Data security in a mobile e-mail service
First Claim
1. A method for conveying e-mail traffic between an e-mail server and a mobile terminal, wherein the mobile terminal has an e-mail address under the e-mail server and a permanent terminal identity and a temporary identity in an access network;
- the method comprising;
installing a connectivity function which is operationally coupled to the e-mail server and the access network, wherein the connectivity function is configured to encrypt e-mail traffic to the mobile terminal and decrypt e-mail traffic from the mobile terminal, by using encryption information;
generating a service activation code at the mobile terminal, wherein the service activation code comprises an identifier of the mobile terminal, encryption information and checksum information;
conveying the service activation code via a secure channel to an authenticating terminal;
conveying the identifier of the mobile terminal and the encryption information to the connectivity function.
5 Assignments
0 Petitions
Accused Products
Abstract
A method for conveying e-mail traffic between an e-mail server (108) and a mobile terminal (102) which has an e-mail address (122A) under the e-mail server and permanent terminal identity (122B) and a temporary identity (122D) in an access network (114). A connectivity function (600) is operationally coupled to the e-mail server (108) and the access network (114). The connectivity function (120) encrypts e-mail traffic to the mobile terminal and decrypt e-mail traffic from the mobile terminal, by using encryption information (122C). The mobile terminal generates (2-1) a service activation code which comprises an identifier (124D) of the mobile terminal, encryption information (122C) and checksum information. The service activation code is conveyed (2-3, 2-4) via a secure channel (2-3) to an authenticating terminal (100), from which the identifier (124D) of the mobile terminal and the encryption information (122C) are conveyed to the connectivity function (600).
176 Citations
5 Claims
-
1. A method for conveying e-mail traffic between an e-mail server and a mobile terminal, wherein the mobile terminal has an e-mail address under the e-mail server and a permanent terminal identity and a temporary identity in an access network;
the method comprising;
installing a connectivity function which is operationally coupled to the e-mail server and the access network, wherein the connectivity function is configured to encrypt e-mail traffic to the mobile terminal and decrypt e-mail traffic from the mobile terminal, by using encryption information;
generating a service activation code at the mobile terminal, wherein the service activation code comprises an identifier of the mobile terminal, encryption information and checksum information;
conveying the service activation code via a secure channel to an authenticating terminal;
conveying the identifier of the mobile terminal and the encryption information to the connectivity function. - View Dependent Claims (2, 3, 4)
-
5. A computer program set on at least one carrier, the computer program set comprising:
-
a first routine for causing a mobile terminal to generate a service activation code and to transfer it to an off-line channel, wherein the service activation code comprises an identifier of the mobile terminal, encryption information and checksum information;
a second routine for receiving the service activation code via the off-line channel at an authenticating terminal;
a third routine for conveying the identifier of the mobile terminal and the encryption information to a connectivity function that is operationally coupled to an e-mail server and an access network serving the mobile terminal; and
a set of fourth routines for establishing an encrypted data channel between the connectivity function and the mobile terminal, based on the identifier of the mobile terminal and the encryption information.
-
Specification