US20130247157A1 - Method of connecting a device to a network using different service providers - Google Patents

Method of connecting a device to a network using different service providers Download PDF

Info

Publication number
US20130247157A1
US20130247157A1 US13/871,432 US201313871432A US2013247157A1 US 20130247157 A1 US20130247157 A1 US 20130247157A1 US 201313871432 A US201313871432 A US 201313871432A US 2013247157 A1 US2013247157 A1 US 2013247157A1
Authority
US
United States
Prior art keywords
user
isp
access
internet
network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US13/871,432
Inventor
Thomas Drennan Selgas
Michael Brian Massing
John Everett Gmuender
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
MyMail Ltd
MyMail Inc
Original Assignee
MyMail Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US09/100,619 external-priority patent/US6571290B2/en
Application filed by MyMail Ltd filed Critical MyMail Ltd
Priority to US13/871,432 priority Critical patent/US20130247157A1/en
Assigned to DERBY, ROBERT T. reassignment DERBY, ROBERT T. JUDGMENT Assignors: NETSAFE, INC.
Assigned to MYMAIL, LTD. reassignment MYMAIL, LTD. CERTIFICATE OF CONVERSION Assignors: MYMAIL, INC.
Assigned to NETSAFE, INC. reassignment NETSAFE, INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: GMUENDER, JOHN EVERETT, MASSING, MICHAEL BRIAN, SELGAS, THOMAS DRENNAN
Assigned to MYMAIL, INC. reassignment MYMAIL, INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: DERBY, ROBERT T.
Publication of US20130247157A1 publication Critical patent/US20130247157A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/30Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0464Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload using hop-by-hop encryption, i.e. wherein an intermediate entity decrypts the information and re-encrypts it before forwarding it
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols

Definitions

  • Appendix A having file name APP_A.TXT, totaling 78 kilobytes and created on Jun. 20, 2001, consisting of a computer listing constitutes a part of the specification of this invention, pursuant to 37 C.F.R. Sections 1.77 and 1.96, the appendix being incorporated by reference herein for all purposes.
  • the present invention relates in general to digital data networks and, more particularly, to network access and to minimizing unauthorized interception of data and denial of network services.
  • the Internet comprises a network of computers that interconnect many of the world's businesses, institutions, and individuals.
  • the Internet which means interconnected network of networks, links tens of thousands of smaller computer networks.
  • the Internet can be accessed directly through telephone lines with a device called a modem or indirectly though a local area network (LAN).
  • LAN local area network
  • Most users do not have the expertise to connect their computers and associated equipment to the Internet and/or finances to have a continuous connection to the Internet.
  • ISP Internet Service Provider
  • the ISP can distribute the costs of necessary equipment and telephone lines to many users on some time multiplexed basis. While an ISP may have access to only one server and a few modems for receiving incoming calls from users, some ISPs have access to hundreds and even thousands of modems and many servers to interface between users and one or more high speed telephone lines of at least DS1 standard communication capacity.
  • Some ISPs use less expensive (ie slower rate, poorer quality or lower capacity) telephone lines or equipment to provide low cost and as a result the data transmission rate of communications between the user and the Internet may be substantially less than the capability of the users modem.
  • Many sets of information on the Internet such as Web pages, include pictures, pointers to other pages, music etc, that require large amounts of data to be transmitted for ultimate display.
  • a low data transmission rate equates to a long time spent waiting to obtain that data.
  • ISP specific type information would include the ISP dial-in number, a Password Authentication Protocol (PAP) identification number and a PAP password for that ISP.
  • PAP Password Authentication Protocol
  • ISPs provide different services to users. Some ISPs (no or low service) may offer only a connection to the Internet without technical help to a user connected to that ISP and further without any additional features. Other ISPs (full service) may offer many features such as encyclopedia type information, interactive games, access to otherwise costly databases, etc.
  • a user in a commercial environment may operate a computer that is connected to a LAN and also is connected to a modem.
  • a modem There are often business considerations that require some communications with the Internet be accomplished through the LAN and other, especially personal, communications be accomplished through a modem. If a single software entity such as a browser is used for both types of Internet connection, several items of information need to be altered with the accompanying chance for error and frustration of the user.
  • Some Internet users are highly mobile and may need to access the Internet from various locations, some of which locations do not have a local phone number for communicating with the normally used ISP. Such a user either must pay the cost of a long distance call or access a different ISP after modifying the appropriate data the operating system's networking, dial-up-networking, or communications properties used to accomplish such access. Such modification always invites a chance for erroneous data entry in the process and the accompanying time required to rectify the situation.
  • Email is used to quickly communicate with other users of connected network terminals.
  • the process is normally accomplished by sending a set of data including a header portion, a message body and sometimes one or more file attachments.
  • the header contains the name of the recipient in a TO line, the sender in a FROM line and a subject in a SUBJECT line.
  • a persistent entity monitoring the email being sent to and from a given terminal may glean considerable information from the subject matter listed and from the number of messages sent between same parties.
  • This information is typically sent in clear text (unencoded) to facilitate the delivery of email to the proper temporary storage facility, normally a post office box like repository of the service provider of the recipient, until such time as the recipient retrieves the email from the service provider.
  • the recipient also uses the header information in determining priority of messages to be read.
  • a further problem is third party mail relay.
  • This is a process whereby junk emailers use a service system other than their own to send massive amounts of mail without paying for the service.
  • the massive amount of mail can so overload the system that an invaded system can crash, overload or otherwise be damaged. This overload is termed in the art as a denial of service attack.
  • the overall process of sending massive amount of junk email is termed “spamming”.
  • the third party mail relay process is also used to bypass other systems filters which are set up to block mail from the junk emailers system.
  • the present invention comprises a method of and apparatus for simplifying the process of access to a network for a roaming computer user, divides the responsibility of servicing a given user wanting to access the network between multiple parties and minimizes the possibility of improper dissemination of email header data as well as improper use of network resources (including server systems) by non-clients.
  • FIG. 1 illustrates signal communication paths between clients, ISPs and network access providers
  • FIG. 2 illustrates in more detail the software interaction between a client and an access service provider
  • FIG. 3 illustrates a flow diagram of an installation procedure of the client dispatch application
  • FIG. 4 illustrates a flow diagram of a registration procedure of the client dispatch application
  • FIG. 5 illustrates a flow diagram of a regular use procedure of the client dispatch application
  • FIG. 6 illustrates a flow diagram of a manual update procedure of the client dispatch application
  • FIG. 7 illustrates a flow diagram of a multi-dial procedure of the client dispatch application
  • FIG. 8 illustrates a plurality of MOT (a computer script language) potential processes
  • FIG. 9 is a block diagram of a storage medium comprising the client dispatch application for causing a computer to function in accordance with the present invention.
  • FIG. 10 comprises a simple diagrammatic showing of how the present invention may be used in combination with browser plug in software to minimize unauthorized viewing of email messages;
  • FIG. 11 provides more detail for illustrating the process of FIG. 10 ;
  • FIG. 12 shows details of sender plug-in software process for email transmission that is more secure than that shown in FIG. 11 ;
  • FIG. 13 shows details of the process of FIG. 12 at a third party site
  • FIG. 14 shows details of the process of FIG. 12 at a recipient site
  • FIG. 15 shows the process of FIG. 12 as applied to a changeable internal database
  • FIG. 16 illustrates a an example of a customized button bar that may be generated using the MOT script in accordance with the teachings of this invention
  • FIG. 17 summarizes the software installation process of a client users system that wishes to access the present invention
  • FIG. 18 provides a graphic description of the procedure used by a client in testing the installed software by selection a location from which to access the components of the present invention
  • FIG. 19 further illustrates the network test and client system update procedure
  • FIG. 20 illustrates the system interaction for providing client registration with the inventive system
  • FIG. 21 provides additional illustrative material for the interaction of the client systems software and the components of the inventive system in obtaining general and anonymous access to the system.
  • the present invention solves all or some of at least ten problems:
  • Network Re-seller such as an Internet Service Provider to offer network access via a multiplicity of Network Access Providers based on cost, location, availability, reliability, etc.
  • IDs and passwords Allows separate and distinct identifications (ID) and passwords for different services and network functions such as PAP IDs and PAP password, Email ID and password, etc.
  • This invention relates to network connections, such as the Internet, and allows system to be independently, transparently and dynamically connected or reconnected to a network based upon any number of attributes such as user or group identity, cost, availability, reliability, etc. Further this invention supports many types of physical connections such as telephone dial-up connections, ISDN connections, Ethernet, and other local area networking connections.
  • ISP Internet Service Provider
  • a traditional network connection requires someone skilled in the art of computer networking to setup and configure both network related hardware (such as modems or Local Area Network cards (Ethernet, Token-ring or other cards) and network software.
  • the invention eliminates the need for such network configuration skills.
  • the invention configures and reconfigures network related software to support multiple users with multiple network protocols and/or multiple networks using the same protocol without the need of any computer network configuration skills and further allows the configuration to be changed or modified dynamically without any user intervention.
  • FIGS. 1-21 of the drawings in which like numbers designate like parts.
  • the invention includes software which is sometimes referred to as middle-ware because it resides between an electronic device operating system and the end-users interface.
  • middle-ware because it resides between an electronic device operating system and the end-users interface.
  • the inventive software has all the attributes of middle-ware as it configures and manages network communication equipment such as modems and Ethernet cards, network protocols such as the Transmission Control Protocol/Internet Protocol (TCP/IP), and the associated interfaces between the communication equipment, network protocol and the computer's operating system for each individual user or groups of users.
  • TCP/IP Transmission Control Protocol/Internet Protocol
  • ISP 1 through ISPx Internet service providers
  • ISP Internet service provider
  • NAPs network access providers
  • NSPs Network Service Providers
  • a user 110 connects to the ISP 102 via a communications link and the ISP 102 provides connection to the Internet 100 .
  • the ISP typically has many modems accessible from a limited number of telephone numbers.
  • IP internet protocol
  • DNS domain name
  • IP internet protocol
  • IP internet protocol
  • the user 110 may include a single computer, group of computers, local area network, or a larger network connected to the ISP 102 via a communications link. However, in most applications, the user 110 will include a single user requesting access time to the Internet 100 .
  • the user 110 installs (downloads) a client dispatch application program 200 (see FIG. 2 ) that furnishes the user 110 with one or more ISP access telephone numbers, one or more valid test and Registration Password Authentication Protocol (PAP) identification (ID) numbers, and a valid PAP password associated with a predetermined one of the ISPs 102 .
  • the client dispatch application 200 will be described in more detail further below.
  • the access information allows the user 110 to authenticate the user's right to connect to the Internet via the predetermined ISP 102 .
  • the access information mentioned comprises the previously mentioned access telephone number, the PAP ID, the PAP password and additional ISP-specific information required by the user 110 to gain access to the Internet 100 via the predetermined ISP 102 (collectively, ISP-specific configuration information) is initially provided by the client dispatch application 200 .
  • the client dispatch application 200 provides basic configuration and initialization information (installation and configuration) to the user's computer to configure and manage the network communication equipment, network protocols and the associated interfaces needed to develop the capability to access the Internet 100 , regardless of the particular ISP.
  • the client dispatch application 200 After the client dispatch application 200 is installed and the initial ISP-specific information is known, the client dispatch application 200 causes the user 110 to automatically transmit access information to the predetermined ISP 102 (ISP 1102 a or ISPX 102 b ).
  • the line of communication through which the access information is transmitted to the predetermined ISP 102 by the user 110 (USER 1110 a or USERX 110 b ) is identified by the reference numerals 111 a , 111 b , 115 a , 115 b , depending on the particular user (USER 1110 a or USERX 110 b ) and the particular ISP (ISP 102 a or ISPX 102 b ).
  • the ISP Upon receipt of the access information, the ISP “authenticates” the user 110 .
  • the ISP 102 checks to see whether the PAP ID and PAP password received from the user is valid. It will be understood that the authentication process performed by the ISP 102 utilizes one or more appropriate methods (such as Remote Authentication Dial-in User Service (RADIUS)) which are normally associated with an authentication server a database at the ISP, Network Service Provider (NSP) or the NAP. If the PAP ID) and/or PAP password are not valid, the ISP 102 will disconnect the user or notify the user that the PAP ID and/or PAP password is invalid. If valid, the user 110 and the ISP 102 create a point-to-point protocol (PPP) (i.e., communications connection) which is identified in FIG.
  • PPP point-to-point protocol
  • IP internet protocol
  • the particular IP address assigned to the us 110 depends on the IP addresses that are available and assigned to the particular ISP 102 to which the user 110 is connected.
  • An IP address is presently 32 bits and is normally represented with four decimal numbers each ranging from 0 to 255 (e.g. 128.54.28.200) where each decimal number represents one byte of the 32 bits.
  • an Internet service provider access service or ASP (Access Service Provider) 106 is connected to the Internet 100 .
  • the external location, or physical address of the access service 106 is defined by a predetermined and unique address (i.e., IP address).
  • IP address i.e., IP address
  • the client dispatch application 200 resident in the user's computer transmits a data message to the access service 106 through the Internet 100 using the predetermined address of the access service 106 .
  • This data message is sent via a path identified as TCP/IP 120 or TCP/IP 122 , depending on the particular ISP 102 to which the user 110 is connected for access to the Internet 100 .
  • the communications link protocol used for Internet 100 communications is defined as Transmission Control Protocol/Internet Protocol (TCP/IP) and is well known in the art.
  • TCP/IP Transmission Control Protocol/Internet Protocol
  • other network communications protocols and standards may be used during the present or in the future by the present System invention due to the flexibility provided in the use of multiple databases to store various types of data.
  • the data message transmitted from the user 110 and received by the access service 106 contains information about the user, including the user's identification and address, current PAP ID, time stamp information, and version information of the client dispatch application 200 operating on the user's computer, etc.
  • the access service 106 transmits an access information data message that includes access information for a particular ISP 102 .
  • the access information is specific to a dial-in telephone number of a particular ISP 102 and, upon receipt by the user 110 , allows the user to gain access to the Internet 100 via that particular ISP 102 .
  • the ISP-specific access information includes an ISP phone number (for dial-in to the ISP), a PAP ID for the ISP 102 , and a PAP password for the ISP 102 , and may also include default routing information (i.e., gateway address information), default directory information (including domain name server information), sub-protocols for the PPP for the ISP 102 , and configuration information for the hardware (i.e. modem) of the ISP 102 (to configure the user's modem), such as data compression information and speed.
  • the ISP-specific information may also include service option defaults such as Email IDs, POP protocols and browser information.
  • the PAP ID may or may not be sent depending on the current PAP ID information transmitted from the user 110 to the access service in the data message (e.g., if the current PAP ID and the new PAP ID are the same, a new PAP ID does not need to be sent).
  • the client dispatch application 200 may disconnect the user 110 from the current ISP 102 and automatically dial and reconnect the user 110 to the desired ISP 102 associated with the ISP-specific access information.
  • the desired ISP 102 may be another ISP or may be the same ISP to which the user was previously connected, depending on the attributes of the particular ISP desired to be used for access to the Internet 100 . If the ISP phone number (for dial-in to the ISP) and a PAP ID received with the new access information, refer to the same ISP, the client dispatch application 200 will not disconnect the user 100 and the user's session will continue uninterrupted.
  • the access information data message includes the information necessary (PAP ID, PAP password, and other information if needed) to access a desired ISP 102 and, may include information for a plurality of desired ISPs 102 , or multiple PAP IDs and PAP passwords for a desired single ISP. It will be understood that more than one access information data message packet may be utilized and transmitted, each packet containing a portion of the information packet or each may contain access information for a specific ISP 102 .
  • the access service 106 offers Internet 100 access to the user 110 via a plurality of ISPs 102 based on cost, location, availability, reliability, etc. Based on the geographic location of the user, the access service 106 identifies, to the user 110 , one or more ISPs 102 that provide local access availability (via local telephone numbers or toll free numbers) and provide the user 110 with information needed to access one of the identified ISPs (using the ISP-specific access information). For desired low cost operation, the access service 106 identifies the ISP 102 that provides the lowest cost access service through which the user 110 may access the Internet 100 from the identified ISP 102 at the user's location.
  • the access service 106 identifies one or more ISPs 102 that provide the highest reliability of connecting through which the user 110 may access the Internet 100 from the identified ISPs 102 at the user's location.
  • the access service 106 periodically receives availability information from each of the plurality of ISPs 102 . In response to this information, the access service 106 identifies one or more ISPs 102 that provide the highest availability through which the user 110 may access the Internet 100 from the identified ISPs 102 .
  • the location operation, reliability operation, and availability operation may each provide to the user 110 the identity of multiple ISPs 102 or multiple dial-in numbers for a particular ISP 102 whereby the user 110 will attempt connection in order of priority.
  • the user 110 may attempt access to a first ISP 102 contained in a list of multiple ISPs 102 that have been identified based on availability or reliability. If a connection is not successful with the first ISP 102 , the user 110 will next try a second ISP 102 in the list, and so on, until a connection made.
  • the user 110 may attempt access to a first ISP 102 utilizing a first dial-in number contained in a list of multiple dial-in numbers for the first ISP 102 that have been identified based on availability or reliability. If a connection is not successful with the first dial-in number, the user 110 will next try a second dial-in number in the list, and so on, until a connection is made. Further a combination of multiple ISPs 102 and multiple dial-in numbers may be used.
  • FIG. 2 there is illustrated a block diagram of the access service 106 connected to the Internet 100 and a block diagram of the user 110 connected to the Internet 100 via the ISP 102 .
  • the user 110 may be a computer system that includes the client dispatch application 200 and the computer's operating system 202 , as well as a registry or initialization file(s) 212 , a physical adaptor file(s) 214 , and a protocol file(s) 216 .
  • the files 212 , 214 , 216 are operating system files (system configuration files) that provide the user 110 with system configuration information for supplying the basic capabilities needed to successfully connect the user 110 to a network, such as the Internet 100 .
  • the client dispatch application 200 correctly configures and sets the system configuration files 212 , 214 , 216 with the necessary system configuration information, including network protocols, adapter information, IP addresses, domain name system (DNS) server addresses, gateway addresses, other operating system binding functions, dynamic host control protocol options, and any other system options.
  • system configuration information necessary for the user 110 to access the Internet 100 is well known in the art.
  • the user 110 also includes several databases for storing information, including a phone database 204 , a network services database 206 , a button bar database 208 , and a user database 210 .
  • the databases 204 , 206 , 208 , 210 may be combined into a single database, may be separate, and/or may be relational.
  • the client dispatch application 200 includes the databases, or generates the databases and stores pre-loaded information into the databases upon installation of the client dispatch application 200 on the user 110 computer.
  • the phone database 204 includes one or more dial-up telephone numbers for the access location(s) of each of the ISPs 102 .
  • Each dial-up number entry includes associated information including on-off field data, state (or a toll free number), city, dial-up telephone number, type of modems supported (analog or digital), whether the number is available for registration, identity of the ISP that owns the dial-in number (ID for provider), sequence number (order for putting number in a specific area).
  • Some of the foregoing data is access information.
  • An example of some of the contents of the phone database 204 and its data entries is set forth in Appendix A which is hereby incorporated by reference.
  • the network services database 206 includes access information for each dial-in number contained within the phone database 204 . Each of the stored dial-in numbers is associated with an ISP 102 .
  • the access information for each dial-in number includes one or more PAP IDs, one or more PAP passwords, default routing information (i.e., gateway address information), default directory information (including domain name server information), sub-protocols for the PPP, and configuration information for the hardware (i.e. modem of the ISP) to configure the user's modem, such as data compression information and speed.
  • the network services database 206 may also include service option defaults such as Email IDs and the POP protocols and browser information associated with the dial-in number.
  • the network services database 206 also includes the basic configuration and initialization information necessary to configure and manage the network communications equipment, network protocols and associated interfaces for the user 110 for basic communications between the user 110 and the Internet 100 .
  • the network services database 206 includes information relating to the type of service (type of account) requested by the user 110 , such as the “lowest cost service”, the “highest reliability service”, the “most reliable service”, or combinations thereof, plan pricing and descriptions, and includes information identifying one or more primary processes to be performed by the client dispatch application 200 .
  • the type of service type of account
  • the phone database 208 may overlap.
  • An example of the network services database 206 and its data entries is set forth in Appendix A which is hereby incorporated by reference.
  • the button bar database 208 includes information related to button bar creation and modification. All functions may be initiated through the human interface—a Toolbar (also described in the art as a button bar and basic examples of which may be found in many present day computer applications).
  • the Toolbar of the present invention has some unique properties as it can be dynamically changed or updated via a Pinger process or a MOT script.
  • a Pinger process comprises an entity that acts transparently as a “services” coordinator to provide and/or administer the following:
  • Heartbeat service to help maintain network connectivity with a client.
  • Authentication services that securely authenticate client access to email, commerce, and other public and private network servers and services.
  • Update services that can perform client software, database, and maintenance services during periods of inactivity.
  • the Pinger entity has, as one of its functions, the responsibility of providing database updates to the client user.
  • a MOT script can be part of an Email message, an HTTP web document download and so forth, which transparently automates the Toolbar update.
  • the Toolbar can be integrated with ticker tape which can spawn MOT scripts, URLs, or execute programs.
  • Each Toolbar button may be programmed with a function in the button bar database 210 .
  • the Toolbar reads a plurality, for this example five, of attributes from the button bar database 210 :
  • Execution Type This attribute supports the following types and further determines if the fifth attribute read by the toolbar would be “Execute File” ( 5 a ) or “URL” ( 5 b )
  • URL URL for a browser to open whether remote or local
  • a MOT script defines how to build a button bar using the button bar database 210 and its database entries.
  • the MOT script is typically associated with a Web page and when the user 110 clicks on the Web page, the MOT script associated with the Web page is read back by the client dispatch application 200 .
  • the client dispatch application 200 uses the particular MOT script and the button bar database 210 information and builds the button bar automatically, according to the MOT script specifications.
  • An example of the button bar database 208 and its data entries is set forth in Appendix A which is hereby incorporated by reference.
  • the user database 210 includes information related to the user 110 , such as name, address, phone numbers, billing information, Email ID and Email password, type of account, and unique PAP ID and PAP password, if applicable. It will be understood that the user database 210 may be merged into the network services database 206 . An example of the user database 210 and its data entries is set forth in Appendix A which is hereby incorporated by reference.
  • the access service 106 is connected to the Internet 100 and is defined by a predetermined and unique address (i.e., IP address).
  • the access service 106 includes one or more network servers/databases 220 .
  • access service 106 includes a computer system having one or more processors, memory, and support hardware (all not shown in this figure) for processing and storing information and data communications.
  • the network/databases 220 store information relating to the user(s) 110 , including the same information that is (or would normally be) in the user database 208 , and also includes session keys (transaction keys) billing data, connection history data, ISP-specific access information, and information about what procedures a user 110 has performed, and the like.
  • the Pinger entity may be a part of the access service provider 106 or it may be separate. For the present discussion, it will be assumed to be part of the access service provider 106 .
  • the client dispatch application 200 dispatches an initial “pinger” message to the access service 106 via the Internet 100 .
  • header information includes the current user ID, account owner ID, PAP ID, the current IP address assigned to the user 110 , Group ID, the users system's current time, database ( 204 , 206 , 208 , 210 ) revisions levels, client dispatch application 200 and other related software revision levels.
  • the Pinger provides secure and unsecure periodic bidirectional communication between the user 110 and the access service 106 .
  • the functions of the Pinger are as follows:
  • the client dispatch application 200 can request database updates or save files for execution later, and the access service 106 can initiate events, database updates, or save files for execution later.
  • the Pinger process also provides a “heartbeat” mechanism to prevent the premature disconnection of the user 110 from the network by an ISP 102 . That is, many ISPs 102 have a modem inactivity timeout interval that disconnects users after some short interval of time if there has been no network activity during that interval of time.
  • the heartbeat function is programmable and, in the preferred embodiment, is set at five minutes during the user's first three hours of connection time and increases by five minutes each half hour thereafter. In the heartbeat function, the client dispatch application 200 transmits the user's ID to the access service 106 .
  • the pinger is initiated by the client dispatch application 200 upon connection to the network 100 .
  • the client dispatch application 200 transmits header information to the access server 106 using the IP address of the access server 106 .
  • the header information includes the current user ID, account owner ID, PAP ID, the current IP address assigned to the user 110 , Group ID, the users system's current time, database ( 204 , 206 , 208 , 210 ) revisions levels, and client dispatch application 200 and other related software revision levels.
  • the access server 106 determines whether a user 110 is making two connections while only paying for one and thus needs to be disconnected, or is a user 110 that needs a database or file update.
  • the Continue Transaction function provides a mechanism to partially transmit data and commands over multiple sessions (successive connections by the user 110 to the network 100 ) without having to restart the transaction from the beginning.
  • the access service 106 may provide a Web page whereby when the user 110 clicks on the Web page, a MOT script and other data associated with the Web page is transmitted from the Web page site to the client dispatch application 106 . This gives the user 110 the capability to request a data update (or to receive other information).
  • a MOT script and other data can be transmitted via an email message, an FTP (file transfer procedure) site or other similar networking storage and transport mechanism to the client dispatch application.
  • the Script Language used by the Pinger and elsewhere in this application for patent is designated by the term MOT (see FIG. 8 ).
  • MOT is not, however, an acronym for anything meaningful.
  • the script language is an interpretive language which is stored in an encrypted file from which the interpreter reads to initiate the MOT client dispatch application.
  • the MOT client dispatch application can read and write database (db) entries, Operating System initialization file entries (INI and Registry Files), and ASCII Text files. Further, the MOT client dispatch application can spawn executable programs, network connection, AWK scripts, and other MOT scripts.
  • FIGS. 3 through 7 there is illustrated the process of the client dispatch application 200 .
  • the flow diagrams of FIGS. 3-7 are representations of closed-loop programming (structured programming).
  • the client dispatch application 200 performs five primary procedures or functions as set forth in the CASE block. These include the installation, registration, regular use, manual update, and multi-dial procedures. Within the multi-dial procedure are several sub-functions defined as the low cost, reliability, location, availability, busy-sequence, and single dial/multi-login sub-functions shown and explained subsequently in connection with FIG. 7 .
  • the client dispatch application 200 manages the procedures based upon data from one or more databases of the access service 106 or other inputs received from the access service 106 , the user's databases 204 , 206 , 208 , 210 , and/or the user's computer operating system files. It will be understood that databases and database information may be encrypted to prevent a user from tampering with entries contained therein.
  • the procedure 300 starts by reading information from the network services database 206 .
  • the network services database 206 forms part of the software package which is loaded into a network access device, such as the user 110 (computer).
  • the network services database 206 includes basic configuration and initialization information necessary to configure and manage the network communication equipment, network protocols and the associated interfaces between the communication equipment and network protocols and the computer's operating system.
  • the user's operating system files (which in the case of a Windows operating system comprises Registry and INI files, Protocol files, and Physical Adapter files) are examined to determine if any networking options have been installed and whether or not the files, if installed, are correct and configured properly as part of the “No Protocol” decision block. If no Protocol or Adapter has been installed, the “True” path will be followed whereby the Installation function will configure the Adapter and necessary Protocol to successfully connect the user 100 to a network such as the Internet 100 .
  • the “False” path will be used whereby the Installation function will reconfigure the Adapter and necessary Protocol to successfully connect the user 100 to a network such as the Internet 100 .
  • the correct configuration for utilization of the TCP/IP Protocol would include configuring and setting the proper Operating System Registry and INI (initialization) files with the necessary Protocol configuration information in instances where the operating system is a version of windows.
  • Such information includes: IP addresses whether statically or dynamically assigned, Domain Name System (DNS) name server addresses whether statically or dynamically assigned, Gateway Addresses whether statically or dynamically assigned, Other operating system Binding functions, Dynamic Host Control Protocol options, Windows Internet Naming Service (WINS) options whether statically or dynamically assigned, and the assignment of such Protocol functions to be utilized by the appropriate Adapter.
  • DNS Domain Name System
  • the function of configuring or reconfiguring is executed near the beginning of each of the five primary procedural ( 300 , 400 , 500 , 600 , 700 ) tasks of the client dispatch application 200 to ensure successful operation of a network connection even for those instances where a computer user accidentally misconfigures their system and thereby makes networking inoperable.
  • the procedure 300 proceeds to the “Which Adapter” decision block.
  • the appropriate adapter is utilized which is either the adapter pre-programmed into the network services database 206 (if available) or if there is only one Adapter then it will be used. If the Adapter is a Modem, the “Modem” path will be followed to read from the network services database 204 to determine if the user 110 chooses a dial-in location under the case of “User Look-up” or if the modem shall be programmed to dial a “Pre-Defined” dial-in phone number reference in the network services database 204 and stored in the phone database 204 .
  • a database entry in the network services database 206 is set to allow the user 110 to choose a dial-in location, then the user 110 chooses a location based on Country, State or province, and City in accordance with the “User Picks Dial-In Location” block.
  • the installation procedure 300 reads from the phone database 204 to determine the dial-in phone number to use. If a given location has multiple dial-in phone numbers, a dial-in number is selected based upon attributes read from the network services database 206 (and/or the phone database 204 ). Such attributes include installation dial-in numbers (dial-in phone numbers which are only available during installation or testing).
  • phone numbers appearing in the phone database 204 include Registration Dial-in Numbers (phone numbers and locations which appear to a user during registration), Sequence Numbers (a prioritized list of phone numbers which shall be tried in sequential order to produce the highest probability of connection), Available ISP numbers (phone numbers of a given ISP's modems), Currently Valid Numbers (phone numbers which are currently valid for use by a given users), or any combination of the aforementioned.
  • the client dispatch application 200 will read the appropriate predefined phone number entry from the phone database 204 .
  • the client dispatch application 200 After the client dispatch application 200 has determined the proper dial-in phone number, whether user selected or pre-defined, the user's modem is initialized and dialing occurs, as set forth in the “Dial & Connect” block. If the modem is busy, it will either continue to retry the same phone number or initiate a multi-dial procedure 700 (as set forth in FIG. 7 ) depending on the outcome of the “Multi-dial Mode?” decision block (from an entry in the network database services 206 ).
  • a predefined dial-in number such as an 800 type toll-free number
  • the multi-dial procedure 700 is one of the five primary procedures of the client dispatch application 200 and is explained in more detail in connection with FIG. 7 .
  • the “False” path from the “Busy?” decision block is followed and communication with the access service 106 begins by sending an installation PAP ID and PAP password (read from the network services database 206 ) to the access service 106 for transparent login authentication as shown by the “Get Information From Server” block.
  • the data transferred during the installation procedure 300 may contain some basic system information about the user's computer system, the type of connection being used and the location from which the connection has occurred. Once this information is received at the access service 106 , the access service 106 sends appropriate information back to the client dispatch application 200 .
  • Such information may include updates to the phone database 204 including “Location” addition or subtractions, phone number changes, and updates to the network services database 206 including ISP additions and subtractions, group, user, or multiple user specific configuration, DNS and IP information, etc.
  • Updates to the databases 204 , 206 , 208 , 210 which reside on the user's computer can occur transparently to the user 110 whenever the user 110 is connected to the Internet 100 ; thereby ensuring that the user's network related information is always current and accurate.
  • Any updates received from the access service 106 are written to the appropriate database (i.e. network services database 206 , phone database 204 , or others) by the client dispatch application 200 .
  • the client dispatch application 200 also updates the network services database 206 to reflect “installation complete”. Thus, the client dispatch application 200 is informed that the next execution “Case” to start is “Registration” as will be shown in FIG. 4 .
  • dial-in location attributes (Installation dial-in numbers, Registration Dial-in Numbers, Sequence Numbers, Available ISP numbers, Currently Valid Numbers) provide control mechanisms to ensure that a user 110 receives the appropriate level of service for which they are subscribed such as “the lowest cost service”, “the highest reliability service”, “the most available service”, or combinations thereof. Further, these updated and database stored attributes allow for remote testing of the network communications (full connection TCP/IP test to the Internet 100 ), the user's system for basic configuration, database integrity, network load balancing and the reduction of fraud by dynamic control of phone number validity.
  • the Adapter used to connect to the network is a Local Area Network device such as an Ethernet card
  • the “LAN” path is followed from the “Which Adapter” decision block.
  • transfer of data and updates begin as described in the paragraphs above.
  • the procedure 400 starts by reading the network services database 204 to determine the appropriate execution “Case”, and in this case, the registration procedure 400 .
  • the registration procedure 400 starts by reading the network services database 206 to gather the necessary information, such as which Adaptor and Protocol to use and proceeds to configure and initialize the appropriate networking functions to start the user registration process.
  • a “Which Adapter” decision block includes the two paths of “Modem” and “LAN”.
  • the process proceeds to the “(Re)Configure Adapter Protocol” block to configure and initialize the appropriate networking functions to start the user registration procedure 400 (i.e. configuration process for the user's computer).
  • the registration procedure 400 comprises several forms (pop-up forms) into which the user 110 enters specific information about the user 110 .
  • Such information typically will include Name, Address, Phone Numbers, Credit Card and/or Banking Information, Referral Information (if available), Personal Security information (like: mother's maiden name), birthdate, and Preferred E-mail Identity and Preferred E-mail Domain Choice.
  • the registration information for each user 110 is stored in the network services database 106 and/or a user specific database 210 , as well as information about the user's system and revision levels of the client dispatch application 200 and databases ( 204 , 206 , 208 , 210 ).
  • the client dispatch application 200 Upon completion of the new user registration forms as indicated by the “Update DBs with New User Information” block, the client dispatch application 200 initiates communications with the access service 106 as described earlier.
  • the adapter used as determined by the lower most “Which Adapter” decision block, will be the adapter determined and used during the installation process.
  • the client dispatch application sends all the information that was added or updated into the network services database 206 (or user database 210 ) of the user 110 to the access service 106 as indicated by the “Send Information To Server” block.
  • the access server 106 transmits the received information plus additional information, such as one or more user assigned PAP IDs and PAP passwords, Email IDs and Email Passwords, back to the client dispatch application 200 for comparison and verification of the information that was sent as indicated by the “Get Information From Server” block. If the information returned is not identical to the information which was sent, the client dispatch application will resend the information again to the access service 106 along the path commencing with the “Notify User of Error-Retry” block. This process will continue until all transmitted information from the client dispatch application 200 to the access service 106 matches all information returned to the client dispatch application 200 from the access service 106 or when a maximum retry value is reached in accordance with the “Quit?” decision block.
  • additional information such as one or more user assigned PAP IDs and PAP passwords, Email IDs and Email Passwords
