Remote grant of network access

US 9,426,118 B2
Filed: 10/28/2014
Issued: 08/23/2016
Est. Priority Date: 10/28/2014
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method, comprising:

receiving, at a gateway on a network, a communication including a request for a new network device to join the network;

establishing a connection between the new network device and the gateway, wherein establishing the connection between the new network device and the gateway includes allowing the new network device to connect to a guest entry point of the network;

generating a firewall configured to prevent the new network device from communicating with an existing device on the network, wherein establishing a connection between the new network device and the gateway and generating a firewall configured to prevent the new network device from communicating with an additional device on the network occur at substantially the same time;

transmitting a query, wherein the query includes a request to determine whether the new network device is associated with the network;

receiving a communication including a response to the query indicating that the new network device is associated with the network; and

removing the firewall to allow the new network device to communicate with the existing network device.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and techniques for granting of network access to a new network device are described. Specifically, various techniques and systems are provided for connecting a new network device to a network and limiting access of the network device while authenticating the new network device. Exemplary embodiments of the present invention include a computer-implemented method. The method comprises receiving, at a gateway on a network, a communication including a request for a new network device to join the network; establishing a connection between the new network device and the gateway; generating a firewall configured to prevent the new network device from communicating with an additional device on the network; transmitting a query, wherein the query includes a request to determine whether the new network device is associated with the network; receiving a communication including a response to the query indicating that the new network device is associated with the network; removing the firewall so as to allow the new network device to communicate with the additional network device.

15 Citations

View as Search Results

24 Claims

1. A computer-implemented method, comprising:
- receiving, at a gateway on a network, a communication including a request for a new network device to join the network;
  
  establishing a connection between the new network device and the gateway, wherein establishing the connection between the new network device and the gateway includes allowing the new network device to connect to a guest entry point of the network;
  
  generating a firewall configured to prevent the new network device from communicating with an existing device on the network, wherein establishing a connection between the new network device and the gateway and generating a firewall configured to prevent the new network device from communicating with an additional device on the network occur at substantially the same time;
  
  transmitting a query, wherein the query includes a request to determine whether the new network device is associated with the network;
  
  receiving a communication including a response to the query indicating that the new network device is associated with the network; and
  
  removing the firewall to allow the new network device to communicate with the existing network device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, further comprising:
    - storing a data table including media access control (MAC) addresses associated with network devices on the network, wherein the new network device is associated with a MAC address on the data table.
  - 3. The method of claim 2, wherein the data table is an address resolution protocol (ARP) table.
  - 4. The method of claim 2, wherein generating the firewall includes removing the MAC address of the new network device from the data table.
  - 5. The method of claim 2, wherein removing the firewall includes adding the MAC address of the new network device to the data table.
  - 6. The method of claim 1, wherein the query is transmitted in response to establishing the connection between the new network device and the gateway.
  - 7. The method of claim 1, wherein after the query is received, the query is presented on a display so as to allow a response to be entered at the display.
  - 8. The method of claim 1, further comprising:
    - transmitting a communication, including network credentials, to the new network device so as to allow the new network device to connect to the network.

9. A computing device, comprising:
- one or more processors; and
  
  a memory having instructions stored thereon, which when executed by the one or more processors, cause the computing device to perform operations including;
  
  receiving, at a gateway on a network, a communication including a request for a new network device to join the network;
  
  establishing a connection between the new network device and the gateway, wherein establishing the connection between the new network device and the gateway includes allowing the new network device to connect to a guest entry point of the network;
  
  generating a firewall configured to prevent the new network device from communicating with an existing device on the network, wherein establishing a connection between the new network device and the gateway and generating a firewall configured to prevent the new network device from communicating with an additional device on the network occur at substantially the same time;
  
  transmitting a query, wherein the query includes a request to determine whether the new network device is associated with the network;
  
  receiving a communication including a response to the query indicating that the new network device is associated with the network; and
  
