Patent Application
20100290390
1. Technical Field
The embodiments described herein generally relate to wireless communication and more particularly to the ability to limit what devices can access a wireless Wide Area Network (WAN) through a mobile, wireless router.
2. Related Art
Wireless modems exist that can be inserted, or otherwise interfaced with a computer and that enable data communication over a wireless Wide Area Network (WAN) such as a cellular type network. Early versions of these cards had connectors that complied with the PCMCIA standard and that were inserted into a slot in the side of the computer. Newer versions have USB connectors for interfacing with the computer. Such modems allow access to the Internet, or World Wide Web (WWW), even where no wired network connection exists and are most often interfaced with a laptop or other portable computing device.
In networking, the PPP is a data link protocol commonly used to establish a direct connection between two networking nodes. It can provide connection authentication, transmission encryption privacy, and compression. PPP is used over many types of physical networks including serial cable, phone line, trunk line, cellular telephone, specialized radio links, and fiber optic links such as SONET. For example, most Internet service providers (ISPs) use PPP for customer dial-up access to the Internet. PPP is commonly used as a data link layer protocol for connection over synchronous and asynchronous circuits, where it has largely superseded the older, non-standard Serial Line Internet Protocol (SLIP) and Telephone Company mandated standards, such as Link Access Protocol, Balanced (LAPB) in the X.25 protocol suite. PPP is designed to work with numerous network layer protocols, including Internet Protocol (IP), Novell's Internetwork Packet Exchange (IPX), NBF, and AppleTalk.
One draw back to system 100 of
Such a wireless router solution may create unwelcome traffic on the carriers' networks. Carriers prefer to manage the capability of such a wireless router device in terms of: a. what consumer electronics devices are allowed to attach to the broadband network and b. what services are allowed to run on the device. Conventional 3G router devices provide unlimited open access to any Wifi capable device. They do not have built in intelligence to discriminate between one peripheral 802.11 device or service and another to effectively filter those devices/services according to, e.g., programmed rules. Some routers do limit access to the network to a certain number of connections, but this is really not sufficient to address the carriers' concern with respect to the wireless router device disclosed in the '970 Application.
A wireless router that can interface multiple computing or wireless LAN client devices with a wireless broadband network and controls which devices are allowed to access the network is disclosed herein.
According to one aspect, a wireless router comprises a wide area network radio interface configured to enable communications between a wide area network and the wireless router; a local area network radio interface configured to enable communications between the wireless router and a plurality of computing device; memory configured to store instructions; and a processor coupled with memory, the instructions configured to cause the processor to perform the following in response to an activation of the power input: automatically establish a data connection with a base station associated with the wide area network over the wide area network, automatically establish a data connection with the plurality of computing devices over the local area network, automatically discover, for each of the plurality of device, a device type, determine whether the device type is an authorized device type, and allow the associated computing device to access the wide area network only if the device type is an authorized device type.
According to another aspect, a wireless router comprises a wide area network radio interface configured to enable communications between a wide area network and the wireless router; a local area network radio interface configured to enable communications between the wireless router and a plurality of computing device; memory configured to store instructions; and a processor coupled with memory, the instructions configured to cause the processor to perform the following in response to an activation of the power input: automatically establish a data connection with a base station associated with the wide area network over the wide area network, automatically establish a data connection with the plurality of computing devices over the local area network, automatically discover, for each of the plurality of device, a service being requested, determine whether the service is an authorized service, and allow the associated computing device to access the service only if the device type is an authorized device type.
According to still another aspect, a wireless router comprises a wide area network radio interface configured to enable communications between a wide area network and the wireless router; a local area network radio interface configured to enable communications between the wireless router and one or more computing devices running one or more services; memory configured to store instructions; and a processor coupled with memory, the instructions configured to cause the processor to perform the following: establish a data connection with a base station associated with the wide area network over the wide area network, establish a data connection with a computing device over the local area network, discover a service being run by the computing device, determine whether the service is an authorized service, and allow the computing device to access the wide area network only if the service is an authorized service
These and other features, aspects, and embodiments are described below in the section entitled “Detailed Description.”
Features, aspects, and embodiments are described in conjunction with the attached drawings, in which:
In the embodiments below, a wireless router is used to interface a plurality of computing device or LAN client devices with a wireless WAN. For example, the WAN can be configured to implement one of the Third Generation (3G) protocols, such as EDGE, CDMA2000, or the Universal Mobile Telecommunications System (UMTS) protocols, High Speed Packet Access (HSPA) or HSPA+ protocols, Long Term Evolution (LTE) protocols, Evolution Data Optimization (EV-DO) rev. A (DOrA), WiMAX, or other newer 4G protocols. The computing devices interface with the wireless router over a wireless Local Area Network (LAN) such as a WiFi network, wireless USB network, ultrawideband network, or a Zigbee network; however, it will be understood that the descriptions that follow are not intended to limit the embodiments herein to particular standards or architectures, the embodiments being provide by way of example only.
In certain embodiments, wireless router 304 can, e.g., be configured to interface as many as five (5) computing devices 306 with base station 302.
Thus, all that is required to enable multiple computing devices 306 to access the wireless WAN is to power on wireless router 304, and possibly provide a password. Wireless router 304 will automatically establish a connection with the WAN and enable the wireless LAN hotspot in response. There is no tethering of wireless router 304 with devices 306.
The embodiments described herein address the issue of unrestricted open access of wireless router's by allowing only authorized devices and users to connect through the wireless router. As noted above, Carriers have concerns about having an unlimited number of 802.11, or other devices potentially connecting to their broadband network. They also have concerns about service that would run openly on the carrier networks causing capacity degradations without the carriers being able to benefit from the use of these services.
Accordingly, as described in more detail below, an algorithm for discovering the type of device that is requesting a connection to the broadband network can be embedded within the wireless router processor circuitry. The same algorithm, or alternatively a different algorithm, can also be capable of discovering the type of application or service that is supposed to run on the wireless router device. Once device and service is discovered, a decision can be made, e.g., based on preset preferences stored in the device, with respect to what device is allowed to attach to the broadband network and what service or application is allowed to run on the wireless router device. Only authorized devices and services are allowed to use the wireless router. Thus, a carrier can provision at the factory or remotely a wireless router device and configure it to filter certain devices or certain services from operating on the broadband network.
The basic filtering steps are illustrated in
For device filtering, the device discovery of step 520 can be based on its MAC address. Other means for discovering the device could be through the browser ID or by means of an application that runs on the peripheral device and that presents identification credentials to wireless router 304. Based on the type of device discovered in step 520, wireless router 304 decides whether to allow the device to connect on the network or not in step 522. For example, the decision could be based on the basis of a decision table stored in wireless router 304 that lists authorized devices, banned devices, or both. The table could reside on the PHS memory, or alternatively remotely on a server depending on the implementation.
For service filtering, the service discovery step of 520 can use the same basic algorithm as device filtering. The service could be discovered by various methods. For example, packet sniffing technology allows for identifying the type of service being run for instance Video vs. VOIP etc. Thus, some form of packet sniffing can be used to determine the service in step 520. Service detection can also be accomplished by monitoring the IP address to which the device connects. For instance, if wireless router 304 is looking to ban E-reader type services, then it could track the content server IP address being requested and ban connectivity to that server. In most embodiments, the algorithm for the service filtering resides on wireless router 304, but again it can be updated from a server.
In alternative embodiments, all or a portion of the traffic generated by devices 306 can be routed to a designated proxy server. The proxy server (not shown) can then be configured to perform the filtering. Such an approach can be advantageous in that it can make available additional computing power.
