专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20050120213A1 System and method for provisioning and authenticating via a network 审中-公开
标题翻译：通过网络进行配置和认证的系统和方法
公开(公告)号：US20050120213A1
公开(公告)日：2005-06-02
申请号：US10724995
申请日：2003-12-01
申请人： Nancy Winget , Hao Zhou , Mark Krischer , Joseph Salowey , Jeremy Stieglitz , Saar Gillai , Padmanabha Jakkahalli
发明人： Nancy Winget , Hao Zhou , Mark Krischer , Joseph Salowey , Jeremy Stieglitz , Saar Gillai , Padmanabha Jakkahalli
IPC分类号： H04L29/06 , H04L9/00
CPC分类号： H04L63/08 , H04L9/0838 , H04L63/0435 , H04L63/0442 , H04L63/0869 , H04L63/1458 , H04W12/0023 , H04W12/02 , H04W12/08 , H04W12/12
摘要： System architecture and corresponding method for securing communication via a network (e.g. IEEE 802.11) is provided. In accordance with one embodiment, the present system and method protocol, may be suitably configured to achieve mutual authentication by using a shared secret to establish a tunnel used to protect weaker authentication methods (e.g. user names and passwords). The shared secret, referred to in this embodiment as the protected access credential may be advantageously used to mutually authenticate a server and a peer upon securing a tunnel for communication via a network. The present system and method disclosed and claimed herein, in one aspect thereof, comprises the steps of 1) providing a communication implementation between a first and a second party; 2) provisioning a secure credential between the first and the second party; and 3) establishing a secure tunnel between the first and the second party using the secure credential.
摘要翻译：提供了用于通过网络（例如，IEEE 802.11）保护通信的系统架构和相应的方法。根据一个实施例，本系统和方法协议可以被适当地配置为通过使用共享秘密来建立用于保护较弱认证方法（例如，用户名和密码）的隧道来实现相互认证。在本实施例中被称为受保护的访问凭证的共享秘密可以有利地用于在保护用于经由网络进行通信的隧道的相互认证服务器和对等体之间。在本文中公开和要求保护的本系统和方法在其一个方面包括以下步骤：1）提供第一方和第二方之间的通信实现; 2）在第一方和第二方之间提供安全证书; 以及3）使用安全证书在第一方和第二方之间建立安全隧道。

2. 发明申请

US20050154873A1 Enabling stateless server-based pre-shared secrets 有权
标题翻译：启用基于无状态的基于服务器的预共享机密
公开(公告)号：US20050154873A1
公开(公告)日：2005-07-14
申请号：US10756634
申请日：2004-01-12
申请人： Nancy Cam-Winget , Hao Zhou , Padmanabha Jakkahalli , Joseph Salowey , David McGrew
发明人： Nancy Cam-Winget , Hao Zhou , Padmanabha Jakkahalli , Joseph Salowey , David McGrew
IPC分类号： G06F15/16 , H04L9/00 , H04L29/06 , H04L29/08
CPC分类号： H04L63/0435 , H04L9/0822 , H04L9/0841 , H04L63/08 , H04L67/14
摘要： A method is disclosed for enabling stateless server-based pre-shared secrets. Based on a local key that is not known to a client, a server encrypts the client's state information. The client's state information may include, for example, the client's authentication credentials, the client's authorization characteristics, and a shared secret key that the client uses to derive session keys. By any of a variety of mechanisms, the encrypted client state information is provided to the client. The server may free memory that stored the client's state information. When the server needs the client's state information, the client sends, to the server, the encrypted state information that the client stored. The server decrypts the client state information using the local key. Because each client stores that client's own state information in encrypted form, the server does not need to store any client's state information permanently.
摘要翻译：公开了一种实现无状态的基于服务器的预共享机密的方法。基于客户端不知道的本地密钥，服务器加密客户端的状态信息。客户端的状态信息可以包括例如客户端的认证凭证，客户端的授权特征以及客户端用于导出会话密钥的共享秘密密钥。通过各种机制中的任一种，加密的客户端状态信息被提供给客户端。服务器可以释放存储客户端状态信息的内存。当服务器需要客户端的状态信息时，客户端向服务器发送客户端存储的加密状态信息。服务器使用本地密钥解密客户端状态信息。因为每个客户端都以加密形式存储客户端自己的状态信息，服务器不需要永久存储任何客户端的状态信息。

3. 发明申请

US20070288743A1 ENABLING STATELESS SERVER-BASED PRE-SHARED SECRETS 有权
标题翻译：启用无状态的基于服务器的预共享秘密
公开(公告)号：US20070288743A1
公开(公告)日：2007-12-13
申请号：US11843292
申请日：2007-08-22
申请人： Nancy Cam-Winget , Hao Zhou , Padmanabha Jakkahalli , Joseph Salowey , David McGrew
发明人： Nancy Cam-Winget , Hao Zhou , Padmanabha Jakkahalli , Joseph Salowey , David McGrew
IPC分类号： H04L9/14
CPC分类号： H04L63/0435 , H04L9/0822 , H04L9/0841 , H04L63/08 , H04L67/14
摘要： A method is disclosed for enabling stateless server-based pre-shared secrets. Based on a local key that is not known to a client, a server encrypts the client's state information. The client's state information may include, for example, the client's authentication credentials, the client's authorization characteristics, and a shared secret key that the client uses to derive session keys. By any of a variety of mechanisms, the encrypted client state information is provided to the client. The server may free memory that stored the client's state information. When the server needs the client's state information, the client sends, to the server, the encrypted state information that the client stored. The server decrypts the client state information using the local key. Because each client stores that client's own state information in encrypted form, the server does not need to store any client's state information permanently.
摘要翻译：公开了一种实现无状态的基于服务器的预共享机密的方法。基于客户端不知道的本地密钥，服务器加密客户端的状态信息。客户端的状态信息可以包括例如客户端的认证凭证，客户端的授权特征以及客户端用于导出会话密钥的共享秘密密钥。通过各种机制中的任一种，加密的客户端状态信息被提供给客户端。服务器可以释放存储客户端状态信息的内存。当服务器需要客户端的状态信息时，客户端向服务器发送客户端存储的加密状态信息。服务器使用本地密钥解密客户端状态信息。因为每个客户端都以加密形式存储客户端自己的状态信息，服务器不需要永久存储任何客户端的状态信息。

4. 发明申请

US20070081477A1 Virtual LAN override in a multiple BSSID mode of operation 有权
标题翻译：虚拟LAN覆盖多个BSSID操作模式
公开(公告)号：US20070081477A1
公开(公告)日：2007-04-12
申请号：US11247350
申请日：2005-10-11
申请人： Padmanabha Jakkahalli , Bhagvan Cheeyandira
发明人： Padmanabha Jakkahalli , Bhagvan Cheeyandira
IPC分类号： H04B7/00
CPC分类号： H04L12/4645 , H04L63/0884 , H04W12/06 , H04W12/08 , H04W48/16 , H04W84/12
摘要： Methods, apparatuses and systems directed to the integration of VLANs and wireless access points operating in a Multiple BSSID mode of operation. According to one implementation of the present invention, a wireless access point dynamically maps an SSID provided by a mobile station to a BSSID based on a VLAN assignment corresponding to the mobile station. In one implementation, the wireless access point learns the correct VLAN/BSSID for a given mobile station, while proxying an authentication session between the mobile station and an authentication server.
摘要翻译：针对以多BSSID操作模式运行的VLAN和无线接入点的集成的方法，设备和系统。根据本发明的一个实施方式，无线接入点基于与移动台对应的VLAN分配，动态地将由移动台提供的SSID映射到BSSID。在一个实现中，无线接入点在给定移动台学习正确的VLAN / BSSID，同时代理移动台和认证服务器之间的认证会话。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式