Method and system for subscriber authentification and/or encryption of items of information
First Claim
1. A method for at least one of subscriber authentication and encryption of items of information, comprising the steps of:
- identifying mobile subscribers to a mobile radiotelephone network with a subscriber identity module contained in a subscriber station, using a first public, commercial authentication standard;
installing said mobile subscribers in at least one subscriber database of the mobile radiotelephone network and registering in an authentication center, which center respectively provides security parameters and security algorithms for the mobile subscribers, for protection of subscriber data of the mobile subscribers;
identifying with a subscriber identity module subscribers of a further network, independent of but connected to the mobile radiotelephone network via an interface, said further network using a second pubic, commercial authentication standard different from said first public, commercial authentication standard;
installing the identified subscriber in at least one subscriber database of the further network;
requesting the security parameters for the installed subscriber of the further network via the interface;
providing the security parameters by the authentication center of the mobile radiotelephone network;
transmitting the security parameters to the further network via the interface, the steps of requesting, providing and transmitting security parameters occurring without the execution of a subscriber entry in the subscriber database of the mobile radiotelephone network;
executing in the further network at least one of subscriber authentication for the subscribers of the further network and encryption of items of information based on the security parameters received from the mobile radiotelephone network.
1 Assignment
0 Petitions
Accused Products
Abstract
Security parameters (SPAR) are provided by the mobile radiotelephone network (PLMN) for subscribers of another network (CN) via an interface (DSS1+) connecting the two networks, without carrying out subscriber entries in at least one subscriber database of the mobile radiotelephone network for these subscribers in the mobile radiotelephone network. The subscribers of the other network thereby identify themselves with a subscriber identity module (SIM) of their subscriber station (UPTS, DM), and are installed in a subscriber database (DB) of the other network. The security parameters for the subscribers installed in the private network are requested via the interface, are provided by an authentification center (AC) of the mobile radiotelephone network and are transmitted to the private network via the interface. An entering of the subscriber in the subscriber database of the mobile radiotelephone network is omitted, which also has in particular the advantage that it is not necessary to assign mobile subscriber call numbers in the mobile radiotelephone network.
15 Citations
20 Claims
-
1. A method for at least one of subscriber authentication and encryption of items of information, comprising the steps of:
-
identifying mobile subscribers to a mobile radiotelephone network with a subscriber identity module contained in a subscriber station, using a first public, commercial authentication standard;
installing said mobile subscribers in at least one subscriber database of the mobile radiotelephone network and registering in an authentication center, which center respectively provides security parameters and security algorithms for the mobile subscribers, for protection of subscriber data of the mobile subscribers;
identifying with a subscriber identity module subscribers of a further network, independent of but connected to the mobile radiotelephone network via an interface, said further network using a second pubic, commercial authentication standard different from said first public, commercial authentication standard;
installing the identified subscriber in at least one subscriber database of the further network;
requesting the security parameters for the installed subscriber of the further network via the interface;
providing the security parameters by the authentication center of the mobile radiotelephone network;
transmitting the security parameters to the further network via the interface, the steps of requesting, providing and transmitting security parameters occurring without the execution of a subscriber entry in the subscriber database of the mobile radiotelephone network;
executing in the further network at least one of subscriber authentication for the subscribers of the further network and encryption of items of information based on the security parameters received from the mobile radiotelephone network. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for at least one of subscriber authentication and encryption of items of information, comprising:
-
a subscriber identity module with which subscribers identify themselves to a mobile radiotelephone network, using a first public, commercial authentication standard, the module being in a subscriber station;
at least one subscriber database of the mobile radiotelephone network in which the subscribers are installed;
an authentication center in which the subscribers are registered, from which security parameters and security algorithms for the mobile subscribers are provided for protection of subscriber data;
a further network, independent of said mobile radiotelephone network, whose subscribers identify themselves with a respective subscriber identity module of their subscriber stations, the subscribers being installed at least in a subscriber database of the further network, said further network using a second public, commercial authentication standard different authentication standard;
an interface connecting said mobile radiotelephone network and said further network;
in the further network, means for requesting security parameters for an installed subscriber of the further network via the interface;
in the respective authentication center of the mobile radiotelephone network, means for providing the security parameters;
in the mobile radiotelephone network, means for transmitting the security parameters via the interface to the further network, without carrying out a subscriber entry in the subscriber database of the mobile radiotelephone network;
in the further network, means for carrying out subscriber authentication for the subscribers of the further network and encryption of the items of Information based on the security parameters received by the mobile radiotelephone network.
