Method and architecture for managing a fleet of mobile stations over wireless data networks
First Claim
1. An architecture for securely managing a plurality of mobile stations, said architecture comprising:
- a carrier infrastructure providing a radio link to the plurality of the mobile stations over a wireless data network using a first communication protocol;
a fleet managing system coupled to said carrier infrastructure, said fleet managing system comprising a proxy server, said proxy server further comprising an account manager managing a plurality of user accounts, each corresponding to one of the mobile stations; and
a proxy server module;
a memory receiving fleet data;
a provisioning interface providing secure access to said memory;
wherein said provisioning interface receives a request to push said fleet data in said memory to the plurality of the mobile stations, and wherein said proxy server module pushes said fleet data, via said carrier infrastructure, to the plurality of the mobile stations over said wireless data network after said request is authenticated by said provisioning interface and verified by said account manager.
5 Assignments
0 Petitions
Accused Products
Abstract
The present invention discloses a fleet managing system in which fleet data can be securely managed and disseminated to a selective group of mobile stations serviced by a carrier infrastructure. The fleet managing system relies on a series of consecutive transitive trusts between pairs of components in the system so that all communications from a provisioning entity to the mobile stations are secure. The access to the fleet managing system is guarded with a challenge response every time there is a request arriving at the system while the mobile stations are verified by an account manager in the system to ensure that the fleet data is eventually pushed to the correct group of mobile stations. Apart distinctly from existing fleet managing systems for mobile stations, the present invention provides secure means for an authorized entity, from anywhere at any time, to control the dissemination of mobile data to a specified group of mobile stations without incurring additional costs to or direct involvement of a service carrier.
-
Citations
28 Claims
-
1. An architecture for securely managing a plurality of mobile stations, said architecture comprising:
-
a carrier infrastructure providing a radio link to the plurality of the mobile stations over a wireless data network using a first communication protocol;
a fleet managing system coupled to said carrier infrastructure, said fleet managing system comprising a proxy server, said proxy server further comprising an account manager managing a plurality of user accounts, each corresponding to one of the mobile stations; and
a proxy server module;
a memory receiving fleet data;
a provisioning interface providing secure access to said memory;
wherein said provisioning interface receives a request to push said fleet data in said memory to the plurality of the mobile stations, and wherein said proxy server module pushes said fleet data, via said carrier infrastructure, to the plurality of the mobile stations over said wireless data network after said request is authenticated by said provisioning interface and verified by said account manager. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method for securely managing a plurality of mobile stations serviced by a carrier infrastructure, said method comprising:
-
sending a request from a provisioning entity to push fleet data to the plurality of the mobile stations;
receiving a challenge response from a fleet managing system in response to said request;
accessing said fleet managing system by supplying correct credential information to said challenge response;
wherein said fleet managing system comprises;
an account manager managing a plurality of user accounts, each corresponding to one of the mobile stations;
a proxy server module;
a memory; and
a provisioning interface providing secure access to said memory;
preparing said fleet data to be received in said memory;
determining the plurality of the mobile stations verified by said account manager with said plurality of said user accounts; and
executing said request to cause said fleet data pushed by said proxy server module to the plurality of the mobile stations. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
Specification