Wireless access system, method, signal, and computer program product
First Claim
1. A method for providing a user of a wireless device access to a secure application via a client-server internetworking security protocol configured to at least one of control authentication, perform accounting, and provide access-control in a networked, multiuser environment, comprising steps of:
- receiving an authentication request message requesting access to said secure application from said wireless device at a wireless access service mechanism configured to process said authentication request message, said authentication request message being in accordance with a wireless message protocol and including an IP address of said wireless device and an access credential of the user of said wireless device;
producing, by the wireless access service mechanism, a client-server internetworking security protocol authentication request message based on said authentication request message by reformatting a portion of said authentication request message in accordance with said client-server internetworking security protocol and including information of said IP address of said wireless device and/or said access credential;
transmitting said client-server internetworking security protocol authentication request message from said wireless access service mechanism to a client-server internetworking security protocol authentication device configured to perform client-server internetworking security protocol authentication, wherein said client-server internetworking security protocol authentication device authenticates said user for access to said secure application based on said IP address of said wireless device and/or said access credential;
receiving a client-server internetworking security protocol authentication accept message and/or a client-server internetworking security protocol authentication reject message from said client-server internetworking security protocol authentication deviceprocessing said client-server internetworking security protocol authentication accept message at said wireless access service mechanism to convert said client-server internetworking security protocol accept message to a wireless authentication accept message according to said wireless message protocol;
transmitting a client-server internetworking security protocol access message from said wireless access service mechanism to said client-server internetworking security protocol authentication device;
transmitting a session start message from said wireless access service mechanism to a wireless gateway device;
transmitting said wireless authentication accept message from said wireless access service mechanism to said wireless device, wherein said user is authorized to access said secure application upon receipt of said wireless authentication accept message;
timing a connection time between said wireless device and said wireless gateway device so as to produce a wireless timing parameter at said wireless access service mechanism;
transmitting a session end notification message from said wireless access service mechanism to said wireless device in response to determining that said wireless timing parameter exceeds a predetermined timing value.
8 Assignments
0 Petitions
Accused Products
Abstract
A system, method, signal, and computer program product for providing secure wireless access to private databases and applications without requiring a separate wireless client-server internetworking security protocol infrastructure. The wireless device (201) communicates with the wireless access service provider (205) via hypertext transfer protocol (HTTP) messages, and the wireless access service provider (205) and the secure network (204) perform a RADIUS authentification for the wireless device (201).
58 Citations
31 Claims
-
1. A method for providing a user of a wireless device access to a secure application via a client-server internetworking security protocol configured to at least one of control authentication, perform accounting, and provide access-control in a networked, multiuser environment, comprising steps of:
-
receiving an authentication request message requesting access to said secure application from said wireless device at a wireless access service mechanism configured to process said authentication request message, said authentication request message being in accordance with a wireless message protocol and including an IP address of said wireless device and an access credential of the user of said wireless device; producing, by the wireless access service mechanism, a client-server internetworking security protocol authentication request message based on said authentication request message by reformatting a portion of said authentication request message in accordance with said client-server internetworking security protocol and including information of said IP address of said wireless device and/or said access credential; transmitting said client-server internetworking security protocol authentication request message from said wireless access service mechanism to a client-server internetworking security protocol authentication device configured to perform client-server internetworking security protocol authentication, wherein said client-server internetworking security protocol authentication device authenticates said user for access to said secure application based on said IP address of said wireless device and/or said access credential; receiving a client-server internetworking security protocol authentication accept message and/or a client-server internetworking security protocol authentication reject message from said client-server internetworking security protocol authentication device processing said client-server internetworking security protocol authentication accept message at said wireless access service mechanism to convert said client-server internetworking security protocol accept message to a wireless authentication accept message according to said wireless message protocol; transmitting a client-server internetworking security protocol access message from said wireless access service mechanism to said client-server internetworking security protocol authentication device; transmitting a session start message from said wireless access service mechanism to a wireless gateway device; transmitting said wireless authentication accept message from said wireless access service mechanism to said wireless device, wherein said user is authorized to access said secure application upon receipt of said wireless authentication accept message; timing a connection time between said wireless device and said wireless gateway device so as to produce a wireless timing parameter at said wireless access service mechanism; transmitting a session end notification message from said wireless access service mechanism to said wireless device in response to determining that said wireless timing parameter exceeds a predetermined timing value. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 24, 28)
-
-
13. A system configured to interface a wireless device to a secure application via a client-server internetworking security protocol configured to control authentication, perform accounting, and/or provide access-control in a networked, multiuser environment comprising:
-
said wireless device connected to a wireless service provider via a wireless connection medium; a wireless access service mechanism connected to said wireless service provider via a global telecommunications network, said wireless access service mechanism being configured to; receive an authentication request message from a user of said wireless device requesting access to said secure application, said authentication request message being in accordance with a wireless message protocol and including an IP address of said wireless device and an access credential of a user of said wireless device; convert said authentication request message to a client-server internetworking security protocol authentication request message by reformatting a portion of said authentication request message in accordance with an internetworking security protocol and including information of at least one of said IP address of said wireless device and said access credential; transmit said client-server internetworking security protocol authentication request message from said wireless access service mechanism to a client-server internetworking security protocol authentication device configured to perform client-server internetworking security protocol authentication, wherein said client-server internetworking security protocol authentication device authenticates said user for access to said secure application based on said IP address of said wireless device and/or said access credential; receive a client-server internetworking security protocol authentication accept message and/or a client-server internetworking security protocol authentication reject message from said client-server internetworking security protocol authentication device process said client-server internetworking security protocol authentication accept message at said wireless access service mechanism to convert said client-server internetworking security protocol accept message to a wireless authentication accept message according to said wireless message protocol; transmit a client-server internetworking security protocol access message from said wireless access service mechanism to said client-server internetworking security protocol authentication device; transmit a session start message from said wireless access service mechanism to a wireless gateway device; transmit said wireless authentication accept message from said wireless access service mechanism to said wireless device, wherein said user is authorized to access said secure application upon receipt of said wireless authentication accept message; time a connection time between said wireless device and said wireless gateway device so as to produce a wireless timing parameter at said wireless access service mechanism; transmit a session end notification message from said wireless access service mechanism to said wireless device in response to determining that said wireless timing parameter exceeds a predetermined timing value; and a client-server internetworking security protocol authentication device connected to said wireless access service mechanism, wherein said client-server internetworking security protocol authentication device authenticates said user for access to said secure application based on said IP address of said wireless device and/or said access credential. - View Dependent Claims (14, 15, 16, 17, 18, 19, 25, 29)
-
-
20. An apparatus configured to interface at least one wireless client application to at least one secure application via a client-server internetworking security protocol configured control authentication, perform accounting, and/or provide access-control in a networked, multi-user environment, comprising:
a wireless access service mechanism configured to; receive an authentication request message from said at least one wireless client application requesting access to said at least one secure application, said authentication request message being in accordance with a wireless message protocol and including an IP address of said wireless device and an access credential of a user of said wireless device, convert said authentication request message to a client-server internetworking security protocol authentication request message by reformatting a portion of said authentication request message from said wireless message protocol to a client-server internetworking protocol; forward said client-server internetworking security protocol authentication request message to a client-server internetworking security protocol authentication device for authentication of said at least one wireless client application for access to said at least one secure application, said client-server internetworking security protocol authentication request message being in accordance with a client-server internetworking security protocol and including information of said IP address of said wireless device and/or said access credential; receive a client-server internetworking security protocol authentication accept message and/or a client-server internetworking security protocol authentication reject message from said client-server internetworking security protocol authentication device process said client-server internetworking security protocol authentication accept message at said wireless access service mechanism to convert said client-server internetworking security protocol accept message to a wireless authentication accept message according to said wireless message protocol; transmit a client-server internetworking security protocol access message from said wireless access service mechanism to said client-server internetworking security protocol authentication device; transmit a session start message from said wireless access service mechanism to a wireless gateway device; transmit said wireless authentication accept message from said wireless access service mechanism to said wireless device, wherein said user is authorized to access said secure application upon receipt of said wireless authentication accept message; time a connection time between said wireless device and said wireless gateway device so as to produce a wireless timing parameter at said wireless access service mechanism; and transmit a session end notification message from said wireless access service mechanism to said wireless device in response to determining that said wireless timing parameter exceeds a predetermined timing value. - View Dependent Claims (21, 26, 30)
-
22. A computer program product including a computer storage medium, said computer storage medium comprising volatile media and/or non-volatile media, and a computer program code mechanism embedded in the computer storage medium, for providing a user of a wireless device access to a secure application via a client-server internetworking security protocol configured to control authentication, perform accounting, and/or provide access-control in a networked, multi-user environment, the computer code mechanism comprising:
-
at least one of unit of software and a unit of firmware configured to; convert a wireless authentication message requesting access to said secure application to a client-server internetworking security protocol authentication request message by reformatting a portion of said wireless authentication message and to exchange said client-server internetworking security protocol authentication request message with a client-server internetworking security protocol device, said wireless authentication message being in accordance with a wireless message protocol and including an IP address of said wireless device and an access credential of a user of said wireless device, and said client-server internetworking security protocol message being in accordance with a client-server internetworking security protocol and including information of said IP address of said wireless device and/or said access credential; receive a client-server internetworking security protocol authentication accept message and/or a client-server internetworking security protocol authentication reject message from said client-server internetworking security protocol authentication device process said client-server internetworking security protocol authentication accept message at said wireless access service mechanism to convert said client-server internetworking security protocol accept message to a wireless authentication accept message according to said wireless message protocol; transmit a client-server internetworking security protocol access message from said wireless access service mechanism to said client-server internetworking security protocol authentication device; transmit a session start message from said wireless access service mechanism to a wireless gateway device; transmit said wireless authentication accept message from said wireless access service mechanism to said wireless device, wherein said user is authorized to access said secure application upon receipt of said wireless authentication accept message; time a connection time between said wireless device and said wireless gateway device so as to produce a wireless timing parameter at said wireless access service mechanism; transmit a session end notification message from said wireless access service mechanism to said wireless device in response to determining that said wireless timing parameter exceeds a predetermined timing value; and transmit a session end notification message from a wireless access service mechanism to said wireless device in response to determining that a wireless timing parameter exceeds a predetermined timing value; wherein said user is authenticated for access to said secure application based on said IP address of said wireless device and/or said access credential. - View Dependent Claims (23, 27, 31)
-
Specification