  • the maximum retry value is five. If the client dispatch application 200 reaches a maximum retry value, an error message is sent to the user 110 notifying the user that an Error has occurred and to try reconnecting or registering again. This error message comprises a part of the “True” path output of the “Quit?” decision block.
  • registration procedure 400 may be designed to have an alternate process of prompting the user 110 to use an alternate Adapter or Protocol and then retry where such an alternate process may be deemed appropriate.
  • the registration process for these other users can be started during a regular use procedure 500 described in connection with FIG. 5 .
  • the user's network access display device Upon completion of a user's initial registration, the user's network access display device will display an Electronic Registration Number (ERN) which, with other personal security information, can be used later to refresh a system as described below.
  • ERN Electronic Registration Number
  • the registration procedure 400 also allows users registered with the access service 106 to temporarily use a computer or other network access device or permanently use a secondary network access device by using a refresh function which bypasses the standard registration form screens by asking the user if they have already registered. If the user has previously registered, the refresh process of the registration procedure 400 will connect, communicate with the access service 106 and download all the user information sent during the user's initial registration and the client dispatch application 200 will update the appropriate databases ( 204 , 206 , 208 , 210 ) on the user's network access devices storage system.
  • FIG. 5 there is illustrated a flow diagram of a regular use procedure 500 of the client dispatch application 200 .
  • the regular use procedure 500 is enabled after a user 110 has both installed client dispatch application 200 on a particular computer system or other network access device and registered with the access service 106 .
  • the regular use procedure 500 functions to connect a user 110 to the network 100 using a login and password access which is transparent to the user 110 . This is accomplished by reading the network services database 206 for login information such as the user PAP ID and PAP password as shown in the “Read NS.db” block. After reading the necessary information from the network services database 206 and prior to the user 110 logging onto the network 100 , the user 110 is given an opportunity to change the user's dial-in Location if the user 110 is using a modem as an Adapter, as illustrated by the “Change Location” decision block.
  • the Adapter is a modem, and the user 110 desires to change locations
  • the user 110 is presented with a “chooses a location” form that may be identical to one seen by the user 110 during registration.
  • the “chooses a location” form allows the user 110 to select a local dial-in location from pull down menu selections based on Country, State or province, and City selections for a given ISP 102 for which the user PAP ID and PAP password are valid.
  • the phone database 204 is read to determine what dial-in phone number to use.
  • a dial-in number is selected based upon attributes that are read from the phone database, user db, network services database 206 or any combination thereof as part of the “Dial & Connect” block. As discussed elsewhere, and in particular in connection with FIG.
  • such attributes include Installation dial-in numbers (dial-in phone numbers which are only available during Installation or testing), Registration Dial-in Numbers (phone numbers and locations which appear to a user during registration), Sequence Numbers (a prioritized list of phone numbers which shall be tried in sequential order to produce the highest probability of connection), Available ISP numbers (phone numbers of a given ISP's modems), Currently Valid Numbers (phone numbers which are currently valid for use by a given users), or any combination of the aforementioned.
  • a “pinger” function is initiated as discussed previously.
  • the pinger function causes the client dispatch application 200 to transmit header information to the access service 106 , as set forth in the “Send Information To Server (Pinger)” block.
  • the header information may include a Unique Identification string for the user (user ID, PAP ID, etc.), a unique computer identification string (IP address, etc.), time stamp information, and revision information for the client dispatch application 200 and databases 204 , 206 , 208 , 210 , as described earlier.
  • the access service 106 reviews the header information to determine what, if any, updates are required to be made to the user client's dispatch application, databases, or network access devices operating system.
  • Such updates may include: new dial-in locations, new identification information such as PAP IDs, network authentication passwords such as PAP passwords, other IDs, other passwords, change of phone numbers, change of area codes, low cost ISP, dial-in location priority sequence numbers, or any combination thereof, or any other information relating to gaining access to the ISP 102 . If any updates are required, these are supplied by the access service 106 and any necessary updates will take place transparent (automatic while the user is logged on) to the user 110 as part of the “True” process path emanating from the “Transparent Update Required?” decision block.
  • Updates which require a lot of time may span multiple log-ins (to the network 100 ) by the user 110 with partial updates being performed until the full completion of the update. The partial updates will take place when the users system is connected but idle and/or during a “pinger/heartbeat” function.
  • the manual update procedure 600 provides a mechanism for a user 110 to manually recover, change, modify or update the client dispatch application 200 and the databases 204 , 206 , 208 , 210 . This capability is useful for ISPs managing customers with billing issues, as well as for servicing customers with special system configuration issues.
  • the manual update procedure 600 initiates and makes a network connection using a special set of log-in information defined herein as the “Manual Update PAP ID and PAP password” (the manual update PAP ID and PAP password, including the Installation, Multi-dial and Test PAP IDs and PAP passwords are incorporated into the user's installed client dispatch application 200 as part of the network services database 206 and are not easily accessible to the user 110 ). If a connection is not immediately obtained, the adapter and protocol checking is completed as set forth in connection with the previous FIGURE (and description thereof) and as set forth in this flow diagram, via the “False” path output of the “Connected?” decision block.
  • the “Manual Update PAP ID and PAP password” the manual update PAP ID and PAP password, including the Installation, Multi-dial and Test PAP IDs and PAP passwords are incorporated into the user's installed client dispatch application 200 as part of the network services database 206 and are not easily accessible to the user 110 . If a connection is not immediately obtained, the adapter and protocol
  • the “pinger” function is initiated as indicated by the “Send Pinger Information to Server” block. If there already is a connection, the “True” path is followed from the “Connected?” decision block.
  • pinger header information, any special database update request, and the like, etc. is transmitted from the client dispatch application 200 (generated from the network services database 206 and/or the user database 210 ) to the access service 106 , as shown by the “Send Update Request to Server”, in order to establish the identity of the user 110 and system that is requesting an update of information from the access service 106 .
  • the access service 106 uses this update request information to generate any updated information which is needed to update a specific user, group of users, a specific network access device such as the computer, a group of computers, or any combination thereof and sends any required information back to the user 110 to update the appropriate databases 204 , 206 , 208 , 210 or Registry or INI, Adapter, and/or Protocol files 212 , 214 , 216 (operating system files).
  • the client dispatch application 200 disconnects the user 110 from the network (breaks the network connection) and if appropriate, the user 110 will be notified that the network access devices operating system must be rebooted in order for the update to take effect.
  • the multi-dial procedure 700 provides the access service 106 with a mechanism to control access by a user 110 , a group of users, a computer, a group of computers, a local area network (LAN) of computers, or any combination thereof, to the Internet 100 , based upon any one of the following seven sub-function attributes: Cost, Availability, Reliability, Location, Busy-Sequence, Service Selected, or Single Dial/Multi-Login.
  • the multi-dial procedure 700 is initiated by one of the other primary procedures 300 , 400 , 500 , 600 (see FIGS. 3 through 6 ) of the client dispatch application and/or by a multi-dial procedure tag programmed into the network services database 206 .
  • the multi-dial procedure 700 When the multi-dial procedure 700 is initiated in response to a busy signal received during operation of one of the other primary procedures 300 , 400 , 500 , 600 and the multi-dial procedure tag is enabled in the network services database 206 , the multi-dial procedure 700 initiates a Busy-Sequence sub-function.
  • the Busy-Sequence sub-function initiates one of the other multi-dial procedure sub-functions, re-dials the same dial-in number before initiating one of the other multi-dial procedure sub-functions, or dials a new dial-in number identified in the next sequential “area” location from a list of area locations available, all in response to database information based on the user's selected plan.
  • the list of “area locations available” is based on the type of service plan (also found in the network services database 206 ) subscribed to by the user 110 and/or on PAP IDs and PAP passwords stored in the network services database 206 . If the user 110 has chosen to subscribe to a higher cost plan, multiple PAP IDs and PAP passwords for multiple ISPs 102 may be stored in the network services database 206 (certain locations may only have a single ISP). As a result, a list of available dial-in locations may contain one or more dial-in numbers from one or more ISPs 102 .
  • multiple ISPs 102 may have PAP ID and PAP password sharing agreements allowing a single user PAP ID and PAP password entry in the network services database 206 to generate a dial-in location list from multiple ISPs 102 .
  • the Busy-Sequence sub-function sequentially attempts to make a connection to an ISP 102 at each location until either a successful connection is made or the user 110 aborts the connection attempt.
  • the client dispatch application 200 reconfigures or reinstalls the system configuration adaptor and protocol information necessary for network connection. Thereafter, based on data in network services database 206 , it is determined whether or not to initiate a connection attempt to the Internet 100 using a pre-defined dial-in number or location. If a connection is desired using a predefined dial-in number or location, the multi-dial procedure 700 uses one of four types of possible PAP IDs and PAP passwords. These types are defined as a “multi-dial PAP ID and PAP password”, a “group PAP ID and PAP password”, a “user PAP ID and PAP password”, and a “test PAP ID and PAP password.”
  • a general use connection to the Internet 100 is established using either the “group PAP ID and PAP password” or the “user PAP ID and PAP password”.
  • the multi-dial procedure 700 establishes a connection to the Internet 100 using either the “multi-dial PAP ID and PAP password” or the “test PAP ID and PAP password”.
  • the user's dial adaptor modem is configured with the ISP-specific access information associated with the predefined dial-in number.
  • the client dispatch application 200 automatically dials and attempts connection to the ISP 102 . If the line is busy, it is determined whether an alternate dial-in number should be used. If an alternate number is not to be used, the dial and connect is retried with the previous dial-in number. If an alternate number is to be used, the alternate dial number is read from the phone database 204 and the user's dial adaptor (modem) is configured with the ISP-specific access information associated with the alternate dial-in number.
  • modem user's dial adaptor
  • the Service Selected sub-function is initiated (a double dial procedure). If the connection is a “general use” connection, the client dispatch application 200 transmits pinger header information to the access service 106 . In response, the access service 106 transmits information to the user 110 (client dispatch application 200 ).
  • the multi-dial procedure 700 determines from this received information whether a transparent update is needed (i.e., update information in the database(s) without user intervention). If so, the client dispatch application 200 updates the database(s) and determines whether a disconnect is required. If not, the user 110 continues regular use until disconnected by some other means. If so, the user 110 is notified and may be given the option to choose to disconnect or may be forced to disconnect.
  • the access service 106 updates the user's database(s) (possibly with a new and valid PAP ID and PAP password) and the client dispatch application 200 either disconnects the user 110 (and notifies the user 110 that the PAP ID is not valid) or allows the user 110 to stay connected (if the user 110 has received a new and valid PAP ID).
  • This particular process also applies to the regular use procedure 500 (see FIG. 5 ).
  • the multi-dial procedure 700 executes one or more of the seven sub-functions in response to entries in the network services database 206 .
  • the Service Selected sub-function reads pinger header information from the network services database 206 and the user database 210 and sends this information in a data message to the access service 106 (to the network server/database 220 ).
  • the access service 106 uses the information to generate database updates (including new PAP ID, etc.) which may or may not assign, reassign, or update ISPs, dial-in locations, PAP IDs and PAP passwords, dial-in numbers, network routing information, Adapters, Protocol, or any other information stored in the databases 204 , 206 , 208 , 210 .
  • database updates are then transmitted to the user 110 and the client dispatch application 200 to update the appropriate database 204 , 206 , 208 , 210 .
  • the user 100 is disconnected, and the Regular Use primary procedure is initiated using the updated information received from the access service 106 .
  • the “Low Cost” sub-function obtains information from both the network services database 206 and the phone database 204 and determines which ISP 102 and what locations (dial-in phone numbers for local access) have the lowest priced service for a given user's dial-in location.
  • the lowest cost sub-function next determines if the user's PAP ID and PAP password stored in network services database 206 are valid (compare the current user's PAP ID and PAP password with the user's currently selected dial-in location) for the ISP 102 that provides the low cost connection point-of-presence at the user's location. If the user PAP ID and PAP password are valid, the network connection sequence will dial and connect as described in the regular use procedure 500 .
  • this sub-function will initiate the manual update procedure 600 requesting from the access service 106 a valid user PAP ID and PAP password for the ISP's dial-in network at the user selected location. Then, the network connection sequence will dial as described in the regular use procedure 500 .
  • the “Reliability” sub-function obtains information from both the network services database 206 and the phone database 204 and determines which ISP 102 and what locations (dial-in phone numbers for local access) have the highest reliability of connecting the user to the Internet 100 . This determination is based upon prior data (reliability data) transmitted to the client dispatch application 200 from the access service 106 that is used to update the user databases. This data transmission occurs during a previous session when the user 110 is connected to the Internet 100 . The reliability data is transferred by the access service 106 to the users 110 who have a reliability entry enabled in their network services database 206 .
  • the reliability sub-function next determines if the user PAP ID and PAP password stored in the NS.db are valid (compare the current user's PAP ID and PAP password with the user's currently selected dial-in location) for the ISP that provides the highest reliability at the selected location.
  • the network connection sequence will dial and connect as described in the regular use procedure 500 .
  • this sub-function will initiate the manual update procedure 600 , as described in connection with FIG. 6 , requesting from the access service 106 a valid user PAP ID and PAP password for the ISP's dial-in network at the user selected location. Then, the network connection sequence will dial as described in the regular use procedure 500 of FIG. 5 .
  • Availability information used to determine availability of various ISPs 102 may include at least three types of information.
  • the first type of information includes availability information that is received by the access service 106 from the ISPs 102 themselves (typically updated periodically).
  • the second type of information includes information in a client histogram (client specific) that is generated by the client dispatch application 200 of the user 110 .
  • the client dispatch application 200 keeps track of the times a connection is made on the first try, second try, etc. for each dial-in phone number (and/or ISP) used by the user 100 . From this, a client-specific histogram is generated that contains information about the past history of the user's connections.
  • the third type of information includes information in a server histogram that is generated by the access service 106 .
  • the access service 106 tracks and stores information relating to all ISPs 102 and dial-in numbers regarding past history connections. See also, the description set forth below in the availability sub-function description.
  • the reliability sub-function may use any one of the types of availability information, or combination thereof, for determining the dial-in number (or multiple numbers in priority) that will provide the user 110 with a high reliability connection.
  • the integrity information used to determine the integrity of the various ISPs 102 there are at least two types of information.
  • the first type of information includes information received via technical support inquiries to the access service 106 by the users 110 . If the access service 106 receives a call (or calls) from users 110 regarding faulty lines and/or premature disconnects, this information can be tabulated and stored for determining integrity.
  • the access service 106 Since the access service 106 stores data relative what ISP(s) 102 (and dial-in number(s)) a particular user 110 has been using (through information in the access service 106 database gained through the pinging or heartbeat process—described earlier), the access service 106 can determine which ISP(s) 102 (and/or dial-in number(s)) have relatively high and/or low integrity. In response to this information, the access service can update the user's databases with this information.
  • the second type of information includes information automatically gathered by the access service 106 that includes a history of the number of users, how long each has been connected, and what ISP(s) 102 (and/or dial-in number(s)) to which each user has been connected (through information in the access service 106 database gained through the pinging or heartbeat process described earlier).
  • the access service 106 can transmit the integrity data to the user 110 for use by the reliability sub-function of the client dispatch application 200 .
  • the reliability sub-function may use any one of the types of integrity information, or combination thereof, for determining the dial-in number (or multiple numbers in priority) that will provide the user 110 with a high reliability connection.
  • the reliability sub-function determines the dial-in number (or multiple numbers in priority) that will provide the user 110 with high reliability connection.
  • the “Location” sub-function obtains information from the phone database 204 and determines all the dial-in phone numbers available to a user 110 from a selected location.
  • the location sub-function generates a list of “surrounding area” locations into which user 110 may dial. The user 110 then selects a dial-in number from this list.
  • the location sub-function next determines if the user PAP ID and PAP password stored in the network services database 206 are valid (compare the current user's PAP ID and PAP password with the user's currently selected dial-in location) for the ISP 102 in which the user's computer will dial into the selected location. When the user PAP ID and PAP password are valid, the network connection sequence will dial and connect as described in the regular use procedure 500 .
  • this sub-function will initiate the manual update procedure 600 requesting from the access service 106 a valid user PAP ID and PAP password for the ISP's dial-in network at the user selected location. Then, a network connection sequence will dial as described in the regular use procedure 500 of FIG. 5 .
  • the “Availability” sub-function generates a dial-in location (number) list based upon user PAP IDs and PAP passwords stored in the network services database 206 and the type of service plan (also found in the network services database 206 ) to which a user 110 has subscribed. If a user 110 has chosen to subscribe to a higher cost plan, multiple PAP IDs and PAP passwords for multiple ISPs 102 may be stored in the network services database. Accordingly, the list of available dial-in locations may contain one or more (multiple) dial-in numbers from one or more (multiple) ISPs 102 . Alternatively, multiple ISPs 102 may have PAP ID and PAP password sharing agreements allowing a single user PAP ID and PAP password entry in the network services database 206 to generate a dial-in location list from multiple ISPs 102 .
  • the availability sub-function utilizes the same type of availability information as described above in the reliability sub-function.
  • the availability sub-function utilizes one or more methods or the service selected sub-function to increase the probability that the user 110 at a given location will successfully connect on the first try.
  • This functionality is based upon historical data (Histogram data) or real time data supplied by an ISP to the access service 106 .
  • the historical data may include two types of data—Client Histogram data or Server Histogram data.
  • the Server Histogram data, Client Histogram data, or the service Selected sub-function is utilized, or any combination thereof is utilized, as desired.
  • the Client Histogram data is based upon connection history of the user 110 .
  • the Client Histogram data is not as beneficial, as other data, until a particular user 110 has consistently established a network connection (to the Internet 100 ) for a period of time sufficient to create a meaningful histogram. It has been determined that a period of at least ninety days is sufficient if a user accesses regularly. After a sufficient period of time, a Client Histogram can be built to determine the probability of success of the user 110 connecting to the network the first time. This minimizes the necessity of having the client dispatch application 500 perform a second dial-attempt to connect to the network 100 .
  • the Server Histogram data is based upon the connection history of each particular ISP 102 and its dial-in numbers. This information is stored in the access service 106 in response to the monitoring of all the users 110 (through the “pinging” process). The Server Histogram data is transmitted to the user's network services database 206 upon any connection to the network 100 when the availability sub-function is enabled within the client dispatch application 200 .
  • the Server Histogram data is normally used in conjunction with the Client Histogram data (when appropriate) to determine the highest probability of success of connecting to the network 100 without a second dialing attempt. Accordingly, upon the user 100 initiating a connection to the network 100 , the client dispatch application 200 automatically selects a dial-in phone number that it has determined to have a high probability of success for connection. Thus, the Client Histogram data and the Server Histogram data are used to facilitate a statistical approach to determine the highest probability of a user 110 connecting to the network on the first attempt.
  • the Histogram data is not desired to be used, such as when the data for a particular area is unreliable (i.e. certain geographic areas may have insufficient telecommunications infrastructure that may skew the data) and therefore possibly useless.
  • the service selected sub-function is initiated and a “double dial” process takes place (see FIG. 7 and the description of service selected sub-function).
  • availability information of ISPs 102 is used by the access service 106 to give the user 110 a dial-in number that is available. This availability information for the ISPs 102 is periodically transmitted or given to the access service 106 , typically every five minutes.
  • the “double dial” process is also exemplified in FIG. 7 and the accompanying text.
  • the last sub-function of the multi-dial procedure 700 is the “Single-dial Multi-Login” sub-function. Initiation of the single-dial/multi-login sub-function requires a “multi-dial” attempt only when the user 110 receives a busy signal; otherwise this sub-function is a single-dial function with a multiple PAP ID and PAP password assignment/reassignment function. This function (the assignment/reassignment) requires that all user (client) 110 authentication for all ISPs 102 happens at the access service 106 (i.e., all authentication for all ISPs is centralized) or at a centrally located database point.
  • this function works with multiple ISPs 102 when each allows user authentication to take place at a centrally located server independent of each ISP's own user authentication server.
  • an ISP that has its own Authentication Server, and who resells the underlying ISPs modem access to a user 110 may support this function by allowing a user 110 to dial and connect using an “Initial Access PAP ID and PAP password”, then assigning a unique session PAP ID and PAP password and “re-logging” into the Authentication server without disconnecting the user 110 . This eliminates the time that would otherwise be required to disconnect and re-dial using a newly assigned PAP ID and PAP password.
  • the client dispatch application 200 also functions to provide users 110 with network identity anonymity. That is, the architecture of the client dispatch application 200 provides anonymity for users 110 during access to the network 100 as IDs and passwords (such IDs and passwords would include PAP IDs and PAP passwords, Email IDs and Email passwords, NEWS IDs and NEWS passwords, FTP and Web Space IDs and passwords, and custom network application IDs and passwords) can be dynamically reassigned for a given user, a given system, a given group of users, a given group of systems, or any combination thereof.
  • IDs and passwords would include PAP IDs and PAP passwords, Email IDs and Email passwords, NEWS IDs and NEWS passwords, FTP and Web Space IDs and passwords, and custom network application IDs and passwords
  • a user 110 has three computer systems (A_Computer, B_Computer, and C_Computer) each requires a unique user/system identification which is generated during installation and registration and stored in the client's network service database 206 and/or the user database 204 .
  • This unique user/system identification allows the access service 106 to maintain unique and independent IDs and passwords for the user/system pair.
  • unique IDs and passwords which may be distinctly different from the B_Computer and C_Computer's IDs and passwords (stored in the network services database 206 and/or the user database 204 ) may be used to transparently log the user into such things as the network, Email, FTP/Web Space, NEWS groups, Bulletin Boards, or any other application requiring login identification and password.
  • the architecture supports single life IDs and/or passwords for all network and application logins.
  • the storage medium 900 includes client dispatch application 200 (computer program) and may also include the databases 204 , 206 , 208 , 210 .
  • the computer 902 also includes a means (not shown) for reading or downloading the client dispatch application 200 (computer program) into the computer 902 to cause the computer 902 to perform one or more steps in accordance with the principles of the present invention.
  • the storage medium 900 may include a floppy or hard disk, magnetic or optical taps; or any other data storage medium known presently or developed in the future for storing a computer program, such as the client dispatch application 200 of the present invention.
  • email electronic mail
  • the ISP typically keeps a copy of the email for a period of time after receipt thereof for various purposes.
  • Many people have the technical capability to access and read these stored messages at the ISP.
  • the structure of the present invention combined with an email program, software plug-in for a standard email program or browser lends itself to a method of minimizing the possibility of unauthorized gleaning of information from email and further minimizes the possibility of spamming where spamming is defined as the sending of large amounts of email to a given recipient for harassment like purposes.
  • One way to minimize the gleaning of information is to send all mail through a third party to recipients.
  • the third party acts as a trusted banker or broker.
  • Such an operation is shown diagrammatically in FIG. 10 where the sender sends the email to a Broker.
  • the broker repackages email as deemed appropriate by agreement with the sender and/or the recipient and sends it on its way.
  • the simplest form is to merely place the entire original message including header information in message body of the email and send the package to the recipient with the recipient also listed as the sender and placing an innocuous subject in the visible header.
  • a next level of security is for either the sender or the broker or both to encrypt the package sent by that party to the next party. This could result in double encryption of the message body. Similar plug-in software comprising part of the recipients email program, software plug-in for a standard email program or browser may be used to decipher the received package and the original email would then be recreated for reading by the recipient. The deciphering may be accomplished by keys transmitted by the pinger entity to the recipients software.
  • the email sent to the broker or third party in a preferred embodiment of this invention has the TO and FROM portions of the visible header listing the broker, has the subject changed to innocuous data and the entire original message encrypted as shown in the drawing.
  • FIG. 11 presents the above process in a slightly different format where a row labeled 1010 illustrates the original message composed by the sender. Either the sender of the plug-in software may then provide a first level of encryption to the data as shown in row 1012 . Transparent to the user, the plug-in software then repackages the original message by encrypting the entire message and generating a new header with the third party (here the third party is listed as NetSafe) listed as both the sender and the recipient.
  • the email sent to the broker is labeled 1014 . Since the broker is in contact with the data bases in the plug-in software via the pinger entity, the broker may decipher to second layer of encyption to determine the destination address.
  • the broker may then re-encrypt and send the email 1018 if the recipient is also a client of that broker and/or has similar plug-in software in contact with a network pinger. Otherwise, the originally composed, and possibly encrypted, message is sent to the recipient as shown by the labeled message 1020 .
  • FIG. 12 illustrates a second order anonymity header process for email transmission.
  • a block 1040 represents a standard header of email composed by the sender.
  • the senders email program, software plug-in for a standard email program or browser plug-in intercepts the email and checks the appropriate database. It is determined in block 1042 that for identity “me@other.com” the address “alias@alias.com” should be used.
  • the plug-in software thus creates a new header in substitution for the one composed by the sender and encrypts the entire message including the altered header as shown in the lower portion of block 1046 .
  • the software then consults the database represented by block 1048 and determines that the most recent data received from the pinger entity suggests that the network service provider to be used for “other.com” in this instance should be “netsafe.com”. Accordingly, a new anonymous header is prepared in accordance with that shown in block 1046 before the message is forwarded to a third party for retransmission to the recipient.
  • the third party or broker receives the email as represented by block 1060 where 1060 is identical to block 1046 .
  • the software in the server of the third party decrypts the stored header information after noting the form of the visible header information. It is able to do so because the pinger entity that determines the encryption code to be used in the senders encryption process and provides the senders database with the third party to be used, also informs the third party the encryption code to be used for deciphering. This code may be part of the visible message id or may be inserted in the server database of that specific third party. If the recipient has signed up for anonymity service, the server will retrieve from its database a presently assigned alias for the recipient. Whether or not an alias is used for the recipient, the third party server will rebuild the header using an address for the recipient in both the TO and FROM portions of the visible header as shown in block 1064 .
  • FIG. 14 presents a block 1070 representing a received email as retrieved from the server storing email for alias.com. This message is identical to the previously designated block 1064 .
  • the recipients software checks the database and in accordance with block 1072 deciphers the message and creates the viewable header set forth in block 1074 .
  • FIG. 15 shows a sender composed message designated as 1080 and a partial representation of a sender computer stored database 1082 along with a revised message 1084 wherein block 1084 corresponds with previously designated block 1046 in FIG. 12 .
  • the software checks the database and notes the subscript 1 for the server listed as “npn.net” in the registered email domain portion of the database. The same subscript is checked under the SECURE/EMAILDOMAIN portion to determine whether or not to encrypt the message, the encryption code whether or not to use a third party and if so the address to be used.
  • npn.net a PGP encryption is to be used, a broker is to be used and the broker listed with a subscript “1” is “netsafe.com”.
  • networksafe.com is inserted in the visible header of the message shown as 1084 .
  • the database also specifies the public key to be used for the encryption and deciphering processes.
  • NO in the third to the last line of the illustrated database 1082 provides an indication that the sender wants the recipient to be advised of the senders name as composed on his computer. This is in contradistinction to that shown FIG. 12 previously.
  • the server 1086 receives the message 1084 , it will consult a database similar to that illustrated as 1082 and perform the functions set forth in FIG. 13
  • FIG. 16 provides a simplified example of a button bar, power bar, or tool bar that can be generated using the referenced MOT script language in combination with data retrieved from the data bases. If a client were traveling away from home and accessed the network from New York, this information would be provided to the pinger entity. If the client then logged onto a web page of an airline who was also a client of a service using the present inventive components, the web page could be programed, since data would be available that the clients home was for example Dallas Tex., to immediately bring up a list of all flights leaving New York and bound for other destinations that the client had regularly traveled to in the recent past such as Dallas.
  • the MOT generated bar or graphic in one implementation including a moving display. Such a display may provide advertising or information like ticker tape like stock market data.
  • FIG. 17 an illustrative commentary is provided of the databases and their contents upon initial installation of software of a new client wishing to access the services of the present invention.
  • a selection menu 1102 is representative of a display that would be presented upon a clients system for selecting a test location to initially use the software installed in FIG. 17 .
  • the phone database is represented by 1104 while the NS (network services) database is represented by 1106 .
  • the software will note the number “1” at the end of the data of database 1104 .
  • a “1” is shown to refer to UUNET services.
  • Garland had been picked, a “2” would have been detected and PSINet services would be used.
  • the software would determine that the test location number is “519”, the PAPID to be used is “nsTEST” and the PAP password is “zzzwww123”. Other data that may be utilized is also contained in the database.
  • the clients computer is designated as 1120 , the network as 1122 , the network access provider as 1124 and the pinger entity as 1126 .
  • the test and update procedure is illustrated.
  • the first action is for 1120 to connect through the NAP shown within network cloud 1122 to 1124 using the PAPID and PAP passwork in the NS database for the selected NAP. As set forth in FIG. 18 , these values would be “nsTEST” and “zzzwww123”.
  • the NAP 1124 validates or authenticates the ID and password. For security reasons, the test ID and registration ID network connection, in a preferred embodiment of the invention, is limited to 90 seconds.
  • the system 1120 initiates a full network protocol test to the pinger 1126 by sending information about the client's system ( 1120 ) and the software revision installed therein.
  • the installed database includes the address of an appropriate pinger 1126 .
  • the pinger 1126 after receiving the information, performs minimal processing on the received data and sends back any update information such as DNS changes, Phone number updates and the like. The pinger may then send back some static information as well as any further update information that the system 1120 may require.
  • the client software in 1120 checks the static information received, validates a reliable connection and then processes any update information for storage in an appropriate location(s).
  • FIG. 20 is presented to help in the description of client registration.
  • the clients system 1150 connects to an NAP in the network 1152 using the registration PAPID and PAP password stored in the NS database for a selected NAP as provided in the originally installed software. Such data may be found in the appendix A NS database in the appropriate lines RAM/ACCT/REG.
  • the authentication portion of the NAP ( 1154 ) validates the PAPID and PAP password so that the client 1150 may communicate with a pinger entity such as 1158 .
  • the registration request can be made directly to a registration and authentication server such as 1156 if so desired and thus proceed directly to a later portion of this paragraph description.
  • pinger 1158 receives the registration request, it returns addressing, ID and password information to client 1150 .
  • This information will normally have a single life (that is it may only be used once) since the inventive system is designed to continually change passwords and other data such as addresses. With this information, the client 1150 may now initiate a registration request to the server 1156 as referenced above.
  • the server 1156 processes the users supplied information and issues a unique authentication token, a temporary PAPID and PAP password and/or a permanent PAPID and PAP password in accordance with system design. In an alternate embodiment, only a unique authentication token may be issued wherein the software in client 1150 is required to obtain the PAPID and PAP password from a pinger such as 1158 . This supplied user registration information is stored in an appropriate database in 1156 for later authentication purposes. It may be noted that blocks 1156 and 1158 may share the same physical hardware but may also be remotely located and be interconnected via the network.
  • FIG. 21 is similar to FIG. 20 in having a client system 1180 , a network 1182 , a NAP authentication entity 1154 , and a pinger entity 1186 .
  • an optional PAP ID server 1188 is illustrated connected to the blocks 1184 and 1186 . This connection may be through the network or direct as illustrated in the drawing.
  • a further plurality of blocks representing at least a web server 1190 , an email server 1192 and a commerce server 1194 are shown connected to the network and directly to pinger 1186 .
  • the client 1180 connects to a NAP within network 1182 using a PAPID and PAP password assigned and stored in the NS database for a selected NAP.
  • the NAP validates the ID and password via block 1184 .
  • client 1180 initiates a “Network Presence Notification” to the appropriate pinger such as 1186 . If the client 1180 is set in a selectable “Anonymous Mode” the “Network Presence Notification” will include a request for a new alias along with revised PAPID and PAP password data for use in the next network login attempt.
  • the pinger 1186 When the pinger 1186 receives the notification, the date and time of receipt in logged along with the clients authentication token and the network address assigned to the client 1180 by the selected NAP. The pinger 1186 returns a response which may, from time to time, include a new authentication token in addition to data requested when the client is in the “Anonymous Mode”. It should be noted that the pinger entities such as 1188 may be used to facilitate “Client side Authentication” when used in conjunction with servers such as 1190 , 1192 and 1194 as examples. The client, or others attempting to access the system, does not have access to the information contained in any of the client databases and the client and others cannot spoof a commerce server into believing that a transaction is originating somewhere else or by someone else.
  • Item 1 since a user's network login and password change periodically transparent to the user client and they are hidden from the user so as to be not accessible by the user, network fraud and abuse may be significantly reduced. Further the dynamic assignment process allows the login access to be different from system to system. Since the physical address of a server can be changed on any random or periodic basis, Item 2 causes a significant reduction in the risk of service attacks, network lockouts and unauthorized access to data.
  • the dynamic assigning and reassigning of email alias as occurs in accordance with Item 3 significantly reduces the risk of unauthorized viewing of a given clients email messages.
  • the changing domain aliases minimizes the risk of denial of access service while the dynamically generated and authenticated session IDs for network commerce reduces the risk of fraud.

