公开(公告)号：US20240381188A1

公开(公告)日：2024-11-14

申请号：US18356962

申请日：2023-07-21

Applicant: Cisco Technology, Inc.

Inventor： Stephen M Orr ,  Indermeet Singh Gandhi ,  Malcolm Muir Smith

IPC: H04W36/00 ,  H04W12/041

Abstract: The present technology provides for efficient re-association of a STA from a first Wi-Fi AP to a second Wi-Fi AP where the respective Wi-Fi APs utilize different security protocols. Since the association and key management (AKM) protocols are different and the cipher suites between generations of Wi-Fi technology, a STA normally would not be able to take advantage of the fast transition process. However, since the present technology allows the STA to derive the security keys in advance, the STA can perform the fast transition and efficiently roam to the Wi-Fi AP that utilizes a different association and key management (AKM) version.

公开(公告)号：US20240381077A1

公开(公告)日：2024-11-14

申请号：US18356494

申请日：2023-07-21

Applicant: Cisco Technology, Inc.

Inventor： Stephen M Orr ,  Malcolm Muir Smith ,  Indermeet Singh Gandhi

IPC: H04W12/0431 ,  H04W12/041

Abstract: The present technology provides a mechanism for more efficient make-before-you-break roaming (MMBR) between devices in the same extended service set (ESS) that utilize a common Pairwise Master Key (PMK). Association and key management (AKM) procedures can be time-consuming, and the present technology provides for a more efficient mechanism by which the Pairwise Transient Key (PTK) can be derived in advance so that the STA can directly associate with a new AP. More specifically, the Robust Security Network Information Element (RSNIE) that is exchanged prior to key derivation and association between the STA and the AP can be enhanced to include information about the security protocols used by other APs in the extended service set (ESS), which can be used to derive respective Pairwise Transient Keys (PTKs) in advance for use with other APs.

公开(公告)号：US20240380576A1

公开(公告)日：2024-11-14

申请号：US18453744

申请日：2023-08-22

Applicant: Cisco Technology, Inc.

Inventor： Stephen M Orr ,  Shree Narasimha Murthy

IPC: H04L9/08 ,  H04L9/40

Abstract: A system and method are provided for generating group encryption keys for a global group and a private group to encrypt wireless messages between an access point and a station. The private group key is based on a unique private group identifier. The global group key and the private group key are sent from the access point to one or more stations via an M3 message as part of a 4-way handshake or as part of a 2-way group key handshake. The global group key is used for encrypted broadcast or multicast messages with an entire group, whereas the private group key is used for encrypted broadcast or multicast messages with a private group that is a subset of the entire group.