Multiservice use of network connection capability under user-to-network interface signaling

US 7,561,577 B2
Filed: 06/23/2006
Issued: 07/14/2009
Est. Priority Date: 08/07/2000
Status: Expired due to Fees

First Claim

Patent Images

1. A computer readable medium that stores a computer program for controlling access to a network, the computer readable medium comprising:

an executable receiving code segment that, when executed, receives a request for at least one network service from an initiating end system;

an executable first determining code segment that, when executed, determines at least one of service policy and logic associated with the at least one requested network service; and

an executable instructing code segment that, when executed, provides instructions to the initiating end system to send a connection setup request to a network connection controller of the network, the instructions comprising a certificate to be included in the connection setup request, the certificate including information relating to the at least one of the service policy and logic and a unique identifier that correlates the connection setup request and the network service;

wherein one of establishing a network connection and rejecting the connection setup request is based on the information relating to the at least one of the service policy and logic and the unique identifier included with the certificate.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Method and apparatus for a distributed switching system supporting a plurality of services. A service request is initiated by an initiating customer. The service request is then executed using, for example, a user-to-network interface setup. A terminating setup is then performed to either accept or reject the requested service. Multiple service requests are correlated with respective services to enable at least one appropriate policy and logic. Data related to the requested service is obtained using at least one of a push procedure, a pull procedure, a query procedure, and a procedure in which requests are associated with the issuance of certificates

Citations

20 Claims

1. A computer readable medium that stores a computer program for controlling access to a network, the computer readable medium comprising:
- an executable receiving code segment that, when executed, receives a request for at least one network service from an initiating end system;
  
  an executable first determining code segment that, when executed, determines at least one of service policy and logic associated with the at least one requested network service; and
  
  an executable instructing code segment that, when executed, provides instructions to the initiating end system to send a connection setup request to a network connection controller of the network, the instructions comprising a certificate to be included in the connection setup request, the certificate including information relating to the at least one of the service policy and logic and a unique identifier that correlates the connection setup request and the network service;
  
  wherein one of establishing a network connection and rejecting the connection setup request is based on the information relating to the at least one of the service policy and logic and the unique identifier included with the certificate.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The computer readable medium according to claim 1, wherein the at least one of the service policy and logic represents service capabilities associated with the at least one network service.
  - 3. The computer readable medium according to claim 1, wherein the at least one of the service policy and logic represents service permissions associated with the at least one network service.
  - 4. The computer readable medium according to claim 1, further comprising:
    - an executable protecting code segment that, when executed, provides data to prevent reuse of the certificate.
  - 5. The computer readable medium according to claim 4, wherein the protecting code segment, when executed, assigns a sequence number to the certificate,the sequence number being examined by the network connection controller to confirm that the sequence number is not repeated.
  - 6. The computer readable medium according to claim 4, wherein the protecting code segment when executed, assigns at least one of a time-stamp and a date-stamp to the certificate, the at least one of the time-stamp and the date-stamp being examined by the network connection controller to confirm that the at least one of the time-stamp and the date-stamp is within a predetermined delta value.
  - 7. The computer readable medium according to claim 4, wherein the protecting code segment when executed, encrypts the certificate.

8. A computer readable medium that stores a computer program for controlling connections to a network, the computer readable medium comprising:
- an executable receiving code segment that, when executed, receives a request for at least one service of a plurality of available services associated with the network initiated by an initiator;
  
  an executable retrieving code segment that, when executed, retrieves at least one of policy and logic of the at least one requested network service, the policy and logic representing at least one of service capabilities and service permissions associated with the at least one requested network service;
  
  an executable instructing code segment that, when executed, instructs the initiator to initiate a connection setup request to establish a connection with the network through a network connection controller, the instructions comprising a certificate to be included in the connection setup request and a unique identifier, the unique identifier being included with the certificate and correlating the connection setup request and the network service; and
  
