APPARATUS AND METHOD FOR PERFORMING USER AUTHENTICATION BY PROXY IN WIRELESS COMMUNICATION SYSTEM

US 20130263239A1
Filed: 03/27/2013
Published: 10/03/2013
Est. Priority Date: 03/27/2012
Status: Active Grant

First Claim

Patent Images

1. A method of performing user authentication of a mobile station by proxy in a communication system, the method comprising:

receiving an authentication request, which requests authentication of a user, from an Internet service provider having received information indicating that the mobile station can perform user authentication based on the mobile station'"'"'s own information;

requesting the user to provide security identification information for authentication;

receiving the security identification information input by the user;

authenticating the user by determining whether the security identification information is valid information, through security-requiring information managed by the mobile station, and transmitting an authentication result to the Internet service provider; and

receiving an authorized authentication result from the Internet service provider and providing a service according to the authorized authentication result to the user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of performing user authentication of a mobile station by proxy in a communication system is provided. The method includes receiving an authentication request, which requests authentication of a user, from an Internet service provider having received information indicating that the mobile station can perform authentication based on only the mobile station'"'"'s own information, requesting the user to provide security identification information for authentication, receiving the security identification information input by the user, authenticating the user by determining whether the security identification information is valid information, through security-requiring information managed by the mobile station, and transmitting an authentication result to the Internet service provider and receiving an authorized authentication result from the Internet service provider and providing a service according to the authorized authentication result to the user.

15 Citations

View as Search Results

20 Claims

1. A method of performing user authentication of a mobile station by proxy in a communication system, the method comprising:
- receiving an authentication request, which requests authentication of a user, from an Internet service provider having received information indicating that the mobile station can perform user authentication based on the mobile station'"'"'s own information;
  
  requesting the user to provide security identification information for authentication;
  
  receiving the security identification information input by the user;
  
  authenticating the user by determining whether the security identification information is valid information, through security-requiring information managed by the mobile station, and transmitting an authentication result to the Internet service provider; and
  
  receiving an authorized authentication result from the Internet service provider and providing a service according to the authorized authentication result to the user.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, wherein the mobile station manages a plurality of local Internet Protocol (IP) addresses/port numbers, and the authentication request is received through a local IP address/port number indicated by a web access address extracted by the Internet service provider.
  - 3. The method of claim 1, further comprising:
    - receiving the authentication request including information of an Internet site from the Internet service provider; and
      
      determining whether to allow the user to access the Internet site, in consideration of database information managed by the mobile station.
  - 4. The method of claim 3, wherein the database information comprises a black list including information of Internet sites not allowed to be accessed and a white list including information of Internet sites allowed to be accessed, and the black list and the white list are updated through a communication link set between a mobile communication service provider and the mobile station.

5. A method of performing user authentication of a mobile station by proxy in a communication system, the method comprising:
- performing a predetermined authentication algorithm in response to a request from a mobile communication service provider and transmitting a result of the performing of the predetermined authentication algorithm to the mobile communication service provider;
  
  receiving a user authentication result through a permanent authentication key generated according to the result of the performing of the predetermined authentication algorithm from the mobile communication service provider and providing the user authentication result to the Internet service provider; and
  
  receiving an authorized authentication result from the Internet service provider and providing a user with a service according to the authorized authentication result.
- View Dependent Claims (6, 7, 8, 9, 10)
- - 6. The method of claim 5, further comprising:
    - when authentication information of an internet site which the user wants to access exists, requesting the user to provide security identification information for authentication;
      
      receiving the security identification information input by the user;
      
      authenticating the user by determining whether the security identification information is valid information, through security-requiring information managed by the mobile station, and transmitting an authentication result to the Internet service provider; and
      
      receiving the authorized authentication result through the permanent authentication key from the Internet service provider and providing the user with the service according to the authorized authentication result.
  - 7. The method of claim 6, further comprising:
    - after transmitting the authentication result to the Internet service provider, performing a predetermined authentication algorithm in response to a request from the mobile communication service provider and transmitting a result of the performing of the predetermined authentication algorithm to the mobile communication service provider;
      
      receiving a user authentication result re-authenticated through an authentication key generated according to the result of the performing of the predetermined authentication algorithm from the mobile communication service provider; and
      
      receiving an authorized authentication result from the Internet service provider and providing the user with a service according to the authorized authentication result.
  - 8. The method of claim 6, further comprising:
    - after receiving the security identification information, generating a confirmation key by using authentication time according to the security identification information and transmitting information of the generated confirmation key to the Internet service provider; and
      
      receiving the authorized authentication result from the Internet service provider and providing the user with a service according to the authorized authentication result,wherein the authorized authentication result comprises a result obtained by authorizing the user authentication result re-authenticated through the confirmation key from the mobile communication service provider.
  - 9. The method of claim 5, further comprising:
    - receiving an authentication request, which requests authentication of a use and includes information of an Internet site from the Internet service provider; and
      
      determining whether to allow the user to access the Internet site, in consideration of database information managed by the mobile station.
  - 10. The method of claim 9, wherein the database information comprises a black list including information of Internet sites not allowed to be accessed and a white list including information of Internet sites allowed to be accessed, and the black list and the white list are updated through a communication link set between a mobile communication service provider and the mobile station.

