CN100499673C - Virtual terminal temporary media access control address dynamic altering method - Google Patents
Virtual terminal temporary media access control address dynamic altering method Download PDFInfo
- Publication number
- CN100499673C CN100499673C CNB2005101006947A CN200510100694A CN100499673C CN 100499673 C CN100499673 C CN 100499673C CN B2005101006947 A CNB2005101006947 A CN B2005101006947A CN 200510100694 A CN200510100694 A CN 200510100694A CN 100499673 C CN100499673 C CN 100499673C
- Authority
- CN
- China
- Prior art keywords
- access control
- media access
- control address
- temporary media
- terminal equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 62
- 230000004044 response Effects 0.000 claims description 24
- 230000008569 process Effects 0.000 claims description 17
- 238000012790 confirmation Methods 0.000 claims description 10
- 238000012546 transfer Methods 0.000 abstract description 2
- 230000009471 action Effects 0.000 description 9
- 230000000977 initiatory effect Effects 0.000 description 7
- 238000005516 engineering process Methods 0.000 description 6
- 230000007246 mechanism Effects 0.000 description 6
- 239000000523 sample Substances 0.000 description 3
- 241000209094 Oryza Species 0.000 description 2
- 235000007164 Oryza sativa Nutrition 0.000 description 2
- 235000021186 dishes Nutrition 0.000 description 2
- 235000009566 rice Nutrition 0.000 description 2
- 238000013475 authorization Methods 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000002708 enhancing effect Effects 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000035515 penetration Effects 0.000 description 1
Images
Abstract
Setting up a manager for temporary MAC address at access point on network side of WLAN, the method includes steps: before live time of temporary MAC address reaches, the said manager assigns a new temporary MAC address, and sends data including at least real MAC address of the terminal device, relevant instance number of the virtual terminal device, and new temporary MAC address to the virtual terminal device; after receiving the new temporary MAC address, the virtual terminal device starts up counting live time of the new temporary MAC address, and sends acknowledge information to the manager. Through procedure for updating temporary MAC address, the invention implements message transfer safely through WLAN.
Description
Technical field
The present invention relates to a kind of wireless local area network technology, the method that the interim MAC Address of virtual terminal dynamically changes in particular a kind of WLAN (wireless local area network).
Background technology
The WLAN of prior art (WLAN (wireless local area network)) technology because of its in the wireless penetration characteristics, can compare two-forty wired and insert and advantage such as cheap is subjected to the welcome in market deeply, begin to replace cable LAN at present and be widely used in occasions such as family, campus, hotel, enterprise's office, and begin to be widely deployed in public's focus occasion as a kind of WiMAX access technology, offer the access service of public wireless broadband data.
Existing ISO/IEC 8802-11:1999 " telecommunication and information exchange local net and metropolitan area network particular requirement the 11st part between information technology system: WLAN media interviews control (MAC; MediaAccess Control address is the sign of identification LAN node) and physical layer (PHY) standard " is the international standard of WLAN, its content correspondence IEEE 802.11.
China has also issued WLAN standard GB/T 15629.11-2003, and the main difference of itself and international standard is on the security mechanism of access control difference is arranged.In fact, the wlan product of existing market extensive use mainly is the additional standard at IEEE 802.11 of IEEE 802.11 standards project groups issue, comprises IEEE 802.11b, IEEE 802.11g, IEEE 802.11a etc.Wherein, 802.11b, 802.11g work in the 2.4Hz frequency range, and 802.11a is operated in the 5GHz frequency range.802.11b the physical layer rate of supporting can reach 11Mb/s, the physical layer rate that 802.11g, 802.11a support can reach 54Mb/s.At present IEEE 802.11 working out support high-throughput more standard 802.11n to support various real time business and multimedia application better, increase power system capacity.
The wlan system of existing IEEE 802.11 definition, its basic structure as shown in Figure 1, wherein, STA (Station) refers to comprise the terminal equipment of IEEE 802.11 wireless lan interfaces, many in the market mobile phones are all supported wireless lan interfaces, the also built-in wireless lan interfaces of portable machine.Not with the equipment of wireless lan interfaces, can provide wireless lan interfaces for some by the mode of WLAN wireless network card is installed.
AP as shown in Figure 1 (Access Point) is an access point, the base station that is equivalent to the mobile network, its major function is to make STA to communicate with other the STA or the relevant device of cable network, for example: a plurality of STA are linked into WLAN (wireless local area network) of an AP composition and communicate, the STA that is linked into different AP forms a local area network (LAN) and communicates, and the relevant device of STA and cable LAN communicates or the like.Be associated with this services set of STA primordial (BSS) under the AP.
