Plug and play mobile services
First Claim
1. A method, comprising:
- sending an access-request signal comprising a well-known uniform resource locator to a network by a terminal for connecting to a help-portal server of said network and for requesting a provisioning signal or a management session signal for configuring the terminal;
receiving by the terminal, in response to said sending the access-request signal, an identity of said help-portal server using a chain of trust comprising at least two consecutive exchanges of information between trusted elements of the network and the terminal; and
re-sending, in response to said receiving said identity of said help-portal server, said access-request signal to the help-portal server by the terminal with a request to provide the provisioning signal or the management session signal to the terminal, wherein, after being configured using the provisioning signal or the management session signal, the terminal is enabled for handling data-protocol services and dynamically configured for the data-protocol services specific to a service provider in a secure way based on said chain of trust so as to be able to connect said terminal to an IP backbone network via said network, which provides said data-protocol services and which is provided by said service provider wherein identifying said help-portal server comprises;
identifying to the terminal a trusted access point node name by a trusted home location register of the network;
re-sending the access-request signal to the trusted access point node by the terminal;
identifying to the terminal a trusted domain name service server of the network by the trusted access point node;
re-sending said access-request signal by the terminal to the trusted domain name service server for identifying an address mapping for the help-portal server; and
identifying said address mapping to the terminal by the trusted domain name service server.
1 Assignment
0 Petitions
Accused Products
Abstract
This invention describes “plug and play” methodology for configuring a terminal, enabled for handling data-protocol services (e.g. GRPS), for the data-protocol services specific to a service provider so as to be able to connect said terminal to an IP backbone network via a network, which provides said data-protocol services and which is provided by said service provider. The invention further consists of using a well-known access point node (APN) name, and a well-known uniform resource locator (URL) string to access a service provider specific help-portal server of the network to request information for configuring the terminal. A core part of the invention is the fact that the security of the download is ensured by means of a chain of trust that originates with a trusted home location register or the well-known APN name, and is built using a trusted APN, the well-known URL string and a trusted domain name service.
-
Citations
35 Claims
-
1. A method, comprising:
-
sending an access-request signal comprising a well-known uniform resource locator to a network by a terminal for connecting to a help-portal server of said network and for requesting a provisioning signal or a management session signal for configuring the terminal; receiving by the terminal, in response to said sending the access-request signal, an identity of said help-portal server using a chain of trust comprising at least two consecutive exchanges of information between trusted elements of the network and the terminal; and re-sending, in response to said receiving said identity of said help-portal server, said access-request signal to the help-portal server by the terminal with a request to provide the provisioning signal or the management session signal to the terminal, wherein, after being configured using the provisioning signal or the management session signal, the terminal is enabled for handling data-protocol services and dynamically configured for the data-protocol services specific to a service provider in a secure way based on said chain of trust so as to be able to connect said terminal to an IP backbone network via said network, which provides said data-protocol services and which is provided by said service provider wherein identifying said help-portal server comprises; identifying to the terminal a trusted access point node name by a trusted home location register of the network; re-sending the access-request signal to the trusted access point node by the terminal; identifying to the terminal a trusted domain name service server of the network by the trusted access point node; re-sending said access-request signal by the terminal to the trusted domain name service server for identifying an address mapping for the help-portal server; and identifying said address mapping to the terminal by the trusted domain name service server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A cellular communication system, comprising:
-
a processor a terminal, enabled for handling data-protocol services and dynamically configured for the data-protocol services specific to a service provider in a secure way based on a chain of trust, responsive to a provisioning signal or to a management session signal for configuring the terminal, for sending an access-request signal comprising a well-known uniform resource locator for connecting to a help-portal server, for re-sending, in response to identifying said help-portal server, said access-request signal to the help-portal server with a request to provide the provisioning signal or the management session signal to the terminal; and a network provided by said service provider and comprising said help-portal server, responsive to the access-request signal, for providing the data-protocol services specific to the service provider, for said identifying, in response to said sending the access-request signal, said help-portal server to said terminal using said chain of trust comprising at least two consecutive exchanges of information between trusted elements of the network and the terminal, for providing the provisioning signal or the management session signal to the terminal to perform said configuring and for enabling after said configuring a connection of said terminal to an IP backbone network via the network, wherein said help-portal server of said network is responsive to the access-request signal and to one or both authentication confirmation signals, for providing a triggering signal, or an initial provisioning triggering signal and a further triggering signal;
said network further comprises;a trusted domain name service server, responsive to the re-sending of the access-request signal from the terminal based on an identification of the trusted domain name service server provided by a trusted access point node, for identifying to the terminal an address mapping for the help-portal server; the trusted access point node, responsive to the re-sending of the access-request signal based on an identification of the trusted access point node provided by a trusted home location register, for providing to the terminal the trusted domain name service server; the trusted home location register, responsive to the access-request signal, for providing the trusted access point node to the terminal; and
optionallyan authentication block, responsive to an authentication request signal, for providing the one authentication confirmation signal to the help-portal server. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. A terminal apparatus, comprising:
-
a processor; a browser user agent block, for sending an access-request signal comprising a well-known uniform resource locator to a network for connecting to a help-portal server of said network, for re-sending, in response to identifying said help-portal server, said access-request signal to the help-portal server with a request to provide a provisioning signal or a management session signal to the terminal apparatus, wherein said terminal apparatus is configured to receive an identity of said help-portal server using a chain of trust comprising at least two consecutive exchanges of information between trusted elements of the network and the browser user agent block, wherein said trusted elements of the network comprise a trusted home location register, a trusted access point node, and a trusted domain name service server, and wherein, after being configured using the provisioning signal or the management session signal, the terminal apparatus is enabled for handling data-protocol services and dynamically configured for the data-protocol services specific to a service provider in a secure way based on said chain of trust so as to be able to connect said terminal to an IP backbone network via the network, which is configured to provide said data-protocol services and which is provided by said service provider, wherein security of configuring the terminal apparatus is ensured by the chain of trust built by the trusted home location register, by a well-known access point node name provided by the trusted home location register to the terminal apparatus, and further built by the trusted access point node identifying to the terminal apparatus the trusted domain name service server in response to the re-sending of the access-request signal based on an identification of the trusted access point node provided by the trusted home location register and by the trusted domain name service server providing an address mapping to the terminal apparatus for locating the help-portal server in response to the re-sending of the access-request signal based on an identification of the trusted domain name service server provided by the trusted access point node. - View Dependent Claims (30, 34)
-
-
31. A network, comprising:
-
a processor; a help-portal server, for providing data-protocol services specific to a service provider, responsive to re-sending of an access-request signal from a terminal for providing a provisioning signal or a management session signal to the terminal to perform dynamic configuring of said terminal for the data-protocol services specific to the service provider in a secure way based on a chain of trust so as to enable after said configuring a connection of said terminal to an IP backbone network via the network, which is configured to provide said data-protocol services and which is provided by said service provider, wherein the re-sending of the access-request signal is in response to said terminal sending said access-request signal comprising a well-known uniform resource locator for connecting to said help-portal server of said network, the network is configured to identify said help-portal server to said terminal using said chain of trust comprising at least two consecutive exchanges of information between trusted elements of the network and the terminal, wherein said trusted elements of the network comprise; a trusted home location register, responsive to the access-request signal, for providing a trusted access point node to the terminal, the trusted access point node, responsive to the re-sending of the access-request signal based on an identification of the trusted access point node provided by the trusted home location register, for providing to the terminal a trusted domain name service server; the trusted domain name service server, responsive to the re-sending of the access-request signal from the terminal based on an identification of the trusted domain name service server provided by the trusted access point node, for identifying to the terminal an address mapping for the help-portal server. - View Dependent Claims (32, 33, 35)
-
Specification