Authentication and authorization of mobile devices for usage of access points in an alternative network

US 10,045,211 B2
Filed: 09/29/2016
Issued: 08/07/2018
Est. Priority Date: 09/29/2015
Status: Active Grant

First Claim

Patent Images

1. A method comprising using at least one hardware processor of a mobile device to:

identify at least one access point for connectivity to the mobile device;

receive one or more credentials of a remote server;

establish a limited connection with the identified access point via at least one radio system of the mobile device, wherein the limited connection permits communication related to authentication or authorization to utilize at least one network to which the identified at least one access point provides access;

execute an application toencode a parameter into at least one of the received one or more credentials, and initiate authorization, using the one or more credentials comprising the encoded parameter, with the remote server over the at least one network via the limited connection established with the identified at least one access point, wherein the remote server is configured to decode the parameter from the one or more credentials, prior to authorization, to determine whether or not to select the at least one access point; and

,after authorization has been completed, switch the limited connection to a non-limited connection to utilize the at least one network, to which the identified at least one access point provides access.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Authentication and authorization of mobile devices for usage of access points in an alternative network. In an embodiment, a mobile device identifies an access point that is available to provide connectivity. A limited connection is established with the identified access point, which permits only a bandwidth exchange (BX) application to utilize a network to which the identified access point provides access. The BX application is executed to initiate authorization with a remote server over the network. After authorization has been completed, the limited connection is switched to a non-limited connection, in which other applications are permitted to utilize the network, according to terms and conditions associated with the identified access point.

Citations

25 Claims

1. A method comprising using at least one hardware processor of a mobile device to:
- identify at least one access point for connectivity to the mobile device;
  
  receive one or more credentials of a remote server;
  
  establish a limited connection with the identified access point via at least one radio system of the mobile device, wherein the limited connection permits communication related to authentication or authorization to utilize at least one network to which the identified at least one access point provides access;
  
  execute an application toencode a parameter into at least one of the received one or more credentials, and initiate authorization, using the one or more credentials comprising the encoded parameter, with the remote server over the at least one network via the limited connection established with the identified at least one access point, wherein the remote server is configured to decode the parameter from the one or more credentials, prior to authorization, to determine whether or not to select the at least one access point; and
  
  ,after authorization has been completed, switch the limited connection to a non-limited connection to utilize the at least one network, to which the identified at least one access point provides access.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 25)
- - 2. The method of claim 1, further comprising receiving a Uniform Resource Locator (URL) of the remote server in addition to the one or more credentials of the remote server.
  - 3. The method of claim 1, further comprising using the at least one hardware processor to, when authorization has been completed, delete the one or more credentials.
  - 4. The method of claim 1, wherein the one or more credentials comprise a username field and a password field, and wherein encoding a parameter into at least one credential comprises encoding an identifier of the identified at least one access point within one or both of the username field and the password field.
  - 5. The method of claim 1, wherein the parameter comprises one or more performance characteristics of the identified at least one access point.
  - 6. The method of claim 5, wherein the one or more performance characteristics, encoded in the at least one credential, comprise a quality of a signal provided by the identified at least one access point.
  - 7. The method of claim 1, further comprising using the at least one hardware processor to, after authorization has been completed and the limited connection has been switched to the non-limited connection, move network traffic from a preexisting connection with a cellular base station to the non-limited connection.
  - 8. The method of claim 7, further comprising using the at least one hardware processor to, after the network traffic has been moved from the preexisting connection to the non-limited connection, terminate the preexisting connection with the cellular base station.
  - 9. The method of claim 7, wherein the at least one radio system, via which the limited connection is established, is a first radio system of the mobile device, and wherein the preexisting connection is established with the cellular base station over a second radio system of the mobile device that is different than the first radio system.
  - 10. The method of claim 1, wherein identifying at least one access point for connectivity comprises receiving a selection of the at least one access point from a remote bandwidth exchange (BX) server.
  - 11. The method of claim 1, wherein identifying at least one access point for connectivity comprises:
    - using the at least one radio system to scan an environment to identify one or more available access points; and
      
      selecting the at least one access point from the one or more available access points based on one or more factors.
  - 12. The method of claim 11, further comprising:
    - for each of the one or more available access points, receiving a price to use the available access point; and
      
      delaying selection of the access point from the one or more available access points when a lowest one of the prices is above a predetermined threshold.
  - 13. The method of claim 11,wherein the one or more available access points comprise a plurality of access points,wherein selecting the access point from the one or more available access points based on one or more factors comprises weighting each of the plurality of available access points based on the one or more factors, andwherein the selected at least one access point is the one of the plurality of available access points with a highest weighting.
  - 14. The method of claim 1, further comprising using the at least one hardware processor to send a usage report to a remote server, wherein the usage report comprises an amount of connectivity that the identified at least one access point has provided to the mobile device.
  - 15. The method of claim 1, further comprising using the at least one hardware processor to, prior to switching the limited connection to the non-limited connection, test a quality of the at least one network via the limited connection.
  - 16. The method of claim 15, wherein testing the quality of the at least one network via the limited connection comprises performing a speed test over the at least one network via the limited connection.
  - 25. The method of claim 1, wherein the parameter comprises an identifier of the identified at least one access point.

