Internet service provider method and apparatus
First Claim
1. A method for use in an internet service provider environment for providing internet access to a plurality of subscriber environments, comprising the steps of:
- receiving a packet intended for a destination subscriber environment amongst the plurality of subscriber environments;
discriminating the packet to deny the packet if considered insecure;
else passing the packet toward the destination subscriber environment.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for use in an internet service provider environment (10), for providing internet (20) access to a plurality of subscriber environments. A packet intended for a destination subscriber environment is discriminated to deny the packet if it is considered insecure. Performing this discrimination in the internet service provider environment (10) allows a centralized security service for a large number of subscriber environments (30) each having internet access through the internet service provider environment (10). Each subscriber environment (30) is maintained in a secure state to inhibit subversion such as by malicious attacks, even where the subscriber environment (30) is allocated a static IP address and maintains connection for a relatively long duration session. Also, technical expertise required of a subscriber operating the subscriber environment (30) is minimized.
24 Citations
22 Claims
-
1. A method for use in an internet service provider environment for providing internet access to a plurality of subscriber environments, comprising the steps of:
-
receiving a packet intended for a destination subscriber environment amongst the plurality of subscriber environments;
discriminating the packet to deny the packet if considered insecure;
elsepassing the packet toward the destination subscriber environment. - View Dependent Claims (2, 3)
-
-
4. A method of providing internet access to a plurality of subscriber environments by an internet service provider environment, comprising the steps of:
-
receiving a security subscription from one or more of the plurality of subscriber environments;
receiving a packet intended for a destination subscriber environment amongst the plurality of subscriber environments;
if a security subscription has been received from the destination subscriber environment, then discriminating the packet with reference to one or more discriminating filters to deny the packet if considered insecure;
elsepassing the packet for delivery to the destination subscriber environment. - View Dependent Claims (5, 6, 7, 8, 9)
-
-
10. An internet service provider apparatus providing internet access to a plurality of subscriber environments, the apparatus comprising:
-
an edge router coupleable to core routers of a global data network;
an ISP telecommunications interface coupleable to a plurality of subscriber environments; and
a packet discriminator arranged to discriminate packets passing between the edge router and the ISP telecommunications interface. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An apparatus providing internet access to a plurality of subscriber environments from an internet service provider environment, the apparatus comprising:
a packet discriminator arranged to discriminate a packet destined for a destination subscriber environment amongst the plurality of subscriber environments, by applying zero or more discriminating filters according to a level of service subscribed to by the destination subscriber environment.
-
22. A system connecting a subscriber user apparatus to a global data network, comprising:
-
a subscriber telecommunications interface coupled to the subscriber user apparatus;
a telecommunications environment coupled to the subscriber telecommunications interface; and
an internet service provider environment coupled to the telecommunications environment, the internet service provider environment including an edge router coupleable to the global data network, an ISP telecommunications interface coupled to the telecommunications environment, and a packet discriminator arranged to discriminate packets passing between the edge router and the ISP telecommunications interface.
-
Specification