Single step network logon based on point to point protocol
First Claim
1. A method for single-step subscriber logon to a differentiated data communications network including a first domain and a second domain, said method comprising:
- communicating, by a network interface, between the network interface and a host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point communication link between the host and the network interface;
identifying a source address for the host; and
authorizing the host to access said first domain and said second domain based upon login information obtained from the host.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for providing single-step logon access for a subscriber to a differentiated computer network having more than one separate access area. In a method for single-step logon a network gateway interface grants a subscriber access to both one or more public network domains, such as the Internet, and one or more private domains, such as community of interest domains or intra-network domains, without requiring the subscriber to launch a separate logon application. Once the subscriber has completed a single step logon to the network interface, the service provider is able to provide the subscriber with simultaneous secure channel access to both public areas and secured private areas. A network gateway interface provides the capability to authenticate the subscriber, provide the subscriber with an IP address and negotiate a point to point protocol session with the subscriber'"'"'s host, thereby eliminating the need to have the subscriber logon for public area access and then logon for private area access.
145 Citations
55 Claims
-
1. A method for single-step subscriber logon to a differentiated data communications network including a first domain and a second domain, said method comprising:
-
communicating, by a network interface, between the network interface and a host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point communication link between the host and the network interface; identifying a source address for the host; and authorizing the host to access said first domain and said second domain based upon login information obtained from the host. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for single-step subscriber logon to a differentiated data communications network including a first domain and a second domain, said method comprising:
-
authenticating in a network interface a host based upon login information obtained from the host; communicating, by the network interface, between the network interface and the host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point link existing between the host and the network interface; identifying a source address for the host; writing said login information into a memory; and authorizing the host to access said first domain and said second domain based upon said login information.
-
-
10. A method for single-step subscriber logon to a differentiated data communication network including same-session access capabilities to a first domain and a second domain, said method comprising:
-
communicating between a network interface and a host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point communication link between the host and the network interface; identifying a source address for the host; and authorizing the host to access said first domain and said second domain based upon login information obtained from the host. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. A method for single-step subscriber logon to a differentiated data communication network including same-session access capabilities to a first domain and a second domain, said method comprising:
-
authenticating a host based upon login information obtained from the host; communicating, by the network interface, between the network interface and the host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point link existing between the host and the network interface; identifying a source address for the host; writing said login information into a memory; and authorizing the host to access said first domain and said second domain based upon said login information.
-
-
19. A method for single-step subscriber logon of a host to a differentiated data communication network having access to a first domain and a second domain comprising:
-
receiving login information from said host; authenticating said host based upon said login information; storing said login information in a memory; notifying said host once a successful authentication process has been completed; initiating an address allocation negotiation session; assigning a source address to said host; communicating, by a network interface, between the network interface and said host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point link existing between said host and said network interface; and writing a subscriber-related entry into the memory based upon said source address and said login information. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. An apparatus for single step logon of a host to a differentiated data communication network having the capacity to create same-session open channels to a first domain and a second domain, the apparatus comprising:
-
means for communicating via a network interface with a host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point communication link existing between the host and the network interface; means for identifying a source address for the host; and means for authorizing the host to access said first domain and said second domain based upon login information obtained from the host. - View Dependent Claims (30, 31, 32)
-
-
33. An apparatus for single-step subscriber logon of a host to a differentiated data communication network having access to a first domain and a second domain comprising:
-
means for receiving login information from said host; means for authenticating said host based upon said login information; means for storing said login information in a memory; means for notifying said host once a successful authentication process has been completed; means for initiating an address allocation negotiation session; means for assigning a source address to said host; means for communicating, by a network interface, between the network interface and said host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point link existing between said host and said network interface; and means for writing a subscriber-related entry into the memory based upon said source address and said login information.
-
-
34. A program storage device readable by a machine, tangibly embodying a program of instructions executable by the machine to perform a method for single-step subscriber logon to a differentiated data communications network including a first domain and a second domain, said method comprising:
-
communicating, by a network interface, between the network interface and a host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point communication link between the host and the network interface; identifying a source address for the host; and authorizing the host to access said first domain and said second domain based upon login information obtained from the host. - View Dependent Claims (35, 36)
-
-
37. A program storage device readable by a machine, tangibly embodying a program of instructions executable by the machine to perform a method for single-step subscriber logon to a differentiated data communication network including secure simultaneous access capabilities to a first domain and a second domain, said method comprising:
-
communicating, by a network interface, between the network interface and a host, wherein said communicating comprises a transport of multi-protocol data packets over a point-to-point communication link between the host and the network interface; identifying a source address for the host; and authorizing the host to access said first domain and said second domain based upon login information obtained from the host. - View Dependent Claims (38, 39)
-
-
40. A gateway for single-step subscriber logon of a host to a differentiated data communication network having access to a first domain and a second domain, the gateway comprising:
-
a multi-protocol point-to-point link device for establishing a communication link for the transport of multi-protocol data packets between the host and the gateway; a source address device for obtaining a source address for the host; and an authentication processor for authorizing the host to access the first domain and the second domain based upon login information obtained from the host. - View Dependent Claims (41, 46, 47)
-
-
42. An apparatus for single-step subscriber logon of a host to a differentiated data communication network having access to a first domain and a second domain, the apparatus comprising:
-
a multi-protocol point-to-point link device in communication with the host for establishing a communication link; a source address device in communication with the host for negotiating a dynamic Internet Protocol (IP) address; and an authentication processor for authorizing the host to access the first domain and the second domain based upon login information obtained from the host. - View Dependent Claims (43, 44, 45)
-
-
48. An apparatus for single-step subscriber logon to a differentiated data communications network including a first domain and a second domain, the apparatus comprising:
-
means for communicating, by a network interface, between the network interface and a host, wherein the communicating comprises a transport of multi-protocol data packets over a point-to-point communication link between the host and the network interface; means for identifying a source address for the host; and means for authorizing the host to access the first domain and the second domain based upon login information obtained from the host. - View Dependent Claims (49, 50, 51)
-
-
52. A program storage device readable by a machine, tangibly embodying a program of instructions executable by the machine to perform a method for single-step subscriber logon of a host to a differentiated data communication network having access to a first domain and a second domain, the method comprising:
-
receiving login information from the host; authenticating the host based upon the login information; storing the login information in a memory; notifying the host once a successful authentication process has been completed; initiating an address allocation negotiation session; assigning a source address to the host; communicating, by a network interface, with between the network interface and the host, wherein the communicating comprises a transport of multi-protocol data packets over a point-to-point link existing between the host and the network interface; and writing a subscriber-related entry into the memory based upon the source address and the login information. - View Dependent Claims (53, 54, 55)
-
Specification