Method and apparatus to provide cryptographic identity assertion for the PSTN
First Claim
1. A device to authenticate an identity assertion included in a non-packet-switched communication comprising:
- a processor sending a packet-switched communication and the non-packet-switched communication to a same endpoint;
wherein the packet-switched communication authenticates the identity assertion included in the non-packet switched communication.
1 Assignment
0 Petitions
Accused Products
Abstract
The present application provides an authentication scheme that allows a device to provide additional authentication of a Publicly Switched Telephone Network (PSTN) identity assertion made in a PSTN call by also sending an Internet Protocol (IP) communication. The device sends the IP communication generally in parallel with the PSTN call. The IP communication includes a network identity assertion, which optionally may be authenticated using a cryptographically secure technique. The network identity assertion, being more difficult to falsify, provides additional authentication of the PSTN identity assertion.
38 Citations
24 Claims
-
1. A device to authenticate an identity assertion included in a non-packet-switched communication comprising:
-
a processor sending a packet-switched communication and the non-packet-switched communication to a same endpoint;
wherein the packet-switched communication authenticates the identity assertion included in the non-packet switched communication. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A device to receive authentication of an identity assertion included in a non-packet-switched communication comprising:
a processor authenticating the identity assertion included in the non-packet-switched communication using a network identity assertion included in a correlated packet-switched communication. - View Dependent Claims (7, 8, 9)
-
10. A method for authenticating an identity assertion included in a non-packet-switched communication comprising:
-
sending the non-packet-switched communication including the identity assertion to an endpoint; and
sending a packet-switched communication to the endpoint;
wherein the packet-switched communication includes a network identity assertion that is associated with the identity assertion. - View Dependent Claims (11, 12)
-
-
13. A method for authenticating an identity assertion included in a Publicly Switched Telephone Network (PSTN) communication comprising:
-
correlating the PSTN communication with an Internet Protocol (IP) communication sent from a same endpoint; and
authenticating the identity assertion included in the PSTN communication using a network identity assertion included in the IP communication. - View Dependent Claims (14, 15, 16)
-
-
17. A system for authenticating an identity assertion included in a non-packet-switched communication comprising:
-
sending both a packet-switched communication and a non-packet-switched communication to a same endpoint;
wherein the non-packet-switched communication includes an identity assertion and the packet-switched communication includes a network identity assertion that is associated with the identity assertion. - View Dependent Claims (18, 19)
-
-
20. A system for authenticating an identity assertion included in a Publicly Switched Telephone Network (PSTN) communication comprising:
-
means for correlating the PSTN communication with an Internet Protocol (IP) communication sent from a same endpoint; and
means for authenticating the identity assertion included in the PSTN communication using a network identity assertion included in the IP communication. - View Dependent Claims (21, 22, 23)
-
-
24. A computer storage medium containing instructions for authenticating an identity assertion included in a non-packet-switched communication, the instructions when executed comprising:
-
sending a non-packet-switched communication including an identity assertion to an endpoint; and
automatically sending a packet-switched communication to the endpoint, the packet-switch communication including a network identity assertion that is associated with the identity assertion;
whereby the network identity assertion authenticates the identity assertion.
-
Specification