[특허]Wireless service points having unique identifiers for secure communication

Wireless service points having unique identifiers for secure communication 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	H04L-009/00
출원번호	UP-0426162 (2003-04-28)
등록번호	US-7522731 (2009-07-01)
발명자 / 주소	Klemba, Keith Stuart Nassi, Isaac Robert Cornejo, David Neil Rosenthal, Lawrence Alan
출원인 / 주소	Firetide, Inc.
대리인 / 주소	PatentVentures
인용정보	피인용 횟수 : 27 인용 특허 : 19

초록 ▼

System, apparatus, and methods are disclosed wherewith a group of independent wireless routing devices known as Service Points work cooperatively to form an ad hoc mesh communication network. The resulting Service Point Network is used to provide reliable address-directed communication services between devices attached by conventional means (wired or wireless) to respective Service Ports on any of the Service Points. Attached Utilizing Devices are not considered a part of the Service Point Network and need not contain any custom software or hardware related to the operations of the Service Point Network. To protect the security of network communications and the integrity of the network, the Service Points are assigned internal IP addresses and unique identifiers that need not be disclosed to the Utilizing Devices. The unique identifiers in turn are used to derive public and private encryption key pairs for each Service Point.

대표청구항 ▼

What is claimed is: 1. A method of communication via a secure wireless communication network, the method comprising: joining a plurality of Service Points (SPs) to form a Service Point Network (SPN); connecting each of a plurality of Utilizing Devices (UDs) to a corresponding Service Port of one or more of the SPs, the UDs being distinct from the SPs and not part of the SPN; associating a unique Service Port identifier with each Service Port of each SP and thereby with each UD; preparing a communication selectively destined for one or more Destination UDs of the plurality of UDs, the communication originating from an Originator UD of the plurality of UDs, the SP corresponding to the Originator UD being an Entry SP of the communication, and the SPs corresponding to the Destination UDs being Terminal SPs of the communication; and for each Destination UD, encrypting the communication in the Entry SP to facilitate decryption in the corresponding Terminal SP and in a manner based at least in part on the unique Service Port identifier associated with the Destination UD, the encrypting otherwise securing the communication from general access including securing against decryption by other than the SP corresponding to the Destination UD. 2. The method of claim 1, wherein the SPN is an ad hoc network. 3. The method of claim 1, wherein the SPN is a mesh network. 4. The method of claim 1, further including: generating one or more associated encryption keys based on each Service Port identifier. 5. The method of claim 4, further including: as part of the key generating, creating a public key and a private key associated with each Service Port of each SP; in the Entry SP, using the public key of the Service Port corresponding to each Destination UD to carry out the encrypting; and in each Terminal SP, using the private key of the Service Port corresponding to each Destination UD to decrypt the encrypted communication. 6. The method of claim 5, further including: establishing at least one management key-pair associated with a recipient SP of the SPs, each management key-pair comprising a management private key and a corresponding management public key; using the management public key, encrypting one or more management directives sent to the recipient SP related to at least one of SPN formation and SP configuration, each of the management directives incorporating an embedded second key for purposes of authentication; decrypting each management directive using the management private key of the recipient SP; the recipient SP using the embedded second key to encrypt a reply to each management directive; and authenticating the recipient SP based on the encrypted reply to each management directive. 7. The method of claim 6, wherein each management directives includes one or more of the following message types: {hello, welcome, join, accept, leave, goodbye}. 8. The method of claim 6, wherein the embedded second key is a nonce value. 9. The method of claim 6, wherein the recipient SP has multiple management key-pairs corresponding to respective different classes of the management directives. 10. The method of claim 1, further including: as each of the SPs joins the SPN, dynamically assigning an SPN-unique SP-identifier to the SP; and routing the encrypted communication through the SPN to the Destination UDs in a manner based upon the SP-identifiers of the Terminal SPs and not revealed to the UDs. 11. The method of claim 10, wherein each SP-identifier is an IP address for internal use within the SPN. 12. A method of communication via a secure wireless communication network, the method comprising: joining a plurality of Service Points (SPs) to form a Service Point Network (SPN); assigning an SPN-unique SP-identifier to each SP joined to the SPN; connecting each of a plurality of Utilizing Devices (UDs) to a corresponding Service Port of one or more of the SPs, the UDs being distinct from the SPs and not part of the SPN; and in the SP corresponding to a first UD of the plurality of UDs, encrypting a communication originating from the first UD and destined for a second UD of the plurality of UDs, the encrypting being performed to facilitate decryption in the SP corresponding to the second UD and in a manner based at least in part on a unique Service Port identifier associated with the Service Port corresponding to the second UD, the encrypting otherwise securing the communication from general access including securing against decryption by other than the SP corresponding to the second UD. 13. A method for providing access to resources via a secure wireless communication network, comprising: providing a Service Point Network (SPN) comprising a plurality of Service Points; connecting each of a plurality of Utilizing Devices to a corresponding one or more of the Service Points, the Utilizing Devices being distinct from the Service Points and not part of the SPN; providing first and second of the Utilizing Devices with access to each other conveyed via dedicated secure communication through the SPN between an Entry Service Point connected to the first Utilizing Device and a Terminal Service Point connected to the second Utilizing Device; and encrypting said secure communication at the Entry Service Point, in such a manner that the communication can only be decrypted by the Terminal Service Point. 14. The method of claim 13, wherein each of the Service Points has one or more associated Service Port identifiers, and said encryption is based at least partly on one of the Service Port identifiers of the Terminal Service Point. 15. A method of communication via a secure wireless communication network, the method comprising: joining a plurality of Service Points (SPs) to form a Service Point Network (SPN); connecting each of a plurality of Utilizing Devices (UDs) to a corresponding Service Port of one or more of the SPs, the UDs being distinct from the SPs and not part of the SPN; associating a unique Service Port identifier with each Service Port of each SP and thereby with each UD; preparing a communication selectively destined for one or more Destination UDs of the plurality of UDs, the communication originating from an Originator UD of the plurality of UDs, the SP corresponding to the Originator UD being an Entry SP of the communication, and the SPs corresponding to the Destination UDs being Terminal SPs of the communication; for each Destination UD, encrypting the communication in the Entry SP to facilitate decrypting the communication in the corresponding Terminal SP and in a manner based at least in part on the unique Service Port identifier associated with the Destination UD, the encrypting otherwise securing the communication from general access including securing against decrypting by other than the SP corresponding to the Destination UD; generating one or more associated encryption keys based on each Service Port identifier; as part of the key generating, creating a public key and a private key associated with each Service Port of each SP; in the Entry SP, using the public key of the Service Port corresponding to each Destination UD to carry out the encrypting; and in each Terminal SP, using the private key of the Service Port corresponding to each Destination UD to carry out the decrypting; and wherein the UDs are client devices that do not actively participate in the encrypting and the decrypting, the communication is one or more instances of client data communications, the encrypting and the decrypting are asymmetric, the client data communications are unrelated to and not used for key distribution related to the encrypting and the decrypting, and only the SPs corresponding to the Destination UDs are capable of performing the decrypting. 16. The method of claim 15, further including: as each of the SPs joins the SPN, dynamically assigning an SPN-unique SP-identifier to the SP; routing the encrypted communication through the SPN to the Destination UDs in a manner based upon the SP-identifiers of the Terminal SPs and not revealed to the UDs; and wherein each SP-identifier is an IP address for internal use within the SPN. 17. The method of claim 15, further including: establishing at least one management key-pair associated with a recipient SP of the SPs, each management key-pair comprising a management private key and a corresponding management public key; using the management public key, encrypting one or more management directives sent to the recipient SP related to at least one of SPN formation and SP configuration, each of the management directives incorporating an embedded second key for purposes of authentication; decrypting each management directive using the management private key of the recipient SP; the recipient SP using the embedded second key to encrypt a reply to each management directive; and authenticating the recipient SP based on the encrypted reply to each management directive. 18. The method of claim 17, wherein each management directive includes one or more of the following message types: {hello, welcome, join, accept, leave, goodbye}. 19. The method of claim 17, wherein the embedded second key is a nonce value. 20. The method of claim 17, wherein the recipient SP has multiple management key-pairs corresponding to respective different classes of the management directives.