DS (Distribution System) is a dissemination system, and it makes between the different BSS and can form a big local area network (LAN) between BSS and the cable LAN.Wherein portal is meant provides the logical point that MAC service data unit (MSDUs) is transmitted between DS and the cable LAN.
In wlan system, SSID (Service Set Identifier) is used to distinguish different WLAN (wireless local area network).When different BSS (identifying with BSSID) formed a big local area network (LAN) by DS, they had same SSID.
802.11 operation principle of prior art is illustrated as the drive sweep process as shown in Figure 2, and AP periodically sends broadcast frame (Beacon frame or claim beacon frame) on its working channel.When STA is in the drive sweep mode, broadcast listening frame at first, and according to the AP of its management information of carrying to select the candidate to insert.STA also can adopt a kind of mode of active scan to replace drive sweep, be that STA sends Probe Request (request of inquiring after) on respective channels, the AP that works in this channel returns Probe Response (inquiring after response), carry be equal to Beacon or more information.
By scanning, STA can obtain the information of related system, comprises physical layer and media access control layer (MAC) layer relevant parameter and ability support etc., as security parameter RSN IE (Robust SecurityNetwork Information Element).
When STA determines to join corresponding BSS, can carry out one 802.11 authentication process between STA and the AP.Support two class authentications at present: share key authentication (Shared Key Authentication) and open system authentication (Open System authentication).Share between key authentication supposition STA and the AP and have common key, cryptographic algorithm employing WEP (Wireless Equivalent Privacy).The open system authentication does not then comprise any cryptographic algorithm, and it is open being equivalent to system.802.11i be that it has directly adopted the port controlling mechanism of 802.1X at 802.11 enhancings in fail safe, for 802.11, STA is to the port of the corresponding 802.1X of association of AP.In 802.11 authorization phase, 802.11i uses the open system authentication.On principle, the WAPI safety standard of China also is similar to 802.11i, and just the method for authenticating that requires is different with cryptographic algorithm.
After finishing 802.11 authentication processes, just begin to set up the association of STA to AP.At first, STA sends related request, comprises associated safety parameter (as RSN IE) in the related request.AP responds associated response, and is related ID of this associated allocation (Association ID).For RSN, related pairing 802.1X control port will be closed, and just open with installation up to finishing the 802.1X key agreement.
Access authentication procedure after related is exactly the 802.1X/EAP access authentication procedure concerning RSN.The UAM (Universal Access Method) that Wi-Fi Alliance recommends is based on the another kind of access authentication mode of Browser Hijack, be that system forces STA to be connected to a page is inputed user name and encrypted message as the user window, the AS of this page and rear end carries out information interaction, but UAM does not support 802.11i at present.
The interim MAC Address demand of dynamically updating of terminal equipment is exemplified below: for example when the identify label that has a plurality of service providers on the STA (if any mobile phone can support a plurality of SIM card) time, can obtain voice service and obtain data, services from a service provider from another service provider.If the stand-alone terminal that STA can external a plurality of other types also can obtain the WLAN access service by sharing this STA.Need to provide a kind of virtual STA realization mechanism so, can initiate independently access authentication flow process and can distinguish separately independently Business Stream of a plurality of identity on the physics STA to be supported in, virtual STA model as shown in Figure 3, a STA can create according to service needed and fictionalize one or more virtual STA, V-STA1 as shown in Figure 3 and V-STA2 can support one the tunnel or multichannel Business Stream independently like this.Each virtual STA on each physics STA distinguishes a corresponding independently interim MAC Address (T-MAC-ADDR).Virtual STA sets up flow process as shown in Figure 4, has been application protection in applicant's the separate case patent application.The description of above-mentioned technology contents is for conveniently understanding technical solution of the present invention, and wherein the content that may apply for a patent the same period with the present invention is associated with technical solution of the present invention.
After setting up virtual terminal, the interim MAC Address of prior art can not dynamic refresh, and because the characteristics of wireless lan network are that the covering signal is all arranged within the specific limits, attacked easily, therefore the interim MAC Address of virtual terminal equipment can be carried out MAC Address tracking and counterfeit from eat dishes without rice or wine, and carry out attack after counterfeit according to this to the wireless lan network system, cause security damage.Therefore prior art has yet to be improved and developed.
