Method of mutual authentication for secure wireless service provision

US 5,875,394 A
Filed: 12/27/1996
Issued: 02/23/1999
Est. Priority Date: 12/27/1996
Status: Expired due to Term

First Claim

Patent Images

1. A method for securing mobile station provisioning comprising the steps of:

prior to a mobile station activation operation, providing to a subscriber of said mobile station a subscriber password and a network password;

subsequent to the providing of the subscriber password and the network password, receiving a request for mobile station provisioning;

upon receipt of said requestrequesting transmission of a subscriber password and verifying a received subscriber password; and

wherein mobile station provisioning proceeds if the subscriber password is verified.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A mutual authentication process assures that a subscriber does not provide sensitive activation information to an imposter network and a network does not provide sensitive activation information to an imposter subscriber. The mutual authentication is facilitated by a pair of passwords that are communicated between the activation center of the network and the subscriber via a secure channel.

175 Citations

16 Claims

1. A method for securing mobile station provisioning comprising the steps of:
- prior to a mobile station activation operation, providing to a subscriber of said mobile station a subscriber password and a network password;
  
  subsequent to the providing of the subscriber password and the network password, receiving a request for mobile station provisioning;
  
  upon receipt of said requestrequesting transmission of a subscriber password and verifying a received subscriber password; and
  
  wherein mobile station provisioning proceeds if the subscriber password is verified.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1 comprising the further steps of:
    - transmitting a network password to a subscriber; and
      
      receiving notice of verification of said network password,wherein mobile station provisioning proceeds only if notice of verification of the network password is received.
  - 3. The method of claim 1 wherein said step of providing a subscriber password and network password comprises the steps of:
    - generating a subscriber password and a network password;
      
      correlating the generated subscriber password and network password with a mobile station identifier;
      
      securely transmitting the subscriber password and network password to the subscriber associated with said mobile station.
  - 4. The method of claim 3 wherein said step of transmitting comprises communicating the subscriber password and network password to the subscriber via a land-line telephone.
  - 5. The method of claim 3 wherein said step of transmitting comprises the steps of:
    - receiving a call via a land-line telephone from the subscriber;
      
      verifying the subscriber; and
      
      communicating said subscriber password and said network password to said subscriber during said call after verifying the subscriber.

6. In a system for over-the-air activation of a mobile station, a method for mutual authentication of a subscriber and a network comprising the steps of:
- provisioning a network password and a subscriber password to a subscriber associated with the mobile station;
  
  at the time of activation sending said network password to the mobile station;
  
  receiving a subscriber password from the mobile station;
  
  verifying the received subscriber password by comparing the received subscriber password to the subscriber password provisioned to the mobile station'"'"'s subscriber; and
  
  authorizing activation if said received subscriber password matches the provisioned subscriber password.
- View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14)
- - 7. The method of claim 6 comprising the further steps of receiving notification of verification of said network password.
  - 8. The method of claim 6 wherein said step of provisioning includes the steps of:
    - receiving a secure call from the subscriber; and
      
      correlating in a database subscriber information, mobile station information, the network password and the subscriber password.
  - 9. The method of claim 8 wherein said secure call is via a land-line.
  - 10. The method of claim 8 wherein one of said network password and said subscriber password is selected by the subscriber.
  - 11. The method of claim 8 wherein the network selects said network password and said subscriber password and communicates said passwords to the subscriber during said secure call.
  - 12. The method of claim 11 wherein said secure call is via a land-line.
  - 13. The method of claim 6 wherein said step of provisioning comprises:
    - providing to said subscriber with the mobile station the network password and subscriber password; and
      
      correlating in a database subscriber information, mobile station information, the subscriber password and the network password.
  - 14. The method of claim 13 wherein said mobile station information includes an ESN associated with said mobile station.

15. A method for mutual authentication for mobile station provisioning comprising the steps of:
- during a password generation session at a network node,establishing a secure communication with a subscriber;
  
  generating a subscriber password and a network password; and
  
  transmitting said subscriber password and said network password to said subscriber; and
  
  during a provisioning session at a network node,receiving a first password from the mobile station;
  
  transmitting a second password to said mobile station; and
  
  provisioning said mobile station with activation data if said first password matches said subscriber password and said second password matches said network password.
- View Dependent Claims (16)
- - 16. The method of claim 15 wherein said step of establishing a secure communication comprises receiving a call via a land-line telephone;
    - and verifying said subscriber.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
AT&T Mobility II LLC (AT&T, Inc.)
Original Assignee
AT&T Wireless Services Incorporated (AT&T, Inc.)
Inventors
Daly, Brian Kevin, Owens, Leslie Dale
Primary Examiner(s)
Bost, Dwayne D.
Assistant Examiner(s)
LEGREE, TRACY MICHELLE

Application Number

US08/777,341
Time in Patent Office

788 Days
Field of Search

455/411, 455/410, 455/419, 455/418, 455/551, 455/435, 455/432, 455/552, 340/825.34, 340/825.54, 380/23, 380/21, 380/25, 380/14, 380/49
US Class Current

455/411
CPC Class Codes

H04L 63/083   using passwords cryptograph...

H04L 63/0869   for achieving mutual authen...

H04M 3/382   using authorisation codes o...

H04W 12/062   Pre-authentication

H04W 12/068   using credential vaults, e....

H04W 8/265   for initial activation of n...

Method of mutual authentication for secure wireless service provision

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

175 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Method of mutual authentication for secure wireless service provision

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

175 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links