Telecommunications – Radiotelephone system – Auxiliary data signaling
Reexamination Certificate
1997-12-19
2001-05-01
Trost, William G. (Department: 2681)
Telecommunications
Radiotelephone system
Auxiliary data signaling
C455S433000, C455S445000, C455S560000, C455S519000, C709S225000, C709S226000, C320S118000, C320S118000, C320S118000
Reexamination Certificate
active
06226523
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Technical Field of the Invention
The present invention pertains in general to a method and apparatus for filtering data packets transmitted across a communication network and, more particularly, to a method and apparatus for filtering the transmission of data packets between a mobile station in a mobile radio network and an Internet Protocol (IP) type network.
2. Description of the Related Art
Packet data services are being introduced at an increasing rate into mobile radio networks. Packet data services provide an efficient connection between digital terminal equipment connected to mobile stations in a mobile radio network and remote hosts connected to the Internet. Using a packet data service, data is transmitted between the remote host and the digital terminal equipment as discrete data packets. The use of discrete data packets allows a mobile radio network operator to convey data from several mobile stations on a single channel and, further, to charge mobile station subscribers based on the quantity of data transmitted across the mobile radio network rather than on the duration of a connection between the mobile station and the remote host.
Using the packet data service, the mobile station subscriber connects digital terminal equipment, such as a personal computer, to the Internet or an Internet-like network such as an Intranet. This allows the mobile station subscriber to access remote hosts on the Internet and, in turn, allows remote hosts on the Internet to access the digital terminal equipment connected to the mobile station. For various reasons, mobile station subscribers and the mobile radio network operator may desire to control the flow of the IP traffic both to and from the mobile station. For example, since the mobile station subscriber is charged for data packets sent to the mobile station subscriber by a remote host, the mobile station subscriber may wish to filter IP traffic directed to the digital terminal equipment to certain authorized remote hosts.
In a similar fashion, the mobile radio network operator may wish to individually filter the ability of each mobile station to access remote hosts. For example, the mobile radio network operator may wish to create a virtual network, wherein a select group of mobile station subscribers and remote hosts have access to the virtual network. By establishing such virtual networks, the mobile radio network operator can charge different tariffs to each mobile station subscriber based on the subscriber's membership in one or more of the virtual networks.
Several techniques currently exist for controlling the transmission of data between computing devices over a network. These techniques apply both to hosts on the same network as well as to hosts located on different networks. For example, firewalls are commonly used as barriers between an internal network and external hosts to prevent the internal network from unauthorized access by the external hosts or others. The firewall also prevents the transmission of data from the external host to hosts on the internal network.
Other techniques for filtering traffic on a communication network involve filtering the communication of data to certain segments of a single or multiple communication networks. Such techniques are based on the address of the destination host and apply indiscriminately to all hosts. These filtering techniques are designed to increase the bandwidth of the communication network by filtering communication of the data to only those segments of the communication network necessary for the data to reach the destination host from the originating host.
It would be advantageous to devise a method and apparatus to individually filter IP traffic for each mobile station in a mobile radio network so as to filter communication between digital terminal equipment connected to a mobile station on a mobile radio network and remote hosts located on an Internet. It would also be advantageous if such a method and apparatus allowed both the mobile station subscriber and the mobile radio network operator to independently establish access privileges to and from the digital terminal equipment.
SUMMARY OF THE INVENTION
The present invention comprises an IP traffic filter for a mobile radio network. A database stores access privileges for the mobile station to access a remote host, and access privileges for the remote host to access the mobile station. A processor receives data from the mobile station addressed to a remote host. The processor accesses a local copy of the database to determine whether the mobile station is allowed to access the remote host, and denies access if access to the remote host by the mobile station is unauthorized. Otherwise, the processor allows access to a remote host if access to the remote host is authorized.
The processor also receives data from a remote host addressed to the mobile station, and determines whether the remote host is allowed to access the mobile station. The processor denies access to the mobile station if the remote host is unauthorized. Otherwise, the processor allows the remote host to access the mobile station if access to the mobile station by the remote host is authorized.
REFERENCES:
patent: 4823389 (1989-04-01), Wurenberger
patent: 5068916 (1991-11-01), Harrison et al.
patent: 5159592 (1992-10-01), Perkins
patent: 5351237 (1994-09-01), Shinohara et al.
patent: 5570366 (1996-10-01), Baker et al.
patent: 5678170 (1997-10-01), Grube et al.
patent: 5793762 (1998-08-01), Penners et al.
patent: 5884033 (1999-03-01), Duvall et al.
patent: 5889770 (1999-03-01), Jokiaho et al.
patent: 5896369 (1999-04-01), Warsta et al.
patent: 5924030 (1999-07-01), Rautiola et al.
patent: 5983270 (1999-11-01), Abraham et al.
patent: 6021327 (2000-02-01), Nguyen et al.
patent: 0 658 837 (1994-12-01), None
patent: 0 812 085 (1997-12-01), None
EPO Search Report, Sep. 10, 1998, File No. RS 100461 US.
Bellovin, et al., “Network Firewalls”, IEEE Communications Magazine, Sep. 1994.
Sugiyama, et al., “Packet Routing Function on the PDC Mobile Packet Data Communication Network”, IEEE International Conference on Communications, Jun. 23, 1996.
Yi-an Chen, “A Survey Paper on Mobile IP”, from ftp://ftp.netlab.ohio-state.edu/pub/jain/courses/cis788-95/mobile_ip/index.html, Aug. 1995.
Herlitz Anders
Karlsson Torgny
Jenkens & Gilchrist P.C.
Persino Raymond B.
Telefonaktiebolaget LM Ericsson (publ)
Trost William G.
LandOfFree
Internet protocol traffic filter for a mobile radio network does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Internet protocol traffic filter for a mobile radio network, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Internet protocol traffic filter for a mobile radio network will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2540805