Method and system for a secure connection in communication networks
First Claim
1. A method for enabling a user to communicate on a virtual private network through a public communication network, a possibility of communicating on said virtual private network depending on an availability to said user of at least one enabling credential sent to the user in encrypted form, comprising the steps of:
- providing said user with a SIM type module bearing an encryption mechanism;
providing the user with a user terminal communicating with the SIM type module;
generating the at least one enabling credential;
encrypting the at least one enabling credential using information associated with the encryption mechanism borne by the SIM type module;
transmitting to the user terminal an encrypted message containing the encrypted at least one enabling credential, wherein the encrypted at least one enabling credential is decrypted at the user terminal based on information generated by the SIM type module using the same encryption mechanism,providing encrypted communication modes between said virtual private network and the user who communicates thereon;
providing at least one gateway associated with said virtual private network to activate said encrypted communication modes;
registering said at least one gateway and the user with an inter working function; and
activating said virtual private network between said user and said at least one gateway;
wherein said step of registering said at least one gateway and the user with said inter working function entails the step of identifying which ones, in a set of SIM type modules issued, are SIM type modules enabled to communicate on said virtual private network in relation to a specific gateway.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for enabling a user to communicate on a virtual private network through a public communication network, the possibility of communicating on the private network depending on the availability to the user of at least one enabling credential sent to the user in encrypted form. The system includes at least one SIM type module available to the user and bearing an encryption mechanism and it is configured to decrypt the enabling credential at the user exploiting the encryption mechanism home by the SIM type module, the SIM type module being able to interact with at least one additional communication network to activate the encryption mechanism.
-
Citations
18 Claims
-
1. A method for enabling a user to communicate on a virtual private network through a public communication network, a possibility of communicating on said virtual private network depending on an availability to said user of at least one enabling credential sent to the user in encrypted form, comprising the steps of:
-
providing said user with a SIM type module bearing an encryption mechanism; providing the user with a user terminal communicating with the SIM type module; generating the at least one enabling credential; encrypting the at least one enabling credential using information associated with the encryption mechanism borne by the SIM type module; transmitting to the user terminal an encrypted message containing the encrypted at least one enabling credential, wherein the encrypted at least one enabling credential is decrypted at the user terminal based on information generated by the SIM type module using the same encryption mechanism, providing encrypted communication modes between said virtual private network and the user who communicates thereon; providing at least one gateway associated with said virtual private network to activate said encrypted communication modes; registering said at least one gateway and the user with an inter working function; and activating said virtual private network between said user and said at least one gateway; wherein said step of registering said at least one gateway and the user with said inter working function entails the step of identifying which ones, in a set of SIM type modules issued, are SIM type modules enabled to communicate on said virtual private network in relation to a specific gateway. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 18)
-
-
15. A system for enabling a user to communicate on a virtual private network through a public communication network, a possibility of communicating on said virtual private network depending on an availability to said user of at least one enabling credential sent to the user in encrypted form, comprising:
-
a network connection utilizing encrypted communication modes between said virtual private network and the user who communicates thereon; at least one SIM type module provided to said user and bearing an encryption mechanism and configured to communicate with at least an additional communication network; a user terminal provided to said user and configured to communicate with said at least one SIM type module; a gateway device associated with said virtual private network and configured to activate said encrypted communication modes and generate the at least one enabling credential; a server configured to receive the at least one enabling credential from the gateway device, and encrypt the at least one enabling credential using information associated with the encryption mechanism borne by the SIM type module; an inter working function with which said gateway device and the user are registered to entail identifying which ones, in a set of SIM type modules issued, are SIM type modules enabled to communicate on said virtual private network in relation to the gateway device; wherein the gateway device is further configured to receive the encrypted at least one enabling credential from the server and transmit to the user terminal an encrypted message containing the encrypted at least one enabling credential, wherein the gateway device is further configured to activate said virtual private network between said user and said gateway device, and wherein the user terminal decrypts the encrypted at least one enabling credential based on information generated by the SIM type module using the same encryption mechanism. - View Dependent Claims (16, 17)
-
Specification