Authentication server and methods for granting tokens comprising location data
First Claim
Patent Images
1. A method of generating a token for use by a mobile device to establish authorization for the mobile device to access a service provided by a service server, the method comprising:
- receiving, at an authentication server, a request for the token from the mobile device; and
responsive to receiving the request;
receiving, at the authentication server, policy data governing operation of the mobile device from a policy server;
receiving, at the authentication server, received location data from a network-side entity;
generating the token at the authentication server, the token comprising location data identifying a location for the mobile device and authentication data indicating a level of access that the mobile device is permitted to have to the service provided by the service server, the location data and the authentication data being provided in the same token, the location data of the token based on the received location data, the authentication data generated based on the policy data; and
transmitting the token to the mobile device.
4 Assignments
0 Petitions
Accused Products
Abstract
An authentication server and methods of generating a token for use by a mobile device to establish authorization for the mobile device to access a service provided by a service server, the method comprising receiving a request for the token from the mobile device, generating the token comprising location data identifying a location for the mobile device and authentication data indicating a level of access that the mobile device is permitted to have to the service provided by the service server, and transmitting the token to the mobile device.
40 Citations
33 Claims
-
1. A method of generating a token for use by a mobile device to establish authorization for the mobile device to access a service provided by a service server, the method comprising:
-
receiving, at an authentication server, a request for the token from the mobile device; and responsive to receiving the request; receiving, at the authentication server, policy data governing operation of the mobile device from a policy server; receiving, at the authentication server, received location data from a network-side entity; generating the token at the authentication server, the token comprising location data identifying a location for the mobile device and authentication data indicating a level of access that the mobile device is permitted to have to the service provided by the service server, the location data and the authentication data being provided in the same token, the location data of the token based on the received location data, the authentication data generated based on the policy data; and transmitting the token to the mobile device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An authentication server comprising:
-
a receiver configured to receive a request for a token from a mobile device, and configured, responsive to receiving the request, to receive from a policy server policy data governing operation of the mobile device and to receive received location data from a network-side entity, the token for use by the mobile device to establish authorization for the mobile device to access a service provided by a service server; a transmitter configured to transmit the token to the mobile device; a memory; and a processor configured to generate the token, the token comprising location data identifying a location for the mobile device and authentication data indicating a level of access that the mobile device is permitted to have to the service provided by the service server, the location data and the authentication data being provided in the same token, the location data of the token based on the received location data, the authentication data generated based on the policy data, and the processor configured to cause the token to be transmitted to the mobile device, wherein the policy data and the received location data are received responsive to receiving the request. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A non-transitory computer-readable medium storing instructions which, when executed by a processor of an authentication server, result in:
-
receiving, at the authentication server, a request for a token from a mobile device, the token for use by the mobile device to establish authorization for the mobile device to access a service provided by a service server; and responsive to receiving the request; receiving, at the authentication server, policy data governing operation of the mobile device from a policy server; receiving, at the authentication server, received location data from a network-side entity; generating the token, the token comprising location data identifying a location for the mobile device and authentication data indicating a level of access that the mobile device is permitted to have to the service provided by the service server, the location data and the authentication data being provided in the same token, the location data of the token based on the received location data, the authentication data generated based on the policy data; and transmitting the token to the mobile device. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
-
Specification