Network deployment techniques employing radio frequency identification (RFID)

US 7,996,879 B1
Filed: 07/03/2007
Issued: 08/09/2011
Est. Priority Date: 07/03/2007
Status: Expired due to Fees

First Claim

Patent Images

1. A method for facilitating connection between a network associated with an entity and a first electronic device, the method comprising:

receiving, using an RFID (radio frequency identification) reader associated with said first electronic device, a first file from an RFID tag, said RFID tag being provided by said entity;

parsing said first file to obtain a type field, said type field indicating whether connection information for performing said connection is stored in said RFID tag or stored in a policy server on said network, said connection information including at least one of a security policy and a network configuration;

determining, based on said type field obtained from said first file, whether to further parse said first file to extract said connection information or to connect said first device to said policy server to download said connection information through a one-way channel, said one-way channel prohibiting said first electronic device from writing to said network;

obtaining, based on a result of said determining, said connection information from at least one of said first file and said policy server; and

enabling a login via said first electronic device into said network using said connection information and using a connection modality different from a wireless modality employed to receive said first file from said RFID tag,wherein said type field includes a data string providing at least a download status about said security policy, said download status indicating whether said security policy has been completely downloaded to said first electronic device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for facilitating connection between an entity'"'"'s network and a first electronic device is provided. The method includes receiving, using an RFID (radio frequency identification) reader associated with the first electronic device, a first file from an RFID tag, the RFID tag being provided by the entity. The method also includes obtaining connection information from the first file, the connection information including at least one of a security policy and network configuration. The method further includes enabling a user to attempt to log in via the first electronic device, using the connection information, into the network, wherein the log in is attempted using a different connection modality than that employed to receive the first file from the RFID tag.

Citations

19 Claims

1. A method for facilitating connection between a network associated with an entity and a first electronic device, the method comprising:
- receiving, using an RFID (radio frequency identification) reader associated with said first electronic device, a first file from an RFID tag, said RFID tag being provided by said entity;
  
  parsing said first file to obtain a type field, said type field indicating whether connection information for performing said connection is stored in said RFID tag or stored in a policy server on said network, said connection information including at least one of a security policy and a network configuration;
  
  determining, based on said type field obtained from said first file, whether to further parse said first file to extract said connection information or to connect said first device to said policy server to download said connection information through a one-way channel, said one-way channel prohibiting said first electronic device from writing to said network;
  
  obtaining, based on a result of said determining, said connection information from at least one of said first file and said policy server; and
  
  enabling a login via said first electronic device into said network using said connection information and using a connection modality different from a wireless modality employed to receive said first file from said RFID tag,wherein said type field includes a data string providing at least a download status about said security policy, said download status indicating whether said security policy has been completely downloaded to said first electronic device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1 further comprising:
    - parsing said first file to obtain a first application identification (ID) for authenticating said first file; and
      
      comparing said first application ID against a set of application IDs, said set of application IDs being unique identifiers associated with said entity, said set of application IDs being included in an application program installed on said first electronic device.
  - 3. The method of claim 1 further comprising further parsing said first file to extract said connection information from said first file.
  - 4. The method of claim 1 wherein said download status is a complete status, said complete status indicating that a complete copy of said security policy has been downloaded to said first electronic device.
  - 5. The method of claim 1 wherein said download status is an incomplete status, said incomplete status indicating that said first electronic device does not include a complete copy of said security policy.
  - 6. The method of claim 1 wherein said type field includes instructions for connecting to said policy server on said network associated with said entity through said one-way channel.
  - 7. The method of claim 1 wherein said obtaining is downloading said connection information from said policy server through said one-way channel, and wherein said enabling said login is performed using said connection information downloaded through said one-way channel.
  - 8. The method of claim 1 further comprising validating a security publisher of said first file using an application program installed on said first electronic device.

9. A system for facilitating connection between a network associated with an entity and a first electronic device, the arrangement comprising:
- an RFID (radio frequency identification) tag, said RFID tag being provided by said entity;
  
  an RFID reader, said RFID reader being associated with said first electronic device, said RFID reader being configured to receive a first file from said RFID tag;
  
  a deployment application program, said deployment application program executing on said first electronic device and being configured to parse said first file to obtain a type field, said type field indicating whether connection information for performing said connection is stored in said RFID tag or stored in a policy server on said network, said connection information including at least one of a security policy and a network configuration;
  
  first code for determining, based on said type field obtained from said first file, whether to further parse said first file to extract said connection information;
  
  second code for further parsing, based on a result of said determining, said first file to obtain said connection information from at least said first file;
  
  third code for enabling a login via said first electronic device into said network using said connection information and using a connection modality different from a wireless modality employed to receive said first file from said RFID tag; and
  
  circuits for performing one or more tasks associated with one or more of said deployment application program, said first code, said second code, and said third code;
  
  wherein said type field includes a data string providing a download status about said security policy, said download status indicating whether said security policy has been completely downloaded to said first electronic device.
- View Dependent Claims (10, 11, 12, 13, 14)
- - 10. The system of claim 9 further comprising:
    - fourth code for parsing said first file to obtain a first application identification (ID) for authenticating said first file; and
      
      fifth code for comparing said first application ID against a set of application IDs, said set of application IDs being unique identifiers associated with said entity, said set of application IDs being included in said deployment application program, said deployment application program being installed on said first electronic device.
  - 11. The system of claim 9 wherein said download status is one or a complete status and an incomplete status, said complete status indicating that a complete copy of said security policy has been downloaded to said first electronic device, said incomplete status indicating that said first electronic device does not include a complete copy of said security policy.
  - 12. The system of claim 9 further comprising fourth code for connecting said first device to said policy server to download said connection information through a one-way channel, said one-way channel prohibiting said first electronic device from writing to said network.
  - 13. The system of claim 9 wherein said type field includes instructions for installing said security policy onto said first electronic device using said deployment application program, said deployment application program including code for downloading a complete copy of said security policy from said policy server on said network through said one-way channel.
  - 14. The system of claim 9 further comprising fourth code for validating a security publisher of said first file using said deployment application program.

15. A method for facilitating connection between a network associated with an entity and a first electronic device, the method comprising:
- receiving, using an RFID (radio frequency identification) reader associated with said first electronic device, a first file from an RFID tag, said RFID tag being provided by said entity;
  
  parsing said first file, using a deployment application program, to obtain a type field, said deployment application program executing on said first electronic device, said deployment application program being configured to facilitate interaction between said first electronic device and said RFID tag, said type field indicating whether connection information for performing said connection is stored in said RFID tag or stored in a policy server on said network, said connection information including at least one of a security policy and a network configuration;
  
  identifying a first application identification (ID) for authenticating said first file;
  
  comparing said first application ID against a set of application IDs, said set of application IDs being unique identifiers associated with said entity, said set of application IDs being included in said deployment application program executing on said first electronic device;
  
  determining, based on said type field obtained from said first file, whether to further parse said first file to extract said connection information or to connect said first device to said policy server to download said connection information through a one-way channel, said one-way channel prohibiting said first electronic device from writing to said network;
  
  obtaining, based on a result of said determining, said connection information from at least one of said first file and said policy server; and
  
  enabling a login via said first electronic device into said network using said connection information and using a connection modality different from a wireless modality employed to receive said first file from said RFID tag;
  
  wherein said type field includes a data string providing at least a download status about said security policy, said download status indicating whether said security policy has been completely downloaded to said first electronic device.
- View Dependent Claims (16, 17, 18, 19)
- - 16. The method of claim 15 wherein said connection information includes at least said network configuration.
  - 17. The method of claim 15 wherein said type field includes instructions for connecting to said policy server on said network associated with said entity through said one-way channel.
  - 18. The method of claim 15 wherein said obtaining is downloading said connection information from said policy server through said one-way channel, and wherein said enabling said login is performed using said connection information downloaded through said one-way channel.
  - 19. The method of claim 15 further comprising validating a security publisher of said first file using said deployment application program.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Trend Micro Inc.
Original Assignee
Trend Micro Inc.
Inventors
Gu, Yan, Fang, Chao, Zhu, Jialai
Primary Examiner(s)
Korzuch; William
Assistant Examiner(s)
Su; Sarah

Application Number

US11/773,045
Time in Patent Office

1,498 Days
Field of Search

726/1, 726/2, 726/3, 709/223, 709/225
US Class Current

726/1
CPC Class Codes

G06F 21/35   communicating wirelessly

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 63/20   for managing network securi...

H04L 67/14   Session management for real...

H04L 67/141   Setup of application sessio...

H04L 67/34   involving the movement of s...

H04L 69/14   Multichannel or multilink p...

H04W 4/00   Services specially adapted ...

Network deployment techniques employing radio frequency identification (RFID)

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Network deployment techniques employing radio frequency identification (RFID)

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links