SYSTEM AND METHOD FOR DYNAMIC BANDWIDTH PROVISIONING
First Claim
1. A method for allocating network bandwidth to users in a system having an authentication database storing user profiles, an access control device having a plurality of network interfaces coupled to a plurality of user devices and a provisioning device coupled to the access control device, comprising:
- configuring the access control device to operate in a first state, wherein operation in the first state comprises regulating network bandwidth usage for a set of users based on a first network bandwidth limit associated with each of the users, and each of the set of users is associated with one of the plurality of user devices;
receiving a first network communication from a first network application running on a first user device coupled to one of the plurality of network interfaces;
accessing a first user profile for a first user associated with the first user device from the authentication database, wherein the first user profile comprises one or more attributes associated with the first user and the first user profile was retrieved from the authentication database based on credentials associated with the first user;
determining a second network bandwidth limit for the first user based on the first network bandwidth limit associated with each of the users and the one or more attributes associated with the first user; and
dynamically updating at least one of the first network bandwidth limits associated with the plurality of users based on the second network bandwidth limit including configuring the access control device to operate in a second state, wherein operation of the access control device in the second state comprises regulating network bandwidth usage for each of the plurality of users based on the first network bandwidth limits.
11 Assignments
0 Petitions
Accused Products
Abstract
Embodiments disclosed herein provide a control device and a method executing thereon for allocating network bandwidth to users accessing a controlled network. In response to a user connecting to the control device using a user device, the control device obtains a user bandwidth allocation profile for that user based on user credentials. The user bandwidth allocation profile may be stored local or remote to the control device. A provisioning module running on the control device can map attributes in the user bandwidth allocation profile to a traffic control rule and associate the traffic control rule with the user based on the user credentials and considering information identifying the user device used by the user to connect to the control device. A traffic conditioning module running on the control device can regulate the network bandwidth usage by the user utilizing the traffic control rule associated with the user.
115 Citations
21 Claims
-
1. A method for allocating network bandwidth to users in a system having an authentication database storing user profiles, an access control device having a plurality of network interfaces coupled to a plurality of user devices and a provisioning device coupled to the access control device, comprising:
-
configuring the access control device to operate in a first state, wherein operation in the first state comprises regulating network bandwidth usage for a set of users based on a first network bandwidth limit associated with each of the users, and each of the set of users is associated with one of the plurality of user devices; receiving a first network communication from a first network application running on a first user device coupled to one of the plurality of network interfaces; accessing a first user profile for a first user associated with the first user device from the authentication database, wherein the first user profile comprises one or more attributes associated with the first user and the first user profile was retrieved from the authentication database based on credentials associated with the first user; determining a second network bandwidth limit for the first user based on the first network bandwidth limit associated with each of the users and the one or more attributes associated with the first user; and dynamically updating at least one of the first network bandwidth limits associated with the plurality of users based on the second network bandwidth limit including configuring the access control device to operate in a second state, wherein operation of the access control device in the second state comprises regulating network bandwidth usage for each of the plurality of users based on the first network bandwidth limits. - View Dependent Claims (2, 3)
-
-
4. A method for allocating network bandwidth to users in a system having an authentication database storing user profiles, an access control device having a plurality of network interfaces coupled to a plurality of user devices and a provisioning device coupled to the access control device, comprising:
-
retrieving a set of user profiles from the authentication database based on user credentials provided by each of a set of users, wherein each of the set of users is associated with one of the plurality of user devices, each user profile corresponds to a specific user in the set of users, each user profile comprises one or more attributes associated with the corresponding user and each user profile was retrieved from the authentication database based on credentials associated with the corresponding user; determining a first network bandwidth limit for each user based on the at least one attribute of the user profile corresponding to the user and the user device associated with the user; and regulating network bandwidth usage through the access control device for each of the set of users at each of the plurality of user devices based on the first network bandwidth limit associated with each of the users. - View Dependent Claims (5, 6, 7)
-
-
8. A system, comprising:
-
an authentication database storing user profiles; an access control device having a plurality of network interfaces coupled to a plurality of user devices; and a provisioning device coupled to the access control device and comprising a computer readable medium comprising instructions for; configuring the access control device to operate in a first state, wherein operation in the first state comprises regulating network bandwidth usage for a set of users based on a first network bandwidth limit associated with each of the users, and each of the set of users is associated with one of the plurality of user devices; receiving a first network communication from a first network application running on a first user device coupled to one of the plurality of network interfaces; accessing a first user profile for a first user associated with the first user device from the authentication database, wherein the first user profile comprises one or more attributes associated with the first user and the first user profile was retrieved from the authentication database based on credentials associated with the first user; determining a second network bandwidth limit for the first user based on the first network bandwidth limit associated with each of the users and the one or more attributes associated with the first user; and dynamically updating at least one of the first network bandwidth limits associated with the plurality of users based on the second network bandwidth limit including configuring the access control device to operate in a second state, wherein operation of the access control device in the second state comprises regulating network bandwidth usage for each of the plurality of users based on the first network bandwidth limits. - View Dependent Claims (9, 10)
-
-
11. A system, comprising:
-
an authentication database storing user profiles; an access control device having a plurality of network interfaces coupled to a plurality of user devices; and a provisioning device coupled to the access control device and comprising a computer readable medium comprising instructions for; retrieving a set of user profiles from the authentication database based on user credentials provided by each of a set of users, wherein each of the set of users is associated with one of the plurality of user devices, each user profile corresponds to a specific user in the set of users, each user profile comprises one or more attributes associated with the corresponding user and each user profile was retrieved from the authentication database based on credentials associated with the corresponding user; determining a first network bandwidth limit for each user based on the at least one attribute of the user profile corresponding to the user and the user device associated with the user; and regulating network bandwidth usage through the access control device for each of the set of users at each of the plurality of user devices based on the first network bandwidth limit associated with each of the users. - View Dependent Claims (12, 13, 14)
-
-
15. A tangible computer readable storage medium comprising instructions for allocating network bandwidth to users in a system having an authentication database storing user profiles, an access control device having a plurality of network interfaces coupled to a plurality of user devices and a provisioning device coupled to the access control device, the instructions further for:
-
configuring the access control device to operate in a first state, wherein operation in the first state comprises regulating network bandwidth usage for a set of users based on a first network bandwidth limit associated with each of the users, and each of the set of users is associated with one of the plurality of user devices; receiving a first network communication from a first network application running on a first user device coupled to one of the plurality of network interfaces; accessing a first user profile for a first user associated with the first user device from the authentication database, wherein the first user profile comprises one or more attributes associated with the first user and the first user profile was retrieved from the authentication database based on credentials associated with the first user; determining a second network bandwidth limit for the first user based on the first network bandwidth limit associated with each of the users and the one or more attributes associated with the first user; and dynamically updating at least one of the first network bandwidth limits associated with the plurality of users based on the second network bandwidth limit including configuring the access control device to operate in a second state, wherein operation of the access control device in the second state comprises regulating network bandwidth usage for each of the plurality of users based on the first network bandwidth limits. - View Dependent Claims (16, 17)
-
-
18. A tangible computer readable storage medium comprising instructions for allocating network bandwidth to users in a system having an authentication database storing user profiles, an access control device having a plurality of network interfaces coupled to a plurality of user devices and a provisioning device coupled to the access control device, the instructions further for:
-
retrieving a set of user profiles from the authentication database based on user credentials provided by each of a set of users, wherein each of the set of users is associated with one of the plurality of user devices, each user profile corresponds to a specific user in the set of users, each user profile comprises one or more attributes associated with the corresponding user and each user profile was retrieved from the authentication database based on credentials associated with the corresponding user; determining a first network bandwidth limit for each user based on the at least one attribute of the user profile corresponding to the user and the user device associated with the user; and regulating network bandwidth usage through the access control device for each of the set of users at each of the plurality of user devices based on the first network bandwidth limit associated with each of the users. - View Dependent Claims (20, 21)
-
-
19. The computer readable storage of claim wherein the set of users includes a first user, and the first network bandwidth was determined based on the at least one attribute of the corresponding user profile and a first user device associated with the first user and the instructions are further for:
-
receiving a network communication from a network application on the first user device, including user credentials provided by a second user at the first user device; retrieving a second user profile for the second user associated with first device from the authentication database; determining a second network bandwidth limit for the second user based on the one or more attributes of the second user profile and the first user device; and dynamically update one or more of the first network bandwidths for each user to account for the second user at the first device.
-
Specification