WO2002049380A1 - Mobile positioning using encrypted id in data network messages and using aliases in connection with location based service applications - Google Patents

Mobile positioning using encrypted id in data network messages and using aliases in connection with location based service applications Download PDF

Info

Publication number
WO2002049380A1
WO2002049380A1 PCT/US2001/048518 US0148518W WO0249380A1 WO 2002049380 A1 WO2002049380 A1 WO 2002049380A1 US 0148518 W US0148518 W US 0148518W WO 0249380 A1 WO0249380 A1 WO 0249380A1
Authority
WO
WIPO (PCT)
Prior art keywords
operator
service
subscriber
information
proxy server
Prior art date
Application number
PCT/US2001/048518
Other languages
French (fr)
Inventor
Mats Cedervall
Thomas Ekerborn
Original Assignee
Signalsoft Corp.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from SE0004673A external-priority patent/SE518889C2/en
Priority claimed from SE0100147A external-priority patent/SE0100147L/en
Application filed by Signalsoft Corp. filed Critical Signalsoft Corp.
Priority to AU2002230886A priority Critical patent/AU2002230886A1/en
Publication of WO2002049380A1 publication Critical patent/WO2002049380A1/en
Priority to US10/323,579 priority patent/US7062279B2/en
Priority to US11/410,589 priority patent/US8112099B2/en
Priority to US13/339,295 priority patent/US8548498B2/en
Priority to US13/950,222 priority patent/US8774841B2/en
Priority to US14/302,330 priority patent/US9264858B2/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0407Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the identity of one or more communicating identities is hidden
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2242/00Special services or facilities
    • H04M2242/14Special services or facilities with services dependent on location
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/02Services making use of location information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/26Network addressing or numbering for mobility support

Definitions

  • the present invention involves a process and a system for ensuring the integrity of position information regarding a mobile station in a communication network for mobile stations and in relation to a positioning service provider.
  • the invention addresses issues relating to privacy, authentication and security in connection with providing access to location information.
  • a small number of systems for positioning are currently in operation. They are managed and used by telecom providers to offer services to their customers.
  • a provider's customer requests a function, which is based on positioning of a telephone or telephones on the provider's network.
  • a subscription telephone is directly linked to a subscriber, and positioning a telephone is thereby a positioning of a physical person.
  • the right to access this position information is critical, since the integrity of subscribers is directly connected to the possibility of controlling who can or may see their position.
  • Telecom providers cannot currently produce position information as part of the external service provider's positioning solutions and simultaneously guarantee the integrity of the subscriber, unless the subscriber himself requests the positioning from his telephone and has logged on to the provider's portal with user identity and password. Such solutions entail additional steps in executing a positioning service and reduce the security.
  • the present invention intends to solve problems involved in mobile positioning with regard to the personal integrity of a user of a mobile telephone that is connected to a communications network of same, and to position the mobile telephone without having knowledge as to its identity outside of the operator's telephone network.
  • the user of the mobile telephone is also the user of a positioning service and a subscriber of the telecom provider.
  • a first embodiment of the invention comprises the following steps: the positioning service provider's network computer authenticates the user by a log-in procedure; the user activates a positioning procedure by sending an http-request to the positioning service provider's network computer; the positioning service provider has an alias server which encrypts some of the user information with a code key that is only known to it, so as to obtain an alias, known as a service alias; said alias is used to request the position from a position proxy server; the position proxy server uses the service alias to lookup a second alias in a table, known as the operator alias; if the position proxy server finds said operator alias in the table, it uses it to select the operator and the following procedure is carried out: the position proxy server sends a request containing at least the operator alias to the selected operator's positioning platform in order to obtain
  • a further embodiment of the invention handles the case when said step of the position proxy server using the service alias to lookup the operator's alias in a table is not successful.
  • the position proxy server returns an error message to the positioning service provider, containing a link which can be used to initiate positioning services for the user; the positioning service provider generates a return page to the user, containing among other things said link and information so that the user can activate positioning services by activating said link; the user activates said link, which points to a resource at the position proxy server; the position proxy server registers the IP address assigned to the user.
  • the IP address says which WAP gateway the user is hooked up to. There is a high likelihood that the WAP gateway is situated in the same country as the user's operator; the positioning proxy server generates a page with operator links, based on said country, where the user himself can specify an operator; said operator links link to resources available from the selected operator; these operator links also contain a unique transaction number which is used to distinguish the sessions of the users; when the user specifies an operator by selecting one of said operator links, a network computer at the respective operator generates a page which is sent to the user; this page contains a form on which the subscriber indicates his mobile telephone number; the user sends out the form to the operator's network computer; the operator's network computer receives the form and checks to make sure that the indicated mobile telephone number belongs to a subscriber in the operator's network; if the number does not belong to the operator, the user is directed back to the position proxy server to select a different operator; if the number belongs to the operator, the operator's network computer sends an SMS to the indicated number; said
  • the operator's network computer sends the so obtained operator alias together with said transaction number back to the position proxy server and directs the user back to the position proxy server, containing said transaction number; the proxy server receives said operator alias and transaction number and it stores said service alias together with said operator alias as one item in criz a database; positioning services at the current positioning service provider are now activated for the user who can begin to use position-related services from the positioning service provider.
  • the user activates the service via the network instead of the telephone.
  • This embodiment functions in similar fashion, except that the IP address cannot be used to indicate which country the user's operator belongs to. In this case, the user also has to indicate the country before he indicates the operator.
  • said step in which the position proxy server selects a country through the IP address has the further functionality of being able to directly select the correct operator. This is possible inasmuch as certain WAP gateways only allow subscribers from their own network to connect via them. If this is the case the step of operator selection by the user need not occur.
  • the position proxy server keeps a list with WAP gateways that have the above characteristic.
  • a process is given for the operator to deactivate the positioning services for a particular subscriber. This occurs in that the operator's network computer sends a message to the position proxy server containing the operator alias corresponding to said subscriber and information as to which services, or service providers, are to be deactivated.
  • the position proxy server removes the corresponding items from the database.
  • said page which contains a form on which the subscriber indicates his mobile telephone number is generated by the position proxy server instead of the operator's network computer. However, in this case as well, the user sends out the form to the operator's network computer.
  • said position proxy server is situated at the positioning service provider's premises. In this case, a service alias is not necessary.
  • said telephone number is kept at the position proxy server, instead of the alias.
  • information deriving from the operator's alias is also kept at the positioning service provider.
  • Another embodiment of the invention comprises the following steps: a user connects via WAP to a positioning service provider's network computer; the user activates a positioning procedure by sending a request to the positioning service provider's network computer via the operator's WAP gateway; said request is translated into a http-request in the WAP gateway; the WAP gateway notes that the request is a positioning request, since the contents of the http-request fulfill certain criteria, and then sends an inquiry as to which telephone number the subscriber has to the operator's dialup server; the WAP gateway encrypts the thus obtained telephone number together with the present time; the WAP gateway embeds the thus obtained encryption string into said http-request; the positioning service provider's network computer receives said http- request and uses the encryption string and the WAP gateway's source IP address to request the position from a position proxy server; the position proxy server selects an operator by means of the WAP gateway's source IP address, and requests the position from the operator's positioning platform; the operator's positioning platform decodes the encryption string to obtain the telephone
  • a further embodiment of the invention handles the situation where SMS is used, and it comprises the following steps: a user sends an SMS to a particular number, which corresponds to a positioning service at the positioning service provider; the operator's SMSC notes that the message is intended for a positioning service and encrypts the subscriber's telephone number along with the current time; the thus obtained encryption string is embedded in the message; the message is sent by the protocol used by the SMSC to a position proxy server; the position proxy server receives the message, unpacks the protocol used and requests the position from the operator's positioning platform by means of the encryption string; the operator's positioning platform decodes the encryption string to obtain the telephone number and time; the operator's positioning platform checks to make sure the obtained time is current, and in this way gets a validation that said request has recently been made by the subscriber; given a successful validation, the operator's positioning platform positions the subscriber and returns this to the position proxy server; the position proxy server uses the thus obtained position to request information from the positioning service provider's network computer; based on the position
  • the user's identity is encrypted by means of a proxy instead of the WAP gateway.
  • This embodiment comprises the following steps: a user connects via WAP to a positioning service provider's network computer; the user activates a positioning procedure by sending a request intended for the positioning service provider's network computer via the operator's WAP gateway; the positioning service provider's network computer has a special IP address which is used for all its positioning-related services; in the WAP gateway's routing table there is an item for the IP address which states that packets intended for the positioning service provider's network computer should first be sent to an http-proxy with a given, different, IP address; said request is translated into an http-request in the WAP gateway; the WAP gateway notes, by means of header information, that the request is a positioning request and it then sends an inquiry as to which telephone number the subscriber has to the operator's call server; the WAP gateway inserts the thus obtained telephone number in said http-request and sends the http-request on to said http-
  • the WAP gateway acts as if it has an http-session directly with the positioning service provider's network computer, while in reality it is said http-proxy, which handles all its http-requests; said http-proxy detects that the http-request is positioning-related, since the http-request's contents fulfill certain criteria, and it extracts the telephone number; if this step is unsuccessful, the http-request is sent on to the final destination; if this step is successful, said http-proxy encrypts the thus obtained telephone number along with the present time; said http-proxy embeds the thus obtained encryption string in a new http-request for the positioning service provider's network computer; the positioning service provider's network computer receives the http- request and uses the encryption string and the http-proxy's source IP address to request the position from a position proxy server; the position proxy server selects an operator based on the http-proxy's source IP address and requests the position from the operator's positioning platform; the operator's positioning platform decodes the encryption string to obtain the
  • the position proxy server handles operators that do not have automatic positioning or connection to the position proxy server by instead directing the user to resources at the position proxy server, which help the user to indicate his position manually. This manual position entry can occur, for example, by giving one's address.
  • the SMS situation is handled in which the encryption is done by means of a proxy instead of at the SMSC.