In certain embodiments, the Quality of Service (QoS) made available to a certain device 306 can be based on the device and service filtering described above. For example, device based QoS can be based on the above device filtering and service filtering algorithms to determine what level of service to provide to the device or service that is detected. The types of service provided can be the following:
a. Time delay of transmission
b. Bandwidth allocation
c. Priority of packets
Thus, a device 306 can be provisioned so as to ban a certain service, for instance say e-reader services. Wireless router 304 can discover the service either though the reading of the device Mac address, sniffing IP packets or reading the content server IP address. Once a banned service request is discovered, connectivity to the content server can be banned and a message sent to the user to inform him/her about the unauthorized use of the service. Another example use can be to pair a device with a WiFi camera and only allow the pictures to be uploaded to certain sites at particular times.
In certain embodiments, the WAN controller/interface portion of wireless router 304 (see
Referring to
Memory 504 can comprise several forms of memory, such as non-volatile memory 506 and volatile memory 508. Non-volatile memory is used to store data and instructions that should be maintained even when power is removed from wireless router 304. Volatile memory is used to store instructions and data for which it is not important whether it is maintain when power is removed. For example, the code used to run wireless router 304 can be stored in non-volatile memory 506 such that it is maintained even when wireless router 304 is turned off and so that wireless router 304 can access this code when it is turned on again; however, the code can be copied to volatile memory 508 when wireless router 304 is on. This can, for example, allow faster access to instructions and data by processor 502.
Examples of non-volatile memory include Read-Only Memory (ROM), flash memory, and most types of magnetic computer storage devices, e.g., hard disks, floppy disks, and magnetic tape and optical discs, although these later devices are not generally used for wireless router 304. Rather, the former, which can be referred to as electrically addressed non-volatile memories are typically used for wireless router 304. Non-volatile memory is typically used for the task of secondary storage, or long-term persistent storage. Most forms of non-volatile memory have limitations that make them unsuitable for use as primary storage. Typically, non-volatile memory either costs more or performs worse than volatile random access memory. Electrically addressed non-volatile memories can include a Programmable ROM (PROM), Erasable PROMs (EPROM), Electrically erasable PROM (EEPROM), Flash memory, or some combination thereof.
Volatile memory, also known as volatile storage or primary storage device, is computer memory that requires power to maintain the stored information, unlike non-volatile memory which does not require a maintained power supply. The most widely used form of primary storage today is a volatile form of random access memory (RAM), meaning that when the computer is shut down, anything contained in RAM is lost. Most forms of modern RAM are volatile storage, including Dynamic Random Access Memory (DRAM) and static random access memory (SRAM). Thus, wireless router 304 can include DRAM, SRAM, or some combination thereof, although wireless router 304 is more likely to include SRAM than DRAM.
In certain embodiments, some portion or even all of non-volatile memory 506, volatile memory 508, or both can be included with processor 502.
LAN radio 510 can comprises all of the hardware required for the radio front end of the wireless LAN interface. Similarly, WAN radio 512 can comprises all of the hardware required for the radio front end of the wireless WAN interface. Processor 502 or components thereof can serve as the processing backend for both radios 510 and 512. Alternatively, separate processing circuitry can be included for each of the LAN function and the WAN function. In such embodiments, the processing functionality described herein can be included in either the LAN processing circuitry or the WAN processing circuitry.
User interface 514 can comprise just button 312. But in other embodiments, it can also comprise a display, e.g., to display a password.
Instructions stored in memory 504 can be used by processor 502 to control the operation of wireless router 502 including control of radios 510 and 512. Thus, the instructions stored in memory 504 should include instructions for controlling the operation of radios 510 and 512 as well as for bridging communications between basestation 320 and devices 306 and for configuring wireless router 304. In certain embodiments, the instructions for controlling WAN radio 512, and the authentication procedures for connecting to the WAN, can be included in standard code associated with WAN radio 512. These instructions can be referred to as modem instructions. Separate instructions for controlling the remaining functions of wireless router 304 can then also be stored in memory 504, including the procedures and settings for controlling LAN radio 510. These instructions can be referred to as router instructions.
A process for allowing these two sets of instructions to interact must then be implemented in such embodiments.
Alternatively, a single function table with the appropriate functions and pointers can be created and used by both modem and router instructions 602 and 604; however, it will be understood that how the function tables are described is a matter of convenience and that what is important is that there is an association between functions and pointers to functions in the various instructions that is maintained within wireless router 304.
Initialization function 612 can also be configured to create a set of related tasks, e.g., an http server task, a WiFi driver task, a bridge task, etc. For example, once the functional tables are initializes, the router instructions can start to run in step 708. Different tasks can then be called in steps 712, 714, and 716, which can cause initialization functions related with each tasks to run in steps 718, 720, and 722. These initialization functions can then initialize the related tasks such that they can run in steps 724, 726 and 728.
One of these related tasks can, e.g., comprise a filter task as described above with respect to
On successful initialization, router instructions 604 can be configured to notify modem instructions 602 through either a return value or a signal.
Modem instructions 602 can start to run in step 708. As the modem instruction and router tasks run, they can communicate with each other using the set of function pointers populated in the function pointer tables. For example, a typical function that a router task can use is “efs_open” or “rex_sleep.” Modem instructions 602 can, for example, call a transmit function in the router WiFi driver or it can call the address translate functions.
A partition table for memory 504 can for example have one additional, e.g., 3 MB partition for router instructions 604. Router instructions 604 can be built into a binary file from, e.g., an elf file.
On boot up, the operating system can verify the checksum, version compatibility, and magic string from the image header before proceeding to the next step, e.g., step 702.
Accordingly, router instructions 604 are not statically linked into modem instructions 602. Rather, they will be compiled and linked into a separate binary with a fixed entry point (offset address) specified in the router image header. This binary can then be loaded at that exact location specified by the offset address at run time. The memory location specified by the offset address should specify a block of memory that is not used by the memory instructions. Once the memory section is created, the router binary except the header can then be loaded at the address where the image was created. After the modem instruction initialization is completed, it will call an initialization function located in the router binary. This location will be known to the modem instructions because where the router binary was loaded in the memory will be known. The router initialization function can then populate the rest of the function pointers in the structure described above for the modem instructions. Form this point on the modem and router instructions can communicate with each other using the set of functions that have been saved in the function pointer table.
Once wireless router 304 is powered up, the connection with base station 302 is establish, the LAN is activated, and wireless router 304 will be ready to route data packets from devices 306 to base station 302. Devices 306 can then access, e.g., the Internet through wireless router 304. All that may be required for devices 306 to access the Internet, or more generally the WAN associated with base station 302 is a password, which can be displayed in wireless router 304. Contrast this with system 100 in which only a single device 106 can access the WAN.
While certain embodiments have been described above, it will be understood that the embodiments described are by way of example only. Accordingly, the systems and methods described herein should not be limited based on the described embodiments. Rather, the systems and methods described herein should only be limited in light of the claims that follow when taken in conjunction with the above description and accompanying drawings.
This application claims the benefit under 35 U.S.C. §119(e) of U.S. Provisional Application Ser. No. 61/178,926, filed May 15, 2009 and entitled “Rule Based Internet Browser Redirect for Wireless WAN Routers,” and which is incorporated herein by reference in its entirety as if set forth in full. This Application also claims priority as a continuation in part under 35 U.S.C. 120 to U.S. patent application Ser. No. 12/537,970, filed Aug. 7, 2009 and entitled “Systems and Methods for Automatic Connection with a Wireless Network,” which is also incorporated herein by reference in its entirety as if set forth in full.
| Number | Date | Country | |
|---|---|---|---|
| 61178926 | May 2009 | US |
| Number | Date | Country | |
|---|---|---|---|
| Parent | 12537970 | Aug 2009 | US |
| Child | 12618677 | US |
