| Systems and methods for automatically configuring network devices -> Monitor Keywords |
|
|
 Systems and methods for automatically configuring network devicesRelated Patent Categories: Information Security, Access Control Or Authentication, Network, Firewall, Security Protocols, Virtual Private Network Or Virtual Terminal Protocol (i.e., Vpn Or Vtp)The Patent Description & Claims data below is from USPTO Patent Application 20070199066. Brief Patent Description - Full Patent Description - Patent Application Claims
CROSS-REFERENCE TO RELATED APPLICATIONS [0001] This application is a divisional of copending application Ser. No. 11/057,862, filed Feb. 14, 2005, entitled Systems and Methods for Automatically Configuring and Managing Network Devices and Virtual Private Networks, which is a divisional of copending application Ser. No. 11/057,860, filed Feb. 14, 2005, entitled "Systems and Methods for Automatically Configuring and Managing Network Devices and Virtual Private Networks", the entire disclosures of which are incorporated herein by reference. COPYRIGHT NOTICE [0002] A portion of the disclosure of this patent document contains material which is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or the patent disclosure, as it appears in the Patent and Trademark Office patent file or records, but otherwise reserves all copyright whatsoever. BACKGROUND OF THE INVENTION [0003] The most commonly used network is the local area network ("LAN"). LANs consist of interconnected computers that provide different functions such as a host or server. A host computer sends and receives information of the network in forms of packets of data. A server distributes the data to network users along with the host computer. These computers are interconnected through the use of bridges, switches, routers, and gateways. A bridge is a device that is connected to at least two LANs and transmits data between the LANs. A router provides similar services, but also determines the optimum path for the data by using network identifiers. LANs provide a high level of security when they are properly managed and configured since all information transfer occurs within a single site. [0004] Other systems have been created to provide communication between several single site organizations. For example, this may be performed using a wide area network ("WAN"). WANs interconnect offices or various organizational sites via private communication connections such as leased lines. WANs are virtually identically to LANs with the exception of the spatially extended interconnections. Although these systems can be expensive due to the lease cost of the leased lines and the additional administrative cost of managing a network encompassing a large geographic area, they also provide an adequate amount of security when they are properly managed. [0005] In recent years, technical advancement and declining prices have made it commonplace for workplaces to provide Internet access via a local Internet Service Provider ("ISP") to some or all of their employees. Besides providing a vast amount of informational resources, the Internet provides electronic communication to any computer also connected to the Internet. This innovation provides a relatively easy method for members of an organization to communicate with members of their organization who are traveling, working from home, or are located at other geographic locations. However, a large disadvantage of using the Internet for communications is accessibility of the Internet to the general public. Since the exact route of the data is indeterminable, an Internet user risks eavesdropping and information theft. An even greater risks is that communications can be intercepted and altered before reaching there intended recipient. Due to these risks, many organizations are unwilling to expose their associates' and employees' communications to public network space such as the Internet. [0006] With these security issues in mind, many systems and methods have been created to provide more secure communication between private computer networks over a public network such as institutional intranets and the Internet. One of the first systems to arise was the VPN. A VPN has the characteristics of a private network but provides connectivity via a shared public network infrastructure. VPNs include intranet VPNs, remote access VPNs, and extranet VPNs. A VPN incorporates access control, encryption technologies, and tunneling to achieve the security inherent in private networks while taking advantage of the infrastructure, economies of scale, and established management resources of public networks. However, a downfall of VPNs exists in large organizations in which the size of the VPN may cause maintenance of the VPN to become an increasingly complex task often causing extended time periods to perform necessary updates. [0007] To alleviate the expense of maintaining a VPN, many third party service providers such as ISPs offer managed VPNs to organizations desiring complex VPNs having increased levels of communication security. Typically, the service provider has a network operations center that controls and maintains the VPN remotely and locally based on the requirements provided by the organization. [0008] Increased levels of security may be obtained using a variety of methods. For example, cryptography systems may be employed to minimize theft of data by an unauthorized third party. Such systems encrypt transmitted data such that only the intended recipient's system can interpret the encryption. With these systems, unintended parties may receive the data, however, they are unable to interpret the encrypted data with their system. [0009] Once such commonly employed cryptography system is public key cryptography. In public key cryptography, also known as asymmetric encryption, a public and a private key exist for each user in the communication network. The encryption key is a code or number that can only be read by its respective encryption algorithm. Two users communicate data only by knowing each other's public code. One user's public key, which is known to all users of the network and is generally accessible from one location, is decoded by the other user's private key, which is only known by the owner of the key. Since only the intended recipient has the private key, only that user can decode and access the data. In addition to the relationship defined by the users' keys, the sender encodes the data with its private key to indicate to the user that the sender is authentic. [0010] Typically, the user's keys are generated and maintained by a certification authority. The user's private key is delivered to the user via electronic mail, regular mail, or a data storage device such as a compact disc ("CD"). The user's private keys are stored only (i.e., they cannot be downloaded), while the user's public keys can be downloaded from the certification authority when needed by another sender. The certification authority generates "certificates" or signed messages that specify the name of the user as well as the user's public key to verify the user's identity. [0011] Secure Sockets Layer ("SSL") is a commonly employed security protocol that may be implemented in conjunction with a cryptography system such as public key cryptography. This protocol is widely used for transmission of sensitive data via the Internet, such as credit card data, to a vendor's Internet web site. When an SSL session is initiated, the web site's server sends a digital certificate to the user's Internet browser (e.g., Internet Explorer.RTM.). The browser receives the digital certificate, which is used to authenticate the web site accessed by the user. The browser maintains an inventory of the certificates issued by public certificate authorities and is able to contact the respective authority to ensure that the received digital certificate has not been revoked. After verification that the digital certificate is valid, the user's browser uses the public key received from the web site to encrypt a random number, which it transmits to the Web site. This random number may be used as sent or may be modified to create a secret session key for subsequent exchange of private information between the user's system and the web site. [0012] Another commonly used security protocol is IP Security Protocol ("IPsec"). IPsec was created by the Internet Engineering Task Force to provide authentication and encryption for data transmitted via the Internet. An advantage of IPsec in comparison to SSL is that IPsec provides services at layer three and secures all applications in the network unlike SSL, which provides services at layer four and only secures two applications. IPsec can access both Internet and non-Internet applications. Although IPsec provides a higher level of security, IPsec requires more maintenance. For example, IPsec requires an installation at the client (e.g., a user's personal computer) whereas SSL is typically a component of a standard web browser. BRIEF SUMMARY OF THE INVENTION [0013] Briefly stated, in one aspect of the present invention, a method for automatically configuring a network device is provided. This method includes the steps of: receiving initial data input by a user; automatically establishing a network connection between a network and the network device; automatically establishing a first communication between a master device and the network device via the network; transmitting management device information from the master device to the network device; automatically establishing a second communication between a management device and the network device via the network connection to prompt transmission of a generic configuration file from the management device to the network device; transmitting the generic configuration file from the management device to the network device via the network connection; and automatically configuring the network device for at least one of the group consisting of network access, network browsing, electronic mail, and virtual private network participation, wherein the network device is automatically configured upon local processing of the generic configuration file. BRIEF DESCRIPTION OF THE SEVERAL VIEWS OF THE DRAWINGS [0014] A further understanding of the present invention can be obtained by reference to the embodiments set forth in the illustrations of the accompanying drawings. Although the illustrated embodiments are exemplary of systems for carrying out the present invention, both the organization and method of operation of the invention, in general, together with further objectives and advantages thereof, may be more easily understood by reference to the drawings and the following description. The drawings are not intended to limit the scope of this invention, which is set forth with particularity in the claims as appended or as subsequently amended, but merely to clarify and exemplify the invention. [0015] FIG. 1 depicts a schematic view of a network environment in accordance with an embodiment of the present invention including, inter alia, a management center, management portal, firewall, master server, regional servers, the Internet, a router, network connections, network devices, local networks, and local network devices. [0016] FIG. 2 depicts a schematic view of one embodiment of a VPN created using the systems and methods of the present invention including, inter alia, the Internet, a router, network connections, network devices, local networks, and local network devices. [0017] FIG. 3 depicts a flowchart of the steps in one embodiment of a process for user configuration to initiate automatic creation of a VPN. [0018] FIG. 4 depicts a flowchart of the steps in one embodiment of a process for automatic device configuration for the creation of a VPN. [0019] FIG. 5 depicts a flowchart of the steps in one embodiment of a process for updating external network address changes within a VPN. Continue reading... Full patent description for Systems and methods for automatically configuring network devices Brief Patent Description - Full Patent Description - Patent Application Claims Click on the above for other options relating to this Systems and methods for automatically configuring network devices patent application. ###  How KEYWORD MONITOR works... a FREE service from FreshPatents1. Sign up (takes 30 seconds). 2. Fill in the keywords to be monitored. 3. Each week you receive an email with patent applications related to your keywords. Start now! - Receive info on patent apps like Systems and methods for automatically configuring network devices or other areas of interest. ### Previous Patent Application: Method and system for quality of service based web filtering Next Patent Application: Anti-detonation device and method Industry Class: ### FreshPatents.com Support Thank you for viewing the Systems and methods for automatically configuring network devices patent info. IP-related news and info Results in 0.13646 seconds Other interesting Feshpatents.com categories: Medical: Surgery , Surgery(2) , Surgery(3) , Drug , Drug(2) , Prosthesis , Dentistry |
||
