Network access point for providing multiple levels of security

US 20040235452A1
Filed: 05/22/2003
Published: 11/25/2004
Est. Priority Date: 05/22/2003
Status: Abandoned Application

First Claim

Patent Images

1. A method comprising:

receiving a request from a first wireless station for access to a first resource, wherein said first wireless station offers to authenticate itself as authorized to access said first resource;

authenticating said first wireless station through a first port; and

, providing access for said first wireless station to said first resource through a second port after said first wireless station has been authenticated as authorized to access said first resource.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A technique is disclosed to provide a single wireless local area network in which authorized wireless stations and non-authorized wireless stations can associate with different security levels and privileges. In the first illustrative embodiment of the present invention, there are multiple physical or logical ports connecting a wireless station to public and private resources. The purpose of using multiple ports to access the external resources is to segregate the traffic associated with each level of security to a different port, and to ensure that each external resource only accepts traffic from those ports that are associated with the level of security needed for that resource. In the second illustrative embodiment of the present invention, segregation of traffic associated with each level of security is achieved by putting resources of different levels of security or privilege on different virtual local area networks.

32 Citations

View as Search Results

28 Claims

1. A method comprising:
- receiving a request from a first wireless station for access to a first resource, wherein said first wireless station offers to authenticate itself as authorized to access said first resource;
  
  authenticating said first wireless station through a first port; and
  
  , providing access for said first wireless station to said first resource through a second port after said first wireless station has been authenticated as authorized to access said first resource.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1 further comprising:
    - receiving a request from a second wireless station for access to a public resource; and
      
      providing access for said second wireless station to said public resource through said first port.
  - 3. The method of claim 2 wherein said first wireless station is provided access to said public resource through said second port.
  - 4. The method of claim 1 further comprising:
    - receiving a request from a second wireless station for access to a second resource, wherein said second wireless station offers to authenticate itself as authorized to access said second resource;
      
      authenticating said second wireless station through said first port; and
      
      providing access for said second wireless station to said first resource through a third port after said second wireless station has been authenticated as authorized to access said second resource.
  - 5. The method of claim 4 wherein said second wireless station is provided access to said first resource through said third port.
  - 6. The method of claim 4 wherein said second wireless station is provided access to a public resource through said third port.

7. A method comprising:
- receiving a request from a first wireless station for access to a first resource, wherein said first wireless station offers to authenticate itself as authorized to access said first resource;
  
  authenticating said first wireless station through a first network; and
  
  , providing access for said first wireless station to said first resource through a second network after said first wireless station has been authenticated as authorized to access said first resource.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
- - 8. The method of claim 7 wherein said first network is a first local area network, and said second network is a second local area network.
  - 9. The method of claim 8 wherein said first local area network is a first virtual local area network, and said second network is a second virtual local area network.
  - 10. The method of claim 7 further comprising:
    - receiving a request from a second wireless station for access to a public resource; and
      
      providing access for said second wireless station to said public resource through said first network.
  - 11. The method of claim 10 wherein said first wireless station is provided access to said public resource through said second network.
  - 12. The method of claim 7 further comprising:
    - receiving a request from a second wireless station for access to a second resource, wherein said second wireless station offers to authenticate itself as authorized to access said second resource;
      
      authenticating said second wireless station through said first network; and
      
      providing access for said second wireless station to said first resource through a third network after said second wireless station has been authenticated as authorized to access said second resource.
  - 13. The method of claim 12 wherein said second wireless station is provided access to said first resource through said third network.
  - 14. The method of claim 12 wherein said second wireless station is provided access to a public resource through said third network.

15. An apparatus comprising:
- a first port;
  
  a second port;
  
  a receiver for receiving a request from a first wireless station for access to a first resource, wherein said first wireless station offers to authenticate itself as authorized to access said first resource; and
  
  a transmitter for authenticating said first wireless station through said first port, and for providing access for said first wireless station to said first resource through said second port after said first wireless station has been authenticated as authorized to access said first resource.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The apparatus of claim 15 wherein said receiver is also for receiving a request from a second wireless station for access to a public resource;
    - and wherein said transmitter is also for providing access for said second wireless station to said public resource through said first port.
  - 17. The apparatus of claim 16 wherein said first wireless station is provided access to said public resource through said second port.
  - 18. The apparatus of claim 15 wherein said receiver receives a request from a second wireless station for access to a second resource, wherein said second wireless station offers to authenticate itself as authorized to access said second resource;
    - said transmitter conducts the authentication of said second wireless station through said first port, and said transmitter providing access for said second wireless station to said first resource through a third port after said second wireless station has been authenticated as authorized to access said second resource.
  - 19. The apparatus of claim 18 wherein said second wireless station is provided access to said first resource through said third port.
  - 20. The apparatus of claim 18 wherein said second wireless station is provided access to a public resource through said third port.

21. An apparatus comprising:
- a first network;
  
  a second network;
  
  a receiver for receiving a request from a first wireless station for access to a first resource, wherein said first wireless station offers to authenticate itself as authorized to access said first resource; and
  
  a transmitter for authenticating said first wireless station through said first network, and for providing access for said first wireless station to said first resource through said second network after said first wireless station has been authenticated as authorized to access said first resource.
- View Dependent Claims (22, 23, 24, 25, 26, 27, 28)
- - 22. The method of claim 21 wherein said first network is a first local area network, and said second network is a second local area network.
  - 23. The method of claim 22 wherein said first local area network is a first virtual local area network, and said second network is a second virtual local area network.
  - 24. The apparatus of claim 21 wherein said receiver is also for receiving a request from a second wireless station for access to a public resource;
    - and wherein said transmitter is also for providing access for said second wireless station to said public resource through said first network.
  - 25. The apparatus of claim 24 wherein said first wireless station is provided access to said public resource through said second network.
  - 26. The apparatus of claim 21 wherein said receiver receives a request from a second wireless station for access to a second resource, wherein said second wireless station offers to authenticate itself as authorized to access said second resource;
    - said transmitter conducts the authentication of said second wireless station through said first network, and said transmitter providing access for said second wireless station to said first resource through a third network after said second wireless station has been authenticated as authorized to access said second resource.
  - 27. The apparatus of claim 26 wherein said second wireless station is provided access to said first resource through said third network.
  - 28. The apparatus of claim 26 wherein said second wireless station is provided access to a public resource through said third network.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Conexant Incorporated (Synaptics Incorporated)
Original Assignee
Conexant Incorporated (Synaptics Incorporated)
Inventors
Fischer, Michael Andrew, Godfrey, Timothy Gordon

Application Number

US10/443,391
Publication Number

US 20040235452A1
Time in Patent Office

Days
Field of Search
US Class Current

455/410
CPC Class Codes

H04L 63/0236   Filtering by address, proto...

H04L 63/104   Grouping of entities

H04W 12/062   Pre-authentication

H04W 12/068   using credential vaults, e....

H04W 12/088   using filters or firewalls

H04W 88/08   Access point devices

Network access point for providing multiple levels of security

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

32 Citations

28 Claims

Specification

Use Cases

Quick Links

Others

Network access point for providing multiple levels of security

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

32 Citations

28 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others