Information security – Access control or authentication – Network
Reexamination Certificate
2007-03-20
2007-03-20
Moazzami, Nasser (Department: 2136)
Information security
Access control or authentication
Network
C726S003000, C726S006000, C713S151000, C713S155000, C713S168000, C713S169000, C709S225000, C709S227000, C709S230000, C709S250000, C380S030000, C380S247000, C380S270000, C380S274000
Reexamination Certificate
active
10910006
ABSTRACT:
A method is disclosed for determining the authentication capabilities of a supplicant before initiating an authentication conversation with a client, for example, using Extensible Authentication Protocol (EAP). In one aspect, the method provides for sending, to a supplicant that is requesting access to a computer network subject to authentication of a user of the supplicant, a list of first authentication methods that are supported by an authentication server; receiving, from the supplicant, a counter-list of second authentication methods that are supported by the supplicant; determining how many second authentication methods in the counter-list match the first authentication methods; and performing an authentication policy action based on how many of the second authentication methods match the first authentication methods. Policy actions can include blocking access, re-directing to sources of acceptable authentication methods, granting one of several levels of network access, etc.
REFERENCES:
patent: 2002/0012433 (2002-01-01), Haverinen et al.
patent: 2003/0056096 (2003-03-01), Albert et al.
patent: 2003/0084287 (2003-05-01), Wang et al.
patent: 2003/0172090 (2003-09-01), Asunmaa et al.
patent: 2004/0010713 (2004-01-01), Vollbrecht et al.
patent: 2004/0093522 (2004-05-01), Bruestle et al.
patent: 2004/0098588 (2004-05-01), Ohba et al.
patent: 2004/0107360 (2004-06-01), Herrmann et al.
patent: 2004/0111520 (2004-06-01), Krantz et al.
Bersani, F., et al,‘Developing new Wireless Standards in Corporate Environments’,France Telecom R&D, Apr. 2004, entire document, http://www.first.org/conference/2004/papers/c09.pdf.
L. Blunk,et al., Merit Network Inc., PPP Extensible Authentication Protocol (EAP), Network Working Group, Mar. 1998, http://www.ietf.org/rfc/rfc2284.txt?number=2284, pp. 1-15.
H. Haverinen, et al., Nokia, “EAP SIM Authentication draft-haverinen-pppext-eap-sim-10.txt”, Point-to-Point Extensions Working Group, Feb. 2003, http://bgp.potaroo.net/ietf/all-ids/draft-haverinen-pppext-eap-sim-10.txt, pp. 1-58.
Clymer Andrew
Potter Darran
Stieglitz Jeremy
Baum Ronald
Cisco Technology Inc.
Hickman Palermo & Truong & Becker LLP
Moazzami Nasser
LandOfFree
Method and apparatus for determining authentication... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for determining authentication..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for determining authentication... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3778815