Method and system for multi-level secure personal profile management and access control to the enterprise multi-modal communication environment in heterogeneous convergent communication networks
First Claim
Patent Images
1. A method of securely accessing a voice-enabled communication terminal, having certain functions associated therewith, using an Internet Protocol (IP) comprising:
- receiving user authentication data, from users using secure personal authentication reader (SPAR device), from a plurality of Secure Profile Management Point (SPM) points, each of the SPM points including an IP phone and a SPAR device, the IP phone and the SPAR device of each of the plurality of the SPM points being coupled, through a voice local area network (VLAN) and a gateway, to a plurality of servers and a Multi-modal Application Platform Application (MAP) engine;
receiving a request from one of the SPAR devices;
based on the received request, the MAP engine, identifying the source of the request among the SPAR devices;
identifying the type of user authentication data received;
using an authentication server, receiving a response from the authentication server that includes one or more attributes uniquely identifying the user;
performing authentication of a user;
upon positive authentication of the user, retrieving the user profile for storage and building a telephony configuration according to the stored user profile;
transmitting to the user a list of available communication and business services according to a user'"'"'s profile and permission;
based on the authenticated user'"'"'s profile and location of the originating SPAR device and association of the SPAR device with an IP phone, publishing user-related presence information to a presence server; and
based on the authenticated user profile and user-related presence information, initiating an automated multi-modal session between the user and available and permissible business services.
11 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus, in accordance with an embodiment of the present invention, is presented for securely accessing a voice-enabled communication terminal using Internet Protocol by performing physical authentication, performing biometric authentication, performing logical authentication, performing confirmation of a user and upon successful confirmation of the user, allowing access to the communication terminal.
-
Citations
16 Claims
-
1. A method of securely accessing a voice-enabled communication terminal, having certain functions associated therewith, using an Internet Protocol (IP) comprising:
-
receiving user authentication data, from users using secure personal authentication reader (SPAR device), from a plurality of Secure Profile Management Point (SPM) points, each of the SPM points including an IP phone and a SPAR device, the IP phone and the SPAR device of each of the plurality of the SPM points being coupled, through a voice local area network (VLAN) and a gateway, to a plurality of servers and a Multi-modal Application Platform Application (MAP) engine; receiving a request from one of the SPAR devices; based on the received request, the MAP engine, identifying the source of the request among the SPAR devices; identifying the type of user authentication data received; using an authentication server, receiving a response from the authentication server that includes one or more attributes uniquely identifying the user; performing authentication of a user; upon positive authentication of the user, retrieving the user profile for storage and building a telephony configuration according to the stored user profile; transmitting to the user a list of available communication and business services according to a user'"'"'s profile and permission; based on the authenticated user'"'"'s profile and location of the originating SPAR device and association of the SPAR device with an IP phone, publishing user-related presence information to a presence server; and based on the authenticated user profile and user-related presence information, initiating an automated multi-modal session between the user and available and permissible business services. - View Dependent Claims (2, 3, 4, 15)
-
-
5. A secure service point (SSP) system comprising:
- a plurality of secure personal authentication reader (SPAR) devices, each coupled to a corresponding communication terminal, which is in communication with a network switch for performing physical authentication of a user, for performing logical authentication of the user, for performing verification of the user and upon successful confirmation of the user, allowing access to the functions of the communication terminal, using a Multi-modal Application Platform Application (MAP) engine, the MAP engine being coupled, through a voice local area network (VLAN) to a plurality of Secure Profile Management Point (SPM) points included in the SSP system, each of the SPM points including an IP phone and a SPAR device, prior to authentication of the user, receiving user authentication data, from users of the SPAR devices, the MAP engine operative to identify the source of the request among the SPAR devices and identify the type of user authentication data received, using an authentication server, a response is received that includes one or more attributes uniquely identifying the user and the user is presented with a list of available communication and business services according to a user'"'"'s profile and permission, and based on the authenticated user'"'"'s profile and location of the originating SPAR device and association of the SPAR device with an IP phone, a user-related presence information is published to a presence server, and based on the authenticated user profile and user-related presence information, an automated multi-modal session is initiated between the user and available and permissible business services.
- View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14, 16)
Specification