Summary of the invention
The object of the present invention is to provide the update method of interim MAC Address (T-MAC-ADDR) in a kind of WLAN (wireless local area network),, improve fail safe to realize carrying out the method that shielded interim MAC Address dynamically updates.
For achieving the above object, technical scheme of the present invention comprises:
The method of virtual terminal equipment temporary media access control address dynamic altering in a kind of WLAN (wireless local area network), the access point of the network side of described WLAN (wireless local area network) is provided with a temporary media access control address manager, and it may further comprise the steps:
A, before the life span of temporary media access control address arrives, distribute a new temporary media access control address by described temporary media access control address manager, and send to described virtual terminal equipment, wherein carry the true media access control address of this virtual terminal equipment, corresponding virtual terminal device instance number and described new temporary media access control address at least;
After B, described virtual terminal equipment are received this new temporary media access control address, start the life span timing of new temporary media access control address, and send confirmation to described temporary media access control address manager.
Described method, wherein, when described method is initiated by virtual terminal equipment, further comprising the steps of:
A1, send the temporary media access control address update request to the temporary media access control address manager by described virtual terminal equipment, and the instance number of the respective virtual terminal equipment of temporary address is upgraded in the request of carrying, enable timer, wait for that temporary media access control address upgrades response;
B1, described temporary media access control address manager are discerned this renewal operation with the media access control address that is using of this virtual terminal equipment and the instance number of virtual terminal equipment, if still can not receive corresponding temporary media access control address, described timer expiry upgrades response, then retransmit temporary media access control address update request pre-determined number, as new temporary media access control address as described in still can not receiving, then described virtual terminal equipment continues to use old temporary media access control address.
Described method, wherein, described steps A also comprises:
A11, described access point are received the temporary media access control address update request that this virtual terminal equipment sends, and promptly encapsulate forwarded is given described temporary media access control address manager;
The new temporary media access control address encapsulate forwarded that A12, described temporary media access control address manager will produce is given described access point, and starts the life span timing;
A13, described access point upgrade the response encapsulate forwarded with temporary media access control address and give described virtual terminal equipment, wherein carry upgrade successfully, new temporary media access control address, life span parameter.
Described method, wherein, described step B also comprises:
The back sends a temporary media access control address renewal confirmation to described access point new temporary media access control address being upgraded successfully for B11, described virtual terminal equipment, wherein carries old temporary media access control address as parameter;
B12, described access point receive that the temporary media access control address that this virtual terminal equipment sends upgrades confirmation, the new temporary media access control address corresponding with this virtual terminal equipment upgraded down, the destination address that is dealt into 802.11 frames of this virtual terminal equipment is promptly filled out this new temporary media access control address, initiates more new technological process of a new temporary media access control address again before its life span finishes.
Described method, wherein, when described access point upgrades confirmation at the temporary media access control address of not receiving described virtual terminal equipment, repeating said steps A13 pre-determined number, and send 802.11 frames to this virtual terminal equipment as destination address with old temporary media access control address, as not receiving that still corresponding temporary media access control address upgrades confirmation, then continue to use old temporary media access control address, and all restart life span timing old temporary media access control address at described virtual terminal equipment and network side.
Described method, wherein, comprise also among the described step B that this virtual terminal equipment keeps a scheduled time with the corresponding relation of new, old temporary media access control address and virtual terminal device instance number, and the source address of receiving 802.11 frames that described access point sends over fill out be new temporary media access control address the time, remove the corresponding relation of the instance number of old temporary media access control address and virtual terminal equipment.
Described method, wherein, described network side can initiatively distribute new temporary media access control address.
Described method, wherein, also comprise: after described terminal equipment side is initiated temporary media access control address renewal operation requests, if receive the active lastest imformation that described network side sends over, then initiatively stop more new technological process of temporary media access control address that this side initiatively initiates, and respond more new technological process of temporary media access control address that described network side initiates.
Described method, wherein, also comprise: after described network side is initiated temporary media access control address renewal operation requests, upgrade operation requests information if receive the temporary media access control address that terminal equipment side sends over, then do not respond the temporary media access control address renewal operation requests that described terminal equipment side is initiatively initiated.
The interim MAC Address of a kind of virtual terminal provided by the present invention is the method for change dynamically, in WLAN (wireless local area network), by carrying out the renewal process of interim MAC Address, has realized the safe transfer information of WLAN (wireless local area network).
Description of drawings
Fig. 1 is the wlan system schematic diagram of IEEE 802.11 definition of prior art;
Fig. 2 is the operation principle of 802.11 network systems of prior art, and it shows the flow chart of drive sweep;
Fig. 3 is the system schematic that the virtual terminal equipment of prior art inserts WLAN (wireless local area network);
Fig. 4 is the schematic flow sheet of setting up of the virtual terminal equipment of prior art;
Fig. 5 is the schematic network structure of interim MAC Address manager of the present invention;
Fig. 6 is that the interim MAC Address by virtual STA initiation of the inventive method is upgraded schematic flow sheet;
Fig. 7 is that the interim MAC Address by the network side initiation of the inventive method is upgraded schematic flow sheet;
Fig. 8 is the schematic flow sheet that the interim MAC Address by virtual STA one side initiation of the inventive method is upgraded failure;
Fig. 9 is the schematic flow sheet that the interim MAC Address by the network side initiation of the inventive method is upgraded failure.
Embodiment
Below in conjunction with accompanying drawing, will carry out comparatively detailed explanation to each preferred embodiment of the present invention.
What the present invention relates to is the method that the interim MAC Address of virtual terminal dynamically changes in a kind of WLAN (wireless local area network), as shown in Figure 5, its system configuration comprises: an interim MAC Address manager at first is set in system, insert WLAN (wireless local area network) by dissemination system DS, be used for the employed interim MAC Address of WLAN virtual terminal of unified management.Be a standalone feature entity on the interim MAC Address manager logic, help DS to realize interim MAC Address management function with respect to the AP functional entity.
The packet that derives from STA sends to the packet of DS or derives from DS through AP and uses the STA true address through the packet that AP sends to STA in DS; the STA temporary address is only used as the shielded STA of sign on eating dishes without rice or wine; between AP and STA, be used to replace real MAC address; its sphere of action is only in wlan network; in wlan network, use, can not be delivered to external network and client.
Described interim MAC Address of the present invention (T-MAC-ADDR) update method as Fig. 6-shown in Figure 9, just need be upgraded the employed old interim MAC Address of virtual STA by interim MAC Address manager every the scheduled time, promptly dynamically updates.Interim MAC Address more new technological process as shown in Figure 6 and Figure 7, update strategy divides for by virtual STA one side or two kinds of situations of network side initiation:
I. the renewal that virtual STA one side is initiated as shown in Figure 6, may further comprise the steps:
A) the some time before the life span of interim MAC Address arrives, when having crossed 50% such as life span, described virtual STA sends interim MAC Address update request (TMA-UPDATE.request) to interim MAC Address manager, the respective virtual STA instance number of temporary address is upgraded in the request of wherein having carried, and enables timer T
R, wait for interim MAC Address renewal response (TMA-UPDATE.response).Network side is discerned current renewal operation with MAC Address of using and the virtual STA instance number of this virtual STA.If timer T
ROvertimely still can not receive interim MAC Address and upgrade response, will retransmit interim MAC Address update request, if after having sent repeatedly the MAC Address update request altogether, such as three times, still can not receive interim MAC Address and upgrade response, it is unsuccessful then to upgrade operation, and this virtual STA continues to use former interim MAC Address, as shown in Figure 8.
B) after AP receives the interim MAC Address update request that virtual STA sends, encapsulate one " interim MAC Address is upgraded operation requests " and pass to described interim MAC Address manager, wherein carry real MAC address and the corresponding virtual STA instance number of STA.
C) described interim MAC Address manager distributes a new interim MAC Address, will upgrade successfully then, this interim MAC Address and life span be encapsulated in " interim MAC Address is upgraded operation and responded " lining and pass to AP, and the timing of startup life span.
D) AP will encapsulate one " interim MAC Address upgrade response " and return to corresponding STA, wherein carried upgrade successfully, parameters such as new interim MAC Address, life span.
E) described virtual STA upgrades down new interim MAC Address, the source address that is dealt into 802.11 frames of AP is promptly filled out this new interim MAC Address, send one " interim MAC Address is upgraded and confirmed " to AP then and (TMA-UPDATE.confirm), wherein carry old interim MAC Address as parameter.Simultaneously, this STA also keeps the corresponding relation of new, the old interim MAC Address of a period of time and virtual instance number, when the source address of receiving 802.11 frames that AP sends over fill out be new interim MAC Address the time, just can remove the corresponding relation of old interim MAC Address and virtual instance number, guaranteed like this with AP between communicate by letter smoothness when new and old interim MAC Address substitutes.
F) AP receives " interim MAC Address is upgraded and confirmed " that this virtual STA sends, new interim MAC Address that just will be corresponding with this virtual STA is also upgraded down, the destination address that is dealt into 802.11 frames of STA is promptly filled out this new interim MAC Address, can initiate new primary address again and upgrade before life span finishes.
G) if AP does not receive " interim MAC Address is upgraded and confirmed " that this virtual STA sends, can retransmit " interim MAC Address is upgraded response ", such as retransmitting three times, still use old interim MAC Address and send 802.11 frames to this virtual STA as destination address, all do not receive " interim MAC Address is upgraded and confirmed " that virtual STA sends up to the repeating transmission of pre-determined number, will continue to use old interim MAC Address.This moment, virtual STA can send " interim MAC Address upgrade confirm " once more, if all receive the old interim MAC Address of usefulness that AP sends over 802.11 frames as destination address for three times, also can continue to use old interim MAC Address.In this case, AP can notify interim MAC Address manager to reclaim original interim MAC Address of upgrading, and virtual STA and network side all restart the life span timing to old interim MAC Address.
H) if interim MAC Address manager can not distribute new interim MAC Address, use up or arrive available address number maximum such as the address, so interim MAC Address manager can find this virtual sequence number pairing interim MAC Address, to restart its life span timing, encapsulate one " interim MAC Address is upgraded the operation response " then, wherein carry the real MAC address of STA and the parameter of corresponding virtual STA instance number and renewal operation failure and pass to AP.In this case, AP be with in " interim MAC Address upgrade response (the TMA-UPDATE.response) " lining that returns to virtual STA upgrade fail, parameter such as virtual instance number.Virtual STA can restart the life span timing when receiving that having the interim MAC Address of upgrading the failure parameter upgrades response, and continues to use original interim MAC Address.
II. the renewal of network one side initiation:
A, the some time before the life span of interim MAC Address arrives, network one side is initiatively distributed a new interim MAC Address, and encapsulate one " interim MAC Address upgrade operation requests " and pass to virtual STA, wherein directly carry the real MAC address of STA, corresponding virtual STA instance number and by the newly assigned interim MAC Address of interim MAC Address manager, as shown in Figure 7.
B, receive after " interim MAC Address upgrade operation requests ", virtual STA upgrades down new interim MAC Address, the source address that is dealt into 802.11 frames of AP is promptly filled out this new interim MAC Address, send one " interim MAC Address is upgraded and confirmed " to AP then and (TMA-UPDATE.confirm), wherein carry old interim MAC Address as parameter.This STA also keeps the corresponding relation of new, the old interim MAC Address of a period of time and virtual instance number simultaneously.When the source address of receiving 802.11 frames that AP sends over fill out be new interim MAC Address the time, just can remove the corresponding relation of old interim MAC Address and virtual instance number, so guarantee the communication smoothness when new and old interim MAC Address substitutes.
C, AP receive " interim MAC Address is upgraded and confirmed " that this virtual STA sends, new interim MAC Address that just will be corresponding with this virtual STA is also upgraded down, the destination address that is dealt into 802.11 frames of STA is promptly filled out this new interim MAC Address, can initiate new primary address by network side again and upgrade before life span finishes.
If D AP does not receive " interim MAC Address is upgraded and confirmed " that this virtual STA sends, can retransmit " interim MAC Address is upgraded operation requests " pre-determined number, such as retransmitting three times, still it is virtual to this to send 802.11 frames with old interim MAC Address as destination address, carries the real MAC address of STA, corresponding virtual STA instance number simultaneously and by the newly assigned interim MAC Address of interim MAC Address manager.If all do not receive " interim MAC Address is upgraded and confirmed " that virtual STA sends for three times, then can continue to use old interim MAC Address, as shown in Figure 9.This moment, virtual STA can send " interim MAC Address upgrade confirm " once more, if all receive the old interim MAC Address of usefulness that AP sends over 802.11 frames as destination address for three times, also can continue to use old interim MAC Address.In this case, AP can notify interim MAC Address manager to reclaim new interim MAC Address, and STA and manager all restart the life span timing to old interim MAC Address.
