Authentication in secure user plane location (SUPL) systems
First Claim
Patent Images
1. A method comprising:
- generating, at a secure user plane location (SUPL) server, a message to be sent to a mobile device, the message including;
a server certificate including an identifier of the SUPL server and a public key of the SUPL server; and
a request for a device certificate of the mobile device;
receiving a reply message from the mobile device that includes a device certificate of the mobile device, wherein the reply message is encrypted using the public key of the SUPL server; and
authenticating, at the SUPL server, the mobile device by verifying whether the mobile device is associated with an authorized SUPL user based on the device certificate, wherein the device certificate includes a device identification (ID), and wherein authenticating the mobile device comprises comparing the device ID to a stored device ID, wherein the stored device ID is previously securely verified by the SUPL server as being associated with the authorized SUPL user.
3 Assignments
0 Petitions
Accused Products
Abstract
A particular method includes generating, at a secure user plane location (SUPL) server, a message to be sent to a mobile device, the message including: a server certificate including an identifier of the SUPL server and a public key of the SUPL server; and a request for a device certificate of the mobile device. The method also includes receiving a reply from the mobile device that includes a device certificate of the mobile device; and authenticating the mobile device as associated with a SUPL user based on the device certificate.
49 Citations
15 Claims
-
1. A method comprising:
-
generating, at a secure user plane location (SUPL) server, a message to be sent to a mobile device, the message including; a server certificate including an identifier of the SUPL server and a public key of the SUPL server; and a request for a device certificate of the mobile device; receiving a reply message from the mobile device that includes a device certificate of the mobile device, wherein the reply message is encrypted using the public key of the SUPL server; and authenticating, at the SUPL server, the mobile device by verifying whether the mobile device is associated with an authorized SUPL user based on the device certificate, wherein the device certificate includes a device identification (ID), and wherein authenticating the mobile device comprises comparing the device ID to a stored device ID, wherein the stored device ID is previously securely verified by the SUPL server as being associated with the authorized SUPL user. - View Dependent Claims (2, 3, 4, 15)
-
-
5. A non-transitory processor-readable medium comprising instructions that, when executed by a processor, cause the processor to:
generate, at a secure user plane location (SUPL) server, a message to be sent to a mobile device, the message including; a server certificate including an identifier of the SUPL server and a public key of the SUPL server; and a request for a device certificate of the mobile device; receive a reply message from the mobile device that includes a device certificate of the mobile device, wherein the reply message is encrypted using the public key of the SUPL server; and authenticate, at the SUPL server, the mobile device by verifying whether the mobile device is associated with an authorized SUPL user based on the device certificate, wherein the device certificate includes a device identification (ID), and wherein authenticating the mobile device comprises comparing the device ID to a stored device ID, wherein the stored device ID is previously securely verified by the SUPL server as being associated with the authorized SUPL user. - View Dependent Claims (6, 7, 8)
-
9. An apparatus comprising:
-
a hardware processor; and a memory coupled to the processor, wherein the memory is configured to store instructions; and wherein the instructions are executable by the processor to; generate, at a secure user plane location (SUPL) server, a message to be sent to a mobile device, the message including; a server certificate including an identifier of the SUPL server and a public key of the SUPL server; and a request for a device certificate of the mobile device; receive a reply message from the mobile device that includes a device identifier of the mobile device, wherein the reply message is encrypted using the public key of the SUPL server; and authenticate, at the SUPL server, the mobile device by verifying whether the mobile device is associated with an authorized SUPL user based on the device certificate, wherein the device certificate includes a device identification (ID), and wherein authenticating the mobile device comprises comparing the device ID to a stored device ID, wherein the stored device ID is previously securely verified by the SUPL server as being associated with the authorized SUPL user. - View Dependent Claims (10)
-
-
11. An apparatus comprising:
-
means for generating, at a secure user plane location (SUPL) server, a message to be sent to a mobile device, the message including; a server certificate including an identifier of the SUPL server and a public key of the SUPL server; and a request for a device certificate of the mobile device; means for receiving a reply message from the mobile device that includes a device certificate of the mobile device, wherein the reply message is encrypted using the public key of the SUPL server; and means for authenticating, at the SUPL server, the mobile device by verifying whether the mobile device is associated with an authorized SUPL user based on the device certificate, wherein the device certificate includes a device identification (ID), and wherein means for authenticating the mobile device comprises means for comparing the device ID to a stored device ID, wherein the stored device ID is previously securely verified by the SUPL server as being associated with the authorized SUPL user. - View Dependent Claims (12, 13, 14)
-
Specification