Method and system for communication access restriction
First Claim
1. A network-based telecommunications system for restricting the dial-in access to a resource of a subscriber to only a communication from an authorized user of said resource, comprising:
- a. a plurality of network switches;
b. a network authentication unit functionally connected to each of said plurality of network switches;
c. said each of said plurality of network switches being operativeto receive a communication directed to said resource of said subscriber,to pause in the network processing of said communication prior to connecting said communication to the terminating equipment associated with said resource of said subscriber to issue a silent prompt,to receive a calling party passcode in response to said silent prompt, andto make a request of said network authentication unit for processing information with respect to said communication;
d. said network authentication unit being responsive to said request from a network switch of said plurality of network switchesto generate a selected unit passcode, said selected unit passcode being one of a plurality of passcodes that are periodically generated by said network authentication unit,to make a determination as to whether said calling party passcode was generated in synchronicity with said selected unit passcode, and based on said determinationto provide said processing information with respect to said communication to said network switch; and
e. said network switch being further operative in response to receipt of said processing information to continue said network processing of said communication.
2 Assignments
0 Petitions
Accused Products
Abstract
A network-based telecommunications system and method that restricts the dial-in access to a resource of a subscriber to only a communication from an authorized user of the resource. A switch receives a communication directed to a subscriber from a calling party. Prior to connecting the communication to the terminating equipment associated with the subscriber, the switch requests processing information. An authentication unit determines whether the calling party is an authorized user by checking whether a passcode provided by the calling party corresponds to a passcode being held by the authentication unit. If the passcode corresponds, then the authentication unit identifies the calling party as an authorized user, and the communication then may be connected to the terminating equipment of the subscriber. If the passcode fails to correspond, then the authentication unit fails to identify the calling party as an authorized user. The communication is not connected to the terminating equipment of the subscriber.
134 Citations
25 Claims
-
1. A network-based telecommunications system for restricting the dial-in access to a resource of a subscriber to only a communication from an authorized user of said resource, comprising:
-
a. a plurality of network switches; b. a network authentication unit functionally connected to each of said plurality of network switches; c. said each of said plurality of network switches being operative to receive a communication directed to said resource of said subscriber, to pause in the network processing of said communication prior to connecting said communication to the terminating equipment associated with said resource of said subscriber to issue a silent prompt, to receive a calling party passcode in response to said silent prompt, and to make a request of said network authentication unit for processing information with respect to said communication; d. said network authentication unit being responsive to said request from a network switch of said plurality of network switches to generate a selected unit passcode, said selected unit passcode being one of a plurality of passcodes that are periodically generated by said network authentication unit, to make a determination as to whether said calling party passcode was generated in synchronicity with said selected unit passcode, and based on said determination to provide said processing information with respect to said communication to said network switch; and e. said network switch being further operative in response to receipt of said processing information to continue said network processing of said communication. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. In a network-based telecommunications system including a plurality of network switches with each of said plurality of network switches being functionally connected to a network authentication unit, a network method to restrict the dial-it access to a resource of a subscriber to only a communication from an authorized user of said resource, comprising the steps of:
-
A. receiving a communication at a network switch of said plurality of network switches in said network-based telecommunications system for network processing of said communication from a user to terminating equipment associated with said resource of said subscriber; B. after receiving said communication, but prior to establishing a connection for said communication to said terminating equipment associated with said resource of said subscriber, causing said network switch to pause in said network processing of said communication based on a called party number associated with said communication; C. while pausing, making a determination as to whether said communication directed to said called party number is entitled to a communication access restriction (CAR) service; and D. if said determination in step C is that said communication is entitled to said CAR service, then causing said network authentication unit to provide said CAR service by; i. providing a silent prompt for a calling party passcode to said communication, ii. if said calling patty passcode is provided in response to said silent prompt, then checking whether said calling party passcode corresponds to a selected unit passcode by determining whether said calling party passcode was generated in synchronicity with said selected unit passcode, and iii. if said calling party passcode corresponds to said selected unit passcode, then continuing said network processing of said communication so as to establish said connection of said communication with said terminating equipment associated with said resource of said subscriber, whereby said authorized user is provided with said dial-in access to said resource of said subscriber. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A network-based telecommunications system for restricting the dial-in access to a resource of a subscriber to only a communication from an authorized user of said resource, comprising:
-
a. a token that generates a calling party passcode, said token being used by a user in association with a communication to provide said calling party passcode; b. a plurality of network switches, each network switch of said plurality of network switches being operative to receive a communication directed to said resource of said subscriber, to pause in the network processing of said communication prior to connecting said communication to the terminating equipment associated with said resource of said subscriber to issue a silent prompt, to receive said calling party passcode from said user in connection with said communication, and to make a request for processing information with respect to said communication; and c. a network authentication unit, said network authentication unit functioning as part of said telecommunications system and functionally connected to said each network switch of said plurality of network switches, said network authentication unit including a plurality of unit passcodes, said network authentication unit being responsive to a request from said network switch to make a determination that said user is said authorized user if said calling party passcode corresponds to a selected one of said unit passcodes by checking whether said calling party passcode was generated in synchronicity with said selected unit passcode, and based on said determination, to provide said processing information with respect to said communication to said network switch, said processing information including connection instructions to connect said communication to said terminating equipment of said subscriber, whereby said authorized user is provided with said dial-in access to said resource of said subscriber.
-
Specification