Server and method for providing specific network services

US 7,356,841 B2
Filed: 05/14/2001
Issued: 04/08/2008
Est. Priority Date: 05/12/2000
Status: Expired due to Fees

First Claim

Patent Images

1. A method for automatically providing enhanced and secure access to a group of users initiated by a non-technically trained user on a computer network without intervention of information systems personnel, the method comprising the steps of:

1) receiving a request from a non-technically trained user of a visitor based network (VBN) to establish a group of users in the VBN, the request including a group identifier which includes a group name and password provided by the user and identifies the group;

2) configuring, in response to the request, a network infrastructure of the VBN to support the group without intervention of information systems personnel;

3) allowing other non-technically trained users of the VBN to join the group by using the group name and password;

4) further configuring the network infrastructure of the VBN to support the joining users without intervention of information systems personnel; and

5) dissolving the group based on predetermined rules including a predetermined rule to dissolve the group at expiry of a predetermined period,wherein the step of further configuring the network infrastructure includes the step of configuring a switch port that a joining user is connected to with a VLAN associated with the group.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A server and method is provided to provide a specific service to network users. The server and method automatically provide user-to-server security using VLANs. The server manages VLAN based on the request from a user for creating/deleting/joining/leaving VLANs. The server allows user to control groupings and overcomes the VLAN limit with the filtering policies on the switching infrastructure. In the second aspect of invention, the server and method provide a specific address based on requests from users. The server dynamically handles the management and facilitation of the requests. The server offers users reassignment of IP addresses from a first set of characteristics to a second set of characteristics with minimal user intervention. This allows users the ability to run a broader range of protocols. In the third aspect of invention, the server and method is provided to provide a routable IP address to a remote computer. The server allows pools of routable addresses to be maintained on one or more remote servers. The server can solve the shortage of the routable IP addresses.

141 Citations

20 Claims

1. A method for automatically providing enhanced and secure access to a group of users initiated by a non-technically trained user on a computer network without intervention of information systems personnel, the method comprising the steps of:
- 1) receiving a request from a non-technically trained user of a visitor based network (VBN) to establish a group of users in the VBN, the request including a group identifier which includes a group name and password provided by the user and identifies the group;
  
  2) configuring, in response to the request, a network infrastructure of the VBN to support the group without intervention of information systems personnel;
  
  3) allowing other non-technically trained users of the VBN to join the group by using the group name and password;
  
  4) further configuring the network infrastructure of the VBN to support the joining users without intervention of information systems personnel; and
  
  5) dissolving the group based on predetermined rules including a predetermined rule to dissolve the group at expiry of a predetermined period,wherein the step of further configuring the network infrastructure includes the step of configuring a switch port that a joining user is connected to with a VLAN associated with the group.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 17, 19)
- - 2. The method of claim 1 wherein the group of users is composed of one or more users.
  - 3. The method of claim 1 wherein the network infrastructure includes a physical local area network.
  - 4. The method of claim 1 wherein the step of configuring a network includes the step of establishing the virtual local area network (VLAN) on a physical local area network.
  - 5. The method of claim 1 wherein the step of configuring a network infrastructure includes the step of configuring switches that are IEEE802.1Q compliant.
  - 6. The method of claim 5 wherein the step of configuring switches includes a use of Q-tag.
  - 7. The method of claim 1 wherein the step of dissolving the group includes revoking the group identifier.
  - 8. The method of claim 7 wherein the step of dissolving further includes the step of returning ports of switches supporting a VLAN associated with the dissolved group to a default state and removing all references to the VLAN associated with the dissolved group from the switches.
  - 17. The method as claimed in claim 1 wherein the receiving step receives the request including a usage period provided by the user;
    - andthe dissolving step dissolves the group when the usage period expires.
  - 19. The method of claim 1 further comprising the steps of:
    - automatically determining and assigning an internet protocol (IP) address for the user connected on the VBN;
      
      registering the user in association with addressing information including the assigned IP address and a Media Access Control (MAC) address of the user; and
      
      storing and maintaining the addressing information for the registered user.