It is noted that, exist STA and AP side to send out the possibility of " interim MAC Address is upgraded operation requests " simultaneously mutually in the inventive method, so regulation: the STA side is after sending " interim MAC Address is upgraded operation requests ", if receive " interim MAC Address is upgraded operation requests " that the AP side sends over this moment, then initiatively stop more new technological process of interim MAC Address that own (STA side) initiatively initiate, and the interim MAC Address that only responds the initiation of AP side new technological process more.The AP side if receive " interim MAC Address is upgraded operation requests " that the STA side sends over, does not respond the interim MAC Address renewal operation requests that the STA side is initiatively initiated after sending " interim MAC Address is upgraded operation requests ".Thus, guarantee can not conflict by the request that STA side and AP side are initiated.
The RSNA security mechanism (comprising pre-authentication) of prior art and QoS mechanism all are that MAC Address with STA is as service identifier, so virtual STA carries out still using in the process of handover the interim MAC Address before switching, do not carry out the renewal of interim MAC Address, the flow process that the front is described according to life span is then walked in the renewal after switching.
The renewal of the interim MAC Address in the inventive method occurs over just after the association, and update request and renewal response wait the protection of Action management frames can adopt 802.11w management frames protection mechanism, and present standard does not also provide the management frames protection.
The renewal primitive of the interim MAC Address in the inventive method, redetermination three 802.11MAC service primitive: TMA-UPDATE.request, be used for the temporary address update request; TMA-UPDATE.response is used for the response results that interim MAC Address is upgraded operation; TMA-UPDATE.confirm is used for the affirmation that interim MAC Address is upgraded operation; Their formal definition can for but be not limited to:
TMA-UPDATE.request(
Real Source Address, the real MAC address * of/* STA/
Visual-STA identifier/* be virtual STA instance number */
Visual-STA T-Mac-Address, the newly assigned interim MAC Address of/*, have when only network side sends this parameter */
The life span of this interim MAC Address of Lifetime/*, have when only network side sends this parameter */
)
TMA-UPDATE.response(
Real Source Address, the real MAC address * of/* STA/
Visual-STA identifier ,/* be virtual STA instance number */
Result ,/* upgrades the result of operation, success or failure */
Visual-STA T-Mac-Address, the newly assigned interim MAC Address * of/*/
The life span * of this interim MAC Address of Lifetime/*/
)
TMA-UPDATE.confirm(
Old Visual-STA T-Mac-Address, the old interim MAC Address * of/*/
)
The inventive method also defines three kinds of Action management frame and identifies motion action to interim MAC Address in the above-mentioned service primitive of definition, please refer to table 1 and table 2:
Table 1 CategoryValues, represent the operation of interim MAC Address:
| Name | Value |
| T-MAC-Address?Action | TBD |
| Reserved | TBD |
Table 2 T-Mac-Address Action Field Values, the type of expression Action management frames:
| Action?Field?Value | Description |
| T-MAC-Address?Update?Request | TBD |
| T-MAC-Address?Update?Response | TBD |
| T-MAC-Address?Update?Confirm | TBD |
| Reserved | TBD |
The present invention has realized a kind of update method of the employed interim MAC Address of virtual STA, promptly use the Action management frames to carry out the renewal of interim MAC Address, but comprise simultaneously and use other management frames similarly to upgrade such as Probe frame, Authentication frame.The inventive method has realized a kind of method that shielded interim MAC Address dynamically updates of carrying out, and has improved fail safe.
Should be understood that above-mentioned description at specific embodiment is comparatively concrete, can not therefore think the restriction to scope of patent protection of the present invention, scope of patent protection of the present invention should be as the criterion with claims.
Claims (9)
1, a kind of method of virtual terminal equipment temporary media access control address dynamic altering, the access point of the network side of WLAN (wireless local area network) is provided with a temporary media access control address manager, and it may further comprise the steps:
A, before the life span of temporary media access control address arrives, distribute a new temporary media access control address by described temporary media access control address manager, and send to described virtual terminal equipment, wherein carry the true media access control address of this virtual terminal equipment, corresponding virtual terminal device instance number and described new temporary media access control address at least;
After B, described virtual terminal equipment are received this new temporary media access control address, start the life span timing of new temporary media access control address, and send confirmation to described temporary media access control address manager.
