Method and system for distributed, localized authentication in the framework of 802.11

Simple SummaryContent extracted from patent full text and abstract with AI.

This patent describes a method and system for distributed and localized authentication in Wi-Fi (802.11) networks, enabling mobile devices to securely access the Internet through privately owned access points worldwide. Instead of relying on a central authentication server for every login, the system leverages certificate-based authentication with certificate revocation lists (CRLs) that are segmented and distributed among access points and devices. Authentication decisions are made locally at the access point, using current CRL information stored on-site or exchanged through a trusted peer-to-peer network if needed, greatly reducing dependency on central infrastructure and improving resilience and scalability.

Use CasesContent extracted from patent full text and abstract with AI.

• Global public Wi-Fi sharing networks (e.g., community or commercial shared Wi-Fi initiatives)
• Internet access for nomadic users across multiple private hotspots (homes, cafes, businesses)
• Decentralized wireless network authentication in areas with unreliable Internet or server connectivity
• Providing secure guest access to home or office Wi-Fi networks without requiring central authentication servers
• Enabling portable broadband access for users based on mutual sharing models
• Authentication for IoT devices connecting across distributed wireless networks

BenefitsContent extracted from patent full text and abstract with AI.

• Reduces authentication delays and network traffic by performing authentication at the network edge, rather than requiring interaction with a distant central server
• Highly scalable for very large, global networks comprising millions of users and access points
• Improved reliability and resilience, as local authentication avoids issues with central server outages, bottlenecks, or Internet connectivity problems
• Enhances security by supporting certificate-based mutual authentication, reducing risk of breaches compared to password-based systems
• Automatically accommodates nomadic and mobile users, allowing seamless roaming with uniform credentials
• Adaptable to different security and freshness requirements, with mechanisms to verify CRL information via a trusted peer-to-peer social network
• Minimizes user interaction in the authentication process, improving user experience
• Flexible integration into existing Wi-Fi hardware and network infrastructures

Technical Classifications (CPCs)

Inventors & Applicants

Patent Abstract

A global-scale Internet access infrastructure is provided which supports a certificate-based authentication on the edge of the Internet (50) by localizing and distributing the authentication process on the privately owned access points (80, 101-109) of Wi-Fi networks and on mobile devices (70) of nomadic users which desires to get an access to the Internet (50) from anywhere in the world.