Client device ticket
First Claim
Patent Images
1. A system, comprising:
- a network device including an interface to provide access to a network, the network device being communicatively coupled to a client device, the network device to;
determine that the client device has been authenticated to the network via a captive portal page;
create a ticket comprising information identifying the client device and a timestamp value, encrypt the ticket using a secret key, and insert an identifier for the secret key in the encrypted ticket, the secret key being stored on a second network device;
transmit the encrypted ticket to the client device for storage on the client device;
receive a request from the client device to reconnect to the network, wherein the client device provides the encrypted ticket;
identify the secret key based on the identifier in the ticket, determine that the secret key is stored on the second network device, and retrieve the secret key from the second network device;
decrypt the ticket using the retrieved secret key; and
upon determining that the decrypted ticket corresponds to an authenticated session to the network by the client device, reauthenticate the client device to the network without direction of the client device to the captive portal page.
1 Assignment
0 Petitions
Accused Products
Abstract
A system may include a client device to connect to a network and a network device communicatively coupled to the client device. The network device may determine that the client device has been authenticated to the network via a captive portal page. The network device may further create a ticket corresponding to the client device. Possession of the ticket by the client device may indicate authentication of the client device to the network. The network device may then transmit the ticket to the client device for storage on the client device. The stored ticket may enable the client device to remain authenticated to the network after a period of inactivity.
-
Citations
15 Claims
-
1. A system, comprising:
a network device including an interface to provide access to a network, the network device being communicatively coupled to a client device, the network device to; determine that the client device has been authenticated to the network via a captive portal page; create a ticket comprising information identifying the client device and a timestamp value, encrypt the ticket using a secret key, and insert an identifier for the secret key in the encrypted ticket, the secret key being stored on a second network device; transmit the encrypted ticket to the client device for storage on the client device; receive a request from the client device to reconnect to the network, wherein the client device provides the encrypted ticket; identify the secret key based on the identifier in the ticket, determine that the secret key is stored on the second network device, and retrieve the secret key from the second network device; decrypt the ticket using the retrieved secret key; and upon determining that the decrypted ticket corresponds to an authenticated session to the network by the client device, reauthenticate the client device to the network without direction of the client device to the captive portal page. - View Dependent Claims (2, 3, 4, 5, 6)
-
7. An access point, comprising:
-
a processing resource and a memory resource; a transmitter and receiver; and an interface with a network, wherein the access point is to; receive a request from a client device to connect to the network and direct the client device to a captive portal page for authentication; upon authentication of the client device, create a ticket comprising information identifying the client device and a timestamp value, encrypt the ticket using a secret key, and insert an identifier for the secret key in the encrypted ticket, the secret key being stored on a network device connected with the network; transmit the encrypted ticket to the client device for storage on the client device; receive a request from the client device to reconnect to the network, wherein the client device provides the encrypted ticket; identify the secret key based on the identifier in the ticket, determine that the secret key is stored on the network device, and retrieve the secret key from the network device; decrypt the ticket using the retrieved secret key; and upon determining that the decrypted ticket corresponds to an authenticated session to the network by the client device, reauthenticate the client device to the network without direction of the client device to the captive portal page. - View Dependent Claims (8, 9, 10, 11)
-
-
12. A method, comprising:
-
creating at a first network device a ticket corresponding to a client device authenticated to a network via a captive portal page, the ticket comprising information identifying the client device and a timestamp value; encrypting the ticket using a secret key and inserting an identifier for the secret key in the encrypted ticket, the secret key being stored on a second network device; transmitting the encrypted ticket to the client device for storage on the client device; receiving, at the first network device, a request from the client device to reconnect to the network, wherein the client device provides the encrypted ticket; identifying the secret key based on the identifier in the ticket, determining that the secret key is stored on the second network device, and retrieving the secret key from the second network device; decrypting the ticket using the retrieved secret key; and upon determining that the decrypted ticket corresponds to an authenticated session to the network by the client device, reauthenticate the client device to the network without direction of the client device to the captive portal page. - View Dependent Claims (13, 14, 15)
-
Specification