	US 12,069,478 B2
	Multicast containment in a multiple pre-shared key (PSK) wireless local area network (WLAN)
Ugo Mario Campiglio, Vaud (CH); Amine Choukir, Lausanne (CH); Roberto Muccifora, Ropraz (CH); Domenico Ficara, Essertines sur Yverdon (CH); and Sachin Dinkar Wakudkar, Vaud (CH)
Assigned to Cisco Technology, Inc., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on May 30, 2023, as Appl. No. 18/325,288.
Application 18/325,288 is a continuation of application No. 17/147,319, filed on Jan. 12, 2021, granted, now 11,665,544.
Prior Publication US 2023/0308876 A1, Sep. 28, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04W 12/033 (2021.01); H04W 12/041 (2021.01); H04W 12/06 (2021.01); H04W 12/069 (2021.01); H04W 12/71 (2021.01)

CPC H04W 12/069 (2021.01) [H04W 12/033 (2021.01); H04W 12/041 (2021.01); H04W 12/71 (2021.01)]

20 Claims

1. A method comprising:

receiving, by a computing device, a join request from a first client device;

generating, by the computing device, a Group Master Key (GMK) from a Pre-Shared Key (PSK) associated with a Basic Service Set (BSS);

deriving, by the computing device, a Group Transient Key (GTK) from the GMK;

sending, by the computing device, the GTK to the first client device;

receiving, by a second computing device, a peer-to-peer blocking tag generated by the computing device during authentication with the PSK of the first client device;

receiving, by the second computing device, the PSK from the computing device;

receiving, by the second computing device, a multicast frame from the first client device;

searching, by the second computing device and in a PMK cache, for a local client device associated with the tag; and

sending, by the second computing device, the multicast frame to the local client device encrypted by the GTK.