  • This embodiment comprises the following steps: a user sends an SMS to a particular number, corresponding to a positioning service at the positioning service provider; at the SMSC, there is data present which indicates that all SMS messages to the number which corresponds to particular positioning services will be sent to a proxy, with a given IP address; said proxy receives the message from the SMSC and terminates the protocol used outwardly by the SMSC; between the proxy and the position proxy server, a protocol is used which may possibly be a different protocol than that used by the SMSC; said proxy extracts the subscriber's telephone number from the received message and converts it, with the current time, into an encryption string; this encryption string is embedded in a request and said proxy sends this message to the position proxy server; the position proxy server receives the message, unpacks the protocol used, and requests the position from the operator's positioning platform by means of the encryption string; the operator's positioning platform decodes the encryption string to obtain the telephone number and time; the operator's positioning platform checks to make sure that the received time is current, and in this way
  • the situation is handled where the position proxy server is situated at the positioning service provider.
  • the situation is handled where information other than the time is encrypted together with the telephone number.
  • the situation is handled where extra information is embedded in the request to the positioning service provider so as to uniquely distinguish the user.
  • This information may consist of an encrypted telephone number.
  • FIG. 1 illustrates one embodiment of a system for ensuring the integrity of position information in accordance with the present invention
  • Fig 2 illustrates another embodiment of a system for ensuring the integrity of position information in accordance with the present invention
  • Fig 3 illustrates one embodiment of a system for ensuring the integrity of position information in connection with WAP services in accordance with the present invention
  • Fig. 4 illustrates another embodiment of a system for ensuring the integrity of position information in connection with WAP services in accordance with the present invention
  • Figure 1 illustrates a system of integrity positioning of mobile telephones.
  • the user 120 connects via his mobile telephone 115 via the telecom provider's telephone network 130 and Internet 140 to a positioning service provider's network computer 102.
  • the user 120 activates a positioning service by sending a request to the positioning service provider's network computer 102.
  • the positioning service provider's network computer 102 sends the user's identity to an alias server 101 via a request 110.
  • the alias server 101 encrypts the user's identity with an encryption key and sends the resulting service alias back (111) to the positioning service provider's network computer 102.
  • the positioning service provider's network computer 102 sends a request 112 to a position proxy server 202, containing at least the service alias and information about the current positioning service.
  • the proxy server uses the received service alias to obtain a previously saved, corresponding operator alias from a look-up in a database 201.
  • the position proxy server 202 uses the obtained operator alias to request the position from the operator 300.
  • the operator's positioning platform 302 receives said request.
  • the operator's positioning platform 302 sends the operator alias to an alias server 301.
  • the alias server 301 decodes the operator alias to obtain the user's telephone number.
  • the alias server 301 sends back the telephone number to the positioning platform 302.
  • the operator's positioning platform 302 uses the so obtained telephone number to request the position from the operator's positioning system 400.
  • the so obtained position is sent back to the position proxy server 202, which in turn sends the position back to the positioning service provider's network computer 102.
  • the positioning service provider's network computer 102 generates a page with position-related content, which is sent to the user 120.
  • Figure 2 illustrates a system for integrity positioning of mobile telephones.
  • FIG 2 illustrates the procedure when the user 120 has not previously used the positioning services of the current positioning service provider 100.
  • the user 120 connects through the telecom provider's telephone network 130 and Internet 140 to a positioning service provider's network computer 102.
  • The. user 120 activates a positioning service by sending a request to the positioning service provider's network computer 102 which sends the user's identity to an alias server 101 via a request 110.
  • the alias server 101 encrypts the user's identity with an encryption key and sends back (111) the resulting service alias to the positioning service provider's network computer 102.
  • the positioning service provider's network computer 102 sends an http-request 112 to a position proxy server 202, containing at least the service alias and information about the current positioning service.
  • the proxy server 202 uses the received service alias to try to obtain a corresponding operator alias from a look-up in a database 201. If this database look-up is unsuccessful, it means that the user has not initiated positioning services from the current positioning service provider. If such is the case, the procedure described hereafter is carried out.
  • the proxy server 202 replies to said request from the positioning service provider's network computer 102.
  • the reply contains information to the effect that the positioning service must be initiated for the current user, along with sufficient information about how this initialization can be done. Normally, this information consists of a link, which the user can activate to carry out said initialization.
  • the positioning service provider's network computer 102 generates a reply to the user's telephone 115, containing a link that points to a resource 203 at the position proxy server.
  • the user 120 is automatically directed on to the same resource 203.
  • the user 120 activates said link
  • the position proxy server generates the network page corresponding to the resource 203 which corresponds to said link and the network page is returned to the user's telephone 115.
  • Said network page 203 contains a choice of operator.
  • the user activates the link corresponding to the same operator. This link points to a resource situated at the corresponding operator's network computer 303.
  • This resource consists of a page where the user 120 has to enter his telephone number.
  • the operator When the user 120 has provided his telephone number and returns it to the operator's network computer 303, the operator first checks whether the telephone number belongs to the operator by a look-up in the database 306. If the telephone number does not belong to the operator 300, the user can either enter his telephone number again or the user is also directed back to the network page 203. If the telephone number belongs to the operator, the operator sends an SMS via the SMS center 304, containing an identity code to said telephone number. The operator also sends a network page to the user. When the user 120 has received the SMS message, he enters the identity code on the network page that was returned when he sent the telephone number. The user sends back the identity code to the operator's network computer 303. The operator's network computer receives the identity code and checks its authenticity.
  • the operator's network computer sends the subscriber number to an alias server 301.
  • the alias server 301 encrypts the subscriber number, making use of an encryption key known only to the operator 300, and returns the so obtained operator alias to the operator's network computer 303.
  • the operator's network computer 303 sends a message 317 to the position proxy server 202 about the established operator alias.
  • the operator's network computer also directs the user to a previously determined return address.
  • the position proxy server 202 saves said operator alias together with said service alias in the database 201. In the above procedure, the subscriber's identity never leaves the telecom provider's network. Consequently, the personal integrity of the user is not compromised.
  • FIG. 3 illustrates a system for integrity positioning of mobile telephones via WAP services.
  • the user connects through his mobile telephone 1101 via the telecom provider's telephone network 1120 and the
  • the WAP gateway's 1104 routing table contains an item for the IP address, indicating that packets intended for the positioning service provider's network computer 1132 should first be sent to an http-proxy 1105 with a particular, different, IP address. Said request is converted in the WAP gateway 1104 into an http-request.
  • the WAP gateway 1104 notices by means of header information in said http-request that the request is a positioning request and it then sends an inquiry as to which telephone number the subscriber has to the operator's call server.
  • the WAP gateway 1104 inserts the thus obtained telephone number into said http- request and sends the http-request on to said http-proxy 1105.
  • Said http- proxy 1105 receives and terminates the http-request.
  • Said http-proxy 1105 makes sure that correct information is found in the header information field on the TCP and IP level. In this way, the WAP gateway acts as if it has an http- session directly with the positioning service provider's network computer 1132, while in reality it is said http-proxy 1105, which handles all its http- requests.
  • Said http-proxy 1105 detects that the http-request is positioning- related and extracts the telephone number. If this step fails, the http-request is sent on to the final destination via the router 1106. If this step is successful, said http-proxy 1105 encrypts the thus obtained telephone number together with the current time. Said http-proxy embeds the thus obtained encryption string in the http-request to the positioning service provider's network computer 1132.
  • the positioning service provider's network computer 1132 receives the http-request and uses the encryption string and the http-proxy's source IP address to request the position from a position proxy server 1131.
  • the position proxy server 1131 selects an operator based on the http-proxy 's source IP address and requests the position from the operator's positioning platform.
  • the operator's positioning platform 1107 decodes the encryption string to obtain the telephone number and time.
  • the operator's positioning platform 1107 checks to make sure the obtained time is current, and in this way it gets a validation that said request has recently been made by the subscriber. Given a successful validation, the operator's positioning platform positions the subscriber and returns this to the position proxy server 1131.
  • the position proxy server 1131 forwards the position to the positioning service provider's network computer 1132.
  • the positioning service provider's network computer 1132 generates a current page and returns this to the user 1101.
  • FIG. 4 illustrates a system for integrity positioning of mobile telephones via SMS services.
  • the user 1201 sends an SMS to a particular number, which corresponds to a positioning service at the positioning service provider 1232.
  • the SMSC 1204 has data which states that all SMS messages to the number corresponding to this positioning service are intended for an SMS-proxy 1205, located within the operator's firewalls.
  • Said SMS-proxy 1205 receives the message from SMSC1204 and terminates the protocol used outwardly by the SMSC.
  • a protocol is used which can be a protocol different from that used by the SMSC 1204.
  • Said SMS-proxy 1205 extracts the subscriber's telephone number from the received message and converts it along with the current time into an encryption string. This encryption string is inserted into a request and said SMS-proxy sends this message to the position proxy server 1231.
  • the position proxy server 1231 receives the message, unpacks the protocol used, and requests the position from the operator's positioning platform by means of the encryption string.
  • the operator's positioning platform 1207 decodes the encryption string to obtain the telephone number and time.
  • the operator's positioning platform 1207 checks to make sure the received time is current, and in this way gets a validation that said request has recently been made by the subscriber 1201. Given a successful validation, the operator's positioning platform 1207 positions the subscriber and returns this to the position proxy server 1231.
  • the position proxy server 1231 uses the thus obtained position to request information from the positioning service provider's network computer 1232. Based on the position, the positioning service provider's network computer 1232 generates a reply containing information relevant to the service.
  • the position proxy server 1231 uses the thus obtained information to generate a reply, which is sent to the subscriber via said SMS-proxy 1205 and the SMSC 1204.

Abstract

The invention concerns a process and a system for integrity positioning of a mobile telephone (115) in a communications network for mobile telephones and in relation to a positioning service provider (102). The invention also includes a process and system of initializing same. In particular, the subscriber's number is hidden from the positioning service provider via a process in which an alias is used instead of the subscriber's normal identity. The subscriber's number may further be concealed from the service provider via a process wherein encrypted information is used instead of the subscriber's normal identity.

Description

MOBILE POSITIONING USING ENCRYPTED ID IN DATA NETWORK
MESSAGES AND USING ALIASES IN CONNECTION WITH LOCATION
BASED SERVICE APPLICATIONS Technical scope
The present invention involves a process and a system for ensuring the integrity of position information regarding a mobile station in a communication network for mobile stations and in relation to a positioning service provider.
The invention addresses issues relating to privacy, authentication and security in connection with providing access to location information.
Prior art
A small number of systems for positioning are currently in operation. They are managed and used by telecom providers to offer services to their customers. A provider's customer requests a function, which is based on positioning of a telephone or telephones on the provider's network.
A subscription telephone is directly linked to a subscriber, and positioning a telephone is thereby a positioning of a physical person. The right to access this position information is critical, since the integrity of subscribers is directly connected to the possibility of controlling who can or may see their position.
Telecom providers cannot currently produce position information as part of the external service provider's positioning solutions and simultaneously guarantee the integrity of the subscriber, unless the subscriber himself requests the positioning from his telephone and has logged on to the provider's portal with user identity and password. Such solutions entail additional steps in executing a positioning service and reduce the security.
One part of the problem is that the mobile telephone is anonymous on the Internet, that is, there is no connection known to outsiders to the identity of the mobile telephone or subscriber, which is required in order to find the position of said mobile telephone. Summary of the Invention
The present invention intends to solve problems involved in mobile positioning with regard to the personal integrity of a user of a mobile telephone that is connected to a communications network of same, and to position the mobile telephone without having knowledge as to its identity outside of the operator's telephone network. The user of the mobile telephone is also the user of a positioning service and a subscriber of the telecom provider.
In order to bring about said integrity, a process is specified for positioning of a mobile telephone in a communications network for mobile telephones and in relation to a positioning service provider. A first embodiment of the invention comprises the following steps: the positioning service provider's network computer authenticates the user by a log-in procedure; the user activates a positioning procedure by sending an http-request to the positioning service provider's network computer; the positioning service provider has an alias server which encrypts some of the user information with a code key that is only known to it, so as to obtain an alias, known as a service alias; said alias is used to request the position from a position proxy server; the position proxy server uses the service alias to lookup a second alias in a table, known as the operator alias; if the position proxy server finds said operator alias in the table, it uses it to select the operator and the following procedure is carried out: the position proxy server sends a request containing at least the operator alias to the selected operator's positioning platform in order to obtain the user's position; the operator's positioning platform receives said request; the positioning platform sends the operator alias to the alias server; the alias server decodes the received operator alias to obtain the subscriber's mobile telephone number and returns this to the positioning platform; the operator uses the mobile telephone number to obtain the position from the operator's positioning system; the positioning platform returns the position to the position proxy server; the proxy server returns the position to the positioning service provider; the positioning service provider performs the application-related processing and returns the required information to the user.
A further embodiment of the invention handles the case when said step of the position proxy server using the service alias to lookup the operator's alias in a table is not successful. This means that the user has not initiated positioning services with his operator. To initiate these positioning services, the following procedure is used: if the position proxy server does not find said operator alias in the table, the position proxy server returns an error message to the positioning service provider, containing a link which can be used to initiate positioning services for the user; the positioning service provider generates a return page to the user, containing among other things said link and information so that the user can activate positioning services by activating said link; the user activates said link, which points to a resource at the position proxy server; the position proxy server registers the IP address assigned to the user.
The IP address says which WAP gateway the user is hooked up to. There is a high likelihood that the WAP gateway is situated in the same country as the user's operator; the positioning proxy server generates a page with operator links, based on said country, where the user himself can specify an operator; said operator links link to resources available from the selected operator; these operator links also contain a unique transaction number which is used to distinguish the sessions of the users; when the user specifies an operator by selecting one of said operator links, a network computer at the respective operator generates a page which is sent to the user; this page contains a form on which the subscriber indicates his mobile telephone number; the user sends out the form to the operator's network computer; the operator's network computer receives the form and checks to make sure that the indicated mobile telephone number belongs to a subscriber in the operator's network; if the number does not belong to the operator, the user is directed back to the position proxy server to select a different operator; if the number belongs to the operator, the operator's network computer sends an SMS to the indicated number; said SMS contains an identity number and any necessary instructions on how to use it; the operator's network computer also sends a page to the user with instructions so that the user can receive an SMS with a number that needs to be indicated on the same page; the user receives said SMS and indicates said number on the page, and activates the link which sends the number; the operator's network computer receives said number; if the number matches, the operator's alias server encrypts said telephone number by means of an encryption key known only to the operator
' and the operator's network computer sends the so obtained operator alias together with said transaction number back to the position proxy server and directs the user back to the position proxy server, containing said transaction number; the proxy server receives said operator alias and transaction number and it stores said service alias together with said operator alias as one item in „ a database; positioning services at the current positioning service provider are now activated for the user who can begin to use position-related services from the positioning service provider.
In a further embodiment of the invention, the user activates the service via the network instead of the telephone. This embodiment functions in similar fashion, except that the IP address cannot be used to indicate which country the user's operator belongs to. In this case, the user also has to indicate the country before he indicates the operator. In yet another embodiment of the invention, said step in which the position proxy server selects a country through the IP address has the further functionality of being able to directly select the correct operator. This is possible inasmuch as certain WAP gateways only allow subscribers from their own network to connect via them. If this is the case the step of operator selection by the user need not occur. The position proxy server keeps a list with WAP gateways that have the above characteristic.
In yet another embodiment of the invention, a process is given for the operator to deactivate the positioning services for a particular subscriber. This occurs in that the operator's network computer sends a message to the position proxy server containing the operator alias corresponding to said subscriber and information as to which services, or service providers, are to be deactivated. The position proxy server removes the corresponding items from the database. In yet another embodiment of the invention, said page, which contains a form on which the subscriber indicates his mobile telephone number is generated by the position proxy server instead of the operator's network computer. However, in this case as well, the user sends out the form to the operator's network computer. In yet another embodiment of the invention, said position proxy server is situated at the positioning service provider's premises. In this case, a service alias is not necessary.
In yet another embodiment of the invention, said telephone number is kept at the position proxy server, instead of the alias. In yet another embodiment of the invention, information deriving from the operator's alias is also kept at the positioning service provider.
Another embodiment of the invention comprises the following steps: a user connects via WAP to a positioning service provider's network computer; the user activates a positioning procedure by sending a request to the positioning service provider's network computer via the operator's WAP gateway; said request is translated into a http-request in the WAP gateway; the WAP gateway notes that the request is a positioning request, since the contents of the http-request fulfill certain criteria, and then sends an inquiry as to which telephone number the subscriber has to the operator's dialup server; the WAP gateway encrypts the thus obtained telephone number together with the present time; the WAP gateway embeds the thus obtained encryption string into said http-request; the positioning service provider's network computer receives said http- request and uses the encryption string and the WAP gateway's source IP address to request the position from a position proxy server; the position proxy server selects an operator by means of the WAP gateway's source IP address, and requests the position from the operator's positioning platform; the operator's positioning platform decodes the encryption string to obtain the telephone number and time; the operator's positioning platform checks to make sure the obtained time is current, and in this way gets a validation that said request has recently been made by the subscriber; given a successful validation, the operator's positioning platform positions the subscriber and returns the position to the position proxy server; the proxy server forwards the position to the positioning service provider's network computer; the positioning service provider's network computer generates a current page and returns this to the use
A further embodiment of the invention handles the situation where SMS is used, and it comprises the following steps: a user sends an SMS to a particular number, which corresponds to a positioning service at the positioning service provider; the operator's SMSC notes that the message is intended for a positioning service and encrypts the subscriber's telephone number along with the current time; the thus obtained encryption string is embedded in the message; the message is sent by the protocol used by the SMSC to a position proxy server; the position proxy server receives the message, unpacks the protocol used and requests the position from the operator's positioning platform by means of the encryption string; the operator's positioning platform decodes the encryption string to obtain the telephone number and time; the operator's positioning platform checks to make sure the obtained time is current, and in this way gets a validation that said request has recently been made by the subscriber; given a successful validation, the operator's positioning platform positions the subscriber and returns this to the position proxy server; the position proxy server uses the thus obtained position to request information from the positioning service provider's network computer; based on the position, the positioning service provider's network computer generates a reply containing relevant information for the service; the position proxy server uses the thus obtained information to generate a reply which is sent to the subscriber via said SMSC, using the protocol employed by the SMSC. C In a further embodiment of the invention, the user's identity is encrypted by means of a proxy instead of the WAP gateway. This embodiment comprises the following steps: a user connects via WAP to a positioning service provider's network computer; the user activates a positioning procedure by sending a request intended for the positioning service provider's network computer via the operator's WAP gateway; the positioning service provider's network computer has a special IP address which is used for all its positioning-related services; in the WAP gateway's routing table there is an item for the IP address which states that packets intended for the positioning service provider's network computer should first be sent to an http-proxy with a given, different, IP address; said request is translated into an http-request in the WAP gateway; the WAP gateway notes, by means of header information, that the request is a positioning request and it then sends an inquiry as to which telephone number the subscriber has to the operator's call server; the WAP gateway inserts the thus obtained telephone number in said http-request and sends the http-request on to said http-proxy; said http-proxy receives and terminates the http-request; said http-proxy makes sure there is correct information in the header information field on the TCP and IP level. In this way, the WAP gateway acts as if it has an http-session directly with the positioning service provider's network computer, while in reality it is said http-proxy, which handles all its http-requests; said http-proxy detects that the http-request is positioning-related, since the http-request's contents fulfill certain criteria, and it extracts the telephone number; if this step is unsuccessful, the http-request is sent on to the final destination; if this step is successful, said http-proxy encrypts the thus obtained telephone number along with the present time; said http-proxy embeds the thus obtained encryption string in a new http-request for the positioning service provider's network computer; the positioning service provider's network computer receives the http- request and uses the encryption string and the http-proxy's source IP address to request the position from a position proxy server; the position proxy server selects an operator based on the http-proxy's source IP address and requests the position from the operator's positioning platform; the operator's positioning platform decodes the encryption string to obtain the telephone number and time; the operator's positioning platform checks to make sure the obtained time is current, and in this way gets a validation that said request was recently made by the