Network authentication

US 20020034301A1
Filed: 08/14/2001
Published: 03/21/2002
Est. Priority Date: 08/15/2000
Status: Abandoned Application

First Claim

Patent Images

1. A method of authenticating communications, the method comprising:

using a mobile communications device, which includes a cryptographic module for use in mobile communication, as an authentication token.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An existing communications device, such as a WAP-enabled mobile phone or other device, can be used as an authentication token.

This has the advantage that WAP-enabled devices include components which are used in public key/private key cryptographic systems as a part of their standard communication functions. These components therefore advantageously allow the device to be used as an authentication token when communicating with a remote server.

67 Citations

View as Search Results

27 Claims

1. A method of authenticating communications, the method comprising:
- using a mobile communications device, which includes a cryptographic module for use in mobile communication, as an authentication token.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. A method of authenticating communications as claimed in claim 1, wherein the mobile communications device is a WAP-enabled device.
  - 3. A method of authenticating communications as claimed in claim 1 or 2, wherein the use of the mobile communications device as an authentication token includes using public key encryption of communications.
  - 4. A method of authenticating communications as claimed in claim 1, 2 or 3, wherein the mobile communications device uses the cryptographic module for Wireless Transport Layer Security communications.
  - 5. A method of authenticating communications as claimed in claim 1, 2, 3 or 4, wherein the mobile communications device is used as an authentication token for a computer, and authenticates communications between the computer and an authentication server.
  - 6. A method of authenticating communications as claimed in claim 5, comprising providing a wired connection between the mobile communications device and the computer.
  - 7. A method of authenticating communications as claimed in claim 5, comprising providing a wireless connection between the mobile communications device and the computer.

8. A mobile communications device, comprising a cryptographic module, the cryptographic module being usable:
- (a) for encoding wireless communications from the device;
  
  (b) for authenticating a user of the device towards an authentication server.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 9. A mobile communications device as claimed in claim 8, the cryptographic module being usable for authenticating a user of a separate computer towards the authentication server.
  - 10. A mobile communications device as claimed in claim 9, having a short-range wireless communications transceiver, for sending signals to and receiving signals from the computer.
  - 11. A mobile communications device as claimed in claim 10, wherein the short-range wireless communications transceiver uses Bluetooth wireless technology.
  - 12. A mobile communications device as claimed in one of claims 8-11, wherein the cryptographic module is usable to support wireless communications using Wireless Transport Layer Security.
  - 13. A mobile communications device as claimed in one of claims 8-12, having means for allowing biometric identification of a user.
  - 14. A mobile communications device as claimed in one of claims 8-13, wherein the cryptographic module uses public key cryptography.
  - 15. A mobile communications device as claimed in one of claims 8-14, comprising means for sending and transmitting data using WAP.
  - 16. A mobile communications device as claimed in one of claims 8-15, wherein the cryptographic module is realised in hardware in the device.
  - 17. A mobile communications device as claimed in one of claims 8-15, wherein the cryptographic module is realised in software in the device
  - 18. A mobile communications device as claimed in one of claims 8-15, wherein the cryptographic module is provided on an external smart card.
  - 19. A mobile communications device as claimed in one of claims 8-15, wherein the cryptographic module comprises a Wireless Identity Module (WIM) card.
  - 20. A mobile communications device as claimed in claim 19, wherein the cryptographic module comprises a Wireless Identity Module (WIM) card which allows communications using Wireless Transport Layer Security.

21. A WAP-enabled mobile communications device, which is capable of use as an authentication token.

22. A communications network, comprising:
- at least one WAP gateway, which is enabled to encrypt communications on the basis of Wireless Transport Layer Security;
  
  at least one authentication server operable in a first authentication protocol; and
  
  a WAP-enabled client device, including a cryptographic module, the cryptographic module being usable for encrypting communications with the WAP gateway using Wireless Transport Layer Security, and the cryptographic module being further usable as an authentication token for authenticating a user of the device towards the authentication server, using the first authentication protocol.
- View Dependent Claims (23, 24, 25, 26, 27)
- - 23. A network as claimed in claim 22, wherein the cryptographic module is realised in hardware in the client device.
  - 24. A network as claimed in claim 22, wherein the cryptographic module is realised in software in the client device.
  - 25. A network as claimed in claim 22, wherein the cryptographic module is provided on an external smart card.
  - 26. A network as claimed in claim 22, wherein the cryptographic module comprises a Wireless Identity Module (WIM) card.
  - 27. A network as claimed in any of claims 22-26, comprising a computer, the client device having a connection to the computer such that it acts as an authentication token therefor.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Telefonaktiebolaget LM Ericsson
Original Assignee
Telefonaktiebolaget LM Ericsson
Inventors
Andersson, Stefan

Application Number

US09/928,491
Publication Number

US 20020034301A1
Time in Patent Office

Days
Field of Search
US Class Current

380/270
CPC Class Codes

G06F 21/31   User authentication

G06F 21/32   using biometric data, e.g. ...

G06F 21/43   wireless channels

G06F 2221/2103   Challenge-response

H04L 63/0442   wherein the sending and rec...

H04L 63/08   for authentication of entit...

H04L 63/0838   using one-time-passwords

H04L 63/0853   using an additional device,...

H04L 63/166   at the transport layer

H04W 12/065   Continuous authentication

H04W 12/069   using certificates or pre-s...

H04W 12/08   Access security

Network authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

67 Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Network authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

67 Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links