System and method of controlling application level access of subscriber to a network
First Claim
Patent Images
1. A method, comprising:
- sending, from visited network comprising at least one proxy server to a home network an identification of a subscriber, the location of the subscriber, and a type of access network at which the subscriber is registering, wherein at least the location of the home network is determined by the visited network based on analysis of data transmitted to the visited network from the subscriber using packet data protocol;
in response to the sending, receiving from the home network at the visited network a selected predetermined subscriber profile selected from of a plurality of subscriber profiles for the subscriber based at least in part on the location of subscriber, each subscriber profile of the plurality of subscriber profiles including a different level of access defining at least one of a bandwidth degree, a security degree or supported supplementary services, in which the selected subscriber profile comprises an authorization for an authorized level of access for the type of access network, and storing at the visited network the received selected predetermined subscriber profile; and
controlling, by the visited network, access provided to the subscriber to services provided through the visited network dependent upon a comparison of a requested level of access and the authorized level of access in the stored selected predetermined subscriber profile, wherein the access provided to the subscriber is application level access used to provide connectivity of the subscriber in the visited network defined by the selected subscriber profile.
4 Assignments
0 Petitions
Accused Products
Abstract
The invention is a system and method of controlling an access of a subscriber to a network. The method includes sending an identification of the subscriber and a level of access to be provided to the subscriber from a visited network of a plurality of networks (12, 14, 16) connected to a home network (10); in response to the identification of the subscriber and a level of access to be provided to the subscriber, storing a subscriber profile of the authorized of access to be provided to the subscriber; and controlling access of the subscriber to any network dependent upon a comparison of access to be provided to the subscriber and the stored subscriber profile.
-
Citations
27 Claims
-
1. A method, comprising:
-
sending, from visited network comprising at least one proxy server to a home network an identification of a subscriber, the location of the subscriber, and a type of access network at which the subscriber is registering, wherein at least the location of the home network is determined by the visited network based on analysis of data transmitted to the visited network from the subscriber using packet data protocol; in response to the sending, receiving from the home network at the visited network a selected predetermined subscriber profile selected from of a plurality of subscriber profiles for the subscriber based at least in part on the location of subscriber, each subscriber profile of the plurality of subscriber profiles including a different level of access defining at least one of a bandwidth degree, a security degree or supported supplementary services, in which the selected subscriber profile comprises an authorization for an authorized level of access for the type of access network, and storing at the visited network the received selected predetermined subscriber profile; and controlling, by the visited network, access provided to the subscriber to services provided through the visited network dependent upon a comparison of a requested level of access and the authorized level of access in the stored selected predetermined subscriber profile, wherein the access provided to the subscriber is application level access used to provide connectivity of the subscriber in the visited network defined by the selected subscriber profile. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An apparatus comprising:
-
at least one server configured to send, to a home network an identification of a subscriber, the location of the subscriber, and a type of access network at which the subscriber is registering, wherein at least the location of the home network is determined by the visited network based on analysis of data transmitted to the visited network from the subscriber using packet data protocol; the at least one server further configured, in response to the sending, to receive from the home network a selected predetermined subscriber profile selected from of a plurality of subscriber profiles for the subscriber based at least in part on the location of subscriber, each subscriber profile of the plurality of subscriber profiles including a different level of access defining at least one of a bandwidth degree, a security degree or supported supplementary services, in which the selected subscriber profile comprises an authorization for an authorized level of access for the type of access network, and to store at the server the received selected predetermined subscriber profile; and the at least one server further configured to control access provided to the subscriber to services provided through the server dependent upon a comparison of a requested level of access and the authorized level of access in the stored selected predetermined subscriber profile, wherein access provided to the subscriber is application level access used to provide connectivity of the subscriber in the visited network defined by the selected subscriber profile. - View Dependent Claims (13, 14, 15, 16, 17)
-
-
18. A method comprising:
-
in a home network comprising at least one server, storing for a given subscriber a plurality of subscriber profiles, each subscriber profile indicating a different level of access for which the given subscriber is authorized; in response to receiving, at the home network from a visited network, a message identifying the given subscriber, the location of the subscriber, and a type of access network at which the subscriber is registering, wherein at least the location of the home network is determined by the visited network based on analysis of data transmitted to the visited network from the subscriber using packet data protocol, selecting, by the home network, from the stored plurality of subscriber profiles a selected predetermined subscriber profile selected based at least in part on the location of subscriber, each subscriber profile of the plurality of subscriber profiles including a different level of access defining at least one of a bandwidth degree, a security degree or supported supplementary services, the selected subscriber profile indicating a level of access that is authorized for the given subscriber for the type of access network based at least in part on the given subscriber and the type of access network at which the subscriber is registering; and sending from the home network to the visited network the selected predetermined subscriber profile effective to enable the visited network to control access provided to the subscriber to services provided through the visited network dependent upon a comparison of a requested level of access and the authorized level of access in the selected predetermined subscriber profile, where the access provided to the subscriber is application level access used to provide connectivity of the subscriber in the visited network defined by the selected subscriber profile. - View Dependent Claims (19, 20, 21, 22)
-
-
23. An apparatus comprising:
-
at least one server storing for a given subscriber a plurality of subscriber profiles, each subscriber profile indicating a different level of access for which the given subscriber is authorized; the at least one server configured, in response to the apparatus receiving from a visited network a message identifying the given subscriber, the location of the subscriber and a type of access network at which the subscriber is registering, wherein at least the location of the home network is determined by the visited network based on analysis of data transmitted to the visited network from the subscriber using packet data protocol, to select from the stored plurality of subscriber profiles a selected predetermined subscriber profile selected based at least in part on the location of subscriber, each subscriber profile of the plurality of subscriber profiles including a different level of access defining at least one of a bandwidth degree, a security degree or supported supplementary services, the selected subscriber profile indicating a level of access that is authorized for the given subscriber for the type of access network based at least in part on the given subscriber and the type of access network at which the subscriber is registering; and the at least one server configured to send to the visited network the selected predetermined subscriber profile effective to enable the visited network to control access provided to the subscriber to services provided through the visited network dependent upon a comparison of a requested level of access and the authorized level of access in the selected predetermined subscriber profile, where the access provided to the subscriber is application level access used to provide connectivity of the subscriber in the visited network defined by the selected subscriber profile. - View Dependent Claims (24, 25, 26, 27)
-
Specification