subscriber; given a successful validation, the operator's positioning platform positions the subscriber and returns this to the position proxy server; the proxy server forwards the position on to the positioning service provider's network computer; the positioning service provider's network computer generates a current page and returns this to the user. In yet another embodiment of the invention, the position proxy server handles operators that do not have automatic positioning or connection to the position proxy server by instead directing the user to resources at the position proxy server, which help the user to indicate his position manually. This manual position entry can occur, for example, by giving one's address. In a further embodiment of the invention, the SMS situation is handled in which the encryption is done by means of a proxy instead of at the SMSC. This embodiment comprises the following steps: a user sends an SMS to a particular number, corresponding to a positioning service at the positioning service provider; at the SMSC, there is data present which indicates that all SMS messages to the number which corresponds to particular positioning services will be sent to a proxy, with a given IP address; said proxy receives the message from the SMSC and terminates the protocol used outwardly by the SMSC; between the proxy and the position proxy server, a protocol is used which may possibly be a different protocol than that used by the SMSC; said proxy extracts the subscriber's telephone number from the received message and converts it, with the current time, into an encryption string; this encryption string is embedded in a request and said proxy sends this message to the position proxy server; the position proxy server receives the message, unpacks the protocol used, and requests the position from the operator's positioning platform by means of the encryption string; the operator's positioning platform decodes the encryption string to obtain the telephone number and time; the operator's positioning platform checks to make sure that the received time is current, and in this way gets a validation that said request has recently been made by the subscriber; given a successful validation, the operator's positioning platform positions the subscriber and returns this to the position proxy server; the position proxy server uses the thus obtained position to request information from the positioning service provider's network computer; based on the position, the positioning service provider's network computer generates a reply containing information relevant to the service; the position proxy server uses the thus obtained information to generate a reply which is sent to the subscriber via said SMSC, using the protocol employed for SMSC. In a further embodiment of the invention, the situation is handled in which the method is used for authentication of purposes other than positioning. This embodiment is similar to the above-described methods; except that an activity other than positioning is carried out.
In another embodiment of the invention, the situation is handled where the position proxy server is situated at the positioning service provider.
In another embodiment of the invention, the situation is handled where information other than the time is encrypted together with the telephone number.
In another embodiment of the invention, the situation is handled where extra information is embedded in the request to the positioning service provider so as to uniquely distinguish the user. This information, for example, may consist of an encrypted telephone number.
Brief Description of the Drawings Further, the text of the description refers consecutively to the attached figures for a better understanding of the present invention and its embodiments or exemplifications, where:
Fig. 1 illustrates one embodiment of a system for ensuring the integrity of position information in accordance with the present invention; Fig 2 illustrates another embodiment of a system for ensuring the integrity of position information in accordance with the present invention;
Fig 3 illustrates one embodiment of a system for ensuring the integrity of position information in connection with WAP services in accordance with the present invention; and Fig. 4 illustrates another embodiment of a system for ensuring the integrity of position information in connection with WAP services in accordance with the present invention; and
Detailed Description of The Invention
Figure 1 illustrates a system of integrity positioning of mobile telephones. The user 120 connects via his mobile telephone 115 via the telecom provider's telephone network 130 and Internet 140 to a positioning service provider's network computer 102. The user 120 activates a positioning service by sending a request to the positioning service provider's network computer 102. The positioning service provider's network computer 102 sends the user's identity to an alias server 101 via a request 110. The alias server 101 encrypts the user's identity with an encryption key and sends the resulting service alias back (111) to the positioning service provider's network computer 102. The positioning service provider's network computer 102 sends a request 112 to a position proxy server 202, containing at least the service alias and information about the current positioning service. The proxy server uses the received service alias to obtain a previously saved, corresponding operator alias from a look-up in a database 201. The position proxy server 202 uses the obtained operator alias to request the position from the operator 300. The operator's positioning platform 302 receives said request. The operator's positioning platform 302 sends the operator alias to an alias server 301. The alias server 301 decodes the operator alias to obtain the user's telephone number. The alias server 301 sends back the telephone number to the positioning platform 302. The operator's positioning platform 302 uses the so obtained telephone number to request the position from the operator's positioning system 400. The so obtained position is sent back to the position proxy server 202, which in turn sends the position back to the positioning service provider's network computer 102. The positioning service provider's network computer 102 generates a page with position-related content, which is sent to the user 120.
Figure 2 illustrates a system for integrity positioning of mobile telephones. In particular, figure 2 illustrates the procedure when the user 120 has not previously used the positioning services of the current positioning service provider 100. The user 120 connects through the telecom provider's telephone network 130 and Internet 140 to a positioning service provider's network computer 102. The. user 120 activates a positioning service by sending a request to the positioning service provider's network computer 102 which sends the user's identity to an alias server 101 via a request 110. The alias server 101 encrypts the user's identity with an encryption key and sends back (111) the resulting service alias to the positioning service provider's network computer 102. The positioning service provider's network computer 102 sends an http-request 112 to a position proxy server 202, containing at least the service alias and information about the current positioning service.
The proxy server 202 uses the received service alias to try to obtain a corresponding operator alias from a look-up in a database 201. If this database look-up is unsuccessful, it means that the user has not initiated positioning services from the current positioning service provider. If such is the case, the procedure described hereafter is carried out. The proxy server 202 replies to said request from the positioning service provider's network computer 102. The reply contains information to the effect that the positioning service must be initiated for the current user, along with sufficient information about how this initialization can be done. Normally, this information consists of a link, which the user can activate to carry out said initialization. The positioning service provider's network computer 102 generates a reply to the user's telephone 115, containing a link that points to a resource 203 at the position proxy server. As an alternative, the user 120 is automatically directed on to the same resource 203. The user 120 activates said link, the position proxy server generates the network page corresponding to the resource 203 which corresponds to said link and the network page is returned to the user's telephone 115. Said network page 203 contains a choice of operator. The user activates the link corresponding to the same operator. This link points to a resource situated at the corresponding operator's network computer 303. This resource consists of a page where the user 120 has to enter his telephone number. When the user 120 has provided his telephone number and returns it to the operator's network computer 303, the operator first checks whether the telephone number belongs to the operator by a look-up in the database 306. If the telephone number does not belong to the operator 300, the user can either enter his telephone number again or the user is also directed back to the network page 203. If the telephone number belongs to the operator, the operator sends an SMS via the SMS center 304, containing an identity code to said telephone number. The operator also sends a network page to the user. When the user 120 has received the SMS message, he enters the identity code on the network page that was returned when he sent the telephone number. The user sends back the identity code to the operator's network computer 303. The operator's network computer receives the identity code and checks its authenticity. If the identity code matches, the user's subscriber number is established. In such case, the operator's network computer sends the subscriber number to an alias server 301. The alias server 301 encrypts the subscriber number, making use of an encryption key known only to the operator 300, and returns the so obtained operator alias to the operator's network computer 303. The operator's network computer 303 sends a message 317 to the position proxy server 202 about the established operator alias. The operator's network computer also directs the user to a previously determined return address. The position proxy server 202 saves said operator alias together with said service alias in the database 201. In the above procedure, the subscriber's identity never leaves the telecom provider's network. Consequently, the personal integrity of the user is not compromised.
Figure 3 illustrates a system for integrity positioning of mobile telephones via WAP services. The user connects through his mobile telephone 1101 via the telecom provider's telephone network 1120 and the
Internet 1130 to a positioning service provider's network computer 1132. The user 1101 activates a positioning service by sending a request to the positioning service provider's network computer 1132. The positioning service provider's network computer 1132 has a special IP address that is used for all its positioning-related services. The WAP gateway's 1104 routing table contains an item for the IP address, indicating that packets intended for the positioning service provider's network computer 1132 should first be sent to an http-proxy 1105 with a particular, different, IP address. Said request is converted in the WAP gateway 1104 into an http-request. The WAP gateway 1104 notices by means of header information in said http-request that the request is a positioning request and it then sends an inquiry as to which telephone number the subscriber has to the operator's call server. The WAP gateway 1104 inserts the thus obtained telephone number into said http- request and sends the http-request on to said http-proxy 1105. Said http- proxy 1105 receives and terminates the http-request. Said http-proxy 1105 makes sure that correct information is found in the header information field on the TCP and IP level. In this way, the WAP gateway acts as if it has an http- session directly with the positioning service provider's network computer 1132, while in reality it is said http-proxy 1105, which handles all its http- requests. Said http-proxy 1105 detects that the http-request is positioning- related and extracts the telephone number. If this step fails, the http-request is sent on to the final destination via the router 1106. If this step is successful, said http-proxy 1105 encrypts the thus obtained telephone number together with the current time. Said http-proxy embeds the thus obtained encryption string in the http-request to the positioning service provider's network computer 1132. The positioning service provider's network computer 1132 receives the http-request and uses the encryption string and the http-proxy's source IP address to request the position from a position proxy server 1131. The position proxy server 1131 selects an operator based on the http-proxy 's source IP address and requests the position from the operator's positioning platform. The operator's positioning platform 1107 decodes the encryption string to obtain the telephone number and time. The operator's positioning platform 1107 checks to make sure the obtained time is current, and in this way it gets a validation that said request has recently been made by the subscriber. Given a successful validation, the operator's positioning platform positions the subscriber and returns this to the position proxy server 1131. The position proxy server 1131 forwards the position to the positioning service provider's network computer 1132. The positioning service provider's network computer 1132 generates a current page and returns this to the user 1101.
Figure 4 illustrates a system for integrity positioning of mobile telephones via SMS services. The user 1201 sends an SMS to a particular number, which corresponds to a positioning service at the positioning service provider 1232. The SMSC 1204 has data which states that all SMS messages to the number corresponding to this positioning service are intended for an SMS-proxy 1205, located within the operator's firewalls. Said SMS-proxy 1205 receives the message from SMSC1204 and terminates the protocol used outwardly by the SMSC. Between the SMS-proxy 1205 and the position proxy server 1231 , a protocol is used which can be a protocol different from that used by the SMSC 1204. Said SMS-proxy 1205 extracts the subscriber's telephone number from the received message and converts it along with the current time into an encryption string. This encryption string is inserted into a request and said SMS-proxy sends this message to the position proxy server 1231.
The position proxy server 1231 receives the message, unpacks the protocol used, and requests the position from the operator's positioning platform by means of the encryption string. The operator's positioning platform 1207 decodes the encryption string to obtain the telephone number and time. The operator's positioning platform 1207 checks to make sure the received time is current, and in this way gets a validation that said request has recently been made by the subscriber 1201. Given a successful validation, the operator's positioning platform 1207 positions the subscriber and returns this to the position proxy server 1231. The position proxy server 1231 uses the thus obtained position to request information from the positioning service provider's network computer 1232. Based on the position, the positioning service provider's network computer 1232 generates a reply containing information relevant to the service. The position proxy server 1231 uses the thus obtained information to generate a reply, which is sent to the subscriber via said SMS-proxy 1205 and the SMSC 1204.
In the above procedure, the subscriber's identity never leaves the telecom provider's network. Consequently, the personal integrity of the user is not compromised.
The present invention has been described here with examples and embodiments, but it is the attached claims that define additional embodiments for a specialist in the technical field.

