Mobile host using a virtual single account client and server system for network access and management
First Claim
1. A non-transitory computer readable medium storing program instructions, executable by a processor, which, when executed by the processor, perform a method for connecting to a remote network through an access network with a single user password, wherein an authentication server in the access network does not perform a protocol conversation with an authentication server in the remote network, wherein the method includes:
- generating a virtual single account password and decryption key from the single user password;
decrypting at least one of a local access network authentication credential and a remote access authentication credential stored in encrypted form in a computer readable medium on a mobile host;
initiating a local access network connection; and
initiating a remote network access connection.
3 Assignments
0 Petitions
Accused Products
Abstract
A Virtual Single Account (VSA) system and method that provides a mobile user with automatic authentication and connection to a remote network via local access networks with a single password, where the local access networks may be independent of the remote network. A mobile user has a single authentication credential for one VSA that is utilized by a VSA client installed on a mobile computing device. The VSA client provides for automatically authenticating and connecting the user'"'"'s mobile device to a current local access network, and the target remote network such as the user'"'"'s office network. All authentication credentials are encrypted using a key generated from the user'"'"'s VSA password that is generated from the user'"'"'s single password. The VSA client derives the key from the submitted VSA password and decrypts all authentication credentials that are required in order to connect the mobile device to the current local access network and thereafter to the office network.
25 Citations
20 Claims
-
1. A non-transitory computer readable medium storing program instructions, executable by a processor, which, when executed by the processor, perform a method for connecting to a remote network through an access network with a single user password, wherein an authentication server in the access network does not perform a protocol conversation with an authentication server in the remote network, wherein the method includes:
-
generating a virtual single account password and decryption key from the single user password; decrypting at least one of a local access network authentication credential and a remote access authentication credential stored in encrypted form in a computer readable medium on a mobile host; initiating a local access network connection; and initiating a remote network access connection. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A non-transitory computer readable medium storing processor executable instructions which, when executed by a processor, perform a method for connecting to a remote network through an access network with a single password, wherein an authentication server in the access network does not perform a protocol conversation with an authentication server in the remote network, wherein the method includes:
-
receiving a virtual single account information update request message from a mobile host; sending a virtual single account information update response message to the mobile host, the virtual single account update response message including current remote access parameters for the remote network; receiving an authentication credential for the remote network; verifying the authentication credential; and granting remote network access to the mobile host. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A server including a processor and a computer readable medium storing instructions, executable by the processor, which, when executed by a processor, perform a method for establishing a virtual single account connecting a mobile host to a remote network through an access network with a single password, wherein an authentication server in the access network does not perform a protocol conversation with an authentication server in the remote network, the method comprising:
-
receiving a virtual single account information update request message from a mobile host; sending a virtual single account information update response message to the mobile host, the virtual single account update response message including current remote access parameters for the remote network; receiving an authentication credential for the remote network; verifying the authentication credential; and granting remote network access to the mobile host.
-
Specification