AN IDENTITY MAPPING MECHANISM IN WLAN ACCESS CONTROL WITH PUBLIC AUTHENTICATION SERVERS.

摘要

A method for improving the security of a mobile terminal in a WLAN (124) environment by redirecting the browser request, embedding a session identification (session ID) inside an HTTP request and matching two HTTP sessions using such a session ID in the authentication server (150). The access point (130) processes the web request from the mobile terminal such that a session ID becomes embedded in the universal resource locator (URL). Additionally a mapping between this session ID and the MAC address or the IP address of the mobile terminal is maintained in the WLAN. When the authentication server notifies the access point about the authentication result, the session ID is used to uniquely identify the mobile terminal. All these operations are transparent to the mobile terminal (140).