Claims

Patent Claims
1. Process for integrity positioning of a mobile telephone in a communications network for mobile telephones and in relation to a positioning service provider, characterized in that it contains the following steps: a subscriber in said communications network connects to a network page of said positioning service provider in an open computer network, which offers a positioning service; said subscriber activates a positioning procedure by sending a request to said positioning service; said positioning service converts said subscriber's unique user information at the positioning service provider into a service alias; the positioning service provider's network computer requests said subscriber's position from a proxy server by means of said service alias; said proxy server converts said service alias into an operator alias by performing a look-up in a database; said proxy server requests said subscriber's position from said operator by means of said operator alias; said operator converts said operator alias into a subscriber identity that is unique to the operator; said operator positions said subscriber by means of said unique subscriber identity; said operator returns the thus obtained position to said proxy server; said proxy server returns said position to said positioning service provider's network computer; said positioning service generates a position-related network page and returns it to the subscriber's mobile telephone.
2. Process for deactivation of integrity positioning of a mobile telephone in a communications network for mobile telephones and in relation to a positioning service provider, characterized in that it contains the following steps: a subscriber in said communications network connects to a first network page at said positioning service provider in an open computer network, which offers a positioning service; said subscriber activates a positioning procedure by sending a request to said positioning service; said positioning service converts said subscriber's unique user information at said positioning service provider into a service alias; the positioning service provider's network computer requests said subscriber's position from a proxy server by means of said service alias; said proxy server, by performing a database look-up, notes that there is no existing operator alias corresponding to said service alias; said subscriber is directed to a second network page where the choice of an operator occurs; said subscriber is directed to a third network page where the telephone number is entered; said operator checks to make sure that said entered telephone number belongs to said operator; if said check is successful, said operator sends an SMS containing unique information to said entered telephone number; said subscriber receives said SMS and enters said unique information on a fourth network page; the operator makes a second check to make sure that said subscriber has correctly entered said unique information; if said second check is successful, said operator converts a subscriber identity that is unique to said operator into a unique operator alias; said operator forwards said operator alias to said proxy server; said proxy server saves said service alias together with said operator alias in said database.
3. Process according to claim 1 , characterized in that said conversion of said unique user information occurs by means of encryption.
4. Process according to claim 2, characterized in that said conversion of said unique user information occurs by means of encryption.
5. Process according to claim 1 , characterized in that said conversion of said unique user information occurs by means of a database look-up.
6. Process according to claim 2, characterized in that said conversion of said unique user information occurs by means of a database look-up.
7. Process according to claim 1 , 3 or 5, characterized in that said conversion of said operator alias occurs by means of decoding.
8. Process according to claim 1 , 3 or 5, characterized in that said conversion of said operator alias occurs by means of a database look-up.
9. Process according to claim 2, 4 or 6, characterized in that said conversion of said subscriber identity occurs by means of encryption.
10. Process according to claim 2, 4 or 6, characterized in that said conversion of said subscriber identity occurs by means of a database.
11. Process according to claim 2, 4, 6, 9 or 10, characterized in that said operator choice is facilitated by using the subscriber's IP address.
12. Process according to claim 2, 4, 6, 9 or 10, characterized in that said operator choice is done automatically by using the subscriber's IP address and knowledge about a particular configuration of the WAP gateway.
13. Process according to claim 2, 4, 6, 9, 10, 11 or 12, characterized in that one or more of said checks of telephone number, said sending of SMS, or said second checks occurs at the proxy server.
14. Process according to claim 1 , 5 or 8, characterized in that said operator alias consists of the subscriber's telephone number.
15. Process according to claim 1 , 2, 3, 4, 5, 6, 7, 8, 9, 10, 11 , 12, 13,
14 or 15, characterized in that one or more of said proxy server's functions is situated at said positioning service provider.
16. Process according to claim 2, 4 or 6, characterized in that the subscriber, instead of initializing the positioning service, is directed to a network page where said subscriber is positioned manually.
17. Process for deactivation of integrity positioning of a mobile telephone in a communications network for mobile telephones and in relation to a positioning service provider, characterized in that it contains the following steps: an operator sends a message to a proxy server, containing an operator alias, as well as an order to deactivate the positioning at said positioning service provider for the subscriber corresponding to said operator alias; said proxy server removes the service alias corresponding to said operator alias and said positioning service provider from the database.
18. System for integrity positioning of a mobile telephone in a communications network for mobile telephones and in relation to a positioning service provider, characterized in that it contains the following steps: a subscriber in said communications network connects to a network page of said positioning service provider in an open computer network, which offers a positioning service; said subscriber activates a positioning procedure by sending a request to said positioning service; said positioning service converts said subscriber's unique user information at the positioning service provider into a service alias; the positioning service provider's network computer requests said subscriber's position from a proxy server by means of said service alias; said proxy server converts said service alias into an operator alias by doing a database look-up; said proxy server requests said subscriber's position from said operator by means of said operator alias; said operator converts said operator alias into a subscriber identity that is unique to the operator; said operator positions said subscriber by means of said unique subscriber identity; said operator returns the position to said proxy server; said proxy server returns the position to said positioning service provider's network computer; said positioning service generates a position-related network page and returns it to the subscriber's mobile telephone.
19. System for deactivation of integrity positioning of a mobile telephone in a communications network for mobile telephones and in relation to a positioning service provider, characterized in that it contains the following steps: a subscriber in said communications network connects to a first network page at said positioning service provider in an open computer network, which offers a positioning service; said subscriber activates a positioning procedure by sending a request to said positioning service; said positioning service converts said subscriber's unique user information at said positioning service provider into a service alias; the positioning service provider's network computer requests said subscriber's position from a proxy server by means of said service alias; said proxy server, by doing a database look-up, notes that there is no such operator alias existing that corresponds to said service alias; said subscriber is directed to a second network page where choice of an operator occurs; said subscriber is directed to a third network page where entry of the telephone number occurs; said operator checks to make sure that said entered telephone number belongs to said operator; if said check is successful, said operator sends an SMS containing unique information to said entered telephone number; said subscriber receives said SMS and enters said unique information on a fourth network page; the operator makes a second check that said subscriber has correctly entered said unique information; if said second check is successful, said operator converts a unique subscriber identity for said operator into a unique operator alias; said operator forwards said operator alias on to said proxy server; said proxy server saves said service alias along with said operator alias in said database.
20. System according to claim 18, characterized in that said conversion of said unique user information occurs by means of encryption.
21. System according to claim 19, characterized in that said conversion of said unique user information occurs by means of encryption.
22. System according to claim 18, characterized in that said conversion of said unique user information occurs by means of a database look-up.
23. System according to claim 19, characterized in that said conversion occurs by means of a database look-up.
24. System according to claim 18, 20 or 22, characterized in that said conversion of said operator alias occurs by means of decoding.
25. System according to claim 18, 20 or 22, characterized in that said conversion of said operator alias occurs by means of a database look-up.
26. System according to claim 19, 21 or 23, characterized in that said conversion of said subscriber identity occurs by means of encryption.
27. System according to claim 19, 21 , or 23, characterized in that said conversion of said subscriber identity occurs by means of a database.
28. System according to claim 19, 21 , 23 or 26, characterized in that said operator selection is facilitated by using the subscriber's IP address.
29. System according to claim 19, 21 , 23 or 26, characterized in that said operator choice is done automatically by using the subscriber's IP address and knowledge about a particular configuration of the WAP gateway.
30. System according to claim 19, 21 , 23, 26, 27 or 28, characterized in that one or more of said checks of telephone number, said sending of SMS or said second checks takes place at the proxy server.
31. System according to claim 18, 22 or 25, characterized in that said operator alias consists of the subscriber's telephone number.
32. System according to claim 18, 19, 20, 21 , 22, 23, 24, 25, 26, 27 28, 29, 30 or 31 , characterized in that one or more of said proxy server's functions are situated at said positioning service provider.
33. System according to claim 19, 21 , 23, 26, 27 or 28, characterized in that the subscriber, instead of initializing the positioning service, is directed to a network page where said subscriber is positioned manually.
34. System for deactivation of integrity positioning of a mobile telephone in a communications network for mobile telephones and in relation to a positioning service provider, characterized in that it includes the following steps: an operator sends a message to a proxy server containing an operator alias and an order to deactivate the positioning at said positioning service provider for the subscriber corresponding to said operator alias; said proxy server removes the service alias corresponding to said operator alias and said positioning service provider from the database.