Abstract

The present invention comprises a method and apparatus for simplifying the process of access to a network for a roaming computer user, divides the responsibility of servicing a given user wanting to access the network between multiple parties wanting to access the network between multiple parties and minimizes the possibility of improper dissemination of email header data as well as improper use of network resources (including server systems) by non-clients.

Description

    CROSS REFERENCE TO RELATED APPLICATIONS
  • This application is a continuation of U.S. patent application Ser. No. 10/417,756, filed Apr. 16, 2003, and entitled “METHOD OF ACCESSING A SELECTED NETWORK,” this is a division of U.S. patent application Ser. No. 09/100,619, filed Jun. 19, 1998 (now U.S. Pat. No. 6,571,290), and entitled “METHOD AND APPARATUS FOR PROVIDING FUNGIBLE INTERCOURSE OVER A NETWORK,” which claims the benefit of the filing date of U.S. Provisional Patent Application No. 60/050,186, filed Jun. 19, 1997, and entitled “MULTI-USER INTERNET DISPATCH SYSTEM,” the disclosures of all of which are hereby incorporated by reference for all purposes.
  • Concurrently submitted herewith is Appendix A, having file name APP_A.TXT, totaling 78 kilobytes and created on Jun. 20, 2001, consisting of a computer listing constitutes a part of the specification of this invention, pursuant to 37 C.F.R. Sections 1.77 and 1.96, the appendix being incorporated by reference herein for all purposes.
  • A portion of the disclosure of this appendix document contains material that is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent disclosure, as it appears in the Patent and Trademark Office patent files or records, but otherwise reserves all copyrights whatsoever.
  • FIELD OF THE INVENTION
  • The present invention relates in general to digital data networks and, more particularly, to network access and to minimizing unauthorized interception of data and denial of network services.
  • BACKGROUND OF THE INVENTION
  • There are many networks of computers throughout the world and there is a need for the computers to communicate with each other across the network. To provide order and security, many networks require a computer wishing access to be authenticated before that computer is granted access. After establishing that the computer should be allowed to communicate over the network, it may be given an identification number so that the computer may be contacted by other computers on the network in accordance with network protocol. In general this process applies to a system designated as the Internet.
  • The Internet comprises a network of computers that interconnect many of the world's businesses, institutions, and individuals. The Internet, which means interconnected network of networks, links tens of thousands of smaller computer networks.
  • The Internet can be accessed directly through telephone lines with a device called a modem or indirectly though a local area network (LAN). Most users do not have the expertise to connect their computers and associated equipment to the Internet and/or finances to have a continuous connection to the Internet. Thus most users access the Internet through an Internet Service Provider (ISP). The ISP can distribute the costs of necessary equipment and telephone lines to many users on some time multiplexed basis. While an ISP may have access to only one server and a few modems for receiving incoming calls from users, some ISPs have access to hundreds and even thousands of modems and many servers to interface between users and one or more high speed telephone lines of at least DS1 standard communication capacity.
  • Usually the ISPs that charge the lowest prices to the user are the busiest and users often find that access to a low cost ISP is blocked by a “busy signal”. On the other hand, a user of the high priced ISPs seldom encounters busy signals. The high priced ISPs have fewer customers, can afford to add modems as needed and are not confronted with suddenly increased demands on equipment capacity.
  • Some ISPs use less expensive (ie slower rate, poorer quality or lower capacity) telephone lines or equipment to provide low cost and as a result the data transmission rate of communications between the user and the Internet may be substantially less than the capability of the users modem. Many sets of information on the Internet, such as Web pages, include pictures, pointers to other pages, music etc, that require large amounts of data to be transmitted for ultimate display. When a user is attempting to access material requiring the transmission of large volumes of data, a low data transmission rate equates to a long time spent waiting to obtain that data.
  • When a user first installs software in a computer to be used in connecting the computer to a given ISP, many items of information need to be provided to the software before the user can communicate with the ISP and be connected to the Internet. While some of the information such as the specific communication port to be used (ie com1 or com2) and the modem type used in the computer would be universal and would be identical regardless of the ISP used, other information is ISP specific. ISP specific type information would include the ISP dial-in number, a Password Authentication Protocol (PAP) identification number and a PAP password for that ISP.
  • Different ISPs provide different services to users. Some ISPs (no or low service) may offer only a connection to the Internet without technical help to a user connected to that ISP and further without any additional features. Other ISPs (full service) may offer many features such as encyclopedia type information, interactive games, access to otherwise costly databases, etc.
  • A user in a commercial environment may operate a computer that is connected to a LAN and also is connected to a modem. There are often business considerations that require some communications with the Internet be accomplished through the LAN and other, especially personal, communications be accomplished through a modem. If a single software entity such as a browser is used for both types of Internet connection, several items of information need to be altered with the accompanying chance for error and frustration of the user.
  • When a computer is subjected to stress such as by a large and sudden variation in supply voltage (ie an electrical spike), there may be corruption of data in the software and/or data banks of the computer. When such corruption concerns the data needed to communicate with the Internet, a considerable amount of time is often required to ascertain the cause of the failure to attain communication and further time is required to correct the problem.
  • Some Internet users are highly mobile and may need to access the Internet from various locations, some of which locations do not have a local phone number for communicating with the normally used ISP. Such a user either must pay the cost of a long distance call or access a different ISP after modifying the appropriate data the operating system's networking, dial-up-networking, or communications properties used to accomplish such access. Such modification always invites a chance for erroneous data entry in the process and the accompanying time required to rectify the situation.
  • Another problem related to network use is related to electronic mail which terminology is popularly shortened to email. Email is used to quickly communicate with other users of connected network terminals. The process is normally accomplished by sending a set of data including a header portion, a message body and sometimes one or more file attachments. Typically, the header contains the name of the recipient in a TO line, the sender in a FROM line and a subject in a SUBJECT line. Even if the message body and the attachments are scrambled or otherwise encrypted a persistent entity monitoring the email being sent to and from a given terminal may glean considerable information from the subject matter listed and from the number of messages sent between same parties. This information is typically sent in clear text (unencoded) to facilitate the delivery of email to the proper temporary storage facility, normally a post office box like repository of the service provider of the recipient, until such time as the recipient retrieves the email from the service provider. The recipient also uses the header information in determining priority of messages to be read.
  • A further problem is third party mail relay. This is a process whereby junk emailers use a service system other than their own to send massive amounts of mail without paying for the service. The massive amount of mail can so overload the system that an invaded system can crash, overload or otherwise be damaged. This overload is termed in the art as a denial of service attack. The overall process of sending massive amount of junk email is termed “spamming”. The third party mail relay process is also used to bypass other systems filters which are set up to block mail from the junk emailers system.
  • In view of the above, there exists a need to quickly and easily access the Internet from various locations, being able to access ISPs providing different types of services, using various adaptors (ie modem or LAN card) and being able to choose whether preference should be given to items such as cost and quality of service, without the user having to be concerned about correctly modifying associated data and parameters such as phone numbers, IDs, passwords etc used by the Internet software.
  • There is a further need to be able to send email to others in a manner which minimizes the possibility that unauthorized entities may be able to retrieve significant data from email header information.
  • Also there is a need to prevent junk emailers or other unauthorized parties from using the third party mail relay process in connection with a network service system.
  • FIELD OF THE INVENTION
  • The present invention comprises a method of and apparatus for simplifying the process of access to a network for a roaming computer user, divides the responsibility of servicing a given user wanting to access the network between multiple parties and minimizes the possibility of improper dissemination of email header data as well as improper use of network resources (including server systems) by non-clients.
  • For a more complete understanding of the present invention, and the advantages thereof, reference is now made to the following descriptions taken in conjunction with the accompanying drawings, in which:
  • FIG. 1 illustrates signal communication paths between clients, ISPs and network access providers;
  • FIG. 2 illustrates in more detail the software interaction between a client and an access service provider;
  • FIG. 3 illustrates a flow diagram of an installation procedure of the client dispatch application;
  • FIG. 4 illustrates a flow diagram of a registration procedure of the client dispatch application;
  • FIG. 5 illustrates a flow diagram of a regular use procedure of the client dispatch application;
  • FIG. 6 illustrates a flow diagram of a manual update procedure of the client dispatch application;
  • FIG. 7 illustrates a flow diagram of a multi-dial procedure of the client dispatch application;
  • FIG. 8 illustrates a plurality of MOT (a computer script language) potential processes;
  • FIG. 9 is a block diagram of a storage medium comprising the client dispatch application for causing a computer to function in accordance with the present invention;
  • FIG. 10 comprises a simple diagrammatic showing of how the present invention may be used in combination with browser plug in software to minimize unauthorized viewing of email messages;
  • FIG. 11 provides more detail for illustrating the process of FIG. 10;
  • FIG. 12 shows details of sender plug-in software process for email transmission that is more secure than that shown in FIG. 11;
  • FIG. 13 shows details of the process of FIG. 12 at a third party site;
  • FIG. 14 shows details of the process of FIG. 12 at a recipient site;
  • FIG. 15 shows the process of FIG. 12 as applied to a changeable internal database;
  • FIG. 16 illustrates a an example of a customized button bar that may be generated using the MOT script in accordance with the teachings of this invention;
  • FIG. 17 summarizes the software installation process of a client users system that wishes to access the present invention;
  • FIG. 18 provides a graphic description of the procedure used by a client in testing the installed software by selection a location from which to access the components of the present invention;
  • FIG. 19 further illustrates the network test and client system update procedure;
  • FIG. 20 illustrates the system interaction for providing client registration with the inventive system; and
  • FIG. 21 provides additional illustrative material for the interaction of the client systems software and the components of the inventive system in obtaining general and anonymous access to the system.
  • DETAILED DESCRIPTION OF THE INVENTION
  • It should be noted that the present invention applies to any network or interconnected set of networks. However, since the Internet is a well known example of an interconnected set of networks, Internet terminology and interaction examples will be used in the explanation of this invention.
  • The present invention solves all or some of at least ten problems:
  • 1 Eliminates the need for a computer user to configure and reconfigure computer networking software for network access through a multiplicity of ISPs and Network Access Providers (NAP) (companies which own the telephone networks and modem banks such as AT&T, GTE, UUNet, PSI, etc.).
  • 2 Allows a Network Re-seller such as an Internet Service Provider to offer network access via a multiplicity of Network Access Providers based on cost, location, availability, reliability, etc.
  • 3 Allows a Network Re-seller to balance network loads through a multiplicity of Network Access Providers and across a multiplicity of network computer servers.
  • 4 Eliminates the need for a computer user to know or configure network access telephone numbers or network access protocol identification numbers.
  • 5 Eliminates the need for a computer user or mobile computer user to re-configure remote network access software to connect to a network from a remote location.
  • 6 Allows multiple users to use a single computer each with their own unique networking attributes and unique network identity.
  • 7 Allows separate and distinct identifications (ID) and passwords for different services and network functions such as PAP IDs and PAP password, Email ID and password, etc.
  • 8 Provides a user with true network anonymity by assigning independent non-user specific identifications and passwords for such things as PAP authentication, FTP and Email logins, News Server logins, and network server logins.
  • 9 Provides Email anonymity by transmitting and receiving all email through a third party (broker) wherein, if appropriate, aliases may be used for all un-encrypted data and these aliases may be changed periodically by the system in a manner transparent to the user.
  • 10 Eliminates third party email relay (SPAMMING) by transparently authenticating each user-system prior to giving access to a sendmail server.
  • This invention relates to network connections, such as the Internet, and allows system to be independently, transparently and dynamically connected or reconnected to a network based upon any number of attributes such as user or group identity, cost, availability, reliability, etc. Further this invention supports many types of physical connections such as telephone dial-up connections, ISDN connections, Ethernet, and other local area networking connections. It should be noted that while Internet terms such as ISP are used throughout this description, the invention is operable with any network or portion of any network and thus terms such as NSP (Network Service Provider) have been coined for use in the claims to identify similar or analogous systems and devices.
  • A traditional network connection requires someone skilled in the art of computer networking to setup and configure both network related hardware (such as modems or Local Area Network cards (Ethernet, Token-ring or other cards) and network software. The invention eliminates the need for such network configuration skills.
  • The invention configures and reconfigures network related software to support multiple users with multiple network protocols and/or multiple networks using the same protocol without the need of any computer network configuration skills and further allows the configuration to be changed or modified dynamically without any user intervention.
  • The principles of the present invention and their advantages are best understood by referring to the illustrated embodiment depicted in FIGS. 1-21 of the drawings, in which like numbers designate like parts.
  • The invention includes software which is sometimes referred to as middle-ware because it resides between an electronic device operating system and the end-users interface. The inventive software has all the attributes of middle-ware as it configures and manages network communication equipment such as modems and Ethernet cards, network protocols such as the Transmission Control Protocol/Internet Protocol (TCP/IP), and the associated interfaces between the communication equipment, network protocol and the computer's operating system for each individual user or groups of users.
  • Now referring to FIG. 1, there is illustrated a plurality of Internet service providers (ISP1 through ISPx) 102 a, 102 b connected to a network 100 (sometimes referred to as the Internet). As will be appreciated, an Internet service provider (ISP) provides access for one or more uses 110 a, 110 b to the Internet 100 through a physical interface. The term “internet service provider” includes network access providers (NAPs) and Network Service Providers (NSPs) as well. In general terms, a user 110 connects to the ISP 102 via a communications link and the ISP 102 provides connection to the Internet 100. As will be appreciated by many users of the Internet, the ISP typically has many modems accessible from a limited number of telephone numbers. Each of these modems has an assigned internet protocol (IP) address and normally an assigned DNS name. Such assigned names and (IP) addresses will look something like “1cust239.tnt.orll.da.uu.net” and [208.250.77.239] respectively. When a user contacts the ISP, the user is connected to the next available modem and the IP address of that modem becomes the IP address of that user for the remainder of that connection session. The user 110 may include a single computer, group of computers, local area network, or a larger network connected to the ISP 102 via a communications link. However, in most applications, the user 110 will include a single user requesting access time to the Internet 100.
  • To begin the process of the present invention, the user 110 installs (downloads) a client dispatch application program 200 (see FIG. 2) that furnishes the user 110 with one or more ISP access telephone numbers, one or more valid test and Registration Password Authentication Protocol (PAP) identification (ID) numbers, and a valid PAP password associated with a predetermined one of the ISPs 102. The client dispatch application 200 will be described in more detail further below. The access information allows the user 110 to authenticate the user's right to connect to the Internet via the predetermined ISP 102. The access information mentioned comprises the previously mentioned access telephone number, the PAP ID, the PAP password and additional ISP-specific information required by the user 110 to gain access to the Internet 100 via the predetermined ISP 102 (collectively, ISP-specific configuration information) is initially provided by the client dispatch application 200. In addition, the client dispatch application 200 provides basic configuration and initialization information (installation and configuration) to the user's computer to configure and manage the network communication equipment, network protocols and the associated interfaces needed to develop the capability to access the Internet 100, regardless of the particular ISP.
  • After the client dispatch application 200 is installed and the initial ISP-specific information is known, the client dispatch application 200 causes the user 110 to automatically transmit access information to the predetermined ISP 102 (ISP1102 a or ISPX 102 b). The line of communication through which the access information is transmitted to the predetermined ISP 102 by the user 110 (USER1110 a or USERX 110 b) is identified by the reference numerals 111 a, 111 b, 115 a, 115 b, depending on the particular user (USER1110 a or USERX 110 b) and the particular ISP (ISP 102 a or ISPX 102 b). Upon receipt of the access information, the ISP “authenticates” the user 110. The ISP 102 checks to see whether the PAP ID and PAP password received from the user is valid. It will be understood that the authentication process performed by the ISP 102 utilizes one or more appropriate methods (such as Remote Authentication Dial-in User Service (RADIUS)) which are normally associated with an authentication server a database at the ISP, Network Service Provider (NSP) or the NAP. If the PAP ID) and/or PAP password are not valid, the ISP 102 will disconnect the user or notify the user that the PAP ID and/or PAP password is invalid. If valid, the user 110 and the ISP 102 create a point-to-point protocol (PPP) (i.e., communications connection) which is identified in FIG. 1 by reference numerals 112 a, 112 b, 116 a, 116 b, depending on the particular user (USER1110 a or USERX 110 b) and the particular ISP (ISP1102 a or ISPX 102 b). The PPP allows the ISP 102 to transmit/receive information to/from the user 110. As a result, the user 110 is given access to the Internet 100 and the ISP generates an internet protocol (IP) address to uniquely identify the user on the Internet 100. The particular IP address assigned to the us 110 depends on the IP addresses that are available and assigned to the particular ISP 102 to which the user 110 is connected. An IP address is presently 32 bits and is normally represented with four decimal numbers each ranging from 0 to 255 (e.g. 128.54.28.200) where each decimal number represents one byte of the 32 bits.
  • In accordance with the present invention, an Internet service provider access service or ASP (Access Service Provider) 106 is connected to the Internet 100. The external location, or physical address of the access service 106 is defined by a predetermined and unique address (i.e., IP address). After the user 110 gains access to the Internet 100 via one of the ISPs 102, the client dispatch application 200 resident in the user's computer transmits a data message to the access service 106 through the Internet 100 using the predetermined address of the access service 106. This data message is sent via a path identified as TCP/IP 120 or TCP/IP 122, depending on the particular ISP 102 to which the user 110 is connected for access to the Internet 100. The communications link protocol used for Internet 100 communications is defined as Transmission Control Protocol/Internet Protocol (TCP/IP) and is well known in the art. As will be appreciated, other network communications protocols and standards may be used during the present or in the future by the present System invention due to the flexibility provided in the use of multiple databases to store various types of data.
  • The data message transmitted from the user 110 and received by the access service 106 contains information about the user, including the user's identification and address, current PAP ID, time stamp information, and version information of the client dispatch application 200 operating on the user's computer, etc. In response to the user information received, the access service 106 transmits an access information data message that includes access information for a particular ISP 102. The access information is specific to a dial-in telephone number of a particular ISP 102 and, upon receipt by the user 110, allows the user to gain access to the Internet 100 via that particular ISP 102. The ISP-specific access information includes an ISP phone number (for dial-in to the ISP), a PAP ID for the ISP 102, and a PAP password for the ISP 102, and may also include default routing information (i.e., gateway address information), default directory information (including domain name server information), sub-protocols for the PPP for the ISP 102, and configuration information for the hardware (i.e. modem) of the ISP 102 (to configure the user's modem), such as data compression information and speed. The ISP-specific information may also include service option defaults such as Email IDs, POP protocols and browser information. The PAP ID may or may not be sent depending on the current PAP ID information transmitted from the user 110 to the access service in the data message (e.g., if the current PAP ID and the new PAP ID are the same, a new PAP ID does not need to be sent).
  • After receiving the ISP-specific access information, the client dispatch application 200 may disconnect the user 110 from the current ISP 102 and automatically dial and reconnect the user 110 to the desired ISP 102 associated with the ISP-specific access information. As will be appreciated, the desired ISP 102 may be another ISP or may be the same ISP to which the user was previously connected, depending on the attributes of the particular ISP desired to be used for access to the Internet 100. If the ISP phone number (for dial-in to the ISP) and a PAP ID received with the new access information, refer to the same ISP, the client dispatch application 200 will not disconnect the user 100 and the user's session will continue uninterrupted.
  • The access information data message includes the information necessary (PAP ID, PAP password, and other information if needed) to access a desired ISP 102 and, may include information for a plurality of desired ISPs 102, or multiple PAP IDs and PAP passwords for a desired single ISP. It will be understood that more than one access information data message packet may be utilized and transmitted, each packet containing a portion of the information packet or each may contain access information for a specific ISP 102.
  • The access service 106 offers Internet 100 access to the user 110 via a plurality of ISPs 102 based on cost, location, availability, reliability, etc. Based on the geographic location of the user, the access service 106 identifies, to the user 110, one or more ISPs 102 that provide local access availability (via local telephone numbers or toll free numbers) and provide the user 110 with information needed to access one of the identified ISPs (using the ISP-specific access information). For desired low cost operation, the access service 106 identifies the ISP 102 that provides the lowest cost access service through which the user 110 may access the Internet 100 from the identified ISP 102 at the user's location. For the reliability operation, the access service 106 identifies one or more ISPs 102 that provide the highest reliability of connecting through which the user 110 may access the Internet 100 from the identified ISPs 102 at the user's location. For the availability operation, the access service 106 periodically receives availability information from each of the plurality of ISPs 102. In response to this information, the access service 106 identifies one or more ISPs 102 that provide the highest availability through which the user 110 may access the Internet 100 from the identified ISPs 102.
  • As will be appreciated, the location operation, reliability operation, and availability operation may each provide to the user 110 the identity of multiple ISPs 102 or multiple dial-in numbers for a particular ISP 102 whereby the user 110 will attempt connection in order of priority. For example, the user 110 may attempt access to a first ISP 102 contained in a list of multiple ISPs 102 that have been identified based on availability or reliability. If a connection is not successful with the first ISP 102, the user 110 will next try a second ISP 102 in the list, and so on, until a connection made. In another mode of operation example, the user 110 may attempt access to a first ISP 102 utilizing a first dial-in number contained in a list of multiple dial-in numbers for the first ISP 102 that have been identified based on availability or reliability. If a connection is not successful with the first dial-in number, the user 110 will next try a second dial-in number in the list, and so on, until a connection is made. Further a combination of multiple ISPs 102 and multiple dial-in numbers may be used.
  • Now referring to FIG. 2, there is illustrated a block diagram of the access service 106 connected to the Internet 100 and a block diagram of the user 110 connected to the Internet 100 via the ISP 102. The user 110 may be a computer system that includes the client dispatch application 200 and the computer's operating system 202, as well as a registry or initialization file(s) 212, a physical adaptor file(s) 214, and a protocol file(s) 216. The files 212, 214, 216 are operating system files (system configuration files) that provide the user 110 with system configuration information for supplying the basic capabilities needed to successfully connect the user 110 to a network, such as the Internet 100. The client dispatch application 200 correctly configures and sets the system configuration files 212, 214, 216 with the necessary system configuration information, including network protocols, adapter information, IP addresses, domain name system (DNS) server addresses, gateway addresses, other operating system binding functions, dynamic host control protocol options, and any other system options. As will be appreciated, the system configuration information necessary for the user 110 to access the Internet 100 is well known in the art.
  • The user 110 also includes several databases for storing information, including a phone database 204, a network services database 206, a button bar database 208, and a user database 210. As will be appreciated, the databases 204, 206, 208, 210 may be combined into a single database, may be separate, and/or may be relational. Generally, the client dispatch application 200 includes the databases, or generates the databases and stores pre-loaded information into the databases upon installation of the client dispatch application 200 on the user 110 computer.
  • The phone database 204 includes one or more dial-up telephone numbers for the access location(s) of each of the ISPs 102. Each dial-up number entry includes associated information including on-off field data, state (or a toll free number), city, dial-up telephone number, type of modems supported (analog or digital), whether the number is available for registration, identity of the ISP that owns the dial-in number (ID for provider), sequence number (order for putting number in a specific area). Some of the foregoing data is access information. An example of some of the contents of the phone database 204 and its data entries is set forth in Appendix A which is hereby incorporated by reference.
  • The network services database 206 includes access information for each dial-in number contained within the phone database 204. Each of the stored dial-in numbers is associated with an ISP 102. The access information for each dial-in number (for a particular ISP) includes one or more PAP IDs, one or more PAP passwords, default routing information (i.e., gateway address information), default directory information (including domain name server information), sub-protocols for the PPP, and configuration information for the hardware (i.e. modem of the ISP) to configure the user's modem, such as data compression information and speed. The network services database 206 may also include service option defaults such as Email IDs and the POP protocols and browser information associated with the dial-in number. The network services database 206 also includes the basic configuration and initialization information necessary to configure and manage the network communications equipment, network protocols and associated interfaces for the user 110 for basic communications between the user 110 and the Internet 100. In addition, the network services database 206 includes information relating to the type of service (type of account) requested by the user 110, such as the “lowest cost service”, the “highest reliability service”, the “most reliable service”, or combinations thereof, plan pricing and descriptions, and includes information identifying one or more primary processes to be performed by the client dispatch application 200. As will be appreciated, some of the information in the network services database 206 and the phone database 208 may overlap. An example of the network services database 206 and its data entries is set forth in Appendix A which is hereby incorporated by reference.
  • The button bar database 208 includes information related to button bar creation and modification. All functions may be initiated through the human interface—a Toolbar (also described in the art as a button bar and basic examples of which may be found in many present day computer applications). The Toolbar of the present invention has some unique properties as it can be dynamically changed or updated via a Pinger process or a MOT script. As defined in this application and as will be described in more detail later, a Pinger process comprises an entity that acts transparently as a “services” coordinator to provide and/or administer the following:
  • 1. Heartbeat service to help maintain network connectivity with a client.
  • 2. Authentication services that securely authenticate client access to email, commerce, and other public and private network servers and services.
  • 3. Update services that can perform client software, database, and maintenance services during periods of inactivity.
  • The Pinger entity, as suggested above, has, as one of its functions, the responsibility of providing database updates to the client user. When a MOT script is used, it can be part of an Email message, an HTTP web document download and so forth, which transparently automates the Toolbar update. The Toolbar can be integrated with ticker tape which can spawn MOT scripts, URLs, or execute programs. Each Toolbar button may be programmed with a function in the button bar database 210. The Toolbar reads a plurality, for this example five, of attributes from the button bar database 210:
  • 1. Caption—Title or Button Name.
  • 2. Enabled—Enables or disables the button function
  • 3. Execution Type—This attribute supports the following types and further determines if the fifth attribute read by the toolbar would be “Execute File” (5 a) or “URL” (5 b)
  • DDE to a URL
  • DDE to a URL without going online
  • Launch a Program or Script
  • Launch a Program or Script and wait to complete before continuing
  • Go online and then launch a program or Script
  • Change Preferences
  • Change Passwords
  • Display Account Information
  • Set Dialing Properties
  • Execute a MOT script
  • Jump to another Tab or Button on the Toolbar
  • Reload the Toolbar's Tabs and/or Buttons
  • 4. Hint—Button functionality description
  • 5. a Execute File—Command line of file to be executed
  • 5. b URL—URL for a browser to open whether remote or local
  • When a user clicks on one of the Toolbar functions or the Ticker tape, the appropriate procedure is started. For example, if a button is programmed to go to the USA Today (button Caption) web site the Execution type would be set to “DDE to a URL” and the “URL” would be set to something similar to http://www.usatoday.com/ and the “Hint” would be set to something similar to “Open to XXXXXXXXX Web site for the latest news!”.
  • As will be appreciated, a MOT script defines how to build a button bar using the button bar database 210 and its database entries. The MOT script is typically associated with a Web page and when the user 110 clicks on the Web page, the MOT script associated with the Web page is read back by the client dispatch application 200. The client dispatch application 200 uses the particular MOT script and the button bar database 210 information and builds the button bar automatically, according to the MOT script specifications. An example of the button bar database 208 and its data entries is set forth in Appendix A which is hereby incorporated by reference.
  • The user database 210 includes information related to the user 110, such as name, address, phone numbers, billing information, Email ID and Email password, type of account, and unique PAP ID and PAP password, if applicable. It will be understood that the user database 210 may be merged into the network services database 206. An example of the user database 210 and its data entries is set forth in Appendix A which is hereby incorporated by reference.
  • The access service 106 is connected to the Internet 100 and is defined by a predetermined and unique address (i.e., IP address). The access service 106 includes one or more network servers/databases 220. It will be understood that access service 106 includes a computer system having one or more processors, memory, and support hardware (all not shown in this figure) for processing and storing information and data communications. The network/databases 220 store information relating to the user(s) 110, including the same information that is (or would normally be) in the user database 208, and also includes session keys (transaction keys) billing data, connection history data, ISP-specific access information, and information about what procedures a user 110 has performed, and the like. Specific functions of the access service 106 have been described in the foregoing and will be described in more detail below. The Pinger entity may be a part of the access service provider 106 or it may be separate. For the present discussion, it will be assumed to be part of the access service provider 106.
  • After the user 110 connects to the Internet 100 via a predetermined ISP 102, the client dispatch application 200 dispatches an initial “pinger” message to the access service 106 via the Internet 100. Included within the pinger message is header information that includes the current user ID, account owner ID, PAP ID, the current IP address assigned to the user 110, Group ID, the users system's current time, database (204, 206, 208, 210) revisions levels, client dispatch application 200 and other related software revision levels.
  • All communications between the client dispatch application 200 and the access service 106 take place through a process identified as the Pinger. The Pinger provides secure and unsecure periodic bidirectional communication between the user 110 and the access service 106. The functions of the Pinger are as follows:
  • Read, Write or Update any entry in any of the databases 204, 206, 208, 210 of the user 110 and any of the databases 220 of the access service 106 and further initiate a secondary transmission when appropriate.
  • Execute a program or script with command line entries if appropriate.
  • Save a file or script and further initiate the execution of the file or script when appropriate.
  • Continue Transaction.
  • With these functions, the client dispatch application 200 can request database updates or save files for execution later, and the access service 106 can initiate events, database updates, or save files for execution later. The Pinger process also provides a “heartbeat” mechanism to prevent the premature disconnection of the user 110 from the network by an ISP 102. That is, many ISPs 102 have a modem inactivity timeout interval that disconnects users after some short interval of time if there has been no network activity during that interval of time. The heartbeat function is programmable and, in the preferred embodiment, is set at five minutes during the user's first three hours of connection time and increases by five minutes each half hour thereafter. In the heartbeat function, the client dispatch application 200 transmits the user's ID to the access service 106.
  • The pinger is initiated by the client dispatch application 200 upon connection to the network 100. The client dispatch application 200 transmits header information to the access server 106 using the IP address of the access server 106. The header information includes the current user ID, account owner ID, PAP ID, the current IP address assigned to the user 110, Group ID, the users system's current time, database (204, 206, 208, 210) revisions levels, and client dispatch application 200 and other related software revision levels. With this information, the access server 106 determines whether a user 110 is making two connections while only paying for one and thus needs to be disconnected, or is a user 110 that needs a database or file update. The Continue Transaction function provides a mechanism to partially transmit data and commands over multiple sessions (successive connections by the user 110 to the network 100) without having to restart the transaction from the beginning.
  • While the pinger process (transparent to the user) allows the client dispatch application 200 and the access service 106 to interact and download database updates (or other information) to the user 110, there is an alternative way to provide the updates to the databases, etc. at the request of the user 110. The access service 106 may provide a Web page whereby when the user 110 clicks on the Web page, a MOT script and other data associated with the Web page is transmitted from the Web page site to the client dispatch application 106. This gives the user 110 the capability to request a data update (or to receive other information). Alternatively a MOT script and other data can be transmitted via an email message, an FTP (file transfer procedure) site or other similar networking storage and transport mechanism to the client dispatch application.
  • The Script Language used by the Pinger and elsewhere in this application for patent is designated by the term MOT (see FIG. 8). MOT is not, however, an acronym for anything meaningful. The script language is an interpretive language which is stored in an encrypted file from which the interpreter reads to initiate the MOT client dispatch application. The MOT client dispatch application can read and write database (db) entries, Operating System initialization file entries (INI and Registry Files), and ASCII Text files. Further, the MOT client dispatch application can spawn executable programs, network connection, AWK scripts, and other MOT scripts.
  • Now referring to FIGS. 3 through 7, there is illustrated the process of the client dispatch application 200. The flow diagrams of FIGS. 3-7 are representations of closed-loop programming (structured programming). The client dispatch application 200 performs five primary procedures or functions as set forth in the CASE block. These include the installation, registration, regular use, manual update, and multi-dial procedures. Within the multi-dial procedure are several sub-functions defined as the low cost, reliability, location, availability, busy-sequence, and single dial/multi-login sub-functions shown and explained subsequently in connection with FIG. 7. The client dispatch application 200 manages the procedures based upon data from one or more databases of the access service 106 or other inputs received from the access service 106, the user's databases 204, 206, 208, 210, and/or the user's computer operating system files. It will be understood that databases and database information may be encrypted to prevent a user from tampering with entries contained therein.
  • Now referring to FIG. 3, there is illustrated a flow diagram of an installation procedure 300 of the client dispatch application 200. The procedure 300 starts by reading information from the network services database 206. The network services database 206 forms part of the software package which is loaded into a network access device, such as the user 110 (computer). The network services database 206 includes basic configuration and initialization information necessary to configure and manage the network communication equipment, network protocols and the associated interfaces between the communication equipment and network protocols and the computer's operating system.
  • After the network services database 204 is read, the user's operating system files (which in the case of a Windows operating system comprises Registry and INI files, Protocol files, and Physical Adapter files) are examined to determine if any networking options have been installed and whether or not the files, if installed, are correct and configured properly as part of the “No Protocol” decision block. If no Protocol or Adapter has been installed, the “True” path will be followed whereby the Installation function will configure the Adapter and necessary Protocol to successfully connect the user 100 to a network such as the Internet 100. If the Protocol or Adapter that is installed is misconfigured, the “False” path will be used whereby the Installation function will reconfigure the Adapter and necessary Protocol to successfully connect the user 100 to a network such as the Internet 100. As part of the configuration process, it may be noted that the correct configuration for utilization of the TCP/IP Protocol would include configuring and setting the proper Operating System Registry and INI (initialization) files with the necessary Protocol configuration information in instances where the operating system is a version of windows. Such information includes: IP addresses whether statically or dynamically assigned, Domain Name System (DNS) name server addresses whether statically or dynamically assigned, Gateway Addresses whether statically or dynamically assigned, Other operating system Binding functions, Dynamic Host Control Protocol options, Windows Internet Naming Service (WINS) options whether statically or dynamically assigned, and the assignment of such Protocol functions to be utilized by the appropriate Adapter. The function of configuring or reconfiguring is executed near the beginning of each of the five primary procedural (300, 400, 500, 600, 700) tasks of the client dispatch application 200 to ensure successful operation of a network connection even for those instances where a computer user accidentally misconfigures their system and thereby makes networking inoperable.
  • After the successful configuration of both the Adapter and the Protocol, the procedure 300 proceeds to the “Which Adapter” decision block. The appropriate adapter is utilized which is either the adapter pre-programmed into the network services database 206 (if available) or if there is only one Adapter then it will be used. If the Adapter is a Modem, the “Modem” path will be followed to read from the network services database 204 to determine if the user 110 chooses a dial-in location under the case of “User Look-up” or if the modem shall be programmed to dial a “Pre-Defined” dial-in phone number reference in the network services database 204 and stored in the phone database 204. If a database entry in the network services database 206 is set to allow the user 110 to choose a dial-in location, then the user 110 chooses a location based on Country, State or Province, and City in accordance with the “User Picks Dial-In Location” block. After the user 110 selects the proper dial-in location, the installation procedure 300 reads from the phone database 204 to determine the dial-in phone number to use. If a given location has multiple dial-in phone numbers, a dial-in number is selected based upon attributes read from the network services database 206 (and/or the phone database 204). Such attributes include installation dial-in numbers (dial-in phone numbers which are only available during installation or testing). Although not pertinent to the installation procedure 300, other attributes of phone numbers appearing in the phone database 204 include Registration Dial-in Numbers (phone numbers and locations which appear to a user during registration), Sequence Numbers (a prioritized list of phone numbers which shall be tried in sequential order to produce the highest probability of connection), Available ISP numbers (phone numbers of a given ISP's modems), Currently Valid Numbers (phone numbers which are currently valid for use by a given users), or any combination of the aforementioned.
  • If a value in the network services database 206 is set for the user 110 to use a predefined dial-in number (such as an 800 type toll-free number) the client dispatch application 200 will read the appropriate predefined phone number entry from the phone database 204. After the client dispatch application 200 has determined the proper dial-in phone number, whether user selected or pre-defined, the user's modem is initialized and dialing occurs, as set forth in the “Dial & Connect” block. If the modem is busy, it will either continue to retry the same phone number or initiate a multi-dial procedure 700 (as set forth in FIG. 7) depending on the outcome of the “Multi-dial Mode?” decision block (from an entry in the network database services 206). If the “False (Retry)” path is followed, the same number is dialed until the user 110 “gives up”. If a Multi-Dial mode “True” path is followed, based upon the entry in the network services database 204, the multi-dial procedure 700 is initiated and other dial-in numbers will be tried to gain access to the network. The multi-dial procedure 700 is one of the five primary procedures of the client dispatch application 200 and is explained in more detail in connection with FIG. 7.
  • Once a connection is made, the “False” path from the “Busy?” decision block is followed and communication with the access service 106 begins by sending an installation PAP ID and PAP password (read from the network services database 206) to the access service 106 for transparent login authentication as shown by the “Get Information From Server” block. Once the login has occurred, communication with the access service 106 is established, and transfer of data begins. The data transferred during the installation procedure 300 may contain some basic system information about the user's computer system, the type of connection being used and the location from which the connection has occurred. Once this information is received at the access service 106, the access service 106 sends appropriate information back to the client dispatch application 200. Such information may include updates to the phone database 204 including “Location” addition or subtractions, phone number changes, and updates to the network services database 206 including ISP additions and subtractions, group, user, or multiple user specific configuration, DNS and IP information, etc. Updates to the databases 204, 206, 208, 210 which reside on the user's computer can occur transparently to the user 110 whenever the user 110 is connected to the Internet 100; thereby ensuring that the user's network related information is always current and accurate. Any updates received from the access service 106 are written to the appropriate database (i.e. network services database 206, phone database 204, or others) by the client dispatch application 200. The client dispatch application 200 also updates the network services database 206 to reflect “installation complete”. Thus, the client dispatch application 200 is informed that the next execution “Case” to start is “Registration” as will be shown in FIG. 4.
  • At this point, the dial-in location attributes (Installation dial-in numbers, Registration Dial-in Numbers, Sequence Numbers, Available ISP numbers, Currently Valid Numbers) provide control mechanisms to ensure that a user 110 receives the appropriate level of service for which they are subscribed such as “the lowest cost service”, “the highest reliability service”, “the most available service”, or combinations thereof. Further, these updated and database stored attributes allow for remote testing of the network communications (full connection TCP/IP test to the Internet 100), the user's system for basic configuration, database integrity, network load balancing and the reduction of fraud by dynamic control of phone number validity.
  • If the Adapter used to connect to the network is a Local Area Network device such as an Ethernet card, the “LAN” path is followed from the “Which Adapter” decision block. In this situation, once communication with the access service 106 is established, transfer of data and updates begin as described in the paragraphs above.
  • Now referring to FIG. 4, there is illustrated a flow diagram of the registration procedure 400 of the client dispatch application 200. The procedure 400, as all primary procedures, starts by reading the network services database 204 to determine the appropriate execution “Case”, and in this case, the registration procedure 400. The registration procedure 400 starts by reading the network services database 206 to gather the necessary information, such as which Adaptor and Protocol to use and proceeds to configure and initialize the appropriate networking functions to start the user registration process. A “Which Adapter” decision block includes the two paths of “Modem” and “LAN”. After a determination is made as to which Adapter and Protocol to use, the process proceeds to the “(Re)Configure Adapter Protocol” block to configure and initialize the appropriate networking functions to start the user registration procedure 400 (i.e. configuration process for the user's computer).
  • The registration procedure 400 comprises several forms (pop-up forms) into which the user 110 enters specific information about the user 110. Such information typically will include Name, Address, Phone Numbers, Credit Card and/or Banking Information, Referral Information (if available), Personal Security information (like: mother's maiden name), Birthdate, and Preferred E-mail Identity and Preferred E-mail Domain Choice. The registration information for each user 110 is stored in the network services database 106 and/or a user specific database 210, as well as information about the user's system and revision levels of the client dispatch application 200 and databases (204, 206, 208, 210). Upon completion of the new user registration forms as indicated by the “Update DBs with New User Information” block, the client dispatch application 200 initiates communications with the access service 106 as described earlier. The adapter used, as determined by the lower most “Which Adapter” decision block, will be the adapter determined and used during the installation process. Once communication with the access service 106 begins, the client dispatch application sends all the information that was added or updated into the network services database 206 (or user database 210) of the user 110 to the access service 106 as indicated by the “Send Information To Server” block. The access server 106 transmits the received information plus additional information, such as one or more user assigned PAP IDs and PAP passwords, Email IDs and Email Passwords, back to the client dispatch application 200 for comparison and verification of the information that was sent as indicated by the “Get Information From Server” block. If the information returned is not identical to the information which was sent, the client dispatch application will resend the information again to the access service 106 along the path commencing with the “Notify User of Error-Retry” block. This process will continue until all transmitted information from the client dispatch application 200 to the access service 106 matches all information returned to the client dispatch application 200 from the access service 106 or when a maximum retry value is reached in accordance with the “Quit?” decision block. In the preferred embodiment, the maximum retry value is five. If the client dispatch application 200 reaches a maximum retry value, an error message is sent to the user 110 notifying the user that an Error has occurred and to try reconnecting or registering again. This error message comprises a part of the “True” path output of the “Quit?” decision block.
  • It will be understood that registration procedure 400 may be designed to have an alternate process of prompting the user 110 to use an alternate Adapter or Protocol and then retry where such an alternate process may be deemed appropriate.
  • If other users (sub-users) are permitted to access the network under this initial user's authority, such as other family members, the registration process for these other users can be started during a regular use procedure 500 described in connection with FIG. 5. Upon completion of a user's initial registration, the user's network access display device will display an Electronic Registration Number (ERN) which, with other personal security information, can be used later to refresh a system as described below.
  • The registration procedure 400 also allows users registered with the access service 106 to temporarily use a computer or other network access device or permanently use a secondary network access device by using a refresh function which bypasses the standard registration form screens by asking the user if they have already registered. If the user has previously registered, the refresh process of the registration procedure 400 will connect, communicate with the access service 106 and download all the user information sent during the user's initial registration and the client dispatch application 200 will update the appropriate databases (204, 206, 208, 210) on the user's network access devices storage system.
  • Now referring to FIG. 5, there is illustrated a flow diagram of a regular use procedure 500 of the client dispatch application 200. The regular use procedure 500 is enabled after a user 110 has both installed client dispatch application 200 on a particular computer system or other network access device and registered with the access service 106.
  • The regular use procedure 500 functions to connect a user 110 to the network 100 using a login and password access which is transparent to the user 110. This is accomplished by reading the network services database 206 for login information such as the user PAP ID and PAP password as shown in the “Read NS.db” block. After reading the necessary information from the network services database 206 and prior to the user 110 logging onto the network 100, the user 110 is given an opportunity to change the user's dial-in Location if the user 110 is using a modem as an Adapter, as illustrated by the “Change Location” decision block. If the Adapter is a modem, and the user 110 desires to change locations, the user 110 is presented with a “chooses a location” form that may be identical to one seen by the user 110 during registration. The “chooses a location” form allows the user 110 to select a local dial-in location from pull down menu selections based on Country, State or Province, and City selections for a given ISP 102 for which the user PAP ID and PAP password are valid. After the user 110 selects the proper dial-in location, the phone database 204 is read to determine what dial-in phone number to use.
  • If a given location has multiple dial-in phone numbers, a dial-in number is selected based upon attributes that are read from the phone database, user db, network services database 206 or any combination thereof as part of the “Dial & Connect” block. As discussed elsewhere, and in particular in connection with FIG. 3, such attributes include Installation dial-in numbers (dial-in phone numbers which are only available during Installation or testing), Registration Dial-in Numbers (phone numbers and locations which appear to a user during registration), Sequence Numbers (a prioritized list of phone numbers which shall be tried in sequential order to produce the highest probability of connection), Available ISP numbers (phone numbers of a given ISP's modems), Currently Valid Numbers (phone numbers which are currently valid for use by a given users), or any combination of the aforementioned.
  • After the user 110 establishes a connection to the access service 106, a “pinger” function is initiated as discussed previously. The pinger function causes the client dispatch application 200 to transmit header information to the access service 106, as set forth in the “Send Information To Server (Pinger)” block. The header information may include a Unique Identification string for the user (user ID, PAP ID, etc.), a unique computer identification string (IP address, etc.), time stamp information, and revision information for the client dispatch application 200 and databases 204, 206, 208, 210, as described earlier. After receipt, the access service 106 reviews the header information to determine what, if any, updates are required to be made to the user client's dispatch application, databases, or network access devices operating system. Such updates may include: new dial-in locations, new identification information such as PAP IDs, network authentication passwords such as PAP passwords, other IDs, other passwords, change of phone numbers, change of area codes, low cost ISP, dial-in location priority sequence numbers, or any combination thereof, or any other information relating to gaining access to the ISP 102. If any updates are required, these are supplied by the access service 106 and any necessary updates will take place transparent (automatic while the user is logged on) to the user 110 as part of the “True” process path emanating from the “Transparent Update Required?” decision block. If such updates require user intervention, such as rebooting the user's computer, the user 110 will be notified prior to the update and/or prior to a reboot as part of the “Notify User to Restart” block. Updates which require a lot of time, may span multiple log-ins (to the network 100) by the user 110 with partial updates being performed until the full completion of the update. The partial updates will take place when the users system is connected but idle and/or during a “pinger/heartbeat” function.
  • Now referring to FIG. 6, there is illustrated a flow diagram of a manual update procedure 600 of the client dispatch application 200. The manual update procedure 600 provides a mechanism for a user 110 to manually recover, change, modify or update the client dispatch application 200 and the databases 204, 206, 208, 210. This capability is useful for ISPs managing customers with billing issues, as well as for servicing customers with special system configuration issues.
  • The manual update procedure 600 initiates and makes a network connection using a special set of log-in information defined herein as the “Manual Update PAP ID and PAP password” (the manual update PAP ID and PAP password, including the Installation, Multi-dial and Test PAP IDs and PAP passwords are incorporated into the user's installed client dispatch application 200 as part of the network services database 206 and are not easily accessible to the user 110). If a connection is not immediately obtained, the adapter and protocol checking is completed as set forth in connection with the previous FIGURE (and description thereof) and as set forth in this flow diagram, via the “False” path output of the “Connected?” decision block. Once the connection is established, either via the “LAN” path from the “Which Adapter” decision block or the “False” path from the “Busy?” decision block, the “pinger” function is initiated as indicated by the “Send Pinger Information to Server” block. If there already is a connection, the “True” path is followed from the “Connected?” decision block.
  • Once communication is established by the client dispatch application 200 with the access service 106, pinger header information, any special database update request, and the like, etc. is transmitted from the client dispatch application 200 (generated from the network services database 206 and/or the user database 210) to the access service 106, as shown by the “Send Update Request to Server”, in order to establish the identity of the user 110 and system that is requesting an update of information from the access service 106. The access service 106 uses this update request information to generate any updated information which is needed to update a specific user, group of users, a specific network access device such as the computer, a group of computers, or any combination thereof and sends any required information back to the user 110 to update the appropriate databases 204, 206, 208, 210 or Registry or INI, Adapter, and/or Protocol files 212, 214, 216 (operating system files). Upon completion of the update, the client dispatch application 200 disconnects the user 110 from the network (breaks the network connection) and if appropriate, the user 110 will be notified that the network access devices operating system must be rebooted in order for the update to take effect.
  • Now referring to FIG. 7, there is illustrated a flow diagram of a multi-dial procedure 700 of the client dispatch application 200. The multi-dial procedure 700 provides the access service 106 with a mechanism to control access by a user 110, a group of users, a computer, a group of computers, a local area network (LAN) of computers, or any combination thereof, to the Internet 100, based upon any one of the following seven sub-function attributes: Cost, Availability, Reliability, Location, Busy-Sequence, Service Selected, or Single Dial/Multi-Login. The multi-dial procedure 700 is initiated by one of the other primary procedures 300, 400, 500, 600 (see FIGS. 3 through 6) of the client dispatch application and/or by a multi-dial procedure tag programmed into the network services database 206.
  • When the multi-dial procedure 700 is initiated in response to a busy signal received during operation of one of the other primary procedures 300, 400, 500, 600 and the multi-dial procedure tag is enabled in the network services database 206, the multi-dial procedure 700 initiates a Busy-Sequence sub-function. The Busy-Sequence sub-function initiates one of the other multi-dial procedure sub-functions, re-dials the same dial-in number before initiating one of the other multi-dial procedure sub-functions, or dials a new dial-in number identified in the next sequential “area” location from a list of area locations available, all in response to database information based on the user's selected plan. The list of “area locations available” is based on the type of service plan (also found in the network services database 206) subscribed to by the user 110 and/or on PAP IDs and PAP passwords stored in the network services database 206. If the user 110 has chosen to subscribe to a higher cost plan, multiple PAP IDs and PAP passwords for multiple ISPs 102 may be stored in the network services database 206 (certain locations may only have a single ISP). As a result, a list of available dial-in locations may contain one or more dial-in numbers from one or more ISPs 102. Alternatively, multiple ISPs 102 may have PAP ID and PAP password sharing agreements allowing a single user PAP ID and PAP password entry in the network services database 206 to generate a dial-in location list from multiple ISPs 102. In any case, the Busy-Sequence sub-function sequentially attempts to make a connection to an ISP 102 at each location until either a successful connection is made or the user 110 aborts the connection attempt.
  • When the multi-dial procedure 700 is initiated for any reason other than a busy signal, the client dispatch application 200 reconfigures or reinstalls the system configuration adaptor and protocol information necessary for network connection. Thereafter, based on data in network services database 206, it is determined whether or not to initiate a connection attempt to the Internet 100 using a pre-defined dial-in number or location. If a connection is desired using a predefined dial-in number or location, the multi-dial procedure 700 uses one of four types of possible PAP IDs and PAP passwords. These types are defined as a “multi-dial PAP ID and PAP password”, a “group PAP ID and PAP password”, a “user PAP ID and PAP password”, and a “test PAP ID and PAP password.”
  • When both the “pre-defined dial-in number” entry and a “General Use” entry are enabled in the network services database 206, a general use connection to the Internet 100 is established using either the “group PAP ID and PAP password” or the “user PAP ID and PAP password”. When the “pre-defined dial-in number” entry is enabled and the “General Use” entry is disabled, then the multi-dial procedure 700 establishes a connection to the Internet 100 using either the “multi-dial PAP ID and PAP password” or the “test PAP ID and PAP password”. In either case, the user's dial adaptor (modem) is configured with the ISP-specific access information associated with the predefined dial-in number. After proper configuration, the client dispatch application 200 automatically dials and attempts connection to the ISP 102. If the line is busy, it is determined whether an alternate dial-in number should be used. If an alternate number is not to be used, the dial and connect is retried with the previous dial-in number. If an alternate number is to be used, the alternate dial number is read from the phone database 204 and the user's dial adaptor (modem) is configured with the ISP-specific access information associated with the alternate dial-in number.
  • Upon successful connection, if the connection is not a “general use” connection, the Service Selected sub-function is initiated (a double dial procedure). If the connection is a “general use” connection, the client dispatch application 200 transmits pinger header information to the access service 106. In response, the access service 106 transmits information to the user 110 (client dispatch application 200). The multi-dial procedure 700 determines from this received information whether a transparent update is needed (i.e., update information in the database(s) without user intervention). If so, the client dispatch application 200 updates the database(s) and determines whether a disconnect is required. If not, the user 110 continues regular use until disconnected by some other means. If so, the user 110 is notified and may be given the option to choose to disconnect or may be forced to disconnect.
  • If after a connection is made and the user 110 has used a PAP ID and PAP password that is used by another in order to establish the user 110 connection, then the access service 106 updates the user's database(s) (possibly with a new and valid PAP ID and PAP password) and the client dispatch application 200 either disconnects the user 110 (and notifies the user 110 that the PAP ID is not valid) or allows the user 110 to stay connected (if the user 110 has received a new and valid PAP ID). This particular process also applies to the regular use procedure 500 (see FIG. 5).
  • In the preferred embodiment, when a “pre-defined dial-in number” entry in the network services database 206 is disabled, then the multi-dial procedure 700 executes one or more of the seven sub-functions in response to entries in the network services database 206.
  • The Service Selected sub-function reads pinger header information from the network services database 206 and the user database 210 and sends this information in a data message to the access service 106 (to the network server/database 220). The access service 106 uses the information to generate database updates (including new PAP ID, etc.) which may or may not assign, reassign, or update ISPs, dial-in locations, PAP IDs and PAP passwords, dial-in numbers, network routing information, Adapters, Protocol, or any other information stored in the databases 204, 206, 208, 210. Such database updates are then transmitted to the user 110 and the client dispatch application 200 to update the appropriate database 204, 206, 208, 210. After the database information is updated, the user 100 is disconnected, and the Regular Use primary procedure is initiated using the updated information received from the access service 106.
  • The “Low Cost” sub-function obtains information from both the network services database 206 and the phone database 204 and determines which ISP 102 and what locations (dial-in phone numbers for local access) have the lowest priced service for a given user's dial-in location. The lowest cost sub-function next determines if the user's PAP ID and PAP password stored in network services database 206 are valid (compare the current user's PAP ID and PAP password with the user's currently selected dial-in location) for the ISP 102 that provides the low cost connection point-of-presence at the user's location. If the user PAP ID and PAP password are valid, the network connection sequence will dial and connect as described in the regular use procedure 500. If the user PAP ID and PAP password are invalid then this sub-function will initiate the manual update procedure 600 requesting from the access service 106 a valid user PAP ID and PAP password for the ISP's dial-in network at the user selected location. Then, the network connection sequence will dial as described in the regular use procedure 500.
  • The “Reliability” sub-function obtains information from both the network services database 206 and the phone database 204 and determines which ISP 102 and what locations (dial-in phone numbers for local access) have the highest reliability of connecting the user to the Internet 100. This determination is based upon prior data (reliability data) transmitted to the client dispatch application 200 from the access service 106 that is used to update the user databases. This data transmission occurs during a previous session when the user 110 is connected to the Internet 100. The reliability data is transferred by the access service 106 to the users 110 who have a reliability entry enabled in their network services database 206. The reliability sub-function next determines if the user PAP ID and PAP password stored in the NS.db are valid (compare the current user's PAP ID and PAP password with the user's currently selected dial-in location) for the ISP that provides the highest reliability at the selected location. When the user PAP ID and PAP password are valid, the network connection sequence will dial and connect as described in the regular use procedure 500. When the user PAP ID and PAP password are invalid, then this sub-function will initiate the manual update procedure 600, as described in connection with FIG. 6, requesting from the access service 106 a valid user PAP ID and PAP password for the ISP's dial-in network at the user selected location. Then, the network connection sequence will dial as described in the regular use procedure 500 of FIG. 5.
  • Reliability refers to the ability to reliably connect on a first or second attempt (availability) and the ability to stay connected for a substantial period of time without disconnection, due mainly because of line noise problems, faulty equipment, etc. (integrity). Availability information used to determine availability of various ISPs 102 (and dial-in numbers) may include at least three types of information. The first type of information includes availability information that is received by the access service 106 from the ISPs 102 themselves (typically updated periodically). The second type of information includes information in a client histogram (client specific) that is generated by the client dispatch application 200 of the user 110. Over an extended time during which the user 110 makes more and more connections to the Internet 100 (via an ISP 102), the client dispatch application 200 keeps track of the times a connection is made on the first try, second try, etc. for each dial-in phone number (and/or ISP) used by the user 100. From this, a client-specific histogram is generated that contains information about the past history of the user's connections. The third type of information includes information in a server histogram that is generated by the access service 106. The access service 106 tracks and stores information relating to all ISPs 102 and dial-in numbers regarding past history connections. See also, the description set forth below in the availability sub-function description. As will be appreciated, the reliability sub-function may use any one of the types of availability information, or combination thereof, for determining the dial-in number (or multiple numbers in priority) that will provide the user 110 with a high reliability connection.
  • With respect to the integrity information used to determine the integrity of the various ISPs 102 (and dial-in numbers), there are at least two types of information. The first type of information includes information received via technical support inquiries to the access service 106 by the users 110. If the access service 106 receives a call (or calls) from users 110 regarding faulty lines and/or premature disconnects, this information can be tabulated and stored for determining integrity. Since the access service 106 stores data relative what ISP(s) 102 (and dial-in number(s)) a particular user 110 has been using (through information in the access service 106 database gained through the pinging or heartbeat process—described earlier), the access service 106 can determine which ISP(s) 102 (and/or dial-in number(s)) have relatively high and/or low integrity. In response to this information, the access service can update the user's databases with this information. The second type of information includes information automatically gathered by the access service 106 that includes a history of the number of users, how long each has been connected, and what ISP(s) 102 (and/or dial-in number(s)) to which each user has been connected (through information in the access service 106 database gained through the pinging or heartbeat process described earlier). The access service 106 can transmit the integrity data to the user 110 for use by the reliability sub-function of the client dispatch application 200. As will be appreciated, the reliability sub-function may use any one of the types of integrity information, or combination thereof, for determining the dial-in number (or multiple numbers in priority) that will provide the user 110 with a high reliability connection.
  • From a combination of the availability information and the integrity information, the reliability sub-function determines the dial-in number (or multiple numbers in priority) that will provide the user 110 with high reliability connection.
  • The “Location” sub-function obtains information from the phone database 204 and determines all the dial-in phone numbers available to a user 110 from a selected location. The location sub-function generates a list of “surrounding area” locations into which user 110 may dial. The user 110 then selects a dial-in number from this list. The location sub-function next determines if the user PAP ID and PAP password stored in the network services database 206 are valid (compare the current user's PAP ID and PAP password with the user's currently selected dial-in location) for the ISP 102 in which the user's computer will dial into the selected location. When the user PAP ID and PAP password are valid, the network connection sequence will dial and connect as described in the regular use procedure 500. When the user PAP ID and PAP password are invalid, this sub-function will initiate the manual update procedure 600 requesting from the access service 106 a valid user PAP ID and PAP password for the ISP's dial-in network at the user selected location. Then, a network connection sequence will dial as described in the regular use procedure 500 of FIG. 5.
  • The “Availability” sub-function generates a dial-in location (number) list based upon user PAP IDs and PAP passwords stored in the network services database 206 and the type of service plan (also found in the network services database 206) to which a user 110 has subscribed. If a user 110 has chosen to subscribe to a higher cost plan, multiple PAP IDs and PAP passwords for multiple ISPs 102 may be stored in the network services database. Accordingly, the list of available dial-in locations may contain one or more (multiple) dial-in numbers from one or more (multiple) ISPs 102. Alternatively, multiple ISPs 102 may have PAP ID and PAP password sharing agreements allowing a single user PAP ID and PAP password entry in the network services database 206 to generate a dial-in location list from multiple ISPs 102.
  • As will be appreciated, the availability sub-function utilizes the same type of availability information as described above in the reliability sub-function.
  • The availability sub-function utilizes one or more methods or the service selected sub-function to increase the probability that the user 110 at a given location will successfully connect on the first try. This functionality is based upon historical data (Histogram data) or real time data supplied by an ISP to the access service 106. The historical data may include two types of data—Client Histogram data or Server Histogram data. To accomplish the availability function, the Server Histogram data, Client Histogram data, or the service Selected sub-function is utilized, or any combination thereof is utilized, as desired.
  • The Client Histogram data is based upon connection history of the user 110. The Client Histogram data is not as beneficial, as other data, until a particular user 110 has consistently established a network connection (to the Internet 100) for a period of time sufficient to create a meaningful histogram. It has been determined that a period of at least ninety days is sufficient if a user accesses regularly. After a sufficient period of time, a Client Histogram can be built to determine the probability of success of the user 110 connecting to the network the first time. This minimizes the necessity of having the client dispatch application 500 perform a second dial-attempt to connect to the network 100.
  • The Server Histogram data is based upon the connection history of each particular ISP 102 and its dial-in numbers. This information is stored in the access service 106 in response to the monitoring of all the users 110 (through the “pinging” process). The Server Histogram data is transmitted to the user's network services database 206 upon any connection to the network 100 when the availability sub-function is enabled within the client dispatch application 200.
  • In the preferred embodiment, the Server Histogram data is normally used in conjunction with the Client Histogram data (when appropriate) to determine the highest probability of success of connecting to the network 100 without a second dialing attempt. Accordingly, upon the user 100 initiating a connection to the network 100, the client dispatch application 200 automatically selects a dial-in phone number that it has determined to have a high probability of success for connection. Thus, the Client Histogram data and the Server Histogram data are used to facilitate a statistical approach to determine the highest probability of a user 110 connecting to the network on the first attempt.
  • However, there may be times when a user 110 desires a very high confidence (near 100% or 100%) connection, or the Histogram data is not desired to be used, such as when the data for a particular area is unreliable (i.e. certain geographic areas may have insufficient telecommunications infrastructure that may skew the data) and therefore possibly useless. In these cases the service selected sub-function is initiated and a “double dial” process takes place (see FIG. 7 and the description of service selected sub-function). In the service selected sub-routing, availability information of ISPs 102 is used by the access service 106 to give the user 110 a dial-in number that is available. This availability information for the ISPs 102 is periodically transmitted or given to the access service 106, typically every five minutes. The “double dial” process is also exemplified in FIG. 7 and the accompanying text.
  • The last sub-function of the multi-dial procedure 700 is the “Single-dial Multi-Login” sub-function. Initiation of the single-dial/multi-login sub-function requires a “multi-dial” attempt only when the user 110 receives a busy signal; otherwise this sub-function is a single-dial function with a multiple PAP ID and PAP password assignment/reassignment function. This function (the assignment/reassignment) requires that all user (client) 110 authentication for all ISPs 102 happens at the access service 106 (i.e., all authentication for all ISPs is centralized) or at a centrally located database point. Thus, this function works with multiple ISPs 102 when each allows user authentication to take place at a centrally located server independent of each ISP's own user authentication server. For example, an ISP that has its own Authentication Server, and who resells the underlying ISPs modem access to a user 110, may support this function by allowing a user 110 to dial and connect using an “Initial Access PAP ID and PAP password”, then assigning a unique session PAP ID and PAP password and “re-logging” into the Authentication server without disconnecting the user 110. This eliminates the time that would otherwise be required to disconnect and re-dial using a newly assigned PAP ID and PAP password.
  • The client dispatch application 200 also functions to provide users 110 with network identity anonymity. That is, the architecture of the client dispatch application 200 provides anonymity for users 110 during access to the network 100 as IDs and passwords (such IDs and passwords would include PAP IDs and PAP passwords, Email IDs and Email passwords, NEWS IDs and NEWS passwords, FTP and Web Space IDs and passwords, and custom network application IDs and passwords) can be dynamically reassigned for a given user, a given system, a given group of users, a given group of systems, or any combination thereof. Thus, if a user 110 has three computer systems (A_Computer, B_Computer, and C_Computer) each requires a unique user/system identification which is generated during installation and registration and stored in the client's network service database 206 and/or the user database 204. This unique user/system identification allows the access service 106 to maintain unique and independent IDs and passwords for the user/system pair. Thus, when a user 110 connects the A_Computer to the network, unique IDs and passwords which may be distinctly different from the B_Computer and C_Computer's IDs and passwords (stored in the network services database 206 and/or the user database 204) may be used to transparently log the user into such things as the network, Email, FTP/Web Space, NEWS groups, Bulletin Boards, or any other application requiring login identification and password. Thus, the architecture supports single life IDs and/or passwords for all network and application logins.
  • Now referring to FIG. 9, there is illustrated a block diagram of a storage medium 900 and a computer 902. The storage medium 900 includes client dispatch application 200 (computer program) and may also include the databases 204, 206, 208, 210. The computer 902 also includes a means (not shown) for reading or downloading the client dispatch application 200 (computer program) into the computer 902 to cause the computer 902 to perform one or more steps in accordance with the principles of the present invention. As will be appreciated, the storage medium 900 may include a floppy or hard disk, magnetic or optical taps; or any other data storage medium known presently or developed in the future for storing a computer program, such as the client dispatch application 200 of the present invention.
  • As will be realized by those skilled in the art of email (electronic mail) sent between parties on a network, email is typically held in a post office box type storage facility at the recipients ISP until retrieved by the recipient. However the ISP typically keeps a copy of the email for a period of time after receipt thereof for various purposes. Many people have the technical capability to access and read these stored messages at the ISP. Even where the message body is encrypted, considerable information may be gleaned over a period of time by keeping track of who is sending messages to whom, the frequency of messages to given parties and data gleaned from the subject matter portion of the header.
  • The structure of the present invention combined with an email program, software plug-in for a standard email program or browser lends itself to a method of minimizing the possibility of unauthorized gleaning of information from email and further minimizes the possibility of spamming where spamming is defined as the sending of large amounts of email to a given recipient for harassment like purposes.
  • One way to minimize the gleaning of information is to send all mail through a third party to recipients. The third party acts as a trusted banker or broker. Such an operation is shown diagrammatically in FIG. 10 where the sender sends the email to a Broker. The broker repackages email as deemed appropriate by agreement with the sender and/or the recipient and sends it on its way. The simplest form is to merely place the entire original message including header information in message body of the email and send the package to the recipient with the recipient also listed as the sender and placing an innocuous subject in the visible header.
  • A next level of security is for either the sender or the broker or both to encrypt the package sent by that party to the next party. This could result in double encryption of the message body. Similar plug-in software comprising part of the recipients email program, software plug-in for a standard email program or browser may be used to decipher the received package and the original email would then be recreated for reading by the recipient. The deciphering may be accomplished by keys transmitted by the pinger entity to the recipients software. As part of this next level of security, the email sent to the broker or third party in a preferred embodiment of this invention has the TO and FROM portions of the visible header listing the broker, has the subject changed to innocuous data and the entire original message encrypted as shown in the drawing.
  • FIG. 11 presents the above process in a slightly different format where a row labeled 1010 illustrates the original message composed by the sender. Either the sender of the plug-in software may then provide a first level of encryption to the data as shown in row 1012. Transparent to the user, the plug-in software then repackages the original message by encrypting the entire message and generating a new header with the third party (here the third party is listed as NetSafe) listed as both the sender and the recipient. The email sent to the broker is labeled 1014. Since the broker is in contact with the data bases in the plug-in software via the pinger entity, the broker may decipher to second layer of encyption to determine the destination address. The broker may then re-encrypt and send the email 1018 if the recipient is also a client of that broker and/or has similar plug-in software in contact with a network pinger. Otherwise, the originally composed, and possibly encrypted, message is sent to the recipient as shown by the labeled message 1020.
  • There may be times that the sender of email may not want the recipient to know the senders true identity or even the network service provider of the sender. Alternatively, the sender may wish to use different aliases or names for different classes of email contacts so that the sender may quickly sort incoming mail into a set of priority stacks. Further the recipient of email in a system using the present invention may have similar requirements. FIG. 12 illustrates a second order anonymity header process for email transmission.
  • In this figure a block 1040 represents a standard header of email composed by the sender. When the sender has completed the email and posts it, the senders email program, software plug-in for a standard email program or browser plug-in intercepts the email and checks the appropriate database. It is determined in block 1042 that for identity “me@other.com” the address “alias@alias.com” should be used. The plug-in software thus creates a new header in substitution for the one composed by the sender and encrypts the entire message including the altered header as shown in the lower portion of block 1046. The software then consults the database represented by block 1048 and determines that the most recent data received from the pinger entity suggests that the network service provider to be used for “other.com” in this instance should be “netsafe.com”. Accordingly, a new anonymous header is prepared in accordance with that shown in block 1046 before the message is forwarded to a third party for retransmission to the recipient.
  • As shown in FIG. 13, the third party or broker receives the email as represented by block 1060 where 1060 is identical to block 1046. The software in the server of the third party, as set forth in block 1062, decrypts the stored header information after noting the form of the visible header information. It is able to do so because the pinger entity that determines the encryption code to be used in the senders encryption process and provides the senders database with the third party to be used, also informs the third party the encryption code to be used for deciphering. This code may be part of the visible message id or may be inserted in the server database of that specific third party. If the recipient has signed up for anonymity service, the server will retrieve from its database a presently assigned alias for the recipient. Whether or not an alias is used for the recipient, the third party server will rebuild the header using an address for the recipient in both the TO and FROM portions of the visible header as shown in block 1064.
  • FIG. 14 presents a block 1070 representing a received email as retrieved from the server storing email for alias.com. This message is identical to the previously designated block 1064. The recipients software checks the database and in accordance with block 1072 deciphers the message and creates the viewable header set forth in block 1074.
  • FIG. 15 shows a sender composed message designated as 1080 and a partial representation of a sender computer stored database 1082 along with a revised message 1084 wherein block 1084 corresponds with previously designated block 1046 in FIG. 12. The software checks the database and notes the subscript 1 for the server listed as “npn.net” in the registered email domain portion of the database. The same subscript is checked under the SECURE/EMAILDOMAIN portion to determine whether or not to encrypt the message, the encryption code whether or not to use a third party and if so the address to be used. As may be observed by the arrow lines, for npn.net, a PGP encryption is to be used, a broker is to be used and the broker listed with a subscript “1” is “netsafe.com”. Thus “netsafe.com” is inserted in the visible header of the message shown as 1084. The database also specifies the public key to be used for the encryption and deciphering processes. The NO in the third to the last line of the illustrated database 1082 provides an indication that the sender wants the recipient to be advised of the senders name as composed on his computer. This is in contradistinction to that shown FIG. 12 previously. When the server 1086 receives the message 1084, it will consult a database similar to that illustrated as 1082 and perform the functions set forth in FIG. 13
  • The generation of software for intercepting a message, consulting a database, altering header data in accordance with the database, encrypting the entire message including the altered header and then creating a new header before sending the entire data package is well within the capability of anyone skilled in the art of network computer programing in view of the presentation in FIGS. 10-15 and the accompanying explanatory material. As will be apparent, the software will be different for each different operating system email program, software plug-in for a standard email program or browser and thus no pseudo code or detailed flow diagram has been presented herein.
  • FIG. 16 provides a simplified example of a button bar, power bar, or tool bar that can be generated using the referenced MOT script language in combination with data retrieved from the data bases. If a client were traveling away from home and accessed the network from New York, this information would be provided to the pinger entity. If the client then logged onto a web page of an airline who was also a client of a service using the present inventive components, the web page could be programed, since data would be available that the clients home was for example Dallas Tex., to immediately bring up a list of all flights leaving New York and bound for other destinations that the client had regularly traveled to in the recent past such as Dallas. The MOT generated bar or graphic in one implementation including a moving display. Such a display may provide advertising or information like ticker tape like stock market data.
  • In FIG. 17, an illustrative commentary is provided of the databases and their contents upon initial installation of software of a new client wishing to access the services of the present invention.
  • In FIG. 18 a selection menu 1102 is representative of a display that would be presented upon a clients system for selecting a test location to initially use the software installed in FIG. 17. The phone database is represented by 1104 while the NS (network services) database is represented by 1106. When the client selects a city in TX such as Plano, the software will note the number “1” at the end of the data of database 1104. In the NS database a “1” is shown to refer to UUNET services. As may be observed, if Garland had been picked, a “2” would have been detected and PSINet services would be used. As shown by arrow line 1108, the software would determine that the test location number is “519”, the PAPID to be used is “nsTEST” and the PAP password is “zzzwww123”. Other data that may be utilized is also contained in the database.
  • In FIG. 19 the clients computer is designated as 1120, the network as 1122, the network access provider as 1124 and the pinger entity as 1126. The test and update procedure is illustrated. The first action is for 1120 to connect through the NAP shown within network cloud 1122 to 1124 using the PAPID and PAP passwork in the NS database for the selected NAP. As set forth in FIG. 18, these values would be “nsTEST” and “zzzwww123”. The NAP 1124 validates or authenticates the ID and password. For security reasons, the test ID and registration ID network connection, in a preferred embodiment of the invention, is limited to 90 seconds. The system 1120 initiates a full network protocol test to the pinger 1126 by sending information about the client's system (1120) and the software revision installed therein. As will be realized, the installed database includes the address of an appropriate pinger 1126. The pinger 1126, after receiving the information, performs minimal processing on the received data and sends back any update information such as DNS changes, Phone number updates and the like. The pinger may then send back some static information as well as any further update information that the system 1120 may require. The client software in 1120 checks the static information received, validates a reliable connection and then processes any update information for storage in an appropriate location(s).
  • FIG. 20 is presented to help in the description of client registration. The clients system 1150, connects to an NAP in the network 1152 using the registration PAPID and PAP password stored in the NS database for a selected NAP as provided in the originally installed software. Such data may be found in the appendix A NS database in the appropriate lines RAM/ACCT/REG. The authentication portion of the NAP (1154) validates the PAPID and PAP password so that the client 1150 may communicate with a pinger entity such as 1158. (Although the preferred embodiment of the invention has the client 1150 send a registration request to pinger 1158 to provide further “security by obscurity”, the registration request can be made directly to a registration and authentication server such as 1156 if so desired and thus proceed directly to a later portion of this paragraph description.) When pinger 1158 receives the registration request, it returns addressing, ID and password information to client 1150. This information will normally have a single life (that is it may only be used once) since the inventive system is designed to continually change passwords and other data such as addresses. With this information, the client 1150 may now initiate a registration request to the server 1156 as referenced above. The server 1156 processes the users supplied information and issues a unique authentication token, a temporary PAPID and PAP password and/or a permanent PAPID and PAP password in accordance with system design. In an alternate embodiment, only a unique authentication token may be issued wherein the software in client 1150 is required to obtain the PAPID and PAP password from a pinger such as 1158. This supplied user registration information is stored in an appropriate database in 1156 for later authentication purposes. It may be noted that blocks 1156 and 1158 may share the same physical hardware but may also be remotely located and be interconnected via the network.
  • FIG. 21 is similar to FIG. 20 in having a client system 1180, a network 1182, a NAP authentication entity 1154, and a pinger entity 1186. In addition an optional PAP ID server 1188 is illustrated connected to the blocks 1184 and 1186. This connection may be through the network or direct as illustrated in the drawing. A further plurality of blocks representing at least a web server 1190, an email server 1192 and a commerce server 1194 are shown connected to the network and directly to pinger 1186. When operating in a general or anonymous access mode, the client 1180 connects to a NAP within network 1182 using a PAPID and PAP password assigned and stored in the NS database for a selected NAP. The NAP validates the ID and password via block 1184. Once connected, client 1180 initiates a “Network Presence Notification” to the appropriate pinger such as 1186. If the client 1180 is set in a selectable “Anonymous Mode” the “Network Presence Notification” will include a request for a new alias along with revised PAPID and PAP password data for use in the next network login attempt.
  • When the pinger 1186 receives the notification, the date and time of receipt in logged along with the clients authentication token and the network address assigned to the client 1180 by the selected NAP. The pinger 1186 returns a response which may, from time to time, include a new authentication token in addition to data requested when the client is in the “Anonymous Mode”. It should be noted that the pinger entities such as 1188 may be used to facilitate “Client side Authentication” when used in conjunction with servers such as 1190, 1192 and 1194 as examples. The client, or others attempting to access the system, does not have access to the information contained in any of the client databases and the client and others cannot spoof a commerce server into believing that a transaction is originating somewhere else or by someone else.
  • From the above discourse, it may be appreciated that the various databases residing at the access provider and each of the clients systems along with a script language such as MOT and the two way communication between clients and an access provider permits dynamic or constantly changeable network access and encryption parameters to minimize the possibility of unauthorized access to the network access provider or its clients communications. This is accomplished by:
  • 1 Dynamic network login ID and password;
  • 2 Dynamically assigned network address;
  • 3 Dynamically assigned resource user Ids, passwords and so forth;
  • 4 Dynamic encryption algorithm use; and
  • 5 Dynamic encryption key generation and use.
  • With respect to item 1 above, since a user's network login and password change periodically transparent to the user client and they are hidden from the user so as to be not accessible by the user, network fraud and abuse may be significantly reduced. Further the dynamic assignment process allows the login access to be different from system to system. Since the physical address of a server can be changed on any random or periodic basis, Item 2 causes a significant reduction in the risk of service attacks, network lockouts and unauthorized access to data. The dynamic assigning and reassigning of email alias as occurs in accordance with Item 3 significantly reduces the risk of unauthorized viewing of a given clients email messages. The changing domain aliases minimizes the risk of denial of access service while the dynamically generated and authenticated session IDs for network commerce reduces the risk of fraud.
  • In addition to the above discussion and description, the present invention is also described and disclosed in Appendices A, B and C which are hereby incorporated by reference.
  • Although the invention has been described with reference to a specific embodiment, these descriptions are not meant to be construed in a limiting sense. Various modifications of the disclosed embodiments, as well as alternative embodiments of the invention will become apparent to persons skilled in the art upon reference to the description of the invention. It should also be noted that while terms such as “network device user” may be used to describe a single client, it may also be used to describe a network of users having a common factor such as an employer. It is therefore, contemplated that the claims will cover any such modifications or embodiments that fall within the true scope of the invention.

