Method for user identity protection
First Claim
1. A method for protected transmission of user identity to the user'"'"'s home network in a data communications system that includes at least, subscribers each with a unique identifier and a home network, subscriber stations of the subscribers, at least one data communications network including network elements, and in which connections can be made between mobile stations and the data communications network, the method comprising:
- dividing an identifier into a first and second section in such a way that the first section includes data necessary for identifying a subscriber group and the second section identifies a subscriber within the subscriber group generating a random input at a subscriber station, encrypting the second section of the subscriber'"'"'s identifier using the random input and a cipher key specific to each subscriber group, sending a message to a network element of a data communications network, the message containing a partially encrypted identifier consisting of the first section and the encrypted second section and the random input used, routing the message from the data communications network to the subscriber'"'"'s home network, and deciphering the identifier in the subscriber'"'"'s home network.
7 Assignments
0 Petitions
Accused Products
Abstract
In the method in accordance with the present invention, the subscriber identifier to be sent to the transmission network is encrypted using a cipher key common to a specific group of subscribers, and a random number is attached to the identifier to be sent to the network. For example, a subscriber group may consist of the subscribers to a single given operator. The section of the identifier specifying the subscriber group is sent to the network in a non-encrypted format, in which case the network is able to direct the encrypted message to such a network element where it can be deciphered.
-
Citations
7 Claims
-
1. A method for protected transmission of user identity to the user'"'"'s home network in a data communications system that includes at least, subscribers each with a unique identifier and a home network, subscriber stations of the subscribers, at least one data communications network including network elements, and in which connections can be made between mobile stations and the data communications network, the method comprising:
-
dividing an identifier into a first and second section in such a way that the first section includes data necessary for identifying a subscriber group and the second section identifies a subscriber within the subscriber group generating a random input at a subscriber station, encrypting the second section of the subscriber'"'"'s identifier using the random input and a cipher key specific to each subscriber group, sending a message to a network element of a data communications network, the message containing a partially encrypted identifier consisting of the first section and the encrypted second section and the random input used, routing the message from the data communications network to the subscriber'"'"'s home network, and deciphering the identifier in the subscriber'"'"'s home network. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification
-
- Resources
-
Current AssigneeWSOU Investments, LLC (WSOU Holdings, LLC)
-
Original AssigneeNokia Networks (Nokia Corporation)
-
InventorsAura, Tuomas
-
Primary Examiner(s)Chung, Phung M.
-
Assistant Examiner(s)Callahan, Paul E.
-
Application NumberUS09/418,387Time in Patent Office915 DaysField of Search380/248, 380/250, 380/258, 380/259, 380/270, 380/271, 380/272, 380/44, 380/46, 455/410, 455/422, 455/432, 455/436, 455/437, 370/313US Class Current380/247CPC Class CodesH04W 12/02 Protecting privacy or anony...H04W 12/72 Subscriber identity
