US 12,244,695 B2
Associating pre-shared keys with client devices based on message integrity check values
Ruiyao Yang, Beijing (CN); David Wilson, San Jose, CA (US); Zhou Wang, Beijing (CN); Youhe Zhang, Beijing (CN); and Feng Ding, Beijing (CN)
Assigned to Hewlett Packard Enterprise Development LP, Spring, TX (US)
Filed by HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP, Houston, TX (US)
Filed on Oct. 27, 2022, as Appl. No. 18/050,083.
Prior Publication US 2024/0146512 A1, May 2, 2024
Int. Cl. H04L 9/40 (2022.01); H04L 9/08 (2006.01); H04L 9/32 (2006.01)
CPC H04L 9/0825 (2013.01) [H04L 9/085 (2013.01); H04L 9/3242 (2013.01)] 19 Claims
OG exemplary drawing
 
1. A method comprising:
accessing a first message sent from an access point device, wherein the first message comprises data representing a second message sent by a client device, wherein:
the second message is part of an exchange of messages between the client device and the access point device associated with authentication of the client device and a derivation of a first key used to encrypt and decrypt data communicated between the client device and the access point device; and
the second message comprises a first message integrity check value;
identifying, based on the second message, a pre-shared key corresponding to the client device, wherein identifying the pre-shared key comprises:
determining a second message integrity check value based on:
a candidate pre-shared key of a plurality of candidate pre-shared keys;
a content of the second message; and
a length of the second message;
comparing the second message integrity check value with the first message integrity check value; and
based on a result of the comparison, selecting the given candidate pre-shared key as the pre-shared key;
determining a user role based on the pre-shared key; and
causing a third message to be sent to the access point device, wherein the third message comprises data representing the pre-shared key and data representing the user role.