11. A mobile station for performing user authentication by proxy in a communication system, the mobile station comprising:
- a user interface for requesting a user to provide security identification information for authentication of the user and for receiving the security identification information input by the user; and
  
  a security local web server for receiving an authentication request, which requests authentication of the user, from an Internet service provider having received information indicating that the mobile station can perform user authentication based on the mobile station'"'"'s own information, for authenticating the user by determining whether the security identification information is valid information, through security-requiring information managed by the mobile station, for transmitting an authentication result to the Internet service provider, for receiving an authorized authentication result from the Internet service provider, and for providing a service according to the authorized authentication result to the user.
- View Dependent Claims (12, 13, 14)
- - 12. The mobile station of claim 11, wherein the security local web server manages a plurality of local Internet Protocol (IP) addresses/port numbers, and the authentication request is received through a local IP address/port number indicated by a web access address extracted by the Internet service provider.
  - 13. The mobile station of claim 11, wherein the security local web server receives the authentication request including information of an Internet site from the Internet service provider, and determines whether to allow the user to access the Internet site, in consideration of database information managed by the mobile station.
  - 14. The mobile station of claim 13, wherein the database information comprises a black list including information of Internet sites not allowed to be accessed and a white list including information of Internet sites allowed to be accessed, and the black list and the white list are updated through a communication link set between a mobile communication service provider and the mobile station.

15. A mobile station of performing user authentication by proxy in a communication system, the mobile station comprising:
- a security local web server for performing a predetermined authentication algorithm in response to a request from a mobile communication service provider and transmitting a result of the performing of the predetermined authentication algorithm to the mobile communication service provider, for receiving a user authentication result through a permanent authentication key generated according to the result of the performing of the predetermined authentication algorithm from the mobile communication service provider and providing the user authentication result to the Internet service provider, and for receiving an authorized authentication result from the Internet service provider and providing a user with a service according to the authorized authentication result.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The mobile station of claim 15, further comprising:
    - a user interface for, when authentication information of an internet site which the user wants to access exists, requesting the user to provide security identification information for authentication and for receiving the security identification information input by the user,wherein the security local web server authenticates the user by determining whether the security identification information is valid information, through security-requiring information managed by the mobile station, transmits an authentication result to the Internet service provider, receives the authorized authentication result through the permanent authentication key from the Internet service provider, and provides the user with the service according to the authorized authentication result.
  - 17. The mobile station of claim 16, wherein, after transmitting the authentication result to the Internet service provider, the security local web server performs a predetermined authentication algorithm in response to a request from the mobile communication service provider, transmits a result of the performing of the predetermined authentication algorithm to the mobile communication service provider, receives a user authentication result re-authenticated through an authentication key generated according to the result of the performing of the predetermined authentication algorithm from the mobile communication service provider, receiving an authorized authentication result from the Internet service provider, and provides the user with a service according to the authorized authentication result.
  - 18. The mobile station of claim 16, wherein, after receiving the security identification information, the security local web server generates a confirmation key by using authentication time according to the security identification information, transmits information of the generated confirmation key to the Internet service provider, receives the authorized authentication result from the Internet service provider, and provides the user with a service according to the authorized authentication result, and the authorized authentication result comprises a result obtained by authorizing the user authentication result re-authenticated through the confirmation key from the mobile communication service provider.
  - 19. The mobile station of claim 15, wherein the security local web server receives an authentication request, which requests authentication of a use and includes information of an Internet site from the Internet service provider, and determines whether to allow the user to access the Internet site, in consideration of database information managed by the mobile station.
  - 20. The mobile station of claim 19, wherein the database information comprises a black list including information of Internet sites not allowed to be accessed and a white list including information of Internet sites allowed to be accessed, and the black list and the white list are updated through a communication link set between a mobile communication service provider and the mobile station.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd. (Samsung Group), University-Industry Cooperation Group of KyungHee University
Original Assignee
Samsung Electronics Co. Ltd. (Samsung Group), University-Industry Cooperation Group of KyungHee University
Inventors
LIM, Han-Na, LEE, Ji-Cheol, LEE, Sung-Won

Granted Patent

US 9,419,974 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/7
CPC Class Codes

H04L 63/0884 by delegation of authentica...

H04W 12/069 using certificates or pre-s...

APPARATUS AND METHOD FOR PERFORMING USER AUTHENTICATION BY PROXY IN WIRELESS COMMUNICATION SYSTEM

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

15 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

APPARATUS AND METHOD FOR PERFORMING USER AUTHENTICATION BY PROXY IN WIRELESS COMMUNICATION SYSTEM

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links