Provision of services over a common delivery platform such as a mobile telephony network
First Claim
1. A system for providing services to subscribers of a network, wherein the system supports the provision of a plurality of different services to multiple subscribers, and comprises:
- a first processing unit which provides a first execution environment for a first set of software applications for providing respective services;
a second processing unit which provides a second execution environment for a second set of software applications for providing respective services;
a data structure for storing data associated with a plurality of subscribers of the system, wherein data associated with each of said plurality of subscribers of the system comprises a plurality of sets of data, each set of data relating to a respective level of authentication; and
a trust model comprising a set of relationships between the sets of data, wherein the trust model determines the access rights of subscribers to different services hosted by the different processing units in dependence on the data set which has been used to authenticate the subscriber in a given subscriber session.
2 Assignments
0 Petitions
Accused Products
Abstract
One embodiment of a system for providing services to subscribers of a network supports the provision of a plurality of different services to multiple subscribers. A processor arrangement is provided for hosting the different services. A data structure is provided for storing data associated with subscribers of the system, wherein data associated with subscribers of the system comprises a plurality of sets of data, each set of data relating to a respective level of authentication. A trust model comprises a set of relationships between the sets of data, and the trust model determines the access rights of subscribers to different services in dependence on the data set which has been used to authenticate the subscriber in a given subscriber session. The use of this trust model enables services and other access rights to be provided to a subscribed which match the level of authentication which has been applied to the subscriber during any particular session.
60 Citations
20 Claims
-
1. A system for providing services to subscribers of a network, wherein the system supports the provision of a plurality of different services to multiple subscribers, and comprises:
-
a first processing unit which provides a first execution environment for a first set of software applications for providing respective services;
a second processing unit which provides a second execution environment for a second set of software applications for providing respective services;
a data structure for storing data associated with a plurality of subscribers of the system, wherein data associated with each of said plurality of subscribers of the system comprises a plurality of sets of data, each set of data relating to a respective level of authentication; and
a trust model comprising a set of relationships between the sets of data, wherein the trust model determines the access rights of subscribers to different services hosted by the different processing units in dependence on the data set which has been used to authenticate the subscriber in a given subscriber session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method of controlling access to services provided by a network operator, the network operator using a system which supports the provision of a plurality of different services to multiple subscribers, the system comprising a first processing unit which provides a first execution environment for a first set of software applications for providing respective services and a second processing unit which provides a second execution environment for a second set of software applications for providing respective services, the method comprising:
-
receiving a service request from a subscriber for services hosted by one of the first and second processing units;
interrogating a data structure which stores data associated with a plurality of subscribers of the system, the data associated with each of said plurality of subscribers of the system comprising a plurality of sets of data, each set of data relating to a respective level of authentication;
using a trust model comprising a set of relationships between the sets of data to determine access rights of the subscriber to the service requested; and
permitting or prohibiting access to the service requested based on the trust model and on the data set which has been used to authenticate the subscriber in the subscriber session. - View Dependent Claims (17, 18, 19)
-
-
20. A data structure for use in a system for providing services to subscribers of a network, wherein the system supports the provision of a plurality of different services to multiple subscribers, the system comprising a first processing unit which provides a first execution environment for a first set of software applications for providing respective services and a second processing unit which provides a second execution environment for a second set of software applications for providing respective services,
wherein the data structure stores data associated with a plurality of subscribers of the system, wherein data associated with each of said plurality of subscribers of the system comprises a plurality of sets of data, each set of data relating to a respective level of authentication, and wherein the data structure further comprises a trust model comprising a set of relationships between the sets of data, wherein the trust model is for determining access rights of subscribers to different services hosted by different processing units in dependence on the data set which has been used to authenticate the subscriber in a given subscriber session.
Specification