MANAGEMENT OF ACCESS TO SERVICE IN AN ACCESS POINT

US 20110093913A1
Filed: 10/15/2009
Published: 04/21/2011
Est. Priority Date: 10/15/2009
Status: Active Grant

First Claim

Patent Images

1. A system that controls access to wireless service and features thereof, the system comprising:

a set of access points (APs) that includes at least one an indoor-based base stations or an outdoor-based base stations; and

a manager component that configures at least one of an access control list associated with an access point in the set of APs or an access profile linked to the access control list, the access control list (ACL) identifies one or more devices authorized to receive wireless service through the access point, and the access profile includes a set of service attributes that control logic for provision of wireless service to a device identified in an ACL, wherein the manager component resides at least in part in at least one of an access point in the set of APs, or a centralized network platform or component(s) therein.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

System(s) and method(s) are provided to configure access rights to wireless resources and telecommunication service(s) supplied through a set of access points (APs). Access to wireless resources is authorized by access attributes in access control list(s) (ACL(s)) while a profile of service attributes linked to the ACL(s) regulate provision of telecommunication service(s). Access and service attributes can be automatically or dynamically configured, at least in part, in response to changes in data that directly or indirectly affects an operation environment in which the set of APs is deployed. Automatic or dynamic configuration of access or service attributes enable control or coordination of wireless service provided through the set of APs; degree of control or coordination is determined at least in part by enablement or disablement of disparate services for disparate devices at disparate access points at disparate times and with disparate service priority.

234 Citations

22 Claims

1. A system that controls access to wireless service and features thereof, the system comprising:
- a set of access points (APs) that includes at least one an indoor-based base stations or an outdoor-based base stations; and
  
  a manager component that configures at least one of an access control list associated with an access point in the set of APs or an access profile linked to the access control list, the access control list (ACL) identifies one or more devices authorized to receive wireless service through the access point, and the access profile includes a set of service attributes that control logic for provision of wireless service to a device identified in an ACL, wherein the manager component resides at least in part in at least one of an access point in the set of APs, or a centralized network platform or component(s) therein.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The system of claim 1, wherein configuration of at least one of the ACL associated with an access point or the access profile linked to the ACL is automatic and dynamic, and based at least in part on at least one of a set of administration rules, reference data, or updates to the reference data;
    - reference data directly or indirectly affect wireless service provided by the access point.
  - 3. The system of claim 2, wherein the manager component includes:
    - a monitor component that tracks at least one of updates to reference data or operation condition(s) of an access point in the set of APs, wherein updates to reference data can be based at least in part on at least one of an event, a time, or a location; and
      
      a distribution component that provisions access attributes and service attributes to a local memory in an access point in the set of APs.
  - 4. The system of claim 3, to track updates to reference data, the monitor component polls reference data retained in a memory, wherein the monitor component polls the data periodically or in accordance with a polling schedule.
  - 5. The system of claim 4, to track updates to reference data, the monitor component receives notification(s) of update(s) to reference data, wherein the monitor component subscribes to an update notification service provided by a component that manages the reference data retained in the memory.
  - 6. The system of claim 3, to provision access attributes and service attributes, the distribution component configures at least one of access attributes in one or more access control lists or service attributes linked to the one or more access control lists, configuration is automatic and based at least in part on the set of administration rule(s).
  - 7. The system of claim 3, wherein an access point in the set of APs downloads at least one of access attribute(s) or service attribute(s) in response to attachment signaling received from a mobile device not recorded in an ACL retained locally in the access point.
  - 8. The system of claim 3, wherein the manager component delivers at least one of access attributes or service attributes to the local memory of the access point based at least in part on a prediction of attachment events at the access point, the prediction based at least in part on available attachment intelligence.
  - 9. The system of claim 3, wherein at least one of the manager component or the access point remove provisioned access attributes and service attributes in the local memory based at least in part on a retention protocol that includes parameters that dictate removal of data in the local memory.
  - 10. The system of claim 1, further comprising a centralized memory that includes a set of access control lists associated with the set of APs and a set of access profiles linked to the set of access control lists.
  - 11. The system of claim 2, wherein the manager component configures at least one of an access control list or access profile associated thereto in an access point in the set of APs to allow public access to wireless service through the access point, the configuration based at least in part on at least one of a predetermined schedule or an agreement amongst an owner or lessee of the access point.

