Secured authentication in a dynamic IP environment
First Claim
1. A system for establishing a secured communication between a remote data device and a host, comprising:
- a remote data device that establishes a packet data connection (1XRTT or GPRS) with a cellular carrier;
the remote data device be capable of obtaining an IP address from the cellular carrier;
the remote data device being capable of transmitting a registration request message that contains an identification code of the remote data device and the IP address, wherein the registration request message identifies the remote data device to the proxy server; and
a proxy server receiving the registration request message to identify the remote data device, the proxy server being capable of transmitting an authentication challenge message based on the registration request message so as to request the remote data device to authenticate itself, wherein the remote data device generates an authentication response message based on the authentication challenge message and sends the authentication response message to the proxy server, wherein the proxy server receives the authentication response message and generates a confirmation message to the remote data device whether a communication can be established between the remote data device and the proxy server based on the authentication response message.
1 Assignment
0 Petitions
Accused Products
Abstract
In one embodiment, after establishing a packet data connection (1XRTT or GPRS) and obtaining an IP address, the remote data device registers with the proxy server using UDP packets. The remote data device periodically transmits UDP packets to the proxy server to maintain the registration and possibly any NAT/firewall translations (for the UDP session) in the cellular network. The proxy server is configured to listen on a different TCP port for the remote data device. This is a fixed port number for any given remote data device and is used for addressing the remote data device by the central data acquisition system that wants to access the remote data device. When the proxy server receives a TCP connection (from the central data acquisition system) on the port for a specific remote data device, the proxy server marks the remote data device as being busy and transmits a UDP message to the remote data device informing it that a connection is requested. If the proxy server does not receive a TCP connection from the remote data device, the proxy server transmits connection no-acknowledge message to the central data acquisition system, and marks the remote data device as being idle. Upon receipt of the connection request message, the remote data device establishes a TCP session with the proxy server. The proxy server establishes communication between the central data acquisition system and the remote data device. If the proxy server can establish communication, the proxy server terminates communication and marks the remote data device as being idle.
77 Citations
35 Claims
-
1. A system for establishing a secured communication between a remote data device and a host, comprising:
-
a remote data device that establishes a packet data connection (1XRTT or GPRS) with a cellular carrier;
the remote data device be capable of obtaining an IP address from the cellular carrier;
the remote data device being capable of transmitting a registration request message that contains an identification code of the remote data device and the IP address, wherein the registration request message identifies the remote data device to the proxy server; and
a proxy server receiving the registration request message to identify the remote data device, the proxy server being capable of transmitting an authentication challenge message based on the registration request message so as to request the remote data device to authenticate itself, wherein the remote data device generates an authentication response message based on the authentication challenge message and sends the authentication response message to the proxy server, wherein the proxy server receives the authentication response message and generates a confirmation message to the remote data device whether a communication can be established between the remote data device and the proxy server based on the authentication response message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method that facilitates registering a remote data device with a proxy server, the method comprising the steps of:
-
establishing a packet data connection (1XRTT or GPRS) with a cellular carrier;
obtaining an IP address from the cellular carrier;
transmitting to a proxy server a registration request message that contains an identity code of the remote data device and the IP address, wherein the registration request message identifies the remote data device to a proxy server, wherein the registration request message is used to register with the proxy server;
receiving an authentication challenge message from the proxy server to request the remote data device to authenticate itself;
generating an authentication response message based on the authentication challenge message;
transmitting the authentication response message to the proxy server; and
receiving a confirmation message from proxy server whether a registration was achieved between the remote data device and the proxy server based on the authentication response message. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A method that facilitates registering a remote data device with a proxy server, the method comprising the steps of:
- receiving a registration request message that contains an identity code of the remote data device and the IP address, wherein the registration request message identifies the remote data device;
transmitting an authentication challenge message to the remote data device to request the remote data device to authenticate itself;
receiving an authentication response message based on the authentication challenge message from the remote data device;
generating a confirmation message based on the authentication response message; and
transmitting a confirmation message to the remote data device whether a communication was established between the remote data device and the proxy server. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
- receiving a registration request message that contains an identity code of the remote data device and the IP address, wherein the registration request message identifies the remote data device;
-
34. A computer readable medium having a proxy manager that facilitates registering a remote data device with a proxy server, the manager for performing the steps of:
-
receiving a registration request message that contains an identity code of the remote data device and the IP address, wherein the registration request message identifies the remote data device;
transmitting an authentication challenge message to the remote data device to request the remote data device to authenticate itself;
receiving an authentication response message based on the authentication challenge message from the remote data device;
generating a confirmation message based on the authentication response message; and
transmitting a confirmation message to the remote data device whether a communication was established between the remote data device and the proxy server.
-
-
35. A computer readable medium having a remote manager that facilitates registering a remote data device with a proxy server, the manager for performing the steps of:
-
establishing a packet data connection (1XRTT or GPRS) with a cellular carrier;
obtaining an IP address from the cellular carrier;
transmitting to a proxy server a registration request message that contains an identity code of the remote data device and the IP address, wherein the registration request message identifies the remote data device to a proxy server, wherein the registration request message is used to register with the proxy server;
receiving an authentication challenge message from the proxy server to request the remote data device to authenticate itself;
generating an authentication response message based on the authentication challenge message;
transmitting the authentication response message to the proxy server; and
receiving a confirmation message from proxy server whether a registration was achieved between the remote data device and the proxy server based on the authentication response message.
-
Specification