100.
The figure shows the situation where devices PI, P2 and Pn have set-up direct connections SP1, SP2 and SPn with dockee device D, using secret data S3 (pass phrase S3) indicated by 420. D acts as a Wi-Fi Direct Group owner (indicated by P2P GO unit 403 in the Figure) for SD1, SD2 and SDn. The connections SCI, SC2 and SCn with H may be released or may stay active. The dotted lines in Figure 4 reflect that. The docking involves the Dockee D changing roles and becoming a P2P GO for the subset of wireless peripherals. During the WPA/WPA2 four- way handshake, S3 may be used as a common secret (Wi-Fi Pairwise Master Key (PMK) or the Wi-Fi Pre-shared key (PSK)) to derive the link key (Pairwise Transient Key). Alternatively, S3 is used in the Wi-Fi Protected Setup pairing procedure, where instead of the user entering e.g. a PIN code, the PIN is derived from S3.
In practice the above wireless docking system may be applied to connect a wireless dockee D directly to a display device or a (USB) mouse/keyboard for reducing latency. The devices may be instructed to use a predefined configuration set. Disconnected devices may go to sleep. Optionally, the wireless host may instruct them to wake up at a particular regular interval to be able to discover them and connect with them again.
In an example system a wireless peripheral device P (e.g. a Wi-Fi- display) may be initially connected to a wireless host H via a secure channel C based on a link key
(Pairwise Transient Key) based on a Pass Phrase S 1. The host acts as Group Owner (GO) and P acts as client. H and P both support Wi-Fi Direct Persistent P2P grouping. Thereto P stores Pass Phrase S 1 in its memory. Dockee D initially connects with host H via Wi-Fi direct over a secure channel D with a link key (Pairwise Transient Key) which is based on Pass Phrase S2. Via a docking configuration protocol H instructs dockee D that a payload connection over Wi-Fi must be accepted. The connection directly with peripheral P is effected via a Group Owner unit at D, while using a Pass Phrase S3 to generate a link key (Pairwise Transient Key) M as agreed with peripheral P. H also instructs P that it must connect to peripheral D's GO while using the link key (Pairwise Transient Key) M as agreed with D. Hereafter P may disconnect the connection with H and sets up a link with D with link key
(Pairwise Transient Key) M. If the connection is broken between P and D (e.g. if D undocks), then P may reconnect to H using the original Pass Phrase SI .
In a practical embodiment the enhanced wireless docking system as described above may be implemented as follows. In the example wireless docking system there is one wireless host WDH through which a wireless device WD can dock. The WDH is connected to peripherals PF through wired and wireless interfaces and may also have built-in PFs. It is further assumed that some of the wireless PFs have extra functionality built-in so that they can be instructed to connect directly to a docked WD, or are equipped to perform the wireless host functions.
The following advantages are achieved by the enhanced wireless docking system. PFs can be quickly connected to a WD (no need to execute the Wi-Fi Simple Configuration WSC protocol), and without user intervention. A WD that is only allowed to dock once is, after undocking, not enabled anymore to connect automatically again with the PFs or WDH it was docked with. The Wi-Fi communication between a WD and the WDH it is docked with is protected for privacy and integrity. Also other WDs that may have previously docked with that WDH cannot decrypt this communication or tamper with it without detection. The Wi-Fi communication between a WD and the PFs it is directly connected with during docking is protected for privacy and integrity. Also other WDs that may have previously been connected with these PFs cannot decrypt this communication or tamper with it without detection. The communication between a WDH and a Wi-Fi connected PF is protected for privacy and integrity. Also WDs cannot decrypt this communication or tamper with it without detection, although the WD that is docked with this WDH will receive some of this communication from the WDH and some of this
communication originated from the WD that is docked with this WDH. A WD that is allowed to dock more than once has to perform WSC only once when it docks for the first time and can dock without using WSC when it docks again. A WD and WDH can both be pre- configured such that the WD can always dock automatically.
In the example enhanced wireless docking system the following phases are defined: set-up (or configuration) phase, undocked mode, docking phase, and undocking phase, either controlled or uncontrolled.
In a Set-up phase a WDH sets itself up as a P2P GO for a P2P Group Gl with SSID SSID1 and Passphrase PP1. The WDH accepts only PFs for joining Gl . A number of PFs join Gl using PBC or WSC-PIN for obtaining PP1. The PFs may also be pre-configured for SSID 1 and PP1.
In Undocked mode the WDH sets itself up as a P2P GO for a P2P Group G2 with SSID SSID2 but does not decide on a pass phrase yet for G2. The WDH may send Beacon frames for G2. The WDH responds to Probe Request frames. The WDH gives information that it is a WDH, on its PFs, on its WDEs, etc. in the relevant Information Elements. The WDH accepts only WDs for joining G2.
In a Docking phase a WD that has discovered G2 asks to join G2. This triggers the docking action. If the WD is not allowed to dock, the requested docking action is refused. If the WD has docked before and if that WD is allowed to dock again, the WDH sets as pass phrase PP2 for G2 the pass phrase that it has used before with that WD. In all other cases (so when the WD has never docked before, or when it has docked before but was allowed to dock only once), the WDH generates a new random PP2 as pass phrase for G2. The WDH sends SSID2, PP2, the WD address and WD ID to all PFs using P2P Group Gl (so encrypted with a key derived from PPl and therefore kept private for all WDs and all other devices). If the WD is pre-configured with a pass phrase for this WDH or still possesses a pass phrase from a previous docking session, it may try and use that pass phrase in a four- way handshake. Otherwise, or when using the old pass phrase fails, the WD performs WSC for P2P Group G2 with the WDH for obtaining PP2. WSC may use PBS, or WSC-PIN using either the WD or WDH PIN.
