Dynamic network connection based on compliance
First Claim
1. A system for enabling compliance of a communication device with the policies of a destination network, comprising:
- a communication device configured to connect to a compliance network;
said compliance network configured to check whether said communication device is sufficiently in compliance with at least one predetermined policy of a destination network and to not allow said communication device to connect with said destination network if said communication device is not sufficiently in compliance with said at least one predetermined policy; and
a connection including a first configuration to connect between said compliance network and said communication device, and a second configuration varying at least partially from said first configuration to connect between said communication device and said destination network.
3 Assignments
0 Petitions
Accused Products
Abstract
Disclosed herein are systems and methods to dynamically connect a communication device to the appropriate computer network according to the compliance level of the communication device. In one embodiment, a communication device connected to a compliance network is checked for sufficient compliance with one or more policies of a destination network. If not in sufficient compliance, the communication device in this embodiment is not allowed while insufficiently compliant to connect to the destination network, and optionally receives any appropriate updates via the connection with the compliance network. If in sufficient compliance or when rendered in sufficient compliance, the communication device is allowed in this embodiment to connect to the destination network via a connection that is not identical to the connection previously established between the communication device and the compliance network. Disclosed herein in another aspect of the invention are systems and methods to transfer, within an authentication protocol conversation, data which is unrelated to the authentication protocol.
-
Citations
26 Claims
-
1. A system for enabling compliance of a communication device with the policies of a destination network, comprising:
-
a communication device configured to connect to a compliance network;
said compliance network configured to check whether said communication device is sufficiently in compliance with at least one predetermined policy of a destination network and to not allow said communication device to connect with said destination network if said communication device is not sufficiently in compliance with said at least one predetermined policy; and
a connection including a first configuration to connect between said compliance network and said communication device, and a second configuration varying at least partially from said first configuration to connect between said communication device and said destination network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 12)
-
-
11. A communication device, comprising:
-
means for selecting a connection between said communication device and a destination network or between said communication device and a compliance network exclusive of said destination network; and
means for establishing said selected connection;
wherein said means for selecting is configured to select said connection with said compliance network exclusive of said destination network when a likelihood that said communication device is not in sufficient compliance with at least one predetermined policy of said destination network exceeds a predetermined level. - View Dependent Claims (13, 14)
-
-
15. A method of enabling compliance of a communication device with the policies of a destination network, comprising:
-
operating a communication device intending to connect to a destination network via a connection between said communication device and said destination network, said communication device connecting instead to a compliance network via a connection between said communication device and said compliance network, wherein said connection between said communication device and said destination network is different than said connection between said communication device and said compliance network;
checking, by said compliance network, said communication device for sufficient compliance with at least one predetermined policy of the destination network; and
preventing, if said communication device is not in sufficient compliance with said at least one predetermined policy, said communication device from connecting to said destination network. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
-
-
23. A method for transferring data between a communication device and a computer network, comprising:
transferring data between the communication device and the computer network within an authentication protocol conversation between an AAA server and client thereof, wherein said data includes data unrelated to said authentication protocol. - View Dependent Claims (24)
-
25. A system for transferring data between a communication device and a computer network, comprising:
-
a communication device and a computer network; and
an AAA server and a client to said AAA server connected between said communication device and said computer network;
wherein an authentication protocol conversation between said server and said client is used to transfer data between said communication device and said computer network, said data including data unrelated to said authentication protocol. - View Dependent Claims (26)
-
Specification