公开(公告)号：US07447765B2

公开(公告)日：2008-11-04

申请号：US10437667

申请日：2003-05-14

申请人： Naveen Aerrabotu ,  Lawrence A. Willis ,  Mark E. Pecen ,  Yilin Zhao

发明人： Naveen Aerrabotu ,  Lawrence A. Willis ,  Mark E. Pecen ,  Yilin Zhao

IPC分类号： G06F15/16 ,  H04Q7/20

CPC分类号： H04L63/0227 ,  H04L29/12009 ,  H04L29/12207 ,  H04L29/12783 ,  H04L61/20 ,  H04L61/35 ,  H04L63/0421 ,  H04L63/0853 ,  H04W4/90 ,  H04W8/26 ,  H04W76/50 ,  H04W80/00

摘要： A method and apparatus method of filtering packet data for an anonymous user device in a packet data network communication system includes a first step of defining a special context information element containing special context information. A next step includes sending the special context information element in an activate packet data protocol (PDP) context request to a network to initiate a call from an anonymous user device. A next step includes receiving the activate PDP context request and the special context information element. A next step includes configuring the data packets so that only the special context is allowed. A next step includes assigning an interim identity and interim IP address to the user device. A next step includes mapping the data packets of the configuring step to the interim IP address of the user device. A next step includes defining permissible routing identities per the special context. A next step includes routing the data packets between only those permissible routing identities from the defining step.

摘要翻译： 一种在分组数据网络通信系统中过滤用于匿名用户设备的分组数据的方法和装置方法包括：定义包含特殊上下文信息的特殊上下文信息元素的第一步骤。 下一步骤包括将激活分组数据协议（PDP）上下文请求中的特殊上下文信息元素发送到网络以发起来自匿名用户设备的呼叫。 下一步包括接收激活PDP上下文请求和特殊上下文信息元素。 下一步包括配置数据包，以便只允许特殊上下文。 下一步包括向用户设备分配临时身份和临时IP地址。 下一步包括将配置步骤的数据包映射到用户设备的临时IP地址。 下一步包括根据特殊上下文定义可允许的路由标识。 下一步骤包括在定义步骤之间仅在那些允许的路由标识之间路由数据分组。

公开(公告)号：US07539186B2

公开(公告)日：2009-05-26

申请号：US10403946

申请日：2003-03-31

申请人： Naveen Aerrabotu ,  Mark E. Pecen ,  Yilin Zhao

发明人： Naveen Aerrabotu ,  Mark E. Pecen ,  Yilin Zhao

IPC分类号： H04L12/56

CPC分类号： H04L63/0227 ,  H04L29/12009 ,  H04L29/12207 ,  H04L29/12783 ,  H04L61/20 ,  H04L61/35 ,  H04L63/0421 ,  H04L63/0853 ,  H04W4/90 ,  H04W8/26 ,  H04W76/50 ,  H04W80/00

摘要： A method and apparatus method of filtering packet data for an anonymous user device in a packet data network communication system includes a first step of initiating a call from an anonymous user device on a home network. A next step includes assigning an interim identity and interim IP address to the user device. A next step includes determining a level of service access of the data packets from the user device. A next step includes mapping the level of service access of the user device to the IP address. A next step includes defining permissible routing identities per the level of service access. A next step includes routing the data packets of the call along with the associated IP address to only those location addresses from the defining step.

摘要翻译： 分组数据网络通信系统中的用于匿名用户装置的分组数据的方法和装置方法包括：第一步骤，从归属网络上的匿名用户装置发起呼叫。 下一步包括向用户设备分配临时身份和临时IP地址。 下一步包括确定来自用户设备的数据分组的业务接入级别。 下一步包括将用户设备的服务级别映射到IP地址。 下一步包括根据服务访问级别定义可允许的路由标识。 下一步包括将呼叫的数据分组连同相关的IP地址一起路由到定义步骤中的那些位置地址。