17. A mobile device comprising:
- at least one radio system;
  
  a memory that stores one or more applications; and
  
  at least one processor thatidentifies at least one access point for connectivity to the mobile device,receives one or more credentials of a remote server,establishes a limited connection with the identified access point via the at least one radio system, wherein the limited connection permits communication related to authentication or authorization to utilize at least one network to which the identified at least one access point provides access,executes an application toencode a parameter into at least one of the received one or more credentials, and initiate authorization, using the one or more credentials comprising the encoded parameter, with the remote server over the at least one network via the limited connection established with the identified access point, wherein the remote server is configured to decode the parameter from the one or more credentials, prior to authorization, to determine whether or not to select the at least one access point, and,after authorization has been completed, switches the limited connection to a non-limited connection to utilize the at least one network, to which the identified at least one access point provides access.

18. A non-transitory computer-readable medium having instructions stored therein, wherein the instructions, when executed by a processor of a mobile device, cause the processor to:
- identify at least one access point for connectivity to the mobile device;
  
  receive one or more credentials of a remote server;
  
  establish a limited connection with the identified access point via at least one radio system of the mobile device, wherein the limited connection permits communication related to authentication or authorization to utilize at least one network to which the identified at least one access point provides access;
  
  execute an application toencode a parameter into at least one of the received one or more credentials, and initiate authorization, using the one or more credentials comprising the encoded parameter, with the remote server over the at least one network via the limited connection established with the identified access point, wherein the remote server is configured to decode the parameter from the one or more credentials, prior to authorization, to determine whether or not to select the at least one access point; and
  
  ,after authorization has been completed, switch the limited connection to a non-limited connection to utilize the at least one network, to which the identified at least one access point provides access.

19. A method comprising:
- using at least one hardware processor of a mobile device toidentify at least one access point for connectivity to the mobile device,receive one or more credentials for a remote authentication server,encode a parameter into at least one of the received one or more credentials, andsend the one or more credentials, comprising the encoded parameter, to the remote authentication server over an established temporary connection with the identified access point and,by the remote authentication server,receiving the one or more credentials from the mobile device over the established temporary connection,decoding the encoded parameter from the at least one credential, andusing at least the decoded parameter to authenticate or authorize the mobile device to switch to a non-limited connectivity provided by the identified at least one access point.
- View Dependent Claims (20, 21, 22, 23, 24)
- - 20. The method of claim 19, wherein the one or more credentials comprise a username field and a password field, and wherein encoding parameter of the identified at least one access point in the credentials comprises encoding an identifier of the identified at least one access point within one or both of the username field and the password field.
  - 21. The method of claim 19, wherein the parameter comprises one or more performance characteristics of the identified at least one access point.
  - 22. The method of claim 21, wherein the one or more performance characteristics, encoded in the at least one credential, comprise a quality of a signal provided by the identified at least one access point.
  - 23. The method of claim 21, wherein the parameter comprises contextual information related to one or both of the mobile device and the identified at least one access point.
  - 24. The method of claim 19, further comprising using the at least one hardware processor to, after authorization has been completed with the remote authentication server using the one or more credentials, move network traffic of one or more applications from a preexisting connection with a cellular base station to a connection with the identified at least one access point.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
BandwidthX Inc.
Original Assignee
BandwidthX Inc.
Inventors
Salo, Randy, Van Hamersveld, Christian, Visuri, Pertti
Primary Examiner(s)
Hua, Quan M

Application Number

US15/280,355
Publication Number

US 20170094515A1
Time in Patent Office

677 Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/083   using passwords cryptograph...

H04L 63/102   Entity profiles

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/72   Subscriber identity

H04W 12/73   Access point logical identity

H04W 24/10   Scheduling measurement repo...

H04W 76/11   Allocation or use of connec...

H04W 88/08   Access point devices

Authentication and authorization of mobile devices for usage of access points in an alternative network

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication and authorization of mobile devices for usage of access points in an alternative network

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links