-
-
9. A method for at least one of subscriber authentication and encryption of items of information, comprising the steps of:
-
identifying mobile subscribers to a mobile radiotelephone network with a subscriber identity module contained in a subscriber station, using a first public, commercial authentication standard;
installing said mobile subscribers in at least one subscriber database of the mobile radiotelephone network and registering in an authentication center, which center respectively provides security parameters and security algorithms for the mobile subscribers, for protection of subscriber data of the mobile subscribers;
identifying with a subscriber identity module subscribers of a further network independent of but connected to the mobile radiotelephone network via an interface, said further network using a second public, commercial authentication standard different from said first public, commercial authentication standard;
setting up the identified subscriber in at least one subscriber database of the further network;
requesting the security parameters for the installed subscriber of the further network via the interface;
providing the security parameters by the authentication center of the mobile radiotelephone network;
transmitting the security parameters to the further network via the interface, the steps of requesting, providing and transmitting security parameters occurring without the execution of a subscriber entry in the subscriber database of the mobile radiotelephone network;
executing in the further network subscriber authentication for the subscribers of the further network and/or the encryption of items of information based on the security parameters received from the mobile radiotelephone network; and
requesting, before additional sets of security parameters are made available, at least one set of security parameters, the at least one set of security parameters being transmitted via the interface, and the subscriber authentication and encryption being carded out. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A system for at least one of subscriber authentification and encryption of items of information, comprising:
-
a subscriber identity module with which subscribers identify themselves to a mobile radiotelephone network, using a first public, commercial authentication standard, the module being in a subscriber station;
at least one subscriber database of the mobile radiotelephone network in which the subscribers are installed;
an authentication center in which the subscribers are registered, from which security parameters and security algorithms for the mobile subscribers are provided for protection of subscriber data;
a further network independent of said mobile radiotelephone network, whose subscribers identify themselves with a respective subscriber identity module of their subscriber stations, the subscribers being installed at least in a subscriber database of the further network, said further network using a second public, commercial authentication standard different from said first public, commercial authentication;
in the further network, means for requesting security parameters for an installed subscriber of the further network via the interface;
in the respective authentication center of the mobile radiotelephone network, means for providing the security parameters;
in the mobile radiotelephone network, means for transmitting the security parameters via the interface to the further network, without carrying out a subscriber entry in the subscriber database of the mobile radiotelephone network;
in the further network, means for carrying out subscriber authentication for the subscribers of the further network or encryption of the items of information based on the security parameters received by the mobile radiotelephone network, and for requesting, before additional sets of security parameters are made available, at least one set of security parameters, the at least one set of security parameters being transmitted via the interface, and the subscriber authentication and encryption being carried out.
-
-
16. A method for at least one of subscriber authentification and encryption of items of information, comprising the steps of:
-
identifying mobile subscribers to a mobile radiotelephone network with a subscriber identity module contained in a subscriber station;
installing said mobile subscribers in at least one subscriber database of the mobile radiotelephone network and registering in an authentification center, which center respectively provides security parameters and security algorithms for the mobile subscribers, for protection of subscriber data of the mobile subscribers;
identifying with a subscriber identity module subscribers of a further network connected to the mobile radio telephone network via an interface, said further network using a different authentication standard than said mobile radiotelephone network;
setting up the identified subscriber in at least one subscriber database of the further network;
requesting the security parameters for the installed subscriber of the further network via the interface;
providing the security parameters by the authentification center of the mobile radiotelephone network;
transmitting the security parameters to the further network via the interface, the steps of requesting, providing and transmitting security parameters occurring without the execution of a subscriber entry in the subscriber database of the mobile radiotelephone network;
executing in the further network subscriber authentification for the subscribers of the further network and/or the encryption of items of information based on the security parameters received from the mobile radiotelephone network; and
requesting, before additional sets of security parameters are made available, at least one set of security parameters, the at least one set of security parameters being transmitted via the interface, and the subscriber authentification or encryption being carried out. - View Dependent Claims (17, 18, 19, 20)
-
Specification