Protection against unsolicited communication

US 9,762,583 B2
Filed: 10/22/2010
Issued: 09/12/2017
Est. Priority Date: 10/23/2009
Status: Active Grant

First Claim

Patent Images

1. A method for preventing delivery of an unsolicited communication, the method comprising:

receiving, at an identity gateway in a sending domain, an indication of a communication from a sending device in the sending domain, wherein the communication is intended to be delivered to a receiving device in a receiving domain, and wherein the identity gateway provides authentication information, relating to one or more sending devices in the sending domain, to domains other than the sending domain;

determining the authentication information relating to the sending device;

determining information associated with a trustworthiness of the identity gateway in the sending domain, the information associated with the trustworthiness of the identity gateway comprising a network asserted identity that is incapable of being manipulated andsending the authentication information and the information associated with the trustworthiness of the identity gateway to at least one of a receiving network or the receiving device in the receiving domain, wherein the authentication information and the information associated with the trustworthiness of the identity gateway are capable of being evaluated to determine if the communication is unsolicited, wherein the authentication information and the information associated with the trustworthiness of the identity gateway are part of a Session Initiation Protocol Invite that is sent to at least one of the receiving network or the receiving device in the receiving domain, wherein determining authentication information comprises determining a sender identity associated with the sending device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and apparatus are disclosed to provide protection against Unsolicited Communication (UC) in a network, such as, without limitation, an Internet Protocol (IP) Multimedia Subsystem (IMS). A communication may originate from a sending device and may be intended for delivery to a receiving device. A network may determine authentication information associated with the sending device. The network may send the authentication information to a receiving entity to evaluate if the communication is unsolicited using the authentication information. If the communication is determined to be acceptable, a connection associated with the communication may be allowed.

15 Citations

View as Search Results

18 Claims

1. A method for preventing delivery of an unsolicited communication, the method comprising:
- receiving, at an identity gateway in a sending domain, an indication of a communication from a sending device in the sending domain, wherein the communication is intended to be delivered to a receiving device in a receiving domain, and wherein the identity gateway provides authentication information, relating to one or more sending devices in the sending domain, to domains other than the sending domain;
  
  determining the authentication information relating to the sending device;
  
  determining information associated with a trustworthiness of the identity gateway in the sending domain, the information associated with the trustworthiness of the identity gateway comprising a network asserted identity that is incapable of being manipulated andsending the authentication information and the information associated with the trustworthiness of the identity gateway to at least one of a receiving network or the receiving device in the receiving domain, wherein the authentication information and the information associated with the trustworthiness of the identity gateway are capable of being evaluated to determine if the communication is unsolicited, wherein the authentication information and the information associated with the trustworthiness of the identity gateway are part of a Session Initiation Protocol Invite that is sent to at least one of the receiving network or the receiving device in the receiving domain, wherein determining authentication information comprises determining a sender identity associated with the sending device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein determining authentication information further comprises determining a strength of the sender identity associated with the sending device.
  - 3. The method of claim 1, wherein the strong sender identity comprises a network asserted identity.
  - 4. The method of claim 1, wherein the sender identity is incapable of being manipulated by a sender of the communication.
  - 5. The method of claim 1, wherein the authentication information comprises state information relating to a health status of the sending device.
  - 6. The method of claim 5, wherein the health status relates to a virus protection software status on the sending device.
  - 7. The method of claim 5, further comprising at least one of:
    - removing malware from the sending device;
      
      orremoving malware from a network element associated with the sending device.
  - 8. The method of claim 1, wherein the authentication information comprises a credential issued by the identity gateway.
  - 9. The method of claim 8, wherein the credential issued by the identity gateway is a network asserted identity.

10. A method for preventing delivery of an unsolicited communication, the method comprising:
- receiving, at a receiving domain, authentication information associated with a sending device at a sending domain wherein the authentication information is received from at least one of;
  
  the sending device or a sending network at the sending domain, wherein the authentication information indicates that an identity gateway at the sending domain has performed an authentication of the sending device, and wherein the identity gateway provides authentication information, relating to one or more sending devices in the sending domain, to domains other than the sending domain;
  
  receiving, at the receiving domain, information associated with a trustworthiness of the identity gateway, the information associated with the trustworthiness of the identity gateway comprising a network asserted identity that is incapable of being manipulated by the identity gateway; and
  
  determining from the authentication information and the information associated with the trustworthiness of the identity gateway, if a communication from the sending device associated with the authentication information is unsolicited, wherein the authentication information and the information associated with the trustworthiness of the identity gateway are part of a Session Initiation Protocol Invite, and wherein a personal routing profile from a Home Subscriber Server (HSS) is used along with the Session Initiation Protocol Invite to determine whether to drop the proposed communication, wherein the authentication information comprises a sender identity associated with the sending device.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The method of claim 10, wherein the sender identity comprises a network asserted identity.
  - 12. The method of claim 10, wherein the sender identity is incapable of being manipulated by a sender of the communication.
  - 13. The method of claim 10, wherein the sender identity is bound to the sending device and is incapable of use with another device.
  - 14. The method of claim 10, further comprising collecting sender identity information and creating a score relating to the sender identity information, wherein the score is capable of being used to assess trustworthiness of the sending device.
  - 15. The method of claim 10, further comprising receiving a score and storing the score in a trusted environment on the sending device, wherein the score is capable of re-use by the sending device and incapable of use by other devices.
  - 16. The method of claim 10, wherein the authentication information comprises state information relating to a health status of the sending device.
  - 17. The method of claim 10, wherein the authentication information comprises a credential issued by the identity gateway.
  - 18. The method of claim 17, wherein the credential issued by the identity gateway is a network asserted identity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
InterDigital Patent Holdings, Inc. (InterDigital, Inc.)
Original Assignee
InterDigital Patent Holdings, Inc. (InterDigital, Inc.)
Inventors
Guccione, Louis J., Cha, Inhyok, Schmidt, Andreas, Leicher, Andreas, Greiner, David G., Howry, Dolores F.
Primary Examiner(s)
Desrosiers, Evans

Application Number

US12/910,596
Publication Number

US 20110265153A1
Time in Patent Office

2,517 Days
Field of Search

728 5, 726 5, 726 4, 726 1, 726 13, 726 22- 33, 713153-154, 713187-188, 713193-194, 709206, 709249, 709389
US Class Current
CPC Class Codes

G06F 21/33   using certificates

G06F 21/36   by graphic or iconic repres...

H04L 51/212   using filtering or selectiv...

H04L 63/0227   Filtering policies mail mes...

H04L 63/08   for authentication of entit...

H04L 63/0869   for achieving mutual authen...

H04L 63/101   Access control lists [ACL]

H04L 63/145   the attack involving the pr...

H04L 65/1016   IP multimedia subsystem [IMS]

H04W 12/069   using certificates or pre-s...

Protection against unsolicited communication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

15 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Protection against unsolicited communication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links