METHOD AND SYSTEM FOR PROVIDING PERSONALIZED SERVICE MOBILITY

US 20080044032A1
Filed: 11/14/2006
Published: 02/21/2008
Est. Priority Date: 11/14/2005
Status: Abandoned Application

First Claim

Patent Images

1. A method for securely transmitting personal profile information, comprising:

encrypting the personal profile information, stored in a first location, in accordance with instance-based parameters;

retrieving the encrypted personal profile information at a second location; and

decrypting the encrypted personal profile information if the instance-based parameters are satisfied.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for securely transporting personalized service policies from a trusted home SIP server to an un-trusted host server, through a hostile environment, such as the Internet, using identity-based encryption. A user is able to define an instance-based encryption seed for a public key to be used in encryption of SIP, or other open signaling protocol, personalized services, including defining the time and the location at which the public key is to be valid. The method consists of encrypting, in accordance with instance-based parameters, personal profile information describing the personalized service policies; retrieving the encrypted personal profile information at the un-trusted host server; and decrypting the encrypted personal profile information if the instance-based parameters are satisfied.

Citations

58 Claims

1. A method for securely transmitting personal profile information, comprising:
- encrypting the personal profile information, stored in a first location, in accordance with instance-based parameters;
  
  retrieving the encrypted personal profile information at a second location; and
  
  decrypting the encrypted personal profile information if the instance-based parameters are satisfied.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The method of claim 1, wherein the first location is a trusted host environment.
  - 3. The method of claim 1, further including transmitting the encrypted personal profile information over an un-trusted network.
  - 4. The method of claim 1, wherein the second location is an un-trusted host environment.
  - 5. The method of claim 1, wherein the encrypting and decrypting employ an identity-based encryption method.
  - 6. The method of claim 5, wherein the instance-based parameters include a user-defined string and at least one constraint as a public key.
  - 7. The method of claim 6, wherein the at least one constraint is selected from the group consisting of time, date and location.
  - 8. The method of claim 6, wherein the decrypting includes generating a private key at the second location in accordance with the public key.
  - 9. The method of claim 8, wherein the private key is valid only when the at least one constraint is satisfied.
  - 10. The method of claim 9, further including re-encrypting the personal profile information when the private key expires.
  - 11. The method of claim 1, further including activating, in accordance with the decrypted personal profile information, personalized services at the second location.
  - 12. The method of claim 1, wherein personal profile information is retrieved over a network implementing Session Initiation Protocol (SIP).
  - 13. The method of claim 1, wherein the personal profile information is described in Call Processing Language (CPL).

14. A system for transmitting personal profile information over a packet-based network, comprising:
- a first user agent storing personalized services policies and communicating with a server to encrypt, using identity-based encryption, the personalized policies in accordance with user-defined criteria;
  
  a second user agent, remote from the first user agent, to receive the encrypted personalized service policies; and
  
  a private key generator, in communication with the first and second user agents, to generate a private key in accordance with the public key, the private key being adapted to decrypt the encrypted personalized services policies only when the user-defined criteria are satisfied.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 15. The system of claim 14, wherein the second user agent operates in an un-trusted environment.
  - 16. The system of claim 14, wherein the packet-based network implements SIP.
  - 17. The system of claim 14, wherein the packet-based network implements H.323 protocol.
  - 18. The system of claim 14, wherein the packet-based network implements Media Gateway Control Protocol (MGCP) or Megaco/H.248 protocol.
  - 19. The system of claim 14, wherein the decrypted personalized services policies are stored in a local database for access by the second user agent.
  - 20. The system of claim 14, further including means for re-encrypting the decrypted personalized services policies when the user-defined criteria are no longer met.
  - 21. The system of claim 14, wherein the personalized services policies are described in CPL.
  - 22. The system of claim 14, wherein the second user agent is installed in a user device.
  - 23. The system of claim 22, wherein the user device includes a SIP client.
  - 24. The system of claim 23, wherein the user device is selected from the group consisting of laptop computers, desktop computers, and personal data assistants.
  - 25. The system of claim 22, wherein the user device is a SIP telephone.

26. A method for providing personalized service mobility over a packet-based network, comprising:
- defining a public key in accordance with instance-based parameters;
  
  encrypting a personalized services profile using the public key;
  
  transmitting the encrypted personalized services profile over the packet-based network;
  
  generating a private key in accordance with the public key;
  
  decrypting the encrypted personal profile information with the private key if the instance-based parameters are satisfied.
- View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34)
- - 27. The method of claim 26, wherein the instance-based parameters include a user-defined string.
  - 28. The method of claim 26, wherein the instance-based parameters include at least one constraint of time, date, and location.
  - 29. The method of claim 26, wherein the packet-based network implements SIP.
  - 30. The method of claim 26, wherein the packet-based network implements H.323 protocol.
  - 31. The method of claim 26, wherein the packet-based network implements MGCP or Megaco/H.248 protocol.
  - 32. The method of claim 26, wherein the encrypted personalized services information is transmitted from a first location to a second location.
  - 33. The method of claim 32, wherein the private key is generated from the second location.
  - 34. The method of claim 32, wherein the first location is a trusted server and the second location is a un-trusted server.

35. A user agent for securely deploying personalized services policies, comprising:
- means for receiving a personalized services profile encrypted with a public key defined by instance-based parameters;
  
  means for receiving a private key generated in accordance with the public key; and
  
  a decryption engine to decrypt the encrypted personalized services profile if the instance-based parameters are satisfied.
- View Dependent Claims (36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46)
- - 36. The user agent of claim 35, further including means for activating personalized services in accordance with the decrypted personalized services profile.
  - 37. The user agent of claim 35, wherein the instance-based parameters include a user-defined phrase.
  - 38. The user agent of claim 35, wherein the instance-based parameters include at least one constraint selected from time, date and location.
  - 39. The user agent of claim 38, wherein the private key expires when the at least one constraint is invalid.
  - 40. The user agent of claim 35, further including means to communicate with a private key generator to generate the private key.
  - 41. The user agent of claim 40, further including means to transmit a user-defined phrase and at least one constraint to the private key generator.
  - 42. The user agent of claim 41, wherein the at least one constraint is selected from time, date and location.
  - 43. The user agent of claim 35, wherein the encrypted personalized services profile is received over a packet-based network.
  - 44. The user agent of claim 35, wherein the packet-based network implements SIP.
  - 45. The user agent of claim 35, wherein the packet-based network implements H.323 protocol.
  - 46. The user agent of claim 35, wherein the packet-based network implements MGCP or Megaco/H.248 protocol.

47. A method for securely deploying personalized services, comprising:
- receiving a personalized services profile encrypted in accordance with a public key;
  
  receiving a private key generated in accordance with the public key;
  
  decrypting the encrypted personalized services profile if instance-based parameters associated with the public and private keys are satisfied.
- View Dependent Claims (48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58)
- - 48. The method of claim 47, wherein encrypted personalized services profile are received in an un-trusted host environment.
  - 49. The method of claim 47, wherein the personalized services profile is encrypted and decrypted using an identity-based encryption method.
  - 50. The method of claim 47, wherein the instance-based parameters include a user-defined string and at least one constraint.
  - 51. The method of claim 50, wherein the at least one constraint is selected from the group consisting of time, date and location.
  - 52. The method of claim 47, wherein the decrypting includes generating the private key from a second location.
  - 53. The method of claim 50, wherein the private key is valid only when the at least one constraint is satisfied.
  - 54. The method of claim 47, further including re-encrypting the personal profile information when the private key expires.
  - 55. The method of claim 47, further including activating, in accordance with the decrypted personalized profile, personalized services at the second location.
  - 56. The method of claim 47, wherein the encrypted personalized services profile is received over a network implementing SIP.
  - 57. The method of claim 47, wherein the encrypted personalized services profile is received over a network implementing H.323 protocol.
  - 58. The method of claim 47, wherein the personalized services profile is described in CPL.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
BCE Incorporated, TeamOn Systems Incorporated (Blackberry Limited)
Original Assignee
BCE Incorporated
Inventors
Lou, Dafu, O'Brien, William, Yeap, Tet

Application Number

US11/559,553
Publication Number

US 20080044032A1
Time in Patent Office

Days
Field of Search
US Class Current

380/284
CPC Class Codes

H04L 63/0442   wherein the sending and rec...

H04L 65/1104   Session initiation protocol...

H04L 65/40   Support for services or app...

H04L 67/306   User profiles

METHOD AND SYSTEM FOR PROVIDING PERSONALIZED SERVICE MOBILITY

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

58 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND SYSTEM FOR PROVIDING PERSONALIZED SERVICE MOBILITY

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

58 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links