System and method for controlling data flow based upon a temporal policy
First Claim
Patent Images
1. A telecommunications system comprising:
- one or more processors and a non-transitory storage medium containing instructions, which when executed by the one or more processors, cause the one or more processors to implement;
a service capability module, residing on the non-transitory storage medium, that receives a request from an application that resides in an untrusted domain, said request being directed to a subscriber device in a telecommunications network;
a plug-in manager that retrieves one or more plug-ins to handle the request, wherein each of the one or more plug-ins represents a particular network device in the telecommunications network, device including at least one of the following;
a short messaging service center (SMS-C), a multimedia messaging service center (MMS-C), and a parlay gateway of the telecommunications network;
a first Policy Enforcement Point (PEP) residing on the service capability module to enforce service capabilities, wherein the first PEP determines whether to grant to deny the request according to a service being invoked by the request and according to at least one temporal condition;
a second PEP residing on the plug-in manager to enforce network protection by coordinating traffic among the network devices to enhance network traffic efficiency, wherein the second PEP routes the request to a selected network device;
a policy engine containing a set of policy rules loaded into memory of said policy engine, wherein the policy rules can be added and updated at runtime;
a Policy Decision Point (PDP) residing on the policy engine, wherein said PDP makes a policy decision by employing the set of policy rules;
wherein upon receiving the request from the application, the first PEP forwards data in the request to the PDP in the policy engine that evaluates the request, modifies or adds new data to the request, and informs the first PEP of the policy decision, wherein the first PEP then enforces said policy decision on the request and queries the plug-in manager for a list of possible plug-ins to handle the request; and
wherein upon receiving the request from the first PEP, the plug-in manager retrieves the list of possible plug-ins based on an address plan and destination address of the request and sends the list of possible plug-ins to the policy engine,wherein the policy engine makes a decision based on one or more of;
request data, general network gatekeeping rules, specific data in the service provider traffic service level agreement (SLA) or additional data from external databases,wherein the policy engine returns the list of possible plug-ins that have passed the decision to the plug-in manager or informs the plug-in manager that no plug-in has passed the decision, wherein the plug-in manager selects a plug-in from the list of possible plug-ins and sends the plug-in to the service capability module, andwherein the service capability module routes the request to said plug-in.
2 Assignments
0 Petitions
Accused Products
Abstract
In accordance with embodiments, there are provided mechanisms and methods for controlling data flow based on a temporal policy. These mechanisms and methods for controlling data flow based on a temporal policy can enable embodiments to provide a different service level agreement to control network traffic selected from a plurality of service level agreements based upon one or more temporal conditions. The ability of embodiments to provide different service level agreement to control network traffic can enable embodiments to control one or more of access to network resources and traffic flow coordination to enhance efficient usage of the network resources.
-
Citations
8 Claims
-
1. A telecommunications system comprising:
-
one or more processors and a non-transitory storage medium containing instructions, which when executed by the one or more processors, cause the one or more processors to implement; a service capability module, residing on the non-transitory storage medium, that receives a request from an application that resides in an untrusted domain, said request being directed to a subscriber device in a telecommunications network; a plug-in manager that retrieves one or more plug-ins to handle the request, wherein each of the one or more plug-ins represents a particular network device in the telecommunications network, device including at least one of the following;
a short messaging service center (SMS-C), a multimedia messaging service center (MMS-C), and a parlay gateway of the telecommunications network;a first Policy Enforcement Point (PEP) residing on the service capability module to enforce service capabilities, wherein the first PEP determines whether to grant to deny the request according to a service being invoked by the request and according to at least one temporal condition; a second PEP residing on the plug-in manager to enforce network protection by coordinating traffic among the network devices to enhance network traffic efficiency, wherein the second PEP routes the request to a selected network device; a policy engine containing a set of policy rules loaded into memory of said policy engine, wherein the policy rules can be added and updated at runtime; a Policy Decision Point (PDP) residing on the policy engine, wherein said PDP makes a policy decision by employing the set of policy rules; wherein upon receiving the request from the application, the first PEP forwards data in the request to the PDP in the policy engine that evaluates the request, modifies or adds new data to the request, and informs the first PEP of the policy decision, wherein the first PEP then enforces said policy decision on the request and queries the plug-in manager for a list of possible plug-ins to handle the request; and wherein upon receiving the request from the first PEP, the plug-in manager retrieves the list of possible plug-ins based on an address plan and destination address of the request and sends the list of possible plug-ins to the policy engine, wherein the policy engine makes a decision based on one or more of;
request data, general network gatekeeping rules, specific data in the service provider traffic service level agreement (SLA) or additional data from external databases,wherein the policy engine returns the list of possible plug-ins that have passed the decision to the plug-in manager or informs the plug-in manager that no plug-in has passed the decision, wherein the plug-in manager selects a plug-in from the list of possible plug-ins and sends the plug-in to the service capability module, and wherein the service capability module routes the request to said plug-in. - View Dependent Claims (2, 3, 4)
-
-
5. A method for controlling data flow based on a temporal policy in a telecommunications environment, the method comprising:
-
receiving at least one of a plurality of service requests from at least one application that resides in an untrusted domain to a service capability module on a computing device, said request being directed to a subscriber device in a telecommunications network; providing a plug-in manager that retrieves one or more plug-ins to handle the service requests, wherein the one or more plug-ins establish a connection with network devices over a particular communications protocol, the network devices including at least one of the following;
a short messaging service center (SMS-C), a multimedia messaging service center (MMS-C) and a parlay gateway of a telecommunications network;providing a first Policy Enforcement Point (PEP) residing on the service capability module to enforce service capabilities, wherein the first PEP determines whether to grant to deny the request according to a service being invoked by the request and according to at least one temporal condition; providing a second PEP residing on the plug-in manager to enforce network protection by coordinating traffic among the network devices to enhance network traffic efficiency, wherein the second PEP routes the request to a selected network device; providing a policy engine containing a set of policy rules loaded into memory of said policy engine, wherein the policy rules can be added and updated at runtime; and employing the policy rules by a policy decision point residing on the policy engine in order to control traffic flow based upon at least one temporal condition; wherein upon receiving the request from the application, the first PEP forwards data in the request to the PDP in the policy engine that evaluates the request, modifies or adds new data to the request, and informs the first PEP of the policy decision, wherein the first PEP then enforces said policy decision on the request and queries the plug-in manager for a list of possible plug-ins to handle the request; and wherein upon receiving the request from the first PEP, the plug-in manager retrieves the list of possible plug-ins based on an address plan and destination address of the request and sends the list of possible plug-ins to the policy engine, wherein the policy engine makes a decision based on one or more of request data, general network gatekeeping rules, specific data in the service provider traffic service level agreement (SLA) or additional data from external databases, wherein the policy engine returns the list of possible plug-ins that have passed the decision to the plug-in manager or informs the plug-in manager that no plug-in has passed the decision, wherein the plug-in manager selects a plug-in from the list of possible plug-ins and sends the plug-in to the service capability module, and wherein the service capability module routes the request to said plug-in. - View Dependent Claims (6, 7)
-
-
8. A non-transitory computer-readable storage medium storing one or more sequences of instructions for controlling data flow based on a temporal policy in a telecommunications environment, wherein execution of said instructions causes one or more processors to carry out the steps of:
-
receiving at least one of a plurality of service requests from at least one application that resides in an untrusted domain to a service capability module residing on the non-transitory computer-readable storage medium, said request being directed to a subscriber device in a telecommunications network; providing a plug-in manager that retrieves one or more plug-ins to handle the service requests, wherein the one or more plug-ins establish a connection with network devices over a particular communications protocol, the network devices including at least one of the following;
a short messaging service center (SMS-C), a multimedia messaging service center (MMS-C) and a parlay gateway of a telecommunications network;providing a first Policy Enforcement Point (PEP) residing on the service capability module to enforce service capabilities, wherein the first PEP determines whether to grant to deny the request according to a service being invoked by the request and according to at least one temporal condition; providing a second PEP residing on the plug-in manager to enforce network protection by coordinating traffic among the network devices to enhance network traffic efficiency, wherein the second PEP routes the request to a selected network device; providing a policy engine containing a set of policy rules loaded into memory of said policy engine, wherein the policy rules can be added and updated at runtime; and employing the policy rules by a policy decision point residing on the policy engine in order to control traffic flow based upon at least one temporal condition; wherein upon receiving the request from the application, the first PEP forwards data in the request to the PDP in the policy engine that evaluates the request, modifies or adds new data to the request, and informs the first PEP of the policy decision, wherein the first PEP then enforces said policy decision on the request and queries the plug-in manager for a list of possible plug-ins to handle the request; and wherein upon receiving the request from the first PEP, the plug-in manager retrieves the list of possible plug-ins based on an address plan and destination address of the request and sends the list of possible plug-ins to the policy engine, wherein the policy engine makes a decision based on one or more of request data, general network gatekeeping rules, specific data in the service provider traffic service level agreement (SLA) or additional data from external databases, wherein the policy engine returns the list of possible plug-ins that have passed the decision to the plug-in manager or informs the plug-in manager that no plug-in has passed the decision, wherein the plug-in manager selects a plug-in from the list of possible plug-ins and sends the plug-in to the service capability module, and wherein the service capability module routes the request to said plug-in.
-
Specification