  an executable providing code segment that, when executed, provides information relating to the at least one of the policy and logic to the network connection capability, the network connection controller establishing the network connection or rejecting the connection setup request based on the information relating to the at least one of the service policy and logic.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 9. The computer readable medium according to claim 8, wherein the providing code segment, when executed, provides the information relating to the at least one of the policy and logic using a pushing procedure.
  - 10. The computer readable medium according to claim 8, wherein the providing code segment, when executed, provides the information relating to the at least one of the policy and logic using a pulling procedure.
  - 11. The computer readable medium according to claim 8, wherein the providing code segment, when executed, provides the information relating to the at least one of the policy and logic using a query and reply procedure.
  - 12. The computer readable medium according to claim 8, wherein the connection setup request comprises a user-to network interface setup request.
  - 13. The computer readable medium according to claim 8, wherein the providing code segment, when executed, provides the information relating to the at least one of the policy and logic by providing a certificate to be included in the connection setup request.
  - 14. The computer readable medium according to claim 13, wherein the certificate further includes at least a permitted setup parameter.
  - 15. The computer readable medium according to claim 14, further comprising:
    - an executable encrypting code segment that, when executed, encrypts the certificate.
  - 16. The computer readable medium according to claim 14, further comprising:
    - an executable sequencing code segment that, when executed, assigns a sequence number to the certificate to prevent reuse of the certificate, the network connection controller confirming that the sequence number is used one time.
  - 17. The computer readable medium according to claim 14, further comprising:
    - an executable timing code segment that, when executed, assigns at least one of a time-stamp and a date-stamp to the certificate to prevent reuse of the certificate, the network connection controller confirming that the at least one of the time-stamp and the date-stamp is within a predetermined period.

18. A system for controlling access to capabilities of a network associated with a plurality of services, the system comprising:
- a service controller that receives a request for at least one service of the plurality of services from a terminal, instructs the terminal to initiate a connection setup request for establishing a connection with the network in accordance with the at least one service, and instructs a certificate to be included in the connection setup request, the certificate including information relating to at least one of policy and logic associated with the at least one service; and
  
  a network controller that receives the connection setup request from the terminal, processes the connection setup request based on the certificate and the information relating to the at least one of policy and logic associated with the at least one service, and performs one of establishing the network connection and rejecting the connection setup request based on the processing, in accordance with the certificate and the at least one of policy and logic,wherein the service controller further instructs a unique identifier to be included in the connection setup request that correlates the connection setup request and the at least one service.
- View Dependent Claims (19, 20)
- - 19. The system according to claim 18,wherein the network controller processes the connection setup request based on the unique identifier.
  - 20. The system according to claim 18, wherein the network controller verifies the certificate.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
AT&T Labs Incorporated (AT&T, Inc.)
Original Assignee
AT&T Labs Incorporated (AT&T, Inc.)
Inventors
Schneider, Marco, Cunetto, Philip
Primary Examiner(s)
PHAN, MAN U

Application Number

US11/473,047
Publication Number

US 20060239268A1
Time in Patent Office

1,117 Days
Field of Search

370230-271, 370351-401, 370422-522, 709203-219, 709224-229
US Class Current

370/396
CPC Class Codes

H04L 12/5601   Transfer mode dependent, e....

H04L 2012/5605   Fibre

H04L 2012/5614   User Network Interface

H04L 2012/5629   Admission control

H04L 2012/563   Signalling, e.g. protocols,...

H04L 2012/5665   Interaction of ATM with oth...

H04L 2012/5669   Multiprotocol over ATM [MPOA]

H04L 63/10   for controlling access to d...

H04L 65/1101   Session protocols

H04L 65/1104   Session initiation protocol...

H04L 65/70   Media network packetisation

H04L 65/80   Responding to QoS

H04L 67/563   Data redirection of data ne...

Multiservice use of network connection capability under user-to-network interface signaling

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Multiservice use of network connection capability under user-to-network interface signaling

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links