Managing undesired service requests in a network

US 9,603,022 B2
Filed: 04/23/2010
Issued: 03/21/2017
Est. Priority Date: 04/27/2009
Status: Active Grant

First Claim

Patent Images

1. A method for managing a service request sent from a terminal to a network, the network comprising a network node for storing service-information, the method comprising:

receiving by the network the service request from the terminal, the request being related to one of service types SMS, MMS, call, or instant messaging and including service request information comprising at least one particular type of information for determining validity of a given request for the one of the service types;

in response to determining that the at least one particular type of information included in the received service request information is not listed in the service-information stored in the network node, the network sending a user verification request to the terminal, wherein the user verification request causes the terminal to generate a dialog on a display interface of the terminal requesting input from a user to verify if the service requested by the terminal is allowed by the user;

receiving by the network a user verification response from the terminal, the user verification response including verification information provided by the user via an input interface of the terminal, the verification information indicating whether the user accepts or rejects the service request; and

in response to determining from the verification information that the requested service is allowed, updating the service-information by adding at least part of the service request information to the service-information stored in the network node.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A Method and a system for managing undesired service requests sent from at least one terminal to a network are described, wherein the network comprises a network node for storing trusted service-information. The method comprises the steps of: the network receiving a service request from a terminal, the request comprising service request information; and, sending, preferably via a secure communication channel, a user verification request for requesting the user to verify the service requested by the terminal if at least part of the service request information is not listed in the trusted service-information.

30 Citations

View as Search Results

19 Claims

1. A method for managing a service request sent from a terminal to a network, the network comprising a network node for storing service-information, the method comprising:
- receiving by the network the service request from the terminal, the request being related to one of service types SMS, MMS, call, or instant messaging and including service request information comprising at least one particular type of information for determining validity of a given request for the one of the service types;
  
  in response to determining that the at least one particular type of information included in the received service request information is not listed in the service-information stored in the network node, the network sending a user verification request to the terminal, wherein the user verification request causes the terminal to generate a dialog on a display interface of the terminal requesting input from a user to verify if the service requested by the terminal is allowed by the user;
  
  receiving by the network a user verification response from the terminal, the user verification response including verification information provided by the user via an input interface of the terminal, the verification information indicating whether the user accepts or rejects the service request; and
  
  in response to determining from the verification information that the requested service is allowed, updating the service-information by adding at least part of the service request information to the service-information stored in the network node.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method according to claim 1, further comprising:
    - adding at least part of the service request information to the service-information if the verification information provides an indication that the requested service is not allowed.
  - 3. The method according to claim 1, further comprising:
    - establishing an encrypted communication channel, using a private key stored in an identity module of the terminal, between the terminal and the network;
      
      sending the user verification request to the terminal via the encrypted communication channel; and
      
      receiving the user verification response from the terminal via the encrypted communication channel, the user verification response comprising verification information provided by the user indicating whether the user accepts or rejects the service request.
  - 4. The method according to claim 3, wherein the terminal comprises the identity module, one or more input/output interfaces and at least one hardware component, the at least one hardware component configured to establish one or more communication paths between the hardware component and the identity module and/or the one or more input/output interfaces.
  - 5. The method according to claim 1, further comprising:
    - establishing a further communication channel which is different from a communication channel through which the service request is received;
      
      sending the user verification request to the terminal via the communication channel; and
      
      receiving a user verification response from the terminal via the further communication channel, the response comprising verification information indicating whether the user allows or rejects the service request.
  - 6. The method according to claim 5, wherein the communication channel is provided by a messaging service, wherein the messaging service is a short message service or an USSD service.
  - 7. The method according to claim 1, wherein the verification request comprises a test configured to determine whether the user is human or not, wherein the test is a reverse Turing test, and wherein the verification response comprises information indicating whether the test was successful or not.
  - 8. The method according to claim 1, wherein the network comprises a service provisioning network node, the service provisioning network node comprising a visiting location register (VLR) comprising service information, the service provisioning network node further comprises a user verification function for sending in response to the service request from the terminal the user verification request to the terminal at least part of the service request information is not listed in the service-information.
  - 9. The method according to claim 8, wherein the network further comprises a home location register (HLR), the home location register comprising service-information of the terminal,wherein the service-information is transmitted from the home location register to the visiting location register.
  - 10. The method according to claim 1, wherein the stored service-information is a trusted service-information.
  - 11. The method according to claim 1, further comprising at least one of:
    - sending the user verification request via a secure communication channel; and
      
      receiving the user verification response via a secure channel.
  - 12. The method according to claim 1 wherein a user verification request is sent via a secure channel and a user verification response is received via the same secure channel.

13. A system for managing a service request sent to a network, comprising:
- at least one terminal for establishing a communication channel with the network;
  
  a service database comprising service-information; and
  
  a service provisioning network node connected with the service database, and comprising one or more processors and instructions stored in memory that when executed by the one or more processors cause the service provisioning network node to carry out operations including;
  
  (i) receiving the service request, the request being related to one of service types SMS, MMS, call, or instant messaging and including service request information from the at least one terminal, the service request information comprising at least one particular type of information for determining validity of a given request for the one of the service types,(ii) in response to determining that the at least one particular type of information included in the received service request information is not listed in the service-information in the service database, sending a user verification request to the terminal, wherein the user verification request causes the terminal to generate a dialog on a display interface of the terminal requesting input from a user to verify if the service requested by the at least one terminal is allowed by the user,(iii) receiving a user verification response from the terminal, the user verification response including verification information provided by the user via an input interface of the terminal, the verification information indicating whether the user accepts or rejects the service request, and(iv) in response to determining from the verification information that the requested service is allowed, updating the service-information by adding at least part of the service request information to the service-information in the service database.
- View Dependent Claims (14, 15, 16)
- - 14. The system according to claim 13, wherein the operations further include:
    - enabling a dialog between a user of or associated with the at least one terminal and the network if the at least one particular type of information included in the service request information is not listed in the service-information.
  - 15. The system according to claim 13, wherein the at least one terminal comprises one or more processors and instructions stored in memory that when executed by the one or more processors cause the at least one terminal to carry out operations including:
    - in response to receiving a user verification request from the service provisioning network node, establishing a dialog between a user of the at least one terminal and the network;
      
      providing an encryption key for establishing a communications channel for the dialog;
      
      receiving dialog information from the user;
      
      transmitting dialog information to the user; and
      
      causing a hardware component to establish one or more communications paths between the operations of establishing the dialog, providing the encryption key, receiving the dialog information, and transmitting the dialog information.
  - 16. The system according to claim 13, wherein the stored service-information is a trusted service-information.

17. A non-transitory computer-readable medium having instructions stored thereon that, when executed by one or more processors of a service provisioning network node in a network, cause the service provisioning network node to carry out operations including:
- receiving a service request from a terminal, the request having been sent by way of the network and being related to at least one of service types SMS, MMS, call, or instant messaging and including service request information comprising one particular type of information for determining validity of a given request for the one of the service types;
  
  in response to determining that the at least one particular type of information included in the received service request information is not listed in service-information stored in association with the service provisioning network node, sending a user verification request to the terminal, wherein the user verification request causes the terminal to generate a dialog on a display interface of the terminal requesting input from a user to verify if the service requested by the terminal is allowed by the user;
  
  receiving a user verification response from the terminal, the user verification response including verification information provided by the user via an input interface of the terminal, the verification information indicating whether the user accepts or rejects the service request; and
  
  in response to determining from the verification information that the requested service is allowed, updating the service-information by adding at least part of the service request information to the service-information.

18. A non-transitory computer-readable medium having instructions stored thereon that, when executed by one or more processors, cause the one or more processors to carry out operations including:
- receiving a service request from a terminal, the request being related to one of service types SMS, MMS, call, or instant messaging and including service request information comprising at least one particular type of information for determining validity of a given request for the one of the service types;
  
  in response to determining that the at least one particular type of information included in the received service request information is not listed as trusted service-information in one or more trusted lists containing one or more allowable or not allowable services, sending a user verification request to the terminal, wherein the user verification request causes the terminal to generate a dialog on a display interface of the terminal requesting input from a user to verify if the service request made by the terminal is allowed by the user;
  
  receiving a user verification response from the terminal, the user verification response including verification information provided by the user via an input interface of the terminal, the verification information indicating whether the user accepts or rejects the service request; and
  
  in response to determining from the verification information that the requested service is allowed, updating the trusted service-information by adding at least part of the service request information to the trusted service-information in the one or more trusted lists containing one or more allowable or not allowable services.
- View Dependent Claims (19)
- - 19. The non-transitory computer-readable medium according to claim 18, wherein the operations further comprise:
    - establishing a further communication channel which is different from a communication channel through which the service request is received;
      
      sending the user verification request to the terminal via the communication channel; and
      
      receiving a user verification response from the terminal via the further communication channel, the response comprising verification information indicating whether the subscriber allows or rejects the service request.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Koninklijke KPN NV, Nederlandse Organisatie Voor Toegepast-Natuurwetenschappelijk Onderzoek Tno
Original Assignee
Koninklijke KPN NV, Nederlandse Organisatie Voor Toegepast-Natuurwetenschappelijk Onderzoek Tno
Inventors
Laarakkers, Jeroen, Muller, Frank, Hartog, Tim
Primary Examiner(s)
Donabed, Ninos

Application Number

US13/266,399
Publication Number

US 20120047262A1
Time in Patent Office

2,524 Days
Field of Search

None
US Class Current

1/1
CPC Class Codes

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 63/101   Access control lists [ACL]

H04L 63/145   the attack involving the pr...

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/12   Detection or prevention of ...

H04W 12/128   Anti-malware arrangements, ...

H04W 4/00   Services specially adapted ...

H04W 88/10   adapted for operation in mu...

Managing undesired service requests in a network

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

30 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Managing undesired service requests in a network

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

30 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links