Devices and methods for secure internet transactions

US 8,151,336 B2
Filed: 12/10/2008
Issued: 04/03/2012
Est. Priority Date: 12/10/2008
Status: Active Grant

First Claim

Patent Images

1. A system for ensuring the security of a wireless access point, the system comprising:

a wireless access point including;

a housing;

a memory within the housing;

a wireless communication module within the housing;

an antenna in communication with the wireless communication module, and coupled to the housing;

a private service set identifier (SSID) stored on the memory,a public SSID stored on the memory; and

a digital authenticator stored on the memory;

wherein the public SSID is accessed by a mobile communications device via a wi-fi connection and the digital authenticator transmitted to the mobile communications device, andwherein the mobile communications device accesses a digital certificate database on a network via a cellular connection to determine the wireless access point'"'"'s trustworthiness.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Devices and methods are disclosed which provide a mobile communications device with multiple methods of wireless communication which can use one method, such as WiFi, to connect to an independent wireless access point while using another method, such as cellular, to verify the security of the wireless access point. The wireless access point provides two SSID'"'"'s: one private SSID, which is usually encrypted to prevent access, and one public SSID, which is open to any mobile communications device. The mobile communications device connects to the public SSID and downloads a digital certificate. The mobile communications device then uses its cellular connection to verify the authenticity of the digital certificate with its service provider. If verified, the mobile communications device can make use of the wireless access point.

Citations

25 Claims

1. A system for ensuring the security of a wireless access point, the system comprising:
- a wireless access point including;
  
  a housing;
  
  a memory within the housing;
  
  a wireless communication module within the housing;
  
  an antenna in communication with the wireless communication module, and coupled to the housing;
  
  a private service set identifier (SSID) stored on the memory,a public SSID stored on the memory; and
  
  a digital authenticator stored on the memory;
  
  wherein the public SSID is accessed by a mobile communications device via a wi-fi connection and the digital authenticator transmitted to the mobile communications device, andwherein the mobile communications device accesses a digital certificate database on a network via a cellular connection to determine the wireless access point'"'"'s trustworthiness.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The system in claim 1, wherein the wireless communication module communicates using one of a WiFi, BLUETOOTH, and cellular protocol.
  - 3. The system in claim 1, wherein the private SSID is not open to all users.
  - 4. The system in claim 1, wherein the public SSID is open to all users.
  - 5. The system in claim 1, wherein the digital authenticator comprises a service provider name, an SSID, and a physical location.
  - 6. The system in claim 5, wherein the service provider name is the name of the service provider that has approved the wireless access point for public access.
  - 7. The system in claim 6, wherein the SSID and physical location describe characteristics of the wireless access point.
  - 8. The system in claim 1, wherein the memory comprises a first memory module and a second memory module.
  - 9. The system in claim 8, wherein the private SSID resides on the first memory module.
  - 10. The system in claim 8, wherein the public SSID resides on the second memory module.

11. A mobile communications device for ensuring the security of a wireless router having a service set identifier (SSID), the mobile communications device comprising:
- a cellular connection; and
  
  a wi-fi connection,wherein the mobile communication device accesses the SSID and downloads a certificate from the wireless router via the wi-fi connection, andwherein the mobile communications device accesses a digital certificate database on a network via the cellular connection to determine the wireless access point'"'"'s trustworthiness.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The mobile communications device in claim 11, wherein the wireless communication logic communicates using one of a WiFi, BLUETOOTH, and cellular protocol.
  - 13. The mobile communications device in claim 11, wherein the SSID is open to all users.
  - 14. The mobile communications device in claim 11, wherein the certificate comprises a service provider name, an SSID, and a physical location.
  - 15. The mobile communications device in claim 14, wherein the service provider name is the name of the service provider that has approved the wireless router for public access.
  - 16. The mobile communications device in claim 15, wherein the SSID and physical location describe characteristics of the wireless access point.
  - 17. The mobile communications device in claim 11, wherein the memory comprises a first memory module and a second memory module.
  - 18. The mobile communications device in claim 17, wherein the first SSID resides on the first memory module.
  - 19. The mobile communications device in claim 17, wherein the second SSID resides on the second memory module.

20. A method of proving the trustworthiness of a wireless access point having a first service set identifier (SSID) and a second SSID comprising:
- connecting to the second SSID through a first connection;
  
  downloading a certificate from the wireless access point; and
  
  comparing the certificate with a database of certificates to verify an authenticity of the wireless access point,wherein the comparing further comprises connecting with the database of certificates through a second connection.
- View Dependent Claims (21, 22, 23, 24, 25)
- - 21. The method in claim 20, further comprising offering an authenticator for the wireless access point to evaluate a user'"'"'s trustworthiness.
  - 22. The method in claim 20, further comprising switching to an encrypted connection.
  - 23. The method in claim 20, wherein the first connection uses one of a WiFi, BLUETOOTH, and cellular protocol.
  - 24. The method in claim 20, wherein the second connection uses one of a WiFi, BLUETOOTH, and cellular protocol that is not the same as the first connection.
  - 25. The method in claim 20, wherein the comparing further comprises comparing with an internal database of certificates.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
AT&T Intellectual Property I LP (AT&T, Inc.)
Original Assignee
AT&T Intellectual Property I LP (AT&T, Inc.)
Inventors
Savoor, Raghvendra
Primary Examiner(s)
Barron, Jr., Gilberto
Assistant Examiner(s)
Cribbs, Malcolm

Application Number

US12/332,211
Publication Number

US 20100146614A1
Time in Patent Office

1,210 Days
Field of Search

713/152, 713155-158, 713168-171, 713175-180, 726 2- 10, 726 17- 21
US Class Current

726/10
CPC Class Codes

H04L 2209/80   Wireless

H04L 63/0823   using certificates cryptogr...

H04L 9/3263   involving certificates, e.g...

H04L 9/3271   using challenge-response

H04W 12/069   using certificates or pre-s...

H04W 8/205   Transfer to or from user eq...

H04W 84/045   using private Base Stations...

H04W 88/08   Access point devices

Devices and methods for secure internet transactions

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Devices and methods for secure internet transactions

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links