What technology area does this patent fall under?

Primary CPC classification H04W12/02. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue Nov 29 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Wireless access point security for multi-hop networks

US9510190B2 · US · B2

Patent metadata
Field	Value
Publication number	US-9510190-B2
Application number	US-201313766519-A
Country	US
Kind code	B2
Filing date	Feb 13, 2013
Priority date	Jul 6, 2006
Publication date	Nov 29, 2016
Grant date	Nov 29, 2016

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

Security in wireless communication networks that employ relay stations to facilitate communications between base stations and mobile stations is enhanced. In one embodiment, resource information provided to one or more relay stations from a base station or another relay station is encrypted prior to being delivered to the one or more relay stations. Only authorized relay stations are allocated an appropriate key necessary to decrypt the resource information. As such, only appropriate relay stations are able to access and use the resource information to effect communications directly or indirectly between the base stations and the mobile stations. In certain embodiments, the resource information is delivered between the various base and relay stations using either unicast or multicast delivery techniques.

First claim

Opening claim text (preview).

What is claimed is: 1. An access point for use in a multiple hop access point set comprising: at least one wireless communication interface; and a processor associated with the at least one wireless communication interface and adapted to: obtain resource information for communications to be supported by a child access point in the access point set, wherein the child access point provides a communication link between the access point and a mobile station; encrypt the resource information using a first key to create encrypted resource information, wherein the first key is known to the mobile station and unknown to the child access point and provides end-to-end security between the access point and the mobile station; further encrypting the encrypted resource information using a second key to create further encrypted resource information, wherein the second key is known to the child access point and provides per-hop security between the child access point and the mobile station; and initiate delivery of the further encrypted resource information to the child access point via the at least one wireless communication interface, wherein the further encrypted resource information is delivered over a single wireless communications hop to the child access point. 2. The access point of claim 1 wherein the access point is a relay station that is at least one wireless communications hop away from a base station, and the child access point is another relay station. 3. The access point of claim 1 wherein the access point is a base station and the child access point is a relay station that is at least one wireless communications hop away from the base station. 4. The access point of claim 1 wherein the further encrypted resource information is delivered over a plurality of wireless communications hops via at least one relay station to the child access point. 5. The access point of claim 1 wherein to initiate delivery of the further encrypted resource information, the processor is adapted to unicast the further encrypted resource information to the child access point. 6. The access point of claim 5 wherein the processor is further adapted to unicast different encrypted resource information to different child access points. 7. The access point of claim 6 wherein each of the different encrypted resource information for the different child access points is encrypted with a different key. 8. The access point of claim 1 wherein the resource information is used for communications to be supported by a plurality of child access points in the access point set, and to initiate delivery of the further encrypted resource information, the processor is adapted to multicast the encrypted resource information to the plurality of child access points. 9. The access point of claim 1 wherein the resource information comprises resource allocations for each of the plurality of child access points that are maintained in a resource allocation map, and to encrypt the resource information, the processor is further adapted to encrypt the resource allocation map using the first key. 10. The access point of claim 9 wherein the resource allocation map provides resource allocations for access points, and is different from a mobile station resource allocation map providing resource allocations for direct use by the mobile station. 11. The access point of claim 8 wherein the access point and at least the plurality of child access points form a multicast group and the processor is further adapted to: gain entry into a network comprising the access point set; and join the multicast group. 12. The access point of claim 1 wherein the resource information comprises resource allocations to use for the communications to be supported by the child access point. 13. The access point of claim 1 wherein the resource information comprises a mapping of physical layer resources to logical communication channels. 14. The access point of claim 13 wherein the resource information comprises a mapping of physical layer carriers or sub-carriers to logical communication channels or sub-channels. 15. The access point of claim 1 wherein the resource information comprises modulation information to use for the communications to be supported by the child access point. 16. The access point of claim 1 wherein information comprising the resource information is obtained over at least one wireless communication hop from a parent access point. 17. The access point of claim 16 wherein the processor is further adapted to decrypt the information to recover the resource information. 18. The access point of claim 1 wherein to obtain the resource information, the processor is further adapted to internally generate the resource information. 19. The access point of claim 1 wherein the processor is further adapted to effect delivery of encrypted traffic content intended for the mobile station to the child access point, wherein the encrypted traffic content is encrypted using a traffic encryption key that is different from the first key. 20. The access point of claim 19 wherein the processor is further adapted to further encrypt the encrypted traffic content with the first key. 21. An access point for use in a multiple hop access point set comprising: at least one wireless communication interface; and a processor associated with the at least one wireless communication interface and adapted to: receive from a parent access point encrypted resource information for communications, wherein the encrypted resource information is received over a single wireless communications hop from the parent access point, the parent access point residing in the access point set, wherein the encrypted resource is encrypted by a first key known to the access point providing per-hop security between the access point and the mobile station and further encrypted by a second key known to a mobile station and unknown to the access point provides end-to-end security between the parent access point and the mobile station; decrypt a portion of the encrypted resource information using a first key to obtain a portion of resource information; apply the portion of the resource information for communications with at least one of the parent access point, a child access point, and the mobile station via the at least one wireless communication interface. 22. The access point of claim 21 wherein the access point is a relay station that is at least one wireless communications hop away from a base station. 23. The access point of claim 21 wherein the encrypted resource information is received via a plurality of wireless communications hops from the parent access point. 24. The access point of claim 21 wherein the encrypted resource information is received via unicast delivery from the parent access point. 25. The access point of claim 21 wherein the encrypted resource information is received via multicast delivery. 26. The access point of claim 25 wherein the portion of the resource information comprises resource allocations for each of a plurality of access points that are maintained in a resource allocation map, and to decrypt the portion of the resource information, the processor is further adapted to decrypt the resource allocation map using the first key. 27. The access point of claim 26 wherein the resource allocation map provides resource allocations for access points,

Assignees

Apple Inc

Inventors

Classifications

H04W28/16
Central resource management; Negotiation of resources or communication parameters, e.g. negotiating bandwidth or QoS [Quality of Service] · CPC title
H04W12/02Primary
Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII] · CPC title
H04W88/08
Access point devices · CPC title
H04L63/0478
applying multiple layers of encryption, e.g. nested tunnels or encrypting the content with a first key and then with at least a second key (cryptographic mechanisms or cryptographic arrangements using a plurality of keys or algorithms H04L9/14) · CPC title
H04L63/0464
using hop-by-hop encryption, i.e. wherein an intermediate entity decrypts the information and re-encrypts it before forwarding it · CPC title

Patent family

Related publications grouped by family.

View patent family 38894943

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US9510190B2 cover?: Security in wireless communication networks that employ relay stations to facilitate communications between base stations and mobile stations is enhanced. In one embodiment, resource information provided to one or more relay stations from a base station or another relay station is encrypted prior to being delivered to the one or more relay stations. Only authorized relay stations are allocated …
Who is the assignee on this patent?: Apple Inc
What technology area does this patent fall under?: Primary CPC classification H04W12/02. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue Nov 29 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).