Method and apparatus for preventing wireless fraud
First Claim
1. A method for use in completing calls from first and second wireless telephones each having a MIN, said wireless telephones being served by respective first and second wireless carriers, the method comprising the steps of:
- receiving at first and second mobile switching centers belonging, respectively, to said first and second wireless carriers, requests for completion of a wireless call from each of said wireless telephones;
establishing with an authentication platform, from each of said first and second mobile switching centers, respective first and second voice channel telephone connections, said authentication platform serving said first and second wireless carriers, if said first and second requests originated from wireless telephones belonging to a group of predetermined MINs;
supplying to said authentication platform said MINs of said first and second wireless telephones, said MIN of said first wireless telephone being supplied over said first telephone connection and said MIN of said second wireless telephone being supplied over said second telephone connection;
transmitting respective challenges from said authentication platform to each of said first and second wireless telephones, via said first and second telephone connections and said first and second mobile switching centers of said first and second wireless carriers, each of said challenges being developed by said authentication platform from respective secret keys stored therein in association with said respective MINs of said first and second wireless telephones; and
denying, by said authentication platform, said first or said second call requests for which a proper response to its respective challenge is not received.
6 Assignments
0 Petitions
Accused Products
Abstract
The use of stolen mobile identification number (MIN) and electronic serial number (ESN) information to fraudulently place wireless calls is prevented by having the switches of multiple wireless carriers forward or direct, over a telephone connection, all calls placed from selected MINs to a central authentication platform that serves the multiple wireless carriers. The central authentication platform engages in a so-called "challenge-response" authentication with local processors that are interfaced to the wireless telephones from which non-fraudulent calls originate. The challenge-response authentication uses a shared secret key (S-Key) that is not broadcast over the interface, thus preventing the key from being "stolen". A call from a wireless telephone that is not interfaced to a local processor capable of successfully completing the challenge-response authentication is blocked, while a call from a wireless telephone having a local processor capable of successfully completing the challenge-response authentication is completed to the number desired by the customer. Advantageously, since the central authentication platform serves multiple wireless carriers, the need for one wireless carrier to access the database of another is alleviated and the expense of providing additional security is reduced.
118 Citations
15 Claims
-
1. A method for use in completing calls from first and second wireless telephones each having a MIN, said wireless telephones being served by respective first and second wireless carriers, the method comprising the steps of:
-
receiving at first and second mobile switching centers belonging, respectively, to said first and second wireless carriers, requests for completion of a wireless call from each of said wireless telephones; establishing with an authentication platform, from each of said first and second mobile switching centers, respective first and second voice channel telephone connections, said authentication platform serving said first and second wireless carriers, if said first and second requests originated from wireless telephones belonging to a group of predetermined MINs; supplying to said authentication platform said MINs of said first and second wireless telephones, said MIN of said first wireless telephone being supplied over said first telephone connection and said MIN of said second wireless telephone being supplied over said second telephone connection; transmitting respective challenges from said authentication platform to each of said first and second wireless telephones, via said first and second telephone connections and said first and second mobile switching centers of said first and second wireless carriers, each of said challenges being developed by said authentication platform from respective secret keys stored therein in association with said respective MINs of said first and second wireless telephones; and denying, by said authentication platform, said first or said second call requests for which a proper response to its respective challenge is not received.
-
-
2. A method for use in completing calls from wireless telephones, each wireless telephone being served by one of a plurality of wireless carriers, the method comprising the steps of:
-
receiving requests at mobile switching centers of said plurality of wireless carriers for completion of calls from said wireless telephones; forwarding over voice paths, from said mobile switching centers to an authentication platform serving said plurality of wireless carriers, those of said calls originated from wireless telephones having MINs that belong to a particular predefined group of MINs; transmitting a challenge from said authentication platform to each of said wireless telephones via, said mobile switching centers of said plurality of wireless carriers; and blocking those of said calls for which a proper response to said challenge is not received. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An authentication platform for use in routing calls from wireless telephones, comprising:
-
means for receiving a request from one of a plurality of wireless carriers for completion of a call from a wireless telephone having a particular MIN, said request including said particular MIN and having been forwarded to said authentication platform over a voice path by said one of said plurality of wireless carriers because said particular MIN belongs to a predefined group of MINs; means responsive to said particular MIN for generating and transmitting a challenge to said wireless telephone via said one of said plurality of wireless carriers; means for determining a correct response to said challenge; means for receiving a response to said challenge; and means for blocking said call if a response to said challenge matching said correct response is not received. - View Dependent Claims (13, 14, 15)
-
Specification