Method and architecture for managing a fleet of mobile stations over wireless data networks
DC CAFCFirst Claim
1. An architecture for securely managing a plurality of mobile stations, said architecture comprising:
- a carrier infrastructure providing a radio link to the plurality of the mobile stations over a wireless data network using a first communication protocol;
a fleet managing system coupled to said carrier infrastructure, said fleet managing system comprising a proxy server, said proxy server further comprising an account manager managing a plurality of user accounts, each corresponding to one of the mobile stations; and
a proxy server module;
a memory receiving fleet data;
a provisioning interface providing secure access to said memory;
wherein said fleet managing a system further comprises a fleet server including said memory and said provisioning interface, said fleet server is grouped to said proxy server over a landnet using a second communication protocol;
wherein said provisioning interface receives a request to push said fleet data in said memory to the plurality of the mobile stations, and wherein said proxy server module pushes said fleet data, via said carrier infrastructure, to the plurality of the mobile stations over said wireless data network after said request is authenticated by said provisioning interface and verified by said account manager.
5 Assignments
Litigations
0 Petitions
Accused Products
Abstract
The present invention discloses a fleet managing system in which fleet data can be securely managed and disseminated to a selective group of mobile stations serviced by a carrier infrastructure. The fleet managing system relies on a series of consecutive transitive trusts between pairs of components in the system so that all communications from a provisioning entity to the mobile stations are secure. The access to the fleet managing system is guarded with a challenge response every time there is a request arriving at the system while the mobile stations are verified by an account manager in the system to ensure that the fleet data is eventually pushed to the correct group of mobile stations. Apart distinctly from existing fleet managing systems for mobile stations, the present invention provides secure means for an authorized entity, from anywhere at any time, to control the dissemination of mobile data to a specified group of mobile stations without incurring additional costs to or direct involvement of a service carrier.
163 Citations
26 Claims
-
1. An architecture for securely managing a plurality of mobile stations, said architecture comprising:
-
a carrier infrastructure providing a radio link to the plurality of the mobile stations over a wireless data network using a first communication protocol;
a fleet managing system coupled to said carrier infrastructure, said fleet managing system comprising a proxy server, said proxy server further comprising an account manager managing a plurality of user accounts, each corresponding to one of the mobile stations; and
a proxy server module;
a memory receiving fleet data;
a provisioning interface providing secure access to said memory;
wherein said fleet managing a system further comprises a fleet server including said memory and said provisioning interface, said fleet server is grouped to said proxy server over a landnet using a second communication protocol;
wherein said provisioning interface receives a request to push said fleet data in said memory to the plurality of the mobile stations, and wherein said proxy server module pushes said fleet data, via said carrier infrastructure, to the plurality of the mobile stations over said wireless data network after said request is authenticated by said provisioning interface and verified by said account manager. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for securely managing a plurality of mobile stations serviced by a carrier infrastructure, said method comprising:
-
sending a request from a provisioning entity to push fleet data to the plurality of the mobile stations;
receiving a challenge response from a fleet managing system in response to said request;
accessing said fleet managing system by supplying correct credential information to said challenge response;
wherein said fleet managing system comprises;
an account manager managing a plurality of user accounts, each corresponding to one of the mobile stations;
a proxy server module;
a memory; and
a provisioning interface providing secure access to said memory;
preparing said fleet data to be received in said memory;
determining the plurality of the mobile stations verified by said account manager with said plurality of said user accounts; and
executing said request to cause said fleet data pushed by said proxy server module to the plurality of the mobile stations. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
supplying said correct credential information upon receiving said challenge response;
verifying said correct credential information with predefined credential information in said provision interface; and
integrating said provisioning entity to said fleet managing system so that a user can access said fleet managing system through said provisioning entity.
-
-
24. The method as recited in claim 23, wherein said preparing said fleet data to be received in said memory comprises navigating to said fleet data using said browser.
-
25. The method as recited in claim 24, wherein said determining the plurality of the mobile stations verified by said account manager with said plurality of said user accounts comprising:
-
grouping the plurality of the mobile stations serviced by said proxy server by using an identification of each of the plurality of the mobile stations; and
associating said fleet data with each of the plurality of the mobile stations.
-
-
26. The method as recited in claim 25, wherein said executing said request to cause said fleet data pushed by said proxy server module to the plurality of the mobile stations comprises:
pushing said fleet data by said proxy server, respectively and individually, to each of the plurality of the mobile stations over a wireless data network using a wireless communication protocol.
Specification