System and method for wide area wireless connectivity to the internet

US 8,571,222 B1
Filed: 05/13/2004
Issued: 10/29/2013
Est. Priority Date: 08/13/2003
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving at a centralized authentication server, which manages a process of authenticating users for a plurality of authentication systems and is located remotely from any one of the plurality of authentication systems, an access request for a wireless device of a user to obtain Internet access through a Wi-Fi system, wherein the centralized authentication server includes information of a plurality of authentication databases from which users may be authenticated, each of the plurality of authentication databases corresponding to a different communication service and to a different authentication system of the plurality of authentication systems, and wherein the information includes identification of a first protocol required for communicating with a first authentication database of the plurality of authentication databases and identification of a second protocol required for communicating with a second authentication database of the plurality of authentication databases, and wherein the second protocol is different from the first protocol;

transmitting an authentication request from the centralized authentication server to at least the first authentication database of the plurality of authentication databases using the first protocol; and

permitting the user access to the Internet through the Wi-Fi system by the wireless device when an indication of authentication is received from at least the first authentication database.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for managing access to a Wi-Fi system include redirecting an access request, comprising a user credential, from a wireless user device to an authentication server, obtaining, from a first database, a list of a plurality of authentication databases from which users may be authenticated, the list including a protocol required for communication with each of the authentication databases, transmitting a request to each of the listed authentication databases using the identified protocol, and permitting the user access to the Internet through the Wi-Fi system if the user is authenticated by at least one of the listed authentication databases.

Citations

42 Claims

1. A method comprising:
- receiving at a centralized authentication server, which manages a process of authenticating users for a plurality of authentication systems and is located remotely from any one of the plurality of authentication systems, an access request for a wireless device of a user to obtain Internet access through a Wi-Fi system, wherein the centralized authentication server includes information of a plurality of authentication databases from which users may be authenticated, each of the plurality of authentication databases corresponding to a different communication service and to a different authentication system of the plurality of authentication systems, and wherein the information includes identification of a first protocol required for communicating with a first authentication database of the plurality of authentication databases and identification of a second protocol required for communicating with a second authentication database of the plurality of authentication databases, and wherein the second protocol is different from the first protocol;
  
  transmitting an authentication request from the centralized authentication server to at least the first authentication database of the plurality of authentication databases using the first protocol; and
  
  permitting the user access to the Internet through the Wi-Fi system by the wireless device when an indication of authentication is received from at least the first authentication database.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 40)
- - 2. The method of claim 1, wherein permitting comprises:
    - identifying an access point at which the access request was received; and
      
      transmitting to the identified access point a request to permit access by the user.
  - 3. The method of claim 2, wherein the permitting further comprises:
    - identifying from a database an address of the identified access point and a protocol required for communication with the identified access point; and
      
      the transmitting further comprises transmitting the request to the access point at the identified address in accordance with the identified protocol.
  - 4. The method of claim 3, wherein the database includes the information of the plurality of authentication databases.
  - 5. The method of claim 1, further comprising receiving the access request at an access point.
  - 6. The method of claim 5, further comprising determining, upon receipt of the access request, whether the user is logged on.
  - 7. The method of claim 6, further comprising redirecting the user to the Internet upon determining that the user is logged on.
  - 8. The method of claim 1, wherein at least one of the plurality of authentication databases is a Radius-based database.
  - 9. The method of claim 1, further comprising determining if the user is an idle user.
  - 10. The method of claim 9, wherein determining comprises repeatedly determining if the user is an idle user.
  - 11. The method of claim 10, comprising terminating the user from the Wi-Fi system if the user is determined to be idle.
  - 12. The method of claim 9, wherein determining if a user is an idle user comprises requesting a usage statistic for a user from a database and determining, based on the usage statistic, if the user is an idle user.
  - 13. The method of claim 12, wherein the database includes the information of the plurality of authentication databases.
  - 14. The method of claim 12, wherein the usage statistic comprises one piece of data selected from a group consisting of a duration and a number of bytes transmitted.
  - 40. The method of claim 1, wherein transmitting the authentication request from the centralized authentication server further comprises transmitting multiple authentication requests to the plurality of authentication databases.

15. A non-transitory computer readable medium containing instructions for execution by a computer to carry out a method, the method comprising:
- receiving at a centralized authentication server, which manages a process of authenticating users for a plurality of authentication systems and is located remotely from any one of the plurality of authentication systems, an access request for a wireless user device of a user to obtain Internet access through a Wi-Fi system, wherein the centralized authentication server includes information of a plurality of authentication databases from which users may be authenticated, each of the plurality of authentication databases corresponding to a different communication service and to a different authentication system of the plurality of authentication systems, and wherein the information includes identification of a first protocol required for communication with a first authentication database of the plurality of authentication databases and identification of a second protocol required for communicating with a second authentication database of the plurality of authentication databases, and wherein the second protocol is different from the first protocol;
  
  transmitting an authentication request from the centralized authentication server to at least one of the first authentication database of the plurality of authentication databases using the first protocol; and
  
  permitting the user access to the Internet through the Wi-Fi system by the wireless device when an indication of authentication is received from at least the first authentication database.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 41)
- - 16. The non-transitory computer readable medium of claim 15, wherein permitting comprises:
    - identifying the access point at which the access request was received; and
      
      transmitting to the identified access point a request to permit access to the user.
  - 17. The non-transitory computer readable medium of claim 16, wherein:
    - permitting further comprises identifying from a database an address of the identified access point and a protocol required for communication with the identified access point; and
      
      transmitting further comprises transmitting the request to the access point at the identified address in accordance with the identified protocol.
  - 18. The non-transitory computer readable medium of claim 17, wherein the database includes the information of the plurality of authentication databases.
  - 19. The non-transitory computer readable medium of claim 15, further comprising receiving the access request at an access point.
  - 20. The non-transitory computer readable medium of claim 19, further comprising determining, upon receipt of the access request, whether the user is logged on.
  - 21. The non-transitory computer readable medium of claim 20, further comprising redirecting the user to the Internet upon determining that the user is logged on.
  - 22. The non-transitory computer readable medium of claim 15, wherein at least one of the plurality of authentication databases is a Radius-based database.
  - 23. The non-transitory computer readable medium of claim 15, further comprising determining if the user is an idle user.
  - 24. The non-transitory computer readable medium of claim 23, comprising repeatedly determining if a user is an idle user.
  - 25. The non-transitory computer readable medium of claim 24, comprising terminating the user from the Wi-Fi system if the user is determined to be idle.
  - 26. The non-transitory computer readable medium of claim 23, wherein determining if a user is an idle user comprises requesting a usage statistic for a user from a database and determining, based on the usage statistic, if the user is an idle user.
  - 27. The non-transitory computer readable medium of claim 26, wherein the database includes the information of the plurality of authentication databases.
  - 28. The non-transitory computer readable medium of claim 26, wherein the usage statistic comprises data selected from a group consisting of a duration and a number of bytes transmitted.
  - 41. The non-transitory computer readable medium of claim 15, wherein transmitting the authentication request from the centralized authentication server further comprises transmitting multiple authentication requests to the plurality of authentication databases.

29. A system comprising:
- a centralized authentication server managing a process of authenticating users for a plurality of authentication systems and located remotely from any one of the plurality of authentication systems configured to;
  
  receive an access request for a wireless device of a user to obtain Internet access through a Wi-Fi system, wherein the centralized authentication server includes information of a plurality of authentication databases from which users may be authenticated, each of the plurality of authentication databases corresponding to a different communication service and to a different authentication system of the plurality of authentication systems, and wherein the information includes identification of a first protocol required for communication with a first authentication database of the plurality of authentication databases, and identification of a second protocol required for communication with a second authentication database of the plurality of authentication databases, and wherein the second protocol is different from the first protocol;
  
  issue an authentication request for the access request from the centralized authentication server to the first authentication database of the plurality of authentication databases using the first protocol; and
  
  send the access command to the hotspot venue if the user is authenticated;
  
  a hotspot venue configured to redirect an access request generated by a wireless device to the centralized authentication server, and to permit the user to access the Internet in response to a receipt of an access command from the centralized authentication server; and
  
  the first authentication database configured to receive the authentication request using the first protocol, and to respond to the centralized authentication server by indicating whether the access request is permitted.
- View Dependent Claims (30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 42)
- - 30. The system of claim 29, wherein the centralized authentication server is further configured to identify an access point at which the access request was received, and to transmit the access command to the identified access point.
  - 31. The system of claim 30, wherein the centralized authentication server is further configured to identify, from a database, an address of the identified access point and a protocol required for communication with the identified access point, and to transmit the access command to the access point at the identified address in accordance with the identified protocol.
  - 32. The system of claim 31, wherein the database includes the information of the plurality of authentication databases.
  - 33. The system of claim 29, wherein at least one of the plurality of authentication databases is a Radius-based database.
  - 34. The system of claim 29, wherein the centralized authentication server is further configured to determine if a user is an idle user.
  - 35. The system of claim 34, wherein the centralized authentication server is further configured to repeatedly determine if the user is an idle user.
  - 36. The system of claim 35, wherein the centralized authentication server is further configured to terminate the user from the Wi-Fi system provided the user is determined to be idle.
  - 37. The system of claim 34, wherein the centralized authentication server is configured to determine if a user is an idle user by requesting a usage statistic for a user from a database and determining, based on the usage statistic, if the user is an idle user.
  - 38. The system of claim 37, wherein the database includes the information of the plurality of authentication databases.
  - 39. The system of claim 38, wherein the usage statistic comprises data selected from a group consisting of a duration, and a number of bytes transmitted.
  - 42. The system of claim 29, wherein the centralized authentication server is configured to issue multiple authentication requests to the plurality of authentication databases.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Verizon Patent and Licensing Incorporated (Verizon Communications Inc.)
Original Assignee
Verizon Corporate Services Group Incorporated (Verizon Communications Inc.)
Inventors
Perry, Paul, Byrnes, Sean, Elbert, Valeriy, Nambiar, Chivas, Hunt, Conor, Kosmidis, Thanos, Gupta, Vineet
Primary Examiner(s)
Gregory, Shaun

Application Number

US10/845,281
Time in Patent Office

3,456 Days
Field of Search

None
US Class Current

380/270
CPC Class Codes

H04W 12/06 Authentication

System and method for wide area wireless connectivity to the internet

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

42 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for wide area wireless connectivity to the internet

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

42 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links