| CPC H04W 12/069 (2021.01) [H04W 12/0471 (2021.01); H04W 12/08 (2013.01)] | 18 Claims |
|
1. A method for provisioning wireless network access to a wireless device, the method comprising:
creating, in a cloud-based provisioning system, a wireless network access profile that includes a user identifier associated with the wireless device;
receiving, on an access point, an authentication request sent from the wireless device;
identifying, by the cloud-based provisioning system, the wireless device based on the user identifier associated with the wireless device;
performing, on the cloud-based provisioning system, WPA3-based authentication to authenticate the wireless device, wherein performing the WPA3-based authentication further comprises performing a key exchange process between the wireless device and the cloud-based provisioning system by:
generating, on the wireless device, a first group element, and a first scalar value, and on the cloud-based provisioning system, a second group element, and a second scalar value using an agreed-upon algorithm between the wireless device and the cloud-based provisioning system;
generating, on the wireless device, a first shared secret key based on the first scalar value and the second group element using the agreed-upon algorithm;
generating, on the authentication system, a second shared secret key based on the second scalar value and the first group element using the agreed-upon algorithm; and
identifying, by the authentication system, a match of the first shared secret key and the second shared secret key; and
providing, via the access point, wireless network access to the wireless device.
|