Methods and apparatus for increasing security and control of voice communication sessions using digital certificates
First Claim
1. A private network certificate control mechanism for use in facilitating secure Push-To-Talk (PTT) over Cellular (PoC) communications for mobile communication devices associated with a private communication network, the interface having:
- a certificate controller;
the certificate controller being adapted to communicate with a Certificate Authority (CA) component so as to produce and store a plurality of digital certificates for a plurality of mobile communication devices associated with a private communication network; and
the certificate controller being further adapted to communicate with one of a PoC server and a PoC group list server over a public communication network so as to provide the plurality of digital certificates for secure PoC communication sessions for chat groups which include the plurality of mobile communication devices.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus for increasing security and control of voice communication sessions, such as Push-To-Talk (PTT) over Cellular (PoC) sessions, using digital certificates are disclosed. A certificate control mechanism of a private communication network is used to help facilitate secure PoC sessions for mobile communication devices associated with the private network. The certificate control mechanism of includes a certificate controller which is adapted to communicate with a Certificate Authority (CA) component which produces and stores a plurality of digital certificates for the mobile devices. The certificate controller is further adapted to communicate with one of a PoC server and a PoC group list server through a public communication network (e.g. the Internet) so as to provide the plurality of digital certificates for secure PoC communication sessions for chat groups which include the plurality of mobile communication devices. In one illustrative technique, a request message for participation in a PoC session is received by an authentication component of a PoC server from a mobile device. The request message is signed with use of a private key of a digital certificate which may be associated with the mobile device, an end user of the mobile device, or a chat group which includes the mobile device. An authentication procedure is performed on the request message by the authentication component. The authentication procedure includes retrieving a public key associated with the digital certificate and attempting to validate the signature with use of the public key. Processing for the PoC communication session is permitted for the mobile communication device if the authentication is successful, and otherwise denied. Several other techniques and variations are described.
80 Citations
31 Claims
-
1. A private network certificate control mechanism for use in facilitating secure Push-To-Talk (PTT) over Cellular (PoC) communications for mobile communication devices associated with a private communication network, the interface having:
-
a certificate controller;
the certificate controller being adapted to communicate with a Certificate Authority (CA) component so as to produce and store a plurality of digital certificates for a plurality of mobile communication devices associated with a private communication network; and
the certificate controller being further adapted to communicate with one of a PoC server and a PoC group list server over a public communication network so as to provide the plurality of digital certificates for secure PoC communication sessions for chat groups which include the plurality of mobile communication devices. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for use by an authentication component of a voice session server for establishing a voice communication session for a plurality of mobile communication devices, the method comprising the acts of:
-
receiving, from a mobile communication device, a request message for the voice communication session which is signed with a private key associated with a digital certificate;
causing an authentication to be performed on the request message, which includes;
retrieving a public key associated with the digital certificate;
attempting to verify the signature in the request message using the public key; and
permitting processing for the voice communication session for the mobile communication device if the authentication is successful. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
-
15. An authentication component of a voice session server for establishing a voice communication session for a plurality of mobile communication devices, the authentication component being adapted to receive, from a mobile communication device, a request message for the voice communication session which is signed using a private key associated with a digital certificate;
- cause an authentication to be performed on the request message which includes retrieving a public key associated with the signed digital certificate and attempting to verify the signature in the request message with use of the public key; and
permit processing for the voice communication session for the mobile communication device if the authentication is successful. - View Dependent Claims (16, 17, 18, 19, 20)
- cause an authentication to be performed on the request message which includes retrieving a public key associated with the signed digital certificate and attempting to verify the signature in the request message with use of the public key; and
-
21. A method for use by a mobile communication device in establishing a voice communication session with one or more other mobile communication devices in a communication system, the method comprising the acts of:
-
signing a request message for the voice communication session with a private key associated with a digital certificate;
causing the request message for the voice communication session to be sent through a wireless communication network for authentication within the communication system; and
engaging in the voice communication session with the one or more mobile communication devices based on the authentication. - View Dependent Claims (22, 23, 24, 25, 26)
-
-
27. A mobile communication device, comprising:
-
a wireless transceiver;
one or more processors coupled to the wireless transceiver;
the one or more processors being adapted to;
sign a request message for the voice communication session with a private key associated with a digital certificate;
cause the request message for the voice communication session to be sent, via the wireless transceiver, for authentication within the communication system; and
engage in the voice communication session with the one or more mobile communication devices based on the authentication. - View Dependent Claims (28, 29, 30, 31)
-
Specification