公开(公告)号：US07787855B2

公开(公告)日：2010-08-31

申请号：US10403305

申请日：2003-03-31

申请人： Yilin Zhao ,  Naveen Aerrabotu ,  Mark E. Pecen ,  Varalakshmi Likki

发明人： Yilin Zhao ,  Naveen Aerrabotu ,  Mark E. Pecen ,  Varalakshmi Likki

IPC分类号： G06F15/16

CPC分类号： H04W4/90 ,  H04W76/50

摘要： A method in a wireless communications network including receiving (310) a network connection request from a subscriber device having an invalid subscriber identity, connecting (340) the subscriber device, from which the network connection request was received, to the wireless communications network for limited purposes only upon determining (320) that the subscriber device has in invalid subscriber identity in the absence of a limited network connection indicator in the network connection request. In some embodiments, a limited attach message indicates that the attach request is for limited purposes.

摘要翻译： 一种无线通信网络中的方法，包括从具有无效用户身份的用户设备接收（310）网络连接请求，将接收到所述网络连接请求的所述用户设备连接（340）到所述无线通信网络，以限制 目的仅在确定（320）用户设备在网络连接请求中没有有限网络连接指示符时具有无效用户身份的情况下。 在一些实施例中，有限的附加消息指示附加请求是为了有限的目的。

公开(公告)号：US09615257B2

公开(公告)日：2017-04-04

申请号：US14131067

申请日：2011-07-11

申请人： Mihal Lazaridis ,  Mark E. Pecen ,  Scott Alexander Vanstone ,  Matthew John Campagna ,  Anthony Rosati

发明人： Mihal Lazaridis ,  Mark E. Pecen ,  Scott Alexander Vanstone ,  Matthew John Campagna ,  Anthony Rosati

IPC分类号： H04L21/00 ,  H04W12/10 ,  H04L29/06 ,  H04W12/06 ,  H04W92/18

CPC分类号： H04W12/10 ,  H04L63/0492 ,  H04L63/0823 ,  H04L63/126 ,  H04W4/80 ,  H04W12/06 ,  H04W92/18

摘要： Methods, systems, and computer programs for trusted communication among mobile devices are described. In some aspects, an authentication value is generated at a first mobile device based on a message and a shared secret value stored on the first mobile device. In response to detecting proximity of a second mobile device, the message and the authentication value are wirelessly transmitted from the first mobile device to the second mobile device. In some implementations, the message and the authentication value can be wirelessly transmitted by a proximity-activated wireless interface, such as, for example, a Near Field Communication (NFC) interface.

公开(公告)号：US09118667B2

公开(公告)日：2015-08-25

申请号：US13487055

申请日：2012-06-01

申请人： Anthony Rosati ,  Scott Alexander Vanstone ,  Mark E. Pecen

发明人： Anthony Rosati ,  Scott Alexander Vanstone ,  Mark E. Pecen

IPC分类号： H04L29/06 ,  H04L9/32 ,  H04W12/06

CPC分类号： H04L63/0853 ,  H04L9/3271 ,  H04L63/0272 ,  H04L63/083 ,  H04W12/06

摘要： A system and method are provided for using a mobile device to authenticate access to a private network. The mobile device may operate to receive a challenge from an authentication server, the challenge having being generated according to a request to access a private network; obtain a private value; use the private value, the challenge, and a private key to generate a response to the challenge; and send the response to the authentication server. An authentication server may operate to generate a challenge; send the challenge to a mobile device; receive a response from the mobile device, the response having been generated by the mobile device using a private value, the challenge, and a private key; verify the response; and confirm verification of the response with a VPN gateway to permit a computing device to access a private network.