Claims (20)

What is claimed is:
1. A method of connecting a computing device to the Internet by way of a plurality of Internet service providers, each Internet service provider (ISP) having different ISP-specific access information, the method comprising:
providing the computing device access to the Internet by way of a first ISP;
based on a need of the computing device to select a second ISP, procuring ISP-specific access information for the second ISP;
storing the ISP-specific access information of the second ISP in memory on the computing device; and
using the ISP-specific access information of the second ISP to access the Internet by way of the second ISP.
2. The method of claim 1, wherein the need is due to the computing device moving to a different geographic location.
3. The method of claim 1, further comprising disconnecting the computing device access to the Internet by way of the first ISP while maintaining access to the Internet by way of the second ISP.
4. The method of claim 1, wherein the ISP-specific access information comprises one or more keys for encoding messages to the second ISP.
5. The method of claim 1, wherein the ISP-specific access information comprises one or more authentication protocol identifiers.
6. The method of claim 1, further comprising selecting the second ISP based on at least one member of a group comprising cost and availability associated with network service provided by the second ISP.
7. The method of claim 1, wherein the ISP-specific access information is procured from a network access provider.
8. The method of claim 7, further comprising establishing a point-to-point connection with the first ISP.
9. The method of claim 1, wherein the ISP-specific access information comprises at least one member of a group comprising a PAP ID and a PAP password.
10. The method of claim 1, further comprising updating a database maintained in the memory with received access information associated with the second ISP.
11. A method of enabling a user to gain access to the Internet by way of a network of a plurality of different Internet service providers, each Internet service provider (ISP) having respectively different ISP-specific access information to enable user Internet access, an access service provider entity in bidirectional communication through the Internet with said user, the method comprising:
the user communicating with said access server provider, through the Internet, an intent to access the Internet by way of one of said Internet service providers;
the user receiving from said access service provider, through the Internet, the ISP-specific access information associated with said one Internet service provider; and
the user accessing the Internet by way of said one Internet service provider after being authenticated by either the said one Internet service provider or the access service provider.
12. The method of claim 11, wherein the user communicating with said access service provider is initiated based on a change in geographic location of the user.
13. The method of claim 11, wherein the ISP-specific access information comprises one or more passwords.
14. The method of claim 11, wherein the ISP-specific access information comprises one or more keys for encoding messages.
15. The method of claim 11, wherein said intent to access the Internet comprises a message that includes at least one member of a group comprising:
a PAP ID associated with a user device,
time stamp information, and
version information associated with a client dispatch application on the user device.
16. The method of claim 11, further comprising the user selecting another ISP based on cost and availability.
17. A method of providing a user access to the Internet by way of a plurality of different Internet service providers, each Internet service provider (ISP) having respectively different ISP specific access information to enable user Internet access, the method comprising:
providing a user device in bidirectional communication, through the Internet, with an access server provider; and
using the user device to receive from the access server provider, through the Internet, the ISP-specific access information associated with one of the Internet service providers.
18. The method of claim 17 in which the access server provider is in bidirectional communication, through the Internet, with at least said one Internet service provider, and having the ISP-specific access information associated with said one Internet service provider.
19. The method of claim 17, in which the user's right to access the Internet has been authenticated.
20. The method of claim 19, in which the authentication by either the Internet service provider or the access service provider.
US13/871,432 1997-06-19 2013-04-26 Method of connecting a device to a network using different service providers Abandoned US20130247157A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US13/871,432 US20130247157A1 (en) 1997-06-19 2013-04-26 Method of connecting a device to a network using different service providers

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US5018697P 1997-06-19 1997-06-19
US09/100,619 US6571290B2 (en) 1997-06-19 1998-06-19 Method and apparatus for providing fungible intercourse over a network
US10/417,756 US8516132B2 (en) 1997-06-19 2003-04-16 Method of accessing a selected network
US13/871,432 US20130247157A1 (en) 1997-06-19 2013-04-26 Method of connecting a device to a network using different service providers

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US10/417,756 Continuation US8516132B2 (en) 1997-06-19 2003-04-16 Method of accessing a selected network

Publications (1)

Publication Number Publication Date
US20130247157A1 true US20130247157A1 (en) 2013-09-19

Family

ID=46282241

Family Applications (4)

Application Number Title Priority Date Filing Date
US10/417,756 Expired - Fee Related US8516132B2 (en) 1997-06-19 2003-04-16 Method of accessing a selected network
US13/871,409 Expired - Fee Related US9137240B2 (en) 1997-06-19 2013-04-26 System and method of accessing a network by way of different service providers
US13/871,432 Abandoned US20130247157A1 (en) 1997-06-19 2013-04-26 Method of connecting a device to a network using different service providers
US14/853,849 Expired - Fee Related US10135878B2 (en) 1997-06-19 2015-09-14 Method for accessing a digital network by way of one or more Internet service providers

Family Applications Before (2)

Application Number Title Priority Date Filing Date
US10/417,756 Expired - Fee Related US8516132B2 (en) 1997-06-19 2003-04-16 Method of accessing a selected network
US13/871,409 Expired - Fee Related US9137240B2 (en) 1997-06-19 2013-04-26 System and method of accessing a network by way of different service providers

Family Applications After (1)

Application Number Title Priority Date Filing Date
US14/853,849 Expired - Fee Related US10135878B2 (en) 1997-06-19 2015-09-14 Method for accessing a digital network by way of one or more Internet service providers

Country Status (1)

Country Link
US (4) US8516132B2 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8732318B2 (en) 1997-06-19 2014-05-20 Mymail, Ltd. Method of connecting a user to a network
US20140274407A1 (en) * 2013-03-12 2014-09-18 Ciinow, Inc. Mechanism for implementing cloud local area network party service for multi-player content/game environment
US9137240B2 (en) 1997-06-19 2015-09-15 Mymail, Ltd. System and method of accessing a network by way of different service providers
US9935814B2 (en) 1997-06-19 2018-04-03 My Mail Ltd. Method of obtaining a network address

Families Citing this family (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8990366B2 (en) * 2003-12-23 2015-03-24 Intel Corporation Method and apparatus for remote modification of system configuration
KR101021277B1 (en) * 2004-02-06 2011-03-11 삼성전자주식회사 Method of processing data service of network including wireless public network and private network and system thereof
US20050228890A1 (en) * 2004-04-09 2005-10-13 Brian Lawrence System for managing operating sessions of an executable application
CA2565360C (en) * 2004-04-30 2012-01-10 Research In Motion Limited System and method for securing data
US7840695B2 (en) * 2005-03-25 2010-11-23 Microsoft Corporation Capacity management
US9832661B2 (en) * 2005-03-25 2017-11-28 Microsoft Technology Licensing, Llc Access point management
US8825895B2 (en) * 2005-03-25 2014-09-02 Microsoft Corporation Access point capacity management
EP1889190A1 (en) * 2005-06-03 2008-02-20 Thomson Global Resources Pay-for-access legal research system with access to open web content
US20070020451A1 (en) * 2005-07-20 2007-01-25 3M Innovative Properties Company Moisture barrier coatings
US20090216678A1 (en) * 2008-02-25 2009-08-27 Research In Motion Limited System and method for facilitating secure communication of messages associated with a project
US20110137980A1 (en) * 2009-12-08 2011-06-09 Samsung Electronics Co., Ltd. Method and apparatus for using service of plurality of internet service providers
US9904777B2 (en) 2011-09-14 2018-02-27 Mobile Heartbeat, Llc System for automated login initialization on detection of identification device
CN103176805B (en) * 2011-12-21 2017-09-19 富泰华工业(深圳)有限公司 The method and system that executable program is installed
US10148764B2 (en) * 2014-09-30 2018-12-04 Google Llc Backup wide area network connection for access points and routers
CN108710685A (en) * 2018-05-21 2018-10-26 中国联合网络通信集团有限公司 The determination method and device of target object confidence level
US11540119B2 (en) * 2020-02-06 2022-12-27 Wiliot, LTD. System and method for providing secure and reliable communication over a low-energy wireless communication protocol
US20220337571A1 (en) * 2021-04-16 2022-10-20 Paypal, Inc. Verification of unique alias values across network regions

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5815665A (en) * 1996-04-03 1998-09-29 Microsoft Corporation System and method for providing trusted brokering services over a distributed network
US5862339A (en) * 1996-07-09 1999-01-19 Webtv Networks, Inc. Client connects to an internet access provider using algorithm downloaded from a central server based upon client's desired criteria after disconnected from the server
US5881234A (en) * 1996-04-26 1999-03-09 Schwob; Pierre R. Method and system to provide internet access to users via non-home service providers
US6208857B1 (en) * 1996-11-04 2001-03-27 Qualcomm Incorporated Method and apparatus for performing position-and preference-based service selection in a mobile telephone system

Family Cites Families (251)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3825693A (en) * 1972-09-25 1974-07-23 Tele Resources Inc Time division multiplex branch exchange
US4529870A (en) * 1980-03-10 1985-07-16 David Chaum Cryptographic identification, financial transaction, and credential device
US4430702A (en) 1980-05-12 1984-02-07 Control Data Corporation Network access device
US4470417A (en) 1982-02-10 1984-09-11 Surgical Appliance Industries, Inc. Heat therapy orthosis
US4825354A (en) 1985-11-12 1989-04-25 American Telephone And Telegraph Company, At&T Bell Laboratories Method of file access in a distributed processing computer network
EP0233682A2 (en) 1986-02-14 1987-08-26 AT&T Corp. Data network controller
US4885578A (en) 1986-12-12 1989-12-05 International Business Machines Corporation In band connection establishment for a multiple multi-drop network
GB2203573A (en) 1987-04-02 1988-10-19 Ibm Data processing network with upgrading of files
US4757267A (en) 1987-06-17 1988-07-12 Applied Telematics, Inc. Telephone system for connecting a customer to a supplier of goods
US5021949A (en) 1988-02-29 1991-06-04 International Business Machines Corporation Method and apparatus for linking an SNA host to a remote SNA host over a packet switched communications network
US4992783A (en) 1988-04-04 1991-02-12 Motorola, Inc. Method and apparatus for controlling access to a communication system
CA1337132C (en) 1988-07-15 1995-09-26 Robert Filepp Reception system for an interactive computer network and method of operation
US5155847A (en) 1988-08-03 1992-10-13 Minicom Data Corporation Method and apparatus for updating software at remote locations
US5115501A (en) 1988-11-04 1992-05-19 International Business Machines Corporation Procedure for automatically customizing the user interface of application programs
EP0396834B1 (en) 1989-05-12 1995-08-30 International Business Machines Corporation Version-control in a data-processing system
US5263165A (en) 1990-02-15 1993-11-16 International Business Machines Corporation System for providing user access control within a distributed data processing system having multiple resource managers
US5150464A (en) 1990-06-06 1992-09-22 Apple Computer, Inc. Local area network device startup process
EP0463251A1 (en) 1990-06-28 1992-01-02 International Business Machines Corporation Software installation
CA2048306A1 (en) 1990-10-02 1992-04-03 Steven P. Miller Distributed configuration profile for computing system
US5198806A (en) * 1990-12-31 1993-03-30 Lord & Sebastian, Inc. Remote control and secure access for personal computers
US5426427A (en) * 1991-04-04 1995-06-20 Compuserve Incorporated Data transmission routing system
WO1993002419A1 (en) 1991-07-16 1993-02-04 J.A.S. Technology (Australia) Pty. Ltd. Protection system for computers
US5319562A (en) 1991-08-22 1994-06-07 Whitehouse Harry T System and method for purchase and application of postage using personal computer
US5367635A (en) 1991-08-29 1994-11-22 Hewlett-Packard Company Network management agent with user created objects providing additional functionality
US5287461A (en) 1991-10-31 1994-02-15 Sun Microsystems, Inc. Method and apparatus for remotely accessing a plurality of server consoles
US5557518A (en) * 1994-04-28 1996-09-17 Citibank, N.A. Trusted agents for open electronic commerce
CA2092632C (en) 1992-05-26 2001-10-16 Richard E. Berry Display system with imbedded icons in a menu bar
US5241594A (en) 1992-06-02 1993-08-31 Hughes Aircraft Company One-time logon means and methods for distributed computing systems
WO1993024890A1 (en) 1992-06-03 1993-12-09 Pitts William R System for accessing distributed data cache channel at each network node to pass requests and data
US5799071A (en) * 1992-10-05 1998-08-25 Azar; Sanjar Telecommunications cost-minimizing system
EP0601254A1 (en) 1992-12-10 1994-06-15 International Business Machines Corporation Method for allowing the access of a database by an application program
US5410543A (en) * 1993-01-04 1995-04-25 Apple Computer, Inc. Method for connecting a mobile computer to a computer network by using an address server
US5436637A (en) 1993-03-05 1995-07-25 Borland International, Inc. Graphical user interface system and methods for improved user feedback
US5524195A (en) 1993-05-24 1996-06-04 Sun Microsystems, Inc. Graphical user interface for interactive television with an animated agent
US5802502A (en) * 1993-05-24 1998-09-01 British Telecommunications Public Limited Company System for selective communication connection based on transaction pricing signals
US5455863A (en) 1993-06-29 1995-10-03 Motorola, Inc. Method and apparatus for efficient real-time authentication and encryption in a communication system
US5638433A (en) * 1993-11-18 1997-06-10 Best Rate, Inc. Best rate telecommunication access code and data transceiver/facilitator (BRTF)
US5825357A (en) * 1993-12-13 1998-10-20 Microsoft Corporation Continuously accessible computer system interface
US5495411A (en) * 1993-12-22 1996-02-27 Ananda; Mohan Secure software rental system using continuous asynchronous password verification
US5483596A (en) * 1994-01-24 1996-01-09 Paralon Technologies, Inc. Apparatus and method for controlling access to and interconnection of computer system resources
US5635940A (en) * 1994-02-02 1997-06-03 Hickman; Paul L. Communication configurator and method for implementing same
EP0667579A1 (en) 1994-02-09 1995-08-16 Ballard Synergy Corporation Cache for optical storage device
US5694549A (en) 1994-03-03 1997-12-02 Telescan, Inc. Multi-provider on-line communications system
CA2119085C (en) 1994-03-15 2002-01-15 Deborah L. Pinard Adaptive communication system
US5580177A (en) 1994-03-29 1996-12-03 Hewlett-Packard Company Printer/client network with centrally updated printer drivers and printer status monitoring
US5558339A (en) * 1994-05-05 1996-09-24 Perlman; Stephen G. Network architecture to support recording and playback of real-time video games
US5586257A (en) 1994-05-05 1996-12-17 Perlman; Stephen G. Network architecture to support multiple site real-time video games
US5636209A (en) * 1994-05-05 1997-06-03 Perlman; Stephen G. Modem to support multiple site call conferenced data communications
US5675507A (en) * 1995-04-28 1997-10-07 Bobo, Ii; Charles R. Message storage and delivery system
US5768521A (en) 1994-05-16 1998-06-16 Intel Corporation General purpose metering mechanism for distribution of electronic information
US5694546A (en) 1994-05-31 1997-12-02 Reisman; Richard R. System for automatic unattended electronic information transport between a server and a client by a vendor provided transport software with a manifest list
US5583933A (en) * 1994-08-05 1996-12-10 Mark; Andrew R. Method and apparatus for the secure communication of data
US5586304A (en) 1994-09-08 1996-12-17 Compaq Computer Corporation Automatic computer upgrading
US5682325A (en) 1994-09-12 1997-10-28 Bell Atlantic Network Services, Inc. Level 1 gateway for video tone networks
US6188756B1 (en) 1994-10-11 2001-02-13 Alexander Mashinsky Efficient communication through networks
US5838906A (en) 1994-10-17 1998-11-17 The Regents Of The University Of California Distributed hypermedia method for automatically invoking external application providing interaction and display of embedded objects within a hypermedia document
US5717923A (en) 1994-11-03 1998-02-10 Intel Corporation Method and apparatus for dynamically customizing electronic information to individual end users
US5696965A (en) 1994-11-03 1997-12-09 Intel Corporation Electronic information appraisal agent
US5724521A (en) 1994-11-03 1998-03-03 Intel Corporation Method and apparatus for providing electronic advertisements to end users in a consumer best-fit pricing manner
US5752238A (en) 1994-11-03 1998-05-12 Intel Corporation Consumer-driven electronic information pricing mechanism
US5579472A (en) 1994-11-09 1996-11-26 Novalink Technologies, Inc. Group-oriented communications user interface
US5499289A (en) 1994-12-06 1996-03-12 At&T Corp. Systems, methods and articles of manufacture for performing distributed telecommunications
US5617526A (en) * 1994-12-13 1997-04-01 Microsoft Corporation Operating system provided notification area for displaying visual notifications from application programs
US5655077A (en) * 1994-12-13 1997-08-05 Microsoft Corporation Method and system for authenticating access to heterogeneous computing services
US5689638A (en) 1994-12-13 1997-11-18 Microsoft Corporation Method for providing access to independent network resources by establishing connection using an application programming interface function call without prompting the user for authentication data
US5636357A (en) 1994-12-21 1997-06-03 Eurotronics Company Memory card and method for operation in a plurality of systems having incompatible object code format requirements
US5754787A (en) 1994-12-23 1998-05-19 Intel Corporation System for electronically publishing objects with header specifying minimum and maximum required transport delivery rates and threshold being amount publisher is willing to pay
US5680549A (en) 1994-12-30 1997-10-21 Compuserve Incorporated System for transferring network connections from first to second program where the first enters an inactive state and resumes control of connections when second terminates
US5644739A (en) * 1995-01-27 1997-07-01 Microsoft Corporation Method and system for adding buttons to a toolbar
US5604542A (en) 1995-02-08 1997-02-18 Intel Corporation Using the vertical blanking interval for transporting electronic coupons
US5915214A (en) * 1995-02-23 1999-06-22 Reece; Richard W. Mobile communication service provider selection system
US5758084A (en) * 1995-02-27 1998-05-26 Hewlett-Packard Company Apparatus for parallel client/server communication having data structures which stored values indicative of connection state and advancing the connection state of established connections
US5657246A (en) 1995-03-07 1997-08-12 Vtel Corporation Method and apparatus for a video conference user interface
US5801702A (en) * 1995-03-09 1998-09-01 Terrabyte Technology System and method for adding network links in a displayed hierarchy
US5732219A (en) * 1995-03-17 1998-03-24 Vermeer Technologies, Inc. Computer system and computer-implemented process for remote editing of computer files
US5710884A (en) 1995-03-29 1998-01-20 Intel Corporation System for automatically updating personal profile server with updates to additional user information gathered from monitoring user's electronic consuming habits generated on computer during use
US6005938A (en) * 1996-12-16 1999-12-21 Scientific-Atlanta, Inc. Preventing replay attacks on digital information distributed by network service providers
US5632011A (en) * 1995-05-22 1997-05-20 Sterling Commerce, Inc. Electronic mail management system for operation on a host computer system
MX9700655A (en) 1995-05-24 1998-01-31 Walker Asset Man Ltd Partnersh Readily openable pop-up dispenser.
US5721780A (en) * 1995-05-31 1998-02-24 Lucent Technologies, Inc. User-transparent security method and apparatus for authenticating user terminal access to a network
US5812819A (en) 1995-06-05 1998-09-22 Shiva Corporation Remote access apparatus and method which allow dynamic internet protocol (IP) address management
US5749075A (en) 1995-06-06 1998-05-05 Interactive Media Works, L.L.C. Method for providing prepaid internet access and/or long distance calling including the distribution of specialized calling cards
WO1996039668A1 (en) 1995-06-06 1996-12-12 Interactive Media Works, L.L.C. Promotional and product on-line help methods via internet
US5644737A (en) * 1995-06-06 1997-07-01 Microsoft Corporation Method and system for stacking toolbars in a computer display
US5806043A (en) 1995-06-06 1998-09-08 Interactive Media Works, L.L.C. Method for providing customer on-line support via prepaid internet access
US5774869A (en) 1995-06-06 1998-06-30 Interactive Media Works, Llc Method for providing sponsor paid internet access and simultaneous sponsor promotion
US5708780A (en) 1995-06-07 1998-01-13 Open Market, Inc. Internet server access control and monitoring systems
US5740549A (en) 1995-06-12 1998-04-14 Pointcast, Inc. Information and advertising distribution system and method
US5704050A (en) 1995-06-29 1997-12-30 International Business Machine Corp. Snap control for relocating elements of a graphical user interface
US5862203A (en) * 1995-07-21 1999-01-19 Call Manage Telecommunications call management system
US5694537A (en) 1995-07-31 1997-12-02 Canon Information Systems, Inc. Network device which selects a time service provider
US5867161A (en) * 1995-08-08 1999-02-02 Walsh; Aaron E. Uniform mnemonic associations of computer resources to graphical images
US5913040A (en) * 1995-08-22 1999-06-15 Backweb Ltd. Method and apparatus for transmitting and displaying information between a remote network and a local computer
US5657390A (en) * 1995-08-25 1997-08-12 Netscape Communications Corporation Secure socket layer application program apparatus and method
JPH10511792A (en) 1995-09-01 1998-11-10 エロネックス・パブリック・リミテッド・カンパニー Electronic document server independent of service
US5826025A (en) 1995-09-08 1998-10-20 Sun Microsystems, Inc. System for annotation overlay proxy configured to retrieve associated overlays associated with a document request from annotation directory created from list of overlay groups
US5657452A (en) 1995-09-08 1997-08-12 U.S. Robotics Corp. Transparent support of protocol and data compression features for data communication
US6795852B1 (en) * 1995-09-11 2004-09-21 Nomadix, Inc. Automatic network connection
US5764902A (en) * 1995-09-29 1998-06-09 Intel Corporation Conditional insert or merge in a data conference
US5835583A (en) * 1995-10-05 1998-11-10 Bell Atlantic Network Services, Inc. Mediated AIN control of short code access to information service providers
US5774670A (en) 1995-10-06 1998-06-30 Netscape Communications Corporation Persistent client state in a hypertext transfer protocol based client-server system
US5953504A (en) 1995-10-10 1999-09-14 Suntek Software Corporation Public accessible terminal capable of opening an account for allowing access to the internet and E-mail by generating ID code and security code for users
US5790800A (en) * 1995-10-13 1998-08-04 Digital Equipment Corporation Client application program mobilizer
US5572643A (en) 1995-10-19 1996-11-05 Judson; David H. Web browser with dynamic display of information objects during linking
US6130933A (en) * 1996-02-02 2000-10-10 Genesys Telecommunications Laboratories, Inc. Apparatus and methods for coordinating telephone and data communications
US5764639A (en) 1995-11-15 1998-06-09 Staples; Leven E. System and method for providing a remote user with a virtual presence to an office
US5845077A (en) 1995-11-27 1998-12-01 Microsoft Corporation Method and system for identifying and obtaining computer software from a remote computer
ES2108646B1 (en) * 1995-11-30 1998-07-01 Telefonica Nacional Espana Co STRUCTURE FOR AN ELECTRONIC INFORMATION SYSTEM.
US5822539A (en) * 1995-12-08 1998-10-13 Sun Microsystems, Inc. System for adding requested document cross references to a document by annotation proxy configured to merge and a directory generator and annotation server
CA2188330C (en) 1995-12-12 2001-04-24 Michael D. Bamburak A method for selecting a wireless communications service provider in a multi-service provider environment
US5905955A (en) 1995-12-12 1999-05-18 At&T Wireless Services Inc. Method for selecting a wireless service provider in a multi-service provider environment using a geographic database
US6418318B1 (en) 1995-12-12 2002-07-09 At&T Wireless Services, Inc. Method for selecting a preferable wireless communications service provider in a multi-service provider environment
US6298235B1 (en) 1995-12-12 2001-10-02 At&T Wireless Services, Inc. Powered down selection of a preferable wireless communications service provider in a multi-service provider environment
US5925103A (en) 1996-01-26 1999-07-20 Magallanes; Edward Patrick Internet access device
US5826014A (en) * 1996-02-06 1998-10-20 Network Engineering Software Firewall system for protecting network elements connected to a public network
US5956391A (en) 1996-02-09 1999-09-21 Telefonaktiebolaget Lm Ericsson Billing in the internet
US5761683A (en) * 1996-02-13 1998-06-02 Microtouch Systems, Inc. Techniques for changing the behavior of a link in a hypertext document
US5987498A (en) 1996-02-16 1999-11-16 Atcom, Inc. Credit card operated computer on-line service communication system
US5826000A (en) 1996-02-29 1998-10-20 Sun Microsystems, Inc. System and method for automatic configuration of home network computers
US6006333A (en) 1996-03-13 1999-12-21 Sun Microsystems, Inc. Password helper using a client-side master password which automatically presents the appropriate server-side password to a particular remote server
EP0965084A1 (en) 1996-03-21 1999-12-22 MPATH Interactive Inc. Network match maker for selecting clients based on attributes of servers and communication links
US5706502A (en) * 1996-03-25 1998-01-06 Sun Microsystems, Inc. Internet-enabled portfolio manager system and method
US6035330A (en) * 1996-03-29 2000-03-07 British Telecommunications World wide web navigational mapping system and method
US5963964A (en) * 1996-04-05 1999-10-05 Sun Microsystems, Inc. Method, apparatus and program product for updating visual bookmarks
US5828837A (en) * 1996-04-15 1998-10-27 Digilog As Computer network system and method for efficient information transfer
US6134590A (en) 1996-04-16 2000-10-17 Webtv Networks, Inc. Method and apparatus for automatically connecting devices to a local network
US5790548A (en) 1996-04-18 1998-08-04 Bell Atlantic Network Services, Inc. Universal access multimedia data network
US5802304A (en) * 1996-04-18 1998-09-01 Microsoft Corporation Automatic dialer responsive to network programming interface access
US5809242A (en) 1996-04-19 1998-09-15 Juno Online Services, L.P. Electronic mail system for displaying advertisement at local computer received from remote system while the local computer is off-line the remote system
US5905736A (en) 1996-04-22 1999-05-18 At&T Corp Method for the billing of transactions over the internet
US5835712A (en) 1996-05-03 1998-11-10 Webmate Technologies, Inc. Client-server system using embedded hypertext tags for application and database development
US5748927A (en) 1996-05-10 1998-05-05 Apple Computer, Inc. Graphical user interface with icons having expandable descriptors
US5898780A (en) * 1996-05-21 1999-04-27 Gric Communications, Inc. Method and apparatus for authorizing remote internet access
US6034689A (en) 1996-06-03 2000-03-07 Webtv Networks, Inc. Web browser allowing navigation between hypertext objects using remote control
US5918013A (en) * 1996-06-03 1999-06-29 Webtv Networks, Inc. Method of transcoding documents in a network environment using a proxy server
US5896444A (en) * 1996-06-03 1999-04-20 Webtv Networks, Inc. Method and apparatus for managing communications between a client and a server in a network
US6311197B2 (en) 1996-06-03 2001-10-30 Webtv Networks, Inc. Method for downloading a web page to a client for efficient display on a television screen
US5862220A (en) 1996-06-03 1999-01-19 Webtv Networks, Inc. Method and apparatus for using network address information to improve the performance of network transactions
US5940074A (en) 1996-06-03 1999-08-17 Webtv Networks, Inc. Remote upgrade of software over a network
US5935207A (en) * 1996-06-03 1999-08-10 Webtv Networks, Inc. Method and apparatus for providing remote site administrators with user hits on mirrored web sites
US5974461A (en) * 1996-06-03 1999-10-26 Webtv Networks, Inc. Method for automatically regenerating information at a client system in the event of power or communication disruption between the client system and the server
US6259442B1 (en) 1996-06-03 2001-07-10 Webtv Networks, Inc. Downloading software from a server to a client
US6473099B1 (en) 1996-06-03 2002-10-29 Webtv Networks, Inc. Automatically upgrading software over a satellite link
US5818447A (en) * 1996-06-06 1998-10-06 Microsoft Corporation System and method for in-place editing of an electronic mail message using a separate program
US6151643A (en) 1996-06-07 2000-11-21 Networks Associates, Inc. Automatic updating of diverse software products on multiple client computer systems by downloading scanning application to client computer and generating software list on client computer
US5708655A (en) 1996-06-14 1998-01-13 Telefonaktiebolaget L M Ericsson Publ Method and apparatus for addressing a wireless communication station with a dynamically-assigned address
US6058250A (en) * 1996-06-19 2000-05-02 At&T Corp Bifurcated transaction system in which nonsensitive information is exchanged using a public network connection and sensitive information is exchanged after automatically configuring a private network connection
US5991807A (en) 1996-06-24 1999-11-23 Nortel Networks Corporation System for controlling users access to a distributive network in accordance with constraints present in common access distributive network interface separate from a server
US6088451A (en) 1996-06-28 2000-07-11 Mci Communications Corporation Security system and method for network element access
US5845075A (en) 1996-07-01 1998-12-01 Sun Microsystems, Inc. Method and apparatus for dynamically adding functionality to a set of instructions for processing a Web document based on information contained in the Web document
US5802530A (en) * 1996-07-01 1998-09-01 Sun Microsystems, Inc. Web document based graphical user interface
FI972718A0 (en) 1996-07-02 1997-06-24 More Magic Software Mms Oy Foerfaranden och arrangemang Foer distribution av ett anvaendargraenssnitt
US6757913B2 (en) 1996-07-15 2004-06-29 Gregory D. Knox Wireless music and data transceiver system
US5752244A (en) * 1996-07-15 1998-05-12 Andersen Consulting Llp Computerized multimedia asset management system
US5854901A (en) 1996-07-23 1998-12-29 Cisco Systems, Inc. Method and apparatus for serverless internet protocol address discovery using source address of broadcast or unicast packet
US5919247A (en) 1996-07-24 1999-07-06 Marimba, Inc. Method for the distribution of code and data updates
US5821927A (en) * 1996-07-25 1998-10-13 International Business Machines Corporation Web browser display indicator signalling that currently displayed web page needs to be refereshed from remote source
US5918019A (en) 1996-07-29 1999-06-29 Cisco Technology, Inc. Virtual dial-up protocol for network communication
US5890171A (en) * 1996-08-06 1999-03-30 Microsoft Corporation Computer system and computer-implemented method for interpreting hypertext links in a document when including the document within another document
US5751812A (en) 1996-08-27 1998-05-12 Bell Communications Research, Inc. Re-initialization of an iterated hash function secure password system over an insecure network connection
US6006034A (en) 1996-09-05 1999-12-21 Open Software Associates, Ltd. Systems and methods for automatic application version upgrading and maintenance
US6011794A (en) * 1996-09-09 2000-01-04 Netplus Communications Corp. Internet based telephone apparatus and method
US6061650A (en) 1996-09-10 2000-05-09 Nortel Networks Corporation Method and apparatus for transparently providing mobile network functionality
US5793854A (en) * 1996-09-11 1998-08-11 Kashepava; Leonid System for selection and monitoring telephone rates
US6195691B1 (en) 1996-09-17 2001-02-27 National Systems Corporation Method and apparatus for creating and using dynamic universal resource locators
US6212535B1 (en) * 1996-09-19 2001-04-03 Digital Equipment Corporation Browser-based electronic messaging
US5684950A (en) 1996-09-23 1997-11-04 Lockheed Martin Corporation Method and system for authenticating users to multiple computer servers via a single sign-on
US5983244A (en) 1996-09-27 1999-11-09 International Business Machines Corporation Indicating when clickable image link on a hypertext image map of a computer web browser has been traversed
IL119364A (en) 1996-10-06 2000-11-21 Icq Inc Communications system
US5890172A (en) * 1996-10-08 1999-03-30 Tenretni Dynamics, Inc. Method and apparatus for retrieving data from a network using location identifiers
US5809251A (en) 1996-10-09 1998-09-15 Hewlett-Packard Company Remote installation of software by a management information system into a remote computer
US5835725A (en) 1996-10-21 1998-11-10 Cisco Technology, Inc. Dynamic address assignment and resolution technique
US5781724A (en) 1996-11-01 1998-07-14 Novell, Inc. Method and system for integrating additional functionality into a login system
US5796393A (en) 1996-11-08 1998-08-18 Compuserve Incorporated System for intergrating an on-line service community with a foreign service
US6064666A (en) 1996-11-15 2000-05-16 International Business Machines Corporation Cross service common user image association
US6052458A (en) * 1996-11-22 2000-04-18 Lucent Technologies Inc. Method for message marking and detection of message looping among signaling networks in a telecommunications system
US5950010A (en) * 1996-11-25 1999-09-07 J.D. Edwards World Source Co. System and method for customized application package building and installation
US6023698A (en) * 1996-12-05 2000-02-08 International Business Machines Corporation System and method for transparently registering and updating information over the internet
US5959621A (en) 1996-12-06 1999-09-28 Microsoft Corporation System and method for displaying data items in a ticker display pane on a client computer
US5905492A (en) 1996-12-06 1999-05-18 Microsoft Corporation Dynamically updating themes for an operating system shell
US5884024A (en) * 1996-12-09 1999-03-16 Sun Microsystems, Inc. Secure DHCP server
US6067568A (en) 1996-12-10 2000-05-23 International Business Machines Corporation Automatic setup of services for computer system users
US6012088A (en) * 1996-12-10 2000-01-04 International Business Machines Corporation Automatic configuration for internet access device
US5845070A (en) * 1996-12-18 1998-12-01 Auric Web Systems, Inc. Security system for internet provider transaction
US6138142A (en) 1996-12-20 2000-10-24 Intel Corporation Method for providing customized Web information based on attributes of the requester
US6185625B1 (en) * 1996-12-20 2001-02-06 Intel Corporation Scaling proxy server sending to the client a graphical user interface for establishing object encoding preferences after receiving the client's request for the object
US5889958A (en) * 1996-12-20 1999-03-30 Livingston Enterprises, Inc. Network access control system and process
US6424992B2 (en) 1996-12-23 2002-07-23 International Business Machines Corporation Affinity-based router and routing method
US7031441B1 (en) 1996-12-30 2006-04-18 Intel Corporation Method and apparatus for supporting on-demand connectivity for network applications
US5987611A (en) * 1996-12-31 1999-11-16 Zone Labs, Inc. System and methodology for managing internet access on a per application basis for client computers connected to the internet
US6308328B1 (en) 1997-01-17 2001-10-23 Scientific-Atlanta, Inc. Usage statistics collection for a cable data delivery system
US6101510A (en) * 1997-01-29 2000-08-08 Microsoft Corporation Web browser control for incorporating web browser functionality into application programs
AU6666898A (en) * 1997-02-02 1998-09-09 Fonefriend Systems, Inc. Internet switch box, system and method for internet telephony
US6128663A (en) * 1997-02-11 2000-10-03 Invention Depot, Inc. Method and apparatus for customization of information content provided to a requestor over a network using demographic information yet the user remains anonymous to the server
US5908469A (en) 1997-02-14 1999-06-01 International Business Machines Corporation Generic user authentication for network computers
US5835914A (en) 1997-02-18 1998-11-10 Wall Data Incorporated Method for preserving and reusing software objects associated with web pages
US6119161A (en) 1997-02-28 2000-09-12 International Business Machines Corporation Managing connection requests in a dialup computer network
US6178505B1 (en) * 1997-03-10 2001-01-23 Internet Dynamics, Inc. Secure delivery of information in a network
US6408336B1 (en) * 1997-03-10 2002-06-18 David S. Schneider Distributed administration of access to information
US5933490A (en) * 1997-03-12 1999-08-03 Bell Atlantic Network Services, Inc. Overload protection for on-demand access to the internet that redirects calls from overloaded internet service provider (ISP) to alternate internet access provider
US5898839A (en) * 1997-03-17 1999-04-27 Geonet Limited, L.P. System using signaling channel to transmit internet connection request to internet service provider server for initiating and internet session
US6247054B1 (en) 1997-03-24 2001-06-12 Nortel Networks Limited Method and apparatus for redirecting packets using encapsulation
US5890158A (en) * 1997-03-31 1999-03-30 International Business Machines Corporation Method, apparatus, and program storage device for sharing objects with a network server and a database server using a common object model
US5914714A (en) 1997-04-01 1999-06-22 Microsoft Corporation System and method for changing the characteristics of a button by direct manipulation
US6057836A (en) 1997-04-01 2000-05-02 Microsoft Corporation System and method for resizing and rearranging a composite toolbar by direct manipulation
US6011910A (en) 1997-04-08 2000-01-04 3Com Corporation Supporting authentication across multiple network access servers
US6266681B1 (en) * 1997-04-08 2001-07-24 Network Commerce Inc. Method and system for inserting code to conditionally incorporate a user interface component in an HTML document
US6766454B1 (en) * 1997-04-08 2004-07-20 Visto Corporation System and method for using an authentication applet to identify and authenticate a user in a computer network
US5893091A (en) * 1997-04-11 1999-04-06 Immediata Corporation Multicasting with key words
US6286058B1 (en) 1997-04-14 2001-09-04 Scientific-Atlanta, Inc. Apparatus and methods for automatically rerouting packets in the event of a link failure
US6192045B1 (en) * 1997-04-21 2001-02-20 C. Wyatt Williams Method and system for minimizing connect-time charges associated with dial-up data networks
US6038599A (en) 1997-04-23 2000-03-14 Mpath Interactive, Inc. Latency server and matchmaker
US5944824A (en) 1997-04-30 1999-08-31 Mci Communications Corporation System and method for single sign-on to a plurality of network elements
US6023585A (en) * 1997-05-02 2000-02-08 Webtv Networks, Inc. Automatically selecting and downloading device drivers from a server system to a client system that includes one or more devices
US6023729A (en) 1997-05-05 2000-02-08 Mpath Interactive, Inc. Method and apparatus for match making
WO1998051099A2 (en) 1997-05-06 1998-11-12 Siemens Aktiengesellschaft Device for transferring communication data from a computer via a communication network
GB2325380B (en) 1997-05-14 2002-01-30 Int Computers Ltd Information delivery systems
US6009474A (en) 1997-05-20 1999-12-28 Compaq Computer Corporation Method and apparatus for re-assigning network addresses to network servers by re-configuring a client host connected thereto
CA2206616A1 (en) * 1997-05-30 1998-11-30 Robert Hugh Holt Centralized call control in a data access transport service
US6199110B1 (en) 1997-05-30 2001-03-06 Oracle Corporation Planned session termination for clients accessing a resource through a server
US5978381A (en) * 1997-06-06 1999-11-02 Webtv Networks, Inc. Transmitting high bandwidth network content on a low bandwidth communications channel during off peak hours
US5918016A (en) 1997-06-10 1999-06-29 Texas Instruments Incorporated System with program for automating protocol assignments when newly connected to varing computer network configurations
US6026151A (en) * 1997-06-12 2000-02-15 At&T Corp. Network based determination of cost effective access
US5978828A (en) 1997-06-13 1999-11-02 Intel Corporation URL bookmark update notification of page content or location changes
US6070243A (en) 1997-06-13 2000-05-30 Xylan Corporation Deterministic user authentication service for communication network
US6571290B2 (en) * 1997-06-19 2003-05-27 Mymail, Inc. Method and apparatus for providing fungible intercourse over a network
US8516132B2 (en) 1997-06-19 2013-08-20 Mymail, Ltd. Method of accessing a selected network
US6404736B1 (en) 1997-06-20 2002-06-11 Telefonaktiebolaget L M Ericsson (Publ) Call-routing efficiency with a network access server
US6282548B1 (en) 1997-06-21 2001-08-28 Alexa Internet Automatically generate and displaying metadata as supplemental information concurrently with the web page, there being no link between web page and metadata
US6937566B1 (en) 1997-07-25 2005-08-30 Telefonaktiebolaget Lm Ericsson (Publ) Dynamic quality of service reservation in a mobile communications network
FI104669B (en) * 1997-09-01 2000-04-14 Nokia Networks Oy Mains control system
US5960411A (en) * 1997-09-12 1999-09-28 Amazon.Com, Inc. Method and system for placing a purchase order via a communications network
US6141694A (en) 1997-09-16 2000-10-31 Webtv Networks, Inc. Determining and verifying user data
US5983273A (en) 1997-09-16 1999-11-09 Webtv Networks, Inc. Method and apparatus for providing physical security for a user account and providing access to the user's environment and preferences
US6205126B1 (en) * 1997-09-30 2001-03-20 Ericsson Inc. Method and apparatus for automatically determining an ISP local access number based on device location
US6145002A (en) * 1997-11-14 2000-11-07 Qwest Communications International Inc. System and method for accessing an internet service provider
US6101328A (en) 1997-12-31 2000-08-08 Intel Corporation System for preventing multiple instances of the same dynamic executable module
US6370141B1 (en) * 1998-04-29 2002-04-09 Cisco Technology, Inc. Method and apparatus for configuring an internet appliance
US6308212B1 (en) 1998-05-29 2001-10-23 Hewlett-Packard Company Web user interface session and sharing of session environment information
AU8567798A (en) 1998-06-19 2000-01-05 Netsafe, Inc. Method and apparatus for providing connections over a network
WO2000068820A1 (en) * 1999-05-10 2000-11-16 Jude Gerard Dieterman Method of updating computer configuration settings
US6609198B1 (en) * 1999-08-05 2003-08-19 Sun Microsystems, Inc. Log-on service providing credential level change without loss of session continuity
US6614786B1 (en) * 1999-11-24 2003-09-02 Lucent Technologies Inc. Enhanced dual mode telephone for internet telephony
US6314516B1 (en) * 1999-12-03 2001-11-06 Compaq Computer Corporation Method and apparatus for configuring communications settings in a computer system
US7082532B1 (en) * 1999-12-30 2006-07-25 Intel Corporation Method and system for providing distributed web server authentication
US6606654B1 (en) * 2000-02-14 2003-08-12 Netjumper, Inc. Link delivery for subsequent retrieval of networked information
US7363245B1 (en) 2000-03-31 2008-04-22 Intel Corporation Electronic product packaging and distribution for e-Commerce
US6901386B1 (en) 2000-03-31 2005-05-31 Intel Corporation Electronic asset lending library method and apparatus
US7047560B2 (en) * 2001-06-28 2006-05-16 Microsoft Corporation Credential authentication for mobile users
US7529766B2 (en) 2005-02-09 2009-05-05 Conduit Ltd Method and system for use with the internet
US8234575B2 (en) 2007-11-30 2012-07-31 Microsoft Corporation Dynamic updateable web toolbar

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5815665A (en) * 1996-04-03 1998-09-29 Microsoft Corporation System and method for providing trusted brokering services over a distributed network
US5881234A (en) * 1996-04-26 1999-03-09 Schwob; Pierre R. Method and system to provide internet access to users via non-home service providers
US5862339A (en) * 1996-07-09 1999-01-19 Webtv Networks, Inc. Client connects to an internet access provider using algorithm downloaded from a central server based upon client's desired criteria after disconnected from the server
US6208857B1 (en) * 1996-11-04 2001-03-27 Qualcomm Incorporated Method and apparatus for performing position-and preference-based service selection in a mobile telephone system

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8732318B2 (en) 1997-06-19 2014-05-20 Mymail, Ltd. Method of connecting a user to a network
US9021070B2 (en) 1997-06-19 2015-04-28 Mymail, Ltd. Dynamically modifying a toolbar
US9137240B2 (en) 1997-06-19 2015-09-15 Mymail, Ltd. System and method of accessing a network by way of different service providers
US9141263B2 (en) 1997-06-19 2015-09-22 Thomas Drennan Selgas Method of modifying a toolbar
US9935814B2 (en) 1997-06-19 2018-04-03 My Mail Ltd. Method of obtaining a network address
US10135878B2 (en) 1997-06-19 2018-11-20 Mymail, Ltd. Method for accessing a digital network by way of one or more Internet service providers
US10228838B2 (en) 1997-06-19 2019-03-12 Mymail, Ltd. Dynamically modifying a toolbar
US20140274407A1 (en) * 2013-03-12 2014-09-18 Ciinow, Inc. Mechanism for implementing cloud local area network party service for multi-player content/game environment
US9381436B2 (en) * 2013-03-12 2016-07-05 Google Inc. Mechanism for implementing cloud local area network party service for multi-player content/game environment

Also Published As

Publication number Publication date
US8516132B2 (en) 2013-08-20
US20030195967A1 (en) 2003-10-16
US10135878B2 (en) 2018-11-20
US20160156672A1 (en) 2016-06-02
US9137240B2 (en) 2015-09-15
US20130291069A1 (en) 2013-10-31

Similar Documents

Publication Publication Date Title
US10135878B2 (en) Method for accessing a digital network by way of one or more Internet service providers
US10228838B2 (en) Dynamically modifying a toolbar
US9935814B2 (en) Method of obtaining a network address
EP1064757B1 (en) Remote computer communication
US8677460B2 (en) File transfer system
EP0953248B1 (en) Automatic configuration for internet access device
US20070277235A1 (en) System and method for providing user authentication and identity management
WO2004072825A2 (en) A method and system to securely update files via a network
EP1075748B1 (en) Method, arrangement and apparatus for authentication
US20020165976A1 (en) Software deployment in a data communications network

Legal Events

Date Code Title Description
AS Assignment

Owner name: NETSAFE, INC., TEXAS

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:GMUENDER, JOHN EVERETT;SELGAS, THOMAS DRENNAN;MASSING, MICHAEL BRIAN;REEL/FRAME:030444/0284

Effective date: 19970619

Owner name: DERBY, ROBERT T., TEXAS

Free format text: JUDGMENT;ASSIGNOR:NETSAFE, INC.;REEL/FRAME:030441/0359

Effective date: 20000412

Owner name: MYMAIL, LTD., TEXAS

Free format text: CERTIFICATE OF CONVERSION;ASSIGNOR:MYMAIL, INC.;REEL/FRAME:030441/0394

Effective date: 20031027

Owner name: MYMAIL, INC., TEXAS

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:DERBY, ROBERT T.;REEL/FRAME:030452/0165

Effective date: 20030414

STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION