IDiyas

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8424055 B1

PDFFull Text
Date of Patent:
Apr. 16, 2013

Filed:

Oct. 05, 2004

Deterministic user authentication service for communication network

Applicants:

Michael E. See, Chapel Hill, NC (US);

John W. Bailey, Agoura Hills, CA (US);

Charles L. Panza, Park City, UT (US);

Yuri Pikover, Malibu, CA (US);

Geoffrey C. Stone, Minneapolis, MN (US);

Michele Wright Goodwin, Westlake Village, CA (US);

Robert Leon Sangroniz, Sandy, UT (US);

Inventors:

Michael E. See, Chapel Hill, NC (US);

John W. Bailey, Agoura Hills, CA (US);

Charles L. Panza, Park City, UT (US);

Yuri Pikover, Malibu, CA (US);

Geoffrey C. Stone, Minneapolis, MN (US);

Michele Wright Goodwin, Westlake Village, CA (US);

Robert Leon Sangroniz, Sandy, UT (US);

Assignee:

Alcatel Lucent, Paris, FR;

Attorney:

S. Wyse

Primary Examiner:

Christian Laforgia

Assistant Examiner:

James Turchen

Int. Cl.
CPC ...
H04L 29/06 (2006.01);
U.S. Cl.
CPC ...
Abstract

A user authentication service for a communication network authenticates local users before granting them access to personalized sets of network resources. Authentication agents on intelligent edge devices present users of associated end systems with log-in challenges. Information supplied by the users is forwarded to an authentication server for verification. If successfully verified, the authentication server returns to the agents authorized connectivity information and time restrictions for the particular authenticated users. The agents use the information to establish rules for filtering and forwarding network traffic originating from or destined for particular authenticated users during authorized time periods. An enhanced authentication server may be engaged if additional security is desired. The authorized connectivity information preferably includes identifiers of one or more virtual local area networks active in the network. Log-in attempts are recorded so that the identity and whereabouts of network users may be monitored from a network management station.

Find Patent Forward Citations

Loading…