Secure IP access protocol framework and supporting network architecture

Inactive Publication Date: 2007-05-03
AT&T INTPROP I L P
View PDF6 Cites 17 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Benefits of technology

[0008] In accordance with an aspect of the present invention, there is provided a protocol framework for a Secure IP Access (SIA) method, and supporting components deployed on IP hosts and IP networks. Using this method, an IP host can establish a secure data channel within an IP network over an insecure shared link while requesting IP address and networking configuration parameters from the IP networ

Problems solved by technology

Currently there are several methods for an IP host to initialize IP networking with an IP network over a shared link, but they either lack security functions or suffer a routing efficiency problem.
This method by itself does not offer any security solutions.
This method by itself does not offer any security functions.
This method offers good security protection when encryption is used, but it suffers a routing efficiency problem if the majority of communicat

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Secure IP access protocol framework and supporting network architecture
  • Secure IP access protocol framework and supporting network architecture
  • Secure IP access protocol framework and supporting network architecture

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0020] With reference to the several views of the drawings, a WLAN is used as an illustrative example for a Secure IP Access (SIA) method with five exemplary supporting network architectures. For the purpose of description, it is assumed that the WLAN does not implement any link-layer authentication and encryption mechanisms. Referring to FIG. 1, there is depicted a first illustrative embodiment of a network architecture 100 in accordance with an aspect of the invention. Each wireless host 102 includes a SIA client 104 that facilitates several functions described in greater detail below. The SIA client may be implemented as an “intermediate driver,” as described in detail in co-owned U.S. patent application Ser. No. 10 / 138,129, filed May 5, 2002, the disclosure of which is incorporated herein by reference. A SIA server 106 is combines three entities: an authentication entity, an enhanced DHCP entity, and a VPN entity. Each entity has different work modes, depending on the network to...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

A protocol framework for a Secure IP Access (SIA) method, and supporting components deployed on IP hosts and IP networks. Using this method, an IP host can establish a secure data channel within an IP network over an insecure shared link while requesting IP address and networking configuration parameters from the IP network. A system administrator can implement strong access control against various attacks that an edge IP network may have to face, such as a denial-of-service attack that exhausts assignable IP addresses. This is a lightweight, scalable, and backward-compatible solution that can improve security performance for public and corporate LANs having open access such as wireless access points and Ethernet jacks.

Description

[0001] This application is a division of U.S. application Ser. No. 10 / 317,694, filed Dec. 12, 2002, which claims priority to Provisional U.S. Appl. Ser. No. 60 / 339,956, filed Dec. 12, 2001, the disclosure of which is hereby incorporated herein.FIELD OF THE INVENTION [0002] The present invention relates generally to network access, and more particularly, to a method and architecture for enabling an IP host to establish a secure data channel with a secure DHCP server on an IP network over an insecure shared link, while the IP host requests an IP address and networking configuration parameters from the secure DHCP server the IP network, and, consequently, to establish a secure data channel with any other IP host on the IP network while the IP host explores the MAC address of the other IP host. BACKGROUND [0003] Currently there are several methods for an IP host to initialize IP networking with an IP network over a shared link, but they either lack security functions or suffer a routing...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L9/00H04L9/32H04L12/22H04L29/06H04L29/12
CPCH04L61/2015H04L63/061H04L63/0869H04L63/1458H04L61/5014
Inventor HENRY, PAUL SHALALUO, HUIMCNAIR, BRUCE EDWINSHANKARANARAYANAN, NEMMARA K.
Owner AT&T INTPROP I L P
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap