公开(公告)号：CA2130396A1

公开(公告)日：1995-06-09

申请号：CA2130396

申请日：1994-08-18

Applicant: IBM

Inventor： BJORKLUND RONALD E ,  BAUCHOT FREDERIC ,  HERZBERG AMIR ,  KUTTEN SHAY ,  WETTERWALD MICHELE M

IPC: G09C1/00 ,  H04L9/08 ,  H04L9/32 ,  H04L12/22

公开(公告)号：CA2130396C

公开(公告)日：1998-03-31

申请号：CA2130396

申请日：1994-08-18

Applicant: IBM

Inventor： BJORKLUND RONALD E ,  BAUCHOT FREDERIC ,  WETTERWALD MICHELE M ,  HERZBERG AMIR ,  KUTTEN SHAY

IPC: G09C1/00 ,  H04L9/08 ,  H04L9/32 ,  H04L12/22

Abstract: This invention deals with a safe key distribution and authentication in a data communication network (e.g. wireless LAN type of network). The network includes a network manager to which are connected, via a LAN wired circuit, one or more base stations. Individual remote stations are, in turn, wirelessly connected to an installed base station. One essential function for achieving security in such a network, is a mechanism to reliably authenticate the exchanges of data between communicating parties. This involves the establishment of session keys, which keys need to be distributed safely to the network components. An original and safe method is provided with this invention for key distribution and authentication during network installation, said method including using the first installed base station for generating a network key and a backbone key, and then using said first installed base station for subsequent remote station or additional base station installations while avoiding communicating said network key.