35. Process for integrity-protected service usage by a mobile telephone in an operator's communication network for mobile telephones and in relation to a service provider, characterized in that it contains the following steps: a subscriber in said communications network connects to a network page of said service provider in an open computer network, which offers a service; said subscriber activates a service procedure by sending a request intended for said service; information about the subscriber's telephone number is procured in said communications network and inserted into said request; in said request, said telephone number is replaced by the jointly encrypted telephone number and context information, and extra encrypted information said service provider's network computer receives said request; said service provider's network computer requests service information from a proxy server; said request contains said jointly encrypted telephone number and context information, and information regarding said request; said proxy server detects the operator to which said subscriber is connected, by means of said information concerning said request, and switches said request to said operator's service platform; said operator's said service platform extracts the telephone number and context information by decoding said jointly encrypted telephone number and context information; said operator's said service platform validates that said context information is current and that said telephone number is relevant; said operator's said service platform extracts said service information; said operator returns said service information to said proxy server; said proxy server provides said service information to said service provider's network computer; said service provider's network computer uses said service information and generates a reply and returns it to said subscriber.
36. Process for integrity-protected service usage by a mobile telephone in an operator's communications network for mobile telephones and in relation to a service provider, characterized in that it comprises the following steps: a subscriber in said communications network activates a service at said service provider by sending an SMS to a predetermined number; said SMS is handled by said operator's SMSC; information about the subscriber's telephone number is procured in said communications network and inserted into a first protocol used by the SMSC; said first protocol is replaced by a second protocol where said telephone number is replaced by the jointly encrypted telephone number and context information, as well as extra encrypted information; a proxy server handles said SMS by implementing said second protocol and receives a corresponding message; said message contains at least said jointly encrypted said telephone number and context information, said extra encrypted information, and the text from said SMS; said proxy server requests service information from the operator's service platform, containing at least said jointly encrypted telephone number and context information; said operator's said service platform extracts the telephone number and context information by decoding said jointly encrypted telephone number and context information; said operator's said service platform validates that said context information is current and that said telephone number is relevant; said operator's said service platform extracts said service information; said operator returns said service information to said proxy server; said position proxy server sends a request to said service provider's network computer, containing at least said service information; said service provider's network computer generates a reply and returns it to said position proxy server; the proxy server forwards said reply on to said subscriber by sending an SMS.
37. Process according to claim 35, characterized in that said replacement of said jointly encrypted telephone number and context information and extra encrypted information occurs in the WAP gateway.
38. Process according to claim 35, characterized in that said replacement of said jointly encrypted telephone number and context information and extra encrypted information occurs in a separate proxy server.
39. Process according to claim 35, 37 or 38, characterized in that said information concerning said request consists of said request's sender IP address.
40. Process according to claim 36, characterized in that said replacement with a second protocol, where said telephone number is replaced with jointly encrypted telephone number and context information and extra encrypted information, occurs at the SMSC.
41. Process according to claim 36 characterized in that said replacement with a second protocol, where said telephone number is replaced with jointly encrypted telephone number and context information and extra encrypted information, occurs in a separate proxy server.
42. Process according to claim 35, 36, 37, 38, 39, 40 or 41 , characterized in that said service usage is a positioning service usage, said service provider is a positioning service provider, said service is a positioning service, said service information is the position, said proxy server is a position proxy server and said service platform is a positioning platform.
43. Process according to claim 35, 36, 37, 38, 39, 40, 41 or 42 characterized in that said position proxy server is implemented in one of said service provider's network computers.
44. Process according to claim 35, 36, 37, 38, 39, 40, 41 , 42 or 43 characterized in that said context information is the current time.
45. Process according to claim 35, 36, 37, 38, 39, 40, 41 , 42, 43, or 44 characterized in that said extra information consists of said telephone number, encrypted.
46. System for integrity-protected service usage by a mobile telephone in an operator's communications network for mobile telephones and in relation to a service provider, characterized in that it comprises the following steps: a subscriber in said communications network connects to a network page of said service provider in an open computer network, which offers a service; said subscriber activates a service procedure by sending a request intended for said service; information about the subscriber's telephone number is procured in said communications network and inserted into said request; in said request, said telephone number is replaced by the jointly encrypted telephone number and context information, and extra encrypted information; said service provider's network computer receives said request; said service provider's network computer requests service information from a proxy server; said request contains said jointly encrypted telephone number and context information, and information regarding said request; said proxy server detects the operator to which said subscriber is connected, by means of said information concerning said request, and switches said request to said operator's service platform; said operator's said service platform extracts the telephone number and context information by decoding said jointly encrypted telephone number and context information; said operator's said service platform validates that said context information is current and that said telephone number is relevant; said operator's said service platform extracts said service information; said operator returns said service information to said proxy server; said proxy server provides said service information to said service provider's network computer; said service provider's network computer uses said service information and generates a reply and returns it to said subscriber.
47. System for integrity-protected service usage by a mobile telephone in an operator's communications network for mobile telephones and in relation to a service provider, characterized in that it comprises the following steps: a subscriber in said communications network activates a service at said service provider by sending an SMS to a predetermined number; said SMS is handled by said operator's SMSC; information about the subscriber's telephone number is procured in said communications network and inserted into a first protocol used by the SMSC; said first protocol is replaced by a second protocol where said telephone number is replaced by the jointly encrypted telephone number and context information, as well as extra encrypted information; a proxy server handles said SMS by implementing said second protocol and receives a corresponding message; said message contains at least said jointly encrypted said telephone number and context information, said extra encrypted information, and the text from said SMS; said proxy server requests service information from the operator's service platform, containing at least said jointly encrypted telephone number and context information; said operator's said service platform extracts the telephone number and context information by decoding said jointly encrypted telephone number and context information; said operator's said service platform validates that said context information is current and that said telephone number is relevant; said operator's said service platform extracts said service information; said operator returns said service information to said proxy server; said position proxy server sends a request to said service provider's network computer, containing at least said service information; said service provider's network computer generates a reply and returns it to said position proxy server; the proxy server forwards said reply on to said subscriber by sending an SMS.
48. System according to claim 46, characterized in that said replacement of said jointly encrypted telephone number and context information and extra encrypted information occurs in the WAP gateway.
49. System according to claim 46, characterized in that said replacement of said jointly encrypted telephone number and context information and extra encrypted information occurs in a separate proxy server.
50. System according to claim 46, 48 or 49, characterized in that said information concerning said request consists of said request's sender IP address.
51. System according to claim 47, characterized in that said replacement with a second protocol, where said telephone number is replaced with jointly encrypted telephone number and context information and extra encrypted information, occurs at the SMSC.
52. System according to claim 47, characterized in that said replacement with a second protocol, where said telephone number is replaced with jointly encrypted telephone number and context information and extra encrypted information, occurs in a separate proxy server.
53. System according to claim 46, 47, 48, 49, 50, 51 , or 52 characterized in that said service usage is a positioning service usage, said service provider is a positioning service provider, said service is a positioning service, said service information is the position, said proxy server is a position proxy server and said service platform is a positioning platform.
54. System according to claim 46, 47, 48, 49, 50, 51 , 52 or 53, characterized in that said position proxy server is implemented in one of said service provider's network computers.
55. System according to claim 46, 47, 48, 49, 50, 51 , 52, 53 or 54, characterized in that said context information is the current time.
56. System according to claim 46, 47, 48, 49, 50, 51 , 52, 53, 54 or 55, characterized in that said extra information consists of said telephone number, encrypted.
PCT/US2001/048518 2000-06-22 2001-12-14 Mobile positioning using encrypted id in data network messages and using aliases in connection with location based service applications WO2002049380A1 (en)

