Credential authentication for mobile users
First Claim
1. In a computerized system that includes one or more wireless clients accessing a content server through a WAP server and a gateway interposed between the WAP server and the content server, all of which are part of a network, wherein access to the content server requires authentication credentials, the network maintaining gateway authentication credentials that specify one or more access privileges tailored to access through the gateway, a method of authenticating a client comprising a gateway performing the acts of:
- defining an authentication filter in a gateway that is remotely interposed between a remote WAP server client and a content server, wherein the authentication filter maps authentication credentials received from the remote WAP server client according to pre-established criteria, the authentication filter including a domain identifier and a username modifier, wherein the WAP server provides the authentication credentials to the gateway in response to a wireless client requesting access to a domain available to the content server;
receiving the authentication credentials at the gateway from the remote WAP server client, wherein the authentication credentials include both a password and a user name corresponding to access permissions for accessing the resources at the content server through one or more domains;
mapping the received authentication credentials based on the pre-established criteria, and by changing at least one of a domain and user name of the authentication credentials received from the remote client to different domain or user name, respectively, wherein the domain identifier is configured to change the domain, and wherein the username modifier is configured to change the user name that is received from the remote client by at least one of adding a suffix or prefix to the user name, adding new characters to a middle portion of the user name, replacing a portion of the user name, or deleting some characters from the user name; and
sending the mapped authentication credentials to the network, the mapped authentication credentials including the password originally provided by the WAP server client and the at least one changed user name or domain, and such that the wireless client'"'"'s access to the content source is based on the mapped authentication credentials comprising the at least one of a changed user name and a changed domain.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods, systems, and computer program products for authenticating a mobile client that may have an input system optimized for numeric input. A mobile gateway receives authentication credentials from a mobile client and uses an authentication filter to map the authentication credentials according to pre-established criteria. The authentication filter may change the domain name, the username, or both. Then, the mapped authentication credentials are sent to a network that includes the content server being accessed. Any access privileges granted to the mobile client are based on the mapped authentication credentials. The mobile gateway may be configured to accept connections only from known servers. Mobile authentication credentials may be maintained in one or more domains, possibly having a trust relationship, or may be stored in a separately administered credential database.
-
Citations
36 Claims
-
1. In a computerized system that includes one or more wireless clients accessing a content server through a WAP server and a gateway interposed between the WAP server and the content server, all of which are part of a network, wherein access to the content server requires authentication credentials, the network maintaining gateway authentication credentials that specify one or more access privileges tailored to access through the gateway, a method of authenticating a client comprising a gateway performing the acts of:
-
defining an authentication filter in a gateway that is remotely interposed between a remote WAP server client and a content server, wherein the authentication filter maps authentication credentials received from the remote WAP server client according to pre-established criteria, the authentication filter including a domain identifier and a username modifier, wherein the WAP server provides the authentication credentials to the gateway in response to a wireless client requesting access to a domain available to the content server; receiving the authentication credentials at the gateway from the remote WAP server client, wherein the authentication credentials include both a password and a user name corresponding to access permissions for accessing the resources at the content server through one or more domains; mapping the received authentication credentials based on the pre-established criteria, and by changing at least one of a domain and user name of the authentication credentials received from the remote client to different domain or user name, respectively, wherein the domain identifier is configured to change the domain, and wherein the username modifier is configured to change the user name that is received from the remote client by at least one of adding a suffix or prefix to the user name, adding new characters to a middle portion of the user name, replacing a portion of the user name, or deleting some characters from the user name; and sending the mapped authentication credentials to the network, the mapped authentication credentials including the password originally provided by the WAP server client and the at least one changed user name or domain, and such that the wireless client'"'"'s access to the content source is based on the mapped authentication credentials comprising the at least one of a changed user name and a changed domain. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 34, 35, 36)
-
-
12. In a computerized system that includes one or more mobile clients accessing a content server through a mobile gateway and a WAP server interposed between the WAP server and the content server, all of which are part of a network, wherein access to the content server requires authentication credentials that may contain a combination of numbers, upper case letters, lower case letters, and punctuation, the network maintaining mobile authentication credentials that specify one or more access privileges tailored to mobile client access, a method of authenticating a mobile client comprising a mobile gateway performing steps for:
-
altering, at a gateway, authentication credentials that are received from a WAP server communicating with one or more remote mobile clients and the gateway to produce mapped authentication credentials that match mobile authentication credentials maintained on the network by at least one of changing the domain name and the user name, wherein the authentication credentials include a password and user name for resources at one or more domains of the content server, which are provided by a wireless client to the WAP server and from the WAP server to the gateway, and wherein changing the user name includes one of adding a suffix or prefix to the user name, adding new characters to a middle portion of the user name, replacing a portion of the user name, or deleting some characters from the user name; identifying a mobile client to the network using the altered authentication credentials, including the password provided by the wireless client and at least one of a changed domain or user name; and accessing content provided by the network in accordance with the access privileges allowed by the mobile authentication credentials. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. In a computerized system that includes one or more mobile clients accessing a content server through a WAP server and a mobile gateway interposed between the WAP server and the content server, all of which are part of a network, wherein access to the content server requires authentication credentials that may contain a combination of numbers, upper case letters, lower case letters, and punctuation, the network maintaining mobile authentication credentials that specify one or more access privileges tailored to mobile client access, a computer program product that implements a method of authenticating a mobile client comprising:
a computer readable medium for carrying machine-executable instructions for implementing the method; and wherein said method is comprised of machine-executable instructions for a mobile gateway performing the acts of; defining an authentication filter in a gateway that is remotely interposed between a remote WAP server client and a content server, wherein the authentication filter maps authentication credentials received from the remote WAP server client according to pre-established criteria, the authentication filter including a domain identifier and a username modifier, wherein the WAP server provides the authentication credentials to the gateway in response to a wireless client requesting access to a domain available to the content server; receiving the authentication credentials at the gateway from the remote WAP server client, wherein the authentication credentials include both a password and a user name corresponding to access permissions for accessing the resources at the content server through one or more domains; mapping the received authentication credentials based on the pre-established criteria, and by changing at least one of a domain and user name of the authentication credentials received from the remote client to different domain or user name, respectively, wherein the domain identifier is configured to change the domain, and wherein the username modifier is configured to change the user name that is received from the remote client by at least one of adding a suffix or prefix to the user name, adding new characters to a middle portion of the user name, replacing a portion of the user name, or deleting some characters from the user name; and sending the mapped authentication credentials to the network, the mapped authentication credentials including the password originally provided by the WAP server client and the at least one changed user name or domain, and such that the wireless client'"'"'s access to the content source is based on the mapped authentication credentials comprising the at least one of a changed user name and a changed domain. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
Specification