Method for configuring a network element at a customer premise via a mobile data terminal
First Claim
Patent Images
1. A method comprising the steps of:
- downloading a configuration file to a mobile data terminal from a provisioning server via a secure channel, the configuration file downloadable from the mobile data terminal to a network element, the network element being one of a router, switch, firewall, or gateway, the network element located at a customer premises, the configuration file adapted to configure the network element for operation, the configuration comprising a network topology, addresses, and security parameters,said downloading of the configuration file responsive to;
a connection created between the network element and the mobile data terminal;
a web page requested by the mobile data terminal from the provisioning server;
a customer request, the customer authenticated to the provisioning server via the web page;
a second web page and an applet downloaded from the provisioning server after customer authentication;
a handshake is established between the network element and the applet;
a serial number received from the network element during the handshake;
a determination if the received serial number matches a serial number stored by the mobile data terminal; and
if a match occurred, a provisioning server network address/port and shared secret transmitted to the network element, the shared secret configured to create the secure channel, the shared secret computed by a random number generator.
1 Assignment
0 Petitions
Accused Products
Abstract
An enhanced network element and method for configuring and deploying computer network elements is disclosed. A customer orders a network element from an equipment provider. Upon receipt of the unconfigured network element, a Trusted Configuration Device (TCD) is shipped from a network provider to the customer. The TCD transmits information to the NE that enables it to download a configuration file from a Provisioning Server (PS) via a secure channel.
-
Citations
13 Claims
-
1. A method comprising the steps of:
-
downloading a configuration file to a mobile data terminal from a provisioning server via a secure channel, the configuration file downloadable from the mobile data terminal to a network element, the network element being one of a router, switch, firewall, or gateway, the network element located at a customer premises, the configuration file adapted to configure the network element for operation, the configuration comprising a network topology, addresses, and security parameters, said downloading of the configuration file responsive to; a connection created between the network element and the mobile data terminal; a web page requested by the mobile data terminal from the provisioning server; a customer request, the customer authenticated to the provisioning server via the web page; a second web page and an applet downloaded from the provisioning server after customer authentication; a handshake is established between the network element and the applet; a serial number received from the network element during the handshake; a determination if the received serial number matches a serial number stored by the mobile data terminal; and if a match occurred, a provisioning server network address/port and shared secret transmitted to the network element, the shared secret configured to create the secure channel, the shared secret computed by a random number generator. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeAT&T Corporation (AT&T, Inc.)
-
Original AssigneeAT&T Corporation (AT&T, Inc.)
-
InventorsRonen, Yzhak, O'Neil, Joseph Thomas
-
Primary Examiner(s)Najjar; Saleh
-
Assistant Examiner(s)ISMAIL, SHAWKI SAIF
-
Application NumberUS10/364,060Time in Patent Office1,484 DaysField of Search709220-225, 709217-219, 713/159, 713/186, 713168-171US Class Current709/220CPC Class CodesH04L 41/0806 for initial configuration o...H04L 63/02 for separating internal fro...H04L 63/20 for managing network securi...