2, method according to claim 1 is characterized in that, and is when described method is initiated by virtual terminal equipment, further comprising the steps of:
A1, send the temporary media access control address update request to the temporary media access control address manager by described virtual terminal equipment, and the instance number of the respective virtual terminal equipment of temporary address is upgraded in the request of carrying, enable timer, wait for that temporary media access control address upgrades response;
B1, described temporary media access control address manager are discerned this renewal operation with the media access control address that is using of this virtual terminal equipment and the instance number of virtual terminal equipment, if still can not receive corresponding temporary media access control address, described timer expiry upgrades response, then retransmit temporary media access control address update request pre-determined number, as new temporary media access control address as described in still can not receiving, then described virtual terminal equipment continues to use old temporary media access control address.
3, method according to claim 2 is characterized in that, described steps A also comprises:
A11, described access point are received the temporary media access control address update request that this virtual terminal equipment sends, and promptly encapsulate forwarded is given described temporary media access control address manager;
The new temporary media access control address encapsulate forwarded that A12, described temporary media access control address manager will produce is given described access point, and starts the life span timing;
A13, described access point upgrade the response encapsulate forwarded with temporary media access control address and give described virtual terminal equipment, wherein carry upgrade successfully, new temporary media access control address, life span parameter.
4, method according to claim 3 is characterized in that, described step B also comprises:
Send a temporary media access control address for described access point after B11, described virtual terminal equipment upgrade new temporary media access control address successfully and upgrade confirmation, wherein carry old temporary media access control address as parameter;
B12, described access point receive that the temporary media access control address that this virtual terminal equipment sends upgrades confirmation, the new temporary media access control address corresponding with this virtual terminal equipment upgraded down, the destination address that is dealt into 802.11 frames of this virtual terminal equipment is promptly filled out this new temporary media access control address, initiates more new technological process of a new temporary media access control address again before its life span finishes.
5, method according to claim 4, it is characterized in that, when described access point upgrades confirmation at the temporary media access control address of not receiving described virtual terminal equipment, repeating said steps A13 pre-determined number, and send 802.11 frames to this virtual terminal equipment as destination address with old temporary media access control address, as not receiving that still corresponding temporary media access control address upgrades confirmation, then continue to use old temporary media access control address, and all restart life span timing old temporary media access control address at described virtual terminal equipment and network side.
6, method according to claim 5, it is characterized in that, comprise also among the described step B that this virtual terminal equipment keeps a scheduled time with the corresponding relation of new, old temporary media access control address and virtual terminal device instance number, and the source address of receiving 802.11 frames that described access point sends over fill out be new temporary media access control address the time, remove the corresponding relation of the instance number of old temporary media access control address and virtual terminal equipment.
7, method according to claim 1 is characterized in that, described network side can initiatively distribute new temporary media access control address.
8, method according to claim 1, it is characterized in that, also comprise: after described terminal equipment side is initiated temporary media access control address renewal operation requests, if receive the active lastest imformation that described network side sends over, then initiatively stop more new technological process of temporary media access control address that this side initiatively initiates, and respond more new technological process of temporary media access control address that described network side initiates.
9, method according to claim 8, it is characterized in that, also comprise: after described network side is initiated temporary media access control address renewal operation requests, upgrade operation requests information if receive the temporary media access control address that terminal equipment side sends over, then do not respond the temporary media access control address renewal operation requests that described terminal equipment side is initiatively initiated.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005101006947A CN100499673C (en) | 2005-10-21 | 2005-10-21 | Virtual terminal temporary media access control address dynamic altering method |
