专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20140245410A1 METHOD AND SYSTEM FOR AUTHENTICATING A NETWORK NODE IN A UAM-BASED WLAN NETWORK 审中-公开
标题翻译：用于在基于UAM的WLAN网络中认证网络节点的方法和系统
公开(公告)号：US20140245410A1
公开(公告)日：2014-08-28
申请号：US14272851
申请日：2014-05-08
申请人： TOGEWA HOLDING AG
发明人： Laurent FRELECHOUX
IPC分类号： H04L9/32 , H04L29/06
CPC分类号： H04L9/32 , H04L63/08 , H04L63/0892 , H04L63/162 , H04L63/166 , H04W12/06 , H04W74/004 , H04W80/04 , H04W84/12
摘要： The invention relates to a method and system for authenticating a mobile network node in a Wireless Local Area Network, wherein the mobile network node requests access to the WLAN at an access point. Within a closed first network region, before authentication all network protocol layers up to the Layer 3 protocol layer (L3) are set up. An authenticator based on Extensible Authentication Protocol (EAP) is generated on the Web server as captive portal and the Layer 3 protocol layer between the authenticator and the mobile network node comprising an EAP peer is extended bidirectionally by means of a defined bit sequence. In case of an access request, the Web server transmits an authentication stimulus to the mobile node by encoding an EAP message request and transmitting it in the Layer 3 protocol layer by means of the defined bit sequence. The mobile node decodes the EAP message request and transmits, in the Layer 3 protocol layer, by means of the defined bit sequence, an encoded EAP response message to the authenticator, the EAP response message comprises authentication data of the mobile network node. The Web server decodes the EAP response message from the bit sequence, transmits it to an AAA server including an EAP server by means of an authentication inquiry. On the basis of an authentication response by the AAA Server, access is enabled to a second network region for use by the mobile network node by means of a Network Access Server.
摘要翻译：本发明涉及用于认证无线局域网中的移动网络节点的方法和系统，其中移动网络节点在接入点处请求接入WLAN。在封闭的第一网络区域内，在认证之前，建立了直到第3层协议层（L3）的所有网络协议层。基于可扩展认证协议（EAP）的认证者在网络服务器上生成作为限制门户，并且认证者与包括EAP对等体的移动网络节点之间的第3层协议层通过定义的位序列双向扩展。在访问请求的情况下，Web服务器通过对EAP消息请求进行编码来向移动节点发送认证激励，并通过定义的位序列在第3层协议层中进行发送。移动节点解码EAP消息请求，并且通过定义的比特序列在第3层协议层中向认证者发送编码的EAP响应消息，EAP响应消息包括移动网络节点的认证数据。 Web服务器从比特序列解码EAP响应消息，通过认证查询将其发送到包括EAP服务器的AAA服务器。基于AAA服务器的认证响应，对移动网络节点借助于网络接入服务器使用的第二网络区域进行访问。

2. 发明授权

US09015815B2 Method and system for authenticating a network node in a UAM-based WLAN network 有权
标题翻译：在基于UAM的WLAN网络中认证网络节点的方法和系统
公开(公告)号：US09015815B2
公开(公告)日：2015-04-21
申请号：US14272851
申请日：2014-05-08
申请人： Togewa Holding AG
发明人： Laurent Frelechoux
IPC分类号： G06F7/04 , G06F15/16 , G06F17/30 , H04L29/06 , H04L9/32 , H04W12/06 , H04W74/00 , H04W80/04 , H04W84/12
CPC分类号： H04L9/32 , H04L63/08 , H04L63/0892 , H04L63/162 , H04L63/166 , H04W12/06 , H04W74/004 , H04W80/04 , H04W84/12
摘要： The invention relates to a method and system for authenticating a mobile network node in a Wireless Local Area Network, wherein the mobile network node requests access to the WLAN at an access point. Within a closed first network region, before authentication all network protocol layers up to the Layer 3 protocol layer (L3) are set up. An authenticator based on Extensible Authentication Protocol (EAP) is generated on the Web server as captive portal and the Layer 3 protocol layer between the authenticator and the mobile network node comprising an EAP peer is extended bidirectionally by means of a defined bit sequence. In case of an access request, the Web server transmits an authentication stimulus to the mobile node by encoding an EAP message request and transmitting it in the Layer 3 protocol layer by means of the defined bit sequence. The mobile node decodes the EAP message request and transmits, in the Layer 3 protocol layer, by means of the defined bit sequence, an encoded EAP response message to the authenticator, the EAP response message comprises authentication data of the mobile network node. The Web server decodes the EAP response message from the bit sequence, transmits it to an AAA server including an EAP server by means of an authentication inquiry. On the basis of an authentication response by the AAA Server, access is enabled to a second network region for use by the mobile network node by means of a Network Access Server.
摘要翻译：本发明涉及用于认证无线局域网中的移动网络节点的方法和系统，其中移动网络节点在接入点处请求接入WLAN。在封闭的第一网络区域内，在认证之前，建立了所有到第3层协议层（L3）的网络协议层。基于可扩展认证协议（EAP）的认证者在网络服务器上生成作为限制门户，并且认证者与包括EAP对等体的移动网络节点之间的第3层协议层通过定义的位序列双向扩展。在访问请求的情况下，Web服务器通过对EAP消息请求进行编码来向移动节点发送认证激励，并通过定义的位序列在第3层协议层中进行发送。移动节点解码EAP消息请求，并且通过定义的比特序列在第3层协议层中向认证者发送编码的EAP响应消息，EAP响应消息包括移动网络节点的认证数据。 Web服务器从比特序列解码EAP响应消息，通过认证查询将其发送到包括EAP服务器的AAA服务器。基于AAA服务器的认证响应，对移动网络节点借助于网络接入服务器使用的第二网络区域进行访问。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式