  removing the firewall to allow the new network device to communicate with the existing network device.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 17)
- - 10. The computing device of claim 9, further comprising instructions, which when executed by the one or more processors, cause the computing device to perform operations including:
    - storing a data table including media access control (MAC) addresses associated with network devices on the network, wherein the new network device is associated with a MAC address on the data table.
  - 11. The computing device of claim 10, wherein the data table is an address resolution protocol (ARP) table.
  - 12. The computing device of claim 10, wherein generating the firewall includes removing the MAC address of the new network device from the ARP table.
  - 13. The computing device of claim 10, wherein removing the firewall includes adding the MAC address of the new network device to the ARP table.
  - 14. The computing device of claim 9, wherein the query is transmitted in response to establishing the connection between the new network device and the gateway.
  - 15. The computing device of claim 9, wherein after the query is received, the query is presented on a display so as to allow a response to be entered at the display.
  - 17. The computing device of claim 9, further comprising instructions, which when executed by the one or more processors, cause the computing device to perform operations including:
    - transmitting a communication, including network credentials, to the new network device so as to allow the new network device to connect to the network.

16. A computer-program product tangibly embodied in a non-transitory machine-readable storage medium, including instructions configured to cause a data processing apparatus to:
- receive, at a gateway on a network, a communication including a request for a new network device to join the network;
  
  establish a connection between the new network device and the gateway, wherein establishing the connection between the new network device and the gateway includes allowing the new network device to connect to a guest entry point of the network;
  
  generate a firewall configured to prevent the new network device from communicating with an existing device on the network, wherein establishing a connection between the new network device and the gateway and generating a firewall configured to prevent the new network device from communicating with an additional device on the network occur at substantially the same time;
  
  transmit a query, wherein the query includes a request to determine whether the new network device is associated with the network;
  
  receive a communication including a response to the query indicating that the new network device is associated with the network; and
  
  remove the firewall to allow the new network device to communicate with the existing network device.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
- - 18. The computer-program product of claim 16, further comprising instructions configured to cause the data processing apparatus to:
    - store a data table including media access control (MAC) addresses associated with network devices on the network, wherein the new network device is associated with a MAC address on the data table.
  - 19. The computer-program product of claim 18, wherein the data table is an address resolution protocol (ARP) table.
  - 20. The computer-program product of claim 18, wherein generating the firewall includes removing the MAC address of the new network device from the data table.
  - 21. The computer-program product of claim 18, wherein removing the firewall includes adding the MAC address of the new network device to the data table.
  - 22. The computer-program product of claim 16, wherein the query is transmitted in response to establishing the connection between the new network device and the gateway.
  - 23. The computer-program product of claim 16, wherein after the query is received, the query is presented on a display so as to allow a response to be entered at the display.
  - 24. The computer-program product of claim 16, further comprising instructions configured to cause the data processing apparatus to:
    - transmit a communication, including network credentials, to the new network device so as to allow the new network device to connect to the network.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Belkin International Incorporated (Hon Hai Precision Industry Co., Ltd.)
Original Assignee
Belkin International Incorporated (Hon Hai Precision Industry Co., Ltd.)
Inventors
Kim, Ryan Yong
Primary Examiner(s)
Pwu, Jeffrey
Assistant Examiner(s)
Ambaye, Samuel

Application Number

US14/525,443
Publication Number

US 20160119284A1
Time in Patent Office

665 Days
Field of Search

726/12
US Class Current

1/1
CPC Class Codes

H04L 2101/622   Layer-2 addresses, e.g. med...

H04L 63/02   for separating internal fro...

H04L 63/06   for supporting key manageme...

H04L 63/083   using passwords cryptograph...

H04L 63/0853   using an additional device,...

H04L 63/0876   based on the identity of th...

H04L 63/101   Access control lists [ACL]

H04L 67/02   based on web technology, e....

H04L 67/04   specially adapted for termi...

H04L 67/10   in which an application is ...

H04L 67/12   specially adapted for propr...

H04L 67/141   Setup of application sessio...

H04L 67/568   Storing data temporarily at...

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/35   Protecting application or s...

H04W 76/10   Connection setup

H04W 84/12   WLAN [Wireless Local Area N...

Remote grant of network access

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

15 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Remote grant of network access

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links