| PCT/CN2006/002187 WO2007022733A1 (en) | 2005-08-25 | 2006-08-25 | A wireless local area network communication method, a local area network access method for a terminal and a local area network system and the apparatus thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005101006947A CN100499673C (en) | 2005-10-21 | 2005-10-21 | Virtual terminal temporary media access control address dynamic altering method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1852330A CN1852330A (en) | 2006-10-25 |
| CN100499673C true CN100499673C (en) | 2009-06-10 |
Family
ID=37133797
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005101006947A Expired - Fee Related CN100499673C (en) | 2005-08-25 | 2005-10-21 | Virtual terminal temporary media access control address dynamic altering method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100499673C (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102571511A (en) * | 2010-12-29 | 2012-07-11 | 中国移动通信集团山东有限公司 | Local area network access control system and method, and server |
| GB2615576A (en) * | 2022-02-11 | 2023-08-16 | Canon Kk | Method for seamlessly changing a value of an extended unique identifier of a non-AP station associated with an AP station |
Families Citing this family (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101123612B (en) * | 2007-08-02 | 2010-04-21 | 华为技术有限公司 | Method and communication device for virtual media capability negotiation |
| FR2932044B1 (en) * | 2008-06-02 | 2010-08-20 | Sagem Comm | METHOD AND DEVICE FOR ALLOCATING MAC ADDRESSES IN A CURRENT COMMUNICATION NETWORK |
| CN103227757B (en) | 2012-08-31 | 2016-12-28 | 杭州华三通信技术有限公司 | A kind of message forwarding method and equipment |
| CN102891902B (en) * | 2012-09-28 | 2015-05-20 | 北京星网锐捷网络技术有限公司 | Media access control address updating method and network equipment |
| US20150281167A1 (en) * | 2014-03-31 | 2015-10-01 | Google Inc. | Specifying a MAC Address Based on Location |
| CN105228144B (en) * | 2014-06-16 | 2019-04-19 | 华为技术有限公司 | Cut-in method, apparatus and system based on temporary MAC address |
| US9538461B1 (en) * | 2015-06-30 | 2017-01-03 | Microsoft Technology Licensing, Llc | Circumventing wireless device spatial tracking based on wireless device identifiers |
| CN107995320A (en) * | 2016-10-27 | 2018-05-04 | 中兴通讯股份有限公司 | A kind of method and apparatus of WIFI equipment communication |
| CN110247992B (en) * | 2018-03-08 | 2022-09-02 | 阿里巴巴集团控股有限公司 | Address updating method and device, terminal and server |
| US11582230B2 (en) * | 2019-05-03 | 2023-02-14 | Zte Corporation | Dynamic MAC address change mechanism for wireless communications |
-
2005
- 2005-10-21 CN CNB2005101006947A patent/CN100499673C/en not_active Expired - Fee Related
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102571511A (en) * | 2010-12-29 | 2012-07-11 | 中国移动通信集团山东有限公司 | Local area network access control system and method, and server |
| GB2615576A (en) * | 2022-02-11 | 2023-08-16 | Canon Kk | Method for seamlessly changing a value of an extended unique identifier of a non-AP station associated with an AP station |
| GB2615576B (en) * | 2022-02-11 | 2024-04-24 | Canon Kk | Method for seamlessly changing a value of an extended unique identifier of a non-AP station associated with an AP station |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1852330A (en) | 2006-10-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100499673C (en) | Virtual terminal temporary media access control address dynamic altering method | |
| CN100403719C (en) | Virtual-link set-up method and apparatus | |
| US8009626B2 (en) | Dynamic temporary MAC address generation in wireless networks | |
| JP4769815B2 (en) | Restricted WLAN access for unknown wireless terminals | |
| CN100493101C (en) | Wireless LAN temporary media access control address dynamic allocation and recovery method | |
| KR100731642B1 (en) | Method and apparatus for indicating service set identifiers to probe for | |
| EP1935143B1 (en) | Virtual lan override in a multiple bssid mode of operation | |
| EP2180640A1 (en) | Ad-hoc network system and method | |
| US20070002811A1 (en) | Mechanism to enable optimized provision of beacon information in WLAN networks | |
| US8547946B2 (en) | Efficient creation of WLAN connections | |
| CN103634794B (en) | By the WLAN terminal personal identification method for integrating Portal | |
| WO2007045147A1 (en) | An accessing network method, system and terminal of the wireless local area network terminal | |
| CN104041098A (en) | Method and apparatus for accelerated link setup between STA and access point of IEEE802.11 network | |
| CN101645814B (en) | Method, equipment and system for enabling access points to access mobile core network | |
| EP3305010B1 (en) | Method of creating and deleting vwlan dynamically in a fixed access network sharing environment | |
| CN103168448A (en) | Method and apparatus for sharing internet connection based on automatic configuration of network interface | |
| US11019483B2 (en) | Access point supporting at least two virtual networks and method performed thereby for communicating with wireless device | |
| CN101160833A (en) | Method of accessing network for wireless LAN terminal, system and terminal thereof | |
| CN100370776C (en) | System and method for implementing multi-user access in LAN terminal | |
| US20140105094A1 (en) | Method and system for secure advertisements and wireless discovery of virtual controller based access point clusters | |
| CN100403717C (en) | Network sharing method in wireless local network | |
| US8958805B2 (en) | Method of managing terminal and controlling interference in small base station | |
| CN104066083B (en) | Method and device for accessing wireless local area network | |
| CA2661050C (en) | Dynamic temporary mac address generation in wireless networks | |
| CN113132983B (en) | Network disconnection reconnection method for intelligent terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20090610 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |