FEMTOCELL ACCESS CONTROL
First Claim
Patent Images
1. A method, comprising:
- in a wireless communication network comprising a femto access point (FAP) configured for wireless communication with at least one authorized mobile station (MS) accessing the network via the FAP, transmitting FAP authentication data from the FAP to obtain MS access authorization data stored by a remote storage point in communication with the FAP;
receiving the authorization data for the FAP from the storage point at an enforcement point (EP), in response to the FAP authentication data, wherein the EP excludes the FAP; and
controlling wireless network access by the MS via the FAP at the EP, in response to the authorization data.
2 Assignments
0 Petitions
Accused Products
Abstract
Access by a mobile station to a femto access point (FAP) of a wireless communication system is controlled by an enforcement point in response to mobile station authorization data provided from a storage point that is remote from the FAP. The authorization data is provided in response to FAP authentication data. The authentication data may include a FAP identifier and a message authenticator that the FAP generates by hashing shared secret information. The storage point may provide the authorization data in response to determining that the message authenticator is a hash of the shared secret information.
33 Citations
50 Claims
-
1. A method, comprising:
-
in a wireless communication network comprising a femto access point (FAP) configured for wireless communication with at least one authorized mobile station (MS) accessing the network via the FAP, transmitting FAP authentication data from the FAP to obtain MS access authorization data stored by a remote storage point in communication with the FAP; receiving the authorization data for the FAP from the storage point at an enforcement point (EP), in response to the FAP authentication data, wherein the EP excludes the FAP; and controlling wireless network access by the MS via the FAP at the EP, in response to the authorization data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A communications apparatus, comprising:
-
a memory that retains instructions;
for transmitting authentication data from a femto access point (FAP) to obtain MS access authorization data stored by a remote storage point in communication with the FAP;
for receiving the authorization data for the FAP from the storage point at an enforcement point (EP), in response to the FAP authentication data, wherein the EP excludes the FAP; and
for controlling wireless network access by the MS via the FAP at the EP, in response to the authorization data; anda processor that executes the instructions. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A communications apparatus, comprising:
-
means for transmitting authentication data from a femto access point (FAP) to obtain MS access authorization data stored by a remote storage point in communication with the FAP; means for receiving the authorization data for the FAP from the storage point at an enforcement point (EP), in response to the FAP authentication data, wherein the EP excludes the FAP; and means for controlling wireless network access by the MS via the FAP at the EP, in response to the authorization data. - View Dependent Claims (18, 19, 20, 21)
-
-
22. A computer program product for femtocell access control, comprising:
at least one computer readable storage medium storing computer executable instructions that, when executed by at least one processor, implement components comprising; a first set of codes for transmitting authentication data from a femto access point (FAP) to obtain MS access authorization data stored by a remote storage point in communication with the FAP; a second set of codes for receiving the authorization data for the FAP from the storage point at an enforcement point (EP), in response to the FAP authentication data, wherein the EP excludes the FAP; and a third set of codes for controlling wireless network access by the MS via the FAP at the EP, in response to the authorization data. - View Dependent Claims (23, 24, 25, 26)
-
27. A method, comprising:
-
computing a request authenticator at a femto access point (FAP) in a wireless communication network, using first shared information obtained during a prior authentication session with an entity in the wireless communication network; and transmitting a request message from the FAP to a remote Authorization, Authentication and Accounting server (AAA), the request message comprising a FAP identifier and the request authenticator, thereby enabling the AAA to determine whether the FAP identifier is valid for the FAP. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
-
-
39. A communications apparatus, comprising:
-
a memory that retains instructions for computing a request authenticator at a femto access point (FAP) in a wireless communication network, using first secret information shared with a remote femto Authorization, Authentication and Accounting server (AAA), and for transmitting a request message from the FAP to the AAA, the request message comprising a FAP identifier and the request authenticator, thereby enabling the AAA to determine whether the FAP identifier is valid for the FAP; and a processor that executes the instructions. - View Dependent Claims (40, 41, 42)
-
-
43. A communications apparatus, comprising:
-
means for computing a request authenticator at a femto access point (FAP) in a wireless communication network, using first secret information shared with a remote Authorization, Authentication and Accounting server (AAA); and means for transmitting a request message to the AAA, the request message comprising a FAP identifier and the request authenticator, thereby enabling the AAA to determine whether the FAP identifier is valid for the FAP. - View Dependent Claims (44, 45, 46)
-
-
47. A computer program product for femtocell access control, comprising:
at least one computer readable storage medium storing computer executable instructions that, when executed by at least one processor, implement components comprising; a first set of codes for computing a request authenticator at a femto access point (FAP) in a wireless communication network, using first secret information shared with a remote Authorization, Authentication and Accounting server (AAA); and a second set of codes for transmitting a request message from the FAP to the AAA, the request message comprising a FAP identifier and the request authenticator, thereby enabling the AAA to determine whether the FAP identifier is valid for the FAP. - View Dependent Claims (48, 49, 50)
Specification