Verified device locations in a data network
First Claim
Patent Images
1. A method comprising:
- establishing a connection between a client device and a data network infrastructure;
receiving a first network physical location identifier concerning the client device from one or more trusted network devices within the data network infrastructure;
receiving a first device location identifier from the client device;
processing the first network physical location identifier and the first device location identifier to define a first trusted physical location for the client device associated with the established connection;
associating the first trusted physical location with the established connection;
providing the first trusted physical location to one or more network entry devices or central switching devices within the data network infrastructure, wherein at least one of the one or more network entry devices or central switching devices provide a plurality of connections for client devices on dedicated or shared media and are capable of switching and routing data;
switching or routing one or more data packets provided to or received from the client device, by at least one of the one or more network entry devices or central switching devices, based at least in part upon the first trusted physical location;
upon receiving either a second network physical location identifier concerning the client device from one or more trusted network devices within the data network infrastructure, or a second device location identifier from the client device,defining a second trusted physical location for the client device associated with the established connection by processing at least two of;
the first network physical location identifier, the first device location identifier, the second network physical location identifier, and the second device location identifier, wherein one of the at least two is the second network physical location identifier or the second device location identifier;
associating the second trusted physical location with the established connection;
providing the second trusted physical location to one or more network entry devices or central switching devices within the data network infrastructure, wherein at least one of the one or more network entry devices or central switching devices provide the plurality of connections for client devices on dedicated or shared media and are capable of switching and routing data; and
switching or routing one or more data packets to or from the client device, by at least one of the one or more network entry devices or central switching devices, based at least in part upon the second trusted physical location.
9 Assignments
0 Petitions
Accused Products
Abstract
One or more trusted network devices within a data network infrastructure determine a physical location of a client device requesting access to the data network infrastructure. A trusted physical location is generated and associated with the client device. The approach can include determining whether a candidate network device is a trusted network device based on a likelihood that the candidate network device can be modified to provide false physical location data. The approach also can include determining a response for an access request by the client and controlling network resources provided to the client based on the trusted physical location.
291 Citations
19 Claims
-
1. A method comprising:
-
establishing a connection between a client device and a data network infrastructure; receiving a first network physical location identifier concerning the client device from one or more trusted network devices within the data network infrastructure; receiving a first device location identifier from the client device; processing the first network physical location identifier and the first device location identifier to define a first trusted physical location for the client device associated with the established connection; associating the first trusted physical location with the established connection; providing the first trusted physical location to one or more network entry devices or central switching devices within the data network infrastructure, wherein at least one of the one or more network entry devices or central switching devices provide a plurality of connections for client devices on dedicated or shared media and are capable of switching and routing data; switching or routing one or more data packets provided to or received from the client device, by at least one of the one or more network entry devices or central switching devices, based at least in part upon the first trusted physical location; upon receiving either a second network physical location identifier concerning the client device from one or more trusted network devices within the data network infrastructure, or a second device location identifier from the client device, defining a second trusted physical location for the client device associated with the established connection by processing at least two of;
the first network physical location identifier, the first device location identifier, the second network physical location identifier, and the second device location identifier, wherein one of the at least two is the second network physical location identifier or the second device location identifier;associating the second trusted physical location with the established connection; providing the second trusted physical location to one or more network entry devices or central switching devices within the data network infrastructure, wherein at least one of the one or more network entry devices or central switching devices provide the plurality of connections for client devices on dedicated or shared media and are capable of switching and routing data; and switching or routing one or more data packets to or from the client device, by at least one of the one or more network entry devices or central switching devices, based at least in part upon the second trusted physical location. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A system comprising:
-
a client device; a data network infrastructure; wherein the system is configured to perform operations comprising; establishing a connection between the client device and the data network infrastructure; receiving a first device location identifier from the client device; processing the first network physical location identifier and the first device location identifier to define a first trusted physical location for the client device associated with the established connection; associating the first trusted physical location with the established connection; providing the first trusted physical location to one or more network entry devices or central switching devices within the data network infrastructure, wherein at least one of the one or more network entry devices or central switching devices provide a plurality of connections for client devices on dedicated or shared media and are capable of switching and routing data; and switching or routing one or more data packets provided to or received from the client device, by at least one of the one or more network entry devices or central switching devices, based at least in part upon the first trusted physical location; upon receiving either a second network physical location identifier concerning the client device from one or more trusted network devices within the data network infrastructure, or a second device location identifier from the client device, defining a second trusted physical location for the client device associated with the established connection by processing at least two of;
the first network physical location identifier, the first device location identifier, the second network physical location identifier, and the second device location identifier, wherein one of the at least two is the second network physical location identifier or the second device location identifier;associating the second trusted physical location with the established connection; providing the second trusted physical location to one or more network entry devices or central switching devices within the data network infrastructure, wherein at least one of the one or more network entry devices or central switching devices provide the plurality of connections for client devices on dedicated or shared media and are capable of switching and routing data; and switching or routing one or more data packets provided to or received from the client device, by at least one of the one or more network entry devices or central switching devices, based at least in part upon the second trusted physical location. - View Dependent Claims (17, 18, 19)
-
Specification