Secure access method, and associated apparatus, for accessing a private IP network
First Claim
1. In a method for communicating data between a private data communication network and a remote communication station, the private data communication network coupled to network infrastructure of a radio communication system of which the remote communication station forms a portion, an improvement of a secured-access method of accessing the private data communication network by the remote communication station, said method comprising the steps of:
- storing a remote communication station identity which identifies the remote communication station at the network infrastructure;
generating a request by the remote communication station to access the network infrastructure to permit communication of data therethrough;
detecting at the network infrastructure the request generated during said step of generating;
authenticating the remote communication station to confirm authorization of the remote communication station to communicate by way of the network infrastructure;
the remote communication station identity stored together with authentication data associated with the remote communication station;
forwarding a network-access request to the private data communication network if the remote communication station is authenticated during said step of authenticating, the remote communication station identified by the remote communication station identity stored during said step of storing;
determining, responsive to the network-access request forwarded during said step of forwarding, whether the remote communication station is permitted to access the private data communication network; and
permitting the remote communication station to access the private data communication network if the remote communication station is determined, during said step of determining, to be permitted to access the private data communication network.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, and associated apparatus, for accessing a private IP network with a wireless host by way of a wireless access network. Once authenticated and permitted access to the private IP network, the wireless host becomes a virtual host of the private IP network. A wireless host identifier (WHI) is used to identify the wireless host. Permission to communicate by way of wireless access network is confirmed by an authentication procedure. The WHI is thereafter provided to the private IP network. If the WHI is of a selected value, permission to access the private IP network is granted. An IP address used to address data to the wireless host is allocated by the private IP network once access to the private IP network is granted.
-
Citations
24 Claims
-
1. In a method for communicating data between a private data communication network and a remote communication station, the private data communication network coupled to network infrastructure of a radio communication system of which the remote communication station forms a portion, an improvement of a secured-access method of accessing the private data communication network by the remote communication station, said method comprising the steps of:
-
storing a remote communication station identity which identifies the remote communication station at the network infrastructure; generating a request by the remote communication station to access the network infrastructure to permit communication of data therethrough; detecting at the network infrastructure the request generated during said step of generating; authenticating the remote communication station to confirm authorization of the remote communication station to communicate by way of the network infrastructure; the remote communication station identity stored together with authentication data associated with the remote communication station; forwarding a network-access request to the private data communication network if the remote communication station is authenticated during said step of authenticating, the remote communication station identified by the remote communication station identity stored during said step of storing; determining, responsive to the network-access request forwarded during said step of forwarding, whether the remote communication station is permitted to access the private data communication network; and permitting the remote communication station to access the private data communication network if the remote communication station is determined, during said step of determining, to be permitted to access the private data communication network.
-
-
2. In a method for communicating data between a private IP (Internet Protocol) network and a remote communication station, the private IP network coupled to network infrastructure of a radio communication system of which the remote communication station forms a portion, an improvement of a secured-access method of accessing the private IP network by the remote communication station, said method comprising the steps of:
-
storing a remote communication station identity which identifies the remote communication station at the network infrastructure; generating a request by the remote communication station to access the network infrastructure to permit communication of data therethrough; detecting at the network infrastructure the request generated during said step of generating; authenticating the remote communication station to confirm authorization of the remote communication station to communicate by way of the network infrastructure; the remote communication station identity stored together with authentication data associated with the remote communication station; forwarding an IP network-access request to the private IP network if the remote communication station is authenticated during said step of authenticating, the remote communication station identified by the remote communication station identity stored during said step of storing; determining, responsive to the IP network-access request forwarded during said step of forwarding, whether the remote communication station is permitted to access the private IP network; and permitting the remote communication station to access the private IP network if the remote communication station is determined, during said step of determining, to be permitted to access the private IP network. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 16, 17, 18, 19, 20)
-
-
13. In a method for communicating data between a private IP (Internet Protocol) network and a remote communication station, the private IP network coupled to network infrastructure of a radio communication system of which the remote communication station forms a portion, an improvement of a secured-access method of accessing the private IP network by the remote communication station, said method comprising the steps of:
-
storing a remote communication station identity which identifies the remote communication station at a storage location; generating a request by the remote communication station to access the network infrastructure to permit communication of data therethrough; detecting at the network infrastructure the request generated during said step of generating; authenticating the remote communication station to confirm authorization of the remote communication station to communicate by way of the network infrastructure; forwarding an IP network-access request to the private IP network if the remote communication station is authenticated during said step of authenticating, the remote communication station identified by the remote communication station identity stored during said step of storing; determining, responsive to the IP network-access request forwarded during said step of forwarding, whether the remote communication station is permitted to access the private IP network; and permitting the remote communication station to access the private IP network if the remote communication station is determined, during said step of determining, to be permitted to access the private IP network; wherein said step of storing further comprises the step of storing a private IP network identity identifying the private IP network between which the data is communicated with the remote communication station; and wherein the IP network-access request forwarded during said step of forwarding is forwarded to the private IP network identified by the private IP network identity stored during said step of storing the private IP network identity.
-
-
14. In a method for communicating data between a private IP (Internet Protocol) network and a remote communication station, the private IP network coupled to network infrastructure of a radio communication system of which the remote communication station forms a portion, an improvement of a secured-access method of accessing the private IP network by the remote communication station, said method comprising the steps of:
-
storing a remote communication station identity which identifies the remote communication station at a storage location; generating a request by the remote communication station to access the network infrastructure to permit communication of data therethrough; detecting at the network infrastructure the request generated during said step of generating; authenticating the remote communication station to confirm authorization of the remote communication station to communicate by way of the network infrastructure; forwarding an IP network-access request to the private IP network if the remote communication station is authenticated during said step of authenticating, the remote communication station identified by the remote communication station identity stored during said step of storing; determining, responsive to the IP network-access request forwarded during said step of forwarding, whether the remote communication station is permitted to access the private IP network; and permitting the remote communication station to access the private IP network if the remote communication station is determined, during said step of determining, to be permitted to access the private IP network; wherein said step of storing further comprises the step of storing a private IP network identity identifying the private IP network between which the data is communicated with the remote communication station; and wherein said step of generating further comprises the step of generating a wireless-host-provided, IP network identity, the wireless-host-provided, IP network identity identifying the private IP network between which the data is to be communicated with the remote communication station. - View Dependent Claims (15)
-
-
21. In a radio communication system having a wireless access network, a private data communication network coupled to the wireless access network, and a remote communication station operable selectively to communicate data with the private data communication network by way of the wireless access network, an improvement of apparatus for selectively permitting access to the private data communication network by the remote communication station, said apparatus comprising:
-
a storage element at the wireless access network for storing a remote communication station identity identifying the remote communication station; a detector coupled to the wireless access network, said detector for detecting a request requesting access by the remote communication station to the wireless access network to permit communication of data therethrough; an authenticator coupled to the wireless access network, said authenticator for confirming authorization of the remote communication station to communicate by way of the wireless access network; the remote communication station identity stored together with authentication data associated with the remote communication station; a network access requester coupled to said authenticator, said network access requestor operable responsive to authentication by said authenticator, said network access requester for generating a request to request access to the private data communication network by the remote communication station, the remote communication station identified in the request by the remote communication station identity stored in said storage element; and a determiner associated with the private IP network, said determiner operable responsive to the request requested by said network access requester to determine whether to permit access by the remote communication station to the private data communication network. - View Dependent Claims (22, 23, 24)
-
Specification