Packet filtering for emergency access in a packet data network communication system
First Claim
1. A method for processing an emergency call from an anonymous user device in a packet data network communication system, the user device having an identity that is not valid for non-emergency use of the packet data network communication system, the method comprising:
- receiving an attach request message and an activate packet data protocol (PDP) context request message from an anonymous user device, the attach request message including at least an identity for the user device and the activate PDP context request message including at least a protocol configuration options information element;
determining whether the identity for the user device is valid for non-emergency packet data communications in the packet data network communication system;
determining whether the protocol configuration options information element indicates an emergency context;
in the event that the protocol configuration options information element indicates an emergency context and the identity for the user device is not valid for non-emergency packet data communications in the packet data network communication system;
determining that the activate PDP context request message is a request to establish an emergency context for an emergency call,determining an interim identify for the user device,establishing a PDP context for the emergency call, wherein the PDP context for the emergency call remains active through a predetermined callback period,assigning an interim internet protocol (IP) address to the user device for use during the PDP context for the emergency call only and associating the interim IP address to the interim identity for the user device, anddetermining at least one authorized IP address that is permitted to send data packets to and receive data packets from the interim IP address while the PDP context for the emergency call is active, wherein the at least one authorized IP address corresponds to at least one device used to provide communication for emergency services in response to the emergency call;
receiving data packets while the PDP context for the emergency call is active;
determining whether the received data packets include the interim IP address and the at least one authorized IP address;
in the event that the received data packets include the interim IP address and the at least one authorized IP address, routing the received data packets between the interim IP address and the at least one authorized IP address; and
in the event that the received data packets include the interim IP address but not the at least one authorized IP address, blocking the received data packets from being routed in the packet data network communication system to thereby prohibit communication between the interim IP address and unauthorized IP addresses while the PDP context for the emergency call is active.
4 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus method of filtering packet data for an anonymous user device in a packet data network communication system includes a first step of defining a special context information element containing special context information. A next step includes sending the special context information element in an activate packet data protocol (PDP) context request to a network to initiate a call from an anonymous user device. A next step includes receiving the activate PDP context request and the special context information element. A next step includes configuring the data packets so that only the special context is allowed. A next step includes assigning an interim identity and interim IP address to the user device. A next step includes mapping the data packets of the configuring step to the interim IP address of the user device. A next step includes defining permissible routing identities per the special context. A next step includes routing the data packets between only those permissible routing identities from the defining step.
77 Citations
16 Claims
-
1. A method for processing an emergency call from an anonymous user device in a packet data network communication system, the user device having an identity that is not valid for non-emergency use of the packet data network communication system, the method comprising:
-
receiving an attach request message and an activate packet data protocol (PDP) context request message from an anonymous user device, the attach request message including at least an identity for the user device and the activate PDP context request message including at least a protocol configuration options information element; determining whether the identity for the user device is valid for non-emergency packet data communications in the packet data network communication system; determining whether the protocol configuration options information element indicates an emergency context; in the event that the protocol configuration options information element indicates an emergency context and the identity for the user device is not valid for non-emergency packet data communications in the packet data network communication system; determining that the activate PDP context request message is a request to establish an emergency context for an emergency call, determining an interim identify for the user device, establishing a PDP context for the emergency call, wherein the PDP context for the emergency call remains active through a predetermined callback period, assigning an interim internet protocol (IP) address to the user device for use during the PDP context for the emergency call only and associating the interim IP address to the interim identity for the user device, and determining at least one authorized IP address that is permitted to send data packets to and receive data packets from the interim IP address while the PDP context for the emergency call is active, wherein the at least one authorized IP address corresponds to at least one device used to provide communication for emergency services in response to the emergency call; receiving data packets while the PDP context for the emergency call is active; determining whether the received data packets include the interim IP address and the at least one authorized IP address; in the event that the received data packets include the interim IP address and the at least one authorized IP address, routing the received data packets between the interim IP address and the at least one authorized IP address; and in the event that the received data packets include the interim IP address but not the at least one authorized IP address, blocking the received data packets from being routed in the packet data network communication system to thereby prohibit communication between the interim IP address and unauthorized IP addresses while the PDP context for the emergency call is active. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of emergency packet data communications involving an anonymous user device in a packet data network communication system, the user device having an identity that is not valid for non-emergency use of the packet data network communication system, the method comprising the steps of:
-
generating, by the user device, an attach request message and an activate packet data protocol (PDP) context request message for an emergency call, the attach request message including at least the identity of the user device and the activate PDP context request message including at least a protocol configuration options information element, the protocol configuration options information element indicating an emergency context for the emergency call; sending, by the user device, the attach request message and the activate PDP context request message to a home packet data network of the packet data network communication system to request an emergency packet data connection for the emergency call; receiving, at the home packet data network, the attach request message and the activate PDP context request message for the emergency call; determining, by the home packet data network, whether the identity of the user device is valid for packet data communications in the packet data network communication system; determining, by the home packet data network, whether the protocol configuration options information element includes an emergency traffic flag; in the event that the protocol configuration options information element includes an emergency traffic flag and the identity of the user device is not valid for packet data communications in the packet data network communication system; determining, by the home packet data network, that the activate PDP context request message is a request to establish a PDP context for an emergency call, establishing, by the home packet data network, the PDP context for the emergency call, wherein the PDP context for the emergency call remains active through a predetermined callback period, and determining, by the home packet data network, an interim identity for the user device for use during the PDP context for the emergency call only; assigning, by an emergency packet data network coupled to the home packet data network, an interim internet protocol (IP) address to the user device for use during the PDP context for the emergency call only and associating the interim identity for the user device to the interim IP address; determining, by the emergency packet data network, an IP address for an emergency calling center that is authorized to send data packets to and receive data packets from the interim IP address while the PDP context for the emergency call is active; receiving, by the emergency packet data network, data packets while the PDP context for the emergency call is active; in the event that the received data packets include the interim IP address and the IP address of the emergency calling center, routing, by the emergency packet data network, the received data packets between the interim IP address and the IP address of the emergency calling center; and in the event that the received data packets include the interim IP address but not the IP address of the emergency calling center, restricting, by the emergency packet data network, access to the received data packets to thereby prohibit communication between the interim IP address and unauthorized IP addresses while the PDP context for the emergency call is active. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A packet data network communication system capable of providing emergency packet data communications for anonymous user devices having identities that are not valid for non-emergency use of the packet data network communication system, the packet data network communication system comprising:
-
a public packet data network operable to at least; receive an attach request message and an activate packet data protocol (PDP) context request message for an emergency call from an anonymous user device, the attach request message including at least the identity of the user device and the activate PDP context request message including at least a protocol configuration options information element, determine whether the identity of the user device is valid for packet data communications in the packet data network communication system, determine whether the protocol configuration options information element indicates an emergency context, in the event that the protocol configuration options information element indicates an emergency context and the identity of the user device is not valid for packet data communications in the packet data network communication system; determine that the activate PDP context request message is a request to establish a PDP context for an emergency call, establish the PDP context for the emergency call, wherein the PDP context for the emergency call remains active through a predetermined callback period, and determine an interim identity for the user device to use during the PDP context for the emergency call only; an emergency packet data network coupled to the public packet data network, the emergency packet data network being operable to at least; receive the interim identity for the user device from the public packet data network, assign an interim IP address to the user device for use during the PDP context for the emergency call only and associate the interim IP address with the interim identity for the user device, determine at least one authorized IP address that is authorized to send data packets to and receive data packets from the interim IP address while the PDP context for the emergency call is active, receive data packets while the PDP context for the emergency call is active, in the event that the received data packets include the interim IP address and the at least one authorized IP address, route the received data packets between the interim IP address and the at least one authorized IP address, and in the event that the received data packets include the interim IP address but not the at least one authorized P address, restrict access to the received data packets to thereby prohibit communication between the interim IP address and unauthorized IP addresses while the PDP context for the emergency call is active. - View Dependent Claims (14, 15, 16)
-
Specification