| 摘要 |
Methods, systems, and computer program instructions for providing location- independent packet routing and secure access in a wireless networking environment (such as that encountered within a building), enabling client devices to travel seamlessly within the environment. The secure access techniques provide user-centric authentication and allow policy-driven packe t filtering. A client authentication module (1405) is integrated into the clie nt (1400), and a server authentication module (1425) is integrated into the access point (1420). The client authentication module communicates (1415) wi th the server authentication module to provide the user's authentication credentials (e.g. user name and password). Once the user is authenticated (1445), by means of an authentication server (1450) using techniques of the prior art, the server authentication module and the client authentication module negotiate a session key to enable link-level encryption. This link- level encryption takes advantage of the encryption capabilities embedded in the client and access point hardware (1410, 1430).
|