If after joining G2, no PF is going to be connected directly to the WDH, the WD and WDH set up a payload connection through the WDH to PFs and the WD is docked.
If one or more PFs are going to be connected directly to the WD, the WD exchanges GO role with the WDH. The WDH sends the addresses/IDs of all PFs that support setting up a direct Wi-Fi connection to the WD. It may exclude the addresses of PFs for which the payload connection is best routed through the WDH for some reason. We call these the 'direct' PFs. All other PFs are called the 'indirect' PFs. Using P2P Group Gl as the communication means, the WDH asks the direct PFs to join P2P Group G2 using the pass phrase PP2. Effectively in this example the second secret data equals the third secret data. Since the direct PFs now know PP2, they do not need to perform WSC to join G2, which saves considerable time, even if e.g. PINs are pre-provisioned. These PFs simply execute the four- way handshake with the WD using the pass phrase that they know (PP2). The WD has obtained the addresses of the direct PFs involved so knows which ones to expect for connection. Both the WD, through G2, and the PFs, through Gl, can signal to the WDH that P2P Group G2 joins have succeeded or failed. A PF may fail to join P2P Group G2 e.g. if the distance between the PF and the WD is too large. The direct PFs for which joining failed become indirect PFs and remain connected to the WDH. The WD sets-up direct payload connections for PFs that have joined G2 successfully (i.e. the direct PFs). These payload connections are protected using a key derived from PP2. The WD and WDH set up a payload connection through the WDH to the other PFs (i.e. the indirect PFs), and the WD is docked. If the WDH supports more than one WD simultaneously, it may set up a new SSID to accept a new WD for docking.
In an Undocking phase undocking may be done in a controlled or uncontrolled way. Controlled docking is whereby the WD indicates to the WDH that it wants to undock. Uncontrolled undocking is when the WDH detects somehow that the WD has left or became unreachable without having received an indication from the WD that it wants to undock.
During Controlled Undocking, when a WD wants to undock, it sends the WDH a message using P2P Group G2 as the communication means that it wants to undock. The WDH acknowledges the successful reception of this message. After successful delivery of that message, the WD shall end the P2P Group G2 session by sending the WDH and PFs in G2 De-authentication frames with reason code 3. Upon the reception of the De- authentication frame, the PFs tear down the payload connections. Using P2P Group Gl as the communication means, the WDH instructs the direct PFs to delete the used PP2.
Alternatively, it may only do this if the WD is not allowed to dock again. In this case, the PFs have to store pass phrase and WD ID combinations for later use for the WDs that are allowed to dock again. This may save some time during the docking operation. The WDH has to keep track though of which PF has received which pass phrases. The WDH instructs the indirect PFs to tear down the payload connections. The WDH assumes the GO role again of P2P Group G2 and sets the passphrase to undecided. The WDH may now advertise the undocked state again.
During Uncontrolled Undocking the WDH somehow decides that the WD has left or became unreachable without having received an indication from the WD that it wants to undock. The WDH informs all PFs to tear down the (direct or indirect) payload
connections. Using P2P Group Gl as the communication means, the WDH instructs the direct PFs to delete the used PP2. Alternatively, it may only do this if the WD is not allowed to dock again. In this case, the PFs have to store pass phrase and WD ID combinations for later use for the WDs that are allowed to dock again. This may save some time during the docking operation. The WDH has to keep track though of which PF has received which pass phrases. The WDH assumes the GO role again of P2P Group G2 and sets the passphrase to undecided. The WDH may now advertise the undocked state again.
Although the invention has been mainly explained by embodiments using wireless docking, the invention is also suitable for any wireless system where an unconnected wireless device needs to connect to a group of devices. The invention is relevant to Wi-Fi Docking enabled devices, Wi-Fi Serial Bus devices, Wi-Fi Display devices, and any other devices supporting Wi-Fi Direct ranging from portable audio devices, mobile phones, laptops, tablets to Wi-Fi mice, keyboards, display devices, printers, cameras.
It is to be noted that the invention may be implemented in hardware and/or software, using programmable components. A method for implementing the invention has the steps corresponding to the functions defined for the system as described with reference to Figure 1.
It will be appreciated that the above description for clarity has described embodiments of the invention with reference to different functional units and processors. However, it will be apparent that any suitable distribution of functionality between different functional units or processors may be used without deviating from the invention. For example, functionality illustrated to be performed by separate units, processors or controllers may be performed by the same processor or controllers. Hence, references to specific functional units are only to be seen as references to suitable means for providing the described functionality rather than indicative of a strict logical or physical structure or organization. The invention can be implemented in any suitable form including hardware, software, firmware or any combination of these.
It is noted, that in this document the word 'comprising' does not exclude the presence of other elements or steps than those listed and the word 'a' or 'an' preceding an element does not exclude the presence of a plurality of such elements, that any reference signs do not limit the scope of the claims, that the invention may be implemented by means of both hardware and software, and that several 'means' or 'units' may be represented by the same item of hardware or software, and a processor may fulfill the function of one or more units, possibly in cooperation with hardware elements. Further, the invention is not limited to the embodiments, and the invention lies in each and every novel feature or combination of features described above or recited in mutually different dependent claims.

