Network security services architecture
First Claim
Patent Images
1. Private network apparatus for connecting a user to an external internet comprising:
- a plurality of security service pathways each providing a respective combination of security service features;
a service selection dashboard allowing said user to select from a plurality of security service features for user traffic to and from said user;
a network management server coupled to said service selection dashboard for storing a subscriber configuration in response to said user selected security service features;
a pass-through router for coupling said user traffic to said external internet independently of said security service pathways;
a service selection gateway coupled to said user for directing said user traffic to and from one of said service selection dashboard, said pass-through router, or one of said security service pathways; and
a security service router for coupling said plurality of security service pathways to said external internet;
wherein said service selection gateway directs said user traffic to said service selection dashboard if said subscriber configuration is in an initialized state; and
wherein said service selection gateway directs said user traffic to a respective one of said security service pathways or to said pass-through router in response to said subscriber configuration after initialization by said service selection dashboard.
6 Assignments
0 Petitions
Accused Products
Abstract
A convenient and low cost computer security system deploys a menu of security tools within a local network that can be selected by a user connected to the network. A network architecture of the invention is structured to provide highly effective and flexible security features while greatly simplifying the user experience. Separate security service pathways provide different combinations of security service features and traffic from each user is directed to a pathway providing the desired features.
94 Citations
20 Claims
-
1. Private network apparatus for connecting a user to an external internet comprising:
-
a plurality of security service pathways each providing a respective combination of security service features; a service selection dashboard allowing said user to select from a plurality of security service features for user traffic to and from said user; a network management server coupled to said service selection dashboard for storing a subscriber configuration in response to said user selected security service features; a pass-through router for coupling said user traffic to said external internet independently of said security service pathways; a service selection gateway coupled to said user for directing said user traffic to and from one of said service selection dashboard, said pass-through router, or one of said security service pathways; and a security service router for coupling said plurality of security service pathways to said external internet; wherein said service selection gateway directs said user traffic to said service selection dashboard if said subscriber configuration is in an initialized state; and wherein said service selection gateway directs said user traffic to a respective one of said security service pathways or to said pass-through router in response to said subscriber configuration after initialization by said service selection dashboard. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method of providing security service in a network interface to an external internet, said method comprising the steps of:
-
directing a user to a captive portal; presenting security service features to said user; storing a subscription profile for said user in response to security service features selected by said user through said captive portal; receiving user traffic from said user destined for said external internet at a service selection gateway; determining from said subscription profile which security service features to apply to said user traffic; if said subscription profile for said user includes any security service features, then re-directing said user traffic to a particular security service pathway of a plurality of security service pathways, said particular security service pathway corresponding to said security service features identified by said user profile; and if said subscription profile for said user includes no security service features, then re-directing said user traffic to a pass-through router for coupling said user traffic to said external internet. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification