Method, system and gateway allowing secured end-to-end access to WAP services
First Claim
Patent Images
1. A method by which a mobile subscriber with a WAP-enabled terminal can access a WEB or WAP server, comprising the steps of:
- said terminal sending a request for said server to a WAP gateway, wherein encryption in the wireless interface between said WAP-enabled terminal and said gateway is based on WTLS (Wireless Transport Layer Security), and wherein an encryption protocol used by said server is based on one or both of the SSL or the TLS security protocol; and
converting between WTLS and said one or both of the SSL or the TLS security protocol in a secured domain of said server administrated by an administrator,wherein a plurality of WTLS encrypted packets sent by said terminal are routed by said gateway to said secured domain with said gateway not decrypting any portion of at least some number of the encrypted packets transported during a session.
5 Assignments
0 Petitions
Accused Products
Abstract
Method with which a mobile subscriber with a WAP-enabled terminal (1) can access a WAP or WEB server (5),
- wherein said terminal (1) sends a request for said server to a WAP gateway (3)
- wherein the security in the air interface (2) between the said WAP-enabled terminal (1) and said gateway (3) is based on WTLS (Wireless Transport Layer Security),
- wherein the security protocol used by said server (5) is based on the SSL and/or TLS security protocol,
- wherein the conversion between WTLS and SSL and/or TLS is effected in a secured domain of said server (5) administrated by an administrator,
- and wherein the packets sent by said terminal (1) are routed by said gateway (3) to said secured domain, without decrypting all the packets transmitted during a session.
55 Citations
36 Claims
-
1. A method by which a mobile subscriber with a WAP-enabled terminal can access a WEB or WAP server, comprising the steps of:
-
said terminal sending a request for said server to a WAP gateway, wherein encryption in the wireless interface between said WAP-enabled terminal and said gateway is based on WTLS (Wireless Transport Layer Security), and wherein an encryption protocol used by said server is based on one or both of the SSL or the TLS security protocol; and converting between WTLS and said one or both of the SSL or the TLS security protocol in a secured domain of said server administrated by an administrator, wherein a plurality of WTLS encrypted packets sent by said terminal are routed by said gateway to said secured domain with said gateway not decrypting any portion of at least some number of the encrypted packets transported during a session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A gateway comprising:
-
means for receiving packets WTLS-encrypted according to the WTLS protocol from WAP-enabled terminals; means for converting said packets into SSL-encrypted requests; and means for transmitting said SSL-encrypted requests to a receiving server, wherein said gateway can recognize WTLS-encrypted packets that are to be sent on transparently and can convert said WTLS-encrypted packets into said SSL-encrypted request without decrypting the information contained in at least some number of said WTLS-encrypted packets. - View Dependent Claims (21, 22, 23, 24, 25, 26)
-
-
27. A method for performing end-to-end secure data transfer between a terminal and a server, wherein said terminal is connected to said server via a wireless connection between said terminal and a gateway, said method comprising the steps of:
-
said terminal requesting a secure communication session with said server via said gateway, said requesting including the steps of; said terminal generating a request including request packets encrypted using a WTLS protocol, said terminal sending said request to said gateway, said gateway forwarding said request to said server or to another server, wherein said gateway does not decrypt all of said request packets, and said server or said another server decrypting some number of said request packets using said WTLS protocol; and said server or said another server serving data to said terminal via said gateway, said serving including the steps of; said server or said another server sending said data including data packets encrypted using said WTLS protocol to said gateway; said gateway forwarding said data packets to said terminal, wherein said gateway does not decrypt any portion of at least some number of said data packets; and said terminal decrypting said data packets using said WTLS protocol. - View Dependent Claims (28, 29, 30, 31)
-
-
32. A system for performing end-to-end secure data transfer between a terminal and a server, said system comprising:
-
a gateway adapted for receiving a request for a secure session with said server from the terminal, wherein said request includes request packets encrypted using a WTLS protocol, and wherein said gateway is also adapted for forwarding said request to said server or to another server, wherein said gateway does not decrypt all of said request packets for performing said forwarding; said server or said another server adapted for decrypting some number of said request packets using said WTLS protocol and also adapted for serving data including data packets encrypted using said WTLS protocol to said gateway, wherein said gateway forwards said data to said terminal without decrypting any portion of at least some number of said data packets, and wherein the terminal decrypts said data packets using said WTLS protocol. - View Dependent Claims (33, 34, 35, 36)
-
Specification