9. A computer readable medium containing computer instructions for executing in a computer of a method for automatically providing enhanced and secure access to a group of users initiated by a non-technically trained user on a computer network without intervention of information systems personnel, the method comprising the steps of:
- 1) receiving a request from a non-technically trained user of a visitor based network (VBN) to establish a group of users in the VBN, the request including a group identifier which includes a group name and password provided by the user and identifies the group;
  
  2) configuring a network infrastructure of the VBN to support the group without Intervention of information systems personnel;
  
  3) allowing other non-technically trained users of the VBN to join the group by using the group name and password;
  
  4) further configuring the network infrastructure of the VBN to support the joining users without intervention of information systems personnel; and
  
  5) dissolving the group based on predetermined rules including a predetermined rule to dissolve the group at expiry of a predetermined period,wherein the step of further configuring the network infrastructure includes the step of configuring a switch port that a joining user is connected to with a VLAN associated with the group.

10. A server to provide enhanced and secure access to a group of users initiated by a non-technically trained user on a computer network without intervention of information systems personnel, the server comprising:
- 1) a registration module to receive from a non-technically trained user of a visitor based network (VBN) a request to create a group of users in the VBN, the request including a group identifier which includes a group name and password provided by the user and identifies a group of users, and to receive from other non-technically trained users of the VBN a request to join the group using the group name and password;
  
  2) a registration driver to register the user and the other users to access the group of users, assign the group of users and maintain registration information and state information of a network infrastructure of the VBN associated with the group of users according to the group identifier in response to the requests from the user without intervention of information systems personnel, and to dissolve the group based on predetermined rules including a predetermined rule to dissolve the group at expiry of a predetermined period;
  
  3) a module to assign VLAN tags to the group based on registration status; and
  
  4) a packet driver module to insert/remove VLAN tags from packets based on the registration status,5) a switch commander for configuring a network infrastructure of the VBN to support the group without intervention of information systems personnel in response to the request for creating the group of users, and configuring a switch port that a joining user is connected to with a VLAN associated with the group.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 18, 20)
- - 11. The server of claim 10 wherein the VLAN tags are Q-tags of IEEE802.1Q.
  - 12. The server of claim 10 wherein the state information of a network infrastructure is information on the switches that are IEEE802.1Q compliant.
  - 13. The server of claim 10 wherein the module to construct VLAN tags comprises the SNMP module.
  - 14. The server of claim 10 wherein the module further comprises a web based user interface.
  - 15. The server of claim 10 wherein the registration module further receives from the user a request for showing information associated with the group of users.
  - 16. The server of claim 10 wherein the registration module further receives from the user a request for deleting the group of users.
  - 18. The server as claimed in claim 10 wherein the registration module receives the request including a usage period provided by the user;
    - andthe registration driver dissolves the group when the usage period expires.
  - 20. The server of claim 10, wherein the registration module automatically determines and assigns an Internet Protocol (IP) address for the user connected on the VBN, and registers the user in association with addressing information including the assigned IP address and a Media Access Control (MAC) address of the user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SolutionInc Limited
Original Assignee
SolutionInc Limited
Inventors
Thompson, Michael, Wilson, Tim
Primary Examiner(s)
Sheikh; Ayaz
Assistant Examiner(s)
Besrour; Saoussen

Application Number

US09/853,716
Publication Number

US 20020009078A1
Time in Patent Office

2,521 Days
Field of Search

726/3, 726/11, 726/12, 709/223
US Class Current

726/15
CPC Class Codes

H04L 12/2856   Access arrangements, e.g. I...

H04L 12/2872   Termination of subscriber c...

H04L 12/4666   Operational details on the ...

H04L 12/467   Arrangements for supporting...

H04L 61/10   of different types

H04L 61/2514   between local and global IP...

H04L 61/5053   Lease time; Renewal aspects

H04L 61/5061   Pools of addresses

H04L 61/5084   Providing for device mobili...

H04L 63/0227   Filtering policies mail mes...

H04L 63/0272   Virtual private networks

H04L 63/083   using passwords cryptograph...

H04L 63/104   Grouping of entities

Server and method for providing specific network services

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

141 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Server and method for providing specific network services

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

141 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links