AUTHORIZING CUSTOMER PREMISE EQUIPMENT ON A SUB-NETWORK
First Claim
Patent Images
1. A computer implemented method comprising:
- receiving an encrypted connection request from a customer premise equipment device at a network termination unit, the encrypted connection request being encrypted using a network membership key;
forwarding the encrypted connection request to an authorization server;
receiving an encrypted network membership key from the authorization server, the encrypted network membership key being encrypted using a device access key associated with the network termination unit;
decrypting the encrypted network membership key using the device access key; and
authorizing the customer premise equipment device to join a subnet associated with the network termination unit.
6 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for authorizing a customer premise equipment (CPE) device to join a network through a network termination unit (NTU). The CPE device can send an encrypted connection request, and an authorization server can decrypt the connection request and provide a network membership key (NMK) associated with the CPE device to the NTU. The authorization server can encrypt the NMK associated with the CPE device using a device access key (DAK) associated with the NTU.
53 Citations
22 Claims
-
1. A computer implemented method comprising:
-
receiving an encrypted connection request from a customer premise equipment device at a network termination unit, the encrypted connection request being encrypted using a network membership key; forwarding the encrypted connection request to an authorization server; receiving an encrypted network membership key from the authorization server, the encrypted network membership key being encrypted using a device access key associated with the network termination unit; decrypting the encrypted network membership key using the device access key; and authorizing the customer premise equipment device to join a subnet associated with the network termination unit. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A computer implemented method comprising:
-
receiving a forwarded connection request, the forwarded connection request comprising an encrypted connection request received by a network termination unit forwarded to an authorization server; inspecting a first unique identifier associated with the forwarded connection request; identifying a network membership key associated with the first unique identifier; authorizing the forwarded connection request based on the identified network membership key; encrypting the network membership key using a device access key associated with the network termination unit; communicating the encrypted network membership key to the network termination unit. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A system comprising:
-
a network termination unit operable to receive an encrypted connection request from a customer premise equipment device, wherein the network termination unit is further operable to forward the encrypted connection request if the network termination unit determines that the customer premise equipment device is not associated with the network termination unit; an authorization server operable to receive the encrypted connection request from the network termination unit, the authorization server operable to decrypted the encrypted connection request based on a first unique identifier, the first unique identifier being associated with the customer premise equipment device; wherein the authorization server is further operable to provide a network membership key associated with the first unique identifier address based on decrypting the encrypted connection request. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
-
Specification