Method and apparatus for providing anonymous data transfer in a communication system

US 5,729,537 A
Filed: 06/14/1996
Issued: 03/17/1998
Est. Priority Date: 06/14/1996
Status: Expired due to Term

First Claim

Patent Images

1. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network in which said anonymous transfer the telecommunication network is required to authenticate the mobile station'"'"'s membership in the group but inhibited from learning the specific personal identity of the authenticated mobile station transferring the data, said method comprising the steps of:

forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key in which the group identity and group authentication key are to be shared in common by every mobile station in the group;

providing a copy of the group identity and the authentication key to each and every mobile station of the at least one group;

initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing and not including any indicia of identity from which the telecommunication network can ascertain the specific personal identity of the mobile station sending the attach request;

allocating to the requesting mobile station a network-generated random number responsive to the attach request;

calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the common group authentication key provided to the requesting mobile station and the network generated random number;

sending the mobile station-generated signed response to the telecommunication network;

calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the common group authentication key and the network-generated random number;

comparing the mobile station-generated signed response with the network-generated signed response;

allocating to the mobile station,in response to said compared signed responses being identical, an individual temporary mobile station identifier from which the telecommunication network cannot ascertain the specific personal identity of the mobile station;

transferring the data between the mobile station through the network and the correspondent entity; and

performing location management procedures.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, and associated apparatus, of providing a communication station with anonymous access to a communication network to communicate data therein. Access is provided to the communication station only after authenticating that the communication station is authorized to communicate in the network, but access is provided without individually identifying the communication station to the network with a permanent identifier unique to the communication station.

Citations

32 Claims

1. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network in which said anonymous transfer the telecommunication network is required to authenticate the mobile station'"'"'s membership in the group but inhibited from learning the specific personal identity of the authenticated mobile station transferring the data, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key in which the group identity and group authentication key are to be shared in common by every mobile station in the group;
  
  providing a copy of the group identity and the authentication key to each and every mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing and not including any indicia of identity from which the telecommunication network can ascertain the specific personal identity of the mobile station sending the attach request;
  
  allocating to the requesting mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the common group authentication key provided to the requesting mobile station and the network generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the common group authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating to the mobile station,in response to said compared signed responses being identical, an individual temporary mobile station identifier from which the telecommunication network cannot ascertain the specific personal identity of the mobile station;
  
  transferring the data between the mobile station through the network and the correspondent entity; and
  
  performing location management procedures.

2. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key, said group identity being associated with at least one authorized destination address to which the data is to be transferred from mobile stations belonging to the group;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data from the mobile station wherein said step of transferring the data comprises transferring to the at least one authorized destination address, through the network and the correspondent entity; and
  
  performing location management procedures.

3. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of packet data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure comprising choosing at the mobile station a random temporary logical link identity to temporarily, uniquely identify the mobile station across a shared data packet channel in a signaling exchange with the telecommunication network, until the mobile station is allocated a network-generated temporary logical link identity by the network;
  
  the attach procedure also including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing, and wherein the network identifies the mobile station across the shared packet data channel with the random temporary logical link identity until a network-generated temporary logical link is generated;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier comprising a temporary logical link identity if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity; and
  
  performing location management procedures.

4. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  calculating a ciphering key from the authentication key and the network-generated random number at both the mobile station and the network;
  
  storing the ciphering key;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity; and
  
  performing location management procedures, wherein the steps of allocating the mobile station with the individual temporary mobile station identifier, transferring the data, and performing the location management procedures comprise ciphering and deciphering transmissions pursuant thereto.

5. A method of for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request to provide a unique ciphering key for each mobile station in a group identity group;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity; and
  
  performing location management procedures.

6. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier by allocating to the mobile station a network layer identity if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity; and
  
  performing location management procedures, wherein data transfers performed during said step of transferring the data and location management procedures performed during said step of performing the location management procedures further comprise performing data transfers from the correspondent entity to the mobile station and associated location management procedures, as a manner to allow two-way communication between the mobile station and the correspondent entity.

7. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating, by the network, the mobile station with an individual temporary mobile station identifier, comprising a temporary international mobile subscriber identity in order to facilitate similar handling in the network as per non-anonymous mobile subscribers if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity; and
  
  performing location management procedures.

8. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of packet data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity; and
  
  performing location management procedures, when the packet exchange sequence between the mobile station and a correspondent entity is always initiated by the mobile station, comprising the steps of;
  
  performing location updating by the mobile station only during periods of active packet exchange sequences;
  
  rejecting, at the network, an attempt to transfer a packet to the mobile station during the periods extending between active packet exchange sequences; and
  
  initiating at the mobile station a new packet exchange sequence with an explicit or implicit location update.

9. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity;
  
  identifying the mobile station to the correspondent entity on an end-to-end application layer; and
  
  performing location management procedures.

10. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity;
  
  providing ciphering between the mobile station and the correspondent entity on an end-to-end application layer; and
  
  performing location management procedures.

11. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at lease one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity and charging therefor based on the group identity; and
  
  performing location management procedures.

12. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of circuit-switched data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity by originating circuit-switched data calls at the mobile station; and
  
  performing location management procedures.
- View Dependent Claims (13)
- - 13. The method of claim 12 wherein said step of performing location management procedures comprises the steps of:
    - performing location updating by the mobile station only periodically and, as required, before initiating at the mobile station a new data call; and
      
      rejecting at the telecommunication network an attempt to establish a mobile-terminated call.

14. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure, the attach procedure including an attach request sent by a mobile station of the group to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  exchanging at least one ciphering key between the mobile station and the network, if comparisons performed during said step of comparing are of selected values;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity; and
  
  performing location management procedures.
- View Dependent Claims (15)
- - 15. The method of claim 14 wherein communications between the mobile station and the network during said steps of allocating the mobile station with the individual temporary mobile station identifier, transferring the data, and performing location management procedures are ciphered with the at least one ciphering key exchanged during said step of exchanging.

16. A method for providing anonymous data transfer service to at least one group of mobile stations in a mobile telecommunication system to permit anonymous transfer of data between a mobile station of the at least one group of mobile stations and a correspondent entity by way of a telecommunication network, said method comprising the steps of:
- forming the at least one group of mobile stations, the at least one group defined by a group identity and an associated group subscriber authentication key;
  
  providing a copy of the group identity and the authentication key to each mobile station of the at least one group;
  
  initiating an attach procedure by exchanging at least one ciphering key between the mobile station and the network, and then sending an attach request from the mobile station to the telecommunication network, the attach request including the group identity provided to each mobile station of the at least one group during said step of providing;
  
  allocating to the mobile station a network-generated random number responsive to the attach request;
  
  calculating at the mobile station a mobile station-generated signed response of a value, at least in part, responsive to the authentication key and the network-generated random number;
  
  sending the mobile station-generated signed response to the telecommunication network;
  
  calculating at the telecommunication network a network-generated signed response calculated, also at least in part, responsive to the authentication key and the network-generated random number;
  
  comparing the mobile station-generated signed response with the network-generated signed response;
  
  allocating the mobile station with an individual temporary mobile station identifier if comparisons performed during said step of comparing are of selected values;
  
  transferring the data between the mobile station, through the network and the correspondent entity; and
  
  performing location management procedures.
- View Dependent Claims (17)
- - 17. The method of claim 16 wherein communications between the mobile station and the network during a portion of the step of initiating the attach procedure during which the group identity is sent to the telecommunication network, and during said steps of allocating to the mobile station a network-generated random number, sending the mobile station-generated signed response, allocating the mobile station with an individual temporary mobile station identifier, transferring the data, and performing location management procedures are ciphered with the at least one ciphering key exchanged during said step of exchanging.

18. A method for initiating data transmission in a communication system having a communication network for effectuating anonymous communication between at least a first communication station and a correspondent entity prior to which the network is required to authenticate the communication station and inhibited from learning the specific personal identity of the communication station, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier which is common to all of the members of the group, said method comprising the steps of:
- providing a common group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier and not including any indicia of identity from which the communication network can ascertain the specific personal identity of the first communication station;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.

19. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- transmitting a group identifier signal from the first communication station to the communication network, the group identifier signal being of a value representative of at least the group identifier;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.

20. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- providing a group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing, said first network-coded signal being formed by altering the second network-coded signal with an authentication code associated with the group identifier;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.

21. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- providing a group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending by altering the second network-coded signal with an authentication code associated with the group identifier;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.

22. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- providing a group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  transmitting the first station-coded signal to the communication network;
  
  comparing the first network-coded signal with the first station-coded signal at the communication network; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.

23. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- providing a group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to the first network-coded signal substantially corresponding to the first station-coded signal.

24. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- providing a group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal;
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing; and
  
  transmitting data from the first communication station to the correspondent entity.

25. A method for initiating data packet transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- providing a group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data formatted according to a connectionless protocol between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.

26. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- storing an authentication code associated with the group identifier at a storage location of the communication network;
  
  providing a group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.
- View Dependent Claims (27)
- - 27. The method of claim 26 wherein said step of storing further comprises storing a destination address associated with the group identifier, the destination address identifying a correspondent entity to which the data is to be transmitted.

28. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- storing a first network coded signal and a second network coded signal at a storage location of the communication network;
  
  providing a group identifier signal to the communication network, the group identifier signal of a value representative of at least the group identifier;
  
  accessing at least the first network coded signal and the second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.

29. A method for initiating data transmission in a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, said method comprising the steps of:
- providing a group identifier signal to the communication network, the group identifier signal being of a value which temporarily uniquely identifies the first communication station;
  
  accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to a value corresponding to the group identifier signal provided to the communication network during said step of providing;
  
  sending the second network-coded signal accessed during said step of accessing, to the first communication station;
  
  forming a first station-coded signal at the first communication station responsive to reception of the second network-coded signal sent during said step of sending;
  
  comparing the first network-coded signal with the first station-coded signal; and
  
  authorizing initiation of transmission of data between the first communication station and the correspondent entity responsive to comparisons performed during said step of comparing.

