System and method for access control using network verification
US-10771472-B2 · Sep 8, 2020 · US
Dynamic passcodes in association with a wireless access point
US11212289B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-11212289-B2 |
| Application number | US-202017034235-A |
| Country | US |
| Kind code | B2 |
| Filing date | Sep 28, 2020 |
| Priority date | Feb 22, 2016 |
| Publication date | Dec 28, 2021 |
| Grant date | Dec 28, 2021 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method includes receiving, at an access point, an access request from a first device after an expiration of a first passcode. The access request is encrypted based on the first passcode. The method includes making a determination by the access point before an expiration of a usage time of a first passcode usage list that an identifier of the first device is included in the first passcode usage list. The method also includes, in response to making the determination, generating, at the access point, data representing a second passcode by encrypting the second passcode using the first passcode; and sending the data representing the second passcode from the access point to the first device.
First claim
Opening claim text (preview).
What is claimed is: 1. A communication device, comprising: a processing system including a processor; and a memory that stores executable instructions that, when executed by the processing system, facilitate performance of operations, comprising: receiving a first passcode from an access point, wherein the access point records an identifier of the communication device on a first passcode usage list; providing a first access request for a communication network to the access point, wherein the first access request is encrypted using the first passcode; receiving access to the communication network by the access point; providing a second access request for the communication network to the access point, wherein the second access request is encrypted using the first passcode; receiving a denial to the second access request, wherein prior to receiving the second access request, the access point determines a first time period based on the receiving of the first access request and the access point removes the identifier of the communication device from the first passcode usage list in response to the first time period exceeds a time threshold, wherein the access point provides the denial to the second access request in response to the access point determining the identifier of the communication device is not listed in the first passcode usage list; receiving a second passcode from an administrator computing system in response to requesting the second passcode from the administrator computing system; and providing a third access request for the communication network to the access point, wherein the third access request is encrypted using the second passcode, wherein the access point allows the communication device access to the communication network, wherein the access point adds the identifier of the communication device to a second passcode usage list in response to receiving user-generated input from the administrator computing system, the user-generated input comprises an indication to add the communication device to the second passcode usage list. 2. The communication device of claim 1 , wherein the access point providing of the denial to the second access request comprises providing the denial to the second access request in response to the access point determining the first time period has expired. 3. The communication device of claim 2 , wherein the access point determines a second time period based on the receiving of the third access request, wherein the access point removes the identifier of the communication device from the second passcode usage list in response to determining the second time period exceeds the time threshold. 4. The communication device of claim 3 , wherein the access point removes the identifier of the communication device from a trusted devices list in response to the access point determining the second time period exceeds the time threshold. 5. The communication device of claim 4 , wherein the access point providing the denial to the second access request comprises providing the denial to the first access request in response to the access point determining the identifier of the communication device is not listed in the trusted devices list. 6. The communication device of claim 2 , wherein the access point records a plurality of identifiers of devices listed in the first passcode usage list to the second passcode usage list. 7. The communication device of claim 2 , wherein the access point deletes the first passcode usage list in response to the determining of the first time period for the first passcode has expired. 8. A non-transitory, machine-readable medium, comprising executable instructions that, when executed by a communication device including a processor, facilitate performance of operations, the operations comprising: receiving a first passcode from an access point, wherein the access point records an identifier of the communication device on a first passcode list; providing a first access request fora communication network to the access point, wherein the first access request is encrypted using the first passcode; receiving access to the communication network by the access point; providing a second access request for the communication network to the access point, wherein the first access request is encrypted using the first passcode: receiving a denial to the second access request, wherein prior to receiving the second access request, the access point determines a first time period based on the receiving of the first access request and the access point removes the identifier of the communication device from a first passcode usage list in response to the first time period exceeds a time threshold, wherein the access point provides the denial to the second access request in response to the access point determining the identifier of the communication device is not listed in the first passcode usage list; receiving a second passcode from an administrator computing system in response to requesting the second passcode from the administrator computing system; and providing a third access request for the communication network to the access point, wherein the third access request is encrypted using the second passcode, wherein the access point allows the communication device access to the communication network, wherein the access point adds the identifier of the communication device to a second passcode usage list in response to receiving user-generated input from the administrator computing system, the user-generated input comprises an indication to add the communication device to the second passcode usage list. 9. The non-transitory, machine-readable medium of claim 8 , wherein the access point providing the denial to the second access request comprises providing the denial to the second access request in response to the access point determining the first time period for the first time period has expired. 10. The non-transitory, machine-readable medium of claim 9 , wherein the access point determines a second time period based on the receiving of the third access request, wherein the access point removes the identifier of the communication device from the second passcode usage list in response to determining the second time period exceeds the time threshold. 11. The non-transitory, machine-readable medium of claim 10 , wherein the access point removes the identifier of the communication device from a trusted devices list in response to the access point determining the second time period exceeds the time threshold. 12. The non-transitory, machine-readable medium of claim 11 , wherein the access point providing of the denial to the second access request comprises providing the denial to the first access re quest in response to the access point determining the identifier of the communication de vice is not listed in the trusted de vices list. 13. The non-transitory, machine-readable medium of claim 9 , wherein the access point records a plurality of identifiers of devices listed in the first passcode usage list to the second passcode usage list. 14. A method, comprising: receiving, by a communication device including a processor, a first passcode from an access point, wherein the access point records an identifier of the communication device on a first passcode usage list; providing, by the communication device, a first access request for a communication network, wherein the first access request is encrypted using the first passcode; receiving, by the communication device, access to the communication network by the access point, providing, by the communication device, a second access request for the comm
Assignees
Inventors
Classifications
One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key · CPC title
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
using time-dependent-passwords, e.g. periodically changing passwords · CPC title
Revocation or update of secret information, e.g. encryption key update or rekeying · CPC title
Access security · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US11212289B2 cover?
- A method includes receiving, at an access point, an access request from a first device after an expiration of a first passcode. The access request is encrypted based on the first passcode. The method includes making a determination by the access point before an expiration of a usage time of a first passcode usage list that an identifier of the first device is included in the first passcode usag…
- Who is the assignee on this patent?
- At & T Ip I Lp, At & T Mobility Ii Llc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/101. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Dec 28 2021 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 11 related publications on this page (citations in our corpus or others sharing the same primary CPC).