System and method for mobile base station authentication
First Claim
Patent Images
1. A method of authenticating an end user'"'"'s access to a resource at a physical location using a resource access system in communication with a mobile network including a plurality of mobile base stations, the method being performed by the resource access system and comprising:
- receiving a request from the end user to be permitted to access the resource;
determining whether the end user has access credentials to access the resource;
requesting and receiving information from a subscriber server for the mobile network including subscriber data associated with a mobile device associated with the end user, the subscriber data including information that identifies the mobile device with the end user;
requesting and receiving information from a backend system of the mobile network including information indicating a cellular base station identity code corresponding to a one of the plurality of mobile base stations to which the mobile device is currently connected;
mapping the subscriber data to the cellular base station identity code of the currently connected mobile base station;
verifying a current approximate location of the mobile device using the cellular base station identity code and verifying that the cellular base station identity code identifies a mobile base station near the resource; and
allowing access to the resource only if the end user has access credentials to access the resource and the physical location matches the current approximate location of the mobile device.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for increasing the security of a secure resource by determining a current location of a mobile device associated with an end user based on determining the mobile base station to which the mobile device is connected and allowing access to the resource only if an end user has access credentials to access the resource and the physical location of secure resource matches the current location of the mobile device.
10 Citations
4 Claims
-
1. A method of authenticating an end user'"'"'s access to a resource at a physical location using a resource access system in communication with a mobile network including a plurality of mobile base stations, the method being performed by the resource access system and comprising:
-
receiving a request from the end user to be permitted to access the resource; determining whether the end user has access credentials to access the resource; requesting and receiving information from a subscriber server for the mobile network including subscriber data associated with a mobile device associated with the end user, the subscriber data including information that identifies the mobile device with the end user; requesting and receiving information from a backend system of the mobile network including information indicating a cellular base station identity code corresponding to a one of the plurality of mobile base stations to which the mobile device is currently connected; mapping the subscriber data to the cellular base station identity code of the currently connected mobile base station; verifying a current approximate location of the mobile device using the cellular base station identity code and verifying that the cellular base station identity code identifies a mobile base station near the resource; and allowing access to the resource only if the end user has access credentials to access the resource and the physical location matches the current approximate location of the mobile device. - View Dependent Claims (2)
-
-
3. A system for providing an end user access to a secure resource, the system comprising:
-
a resource access system in communication with a mobile network database; an access database connected to and accessible by the resource access system, the resource access system configured to determine whether the end user has access credentials to access the secure resource based on information stored in the access database; in which the resource access system is configured to communicate with the mobile network database to obtain subscriber data associated with a mobile device associated with the end user in response to the resource access system receiving a request from the user to access the secure resource; in which the resource access system is configured to communicate with a backend system of a mobile network to obtain a cellular base station identity code associated with a mobile base station to which the mobile device, is currently connected and configured to verify that the cellular base station identity code identifies a mobile base station near the secure resource; and in which the resource access system is configured to map the subscriber data to the cellular base station identity code to verify that the mobile device is at a physical location near the secure resource. - View Dependent Claims (4)
-
Specification