Abstract: A wireless authentication protocol. Access to a network is managed by providing a challenge-handshake protocol within the Extensible Authentication Protocol for authentication between a client and the network.

Abstract: A method of detecting a rogue access point is disclosed. A message is directed from a supplicant to a network through an access point. A network response message is received by the supplicant from the access point. A step of determining whether the access point is one of a valid network access point and a rogue access point is performed based on whether the received network response message is respectively in conformity or nonconformity with predetermined expectations. If the access point is determined to be a rogue access point, it is reported to the network. If the access point is determined to be a valid network access point, the supplicant is authenticated to the network.

Abstract: Architecture for controlling access by a Light Extensible Authentication Protocol (LEAP)-compatible wireless client to a network that utilizes a challenge/handshake authentication protocol (CHAP). A proxy service is hosted on a network server disposed on the network, and accessed in response to receiving access information from the client. The access information is processed with the proxy service into CHAP-compatible access information, and forwarded to a CHAP-based access control server disposed on the network to determine whether to grant network access to the client.

Abstract: A dynamic packet consolidation algorithm for a wireless transmission regime. At least first and second packets of a plurality of packets are sampled. The respective throughput times of each first and second packet are then calculated. The first and second packets are consolidated into a third packet if the sum of the corresponding throughput times exceeds a predetermined limit.

Abstract: A wireless authentication protocol. Access to a network is managed by providing a challenge-handshake protocol within the Extensible Authentication Protocol for authentication between a client and the network.

Abstract: A proxy server that is inserted between a plurality of network access servers, typically an access points, and an authentication server. When an original authentication request is received by an network access server, the network access server forwards the request to the proxy server which forwards the request to an authentication server. The authentication server then sends the session information to the proxy server which stores the keying material as a dynamic credentials. When the client re-authenticates with one of the plurality of access servers, the re-authentication request is handled by the proxy server using the dynamic credentials. The proxy server may re-authenticate the client using a different method than the method that was originally used. For example, the original authentication may be by Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) and subsequent reauthentications may use Wi-Fi Protected Access (WPA).

Abstract: A system for automatically selecting communication frequencies for wireless communication devices (e.g., base unit, access point, and controller) being added to an existing wireless network. The operating frequencies, evaluated signal strength, and loads are used in determining the most suitable operating frequency. This automatic selection process eliminates the problems inherent in manual frequency selection.

Abstract: A wireless authentication protocol for handling alternative hash functions in a Lightweight Extensible Authentication Protocol (LEAP) environment. Authentication between a network and a client is managed according to LEAP authentication. With advance knowledge of the alternative encoding scheme in both the client and network, the alternatively encoded data can be synchronized. Implementation is by way of providing an alternative database on the network such that the alternative database can be accessed during the LEAP authentication process.