-
公开(公告)号:US20070256122A1
公开(公告)日:2007-11-01
申请号:US11414540
申请日:2006-04-28
申请人: Ian Foo , Jeremy Stieglitz , Arthur Zavalkovsky , Jeevan Patil , Partha Bhattacharya , Jason Frazier , Ellis Dobbins
发明人: Ian Foo , Jeremy Stieglitz , Arthur Zavalkovsky , Jeevan Patil , Partha Bhattacharya , Jason Frazier , Ellis Dobbins
CPC分类号: H04L63/1433 , H04L63/08 , H04L63/1408
摘要: A method and system is disclosed for creating and tracking network sessions. A request to access a network is received from an entity. The entity is authenticated after the request is received. Authenticated identity information associated with the entity, network address information associated with the entity, and network location information associated with the entity is collected. An information set is created. The information set comprises and binds together the authenticated identity information, the network address information, and the network location information. The information set indicates a present association among the authenticated identity information, the network address information, and the network location information. The information set is stored in a session record in a centralized database. The session record represents a session in which the entity accesses the network. The session record is one of a plurality of session records that are stored in the centralized database. The plurality of session records is used by a data processing system to perform real-time diagnostics of the network.
摘要翻译: 公开了用于创建和跟踪网络会话的方法和系统。 从实体接收到访问网络的请求。 接收到请求后,实体进行身份验证。 与实体相关联的认证身份信息,与该实体相关联的网络地址信息以及与该实体相关联的网络位置信息被收集。 创建一个信息集。 信息集合包括并且将已认证的身份信息,网络地址信息和网络位置信息结合在一起。 信息集表示认证身份信息,网络地址信息和网络位置信息之间的当前关联。 信息集存储在集中式数据库中的会话记录中。 会话记录表示实体访问网络的会话。 会话记录是存储在集中式数据库中的多个会话记录之一。 数据处理系统使用多个会话记录来执行网络的实时诊断。
-
公开(公告)号:US07930734B2
公开(公告)日:2011-04-19
申请号:US11414540
申请日:2006-04-28
申请人: Ian Foo , Jeremy Stieglitz , Arthur Zavalkovsky , Jeevan S. Patil , Partha Bhattacharya , Jason Frazier , Ellis Roland Dobbins
发明人: Ian Foo , Jeremy Stieglitz , Arthur Zavalkovsky , Jeevan S. Patil , Partha Bhattacharya , Jason Frazier , Ellis Roland Dobbins
CPC分类号: H04L63/1433 , H04L63/08 , H04L63/1408
摘要: A method and system is disclosed for creating and tracking network sessions. A request to access a network is received from an entity. The entity is authenticated after the request is received. Authenticated identity information associated with the entity, network address information associated with the entity, and network location information associated with the entity is collected. An information set is created. The information set comprises and binds together the authenticated identity information, the network address information, and the network location information. The information set indicates a present association among the authenticated identity information, the network address information, and the network location information. The information set is stored in a session record in a centralized database. The session record represents a session in which the entity accesses the network. The session record is one of a plurality of session records that are stored in the centralized database. The plurality of session records is used by a data processing system to perform real-time diagnostics of the network.
摘要翻译: 公开了用于创建和跟踪网络会话的方法和系统。 从实体接收到访问网络的请求。 接收到请求后,实体进行身份验证。 与实体相关联的认证身份信息,与该实体相关联的网络地址信息以及与该实体相关联的网络位置信息被收集。 创建一个信息集。 信息集合包括并且将已认证的身份信息,网络地址信息和网络位置信息结合在一起。 信息集表示认证身份信息,网络地址信息和网络位置信息之间的当前关联。 信息集存储在集中式数据库中的会话记录中。 会话记录表示实体访问网络的会话。 会话记录是存储在集中式数据库中的多个会话记录之一。 数据处理系统使用多个会话记录来执行网络的实时诊断。
-
公开(公告)号:US20070016684A1
公开(公告)日:2007-01-18
申请号:US11181555
申请日:2005-07-13
申请人: Jeremy Stieglitz , Jeevan Patil , Pradeep Badri
发明人: Jeremy Stieglitz , Jeevan Patil , Pradeep Badri
CPC分类号: H04L67/16 , H04L63/102 , H04L67/24
摘要: A system for facilitating use of services in a network. In an illustrative embodiment, the system includes a first mechanism for enabling a user to connect to the network. A second mechanism authenticates the user and provides a signal in response thereto. A third mechanism selectively displays information pertaining to services of the network in response to the signal. In a more specific embodiment, the network is a Public Wireless Local Area Network (PWLAN), and the first mechanism includes one or more local access points. In this embodiment, the second mechanism further facilitates determining which of the services the user is permitted to access and provides permission information in response thereto. The permission information is incorporated in the signal. The third mechanism further employs the permission information to indicate to the user which of the services the user is authorized to use or access.
摘要翻译: 一种便于在网络中使用服务的系统。 在说明性实施例中,系统包括用于使用户能够连接到网络的第一机制。 第二种机制认证用户并提供响应于此的信号。 第三机制响应于该信号选择性地显示与网络服务有关的信息。 在更具体的实施例中,网络是公共无线局域网(PWLAN),并且第一机制包括一个或多个本地接入点。 在该实施例中,第二机制进一步有助于确定用户被允许访问的服务中的哪一个,并响应于此提供许可信息。 许可信息被并入信号中。 第三机制还使用许可信息向用户指示用户被授权使用或访问哪些服务。
-
4.发明授权Method and apparatus for balancing wireless access based on centralized information 有权基于集中式信息平衡无线接入的方法和装置公开(公告)号:US07336960B2
公开(公告)日:2008-02-26
申请号:US10974418
申请日:2004-10-26
IPC分类号: H04Q7/20
摘要: A method and apparatus for managing and balancing wireless access based on centralized information is provided. A request to provide service to a wireless client is received from a first access node in a plurality of access node. An access policy, applicable to the first access node, is selected from a plurality of stored policies. The stored policies may include a variety of rules, such as how many or which wireless clients may be serviced by an access node. A centralized manager, such as an AAA server, may perform the selection of the access policy. A determination is made as to whether to allow the first access node to provide service to the wireless client based on the selected access policy. A message that instructs the first access node whether to provide or deny service to the wireless client is transmitted to the first access node.
摘要翻译: 提供了一种基于集中式信息管理和平衡无线接入的方法和装置。 从多个接入节点中的第一接入节点接收向无线客户端提供业务的请求。 从多个存储的策略中选择适用于第一接入节点的接入策略。 存储的策略可以包括各种规则,诸如可以由接入节点服务多少个或哪些无线客户端。 诸如AAA服务器的集中管理器可以执行访问策略的选择。 确定是否允许第一接入节点基于所选择的接入策略向无线客户端提供服务。 指示第一接入节点是否向无线客户端提供或拒绝服务的消息被发送到第一接入节点。
-
公开(公告)号:US07929973B2
公开(公告)日:2011-04-19
申请号:US11968049
申请日:2007-12-31
IPC分类号: H04W72/00
摘要: A method and apparatus for managing and balancing wireless access based on centralized information is provided. A request to provide service to a wireless client is received from a first access node in a plurality of access node. An access policy, applicable to the first access node, is selected from a plurality of stored policies. The stored policies may include a variety of rules, such as how many or which wireless clients may be serviced by an access node. A centralized manager, such as an AAA server, may perform the selection of the access policy. A determination is made as to whether to allow the first access node to provide service to the wireless client based on the selected access policy. A message that instructs the first access node whether to provide or deny service to the wireless client is transmitted to the first access node.
摘要翻译: 提供了一种基于集中式信息管理和平衡无线接入的方法和装置。 从多个接入节点中的第一接入节点接收向无线客户端提供业务的请求。 从多个存储的策略中选择适用于第一接入节点的接入策略。 存储的策略可以包括各种规则,诸如可以由接入节点服务多少个或哪些无线客户端。 诸如AAA服务器的集中管理器可以执行访问策略的选择。 确定是否允许第一接入节点基于所选择的接入策略向无线客户端提供服务。 指示第一接入节点是否向无线客户端提供或拒绝服务的消息被发送到第一接入节点。
-
公开(公告)号:US20050198190A1
公开(公告)日:2005-09-08
申请号:US10749897
申请日:2003-12-31
IPC分类号: G06F15/16
摘要: The invention provides techniques for dynamic timeout including the steps of receiving a request from a requestor; determining whether an interim message should be sent to the requestor; and, if the interim message should be sent to the requester, sending to the requestor the interim message referring to the request. Techniques are also provided for dynamic timeout including steps of sending a request to a server; receiving an interim message from the server, where the interim message contains one or more response-related items; and determining whether to change a timeout value based on the one or more response-related items in the interim message.
摘要翻译: 本发明提供了用于动态超时的技术,包括从请求者接收请求的步骤; 确定临时消息是否应发送给请求者; 并且如果临时消息应发送到请求者,则向请求者发送参考请求的临时消息。 还提供了用于动态超时的技术,包括向服务器发送请求的步骤; 从所述服务器接收临时消息,其中所述临时消息包含一个或多个响应相关项; 以及基于所述临时消息中的所述一个或多个响应相关项来确定是否改变超时值。
-
7.发明授权Method and apparatus for providing multiple authentication types using an authentication protocol that supports a single type 有权使用支持单一类型的认证协议来提供多种认证类型的方法和装置公开(公告)号:US07421503B1
公开(公告)日:2008-09-02
申请号:US10346967
申请日:2003-01-17
IPC分类号: G06F15/16
CPC分类号: H04L63/08 , H04L29/06 , H04L63/0892
摘要: A method is disclosed for providing multiple authentication types within an authentication protocol that supports a single type of authentication for a client in communication with an authorization server over a network. One or more authentication request packets compliant with an authentication protocol are sent to the client. Each of the packets comprises a type value that specifies multiple authentication, and a data field having a value that is structured in compliance with the authentication protocol. Each of the packets is associated with one of a plurality of different authentication conversations with the client. A plurality of responses is received from the client for each of the authentication conversations. The sending and receiving steps are repeated until results are determined for the authentication conversations. The client is authenticated based on results of each of the plurality of authentication conversations. Embodiments provide multiple Extensible Authentication Protocol (EAP) authentication methods.
