| 发明名称 | Method and system for establishing secure connection between stations | ||
| 摘要 | A method and system for establishing a secure connection between stations are disclosed. The method includes that: 1) a switch device receives an inter-station key request packet sent by a first user terminal; 2) the switch device generates an inter-station key, constructs an inter-station key announcement packet and sends it to a second user terminal; 3) the switch device receives an inter-station key announcement response packet sent by the second user terminal; 4) the switch device constructs an inter-station key announcement response packet and sends it to the first user terminal; 5) the switch device receives an inter-station key announcement response packet sent by the first user terminal. The switch device establishes an inter-station key for the two stations which are connected to the switch device directly, by which the embodiments of the present invention ensure the confidentiality and integrality of user data between the stations. | ||
| 申请公布号 | US8831227(B2) | 申请公布日期 | 2014.09.09 |
| 申请号 | US201013516257 | 申请日期 | 2010.05.21 |
| 申请人 | China Iwncomm Co., Ltd. | 发明人 | Ge Li;Cao Jun;Tie Manxia;Li Qin;Lai Xiaolong |
| 分类号 | G06F21/00;H04L9/08;H04L29/06 | 主分类号 | G06F21/00 |
| 代理机构 | Harness, Dickey & Pierce, P.L.C. | 代理人 | Harness, Dickey & Pierce, P.L.C. |
| 主权项 | 1. A method for establishing a security connection between stations, comprising: 1) receiving, by a switch device, an inter-station key request packet sent by a first station, wherein the inter-station key request packet comprises a key announcement identifier KN1 field of the first station and a message identification code MIC1 field, wherein the value of the key announcement identifier KN1 field of the first station is an integral number and an initial value of that is a fixed value, and the value of the KN1 field is increased by 1 or a fixed value for use every time the inter-station key request is performed, and wherein the value of the message identification code MIC1 field is a hash value obtained by the first station performing hash function calculation on the fields in the inter-station key request packet other than the message identification code MIC1 field by using a protocol data key PDK1 in a unicast key shared with the switch device; 2) generating, by the switch device, an inter-station key, constructing an inter-station key announcement packet, and sending the inter-station key announcement packet to a second station; 3) receiving, by the switch device, an inter-station key announcement response packet sent by the second station; 4) constructing, by the switch device, an inter-station key announcement packet and sending the inter-station key announcement packet to the first station; and 5) receiving, by the switch device, an inter-station key announcement response packet sent by the first station. | ||
| 地址 | Xi'an CN | ||