Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Central trusted authority provides computer authentication
Reexamination Certificate
2007-02-06
2007-02-06
Vu, Kim (Department: 2135)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Central trusted authority provides computer authentication
C713S156000, C713S157000, C713S168000, C713S175000, C713S176000, C726S002000, C726S003000, C726S005000, C726S010000, C380S247000, C380S248000
Reexamination Certificate
active
10146383
ABSTRACT:
A fast authentication and access control method of authenticating a network access device to a communications network having an access point communicating with a remote authentication (home AAA) server for the network access device. The method includes the step of receiving an access request having an authentication credential from the network access device at the access point. The authentication credential includes a security certificate having a public key for the network access device and an expiration time. The security certificate is signed with a private key for the remote authentication server. The access point locally validates the authentication credential by accessing the public key of the remote authentication server from a local database, and checking the signature and expiration time of the security certificate. If the authentication credential is validated at the access point, the access point grants the network access device conditional access to the network by sending an access granted message to the network access device. The access granted message includes a session key encrypted with a public key for the network access device. The session key is stored in a database associated with the access point. The access point contacts the remote authentication server to check a revocation status of the security certificate for the network access device. If the access point receives a message from the remote authentication server that the authentication credential for the network access device has been revoked, it suspends network access for the network access device.
REFERENCES:
patent: 5757920 (1998-05-01), Misra et al.
patent: 5982898 (1999-11-01), Hsu et al.
patent: 6041317 (2000-03-01), Brookner
patent: 6075860 (2000-06-01), Ketcham
patent: RE36946 (2000-11-01), Diffie et al.
patent: 6198823 (2001-03-01), Mills
patent: 6212634 (2001-04-01), Geer et al.
patent: 6233341 (2001-05-01), Riggins
patent: 6236852 (2001-05-01), Veerasamy et al.
patent: 6490445 (2002-12-01), Holmes
patent: 6516316 (2003-02-01), Ramasubramani et al.
patent: 6772331 (2004-08-01), Hind et al.
patent: 6856800 (2005-02-01), Henry et al.
patent: 2002/0007454 (2002-01-01), Tarpenning et al.
patent: 2002/0042820 (2002-04-01), Strom
patent: 2002/0147820 (2002-10-01), Yokote
patent: 0939571 (1999-09-01), None
R. Housley et al., Internet X.509 Public Key Infrastructure Certifiate and CRL Profile, Jan. 1999, pp. 1-13 (RFC 2459).
Schneier, Bruce “Applied Cryptography” Second Edetion, 1996, Chapter 22, pp. 513-514.
Henry Paul Shala
Jiang Zhimei
Luo Hui
AT&T Corp.
Dada Beemnet W
Vu Kim
LandOfFree
Fast authentication and access control method for mobile... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Fast authentication and access control method for mobile..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Fast authentication and access control method for mobile... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3894816