公开(公告)号：US09253110B2

公开(公告)日：2016-02-02

申请号：US13327631

申请日：2011-12-15

Applicant: Jin-Meng Ho

Inventor： Jin-Meng Ho

IPC: H04L12/873 ,  H04W72/04 ,  H04W74/06 ,  H04W74/08

CPC classification number: H04W72/0406 ,  H04L47/522 ,  H04W72/048 ,  H04W74/06 ,  H04W74/08 ,  H04W74/0808

Abstract: Embodiments of the invention provide a best-effort scheduled access method and system that enable nodes to request, and a hub to assign, tentative, but not committed, scheduled allocations, referred to as unscheduled bilink allocations, in which data traffic is transferred between the nodes and the hub on a best-effort basis. The tentative allocations will be available if the network of the hub still has enough bandwidth, but will be shifted or reduced otherwise. This invention unifies tentative and committed scheduled allocations in the same access framework, thereby facilitating access scheduling and offering access flexibility.

Abstract translation: 本发明的实施例提供了使得节点能够请求的尽力而为的调度访问方法和系统，以及集线器分配暂定但未承诺的调度分配，称为非调度的分组分配，其中数据业务在 节点和集线器尽力而为。 如果集线器的网络仍然具有足够的带宽，则暂时分配将可用，否则将被移位或减少。 本发明将暂定和定期的分配分配统一在相同的访问框架中，从而便于访问调度并提供访问灵活性。

公开(公告)号：US08705336B2

公开(公告)日：2014-04-22

申请号：US11537384

申请日：2006-09-29

Applicant: Jin-Meng Ho ,  Anuj Batra ,  Srinivas Lingam

Inventor： Jin-Meng Ho ,  Anuj Batra ,  Srinivas Lingam

IPC: H04J9/00 ,  H04L12/28

CPC classification number: H04B7/2656

Abstract: A system and method are provided that are operable for network communications that promote network devices to receive a transmit request, transmit a first part of a frame by a physical layer without a second part of the frame from a medium access control layer, and request the second part of the frame by the physical layer from the medium access control layer. These systems and methods also allow, in some embodiments, for the transmitting of the second part of the frame by the physical layer with data from the medium access control layer.

Abstract translation: 提供了一种系统和方法，其可用于促进网络设备接收发送请求的网络通信，通过物理层从媒体访问控制层传送帧的第二部分而不具有帧的第二部分，并请求 帧的第二部分由媒体访问控制层的物理层。 在一些实施例中，这些系统和方法还允许具有来自介质访问控制层的数据的物理层传输帧的第二部分。

公开(公告)号：US08644515B2

公开(公告)日：2014-02-04

申请号：US13208224

申请日：2011-08-11

Applicant: Jin-Meng Ho

Inventor： Jin-Meng Ho

IPC: H04L29/06

CPC classification number: H04L9/0844 ,  H04L9/3242

Abstract: A system and method for establishing a mutual entity authentication and a shared secret between two devices using displayed values on each device. Unique first private keys and first public keys are assigned to both devices. The public keys are exchanged between the two devices. Both devices compute a shared secret from their own private keys and the received public keys. Both devices compute, exchange, and verify their key authentication codes of the shared secret. If verification is successful, both devices use the shared secret to generate a displayed value. One or more users compare the displayed values and provide an indication to the devices verifying whether the displays match. If the displays match, then the devices compute a shared master key, which is used either directly or via a later-generated session key for securing message communications between the two devices.

Abstract translation: 一种用于在每个设备上使用显示值建立两个设备之间的相互实体认证和共享秘密的系统和方法。 唯一的第一个私钥和第一个公钥被分配给两个设备。 公钥在两个设备之间交换。 两个设备都会从自己的私钥和接收到的公钥中计算共享密钥。 两个设备都会对共享密钥的密钥验证码进行计算，交换和验证。 如果验证成功，两个设备都使用共享密钥来生成显示的值。 一个或多个用户比较显示的值，并向设备提供验证显示是否匹配的指示。 如果显示器匹配，则设备计算共享主密钥，其直接使用或经由稍后生成的会话密钥来使用，以保护两个设备之间的消息通信。

公开(公告)号：US08230219B2

公开(公告)日：2012-07-24

申请号：US12540017

申请日：2009-08-12

Applicant: Jin-Meng Ho

Inventor： Jin-Meng Ho

IPC: H04L9/00

CPC classification number: H04L9/0841 ,  H04L9/3226

Abstract: Authentication methods are provided that allow for superior security, power consumption, and resource utilization over existing authentication methods. By computing only two hashes of a shared secret password for each protocol run, the methods described in this disclosure dramatically reduce the computational power needed to perform authentication. Similarly, by exchanging these hashes bitwise or piecewise for verification, rather than performing new hashes including each bit of the password separately, the methods described in this disclosure reveal less information about the password being authenticated than existing methods. The methods described in this disclosure also allow for authentication using fewer messages and with lower latency, reducing the amount of operational power used in the authentication process.

Abstract translation: 提供了允许优于现有身份验证方法的优越安全性，功耗和资源利用的身份验证方法。 通过计算每个协议运行的共享密码的两个散列，本公开中描述的方法大大降低了执行认证所需的计算能力。 类似地，通过逐位或分段地交换这些散列来进行验证，而不是单独地执行包括密码的每一位的新的散列，本公开中描述的方法揭示了比现有方法更多的关于被认证密码的信息。 本公开中描述的方法还允许使用更少的消息并且具有较低延迟的认证，从而减少认证过程中使用的操作功率的量。

公开(公告)号：US08195932B2

公开(公告)日：2012-06-05

申请号：US12697086

申请日：2010-01-29

Applicant: Jin-Meng Ho

Inventor： Jin-Meng Ho

IPC: H04L9/00

CPC classification number: H04L9/0637 ,  H04L9/3242 ,  H04L2209/12 ,  H04L2209/20

Abstract: A system and method for authenticating and encrypting messages for secure transmission is disclosed. A frame to be transmitted between devices comprises a frame header and a frame body. The frame body includes a security sequence number (SSN), frame payload, and message integrity code (MIC). The SSN is incremented by one for each frame transmitted using a same pairwise temporal key (PTK). A nonce is formed using the frame header and the SSN. Counter blocks Ctri and a first input block B0 are created using the nonce. Payload blocks Bi are created from the frame payload. The frame payload encrypted by sequentially applying the blocks of payload data Bi and corresponding counter blocks Ctri to a cipher function. The MIC is computed by cipher block chaining a cipher function applied to blocks B0 and Bi, and counter block Ctr0. The cipher functions all use the PTK.

Abstract translation: 公开了用于认证和加密用于安全传输的消息的系统和方法。 要在设备之间传输的帧包括帧头和帧体。 帧体包括安全序列号（SSN），帧有效载荷和消息完整性码（MIC）。 对于使用相同的成对临时密钥（PTK）发送的每个帧，SSN递增1。 使用帧头和SSN形成随机数。 使用随机数创建计数器块Ctri和第一个输入块B0。 有效负载块Bi是从帧有效载荷创建的。 通过将有效载荷数据Bi的块和相应的计数器块Ctri顺序地应用到密码函数来加密的帧有效载荷。 通过密码块链接应用于块B0和B0的加密函数以及计数器块Ctr0来计算MIC。 密码功能都使用PTK。

公开(公告)号：US08156334B2

公开(公告)日：2012-04-10

申请号：US12539733

申请日：2009-08-12

Applicant: Jin-Meng Ho

Inventor： Jin-Meng Ho

IPC: H04L9/00

CPC classification number: H04L9/0844

Abstract: Methods for key exchange and mutual authentication are provided that allow for inherent authentication and secret key derivation of parties communicating through an unsecured medium. These methods allow for greater security than existing key exchange and authentication methods while requiring little or no additional energy or time compared with a basic Diffie-Hellman key exchange. These methods allow for secure communication with small, low-power devices and greater security for any devices communicating through an unsecured medium.

Abstract translation: 提供密钥交换和相互认证的方法，允许通过不安全介质通信的各方的固有认证和秘密密钥派生。 与基本的Diffie-Hellman密钥交换相比，这些方法允许比现有的密钥交换和认证方法更大的安全性，同时需要很少或没有额外的能量或时间。 这些方法允许与小型，低功率设备进行安全通信，并且对于通过不安全介质进行通信的任何设备都具有更高的安全性。

公开(公告)号：US08009649B1

公开(公告)日：2011-08-30

申请号：US12313330

申请日：2008-11-19

Applicant: Jin-Meng Ho ,  Wei Lin

Inventor： Jin-Meng Ho ,  Wei Lin

IPC: H04W4/00

CPC classification number: H04W28/26 ,  H04W28/0268 ,  H04W72/087 ,  H04W74/06

Abstract: A method and a system for a quality of service (QoS) point coordinator (PC) for a basic service set (BSS) in a wireless local area network (WLAN) is disclosed. The PC includes a QoS management entity (QME) and an admission control entity (ACE). The QME receives at least one reservation request message that characterizes one of a QoS session and a QoS application (session/application) that can be of a continuous/periodic flow type that is time sensitive, or can be of a discontinuous/bursty flow type that is time tolerant. The reservation request message contains at least one QoS parameter set and requests a resource of a communication channel in the BSS for the QoS session/application. The communication channel is organized into superframes, such that each superframe includes a contention-free period (CFP) and a contention-period (CP). The reservation request message requests a predetermined bandwidth of each CFP of the communication channel in the BSS. The ACE performs macro bandwidth management for QoS traffic transport of the session/application over a medium access control (MAC) sublayer for the communication channel by determining whether to grant the reservation request based on at least one QoS parameter set associated with the session/application.

Abstract translation: 公开了一种用于无线局域网（WLAN）中的基本服务集（BSS）的服务质量（QoS）点协调器（PC）的方法和系统。 PC包括QoS管理实体（QME）和准入控制实体（ACE）。 QME接收至少一个表征QoS会话和QoS应用（会话/应用）之一的预留请求消息，其可以是时间敏感的连续/周期性流类型，或者可以是不连续/突发流类型 这是时间容忍的。 预留请求消息包含至少一个QoS参数集，并且为BSS会话/应用请求BSS中的通信信道的资源。 通信信道被组织成超帧，使得每个超帧包括无争用时段（CFP）和竞争时段（CP）。 预留请求消息请求BSS中的通信信道的每个CFP的预定带宽。 ACE通过基于与会话/应用相关联的至少一个QoS参数集来确定是否授予预留请求，为通信信道的介质访问控制（MAC）子层执行会话/应用的QoS流量传输的宏带宽管理 。

公开(公告)号：US07957534B2

公开(公告)日：2011-06-07

申请号：US12643684

申请日：2009-12-21

Applicant: Jin-Meng Ho

Inventor： Jin-Meng Ho

IPC: H04K1/00

CPC classification number: H04L9/0844 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/06

Abstract: Embodiments of the application describe a method and system for discovering and authenticating communication devices and establishing a secure communication link within a wireless home network without requiring a secure channel. According to an embodiment, communication devices exchange public keys using multiple messages each including at least a portion of the public key of the sending device. The devices authenticate the receipt of the public key and establish a shared master key. The shared master key is used to further derive a session key for securing the application data between the communicating devices for a current session.

Abstract translation: 应用的实施例描述了用于发现和认证通信设备并且在无需安全信道的情况下在无线家庭网络内建立安全通信链路的方法和系统。 根据实施例，通信设备使用多个消息来交换公共密钥，每个消息包括发送设备的公开密钥的至少一部分。 设备对公钥的接收进行认证，并建立共享主密钥。 共享主密钥用于进一步导出用于在当前会话的通信设备之间保护应用数据的会话密钥。

公开(公告)号：US20100195664A1

公开(公告)日：2010-08-05

申请号：US12697098

申请日：2010-01-29

Applicant: Jin-Meng Ho

Inventor： Jin-Meng Ho

IPC: H04L12/413

CPC classification number: H04L12/413

Abstract: A method and system for random access control is disclosed. A backoff counter is used to determine the start time of a contended allocation for a device. The backoff counter is set to an integer randomly drawn from the interval [1, CW], where CW is a contention window value selected based upon the priority of the traffic to be transmitted. The backoff counter is decremented for each idle contention slot detected. When the backoff counter reaches zero, the device attempts to transmit in the next contention slot. If the device receives no acknowledgement or an incorrect acknowledgment, then the transmission has failed. After a failed transmission, CW is set by alternately doubling the CW value up to a CWmax value for the user priority. CW is unchanged, if it was doubled in the last setting; and CW is doubled, if it was unchanged in the last setting.

Abstract translation: 公开了一种用于随机存取控制的方法和系统。 退货计数器用于确定设备的竞争分配的开始时间。 退避计数器设置为从区间[1，CW]中随机抽取的整数，其中CW是基于要发送的流量的优先级选择的竞争窗口值。 对于检测到的每个空闲争用时隙，退避计数器递减。 当退避计数器达到零时，设备尝试在下一个争用时隙中进行传输。 如果设备没有收到确认或错误的确认，则传输失败。 发送失败后，通过将CW值交替加倍至用户优先级的CWmax值来设置CW。 CW在不变的情况下，如果在最后一个环境中翻倍; 如果在最后一个设置中没有变化，CW将加倍。

公开(公告)号：US20100085933A1

公开(公告)日：2010-04-08

申请号：US12633742

申请日：2009-12-08

Applicant: Jin-Meng Ho ,  Wei Lin

Inventor： Jin-Meng Ho ,  Wei Lin

IPC: H04W72/04

CPC classification number: H04W28/26 ,  H04W28/0268 ,  H04W72/087 ,  H04W74/06

Abstract: A method and a system are disclosed for providing quality of service (QoS)-driven channel access within a basic service set (BSS) in a wireless network. At least one available TO is allocated to a selected non-PC station having traffic to transmit. A multipoll frame containing information relating to at least two allocated TOs is then sent from the PC station containing information relating to each allocated TO.

Abstract translation: 公开了用于在无线网络中的基本服务集（BSS）内提供服务质量（QoS）驱动的信道访问的方法和系统。 至少一个可用的TO被分配给具有要发送的业务的所选择的非PC站。 然后从包含与分配的TO分配的信息相关的PC站发送包含与至少两个分配的TO相关的信息的多路段。