公开(公告)号：US20240080663A1

公开(公告)日：2024-03-07

申请号：US17902661

申请日：2022-09-02

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Jiajun Huang ,  Xiong Zhang ,  Chao Guo

IPC: H04W12/0431 ,  H04W12/03 ,  H04W12/041

CPC classification number: H04W12/0431 ,  H04W12/03 ,  H04W12/041

Abstract: One aspect provides a system and method for provisioning an access point (AP) in a wireless mesh network. During operation, a controller can obtain a set of published global encryption parameters comprising a master public key, apply an identity-based encryption (IBE) scheme to encrypt a configuration message based at least on the master public key, and transmit the encrypted configuration message to a proxy device, which forwards the encrypted configuration message to the AP. The proxy device is coupled to the controller via a previously established secure communication channel and coupled to the AP via an open communication channel. The AP can decrypt the encrypted configuration message using an AP-specific secret key generated based on a unique identifier of the AP and a master private key corresponding to the master public key, thereby facilitating provisioning of the AP based on the configuration message.