Network security path identification and validation
US-12170668-B2 · Dec 17, 2024 · US
Management of access to service in an access point
US10645582B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10645582-B2 |
| Application number | US-201615331428-A |
| Country | US |
| Kind code | B2 |
| Filing date | Oct 21, 2016 |
| Priority date | Oct 15, 2009 |
| Publication date | May 5, 2020 |
| Grant date | May 5, 2020 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Access rights to wireless resources and telecommunication service(s) supplied through a set of access points (APs) are configured. Access to wireless resources is authorized by access attributes in access control list(s) (ACL(s)) while a profile of service attributes linked to the ACL(s) regulate provision of telecommunication service(s). Access and service attributes can be automatically or dynamically configured, at least in part, in response to changes in data that directly or indirectly affects an operation environment in which the set of APs is deployed. Automatic or dynamic configuration of access or service attributes enable control or coordination of wireless service provided through the set of APs; degree of control or coordination is determined at least in part by enablement or disablement of disparate services for disparate devices at disparate access points at disparate times and with disparate service priority.
First claim
Opening claim text (preview).
What is claimed is: 1. A system, comprising: a processor; and a memory that stores executable instructions that, when executed by the processor, facilitate performance of operations, comprising: receiving request data indicative of a request from a mobile device to access a network device of a network via the system; receiving, from a first storage device of the system, first access data that defines a first access control list of first mobile devices authorized to access the network device; decoding the request data to determine credential data indicative of a credential associated with the mobile device; determining whether the mobile device is authorized to access the network device of the network via the system based on the credential data and the first access data; forwarding the credential data of the mobile device to a server device in response to a first determination, based on the credential data and the first access data, that the mobile device is not authorized to access the network device via the system; receiving a second access data from a second storage device of the server device; employing the second access data to determine, based on a second determination, that the mobile device is authorized to access the network device of the network via the system, wherein the second access data defines authorization data indicative of a second access control list of second mobile devices authorized to access the network device of the network via the system, wherein the authorization data comprises time data indicative of an interval of time, wherein the authorization data comprises location data indicative of a location associated with the access to the network device, wherein the second access data comprises service attribute data indicative of service attributes that regulate access to wireless resources for the second mobile devices, wherein the service attribute data comprises priority data, indicative of a priority ranking for the mobile device to access the wireless resources, wherein the service attribute data comprises access quality data, indicative of a quality of service profile for the mobile device with respect to the wireless resources, and wherein a portion of the service attribute data is generated based on data provided by a source device in communication with the server device and the second storage device; replacing the first access data stored in the first storage device with the second access data received from the second storage device of the server device; generating, in response to the first determination associated with the first access data that the mobile device is not authorized to access the network device and the second determination associated with the second access data that the mobile device is authorized to access the network device, access intelligence data indicative of information associated with a prediction of one or more events at the network device, wherein the generating the access intelligence data comprises employing one or more artificial intelligence techniques, and wherein the one or more events comprise an attachment event associated with the network device; and providing, in response to the first determination associated with the first access data that the mobile device is not authorized to access the network device and the second determination associated with the second access data that the mobile device is authorized to access the network device, the mobile device access to the network device for the interval of time at the location based on the access intelligence data, the authorization data and the service attribute data that comprises the priority data and the access quality data. 2. The system of claim 1 , wherein the providing comprises adjusting the time data in correspondence with changes to a bandwidth associated with the network device of the network. 3. The system of claim 1 , wherein the providing comprises providing the mobile device the access to the network device of the network based on the data provided by the source device communicatively coupled to the server device. 4. The system of claim 1 , wherein the providing comprises providing the mobile device the access to the network device of the network based on service data indicative of network service parameters for respective mobile devices of the second mobile devices. 5. A method, comprising: receiving, by an access point device comprising a processor, a signal indicative of a request from a mobile device to access a network device of a communication network via the access point device; receiving, by the access point device and from a first storage device of the access point device, first access data that defines a first group of first mobile devices authorized to access the network device; decoding, by the access point device, the signal to determine credential data indicative of a credential for the mobile device; determining, by the access point device, whether the mobile device is authorized to access the network device via the access point device based on the credential data and the first access data; transmitting, by the access point device, the credential data of the mobile device to a server device in response to a first determination, based on the credential data and the first access data, that the mobile device is not authorized to access the network device; receiving, by the access point device, second access data from a second storage device of the server device; employing, by the access point device, the second access data to determine, based on a second determination, that the mobile device is authorized to access the network device of the communication network via the access point device, and wherein the second access data defines authorization data indicative of a second group of second mobile devices authorized to access the network device of the communication network via the access point device; replacing, by the access point device, the first access data stored in the first storage device with the second access data received from the second storage device to facilitate the authorizing of the mobile device; and authorizing, by the access point device in response to the first determination associated with the first access data that the mobile device is not authorized to access the network device and the second determination associated with the second access data that the mobile device is authorized to access the network device, the mobile device to access the network device for a period of time at a geographic location based on the authorization data, access time data received from the server device and indicative of the period of time, location data received from the server device and indicative of the geographic location associated with the access to the network device, priority data indicative of a priority ranking for the mobile device to access wireless resources via the access point device, access quality data indicative of a quality of a service profile for the mobile device with respect to the wireless resources associated with the access point device, service attribute data indicative of service attributes that regulate access to communication resources for the second mobile devices, and access intelligence data indicative of information associated with a prediction of one or more events at the network device, wherein the service attribute data is defined by the second access data, wherein a portion of the service attribute data is generated based on data provided by a source device in communication with the server device and the second storage device, wherein the access intelligence data is generated in response to the first determination associated with the first access data that the mobile device is not authorized to access the network device and the second
Assignees
Inventors
Classifications
- H04L63/101Primary
Access control lists [ACL] · CPC title
Access point devices · CPC title
using biometrical features, e.g. fingerprint, retina-scan (cryptographic mechanisms or cryptographic arrangements for entity authentication using biological data H04L9/3231) · CPC title
using passwords (cryptographic mechanisms or cryptographic arrangements for entity authentication using a predetermined code H04L9/3226) · CPC title
using private Base Stations, e.g. femto Base Stations, home Node B · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10645582B2 cover?
- Access rights to wireless resources and telecommunication service(s) supplied through a set of access points (APs) are configured. Access to wireless resources is authorized by access attributes in access control list(s) (ACL(s)) while a profile of service attributes linked to the ACL(s) regulate provision of telecommunication service(s). Access and service attributes can be automatically or dy…
- Who is the assignee on this patent?
- At & T Ip I Lp
- What technology area does this patent fall under?
- Primary CPC classification H04L63/101. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue May 05 2020 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).