Security bridging
First Claim
1. A method of providing a communication service from a communication network to at least one subscriber device connected to the communication network via a gateway device, the method comprising:
- authenticating the gateway device using the communication network;
after authentication of the gateway device by the communication network, authenticating, by the gateway device, the at least one subscriber device on behalf of the communication network independently of authentication functionality of the communication network;
providing, by the gateway device, a mobility certificate to the at least one subscriber device when the mobile subscriber device is connected to the communication network via the gateway device, the mobility certificate identifying the gateway device;
when the mobile subscriber device is no longer connected to the communication network via the gateway device, receiving, by the communication network from the mobile subscriber device, a service request and a mobility certificate from one of the at least one subscriber device;
determining, via the communication network, whether to provide a service to the one of the at least one subscriber device based on the received service request and the received mobility certificate; and
upon determining that the service is to be provided to the one of the at least one subscriber device, providing the communication service from the communication network via the gateway device identified by the mobility certificate to the one of the at least one subscriber device.
7 Assignments
0 Petitions
Accused Products
Abstract
A network media gateway is used to bridge trust between a Service Provider network and subscriber devices. The gateway is authenticated by the Service Provider by using knowledge of network topology. Subscriber devices are authenticated in response to subscriber input to the gateway via an interface. Trusted subscriber devices can be tightly coupled with the Service Provider network, thereby facilitating delivery of QoE. Mobile and remote subscriber devices may also be authenticated. The gateway may also facilitate establishment of VPNs for peer-to-peer communications, and dynamically adjustable traffic, policy and queue weightings based on usage patterns.
12 Citations
19 Claims
-
1. A method of providing a communication service from a communication network to at least one subscriber device connected to the communication network via a gateway device, the method comprising:
-
authenticating the gateway device using the communication network; after authentication of the gateway device by the communication network, authenticating, by the gateway device, the at least one subscriber device on behalf of the communication network independently of authentication functionality of the communication network; providing, by the gateway device, a mobility certificate to the at least one subscriber device when the mobile subscriber device is connected to the communication network via the gateway device, the mobility certificate identifying the gateway device; when the mobile subscriber device is no longer connected to the communication network via the gateway device, receiving, by the communication network from the mobile subscriber device, a service request and a mobility certificate from one of the at least one subscriber device; determining, via the communication network, whether to provide a service to the one of the at least one subscriber device based on the received service request and the received mobility certificate; and upon determining that the service is to be provided to the one of the at least one subscriber device, providing the communication service from the communication network via the gateway device identified by the mobility certificate to the one of the at least one subscriber device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
Specification