摘要翻译: 公开了一种在认证协议内提供多种认证类型的方法,该认证协议支持通过网络与授权服务器通信的客户端的单一类型的认证。 符合认证协议的一个或多个认证请求分组被发送到客户端。 每个分组包括指定多个认证的类型值,以及具有符合认证协议的结构的值的数据字段。 每个分组与与客户端的多个不同认证对话中的一个相关联。 对于每个认证会话,从客户端接收到多个响应。 重复发送和接收步骤,直到确定认证对话的结果为止。 基于多个认证对话中的每一个的结果对客户端进行认证。 实施例提供了多种可扩展认证协议(EAP)认证方法。
-
公开(公告)号:US07493394B2
公开(公告)日:2009-02-17
申请号:US10749897
申请日:2003-12-31
IPC分类号: G06F15/173
摘要: The invention provides techniques for dynamic timeout including the steps of receiving a request from a requestor; determining whether an interim message should be sent to the requestor; and, if the interim message should be sent to the requestor, sending to the requestor the interim message referring to the request. Techniques are also provided for dynamic timeout including steps of sending a request to a server; receiving an interim message from the server, where the interim message contains one or more response-related items; and determining whether to change a timeout value based on the one or more response-related items in the interim message.
摘要翻译: 本发明提供了用于动态超时的技术,包括从请求者接收请求的步骤; 确定临时消息是否应发送给请求者; 并且如果临时消息应发送给请求者,则向请求者发送参考请求的临时消息。 还提供了用于动态超时的技术,包括向服务器发送请求的步骤; 从所述服务器接收临时消息,其中所述临时消息包含一个或多个响应相关项; 以及基于所述临时消息中的所述一个或多个响应相关项来确定是否改变超时值。
-
公开(公告)号:US20080104242A1
公开(公告)日:2008-05-01
申请号:US11968049
申请日:2007-12-31
IPC分类号: G06F15/173
摘要: A method and apparatus for managing and balancing wireless access based on centralized information is provided. A request to provide service to a wireless client is received from a first access node in a plurality of access node. An access policy, applicable to the first access node, is selected from a plurality of stored policies. The stored policies may include a variety of rules, such as how many or which wireless clients may be serviced by an access node. A centralized manager, such as an AAA server, may perform the selection of the access policy. A determination is made as to whether to allow the first access node to provide service to the wireless client based on the selected access policy. A message that instructs the first access node whether to provide or deny service to the wireless client is transmitted to the first access node.
摘要翻译: 提供了一种基于集中式信息管理和平衡无线接入的方法和装置。 从多个接入节点中的第一接入节点接收向无线客户端提供业务的请求。 从多个存储的策略中选择适用于第一接入节点的接入策略。 存储的策略可以包括各种规则,诸如可以由接入节点服务多少个或哪些无线客户端。 诸如AAA服务器的集中管理器可以执行访问策略的选择。 确定是否允许第一接入节点基于所选择的接入策略向无线客户端提供服务。 指示第一接入节点是否向无线客户端提供或拒绝服务的消息被发送到第一接入节点。
-
10.发明申请Method and apparatus for balancing wireless access based on centralized information 有权基于集中式信息平衡无线接入的方法和装置公开(公告)号:US20060089122A1
公开(公告)日:2006-04-27
申请号:US10974418
申请日:2004-10-26
摘要: A method and apparatus for managing and balancing wireless access based on centralized information is provided. A request to provide service to a wireless client is received from a first access node in a plurality of access node. An access policy, applicable to the first access node, is selected from a plurality of stored policies. The stored policies may include a variety of rules, such as how many or which wireless clients may be serviced by an access node. A centralized manager, such as an AAA server, may perform the selection of the access policy. A determination is made as to whether to allow the first access node to provide service to the wireless client based on the selected access policy. A message that instructs the first access node whether to provide or deny service to the wireless client is transmitted to the first access node.
摘要翻译: 提供了一种基于集中式信息管理和平衡无线接入的方法和装置。 从多个接入节点中的第一接入节点接收向无线客户端提供业务的请求。 从多个存储的策略中选择适用于第一接入节点的接入策略。 存储的策略可以包括各种规则,诸如可以由接入节点服务多少个或哪些无线客户端。 诸如AAA服务器的集中管理器可以执行访问策略的选择。 确定是否允许第一接入节点基于所选择的接入策略向无线客户端提供服务。 指示第一接入节点是否向无线客户端提供或拒绝服务的消息被发送到第一接入节点。
-
-
-
-
-
-
-
-
-
搜索结果
47 条记录 (耗时 0.03 秒)
