公开(公告)号：WO2008112455A2

公开(公告)日：2008-09-18

申请号：PCT/US2008055739

申请日：2008-03-04

Applicant: MOTOROLA INC ,  BRASKICH ANTHONY J ,  BARKER JR CHARLES R ,  EMEOTT STEPHEN P ,  STRUTT GUENAEL T

Inventor： BRASKICH ANTHONY J ,  BARKER JR CHARLES R ,  EMEOTT STEPHEN P ,  STRUTT GUENAEL T

IPC: H04L29/06

CPC classification number: H04W12/06 ,  H04L63/0869 ,  H04W12/04 ,  H04W84/18

Abstract: A method for security authentication within a wireless network is disclosed. A method within an adhoc mesh network for two devices to quickly determine roles (i.e. which is the authenticator and which is the supplicant) while establishing a security association is provided for. The invention further provides for the inclusion of cached key information in the role negotiation process and the application of role negotiation to a shortened three-way handshake.

Abstract translation: 公开了一种无线网络内的安全认证方法。 提供了一种用于两个设备的自适应网格网络中的方法，用于在建立安全关联的同时快速确定角色（即哪个是认证者，哪个是请求者）。 本发明还提供了将缓存的关键信息包括在角色协商过程中并将角色协商应用于缩短的三次握手。

公开(公告)号：WO2008030704A3

公开(公告)日：2008-08-21

申请号：PCT/US2007076592

申请日：2007-08-23

Applicant: MOTOROLA INC ,  BRASKICH ANTHONY J ,  EMEOTT STEPHEN P

Inventor： BRASKICH ANTHONY J ,  EMEOTT STEPHEN P

IPC: G06F21/00

CPC classification number: H04L63/061 ,  H04L9/0822 ,  H04L9/0836 ,  H04L9/321 ,  H04L9/3271 ,  H04L2209/80 ,  H04L2463/061 ,  H04W12/04 ,  H04W12/06 ,  H04W84/18

Abstract: A method and system for secure processing of authentication key material in an ad hoc wireless network enables secure distribution of the authentication key material between a mesh authenticator (110) and a mesh key distributor (115), which may be separated by multiple wireless links. The method includes deriving a pairwise transient key for key distribution (PTK-KD) using a mesh key holder security information element (MKHSIE). A mesh authenticator pairwise master key (PMK-MA) is then requested using a first mesh encrypted key information element (MEKIE) that includes data origin information. Using the pairwise transient key for key distribution (PTK-KD), a second mesh encrypted key information element (MEKIE) is then decrypted to obtain the mesh authenticator pairwise master key (PMK-MA).

Abstract translation: 用于安全处理自组织无线网络中的认证密钥材料的方法和系统使得认证密钥材料可以在网格认证器（110）和网格密钥分配器（115）之间进行安全分发，所述网格认证器可以由多个无线链路分隔。 该方法包括使用网格密钥持有者安全信息元素（MKHSIE）导出用于密钥分发的成对瞬态密钥（PTK-KD）。 然后使用包括数据原始信息的第一网格加密密钥信息元素（MEKIE）来请求网格认证器成对主密钥（PMK-MA）。 使用成对瞬态密钥进行密钥分发（PTK-KD），然后对第二网格加密密钥信息元素（MEKIE）进行解密，获得网格认证方成对密钥（PMK-MA）。

公开(公告)号：WO2007089989A2

公开(公告)日：2007-08-09

申请号：PCT/US2007060680

申请日：2007-01-18

Applicant: MOTOROLA INC ,  EMEOTT STEPHEN P ,  BRASKICH ANTHONY J

Inventor： EMEOTT STEPHEN P ,  BRASKICH ANTHONY J

IPC: H04L12/28

CPC classification number: H04L63/065 ,  H04L63/104

Abstract: A method and apparatus for utilizing multiple group keys for secure communications among nodes is provided herein. During operation an access point will utilize a plurality of Medium Access Controller (MAC) Addresses, one for each service provided. Each MAC address has an associated lookup table containing encryption keys. From the perspective of nodes using a first service, group traffic sent using the MAC address for the second service is ignored, and no decryption attempt is made. Likewise, group traffic sent using the MAC address for the first service is ignored for group traffic using the second service.

Abstract translation: 这里提供了一种利用多个组密钥进行节点间安全通信的方法和装置。 在操作期间，接入点将利用多个媒体访问控制器（MAC）地址，每个提供的服务一个。 每个MAC地址都有一个包含加密密钥的关联查找表。 从使用第一服务的节点的角度来看，使用第二服务的MAC地址发送的组流量被忽略，并且不进行解密尝试。 同样，使用第二个服务的组流量忽略使用第一个服务的MAC地址发送的组流量。

公开(公告)号：WO2006039081A2

公开(公告)日：2006-04-13

申请号：PCT/US2005032278

申请日：2005-09-08

Applicant: MOTOROLA INC ,  SIMPSON FLOYD D ,  EMEOTT STEPHEN P ,  SMITH BRIAN K ,  WILSON TIMOTHY J

Inventor： SIMPSON FLOYD D ,  EMEOTT STEPHEN P ,  SMITH BRIAN K ,  WILSON TIMOTHY J

IPC: H04L12/28 ,  H04W48/16 ,  H04W84/12

CPC classification number: H04W48/16 ,  H04W84/12

Abstract: The invention provides an enhanced passive scanning method for a wireless local area network, including the steps of transmitting at least one of a beacon signal or a gratuitous probe response in a WLAN channel by an access point. The gratuitous probe response is a supplemental beacon signal that is transmitted at intervals between the occurrence of regular beacon signals, but contains only essential information to allow mobile station manage roaming and timing.

Abstract translation: 本发明提供了一种用于无线局域网的增强型被动扫描方法，包括以下步骤：通过接入点发送WLAN信道中的信标信号或无偿探测响应中的至少一个。 免费探测响应是在发生规则信标信号之间以间隔传输的补充信标信号，但仅包含允许移动台管理漫游和定时的基本信息。

公开(公告)号：WO2009029467A3

公开(公告)日：2009-05-07

申请号：PCT/US2008073804

申请日：2008-08-21

Applicant: MOTOROLA INC ,  CHEN YE ,  EMEOTT STEPHEN P ,  GOSSAIN HRISHIKESH

Inventor： CHEN YE ,  EMEOTT STEPHEN P ,  GOSSAIN HRISHIKESH

IPC: H04W74/08 ,  H04W84/18

CPC classification number: H04W72/1236 ,  H04W74/0808 ,  H04W84/18

Abstract: A method of communicating within a mesh network comprises scheduling a mesh access reservation time period for transmission of one or more frames by the mesh device on a channel. During the scheduled mesh access reservation time period: contention for the channel is performed with one or more other mesh devices in the network; and at least one frame is transmitted when the mesh device wins the contention. After the scheduled mesh access reservation time period: when one or more frames scheduled for transmission during the scheduled mesh access reservation time period remain to be transmitted; contention for the channel continues; and the one or more frames are transmitted when the mesh device wins the contention for the channel and when another mesh device has not reserved the channel for the time period.

Abstract translation: 在网状网络内进行通信的方法包括：调整网格接入预留时间段，用于由网络设备在信道上传输一个或多个帧。 在调度的网状接入预约时间段期间：用网络中的一个或多个其他网状设备执行信道的争用; 并且当网格装置赢得争用时，至少发送一帧。 在调度的网状接入预约时间段之后：当在调度的网状接入预留时间段期间调度传输的一个或多个帧仍然被发送时; 争夺频道的争夺仍在继续; 并且当网状设备赢得该信道的竞争并且当另一网状设备在该时间段内尚未保留该信道时，发送一个或多个帧。

公开(公告)号：WO2008030679B1

公开(公告)日：2008-12-04

申请号：PCT/US2007075439

申请日：2007-08-08

Applicant: MOTOROLA INC ,  BRASKICH ANTHONY J ,  EMEOTT STEPHEN P

Inventor： BRASKICH ANTHONY J ,  EMEOTT STEPHEN P

IPC: H04L9/00

CPC classification number: H04L63/162 ,  H04L63/0892 ,  H04L63/123 ,  H04W12/06

Abstract: The disclosure relates to techniques and technologies for establishing a secure link between a mesh authenticator and a mesh key distributor for transporting security association messages. The secure link can allow the mesh key distributor to communicate results of an authentication process to the mesh authenticator.

Abstract translation: 本公开涉及用于在网格认证器和用于传送安全关联消息的网格密钥分发器之间建立安全链路的技术和技术。 安全链路可以允许网格密钥分发器将认证过程的结果传送到网格认证器。

公开(公告)号：WO2008076645A8

公开(公告)日：2008-08-14

申请号：PCT/US2007086571

申请日：2007-12-06

Applicant: MOTOROLA INC ,  MAKHLOUF ISAM R ,  EMEOTT STEPHEN P

Inventor： MAKHLOUF ISAM R ,  EMEOTT STEPHEN P

IPC: H04L12/56 ,  H04L12/28

CPC classification number: H04W74/0808

Abstract: A method (10 or 40) or system (200) of predictive sensing of periodic intermittent interference (PII) can include the measuring (12) of energy on a channel for an indication of PII, determining (14) if a channel is currently in a PII on-cycle, and adjusting (16) a clear channel assessment threshold to a new threshold for improved sensitivity of the PII on-cycle. If a current energy level on the channel is below the new threshold and if a previous on-energy characteristic suggests that the current energy level will remain below the new threshold for a predetermined minimum period of time, then a clear channel indication can be provided (20). A busy channel indication is provided (45) when either the current energy level is above the new threshold or the previous on-energy characteristic suggests the current energy level will not remain below the threshold for predetermined minimum period of time.

Abstract translation: 用于周期性间歇干扰（PII）的预测感测的方法（10或40）或系统（200）可以包括用于PII的指示的信道上的能量测量（12），确定（14）如果信道当前处于 PII on循环，并将（16）清晰的通道评估阈值调整到新的阈值，以提高PII on-cycle的灵敏度。 如果信道上的当前能量级别低于新阈值，并且如果先前的能量特性表明当前能量水平将在预定的最小时间段内保持低于新阈值，则可以提供清除信道指示（ 20）。 当当前能量水平高于新阈值或先前的开启能量特性时，提供忙通道指示（45），表明当前能量水平将不会保持在预定的最小时间段内的阈值以下。

公开(公告)号：WO2008030705A3

公开(公告)日：2008-08-14

申请号：PCT/US2007076594

申请日：2007-08-23

Applicant: MOTOROLA INC ,  EMEOTT STEPHEN P ,  BRASKICH ANTHONY J

Inventor： EMEOTT STEPHEN P ,  BRASKICH ANTHONY J

IPC: H04L9/00

CPC classification number: H04L9/0836 ,  H04L9/0838 ,  H04L9/321 ,  H04L9/3271 ,  H04L2209/80 ,  H04L2463/061 ,  H04W8/26 ,  H04W12/04 ,  H04W12/06 ,  H04W84/18

Abstract: A method and apparatus for establishing security associations between nodes of an ad hoc wireless network includes two authentication steps: an initial first contact step (authentication, authorization, and accounting (AAA)-based authentication), and a "light-weight" step that reuses key material generated during first contact. A mesh authenticator within the network provides two roles. The first role is to implement an 802.1X port access entity (PAE), derive transient keys used for encryption with a supplicant mesh point via a four-way handshake and take care of back end communications with a key distributor. The second role is as a key distributor that implements a AAA-client and derives keys used to authenticate a mesh point during first contact or fast security association. The key distributor and the on-line authentication server can communicate to one another without these messages being transported over mesh links.

Abstract translation: 一种用于在自组织无线网络的节点之间建立安全联系的方法和装置包括两个认证步骤：初始第一接触步骤（基于认证，授权和计费（AAA））的认证）和“轻重量”步骤， 重复使用第一次接触时产生的关键材料。 网络中的网格验证器提供两个角色。 第一个作用是实现802.1X端口访问实体（PAE），通过四次握手导出用于与请求方网格点进行加密的临时密钥，并处理与密钥分发者的后端通信。 第二个角色是实现AAA客户端的关键分销商，并在第一次联系或快速安全关联期间派生用于验证网格点的密钥。 密钥分配器和在线认证服务器可以彼此通信，而不会通过网状链路传输这些消息。

公开(公告)号：WO2005062808A3

公开(公告)日：2006-02-09

申请号：PCT/US2004042580

申请日：2004-12-13

Applicant: MOTOROLA INC ,  SIMPSON FLOYD D ,  EMEOTT STEPHEN P ,  WILSON TIMOTHY J ,  SMAVATKUL NATTAVUT ,  SADOT EMEK ,  SHIH SHERMAN

Inventor： SIMPSON FLOYD D ,  EMEOTT STEPHEN P ,  WILSON TIMOTHY J ,  SMAVATKUL NATTAVUT ,  SADOT EMEK ,  SHIH SHERMAN

IPC: G06F1/32 ,  H04L12/28 ,  H04L12/56 ,  H04W28/14 ,  H04W52/02 ,  H04W74/00 ,  H04W74/06 ,  H04W84/12 ,  H04W88/08 ,  C08C17/00

CPC classification number: H04W52/0225 ,  H04W28/14 ,  H04W74/00 ,  H04W74/06 ,  H04W84/12 ,  H04W88/08 ,  Y02D70/00 ,  Y02D70/142 ,  Y02D70/23

Abstract: A mobile station (106) establishes a real time communication link via an access point (102) for carrying voice or other time-sensitive data. A WLAN subsystem (204) of the mobile station is normally kept in a low power state. Upon initiating a communication link the mobile station signals to the access point that uplink poll-based power save delivery mode will be used (614), and the access point reserves resources to assure the necessary quality of service. The mobile station initiates a frame transaction by first powering up the WLAN subsystem (712), acquiring the WLAN channel (407), and transmitting a polling frame. Upon successful receipt of the polling frame the access point prepares to reply with a response frame at an unspecified time within service window, during which time the mobile station maintains the WLAN subsystem power up and ready to receive the response frame. Upon successful receipt of the response frame, the mobile station places the WLAN subsystem back into a low power state.

Abstract translation: 移动台（106）经由用于承载语音或其他时间敏感数据的接入点（102）建立实时通信链路。 移动台的WLAN子系统（204）通常保持在低功率状态。 在发起通信链路时，移动台向接入点发信号通知上行轮询功率节省发送模式将被使用（614），接入点保留资源以确保必要的服务质量。 移动台通过首先加电WLAN子系统（712），获取WLAN信道（407）和发送轮询帧来发起帧事务。 在成功接收到轮询帧后，接入点准备在服务窗口内未指定的时间内用响应帧进行应答，在此期间移动台维持WLAN子系统加电并准备好接收响应帧。 在成功接收到响应帧之后，移动台将WLAN子系统置于低功率状态。

公开(公告)号：WO2005112301A2

公开(公告)日：2005-11-24

申请号：PCT/US2005015469

申请日：2005-05-05

Applicant: MOTOROLA INC ,  WANG HUAI Y ,  CHEN YE ,  EMEOTT STEPHEN P ,  SIMPSON FLOYD D

Inventor： WANG HUAI Y ,  CHEN YE ,  EMEOTT STEPHEN P ,  SIMPSON FLOYD D

IPC: H04B7/212 ,  H04L12/28 ,  H04L12/56

CPC classification number: H04L47/33 ,  H04L47/10 ,  H04L47/14 ,  H04L47/2416 ,  H04L47/30 ,  H04W28/14 ,  H04W52/0232 ,  H04W84/12 ,  H04W88/08 ,  Y02D70/00 ,  Y02D70/142 ,  Y02D70/23

Abstract: A wireless local area network (WLAN) includes an access point (102) and a mobile station (106). The mobile station can operate in a low power mode by shutting down a WLAN subsystem (204) of the mobile station. While the mobile station is in a low power mode, the access point buffers data received at the access point destined for the mobile station (706). The mobile station wakes up to initiate a service period by transmitting a trigger frame to the access point, and identifies a traffic stream to be serviced in the presently initiated service period. The access point begins transmitting response frames to the mobile station, identifying the traffic stream requested by the mobile station, and in at least one response frame, the access point may indicate the buffer status of another traffic stream associated with the mobile station to allow the mobile station to make decisions regarding data retrieval and power save state.

Abstract translation: 无线局域网（WLAN）包括接入点（102）和移动站（106）。 通过关闭移动台的WLAN子系统（204），移动台可以以低功率模式工作。 当移动站处于低功率模式时，接入点缓存在去往移动台的接入点接收的数据（706）。 移动台通过向接入点发送触发帧来唤醒起始服务周期，并且识别当前发起的服务周期中待服务的业务流。 接入点开始向移动台发送响应帧，识别移动台请求的业务流，并且在至少一个响应帧中，接入点可以指示与移动台相关联的另一业务流的缓冲状态，以允许 移动台做出关于数据检索和省电状态的决定。