Centralized access control system and methods for distributed broadband access points

US 9,119,225 B2
Filed: 10/16/2012
Issued: 08/25/2015
Est. Priority Date: 02/23/2005
Status: Active Grant

First Claim

Patent Images

1. An access point comprising:

a processor;

a wide area network interface coupled to the processor; and

a memory coupled to the processor, wherein the memory comprises instructions executable by the processor, upon power-up of the access point, to enable the access point to;

automatically send a request to a configuration server, wherein the request includes an identification of the access point, and wherein the request is sent directly to the configuration server based on data in the memory;

receive virtual private network tunnel parameters from the configuration server;

establish, via the wide area network interface, a virtual private network tunnel between the access point and a centralized access control gateway based on the virtual private network tunnel parameters received from the configuration server, wherein the virtual private network tunnel provides access to destinations outside of a local area wireless network associated with the access point for a wireless device coupled to the access point; and

receive update software via the centralized access control gateway.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method includes automatically sending a request from a wireless access point to a configuration server during a power-up procedure for the wireless access point. The method includes receiving virtual private network tunnel parameters at the wireless access point from the configuration server in response to the request. The virtual private network tunnel parameters identify an access gateway. The method also includes establishing a virtual private network tunnel between the wireless access point and the centralized access gateway during the power-up procedure based on the virtual private network tunnel parameters. The virtual private network tunnel enables the wireless access point to provide one or more wireless devices access to a wide area network.

68 Citations

View as Search Results

20 Claims

1. An access point comprising:
- a processor;
  
  a wide area network interface coupled to the processor; and
  
  a memory coupled to the processor, wherein the memory comprises instructions executable by the processor, upon power-up of the access point, to enable the access point to;
  
  automatically send a request to a configuration server, wherein the request includes an identification of the access point, and wherein the request is sent directly to the configuration server based on data in the memory;
  
  receive virtual private network tunnel parameters from the configuration server;
  
  establish, via the wide area network interface, a virtual private network tunnel between the access point and a centralized access control gateway based on the virtual private network tunnel parameters received from the configuration server, wherein the virtual private network tunnel provides access to destinations outside of a local area wireless network associated with the access point for a wireless device coupled to the access point; and
  
  receive update software via the centralized access control gateway.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The access point of claim 1, further comprising a wireless receiver-transmitter to couple the wireless device to the access point.
  - 3. The access point of claim 1, further comprising a virtual private network tunneling mechanism to establish the virtual private network tunnel.
  - 4. The access point of claim 1, further comprising a wired network interface to enable a device to communicate via the virtual private network by a wired connection between the device and the wired network interface.
  - 5. The access point of claim 1, wherein the update software includes a security update, a software version update, or both.
  - 6. The access point of claim 1, wherein authorization of the wireless device to utilize the access point is provided by an authentication, authorization, and accounting module coupled to the centralized access control gateway.
  - 7. The access point of claim 1, wherein the access point is configured to receive upgraded instructions via the centralized access control gateway.
  - 8. The access point of claim 1, wherein the access point is configured to change operational parameters based on instructions received from the centralized access control gateway.
  - 9. The access point of claim 1, wherein the access point receives software from the configuration server, and wherein the software is executable by the processor to establish the virtual private network tunnel to the centralized access control gateway.

10. A method comprising:
- automatically sending a request from a wireless access point to a configuration server that selects an access gateway for the access point based on a network speed, a network service load, or both during a power-up procedure for the wireless access point, wherein the request is sent directly to the configuration server based on data stored in a memory of the wireless access point;
  
  receiving virtual private network tunnel parameters at the wireless access point from the configuration server in response to the request, wherein the virtual private network tunnel parameters identify the access gateway; and
  
  establishing a virtual private network tunnel between the wireless access point and the access gateway with the wireless access point during the power-up procedure based on the virtual private network tunnel parameters, wherein the virtual private network tunnel enables the wireless access point to provide a wireless device access to a wide area network.
- View Dependent Claims (11, 12, 13, 14, 15)
- - 11. The method of claim 10, further comprising enabling a device to communicate via the virtual private network by a wired connection between the device and the wireless access point.
  - 12. The method of claim 10, wherein the request includes an identifier of the wireless access point.
  - 13. The method of claim 10, wherein the data identifies the configuration server.
  - 14. The method of claim 10, wherein the request is sent to the configuration server based on a media access control address of the wireless access point, a serial number of the wireless access point, an internet protocol address of the wireless access point, or a location of the wireless access point.
  - 15. The method of claim 10, further comprising:
    - receiving a security update at the wireless access point via the private network tunnel; and
      
      implementing the security update at the wireless access point.

16. A computer-readable storage device storing instructions that, when executed by a processor, cause the processor to perform operations comprising:
- automatically sending a request to a configuration server that is configured to determine an access gateway via access to a provisioning database during a power-up procedure for a wireless access point that includes the processor;
  
  establishing a virtual private network tunnel between the wireless access point and the access gateway with the wireless access point based on virtual private network tunnel parameters received from the configuration server in response to the request, wherein the virtual private network tunnel parameters identify the access gateway, and wherein the virtual private network tunnel enables the wireless access point to provide a wireless device access to a wide area network; and
  
  receiving update software at the wireless access point via the access gateway.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The computer-readable storage device of claim 16, wherein the update software includes a security update, a software version update, or both.
  - 18. The computer-readable storage device of claim 16, wherein the request is sent to a particular configuration server based on data retrieved from the computer-readable storage device.
  - 19. The computer-readable storage device of claim 16, wherein the access gateway is configured to block access to the wide area network for unauthorized wireless devices.
  - 20. The computer-readable storage device of claim 16, wherein the request includes an identification of the wireless access point.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
AT&T Intellectual Property I LP (AT&T, Inc.)
Original Assignee
AT&T Intellectual Property I LP (AT&T, Inc.)
Inventors
Muhamed, Rias, Doradla, Anil Kumar, Wolter, David Randall
Primary Examiner(s)
Ngo, Ricky
Assistant Examiner(s)
Samuel, Dewanda

Application Number

US13/652,657
Publication Number

US 20130094402A1
Time in Patent Office

1,043 Days
Field of Search

370/338, 370/419
US Class Current

1/1
CPC Class Codes

H04L 63/0272   Virtual private networks

H04W 12/02   Protecting privacy or anony...

H04W 12/35   Protecting application or s...

H04W 28/16   Central resource management...

H04W 76/10   Connection setup

H04W 76/12   Setup of transport tunnels

H04W 84/105   PBS [Private Base Station] ...

H04W 88/08   Access point devices

Centralized access control system and methods for distributed broadband access points

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

68 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Centralized access control system and methods for distributed broadband access points

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

68 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links