摘要翻译： 提供了一种用于使用移动设备认证对专用网络的访问的系统和方法。 移动设备可以操作以从认证服务器接收挑战，所述挑战是根据访问专用网络的请求而生成的; 获得私人价值; 使用私有价值，挑战和私钥来产生对挑战的回应; 并将响应发送给认证服务器。 验证服务器可以操作以产生挑战; 将挑战发送到移动设备; 从所述移动设备接收响应，所述响应已由所述移动设备使用私有值，所述挑战和私钥生成; 验证回应; 并使用VPN网关确认响应的验证，以允许计算设备访问专用网络。

公开(公告)号：US20140141750A1

公开(公告)日：2014-05-22

申请号：US14131129

申请日：2011-07-11

申请人： Mihal Lazaridis ,  Mark E. Pecen ,  Scott Alexander Vanstone ,  Matthew John Campagna ,  Anthony Rosati

发明人： Mihal Lazaridis ,  Mark E. Pecen ,  Scott Alexander Vanstone ,  Matthew John Campagna ,  Anthony Rosati

IPC分类号： H04W12/10 ,  H04W4/00

CPC分类号： H04W12/10 ,  H04L63/0492 ,  H04L63/0823 ,  H04L63/126 ,  H04W4/80 ,  H04W12/06 ,  H04W92/18

摘要： Methods, systems, and computer programs for trusted communication among mobile devices are described. In some aspects, information is wirelessly transmitted from a first mobile device to a second mobile device. The information permits the second mobile device to detect proximity of the first mobile device. In some implementations, the information can be wirelessly transmitted by a proximity-activated wireless interface, such as, for example, a Near Field Communication (NFC) interface. In response to the information, the first mobile device receives a message and a first authentication value wirelessly transmitted from the second mobile device to the first mobile device. A second authentication value is generated at the first mobile device based on the message and the shared secret value. Integrity of the message is verified based on comparing the first authentication value and the second authentication value.

摘要翻译： 描述了用于移动设备之间的可信通信的方法，系统和计算机程序。 在一些方面，信息从第一移动设备无线传输到第二移动设备。 该信息允许第二移动设备检测第一移动设备的接近度。 在一些实现中，信息可以通过接近激活的无线接口（例如近场通信（NFC））接口进行无线传输。 响应于该信息，第一移动设备接收从第二移动设备无线发送到第一移动设备的消息和第一认证值。 基于消息和共享秘密值在第一移动设备处生成第二认证值。 通过比较第一认证值和第二认证值来验证消息的完整性。

公开(公告)号：US20090067368A1

公开(公告)日：2009-03-12

申请号：US11844676

申请日：2007-08-24

申请人： Michael Patrick McAndrews ,  Mihal Lazaridis ,  Mark E. Pecen ,  Hugh Hind

发明人： Michael Patrick McAndrews ,  Mihal Lazaridis ,  Mark E. Pecen ,  Hugh Hind

IPC分类号： H04W4/00

CPC分类号： H04W48/18

摘要： A method and apparatus for communicating data between a mobile communication device and a communications node via an appropriate radio access technology. In one embodiment, the method comprises identifying at least one characteristic associated with data pending for communication, identifying a set of radio access technologies available for communication and at least one characteristic of each, evaluating the characteristics of the pending data relative to the characteristics of the available radio access technologies, selecting from the set of available radio access technologies a radio access technology relative to the pending data and effectuating communication of at least a portion of the pending data via a communication link employing the selected radio access technology.

摘要翻译： 一种用于经由适当的无线电接入技术在移动通信设备和通信节点之间传送数据的方法和装置。 在一个实施例中，该方法包括识别与待处理的用于通信的数据相关联的至少一个特征，识别可用于通信的一组无线电接入技术和每个的至少一个特性，相对于 可用无线电接入技术，从一组可用的无线电接入技术中选择相对于未决数据的无线电接入技术，并且通过采用所选择的无线电接入技术的通信链路实现未决数据的至少一部分的通信。

公开(公告)号：US07269146B2

公开(公告)日：2007-09-11

申请号：US10689303

申请日：2003-10-20

申请人： Mark E. Pecen ,  Niels Peter Skov Andersen ,  Stephen A. Howell ,  Bonnie Chen

发明人： Mark E. Pecen ,  Niels Peter Skov Andersen ,  Stephen A. Howell ,  Bonnie Chen

IPC分类号： H04H1/00

CPC分类号： H04W4/06 ,  H04J3/26 ,  H04W72/005

摘要： A wireless communication system (100) is configured to send signaling messages through a cell broadcast service (CBS). CBS message pages used to transport signaling messages are identified by assigned message identifiers. Mobile devices (114) within the communication system (100) recognize the CBS messages transporting signaling messages by the message identifiers and pass the signaling messages to an appropriate application or control program module. The message identifier may be used to specify the application or control program module to process the signaling message. The signaling messages transported by the CBS may be used in controlling a multicasting or broadcasting service. Duplicate copies of the CBS message pages may be transmitted and then buffered at the mobile device (114) as they are received until all parts of the signaling message have been received.

摘要翻译： 无线通信系统（100）被配置为通过小区广播服务（CBS）发送信令消息。 用于传送信令消息的CBS消息页由分配的消息标识符标识。 通信系统（100）内的移动设备（114）识别通过消息标识符传送信令消息的CBS消息，并将信令消息传递给适当的应用或控制程序模块。 消息标识符可以用于指定应用程序或控制程序模块来处理信令消息。 由CBS传送的信令消息可以用于控制多播或广播服务。 CBS消息页面的重复副本可以被发送，然后在它们被接收时在移动设备（114）处缓冲，直到已经接收到信令消息的所有部分。

公开(公告)号：US07082311B2

公开(公告)日：2006-07-25

申请号：US10348055

申请日：2003-01-21

申请人： Eric Hefner ,  Christopher Bussan ,  William DeClerck ,  Mark E. Pecen

发明人： Eric Hefner ,  Christopher Bussan ,  William DeClerck ,  Mark E. Pecen

IPC分类号： H04Q7/20

CPC分类号： H04W64/00 ,  G01S19/25 ,  G01S19/48 ,  H04W8/245 ,  H04W48/10

摘要： A method for determining location technology supported by a wireless communications network including sending (505) a location request, for example a MO-LR request, from a mobile wireless subscriber device to the network, receiving a network response (515) in reply to the location request, determining the subscriber device location technology supported by the network from the network response (535, 550), and in some embodiments the location technology of the subscriber device is controlled based on the technology supported by the network.

摘要翻译： 一种用于确定由无线通信网络支持的定位技术的方法，包括从移动无线用户设备向网络发送（505）位置请求（例如MO-LR请求），接收响应于所述网络响应的网络响应（515） 位置请求，从网络响应（535,550）确定网络支持的订户设备位置技术，并且在一些实施例中，基于由网络支持的技术来控制订户设备的定位技术。

公开(公告)号：US20130046976A1

公开(公告)日：2013-02-21

申请号：US13487055

申请日：2012-06-01

申请人： Anthony Rosati ,  Scott Alexander Vanstone ,  Mark E. Pecen

发明人： Anthony Rosati ,  Scott Alexander Vanstone ,  Mark E. Pecen

IPC分类号： H04L9/30

CPC分类号： H04L63/0853 ,  H04L9/3271 ,  H04L63/0272 ,  H04L63/083 ,  H04W12/06

摘要： A system and method are provided for using a mobile device to authenticate access to a private network. The mobile device may operate to receive a challenge from an authentication server, the challenge having being generated according to a request to access a private network; obtain a private value; use the private value, the challenge, and a private key to generate a response to the challenge; and send the response to the authentication server. An authentication server may operate to generate a challenge; send the challenge to a mobile device; receive a response from the mobile device, the response having been generated by the mobile device using a private value, the challenge, and a private key; verify the response; and confirm verification of the response with a VPN gateway to permit a computing device to access a private network.

摘要翻译： 提供了一种用于使用移动设备认证对专用网络的访问的系统和方法。 移动设备可以操作以从认证服务器接收挑战，所述挑战是根据访问专用网络的请求而生成的; 获得私人价值; 使用私有价值，挑战和私钥来产生对挑战的回应; 并将响应发送给认证服务器。 验证服务器可以操作以产生挑战; 将挑战发送到移动设备; 从所述移动设备接收响应，所述响应已由所述移动设备使用私有值，所述挑战和私钥生成; 验证回应; 并使用VPN网关确认响应的验证，以允许计算设备访问专用网络。