이 특허에 인용된 특허 (19)

Olkkonen, Mikko; Nyman, Kai; Bouet, Stephane, Ad hoc network discovery menu.
상세보기
Hermann, Reto; Husemann, Dirk; Moser, Michael; Nidd, Michael; Schade, Andreas, Adjacency-bound service discovery.
상세보기
Donald L. Schilling ; Joseph Garodnick, Distributed network, spread-spectrum system.
상세보기
Schilling, Donald L., Efficient sharing of capacity by remote stations using circuit switching and packet switching.
상세보기
Haartsen, Jacobus Cornelis, Frequency hopping piconets in an uncoordinated wireless multi-user system.
상세보기
Tofano, Mark E., Integrated communication systems for exchanging data and information between networks.
상세보기
Kennedy, Robert A., Intelligent communication node object beacon framework including neighbor discovery in a mobile ad hoc network.
상세보기
Heinonen, Tomi; Laitinen, Timo M.; Lempiö, Jarkko, Local service handover.
상세보기
Fischer Michael A. (San Antonio TX), Medium access control protocol for wireless network.
상세보기
Chris Cho-Pin Li, Method and apparatus for broadcasting messages in channel reservation communication systems.
상세보기
Reed, John Douglas; Smith, Jack Anthony, Method and apparatus for increasing service efficacy in an ad-hoc mesh network.
상세보기
Louhi, Jyrki Tapio, Method and system for aligning a point-to-multipoint access terminal.
상세보기
Bhagwat, Pravin; Bisdikian, Chatschik; Janniello, Frank James; Korpeoglu, Ibrahim; Naghshineh, Mahmoud; Pandoh, Puneet, Providing shared-medium multiple access capability in point-to-point communications.
상세보기
Sturniolo Emil A. ; Ciotti ; Jr. Frank D. ; Seshadri Krishna P., Seamless roaming among multiple networks including seamless transitioning between multiple devices.
상세보기
Schilling Donald L. ; Garodnick Joseph, Spread-spectrum handoff and source congestion avoidance system and method.
상세보기
Garahi, Masood; Stanforth, Peter J., System and method for enabling a node in an ad-hoc packet-switched wireless communications network to route packets based on packet content.
상세보기
Barker, Jr., Charles R., System and method for trans-medium address resolution on an ad-hoc network with at least one highly disconnected medium having multiple access points to other media.
상세보기
Harrison Colin George ; Jaepel Dieter,CHX, Wide-area wireless lan access.
상세보기
Klemba,Keith Stuart; Nassi,Isaac Robert; Cornejo,David Neil; Rosenthal,Lawrence Alan, Wireless service point networks.
상세보기

이 특허를 인용한 특허 (27)

Rudnick, William Michael, Ad-hoc network routing protocol including the use of forward and reverse multi-point relay (MPR) spanning tree routes.
상세보기
Kish, William S., Determining associations in a mesh network.
상세보기
Kish, William S., Determining associations in a mesh network.
상세보기
Kish, William S.; Miu, Allen; Mok, Ron, Determining role assignment in a hybrid mesh network.
상세보기
Kish, William S., Distributed access point for IP based communications.
상세보기
Kish, William S., Distributed access point for IP based communications.
상세보기
Kish, William S., Distributed access point for IP based communications.
상세보기
Kish, William S.; Miu, Allen; Mok, Ron, Establishing a mesh network with wired and wireless links.
상세보기
Kish, William S.; Chanak, John, Increasing reliable data throughput in a wireless network.
상세보기
Kish, William S.; Chanak, John, Increasing reliable data throughput in a wireless network.
상세보기
Citrano, III, Joseph; Freeman, Murray Frederic; Potter, Jeffrey Dale; Carlson, Daniel Clifford; Karschnia, Robert John, Join key provisioning of wireless devices.
상세보기
Kish, William S.; Chanak, John; Gram, Charles Andrew, MAC based mapping in IP based communications.
상세보기
Kish, William S.; Chanak, John; Gram, Charles Andrew, MAC based mapping in IP based communications.
상세보기
Oliver, Ian Justin, Method and apparatus for providing a structured and partially regenerable identifier.
상세보기
Chowdhury, Kuntal, Method and apparatus for securing communication between a mobile node and a network.
상세보기
Jetcheva, Jorjeta Gueorguieva; Kailas, Sivakumar; Natarajan, Mohan, Method for enabling the efficient operation of arbitrarily interconnected mesh networks.
상세보기
Botha, Shaun; Bertoglio, Mark D., Method, apparatus, system, and article of manufacture for providing distributed convergence nodes in a communication network environment.
상세보기
Clack, Derick J.; Vergato, Bryan D.; Bertoglio, Mark D.; Botha, Shaun; Buchwalter, Edward E.; Rava, Guillaume F.; Kiryanov, Yuri; Bogart, Thomas Richard; Passinsky, Michael A., Method, apparatus, system, and article of manufacture for reliable low-bandwidth information delivery across mixed-mode unicast and multicast networks.
상세보기
Clack, Derick J.; Vergato, Bryan D.; Bertoglio, Mark D.; Botha, Shaun; Buchwalter, Edward E.; Rava, Guillaume F.; Kiryanov, Yuri; Bogart, Thomas Richard; Passinsky, Michael A., Method, apparatus, system, and article of manufacture for reliable low-bandwidth information delivery across mixed-mode unicast and multicast networks.
상세보기
Jetcheva, Jorjeta Gueorguieva; Kanodia, Sachin; Repakula, Murali Sundaramoorthy; Natarajan, Mohan, Route optimization for on-demand routing protocols for mesh networks.
상세보기
Iyer, Aravind V.; Bellur, Bhargav R., Systems and methods for efficient authentication.
상세보기
Kish, William S.; Chanak, John, Throughput enhancement by acknowledgment suppression.
상세보기
Kish, William S.; Gram, Charles Andrew, Unicast to multicast conversion.
상세보기
Kish, William; Gram, Charles Andrew, Unicast to multicast conversion.
상세보기
Kish, William S., Wireless network throughput enhancement through channel aware scheduling.
상세보기
Kish, William S., Wireless network throughput enhancement through channel aware scheduling.
상세보기
Kish, William S., Wireless network throughput enhancement through channel aware scheduling.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

Wireless service points having unique identifiers for secure communication 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (19)

이 특허를 인용한 특허 (27)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

Wireless service points having unique identifiers for secure communication 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (19)

이 특허를 인용한 특허 (27)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트