WO2007022733A1 - Procede de communications relatif a un reseau local sans fil, procede d'acces au reseau local pour un terminal et un systeme de reseau local, et dispositif correspondant - Google Patents

Procede de communications relatif a un reseau local sans fil, procede d'acces au reseau local pour un terminal et un systeme de reseau local, et dispositif correspondant Download PDF

Info

Publication number
WO2007022733A1
WO2007022733A1 PCT/CN2006/002187 CN2006002187W WO2007022733A1 WO 2007022733 A1 WO2007022733 A1 WO 2007022733A1 CN 2006002187 W CN2006002187 W CN 2006002187W WO 2007022733 A1 WO2007022733 A1 WO 2007022733A1
Authority
WO
WIPO (PCT)
Prior art keywords
access control
temporary
local area
area network
control address
Prior art date
Application number
PCT/CN2006/002187
Other languages
English (en)
Chinese (zh)
Inventor
Zhonghui Yao
Liangyao Mo
Wen'guang Lan
Weifeng Chen
Original Assignee
Huawei Technologies Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from CNB2005100930552A external-priority patent/CN100370776C/zh
Priority claimed from CNB2005101006947A external-priority patent/CN100499673C/zh
Priority claimed from CNB2005101006928A external-priority patent/CN100493101C/zh
Application filed by Huawei Technologies Co., Ltd. filed Critical Huawei Technologies Co., Ltd.
Publication of WO2007022733A1 publication Critical patent/WO2007022733A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/26Network addressing or numbering for mobility support
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2101/00Indexing scheme associated with group H04L61/00
    • H04L2101/60Types of network addresses
    • H04L2101/618Details of network addresses
    • H04L2101/622Layer-2 addresses, e.g. medium access control [MAC] addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W74/00Wireless channel access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Definitions

  • the present invention relates to the field of network communication technologies, and in particular, to a wireless local area network communication method, a terminal access local area network method, and a local area network system and apparatus.
  • WLAN Wireless Local Area Network
  • WLAN technology is well received by the market for its wireless advantages, high-speed access to comparable wired networks, and low cost.
  • WLAN technology has been widely used in homes, campuses, hotels, corporate offices, etc., and has begun to provide public wireless broadband data access services as a wireless broadband access technology.
  • the WLAN 110 includes stations (STA, Station) 111, 112 accessed through an access point (AP, Access Point) 120, and associated with the STAs 111 and 112 under the same AP 120 constitutes a basic service set. (BSS);
  • the wireless local area network 130 includes STAs 131, 132 accessed through the access point 140, and the STAs 131, 132 associated with the same AP 140 constitute another BSS;
  • a distribution system (DS, Distribution System) 150 is used to make different The BSS can form a large LAN.
  • the DS 150 communicates with the wired LAN 800 via the Portal 810, making the aforementioned large LAN and wired LAN 800 a larger LAN.
  • the so-called STA refers to a terminal device that includes a wireless local area network interface.
  • a wireless local area network interface many mobile phones in the market support a wireless local area network interface, and the portable device also has a built-in wireless local area network interface.
  • the STA when the STA communicates with the network side, it is based on its real MAC (Medie Access Control) address information, because for the wireless local area network, the network side device cannot ensure that Trusted, and the characteristics of the WLAN network are that there are coverage signals within a certain range, which is easy to be attacked. Therefore, the prior art has drawbacks: the MAC address of the STA may be acquired by an untrusted device or Counterfeit, and cyber attacks on this. Therefore, the security protection mechanism of the WLAN needs to be further improved.
  • MAC Medium Access Control
  • the invention provides a wireless local area network communication method, a terminal accessing local area network method and a local area network system and device, which can improve the security performance of the wireless local area network.
  • a wireless local area network communication method includes: a wireless local area network terminal obtains a temporary medium access control address allocated by a network side; and the wireless local area network terminal performs information based on the temporary medium access control address and the network side Interaction.
  • the wireless local area network terminal obtains the temporary media access control address allocated by the network side, including:
  • the network side After receiving the request message, the network side allocates temporary media access control address information to the wireless local area network terminal, and sends the temporary media access control address information to the wireless local area network terminal.
  • the sending to the wireless local area network terminal is:
  • the access point on the network side sends a temporary media access control address allocation response message to the wireless local area network terminal, where the temporary media access control address information is carried.
  • the temporary media access control address allocation request message and the temporary media access control address allocation response message are encapsulated into an operation management frame or a sounding frame.
  • the temporary media access control address allocation request message carries the identifier information of the virtual terminal that needs to allocate the temporary media access control address
  • the temporary media access control address allocation response message further carries identifier information of the virtual terminal corresponding to the temporary media access control address information.
  • the allocating temporary media access control address information to the wireless local area network terminal is performed by the temporary media access control address manager on the network side.
  • the wireless local area network terminal performs information interaction with the network side based on the temporary medium access control address, and includes:
  • the wireless local area network terminal utilizes the temporary media access control address and network
  • the authentication is performed between the sides, and the association with the network side is established based on the temporary media access control address after the authentication is passed.
  • the wireless local area network terminal performs information interaction with the network side based on the temporary medium access control address, and includes:
  • the service flow above the medium access control layer requests the media access control layer to perform data transmission using the real media access control address of the wireless local area network terminal;
  • the medium access control layer of the wireless local area network terminal and the medium access control layer of the network side replace the real media access control address of the wireless local area network terminal with the temporary medium access of the wireless local area network terminal when transmitting data to the opposite end Control address
  • the media access control layer and the network side media access control layer of the WLAN terminal restore the temporary media access control address to the real state of the WLAN terminal when receiving the data of the temporary media access control address.
  • the media access control address is transmitted to the local media access control layer.
  • the wireless local area network terminal performs information interaction with the network side based on the temporary medium access control address, including: requesting media access control by using a temporary medium access control address on the service flow above the medium access control layer
  • the layer performs data transfer.
  • a method for accessing a local area network by a wireless local area network terminal includes:
  • a wireless local area terminal creates a virtual terminal
  • the virtual terminal performs information interaction with the network side based on the temporary media access control address.
  • the WLAN terminal creates a virtual terminal, including: allocating corresponding virtual terminal identification information for each virtual terminal, and establishing an access policy when each virtual terminal accesses the local area network according to the service requirement.
  • the allocating the corresponding temporary media access control address obtained from the network side to the virtual terminal includes: The WLAN terminal sends a temporary media access control address allocation request message to the network side, where the identifier information of the virtual terminal that needs to allocate the temporary media access control address is carried;
  • the network side After receiving the request message, the network side allocates corresponding temporary media access control address information to the virtual terminal, and sends the information to the wireless local area network terminal.
  • the sending to the wireless local area network terminal is:
  • the access point on the network side sends a temporary media access control address allocation response message to the wireless local area network terminal, where the temporary media access control address information corresponding to the identification information of the virtual terminal is carried.
  • the Temporary Medium Access Control Address Assignment Request message and the Temporary Media Access Control Address Assignment Response message are encapsulated as an operation management frame or a sounding frame.
  • the timeout retransmission timer is started; if the media access control temporary address allocation request is sent a predetermined number of times, the network is still not received. The side response, delete the virtual terminal.
  • the allocating temporary media access control address information to the wireless local area network terminal includes:
  • the access point of the network side After receiving the temporary media access control address allocation request of the wireless local area network terminal, the access point of the network side records the real media access control address of the wireless local area network terminal and the corresponding virtual terminal identifier; and assigns the temporary address And requesting the temporary media access control address generation request to be sent to the temporary media access control address manager of the network side, where the real media access control address of the wireless local area network terminal and the corresponding virtual terminal identifier are carried;
  • the temporary media access control address manager allocates a temporary media access control address; and encapsulates the temporary media access control address and the lifetime time in a temporary media access control address generation response to the access point, and starts The time to live of the temporary media access control address is counted.
  • the virtual terminal starts a timer according to the received information, and is used to time the survival time of the used temporary media access control address.
  • the method further includes: if the temporary media access control address manager is unable to allocate a temporary media access control address, carrying a parameter of the allocation failure in the returned message response; the wireless local area network terminal does not apply for the temporary media connection When the control address is entered, the virtual terminal is deleted.
  • the wireless local area network terminal performs information interaction with the network side based on the temporary medium access control address, and includes:
  • the virtual terminal performs authentication by using the temporary media access control address and the network side, and establishes an association between the virtual terminal and the network side based on the temporary media access control address after the authentication is passed.
  • the wireless local area network terminal performs information interaction with the network side based on the temporary medium access control address, and includes:
  • the service flow above the medium access control layer requests the media access control layer to perform data transmission using the real media access control address of the wireless local area network terminal;
  • the media access control layer of the WLAN terminal and the media access control layer of the network side replace the real media access control address of the WLAN terminal with the temporary media connection of the corresponding virtual terminal when transmitting data to the peer end Into the control address;
  • the media access control layer and the network side media access control layer of the WLAN terminal restore the temporary media access control address of the virtual terminal to the WLAN when receiving the data of the temporary media access control address.
  • the real media access control address of the terminal is transmitted to the local media access control layer;
  • the wireless local area network terminal performs information interaction with the network side based on the temporary medium access control address, and includes:
  • the traffic flow above the media access control layer requests the media access control layer to perform data transfer using the temporary media access control address.
  • the replacing the real media access control address of the wireless local area network terminal with the temporary media access control address of the virtual terminal and restoring the temporary media access control address of the virtual terminal to the real media access control of the wireless local area network terminal The address is done in a virtual port manner and/or in a service-aware manner.
  • the media access control layer on the network side is located at an access point on the network side.
  • the method further includes: before the time-to-live of the temporary media access control address arrives, the temporary media access control address manager allocates a new temporary media access control address, and sends the new temporary media access control address to the virtual terminal, where at least a real media access control address, a corresponding virtual terminal identifier, and the new temporary media access control address of the WLAN terminal;
  • the virtual terminal After receiving the new temporary media access control address, the virtual terminal starts a time-to-live time of the new temporary media access control address, and sends an acknowledgement message to the access point on the network side.
  • the method further includes:
  • the virtual terminal sends a temporary media access control address update request to the network side, and carries an identifier of the corresponding virtual terminal that requests to update the temporary address;
  • the access point of the network side After receiving the temporary media access control address update request sent by the virtual terminal, the access point of the network side is forwarded to the temporary media access control address manager; the temporary media access control address manager is The virtual terminal allocates a new temporary medium access control address; encapsulates a new temporary medium access control address address response to the access point, and starts a time-to-live timing;
  • the access point encapsulation is forwarded to the virtual terminal, where the update is successful, a new temporary media access control address, and a time-to-live parameter are carried.
  • the method further includes: the wireless local area network terminal retains a correspondence between the new and old temporary media access control addresses and the virtual terminal identifiers for a predetermined time; and receiving the source address of the data frame sent by the access point is When the new temporary media access control address is used, the correspondence between the old temporary media access control address and the identifier of the virtual terminal is cleared.
  • the method further includes: after the wireless local area network terminal initiates the temporary media access control address update operation request, if the active update information sent by the network side is received, the temporary media access initiated by the local side is actively stopped. Controlling the address update process, and responding to the temporary media access control address update process initiated by the network side.
  • the method further includes: the temporary media access control address manager assigning a new temporary media access control address to be actively performed, and sending, by the access point, a temporary media access control address update operation request to the virtual terminal If received by the wireless LAN terminal.
  • the temporary media access control address update operation request information comes in, and does not respond to the temporary media access control address update operation request initiated by the wireless local area network terminal.
  • the method further includes: the temporary media access control address release request is used between the access point and the virtual terminal to identify the release of the temporary media access control address, and is managed by the temporary media access control address on the network side. The temporary media access control address is recycled.
  • a local area network system includes a wireless local area network terminal and an access point, and further includes: a temporary medium access control address manager, configured to allocate a temporary medium access control address to the wireless local area network terminal;
  • the access point is configured to send the temporary media access control address to a wireless local area network terminal, where the wireless local area network terminal is configured to obtain the temporary media access control address, based on the temporary media access control address and the network side Perform information interaction.
  • the WLAN terminal includes a virtual terminal service unit, configured to create a virtual terminal, and map service flows of different users to different virtual terminals;
  • the access point includes a virtual terminal service unit, configured to use different users.
  • the service flow is mapped to different virtual terminals; the virtual terminal is assigned the temporary media access control address.
  • the WLAN terminal and the access point each include a media access control layer, configured to replace the real media access control address of the WLAN terminal with the temporary media access control address when transmitting data to the peer end
  • the temporary media access control address is restored to the real media access control address of the wireless local area network terminal, and is transmitted to the local media access control layer.
  • a local area network system includes a wireless local area network terminal and an access point, and the access point is configured to send, to a wireless local area network terminal, a temporary medium access control address allocated to the wireless local area network terminal.
  • the wireless local area network terminal is configured to obtain the temporary medium access control address, and perform information interaction with the network side based on the temporary medium access control address.
  • a wireless local area network terminal includes: a temporary medium access control address obtaining unit, configured to obtain a temporary medium access control address assigned by the wireless local area network system; and an information interaction unit, And performing information interaction with the network side based on the temporary media access control address.
  • the method further includes: a virtual terminal service unit, configured to create a virtual terminal, and map different service flows to different virtual terminals; the virtual terminals have respective temporary media access control addresses.
  • the information interaction unit is a media access control layer, configured to replace the real media access control address of the wireless local area network terminal with the temporary media access control address when the data is transmitted to the opposite end;
  • the temporary media access control address is restored to the real media access control address of the wireless local area network terminal, and is transmitted to the local media access control layer.
  • an access point includes: a temporary media access control address sending unit, configured to send, to a wireless local area network terminal, a temporary media access control address allocated by the wireless local area network system; the information interaction unit, And performing information interaction with the wireless local area network terminal based on the temporary medium access control address.
  • the method further includes: a virtual terminal service unit, configured to map traffic flows of different users to different virtual terminals corresponding to the wireless local area network terminal.
  • a virtual terminal service unit configured to map traffic flows of different users to different virtual terminals corresponding to the wireless local area network terminal.
  • the information interaction unit is a media access control layer, configured to replace the real media access control address of the wireless local area network terminal with the temporary media access control address when the data is transmitted to the opposite end;
  • the temporary media access control address is restored to the real media access control address of the wireless local area network terminal, and is transmitted to the local media access control layer.
  • a temporary media access control address manager includes:
  • An interface unit configured to implement information interaction between the manager and an access point of the wireless local area network
  • An address allocation unit configured to allocate a temporary media access control address to the wireless local area network terminal.
  • the method further includes:
  • An address maintenance unit is used to maintain the status of the temporary media access control address on the network side.
  • the address allocation unit is disposed in the address maintenance unit.
  • the present invention performs temporary media access control address allocation through the network side, thereby improving the security performance of the wireless local area network. The reason is that the temporary media access control address is uniformly managed by the network side, and the communication is performed based on the temporary media access control address, so that the real media access control address of the terminal is not easily acquired by other devices, thereby reducing The risk of counterfeiting real media access control addresses.
  • the virtual terminal is created in the wireless local area network terminal and assigned a temporary medium access control address uniformly managed by the network side, so that multi-user/multi-service access can be realized.
  • the services are ensured, so that one wireless LAN terminal can initiate the access authentication process with multiple service providers at the same time, and form multiple independent channels.
  • the business flow separately carries out the corresponding business, and therefore, the user's demand for multi-service using the same terminal can be well satisfied.
  • the secure transmission of the wireless local area network information is further realized by performing the process of updating the temporary medium access control address.
  • the temporary media access control address in a wireless local area network system can be normalized by the dynamic allocation and recovery mechanism of the temporary media access control address, the management of the temporary media access control address manager, and the virtual terminal state machine mechanism. Distribution and recycling, and achieve a safe and stable operation of the system.
  • FIG. 1 is a schematic diagram of a basic structure of a prior art WLAN system
  • FIG. 2 is a flowchart of an embodiment of a wireless local area network communication method according to the present invention
  • FIG. 3 is a schematic diagram of a local area network system including a virtual terminal in the present invention
  • FIG. 4 is a diagram showing association between a virtual STA and an AP in an embodiment of the present invention
  • FIG. 5 is a schematic diagram of an embodiment of implementing multi-user/multi-service access in the present invention
  • FIG. 6 is a flowchart of a virtual STA transmitting data to an AP in an embodiment of the present invention
  • FIG. 7 is an AP direction in an embodiment of the present invention.
  • FIG. 8 is a schematic diagram of an embodiment of implementing multi-user/multi-service access in the present invention
  • FIG. Figure 9 is a schematic illustration of an embodiment of a local area network system of the present invention.
  • Figure 10 is a flow chart showing the success of the allocation of the temporary MAC address in the embodiment of the present invention
  • Figure 11 is a flow chart showing the failure of the allocation of the temporary MAC address in the embodiment of the present invention
  • Figure 12 is a virtual terminal in the embodiment of the present invention
  • FIG. 13 is a schematic diagram of a virtual terminal active state in an embodiment of the present invention
  • FIG. 14 is a flowchart of temporary MAC address recovery initiated by a STA side in an embodiment of the present invention
  • 15 is a flow chart of temporary MAC address recovery initiated by a network side in an embodiment of the present invention.
  • 16 is a schematic diagram of a temporary MAC address state transition process in a temporary MAC address manager in an embodiment of the present invention
  • 17 is a flow chart showing successful address update initiated by a virtual STA side in an embodiment of the present invention.
  • 19 is a flow chart showing successful address update initiated by a network side in an embodiment of the present invention.
  • Figure 20 is a flow chart showing the failure of address update initiated by the network side in the embodiment of the present invention.
  • the wireless local area network terminal communicates with the network side based on the temporary MAC address to enhance the security of the wireless local area network.
  • an embodiment of a method for wireless local area network communication includes: Step 210: A STA acquires a temporary MAC address (TMA) allocated by a network side.
  • the specific process of allocating a temporary MAC address includes: the STA sends a temporary MAC address allocation request (TAM-ALLOCATE, request) to the AP. If the network side successfully allocates the temporary MAC address, the AP returns the temporary MAC address assigned by the network side to the STA in the temporary MAC address allocation response (TMA-ALLOCATE, response) and returns it to the STA.
  • TAM-ALLOCATE temporary MAC address allocation request
  • the temporary address allocation request and the temporary address allocation response may be carried by an Action management frame or a Probe frame or other management frame.
  • the present invention further provides an update mechanism for temporary MAC addresses.
  • the update process initiated by the STA-side includes:
  • the STA sends a temporary MAC address update request (TMA-UPDATE. Request) to the network side.
  • TMA-UPDATE. Request temporary MAC address update request
  • the network side identifies the update operation with the MAC address that the STA is using; assigns a new temporary MAC address to it.
  • the AP returns the temporary MAC address update response (TAM-UPDATE. response) to the corresponding STA, which carries the parameters such as the update success, the new temporary MAC address, and the lifetime.
  • TAM-UPDATE. response temporary MAC address update response
  • the STA After updating the new temporary MAC address, the STA sends a temporary MAC address update confirmation (TMA-UPDATE. confirm) to the AP, which carries the old temporary MAC address as a parameter.
  • TMA-UPDATE. confirm a temporary MAC address update confirmation
  • the AP receives the temporary MAC address update confirmation sent by the STA, and updates the new temporary MAC address corresponding to the STA, that is, the destination address of the data frame sent to the STA later is filled with the new temporary MAC address.
  • the STA fills in the new temporary MAC address with the source address of the data frame sent to the AP later.
  • the STA can also associate the new and old temporary MAC addresses. For a period of time, when the source address of the data frame sent by the AP is filled with the new temporary MAC address, the old temporary MAC address is cleared, and the smooth communication between the communication with the AP and the new and old temporary MAC address is guaranteed.
  • the network side fails to allocate a new temporary MAC address, for example, the address is exhausted or the maximum number of available addresses is reached, the network side searches for the temporary MAC address corresponding to the STA, and restarts its time-to-live timing.
  • the AP carries the parameters such as the update failure in the temporary MAC address update response returned to the STA.
  • the STA receives the temporary MAC address update response with the update failure parameter, it will restart the time-to-live time and continue to use the original temporary MAC address.
  • the update process initiated by the network side includes:
  • the network side actively allocates a new temporary MAC address, and the AP sends a temporary MAC address update operation request to the STA, where the real MAC address of the STA is carried and has been temporarily The newly assigned temporary MAC address of the MAC address manager.
  • the STA After receiving the temporary MAC address update operation request, the STA updates the new temporary MAC address, that is, the source address of the data frame sent to the AP later will be filled with a new temporary MAC address; the temporary MAC address update confirmation is sent to the AP, which carries the old The temporary MAC address is used as a parameter.
  • the STA can also keep new and old temporary MAC addresses for a period of time.
  • the old temporary MAC address is cleared, thus ensuring smooth communication when the new and old temporary MAC addresses are replaced.
  • the AP receives the temporary MAC address update confirmation sent by the STA, and updates the new temporary MAC address corresponding to the STA, that is, the target address of the data frame sent to the STA later fills the new temporary MAC address until the end of the survival time.
  • a new address update will be initiated by the network side.
  • the STA may receive the temporary MAC address update operation sent by the AP at this time after issuing the temporary MAC address update operation request. Request, then take the initiative to stop The STA initiates a temporary MAC address update procedure, and only responds to the temporary MAC address update procedure initiated by the AP. After receiving the temporary MAC address update operation request, the AP does not respond to the temporary MAC address update operation request initiated by the STA if it receives the temporary MAC address update operation request sent by the STA. Thus, it is guaranteed that the requests initiated by the STA and the AP do not conflict.
  • the RSNA security mechanism (including pre-authentication) and the QoS mechanism use the STA's MAC address as the service identifier. Therefore, the virtual STA still uses the temporary MAC address before the handover and does not perform the temporary MAC address update during the handover. Update after switching.
  • the present invention further provides a temporary MAC address recovery mechanism, including the release of the temporary MAC address on the STA side and the recovery of the temporary MAC address on the network side.
  • the AP and the STA identify the release of the temporary address by using a temporary MAC address release request, and the temporary MAC address is recovered by the network side.
  • the STA sends a temporary MAC address release request to the AP when the STA initiates the request; the AP feeds back the temporary MAC address release response to the STA.
  • the AP When the release request is initiated by the network side, the AP sends a temporary MAC address release request to the STA; the STA feeds back the temporary MAC address release response to the AP.
  • the STA requests to update the temporary MAC address, and the network side updates the new temporary MAC address for the STA, the original temporary MAC address will be recovered.
  • the communication between the STA and the network side based on the temporary MAC address includes: the wireless local area network terminal uses the temporary medium access control address to authenticate with the network side, and after the authentication is passed, based on the temporary The media access control address establishes an association with the network side. And the access authentication process after the association.
  • the communication between the STA and the network side based on the temporary MAC address further includes: requesting the MAC layer to perform data transmission by using the real MAC address of the STA in the service flow above the MAC layer;
  • the MAC layer and the network side MAC layer of the STA When receiving the data of the temporary MAC address, the MAC layer and the network side MAC layer of the STA restore the temporary MAC address to the real MAC address of the STA and transmit it to the local MAC layer.
  • the MAC layer on the network side may be located on an AP on the network side.
  • an AP can be classified into a thin AP and a fat AP.
  • the above MAC layer can be transferred to other devices on the network side.
  • the present invention further provides a mechanism for a STA to implement multi-user/multi-service access in a wireless local area network, where a STA allocates a temporary MAC address to the STA and the STA uses the temporary MAC to communicate with the network side.
  • the side requests multiple temporary MAC addresses, initiates multiple identity independent access authentication processes based on different temporary MAC addresses, and can distinguish independent service flows, that is, independently carry out services to meet physical STAs and simultaneously support multiple users. /Multi-service access needs.
  • the association between the STA and the AP is equivalent to a virtual port, and the data communication between the STA and the AP is established on the association.
  • the virtual port is directly mapped to the 802.1X port.
  • one STA is divided into a plurality of different identities; each identity is assigned a temporary MAC address (T-MAC-ADDR).
  • T-MAC-ADDR temporary MAC address
  • one physical STA is equivalent to being divided into Multiple virtual terminals (virtual STAs) corresponding to different identities, that is, multiple virtual STAs are created, and different virtual STAs can serve different clients or applications, and each virtual STA can be accessed according to different clients or applications.
  • Requirements such as security, QoS, network interworking, etc., respectively establish different associations with APs to implement different access policies.
  • Different virtual STAs enter in the air interface MAC address, thus enabling isolation of different services. As shown in FIG.
  • the STA 310 is emulated as two virtual STAs: a first virtual STA (V-STA) 311 and a second virtual STA 312, which are independent members of the STA 320 as a basic service set BSS, and are connected and distributed through the AP 330.
  • V-STA virtual STA
  • BSS basic service set
  • a terminal such as a STA that provides a virtual STA and a network-side MAC layer entity (for example, an AP) can create one or more virtual STAs for each STA, and can set the maximum allowable number of virtual STAs on each STA.
  • a network-side MAC layer entity for example, an AP
  • Each virtual STA on the network side and the STA sets a corresponding state machine, and the state machine is used to record the current state of the virtual STA as: no authentication is not associated, authentication is not associated, or authentication is associated.
  • Step 41 After the STA completes the scanning and selects the target AP to be accessed, the STA can create a corresponding virtual STA according to the requirements of the application. When initially created, the STA assigns a virtual STA identifier (such as an instance number) to each virtual STA.
  • a virtual STA identifier such as an instance number
  • the STA can create multiple virtual STAs at a time according to application requirements.
  • Each virtual STA corresponds to different access policy requirements, such as security requirements, QoS requirements, and network interworking requirements, to control independent authentication and association of each virtual STA. process.
  • the system can limit the number of virtual STAs on the same STA.
  • Step 42 After the STA creates a virtual STA, it needs to allocate a temporary MAC address for the STA request. At this time, the STA sends a temporary address allocation request message to the AP, which carries the identification information of the corresponding virtual STA that requests the temporary address.
  • the temporary MAC address of the virtual STA is allocated by the network side to prevent conflict of temporary address usage, and the identifier information of the virtual STA corresponds to the temporary MAC address.
  • Step 43 After receiving the temporary address allocation request of the STA, the AP allocates a corresponding number of temporary MAC addresses (T-MAC-ADDR) to the STA according to the requested virtual STA, and returns the STA to the STA through the temporary address allocation response message.
  • T-MAC-ADDR temporary MAC addresses
  • the system can set the upper limit of the virtual STAs that each STA can support.
  • the number of temporary MAC addresses allocated by the AP cannot exceed the upper limit set by the system.
  • Step 44 After the STA obtains the corresponding T-MAC-ADDR from the system, the address is delivered to the virtual STA created by the STA.
  • the state machine of the corresponding virtual STA on the STA enters its initial state: unauthenticated, unassociated.
  • Step 45, Step 46, Step 47 The virtual STA can start the subsequent authentication process and association process with the system.
  • the state machine of the virtual STA is authenticated and unassociated. After the association is successfully established, the state machine of the virtual STA is authenticated and associated.
  • the virtual STA can perform access authentication and service data transmission through the AP.
  • the MAC frame between the virtual STA and the network side is about the same, except that when the peer communicates with the peer, the part corresponding to the STA MAC address of the frame header is replaced by the temporary MAC address T-MAC-ADDR of the virtual STA. .
  • the temporary address assignment request and the temporary address assignment response can be carried by an Action management frame or by a Probe frame or other management frame.
  • the MAC layers of the STA 510 and the AP 520 respectively have virtual STA service units 511 and 521 for creating a first virtual STA 531 and a second virtual STA 532, and mapping different clients or services.
  • information exchange is performed according to each assigned temporary MAC address to implement multi-user/multi-service access.
  • the client can be on the same device as the STA 510 or on different devices. Different clients have different user identities, require authentication with different authentication servers, and different peer devices (the other end) #1 551 and the other end #2 552) communicate.
  • the processing of the two clients includes: (1) The identity authentication process between client #1 541 and AS#1 561, the traffic flow between client #1 541 and the other end #1 551 is based on 802.11 association #1;
  • the same STA can establish multiple associations with the AP, for example, each virtual STA establishes an association with the AP.
  • Different associations for the same STA have different temporary MAC addresses.
  • the MAC layer TA Transmitter Address
  • the MAC layer RA Receiveiver Address
  • the association of relevant access policy parameters can be performed during the association, such as security, different associations also mean that different virtual STAs have their own independent 802.11 MAC layer access policies.
  • the scope of the T-MAC-ADDR can be allocated within the WLAN network within the WLAN network.
  • the MAC layer service requests the MAC layer service, it can directly communicate based on the STA temporary MAC address T-MAC-ADDR, or can be unknown to the T-MAC-ADDR, and directly communicates based on the original MAC address of the LAN terminal.
  • the MAC layer may provide the virtual STA service by means of a virtual port and/or a service-aware manner.
  • the virtual port mode means that different clients access the STA MAC layer from different virtual ports, and the STA MAC needs to complete mapping of different virtual ports to different virtual STAs (selecting the corresponding T-MAC-ADDR as the transport address). Data packets from the other end of the client and the AS are accessed from different virtual ports.
  • the AP needs to map different virtual ports to different virtual STAs (select the corresponding T-MAC-ADDR as the receiving address). .
  • the service-aware mode refers to the MAC layer to deeply analyze the data packets it transmits, and the corresponding protocol layer information such as the source IP address, the destination IP address, the external gateway address, the VLAN TAG (virtual LAN tag), and the like.
  • the service provided by the virtual STA is bound to the information.
  • the process of sending data from the virtual STA to the AP is as shown in FIG. 6, which specifically includes: - Step 61:
  • the client in the local area network terminal initiates a data request, that is, the STA side MAC layer user initiates the MAC layer service primitive MA-UNITDATA.request (data request).
  • the MA-UNITDATA.request primitive includes the data to be transmitted and the SA (Source Address) and the DA (Destination Address) that receives the data message.
  • Step 62 After the virtual STA mechanism is used, the STA MAC layer needs to select the corresponding T-MAC-ADDR instead of the SA carried in the primitive as the TA value of the air interface MAC data packet.
  • Step 63 Send the data packet after the address replacement process to the AP.
  • Step 71 The process of sending data to the virtual STA by the AP is as follows: Step 71: The AP side determines that a data request message needs to be sent to the local area network terminal. Generally, the MA-UNITDATA.request primitive includes the request to transmit. The data and data packets are sent by the SA and the DA receiving the data message.
  • Step 72 After the virtual STA mechanism is adopted, the AP MAC layer needs to select the corresponding T-MAC-ADDR to replace the DA carried in the primitive as the RA value of the air interface MAC data packet.
  • Step 73 The AP sends the packet after the address replacement process to the STA.
  • Step 74 After receiving the 802.11 data packet, the STA replaces the T-MAC-ADDR with the actual MAC address of the LAN terminal. The DA will revert to the actual STA MAC address.
  • the MAC layer of the STA or the AP only needs to perform mapping of the actual MAC address of the STA and the T-MAC-ADDR.
  • the 802.11 MAC layer service primitive interface is not changed, and the above process works normally. The following describes two possible ways to implement the above address translation to support the normal operation of multiple virtual STAs on the same STA:
  • the primitive directly includes the virtual port identifier corresponding to the virtual STA.
  • the virtual port identification number corresponds to the corresponding virtual STA, or the value of the virtual port number is the identification number or instance number of the corresponding virtual STA.
  • Source Address / source address
  • Routing information / routing information
  • Visual-port/* is the newly added virtual port number */
  • Visual-port /* is the newly added virtual port number */
  • Visual-port/* is the newly added virtual port number */
  • This method does not modify the MAC layer service primitives.
  • the MAC layer needs to deeply analyze the data packets it transmits, the corresponding protocol layer information such as source IP address, destination IP address, external gateway address, VLAN TAG (virtual LAN label), etc., and the services provided by the virtual STA. These information bindings.
  • protocol layer information such as source IP address, destination IP address, external gateway address, VLAN TAG (virtual LAN label), etc.
  • VLAN TAG virtual LAN label
  • the object that the virtual STA directly communicates can only be the gateway.
  • the DA destination address
  • SA source address
  • the MAC address of the gateway is associated with the virtual STA
  • the 802.11 MAC layer can complete the conversion between the real MAC address of the STA and the corresponding T-MAC-ADDR by using the associated information.
  • Identification that is, when creating a virtual STA, assign a different VLAN TAG.
  • the 802.11 MAC can determine the corresponding virtual STA according to the VLAN TAG in the data packet to be delivered.
  • the implementation of the present invention enables an STA to initiate an access authentication process with multiple service providers at the same time. And separately forming multiple independent service flows to carry out corresponding services respectively, for example, obtaining voice services from one service provider and providing data services from another service provider, and establishing multiple virtual STAs respectively to establish and correspondingly represent clients.
  • the association of the service provider to ensure the development of the service therefore, the present invention can In order to meet the needs of users to use the same terminal to carry out multi-services.
  • the STA 810 can initiate an access authentication process with the AS 881 and the AS 882 at the same time, and form two independent service flows STA 810-TOE 891 and STA 810-TOE, respectively. 892, obtaining a voice service from one service provider and providing a data service from another service provider.
  • the STA 810 can also externally connect multiple other types of independent terminals to share the STA to obtain WLAN access services.
  • a temporary MAC address manager 920 is provided on the distribution system DS 910 in the existing wireless local area network system for uniformly managing the temporary MAC address of the terminal in a WLAN. Assign, update, and recycle.
  • the temporary MAC address manager 920 is logically a separate functional entity relative to the AP 930, helping the DS 910 implement temporary MAC address management functions.
  • the data packet originating from the STA 940 is sent to the DS 910 via the AP 930 or the data packet originating from the DS 910 is sent to the STA 940 via the AP 930.
  • the real address of the STA can be used in the DS 910.
  • the STA temporary address is used between the AP 930 and the STA 940 to replace the real MAC address, and is used to identify the protected STA on the air interface.
  • the temporary MAC address manager 920 can be divided into: an interface unit, configured to implement information interaction with the AP 930, and an address allocation unit, configured to allocate a temporary media access control address to the wireless local area network terminal.
  • the temporary MAC address manager 920 may further include an address maintenance unit for maintaining the state of the temporary medium access control address on the network side.
  • the address allocation unit may be disposed in the address maintenance unit.
  • the address maintenance unit is used to maintain the status of the temporary MAC address.
  • a temporary MAC address (T-MAC-ADDR) allocation process includes:
  • Step 101 The STA sends a temporary address allocation request (TAM-ALLOCATE. request) to the AP, where the corresponding virtual STA identifier that requires the temporary address is required to be allocated, and the timeout retransmission timer T R is started. If the TMA-ALLOCATE.request is issued three times, for example, the temporary address allocation response is still not received. ( TMA-ALLOCATE.response ) , the virtual STA will be deleted. Since a virtual STA needs a temporary MAC address, it is possible for one physical STA to apply for multiple different temporary MAC addresses.
  • Step 102 After receiving the temporary address allocation request of the STA, the AP records the real MAC address of the STA and the corresponding virtual STA identifier, and encapsulates the temporary address allocation request into a temporary MAC address generation request, and the Layer 2 frame is transmitted to the temporary MAC address.
  • the manager which carries the real MAC address of the STA and the corresponding virtual STA identifier.
  • Step 103 The temporary MAC address manager allocates a temporary MAC address and sets it to the "in use” state. Then, the temporary MAC address and the lifetime are encapsulated in a temporary MAC address generation response and transmitted to the AP, and the lifetime of the temporary MAC address is started.
  • Step 104 The AP encapsulates the result in a temporary MAC address allocation response (TMA-ALLOCATE.response) and returns it to the STA.
  • TMA-ALLOCATE.response temporary MAC address allocation response
  • the STA After the STA creates a virtual STA, it replaces the real MAC address of the STA with the temporary MAC address according to the needs of the service, and exchanges information with the AP in the air.
  • the virtual STA device also starts a time-scheduled timer according to the received information, and is used for synchronously recording the temporary MAC address lifetime with the temporary MAC address manager.
  • steps 1101 and 1102 are substantially the same as steps 101 and 102 in FIG.
  • Step 1103 If the temporary MAC address manager cannot allocate a temporary MAC address in the foregoing process, the parameter that fails to be assigned is carried in the returned message response.
  • Step 1104 The AP carries the parameter of the allocation failure in the returned message response.
  • the STA does not apply for a temporary MAC address, and the virtual STA corresponding to the virtual STA ID fails to be created, and the process ends.
  • the temporary MAC address recovery mechanism of the present invention enables the temporary MAC address manager on the DS to maintain the assigned temporary MAC address.
  • the recycling mechanism includes the release of the temporary MAC address on the virtual STA side and the recovery of the temporary MAC address on the network side.
  • an idle Idle state is added to the existing state machine base, indicating that the virtual STA has not been created yet and the TMA has not been allocated, and the original State 1, State 2, and State 3 are collectively referred to as the virtual terminal device active VSTA. Active status. As shown in Figure 13, it indicates that the virtual STA has been created and the TMA has been assigned.
  • the state machine is described using a two-stage flow diagram, where level 0 is the Idle and VSTA Active state, and level 1 is a subdivision of the VSTA Active state, including State 1, State 2, State 3.
  • the state machine of the virtual STA When the state machine of the virtual STA returns from the VSTA Active state to the Idle state, it may change from State 3 to the Idle state, or may return the Idle state directly from the State 1 to indicate that the virtual STA does not need the temporary MAC address.
  • a temporary MAC address release request is used between the ingress point and the virtual terminal device to identify the release of the temporary address, and the temporary MAC address is recovered by the temporary MAC address manager on the network side.
  • Step 1401 the STA sends a temporary MAC address release request to the AP; Step 1402, the AP forwards the processing to the temporary MAC address manager; Step 1403, The STA feeds back the temporary MAC address release response.
  • Step 1404 The physical STA deletes the corresponding virtual STA.
  • Step 1501 The AP sends a temporary MAC address release request to the STA;
  • Step 1502 Send a process to the temporary MAC address manager;
  • Step 1503 The STA deletes the corresponding virtual STA.
  • step 1504 the temporary MAC address release response is fed back to the AP.
  • the temporary MAC address manager updates the virtual STA with a new temporary MAC address and reclaims the original temporary MAC address.
  • the temporary MAC address state conversion process in the temporary MAC address manager includes: in response to the temporary MAC address allocation, if the temporary MAC address manager has a temporary MAC address in the "waiting for allocation" state, This temporary MAC address is set to the "allocated, in use” state, assigned to the virtual STA; if not, a new temporary MAC address within the DS range is newly generated, set to "allocated, in use, state, redistributed” Give the corresponding virtual STA.
  • the temporary MAC address manager may immediately allocate the temporary MAC address to other virtual STAs, thereby causing the same temporary MAC address to be used by the two virtual STAs, causing communication failure of the two virtual STAs. .
  • the reclaimed temporary MAC address can be set to "initialization, state, a predetermined time, for example, after one minute is set to "wait for allocation, state, and then there is a chance to be reassigned.”
  • a new 802.11 MAC service primitive may be employed, for example:
  • Visual-STA identifier /* is the virtual STA identifier */
  • Visual-STA identifier , /* is the virtual STA identifier */
  • Action management frames can be used to allocate and reclaim temporary MAC addresses. Refer to Table 1 and Table 2:
  • the old temporary MAC address used by the virtual STA is updated by the temporary MAC address manager every predetermined time, that is, dynamically updated.
  • Step 1701 The virtual STA sends a temporary MAC address update request (TMA-UPDATE.request) to the temporary MAC address manager at a time before the survival time of the temporary MAC address arrives, for example, when the lifetime exceeds 50%. , carrying the corresponding virtual STA identifier requesting to update the temporary address, and enabling the timer T R to wait for the temporary MAC address update response (TMA-UPDATE.response).
  • TMA-UPDATE.request a temporary MAC address update request
  • the network side identifies the update operation with the MAC address being used and the virtual STA identifier of the virtual STA. If the timer T R expires and the temporary MAC address update response is not received, the temporary MAC address update request is resent, and if the MAC address update request is sent multiple times, for example, three times, the temporary MAC address update response is still not received. , the update operation is unsuccessful, and the virtual STA continues to use the original temporary MAC address.
  • Step 1702 after receiving the temporary MAC address update request sent by the virtual STA, the AP encapsulates a "temporary MAC address update operation request" and sends the "temporary MAC address update request" to the temporary MAC address manager, where the real MAC address of the STA and the corresponding virtual STA are carried. logo.
  • Step 1703 the temporary MAC address manager allocates a new temporary MAC address. Address, and then the update is successful, the temporary MAC address and time-to-live are encapsulated in the "temporary MAC address update operation response" and transmitted to the AP, and the time-to-live time is started.
  • Step 1704 The AP encapsulates a "temporary MAC address update response, and returns the response to the corresponding STA, which carries parameters such as successful update, new temporary MAC address, and lifetime.
  • Step 1705 the virtual STA updates the new temporary MAC address, that is, the source address of the 802.11 frame sent to the AP later, fills in the new temporary MAC address, and then sends a "temporary MAC address update confirmation" to the AP (TMA).
  • TMA temporary MAC address update confirmation
  • the STA also retains the correspondence between the new and old temporary MAC addresses and the virtual identifiers for a period of time.
  • the old temporary MAC address and the virtual address are cleared.
  • Correspondence of the identification so as to ensure the smoothness of the communication with the AP when the new and old temporary MAC addresses are replaced.
  • the new temporary MAC address corresponding to the virtual STA is also updated, that is, the target address of the 802.11 frame sent to the STA is added to the new temporary.
  • the MAC address will initiate a new address update until the end of the lifetime.
  • the AP does not receive the "temporary MAC address update confirmation" sent by the virtual STA, it will resend the "temporary MAC address update response", for example, resend three times, and still send the 802.11 frame with the old temporary MAC address as the destination address.
  • the virtual STA does not receive the "temporary MAC address update confirmation" sent by the virtual STA until a predetermined number of retransmissions, and continues to use the old temporary MAC address. At this time, the virtual STA will send the "temporary MAC address update confirmation" again. If the 802.11 frame with the old temporary MAC address sent by the AP as the destination address is received three times, the old temporary MAC address will continue to be used. In this case, the AP notifies the temporary MAC address manager to reclaim the previously updated temporary MAC address, and both the virtual STA and the network side restart the time-to-live timing for the old temporary MAC address.
  • steps 1801 and 1802 are substantially identical to steps 1701 and 1702 of Figure 17.
  • Step 1803 if the temporary MAC address manager cannot allocate a new temporary MAC address Address, such as the address is exhausted or the maximum number of available addresses is reached, then the temporary MAC address manager will find the temporary MAC address corresponding to the virtual identifier, will restart its time-to-live time, and then encapsulate a "temporary MAC address update operation response. ", the parameters carried in it are passed to the AP.
  • Step 1804 The AP carries an update failure, a virtual identifier, and the like in a "temporary MAC address update response (TMA-UPDATE. response)" returned to the virtual STA.
  • TMA-UPDATE. response temporary MAC address update response
  • the virtual STA When the virtual STA receives the temporary MAC address update response with the update failure parameter, it will restart the time-to-live time and continue to use the original temporary MAC address.
  • the network-side initiated updates include:
  • Step 1901 The network side actively allocates a new temporary MAC address and encapsulates a "temporary MAC address update operation request, and transmits it to the virtual STA, where the STA is directly carried, at a certain time before the survival time of the temporary MAC address arrives.
  • Step 1902 after receiving the "temporary MAC address update operation request, the virtual STA updates the new temporary MAC address, that is, the source address of the 802.11 frame sent to the AP later is filled in with the new temporary MAC address, and then the AP is given to the AP.
  • Send a "temporary MAC address update confirmation" (TMA-UPDATE.confirm), which carries the old temporary MAC address as a parameter.
  • the STA also retains the correspondence between the new and old temporary MAC addresses and the virtual identifiers for a period of time.
  • the correspondence between the old temporary MAC address and the virtual identifier is cleared, so that the communication is smooth when the new and old temporary MAC addresses are replaced.
  • the new temporary MAC address corresponding to the virtual STA is also updated, that is, the target address of the 802.11 frame sent to the STA is added to the new temporary.
  • the MAC address will initiate a new address update by the network side until the end of the lifetime.
  • the network-side initiated updates include:
  • Step 2001 at a certain time before the survival time of the temporary MAC address arrives, The network side actively allocates a new temporary MAC address, and encapsulates a "temporary MAC address update operation request, which is transmitted to the virtual STA, which directly carries the real MAC address of the STA, the corresponding virtual STA identifier, and has been managed by the temporary MAC address.
  • the newly assigned temporary MAC address at a certain time before the survival time of the temporary MAC address arrives.
  • step 2002 if the AP does not receive the "temporary MAC address update confirmation" sent by the virtual STA, the temporary MAC address update operation request is resent, the predetermined number of times, for example, retransmission three times, and the old temporary MAC address is still used as the The target address sends the 802.11 frame to the virtual, and carries the real MAC address of the STA, the corresponding virtual STA instance number, and the temporary MAC address that has been newly allocated by the temporary MAC address manager. If the virtual STA is not received three times, "Temporary MAC address update confirmation" will continue to use the old temporary MAC address.
  • the virtual STA will send "temporary MAC address update confirmation again, if, after three times, the old temporary MAC address sent by the AP is received as the target.
  • the 802.11 frame of the address will also continue to use the old temporary MAC address.
  • the AP notifies the temporary MAC address manager to reclaim the new temporary MAC address, and both the STA and the manager restart the time-to-live timing of the old temporary MAC address.
  • the present invention can adopt a new temporary MAC address update primitive: TMA-UPDATE. request, for temporary address update request; TMA-UPDATE. response, response result for temporary MAC address update operation; TMA-UPDATE. confirm, Used for confirmation of temporary MAC address update operations.
  • the content of the update primitive may include:
  • Visual-STA identifier /* is the virtual STA identifier */
  • the real MAC address of the STA*/ Visual-STA identifier , /* is the virtual STA ID*/
  • the present invention can use three Action Management Frame Types to identify the action on the temporary MAC address. Please refer to Table 3 and Table 4:
  • the present invention can also use other management frames for similar updates.
  • the embodiment of the wireless local area network terminal of the present invention includes: a temporary medium access control address obtaining unit, configured to obtain a temporary medium access control address allocated by the network side; and an information interaction unit, configured to use the temporary medium access control address and The information exchange between the network side and the virtual terminal is used to create a virtual terminal, and the service flows of different users are mapped to different virtual terminals. Virtual terminals have their respective temporary media access control locations Address.
  • the information interaction unit is a media access control layer, configured to replace a real media access control address of the wireless local area network terminal with a temporary medium access control address when transmitting data to the opposite end;
  • the temporary media access control address is restored to the real media access control address of the wireless local area network terminal, and is transmitted to the local media access control layer.
  • the embodiment of the access point of the present invention includes: a temporary medium access control address sending unit, configured to send, to the wireless local area network terminal, a temporary medium access control address allocated by the wireless local area network system to the terminal; and an information interaction unit, configured to The temporary media access control address exchanges information with the wireless local area network terminal.
  • the virtual terminal service unit is configured to map service flows of different users to different virtual terminals.
  • the information interaction unit is a media access control layer, configured to replace a real media access control address of the wireless local area network terminal with a temporary medium access control address when transmitting data to the opposite end;
  • the temporary media access control address is restored to the real media access control address of the wireless local area network terminal, and is transmitted to the local media access control layer.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Databases & Information Systems (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Procédé de communications relatif à un réseau local sans fil, procédé d'accès au réseau local pour un terminal et un système de réseau local, et dispositif correspondant. Le côté réseau attribue au terminal de réseau local sans fil (210) une adresse de contrôle d'accès au support temporaire (220), et le côté réseau et le terminal conduisent une interaction d'information sur la base de cette adresse (220). Dans ces conditions, on peut aussi assurer l'accès multi-utilisateur/multi-service via un terminal de réseau local sans fil. Comme l'attribution des adresses du type considéré s'effectue du côté réseau, on peut considérablement améliorer la performance de sécurité du réseau local sans fil.
PCT/CN2006/002187 2005-08-25 2006-08-25 Procede de communications relatif a un reseau local sans fil, procede d'acces au reseau local pour un terminal et un systeme de reseau local, et dispositif correspondant WO2007022733A1 (fr)

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
CN200510093055.2 2005-08-25
CNB2005100930552A CN100370776C (zh) 2005-08-25 2005-08-25 局域网终端实现多用户接入的***及方法
CNB2005101006947A CN100499673C (zh) 2005-10-21 2005-10-21 虚拟终端临时媒体访问控制地址动态变更的方法
CNB2005101006928A CN100493101C (zh) 2005-10-21 2005-10-21 无线局域网临时媒体访问控制地址的动态分配和回收方法
CN200510100694.7 2005-10-21
CN200510100692.8 2005-10-21

Publications (1)

Publication Number Publication Date
WO2007022733A1 true WO2007022733A1 (fr) 2007-03-01

Family

ID=37771243

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2006/002187 WO2007022733A1 (fr) 2005-08-25 2006-08-25 Procede de communications relatif a un reseau local sans fil, procede d'acces au reseau local pour un terminal et un systeme de reseau local, et dispositif correspondant

Country Status (1)

Country Link
WO (1) WO2007022733A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110366173A (zh) * 2019-08-23 2019-10-22 中国联合网络通信集团有限公司 一种实现终端设备接入网络的方法和网关

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1411205A (zh) * 2001-09-26 2003-04-16 板式会社东芝 无线基站及其计算机程序产品
WO2003061203A1 (fr) * 2002-01-18 2003-07-24 Nokia Corporation Adressage dans des reseaux locaux sans fil
CN1489339A (zh) * 2002-07-06 2004-04-14 ���ǵ�����ʽ���� 保证用户匿名的方法及其无线局域网***

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1411205A (zh) * 2001-09-26 2003-04-16 板式会社东芝 无线基站及其计算机程序产品
WO2003061203A1 (fr) * 2002-01-18 2003-07-24 Nokia Corporation Adressage dans des reseaux locaux sans fil
CN1489339A (zh) * 2002-07-06 2004-04-14 ���ǵ�����ʽ���� 保证用户匿名的方法及其无线局域网***

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110366173A (zh) * 2019-08-23 2019-10-22 中国联合网络通信集团有限公司 一种实现终端设备接入网络的方法和网关

Similar Documents

Publication Publication Date Title
EP1303947B1 (fr) Terminal mobile et procédé pour assurer une connexion de réseau à réseau
KR100999761B1 (ko) Wlan 상호접속에서의 서비스 및 어드레스 관리 시스템및 방법
EP2477428B1 (fr) Procédé de communication anonyme, procédé d'enregistrement, procédé et système d'envoi et de réception d'informations
EP1881660B1 (fr) Procédé, appareil et système pour accès sans fil
US20060088020A1 (en) Restricted WLAN profile for unknown wireless terminal
US20070189168A1 (en) Method and Apparatus for Establishing a Virtual Link, Wireless Lan, and Method for Transmitting Data
WO2008148357A1 (fr) Système et procédé de communication, passerelle de station de base domestique et serveur de station de base domestique
JP2004513538A (ja) 近距離無線ネットワーク環境におけるロケーション非依存型パケットルーティング及びセキュア・アクセス
JPH11331276A (ja) ネットワークのための登録方法
WO2011032481A1 (fr) Procédé de communication, procédé de transmission de message de données durant le processus de communication et nœud de communication correspondant
JP2000022758A (ja) ネットワークにおけるインターワーキング機能選択システム
JPH11275156A (ja) ピア・ツー・ピア プロトコルサーバを用いた通信
JP2010213357A (ja) 2つの無線ネットワークのインターフェースを確立する方法
JP2002538689A (ja) パーソナルアクセス通信システム(pacs)のインターネット増補無線ポート制御装置(rpcu)
CN100370776C (zh) 局域网终端实现多用户接入的***及方法
WO2011032462A1 (fr) Procédé d'envoi et de réception de données, système et routeur correspondants
WO2011050676A1 (fr) Procédé de communication anonyme, procédé d'enregistrement et d'annulation, et noeud d'accès
WO2009140902A1 (fr) Procédé, système et femtopasserelle pour mettre en œuvre une communication entre un réseau à femtocellules et un macroréseau
KR100684322B1 (ko) 이동 통신 시스템에서 ip 관리 메시지를 위한 연결 설정방법 및 이를 이용한 ip 주소 할당 방법
WO2011044807A1 (fr) Procédé de communication et d'enregistrement de communication anonyme et système émetteur-récepteur de message de données
WO2011120365A1 (fr) Procédé et système d'établissement de connexion entre terminaux multiconnectés
WO2011032478A1 (fr) Procédé, dispositif et terminal pour obtenir un identifiant de terminal
WO2005057321A2 (fr) Procede de demande, de generation et de distribution de cle de chiffrement de trafic specifique de services dans un systeme internet portable sans fil, son appareil et procede de configuration de protocole associe
WO2007022733A1 (fr) Procede de communications relatif a un reseau local sans fil, procede d'acces au reseau local pour un terminal et un systeme de reseau local, et dispositif correspondant
US20200137726A1 (en) Communications device and communication method

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 06775505

Country of ref document: EP

Kind code of ref document: A1