30. In a communication system having a communication network for effectuating communication between at least a first communication station and a correspondent entity, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a group identifier, an improvement of apparatus for initiating data transmission, the data transmission being initiated only after the first communication station has been authenticated as a member of the group and without the communication network being able to specifically identify the first communication station, said apparatus comprising:
- a group identifier signal generator positioned at the first communication station, said group identifier signal generator for generating a group identifier signal of a value representative of at least the group identifier and not including any indicia of identity from which the communication network can ascertain the specific personal identity of the first communication station and for transmitting the group identifier signal to the communication network;
  
  a network-coded signal accessor and transmitter positioned at the communication network, said network-coded signal accessor and transmitter for accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to the group identifier signal transmitted to the communication network by said group identifier signal generator and for transmitting the second network-coded signal to the first communication station;
  
  a station-coded signal generator positioned at the first communication station, said station-coded signal generator for forming a first station-coded signal responsive to reception of the second network-coded signal at the first communication station;
  
  a comparator coupled to receive indications of the first network-coded signal and the first station-coded signal, said comparator for comparing values of the first network-coded signal and the first station-coded signal and for selectively authorizing initiation of transmission of the data between the first communication station and the correspondent entity responsive to comparisons performed thereat.

31. In a communication system having a communication network for effectuating communication, an improvement of a first communication station, said first communication station for communicating with the communication network and being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a common group identifier, said first communication station comprising:
- a group identifier signal generator for generating a group identifier signal of a value representative of at least the group identifier and not including any indicia of identity from which the communication network can ascertain the specific personal identity of the first communication station, said generator also transmitting the group identifier signal to the communication network;
  
  a receiver for receiving communication network-generated response signals generated by the communication network responsive to transmission to the communication network of the group identifier signal by said group identifier signal generator; and
  
  a station-coded signal generator coupled to receive indications of the communication-network generated response, said station-coded signal generator for forming a first station-coded signal responsive to reception of a second network-coded signal at the first communication station.

32. Communication network apparatus for effectuating anonymous communication between at least a first communication station and a correspondent entity following authentication of said first communication station and in which said network apparatus and correspondent entity are inhibited from learning the specific personal identity of the at least first communication station, the first communication station being a group-identified communication station of a group of group-identified communication stations, each group-identified communication station of the group identified by a common group identifier, said communication network apparatus comprising:
- a receiver coupled to receive communication-station generated signals generated by the first communication station, the communication station-generated signals including at least a group identifier signal and a first station-coded signal, the group identifier signal of a value representative of at least the group identifier and not including any indicia of identity from which the communications network can ascertain the specific personal identity of the first communication station;
  
  a network-coded signal accessor and transmitter for accessing at least a first network coded signal and a second network-coded signal responsive, at least in part, to the group identifier signal received by said receiver and for transmitting the second network-coded signal to the first communication station; and
  
  a comparator coupled to receive indications of the first network-coded signal and the first station-coded signal, said comparator for comparing values of the first network-coded signal and the first station-coded signal and for selectively authorizing initiation of transmission of the data between the first communication station and correspondent entity responsive to comparisons performed thereat.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Telefonaktiebolaget LM Ericsson
Original Assignee
Telefonaktiebolaget LM Ericsson
Inventors
Billstrom, Lars Axel
Primary Examiner(s)
Hsu, Alpus H.
Assistant Examiner(s)
Yao, Kwang Bin

Application Number

US08/664,571
Time in Patent Office

641 Days
Field of Search

370/352, 370/353, 370/354, 370/355, 370/356, 370/377, 370/384, 370/329, 370/328, 370/341, 370/348, 370/322, 370/323, 370/338, 340/825, 340/825.5, 340/825.3, 340/825.31, 340/825.34, 340/825.44, 340/825.47, 379/59, 379/62, 379/56, 379/58, 455/39, 455/49.1, 455/53.1, 455/54.1, 455/56.1, 455/31.1, 455/54.2, 455/33.1, 380/23
US Class Current

370/329
CPC Class Codes

G06Q 20/383   Anonymous user system

H04L 2209/42   Anonymization, e.g. involvi...

H04L 2209/80   Wireless

H04L 63/0414   during transmission, i.e. p...

H04L 63/065   for group communications cr...

H04L 63/0869   for achieving mutual authen...

H04L 9/3271   using challenge-response

H04W 12/069   using certificates or pre-s...

H04W 4/08   User group management

H04W 8/26   Network addressing or numbe...

Y04S 40/20   Information technology spec...

Method and apparatus for providing anonymous data transfer in a communication system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

32 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for providing anonymous data transfer in a communication system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

32 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links