[go: up one dir, main page]

WO2003036919A2 - Identification d'un utilisateur sans fil sur la base du reacheminement - Google Patents

Identification d'un utilisateur sans fil sur la base du reacheminement Download PDF

Info

Publication number
WO2003036919A2
WO2003036919A2 PCT/IB2001/002912 IB0102912W WO03036919A2 WO 2003036919 A2 WO2003036919 A2 WO 2003036919A2 IB 0102912 W IB0102912 W IB 0102912W WO 03036919 A2 WO03036919 A2 WO 03036919A2
Authority
WO
WIPO (PCT)
Prior art keywords
positioning
address
subscriber
provider
internal
Prior art date
Application number
PCT/IB2001/002912
Other languages
English (en)
Other versions
WO2003036919A3 (fr
Inventor
Mats Cedervall
Original Assignee
Signalsoft Corp.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Signalsoft Corp. filed Critical Signalsoft Corp.
Priority to AU2001298043A priority Critical patent/AU2001298043A1/en
Publication of WO2003036919A2 publication Critical patent/WO2003036919A2/fr
Publication of WO2003036919A3 publication Critical patent/WO2003036919A3/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/52Network services specially adapted for the location of the user terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/02Services making use of location information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/168Implementing security features at a particular protocol layer above the transport layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2242/00Special services or facilities
    • H04M2242/14Special services or facilities with services dependent on location
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/26Network addressing or numbering for mobility support

Definitions

  • the present invention involves a process and a system for integrity positioning of a mobile station on a communication network for mobile stations and in relation to a positioning service provider.
  • a small number of systems for positioning are currently in operation. They are managed and used by telecom providers to offer services to their customers.
  • a provider's customer requests a function, which is based on positioning of a few or several telephones on the provider's network.
  • a subscription telephone is directly linked to a subscriber, and positioning a telephone is thereby a positioning of a physical person.
  • the right to access this position information is critical, since the integrity of subscribers is directly connected to the possibility of controlling who can or may see their position.
  • Telecom providers cannot cmrently produce position information as part of the external service provider's positioning solutions and simultaneously guarantee the integrity of the subscriber, unless the subscriber himself requests the positioning from his telephone and has logged on to the provider's portal with user identity and password.
  • Such solutions entail additional steps in executing a positioning service, reduce the security and risk the personal integrity when SIM (Subscriber Identity Module) cards are exchanged.
  • SIM Subscriber Identity Module
  • the mobile telephone is anonymous on the Internet; i.e., no connection to the identity of the mobile station or subscriber is known to outsiders; such a connection is required for positioning said mobile station.
  • the present invention intends to solve problems associated with mobile positioning with regard to the personal integrity of a user of a mobile station that is connected to a communication network for such a mobile station and also to position the mobile station without its identity being known on the telephone network.
  • a process for positioning a mobile station on a communication network for mobile stations and in relation to a positioning service provider comprises the following steps: the subscriber activates a positioning procedure by sending an http inquiry to the positioning service provider's network computer; said http inquiry contains a special domain name which is associated with a special IP address; said special domain name and special IP address are used specifically for http inquiries whereby the subscriber is to be positioned; ' the subscriber is connected via a dial-up server, address translation function and a WAP gateway, among other possibilities; the routing list on the WAP gateway contains information so that the IP packet that will be sent to a final IP address given by the aforementioned special IP address is first sent to the telecom provider's positioning platform; the aforementioned http inquiry thus arrives at the telecom provider's positioning platform, which in this manner receives an indication that the subscriber who sent said http inquiry is to be positioned; if required, the telecom provider's positioning platform authenticates the positioning service provider corresponding to the target IP address and domain name; if required
  • said IP address translation function is placed between said dial-up function and the telecom provider's WAP gateway.
  • said IP address translation function is placed on one or more of the nodes that comprise the provider's connection to the Internet. In an additional embodiment of the invention, said IP address translation function is placed on the node that implements the dial-up server.
  • said IP address translation function is placed on the WAP gateway, with which the specialist is very familiar.
  • said authentication function is implemented as a stand-alone server.
  • said authentication function is implemented on the dial-up server.
  • said authentication function is implemented as a RADIUS server, a term with which the specialist in the technical field is very familiar.
  • said authentication executed by the positioning platform comprises a procedure in which said http inquiry contains a key. This key is used to receive confirmation from the positioning service provider that the positioning request is valid. Said key is originally generated by the positioning service provider.
  • said authentication executed by the positioning platform comprises a procedure in which the subscriber's external IP address and port are used to receive confirmation from the positioning service provider that the positioning request is valid.
  • said http inquiries take place over encrypted links, so-called HTTPS links.
  • the positioning platform sends the position information as a separate http inquiry to the positioning service provider. In this manner the use of encrypted links is simplified. Brief description of the figure
  • the figure illustrates a system 100 for integrity positioning of mobile stations.
  • the subscriber 101 connects via the telecom provider's telecommunication network 103 to a computer network via a dial-up server 105.
  • the connection to the dial-up server 105 is of the PPP type, and the subscriber 101 is thus assigned an IP address.
  • the dial-up server 105 records the subscriber's number, the so-called CLID (Caller Line ID).
  • CLID Call ID
  • the user is authenticated.
  • assigned IP address and CLID are stored, either on the dial-up server or on a separate server 119.
  • the dial-up server belongs to the subscriber's telecom provider, but this is not a restriction.
  • the subscriber connects further to a WAP gateway 109, which in the example is assumed to belong to the subscriber's telecom provider, but this is not a restriction.
  • the existence of an address translation function 107 somewhere between the dial-up server and the WAP gateway is assumed, but it is not necessary.
  • This address translation function is a logical function that can be realized physically on the dial-up server 105, the WAP gateway 109 or on a separate network node, for example a router.
  • the telecom provider's network 114 is connected to the Internet 116 via the interface 115.
  • the service provider's server 111 is connected to the Internet 116.
  • the subscriber connects to the server 111 by downloading a web page located on the server 111.
  • the subscriber activates a positioning procedure by sending a special http inquiry intended for the server 111.
  • This special http inquiry contains a special domain name, for example "wap.servernamePOSITION.com", which is associated with a special target IP address and which is used exclusively for positioning services.
  • the routing list contains an entry for this special target IP address, which points out that the packet that will be sent to this special target IP address is first sent to the IP address of the positioning platform 117.
  • the above http inquiry thus arrives at the positioning platform 117.
  • the telecom provider's positioning platform extracts the source IP address and source port the subscriber uses; the telecom provider's positioning platform 117 authenticates the positioning service provider 111 corresponding to the target IP address and domain name; the telecom provider's positioning platform authenticates the subscriber and verifies that the subscriber has activated the current positioning service and also that the subscriber has permission to use said service; if the above authentication steps are successful, a positioning procedure internal to the telecom provider is started: the positioning platform 117 contacts the address translation function 107 to obtain the IP address and port the subscriber uses internally on the telecom provider's network; given the internal IP address, the positioning platform contacts either the dial-up server 105 or the authentication server 119 to obtain the subscriber's subscriber number; given the subscriber number, the positioning platform first confirms that the subscriber allows positioning to be executed by the current service provider . Given a positive confirmation, the positioning platform requests the position from the provider's
  • the positioning platform Given the subscriber's position, the positioning platform sends it to the positioning service provider in the form of an http request.
  • This http request contains at least the position and also the IP address and port the subscriber uses.
  • the positioning service provider's server 111 uses the returned position and other information to generate a page, which is returned to the subscriber. If any of the above steps is unsuccessful, the positioning service provider's server 111 generates instead a relevant error message, which is returned to the subscriber; alternatively, another positioning procedure is initiated.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)

Abstract

L'invention concerne un procédé et un système (100) permettant la localisation d'une station mobile (101), sans que l'identité de l'utilisateur soit révélée, sur un réseau de communication pour des stations mobiles (103) et par rapport à un fournisseur (111) de service de localisation. En particulier, le numéro de l'abonné (101) est occulté au fournisseur de service (18) par l'intermédiaire d'une procédure, dans laquelle la demande http de l'abonné est dirigée par l'intermédiaire d'une plate-forme (117) de positionnement et l'adresse IP ainsi que le port de l'abonné sont utilisés dans la détermination de la position qui est exécutée par la plate-forme (117) de localisation.
PCT/IB2001/002912 2000-10-23 2001-10-22 Identification d'un utilisateur sans fil sur la base du reacheminement WO2003036919A2 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2001298043A AU2001298043A1 (en) 2000-10-23 2001-10-22 Identifying a wireless user based on re-routing

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
SE0003911-5 2000-10-23
SE0003911A SE0003911L (sv) 2000-10-23 2000-10-23 Förfarande och system för integritetpositionering av en mobilstation

Publications (2)

Publication Number Publication Date
WO2003036919A2 true WO2003036919A2 (fr) 2003-05-01
WO2003036919A3 WO2003036919A3 (fr) 2003-10-23

Family

ID=20281591

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2001/002912 WO2003036919A2 (fr) 2000-10-23 2001-10-22 Identification d'un utilisateur sans fil sur la base du reacheminement

Country Status (3)

Country Link
AU (1) AU2001298043A1 (fr)
SE (1) SE0003911L (fr)
WO (1) WO2003036919A2 (fr)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008016746A3 (fr) * 2006-08-02 2008-05-29 Motorola Inc Vérification d'identité utilisant des informations d'emplacement au cours du temps
US9946883B2 (en) 2013-05-22 2018-04-17 Qualcomm Incorporated Methods and apparatuses for protecting positioning related information
US10830895B2 (en) 2017-10-18 2020-11-10 Qualcomm Incorporated Secure global navigation satellite systems

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FI103546B (fi) * 1996-09-16 1999-07-15 Nokia Telecommunications Oy Datapalvelu matkaviestinverkossa
US6456852B2 (en) * 1997-01-08 2002-09-24 Trafficmaster Usa, Inc. Internet distributed real-time wireless location database
US6263280B1 (en) * 1998-11-24 2001-07-17 Ralph J. Stingone, Jr. Global locating and tracking method and system
US6516197B2 (en) * 1999-03-18 2003-02-04 Ericsson Inc. System and method for reporting the number and/or duration of positioning requests for terminal-based location calculation
US6771971B2 (en) * 2000-10-10 2004-08-03 Sws Development, L.L.C. Subscriber information service center (SISC)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008016746A3 (fr) * 2006-08-02 2008-05-29 Motorola Inc Vérification d'identité utilisant des informations d'emplacement au cours du temps
US8364120B2 (en) 2006-08-02 2013-01-29 Motorola Mobility Llc Identity verification using location over time information
US9946883B2 (en) 2013-05-22 2018-04-17 Qualcomm Incorporated Methods and apparatuses for protecting positioning related information
US10830895B2 (en) 2017-10-18 2020-11-10 Qualcomm Incorporated Secure global navigation satellite systems
US11231503B2 (en) 2017-10-18 2022-01-25 Qualcomm Incorporated Secure global navigation satellite systems
US12235364B2 (en) 2017-10-18 2025-02-25 Qualcomm Incorporated Secure global navigation satellite systems

Also Published As

Publication number Publication date
SE0003911D0 (sv) 2000-10-23
AU2001298043A1 (en) 2003-05-06
SE0003911L (sv) 2002-04-24
WO2003036919A3 (fr) 2003-10-23

Similar Documents

Publication Publication Date Title
US6614774B1 (en) Method and system for providing wireless mobile server and peer-to-peer services with dynamic DNS update
EP1994674B1 (fr) Authentification d'équipement de fournisseur de réseau mobile
CA2530891C (fr) Appareil et procede d'authentification d'entree unique dans un reseau a acces non valide
US8261078B2 (en) Access to services in a telecommunications network
US20090129371A1 (en) Method and system to enable mobile roaming over ip networks and local number portability
EP2235918B1 (fr) Amélioration de sécurité du protocole enum
EP1735985A1 (fr) Procede, element reseau et systeme pour fournir de la securite a une session utilisateur
CA2273472A1 (fr) Methodes et systemes de transfert d'appels
EP1629653B1 (fr) Reacheminement de trafic securise dans un systeme de communication mobile
JP4897864B2 (ja) 移動体ネットワークにおけるサービスのcliなりすましに対する保護
JP4280235B2 (ja) 移動体無線端末の識別方法
EP2223496A1 (fr) Procédé et aménagement pour une itinérance en réseau d'identités à extension d'entreprise
US20060172744A1 (en) Method and system for subscriber integrity in a mobile communications system
US20020042820A1 (en) Method of establishing access from a terminal to a server
WO2003036919A2 (fr) Identification d'un utilisateur sans fil sur la base du reacheminement
WO2002049380A1 (fr) Localisation de mobiles faisant appel a un identificateur (id) code dans des messages de reseaux de donnees et a des frequences repliees associees a des applications de services basees sur la localisation
SE512440C2 (sv) Metod för säker telefoni med mobilitet i ett tele- och datakommunikationssystem som innefattar ett IP-nät
WO2002067074A2 (fr) Identification d'utilisateurs de donnees hertziennes pour des applications basees sur le positionnement
JP2025143008A (ja) データ流通システム、コネクタ装置および利用者認証方法

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PH PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP