Method for providing network access to a mobile terminal and corresponding network

US 20040152446A1
Filed: 10/31/2003
Published: 08/05/2004
Est. Priority Date: 05/24/2001
Status: Abandoned Application

First Claim

Patent Images

1. A method of providing network access for a mobile terminal, the method comprising the steps of;

(a) receiving one or more terminal-unique identifiers from the mobile terminal (10) at an authentication server (50), (b) generating a temporary network address for the mobile terminal (10) (c) storing the unique identifier and temporary network address; and

(d) when access to a network (40) is requested by a mobile terminal (10) through a proxy server (70), retrieving the stored unique identifier corresponding to the temporary network address of the mobile terminal making the request;

(f) searching a database for access rights associated with the retrieved terminal identifier;

(g) allowing the request to be forwarded if the access rights for the retrieved terminal identifier are compatible with the access request.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invnetion provides secure access to applications such as intranet access and corporate e-mail systems from mobile terminals such as cellular telephones and Personal Digital Assistants (PDA) using Wireless Application Protocol (WAP) by using an identifier that is unique to the mobile terminal (either the handset itself or the Subscriber Information Module (SIM) card that is used in the handset). This is passed to the authentication systems used by the service provider after the conventional verification of username and password details. If the identifier matches the record held in the authentication database then the service provider returns a number of user-specific options, such as corporate e-mail, intranet access, inventory or ordering systems.

90 Citations

View as Search Results

13 Claims

1. A method of providing network access for a mobile terminal, the method comprising the steps of;
- (a) receiving one or more terminal-unique identifiers from the mobile terminal (10) at an authentication server (50), (b) generating a temporary network address for the mobile terminal (10) (c) storing the unique identifier and temporary network address; and
  
  (d) when access to a network (40) is requested by a mobile terminal (10) through a proxy server (70), retrieving the stored unique identifier corresponding to the temporary network address of the mobile terminal making the request;
  
  (f) searching a database for access rights associated with the retrieved terminal identifier;
  
  (g) allowing the request to be forwarded if the access rights for the retrieved terminal identifier are compatible with the access request.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. A method according to claim 1, wherein the authentication server (50) transmits the terminal-unique identifiers to a store (71) in the dynamic proxy server (70)
  - 3. A method according to claim 1, wherein the terminal-unique identifiers are stored in a store (51) in the authentication server (50) for retrieval therefrom by the dynamic proxy server (70).
  - 4. A method according to any of claims 1 to 3, wherein the dynamic proxy server communicates with the mobile terminal via a WAP gateway (20).
  - 5. A method according to any of claims 1 to 4, wherein the one or more terminal-unique identifiers received by the authentication server (50) are unique to the mobile terminal data carrier.
  - 6. A method according to claim 5, wherein the one or more terminal-unique identifiers received by the authentication server (50) are unique to a subscriber identity module (SIM) card held by the terminal (10).
  - 7. A method according to any of claim 1 to claim 4, wherein the one or more unique terminal identifiers received by the authentication server (50) are unique to the terminal hardware (10).
  - 8. A method according to any of claim 1 to claim 7, wherein the network address transmitted to the dynamic proxy server (70) is associated with the one or more terminal identifiers sent to the authentication server (50).
  - 9. A method according to any of claim 1 to claim 8, wherein the network address transmitted to the dynamic proxy server (70) is chosen from a defined range of network addresses.

10. A communications network comprising an authentication server (50) having address allocation means (59) for receiving data from a mobile terminal (10), said data comprising terminal-unique identifiers and allocating a temporary network address to the mobile terminal (10) storage means (51, 71) for storing the network address and the terminal-unique identifier for subsequent retrieval, a dynamic proxy server (70), the dynamic proxy server having identification means (73), correlation means (74), and validation means (75) the identification means (73) being arranged to identify the network address from which a data request originates, the correlation means (74) being arranged to search the database (51,71) of network addresses and, if the search indicates a match, retrieve the terminal-unique identifier corresponding to the network address from the database (51, 71), and the validation means (75) being arranged for searching a database for access rights associated with the retrieved terminal identifier, and forwarding the data request to the requested destination if the access rights for the retrieved terminal identifier are compatible with the access request.
- View Dependent Claims (11, 12, 13)
- - 11. A communications network according to claim 10, wherein the database (51) is part of the authentication server (50).
  - 12. A communications network according to claim 10, in which the authentication server (50) is in communication with the dynamic proxy server (70) such that, in use, the terminal-unique identifiers are communicated to the authentication server (50) from the mobile terminal via the dynamic proxy server (70).
  - 13. A communications network according to claim 10, 11, or 12 further comprising a WAP gateway (20), which is in communication with the dynamic proxy server (70) such that, in use, the mobile terminal (10) communicates with the dynamic proxy server (70) via the gateway (20).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
British Telecommunications PLC (BT Group PLC)
Original Assignee
British Telecommunications PLC (BT Group PLC)
Inventors
Saunders, Martyn DV, Ellis, Stephen a, Stacey, Kenneth D

Application Number

US10/476,537
Publication Number

US 20040152446A1
Time in Patent Office

Days
Field of Search
US Class Current

455/411
CPC Class Codes

H04L 61/00   Network arrangements, proto...

H04L 61/50   Address allocation

H04L 63/0281   Proxies

H04L 63/083   using passwords cryptograph...

H04L 63/0853   using an additional device,...

H04L 63/101   Access control lists [ACL]

H04W 12/06   Authentication

Method for providing network access to a mobile terminal and corresponding network

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

90 Citations

13 Claims

Specification

Solutions

Use Cases

Quick Links

Method for providing network access to a mobile terminal and corresponding network

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

90 Citations

13 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links