Using information in a digital certificate to authenticate a network of a wireless access point,申请号US201012652973-传众专利搜索

发明名称	Using information in a digital certificate to authenticate a network of a wireless access point
摘要	A method and apparatus for establishing a wireless connection. A digital certificate having a second name is obtained by a processor unit in response to receiving a selection of a network using a first name broadcast by a wireless access point. A determination is made by the processor unit as to whether the digital certificate is valid. A determination is made by the processor unit as to whether the second name in the digital certificate matches the first name broadcast by the wireless access point. The processor unit establishes the wireless connection to the wireless access point in response to the digital certificate being valid and the second name in the digital certificate matching the first name broadcast by the wireless access point.
申请公布号	US9197420(B2)	申请公布日期	2015.11.24
申请号	US201012652973	申请日期	2010.01.06
申请人	International Business Machines Corporation	发明人	Cross Thomas J.;Dewey David B.;Takahashi Takehiro
分类号	H04L9/32;H04L29/06;H04W12/06;H04W84/12	主分类号	H04L9/32
代理机构	Yee & Associates, P.C.	代理人	Yee & Associates, P.C. ;Ulrich Lisa J.
主权项	1. A method for authenticating a network of a wireless access point, the method comprising: obtaining, by one or more processors, a digital certificate of a server from the wireless access point in response to identifying the network of the wireless access point, the digital certificate comprising a public key for the network, the wireless access point sending and receiving the digital certificate between one or more processors and the server for the authenticating of the network; determining, by one or more processors, whether a digital signature in the digital certificate is signed by a trusted certificate authority; determining, by one or more processors, whether a domain name for the network in the digital certificate matches a service set identifier broadcast by the wireless access point; determining, by one or more processors, whether the network is known to be trusted based on one of user input identifying the domain name for the network in the digital certificate as trusted and presence of the public key for the network in a database of public keys for networks that are known to be trusted; establishing, by one or more processors, a session for a wireless connection to the wireless access point for communicating with the network through the wireless access point in response to a determination that the digital signature in the digital certificate is signed by the trusted certificate authority, a determination that the domain name for the network in the digital certificate matches the service set identifier broadcast by the wireless access point, and a determination that the network is known to be trusted; and blocking, by one or more processors, communications with the network through the wireless access point in response to a determination that the digital signature in the digital certificate is not signed by the trusted certificate authority, a determination that the domain name for the network in the digital certificate does not match the service set identifier broadcast by the wireless access point, and a determination that the network is not known to be trusted.
地址	Armonk NY US