Claims

CLAIMS:
1. System for wireless communication comprising a group of wireless devices
(110,120,130,140) and a portable device (200), each device comprising a radio transceiver for wirelessly exchanging data with the other devices,
- a first wireless device of the group accommodating a first host function and a second wireless device of the group accommodating a second host function, the first and second wireless devices being the same wireless device or different wireless devices;
- the group of wireless devices (110,120,130,140) sharing first secret data (240) and configured for wireless communication to the first wireless device (100) accommodating the first host function via respective first secure connections based on the first secret data (240);
the portable device (200) comprising a device communication processor (202) for
- setting up a second secure connection with the second wireless device (210)
accommodating the second host function using a pairing procedure based on second secret data (250) different from the first secret data (240),
- receiving a second instruction via the second secure connection, and, according to the second instruction,
- setting up a respective direct wireless secure connection with at least one wireless device (110,120,140) of the group using a respective pairing procedure based on third secret data (420), the third secret data differing from the first secret data (240);
the second wireless device (210) accommodating the second host function comprising a host communication processor (102) for
- setting up the second secure connection with the portable device (200) using the pairing procedure based on the second secret data (250),
- transferring to the at least one wireless device via the first secure connection a first instruction to apply the third secret data (420) for setting up a direct wireless secure connection with the portable device (200), and
- transferring to the portable device (200) via the second secure connection (SC) a second instruction to apply the third secret data (420) for setting up the direct wireless secure connection with the at least one wireless device based on the third secret data (420); the at least one wireless device comprising a communication processor (112) for
- receiving the first instruction via the first secure connection, and, according to the first instruction,
- setting up the respective direct wireless secure connection with the portable device (200) using a respective pairing procedure based on the third secret data (420).
2. Portable device (200) for wireless communication for use in the system as claimed in claim 1 , the device comprising a radio transceiver for wirelessly exchanging data with other wireless devices,
the portable device (200) comprising a device communication processor (202) for
- setting up a second secure connection with the second wireless device (210)
accommodating the second host function using a pairing procedure based on second secret data (250) different from the first secret data (240);
- receiving the second instruction via the second secure connection, and, according to the second instruction,
- setting up a respective direct wireless secure connection with a least one wireless device (110,120,140) of the group using a respective pairing procedure based on third secret data (420) , the third secret data differing from the first secret data (240).
3. Device as claimed in claim 2, wherein the device communication processor (202) is further arranged
- for controlling the communication via said direct wireless connections as a group owner; and/or
- setting up respective different direct wireless secure connections with respective wireless devices of respective different subsets using a respective pairing procedure based on respective different third secret data, and/or
- generating the third secret data and transferring the third secret data to the device accommodating the second host function.
4. Device as claimed in claim 2, wherein the device communication processor (202) is arranged for
- disconnecting the second secure connection before initiating setting up the respective direct wireless secure connection with the at least one wireless device; and/or - providing a persistent grouping, and accordingly for, after disconnecting the respective direct wireless secure connection based on said third secret data (420), setting up a further respective direct wireless secure connection based again on said third secret data (420), and/or
- using the second secret data or the third secret data acquired during earlier pairing when, after disconnecting the respective direct wireless secure connection based on said third secret data (420), reconnecting with the at least one wireless device for setting up a respective direct wireless secure connection.
5. Device as claimed in claim 2, wherein
- the second secure connection comprises a Wi-Fi Direct P2P connection, and/or
- the respective direct wireless secure connection comprises a Wi-Fi Direct Peer to Peer connection, and/or
- the respective direct wireless secure connection comprises a Tunneled Direct Link Setup connection, and/or
- the pairing procedure comprises a Wi-Fi Protected Access procedure or a Wi-Fi Simple Configuration procedure.
6. Host device for wireless communication for use in the system as claimed in claim 1 , the device comprising
a radio transceiver for wirelessly exchanging data with other wireless devices, and a host communication processor (102) for accommodating the second host function by
- setting up the second secure connection with the portable device (200) using the pairing procedure based on the second secret data (250),
- transferring to at least one wireless device via the first secure connection a first instruction to apply the third secret data (420) for setting up a direct wireless secure connection with the portable device (200), and
- transferring to the portable device (200) via the second secure connection a second instruction to apply the third secret data (420) for setting up the direct wireless secure connection with the at least one wireless device based on the third secret data (420).
7. Host device as claimed in claim 6, wherein the host communication processor (102) is arranged for
- generating the third secret data, and/or - generating a respective, different set of the third secret data for respective, different instances of the portable device (200), and/or
- generating a respective, different set of the third secret data when the portable device (200), after having disconnected the second secure connection, is setting up the second secure connection a respective, further time, and/or
- generating a respective, different set of the third secret data for a respective, different subset of the wireless devices, and/or
- generating the third secret data based on, or equal to, the second secret data.
8. Host device as claimed in claim 6, wherein the host communication processor
(102) is arranged for
- assigning a limited lifetime to the third secret data, and/or
- assigning a lifetime to the third secret data depending on an authorization level of the device (200).
9. Host device as claimed in claim 6, wherein the host communication processor (102) is arranged for
- transferring a third instruction to the at least one wireless device for disconnecting the first secure connection before setting up the respective direct wireless secure connection to the portable device (200).
10. Host device as claimed in claim 6, wherein the host device is a wireless docking host or a wireless docking station.
11. Wireless device (110) for wireless communication for use in the system as claimed in claim 1 , the wireless device comprising
a radio transceiver for wirelessly exchanging data with other wireless devices, and a communication processor (112) for
- receiving the first instruction via the first secure connection, and, according to the first instruction,
- setting up the respective direct wireless secure connection with the portable device (200) using the respective pairing procedure based on the third secret data (420).
12. Wireless device as claimed in claim 11 , wherein the communication processor (112) is arranged for
- initiating the setting up of the respective direct wireless secure connection to the portable device (200).
13. Wireless device as claimed in claim 11, wherein the communication processor
(112) is arranged for
- disconnecting the respective first secure connection before setting up the respective direct wireless secure connection to the portable device (200), and/or
- restoring the respective first secure connection after disconnecting the respective direct wireless secure connection to the portable device (200).
14. Method of wireless communication in a system of wireless devices as claimed in claim 1 ,
the method comprising
- setting up a second secure connection between the portable device (200) and the second wireless device (210) accommodating the second host function using a pairing procedure based on second secret data (250) different from the first secret data (240);
- transferring to at least one wireless device of the group via the first secure connection a first instruction to apply a third secret data (420) for setting up a direct wireless secure connection with the portable device (200), the third secret data differing from the first secret data (240), and
- transferring to the portable device (200) via the second secure connection a second instruction to apply the third secret data (420) for setting up the direct wireless secure connection with the at least one wireless device based on the third secret data (420);
- setting up a respective direct wireless secure connection between the portable device and the at least one wireless device using a respective pairing procedure based on the third secret data (420).
15. Computer program product for wireless communication between wireless devices, which program is operative to cause a processor to perform the method as claimed in claim 14.
PCT/EP2013/067868 2012-08-30 2013-08-29 Method and devices for pairing within a group of wireless devices WO2014033199A1 (en)

Priority Applications (8)

Application Number Priority Date Filing Date Title
EP13756120.5A EP2891352B1 (en) 2012-08-30 2013-08-29 Method and devices for pairing within a group of wireless devices
BR112015004063-2A BR112015004063B1 (en) 2012-08-30 2013-08-29 WIRELESS COMMUNICATION SYSTEM; PORTABLE DEVICE FOR WIRELESS COMMUNICATION; HOST DEVICE FOR WIRELESS COMMUNICATION; WIRELESS DEVICE FOR WIRELESS COMMUNICATION; WIRELESS COMMUNICATION METHOD IN A WIRELESS DEVICES SYSTEM; AND NON-TRANSITORY COMPUTER READABLE MEDIUM
JP2015529020A JP6290890B2 (en) 2012-08-30 2013-08-29 Pairing within a group of wireless devices
RU2015111201A RU2662687C2 (en) 2012-08-30 2013-08-29 Method and devices for pairing within group of wireless devices
MX2015002397A MX345279B (en) 2012-08-30 2013-08-29 Method and devices for pairing within a group of wireless devices.
US14/423,312 US9445449B2 (en) 2012-08-30 2013-08-29 Method and devices for pairing within a group of wireless devices
CN201380045532.0A CN104584606B (en) 2012-08-30 2013-08-29 Method and apparatus for matching in a group of wireless devices
ES13756120T ES2712960T3 (en) 2012-08-30 2013-08-29 Method and devices for pairing within a group of wireless devices

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US201261695022P 2012-08-30 2012-08-30
EP12182285.2 2012-08-30
EP12182285 2012-08-30
US61/695,022 2012-08-30

Publications (1)

Publication Number Publication Date
WO2014033199A1 true WO2014033199A1 (en) 2014-03-06

Family

ID=46796390

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2013/067868 WO2014033199A1 (en) 2012-08-30 2013-08-29 Method and devices for pairing within a group of wireless devices

Country Status (10)

Country Link
US (1) US9445449B2 (en)
EP (1) EP2891352B1 (en)
JP (1) JP6290890B2 (en)
CN (1) CN104584606B (en)
BR (1) BR112015004063B1 (en)
MX (1) MX345279B (en)
MY (1) MY181382A (en)
RU (1) RU2662687C2 (en)
TW (1) TWI618440B (en)
WO (1) WO2014033199A1 (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140082610A1 (en) * 2012-09-14 2014-03-20 DewMobile Inc. Mesh network and mesh network node application
US9288299B2 (en) 2012-09-14 2016-03-15 Dewmobile, Inc. Method and apparatus for file sharing in a network
WO2016140416A1 (en) * 2015-03-05 2016-09-09 Samsung Electronics Co., Ltd. Method and apparatus for establishing a connection between devices
KR20170097739A (en) * 2014-12-22 2017-08-28 맥아피 인코퍼레이티드 Establishing trust between trusted execution environment and peripheral devices
EP3211931A4 (en) * 2014-10-23 2017-09-13 ZTE Corporation Method for managing device-to-device (d2d) communication group, device, and storage medium
US10149153B2 (en) 2012-10-15 2018-12-04 Koninklijke Philips N.V. Wireless communication system

Families Citing this family (27)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6184105B2 (en) * 2013-01-25 2017-08-23 キヤノン株式会社 COMMUNICATION DEVICE, COMMUNICATION DEVICE CONTROL METHOD, PROGRAM
JP6312369B2 (en) * 2013-04-26 2018-04-18 キヤノン株式会社 COMMUNICATION DEVICE, COMMUNICATION DEVICE CONTROL METHOD, PROGRAM
CN105264815A (en) * 2013-06-04 2016-01-20 三星电子株式会社 Method and apparatus for wireless docking-based service using group key
US9491621B2 (en) * 2013-09-10 2016-11-08 Qualcomm Incorporated Systems and methods for fast initial link setup security optimizations for PSK and SAE security modes
EP3092781B1 (en) 2014-01-10 2017-09-20 Koninklijke Philips N.V. Peripherals in a wireless docking system
US9462617B2 (en) * 2014-04-14 2016-10-04 Intel Corporation Connection management techniques for wireless docking
US20160088143A1 (en) * 2014-09-24 2016-03-24 Intel Corporation Method, system and apparatus for graceful disconnection from a wireless docking station
TWI568286B (en) * 2014-10-24 2017-01-21 緯創資通股份有限公司 Method for peer-to-peer multimedia data sharing, electronic device and non-volatile computer readable medium
CN105812899B (en) * 2014-12-31 2019-04-23 鸿富锦精密工业(深圳)有限公司 Electronic device group connects system and method
US9763088B2 (en) * 2014-12-31 2017-09-12 Ruckus Wireless, Inc. Mesh network with personal pre-shared keys
CN105812500A (en) * 2014-12-31 2016-07-27 鸿富锦精密工业(深圳)有限公司 Electronic device group connection system and method
US10075447B2 (en) * 2015-03-04 2018-09-11 Neone, Inc. Secure distributed device-to-device network
US9571624B2 (en) 2015-03-24 2017-02-14 Intel IP Corporation Apparatus, system and method of terminating a docking session between a mobile device and a docking device
US9913079B2 (en) 2015-06-05 2018-03-06 Apple Inc. Cloud-based proximity pairing and switching for peer-to-peer devices
CN106413125B (en) * 2015-07-31 2020-04-24 腾讯科技(深圳)有限公司 Data transmission method and device
CN105142098B (en) * 2015-08-19 2019-10-25 北京字节跳动网络技术有限公司 A kind of data sharing method and device
CN105163399B (en) * 2015-08-19 2020-03-20 北京字节跳动网络技术有限公司 Data sharing method and device
US10271336B2 (en) * 2015-10-13 2019-04-23 Microsoft Technology Licensing, Llc Smart channel selection for autonomous group initiators
US20170238235A1 (en) * 2016-02-17 2017-08-17 Zitovault, Inc. Wireless router and router management system
US10165448B2 (en) * 2016-03-18 2018-12-25 Arris Enterprises Llc Authentication between wireless client and access point utilizing smart client detection
US10548069B2 (en) 2016-08-19 2020-01-28 Harman International Industries, Incorporated Wireless audio device provisioning
US20180288092A1 (en) * 2017-03-30 2018-10-04 Qualcomm Incorporated Protection from relay attacks in wireless communication systems
CN107426828B (en) * 2017-07-03 2021-01-08 Oppo广东移动通信有限公司 Data transmission method and device and mobile terminal
US10447394B2 (en) 2017-09-15 2019-10-15 Qualcomm Incorporated Connection with remote internet of things (IoT) device based on field of view of camera
KR102366312B1 (en) 2017-09-20 2022-02-25 삼성전자주식회사 Electronic device for performing reconnection of near field communication and method for controlling thereof
US10757561B2 (en) * 2019-03-29 2020-08-25 Intel Corporation Wi-Fi docking in dense environment
US11284258B1 (en) * 2019-06-25 2022-03-22 Amazon Technologies, Inc. Managing access of a computing device to a network

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003056746A1 (en) * 2002-01-03 2003-07-10 Telefonaktiebolaget Lm Ericsson (Publ) Method for establishing connections between rf devices and system comprising such rf devices
US20100153727A1 (en) * 2008-12-17 2010-06-17 Interdigital Patent Holdings, Inc. Enhanced security for direct link communications

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6965816B2 (en) * 2001-10-01 2005-11-15 Kline & Walker, Llc PFN/TRAC system FAA upgrades for accountable remote and robotics control to stop the unauthorized use of aircraft and to improve equipment management and public safety in transportation
TWI231131B (en) 2004-01-08 2005-04-11 Via Tech Inc Method and system of completing bluetooth for the pairing procedure by wired interface
JP2005203846A (en) * 2004-01-13 2005-07-28 Matsushita Electric Ind Co Ltd Security mechanism suitable for multi-hop cellular network
US10375023B2 (en) * 2004-02-20 2019-08-06 Nokia Technologies Oy System, method and computer program product for accessing at least one virtual private network
US8787575B2 (en) * 2007-08-31 2014-07-22 France Brevets Method and apparatus for propagating encryption keys between wireless communication devices
US8081691B2 (en) * 2008-01-14 2011-12-20 Qualcomm Incorporated Detection of interferers using divergence of signal quality estimates
US9185552B2 (en) * 2009-05-06 2015-11-10 Qualcomm Incorporated Method and apparatus to establish trust and secure connection via a mutually trusted intermediary
US8965283B2 (en) * 2009-08-10 2015-02-24 Qualcomm Incorporated Setting up a direct link in a peer to peer wireless network
US8493992B2 (en) 2010-02-04 2013-07-23 Texas Instruments Incorporated Interrelated WiFi and USB protocols and other application framework processes, circuits and systems
JP2011176582A (en) * 2010-02-24 2011-09-08 Buffalo Inc Wireless lan device, wireless lan system, and program thereof
US8464061B2 (en) * 2010-08-30 2013-06-11 Apple Inc. Secure wireless link between two devices using probes
KR101719165B1 (en) 2010-10-27 2017-03-23 삼성전자주식회사 METHOD AND APPARATUS FOR A TRANSMISSION/RECEPTION OF A WLAN NETWORK SHARING DATA IN A Wi-Fi P2P GROUP

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003056746A1 (en) * 2002-01-03 2003-07-10 Telefonaktiebolaget Lm Ericsson (Publ) Method for establishing connections between rf devices and system comprising such rf devices
US20100153727A1 (en) * 2008-12-17 2010-06-17 Interdigital Patent Holdings, Inc. Enhanced security for direct link communications

Cited By (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9288299B2 (en) 2012-09-14 2016-03-15 Dewmobile, Inc. Method and apparatus for file sharing in a network
US20140082610A1 (en) * 2012-09-14 2014-03-20 DewMobile Inc. Mesh network and mesh network node application
US10149153B2 (en) 2012-10-15 2018-12-04 Koninklijke Philips N.V. Wireless communication system
EP3211931A4 (en) * 2014-10-23 2017-09-13 ZTE Corporation Method for managing device-to-device (d2d) communication group, device, and storage medium
JP2018504076A (en) * 2014-12-22 2018-02-08 マカフィー, エルエルシー Establishing trust between a reliable execution environment and peripheral devices
CN107409118A (en) * 2014-12-22 2017-11-28 迈克菲有限责任公司 Trust Establishment between credible performing environment and ancillary equipment
KR20170097739A (en) * 2014-12-22 2017-08-28 맥아피 인코퍼레이티드 Establishing trust between trusted execution environment and peripheral devices
EP3238372A4 (en) * 2014-12-22 2018-08-01 McAfee, Inc. Trust establishment between a trusted execution environment and peripheral devices
US10404692B2 (en) 2014-12-22 2019-09-03 Mcafee, Llc Trust establishment between a trusted execution environment and peripheral devices
KR102048912B1 (en) * 2014-12-22 2019-11-27 맥아피, 엘엘씨 Establish trust between trusted execution environments and peripheral devices
CN107409118B (en) * 2014-12-22 2020-08-21 迈克菲有限责任公司 Trust establishment between trusted execution environment and peripheral device
WO2016140416A1 (en) * 2015-03-05 2016-09-09 Samsung Electronics Co., Ltd. Method and apparatus for establishing a connection between devices
US10805781B2 (en) 2015-03-05 2020-10-13 Samsung Electronics Co., Ltd. Method and apparatus for establishing a connection between devices

Also Published As

Publication number Publication date
TWI618440B (en) 2018-03-11
TW201415937A (en) 2014-04-16
MX345279B (en) 2017-01-24
EP2891352A1 (en) 2015-07-08
EP2891352B1 (en) 2018-12-05
JP2015534313A (en) 2015-11-26
MX2015002397A (en) 2015-06-05
MY181382A (en) 2020-12-21
BR112015004063A2 (en) 2017-07-04
CN104584606B (en) 2018-11-16
CN104584606A (en) 2015-04-29
BR112015004063B1 (en) 2022-11-29
JP6290890B2 (en) 2018-03-07
US20150230280A1 (en) 2015-08-13
US9445449B2 (en) 2016-09-13
RU2662687C2 (en) 2018-07-26
RU2015111201A (en) 2016-10-20

Similar Documents

Publication Publication Date Title
EP2891352B1 (en) Method and devices for pairing within a group of wireless devices
US11012149B2 (en) Communication device and terminal device
JP5786233B2 (en) Station-to-station security association in the Personal Basic Service Set
US9204301B2 (en) Deploying wireless docking as a service
EP3334084B1 (en) Security authentication method, configuration method and related device
US20180137065A1 (en) Method and apparatus for directly connecting dockee device to peripheral device in a wireless docking network
US20170099137A1 (en) Secure connection method for network device, related apparatus, and system
US11758394B2 (en) Communication device and non-transitory computer-readable recording medium storing computer-readable instructions for communication device
CN101771659B (en) Method, system and equipment for safe switch configuration
US10420156B2 (en) Wireless communication terminal, wireless communication system, wireless communication method, and non-transitory medium saving program
EP2993933B1 (en) Wireless terminal configuration method, apparatus and wireless terminal
US12016066B2 (en) Communication device, non-transitory computer-readable recording medium storing computer-readable instructions for communication device, and non-transitory computer-readable recording medium storing computer-readable instructions for first external device
ES2712960T3 (en) Method and devices for pairing within a group of wireless devices
CN103974245B (en) Equipment configuration method, equipment and system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13756120

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 2013756120

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 14423312

Country of ref document: US

Ref document number: IDP00201501029

Country of ref document: ID

WWE Wipo information: entry into national phase

Ref document number: MX/A/2015/002397

Country of ref document: MX

ENP Entry into the national phase

Ref document number: 2015529020

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

ENP Entry into the national phase

Ref document number: 2015111201

Country of ref document: RU

Kind code of ref document: A

REG Reference to national code

Ref country code: BR

Ref legal event code: B01A

Ref document number: 112015004063

Country of ref document: BR

ENP Entry into the national phase

Ref document number: 112015004063

Country of ref document: BR

Kind code of ref document: A2

Effective date: 20150225