Priority Applications (6)

Application Number Priority Date Filing Date Title
AU2002230886A AU2002230886A1 (en) 2000-12-14 2001-12-14 Mobile positioning using encrypted id in data network messages and using aliasesin connection with location based service applications
US10/323,579 US7062279B2 (en) 2000-06-22 2002-12-18 Anonymous positioning of a wireless unit for data network location-based services
US11/410,589 US8112099B2 (en) 2000-06-22 2006-04-24 Anonymous positioning of a wireless unit for data network location-based services
US13/339,295 US8548498B2 (en) 2000-06-22 2011-12-28 Anonymous positioning of a wireless unit for data network location-based services
US13/950,222 US8774841B2 (en) 2000-06-22 2013-07-24 Anonymous positioning of a wireless unit for data network location-based services
US14/302,330 US9264858B2 (en) 2000-06-22 2014-06-11 Method and apparatus for providing location-based services

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
SE0004673-0 2000-12-14
SE0004673A SE518889C2 (en) 2000-12-14 2000-12-14 Process for integrity positioning of a mobile telephone in a communications network for ensuring integrity of position information regarding mobile station in a communication network for mobile stations
SE0100147-8 2001-01-17
SE0100147A SE0100147L (en) 2001-01-17 2001-01-17 Method and system for positioning a mobile station without external knowledge of its identity

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
USPCT/US01/49812 Continuation-In-Part 2000-06-22 2001-10-22

Related Child Applications (2)

Application Number Title Priority Date Filing Date
USPCT/US01/49812 Continuation-In-Part 2000-06-22 2001-10-22
US10/323,579 Continuation-In-Part US7062279B2 (en) 2000-06-22 2002-12-18 Anonymous positioning of a wireless unit for data network location-based services

Publications (1)

Publication Number Publication Date
WO2002049380A1 true WO2002049380A1 (en) 2002-06-20

Family

ID=26655342

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2001/048518 WO2002049380A1 (en) 2000-06-22 2001-12-14 Mobile positioning using encrypted id in data network messages and using aliases in connection with location based service applications

Country Status (2)

Country Link
AU (1) AU2002230886A1 (en)
WO (1) WO2002049380A1 (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003065753A1 (en) * 2002-01-29 2003-08-07 Nokia Corporation Provision of location information
WO2004021719A1 (en) * 2002-08-14 2004-03-11 Agency For Science, Technology And Research A method of generating an authentication
WO2005002272A1 (en) * 2003-06-27 2005-01-06 Telefonaktiebolaget Lm Ericsson (Publ) A method and system for subscriber integrity in a mobile communications system
EP2076073A1 (en) 2007-12-31 2009-07-01 Société Française du Radiotéléphone-SFR Method for concealing cell identifiers or area codes for locating a mobile network in relation to a mobile terminal
US8090357B2 (en) 2002-11-20 2012-01-03 Koninklijke Philips Electronics N.V. Method of distributing the location data of a mobile device
US9271146B2 (en) 2014-03-20 2016-02-23 International Business Machines Corporation Mobile privacy information proxy
CN106922016A (en) * 2015-12-24 2017-07-04 中国电信股份有限公司 Localization method, equipment and system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6038442A (en) * 1997-03-24 2000-03-14 Nec Corporation Communication system
US6097938A (en) * 1997-07-11 2000-08-01 Northern Telecom Limited Authentication and tracking system for a cellular telephone
US6131067A (en) * 1995-10-09 2000-10-10 Snaptrack, Inc. Client-server based remote locator device
US6138003A (en) * 1997-11-26 2000-10-24 Ericsson Inc. System and method for authorization of location services

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6131067A (en) * 1995-10-09 2000-10-10 Snaptrack, Inc. Client-server based remote locator device
US6038442A (en) * 1997-03-24 2000-03-14 Nec Corporation Communication system
US6097938A (en) * 1997-07-11 2000-08-01 Northern Telecom Limited Authentication and tracking system for a cellular telephone
US6138003A (en) * 1997-11-26 2000-10-24 Ericsson Inc. System and method for authorization of location services

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003065753A1 (en) * 2002-01-29 2003-08-07 Nokia Corporation Provision of location information
US7321778B2 (en) 2002-01-29 2008-01-22 Nokia Corporation Provision of location information
US8019361B2 (en) 2002-01-29 2011-09-13 Nokia Corporation Provision of location information
WO2004021719A1 (en) * 2002-08-14 2004-03-11 Agency For Science, Technology And Research A method of generating an authentication
US8090357B2 (en) 2002-11-20 2012-01-03 Koninklijke Philips Electronics N.V. Method of distributing the location data of a mobile device
WO2005002272A1 (en) * 2003-06-27 2005-01-06 Telefonaktiebolaget Lm Ericsson (Publ) A method and system for subscriber integrity in a mobile communications system
EP2076073A1 (en) 2007-12-31 2009-07-01 Société Française du Radiotéléphone-SFR Method for concealing cell identifiers or area codes for locating a mobile network in relation to a mobile terminal
FR2925997A1 (en) * 2007-12-31 2009-07-03 Radiotelephone Sfr METHOD OF MASKING CELL IDENTIFIERS OR CODES OF LOCATION AREAS OF A MOBILE NETWORK RELATIVE TO A MOBILE TERMINAL
US9271146B2 (en) 2014-03-20 2016-02-23 International Business Machines Corporation Mobile privacy information proxy
US9679159B2 (en) 2014-03-20 2017-06-13 International Business Machines Corporation Mobile privacy information proxy
CN106922016A (en) * 2015-12-24 2017-07-04 中国电信股份有限公司 Localization method, equipment and system
CN106922016B (en) * 2015-12-24 2019-11-29 中国电信股份有限公司 Localization method, equipment and system

Also Published As

Publication number Publication date
AU2002230886A1 (en) 2002-06-24

Similar Documents

Publication Publication Date Title
US6421339B1 (en) Methods and systems for call forwarding
EP2039110B1 (en) Method and system for controlling access to networks
US7624429B2 (en) Method, a network access server, an authentication-authorization-and-accounting server, and a computer software product for proxying user authentication-authorization-and-accounting messages via a network access server
US20040152446A1 (en) Method for providing network access to a mobile terminal and corresponding network
EP1313286A2 (en) Method and apparatus for protecting the identities of wireless mobile devices
US20030028599A1 (en) Method and system for a communication scheme over heterogeneous networks
US20020007411A1 (en) Automatic network user identification
US7746824B2 (en) Method and apparatus for establishing multiple bandwidth-limited connections for a communication device
EP1461741A1 (en) System and method for providing subscription content services to mobile devices
US20070192838A1 (en) Management of user data
US20060190601A1 (en) Localized authentication, authorization and accounting (AAA) method and apparatus for optimizing service authentication and authorization in a network system
CN101018128A (en) Removable user identity module authenticating to the Internet protocol multi-media sub-system (IMS)
WO2002049380A1 (en) Mobile positioning using encrypted id in data network messages and using aliases in connection with location based service applications
WO2006056113A1 (en) System for enabling communication between computers and mobile telephones
EP1687934B1 (en) Apparatus for mediating in management orders
US20040064418A1 (en) Method and system for controlled online access from a terminal user to a content service
EP1492306A2 (en) System and method for anonymous access at an Internet address, and module for the system
EP1488657B1 (en) A method for exchanging user-specific data from a mobile network to a service application of an external service provider using a unique application user id code
JP3973357B2 (en) Port number convergence, deployment method and gateway server thereof
EP1383269A1 (en) Method and system for controlled online access from a terminal user to a content service
KR20020005244A (en) secure service system and method of supporting secure service and secure service communications system
EP1322096A2 (en) Method and system for addressing a communication device
EP1383277A1 (en) Method and system for controlled online access from a terminal user to a content service
EP1983696A1 (en) Mobilized inhouse network and method for operating such a network

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PH PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP