Method for implementing virtual LAN based on WAPI system in WLAN

A virtual local area network and wireless local area network technology, applied in the field of virtual local area network based on the WAPI system, can solve the problems of inability to cope, poor flexibility, and difficulty in forming effective product competitiveness, and achieve the effect of convenient change and simple realization

Active Publication Date: 2007-01-31
CHINA IWNCOMM
View PDF0 Cites 12 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This scheme is based on MAC address group isolation. Although it does not involve the support requirements for the underlying chip, it still has several major defects: first, the security of this scheme is poor, and it cannot deal with some malicious connections, such as "MAC address spoofing" " and other attacks; secondly, the flexibility of this scheme is poor. Since the management MAC address needs to be manually input, the configuration management of the AP will bring a heavy management workload to the administrator. More importantly: the AP in the telecom operation The device manager cannot determine the user's MAC address in advance, so this method cannot be adopted by telecom operators; moreover, the technical threshold of this solution is low, and it is difficult to form effective competitiveness of the product

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for implementing virtual LAN based on WAPI system in WLAN
  • Method for implementing virtual LAN based on WAPI system in WLAN
  • Method for implementing virtual LAN based on WAPI system in WLAN

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0053] The flow process of the method of the present invention is as follows figure 1 As shown, the specific description of the process is as described above, and will not be repeated here.

[0054] see figure 2 , using the process of MT accessing WLAN AP stage to illustrate the establishment process of WLAN VLAN:

[0055] Before accessing the WLAN network, the MT must first apply for and install the MT certificate issued by the certificate issuer and containing the UGID. The first step for MT to access the WLAN network is to associate the MT to the AP, and then complete the MT authentication (called authentication in the standard) according to the WAPI authentication process specified in GB15629.11 between the MT and the AP. During this process, the AP can simultaneously Obtain the MAC address of the MT. If the authentication fails, the AP disassociates with the MT. Otherwise, the AP resolves (by reading the MT certificate) to obtain the UGID, and then establishes and sav...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relate to WLAN field, a method for implementing WAPI system-based virtual LAN (VLAN) in WLAN. And it is based on GB15629.11-specified WAPI safe structure, adopts user certificate according with GB15629.11, and on the basis that GB15629.11-specified user certificate possesses unused field and supports user custom, sets mapping relation attribute of mobile terminal (MT) certificate, MAC address of MT, user group ID (UGID) and VLAN ID, and wireless access point (AP) checks and sets the attribute and transfers or discards corresponding data according to the provisions of the attribute, thus implementing a function that WLAN supports VLAN.

Description

technical field [0001] The invention relates to the field of wireless local area network, in particular to a method for realizing virtual local area network based on WAPI system in the wireless local area network. Background technique [0002] For the convenience of description, some abbreviations in this technical field are adopted below, and their meanings are as follows: [0003] AP (Access Point): wireless access point [0004] AS (Authentication Server): authentication server [0005] MAC (Medium Access Control): Media Access Control [0006] MT (Mobile Terminal): mobile terminal [0007] Multiple-SSID: multiple service set identifiers [0008] SSID (Service Set IDentifier): service set identifier [0009] UGID (User Group IDentifier): User Group ID [0010] VLAN (Virtual Local Area Network): virtual local area network [0011] VLAN ID (VLAN IDentifier): virtual local area network identification [0012] WAPI (WLAN Authentication and Privacy Infrastructure): Wir...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/28H04L12/46
Inventor 郭宏曹军李轶军
Owner CHINA IWNCOMM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap