Secure remote subscription module access
First Claim
1. A method of granting a client communications terminal access to a subscription module of a server communications terminal, the method comprising the steps of:
- establishing a communication link between the client communications terminal and the server communications terminal wherein the server communications terminal includes the subscription module having an authenticating functionality;
authenticating the client communications terminal by the subscription module using a key-based authentication procedure based on a first secret key stored in both the client communications terminal and the subscription module;
generating a second secret key;
exchanging the second secret key between the client communications terminal and the subscription module;
encrypting data related to the subscription module using an encryption key derived from the second secret key; and
communicating the encrypted data between the server communications terminal and the client communications terminal via the communications link.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed is a method of granting a client communications terminal access to a subscription module of a server communications terminal, the method comprising the steps of establishing a communications link between the client communications terminal and the server communications terminal; communicating data related to the subscription module between the server communications terminal and the client communications terminal via the communications link; authenticating the client communications terminal by the subscription module using a key-based authentication procedure; and initiating the step of communicating data related to the subscription module conditioned on a result of the step of authenticating the client communications device. The present invention further relates to an arrangement for granting access to a subscription module in a communications system. The present invention also relates to a server communications terminal comprising a subscription module, a client communications terminal and a subscription module.
-
Citations
36 Claims
-
1. A method of granting a client communications terminal access to a subscription module of a server communications terminal, the method comprising the steps of:
-
establishing a communication link between the client communications terminal and the server communications terminal wherein the server communications terminal includes the subscription module having an authenticating functionality; authenticating the client communications terminal by the subscription module using a key-based authentication procedure based on a first secret key stored in both the client communications terminal and the subscription module; generating a second secret key; exchanging the second secret key between the client communications terminal and the subscription module; encrypting data related to the subscription module using an encryption key derived from the second secret key; and communicating the encrypted data between the server communications terminal and the client communications terminal via the communications link. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 24, 25, 26, 36)
-
-
12. An arrangement for granting access to a subscription module in a communications system, the arrangement comprising:
-
a client communications terminal; and a server communications terminal, said server communications terminal including the subscription module, the client and server communications terminals each comprising respective communications means for establishing a communications link between the client communications terminal and the server communications terminal, and for communicating data related to the subscription module between the server communications terminal and the client communications terminal via the communications link wherein the subscription module further comprises processing means for; authenticating the client communications terminal using a key-based authentication procedure based on a first secret key stored in both the client communications terminal and the subscription module, generating a second secret key, exchanging the second secret with the client communications terminal, encrypting data related to the subscription module using an encryption key derived from the second secret key, and communicating the encrypted data between the server communications terminal and the client communications terminal via the communications link. - View Dependent Claims (13, 14, 15, 16, 27, 28, 29)
-
-
17. A server communications terminal comprising:
-
a subscription module; and communications means for establishing a communications link with a client communications terminal and for communicating data related to the subscription module via the communications link wherein the subscription module further comprises processing means for; authenticating the client communications terminal using a key-based authentication procedure based on a first secret key stored in both the client communications terminal and the subscription module, generating a second secret key, exchanging the second secret with the client communications terminal, encrypting data related to the subscription module using an encryption key derived from the second secret key, and communicating the encrypted data between the server communications terminal and the client communications terminal via the communications link. - View Dependent Claims (30, 31, 32)
-
-
18. A client communications terminal comprising:
-
communications means for establishing a communications link with a server communications terminal, said server communications terminal including a subscription module having an authorization functionality, and for communicating data related to the subscription module via the communications link; and processing means for performing a key-based authentication procedure cooperatively with the subscription module allowing the subscription module to; authenticate the client communications terminal based on a first secret key stored in both the client communications terminal and the subscription module, generate a second secret key, exchange the second secret key between the client communications terminal and the subscription module, encrypt data related to the subscription module using an encryption key derived from the second secret key, and communicate the encrypted data between the server communications terminal and the client communications terminal via the communications link. - View Dependent Claims (33, 34, 35)
-
-
19. A subscription module for use with a portable radio communications terminal, the portable radio communications terminal including communications means for establishing a communications link with a client communications terminal and for communicating data related to the subscription module via the communications link wherein the subscription module comprises processing means to, when the subscription module is in connection with the portable radio communications terminal;
-
authenticate the client communications terminal using a key-based authentication procedure based on a first secret key stored in both the client communications terminal and the subscription module, generate a second secret key, exchange the second secret with the client communications terminal, encrypt data related to the subscription module using an encryption key derived from the second secret key, and communicate the encrypted data between the server communications terminal and the client communications terminal via the communications link, wherein the subscription module is contained within the server communications terminal. - View Dependent Claims (20, 21, 22, 23)
-
Specification