12. A method, comprising:
- employing a processor to execute code instructions retained in a computer-readable medium, the code instructions when executed by the one or more processors perform at the least the following acts;
  
  provisioning a set of rules to control at least one of a set of access control lists or a set of access profiles, wherein the provisioning act includes provisioning a set of criteria to establish access attributes in an access control list for a prospective consumer;
  
  monitoring reference data identified in the set of rules;
  
  applying a rule in the set of rules to the monitored reference data; and
  
  configuring at least one of an access control list or an access profile based at least in part on at least one of the set of rules, the monitored reference data, or the outcome of application of the rule in the set of rules to the monitored reference data.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21)
- - 13. The method of claim 12, further comprising:
    - monitoring operation conditions of a set of access points; and
      
      updating at least one of a set of access control lists or a set of access profiles based at least in part on the monitored operation conditions.
  - 14. The method of claim 13, wherein applying a rule in the set of rules to the monitored reference data includes determining if a portion of the data retained in a repository that retains data linked to a set of prospective consumers is updated.
  - 15. The method of claim 14, wherein the configuring act includes configuring at least one of a set of access control lists or a set of service attributes based at least in part on at least one of the updated portion of the data or the provisioned set of criteria.
  - 16. The method of claim 12, wherein the configuring act includes:
    - configuring a set of access control lists (ACLs) based at least in part on at least one of collected credentials of a first set of prospective users or collected credentials of a second set of prospective users; and
      
      updating the set of ACLs according at least in part to updates to the collected credentials.
  - 17. The method of claim 12, wherein applying a rule in the set of rules to the monitored reference data includes:
    - generating a time-stamp for received attachment signaling; and
      
      determining if the time-stamp is within a schedule in a set of provisioned schedules; and
      
      .if determined that the time-stamp is within the schedule, the configuring act includes granting access to wireless service to a mobile device identified in the received attachment signaling according at least in part with the schedule.
  - 18. The method of claim 12, wherein the configuring act includes:
    - configuring public access to wireless service provided through an indoor-based access point for a predetermined period when a current time is past a preconfigured time; and
      
      revoking public access to wireless service when the predetermined period elapses, wherein a timer indicates if the predetermined period has elapsed, the timer triggered when a current time is past a preconfigured time.
  - 19. The method of claim 12, wherein the monitoring act includes detecting at least one of entry of a mobile device to a restricted area or exit of the mobile device from the restricted area.
  - 20. The method of claim 19, wherein the configuring act includes configuring access attributes in a set of access control lists linked to a set of indoor-based access points that provides wireless service to the restricted area.
  - 21. The method of claim 12, further comprising:
    - validating credential(s) of a mobile device associated with received attachment signaling against a first access control list retained in local storage;
      
      validating the credential(s) against a second ACL if validation fails;
      
      downloading at least one of access attributes or service attributes associated with the second ACL to the local storage if validation succeeds;
      
      granting access to wireless service in accordance with at least one of the downloaded access attributes or service attributes; and
      
      removing the downloaded access or service attributes according to a retention protocol.

22. A system, comprising:
- means for provisioning a group of one or more rules to control at least one of a set of access control lists or a set of access profiles;
  
  means for monitoring reference data identified in the group of one or more rules;
  
  means for applying a rule in the group of one or more rules to the monitored reference data; and
  
  means for configuring at least one of an access control list or an access profile based at least in part on at least one of the group or one or more rules, the monitored reference data, or the outcome of application of the rule in the set of rules to the monitored reference data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
AT&T Intellectual Property I LP (AT&T, Inc.)
Original Assignee
AT&T Intellectual Property I LP (AT&T, Inc.)
Inventors
Majmundar, Milap, Wohlert, Randolph

Granted Patent

US 8,510,801 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/1
CPC Class Codes

H04L 63/083   using passwords cryptograph...

H04L 63/0861   using biometrical features,...

H04L 63/101   Access control lists [ACL]

H04W 12/068   using credential vaults, e....

H04W 12/069   using certificates or pre-s...

H04W 12/082   using revocation of authori...

H04W 48/16   Discovering, processing acc...

H04W 84/045   using private Base Stations...

H04W 88/08   Access point devices

MANAGEMENT OF ACCESS TO SERVICE IN AN ACCESS POINT

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

234 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

MANAGEMENT OF ACCESS TO SERVICE IN AN ACCESS POINT

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

234 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links