FI118288B - Electronic mail conveyance method to mobile terminal, involves generating service activation code having identifier of mobile terminal, encryption and checksum information, and conveying it through secure channel to host system - Google Patents

Abstract

A connectivity function (120) is operationally coupled to e-mail server (108) and access network (114). An e-mail encrypted by the connectivity function, is decrypted at the mobile terminal (102) using encryption information. A generated service activation code including an identifier (124D) of mobile terminal, encryption and checksum information, is conveyed through secure channel to host system (100).

Description

i ', 1 1 8288

Security in the Mobile Email Service

Background of the Invention

The invention relates to methods and sets of software for establishing security in an email service between an email server and a mobile station 5.

Security in an email service is achieved by using cryptographic techniques in which traffic on a potentially insecure channel is encrypted using cryptographic information, commonly referred to as encryption keys. The problem underlying the invention relates to the sharing of such encryption-10 formation. Prior art techniques for sharing encryption information are generally based on public key encryption techniques such as Diffie-Helleman. One problem with this approach is that the parties have to trust the underlying mobile network and its operator, which they are surprisingly reluctant to do. Another problem is that mobile user interfaces are generally small and limited.

Brief Description of the Invention

It is therefore an object of the invention to provide a method and a set of software implementing the method to alleviate the above problems. The object of the invention is achieved by a method and a set of software which is characterized by: V: 20 what is stated in the independent claims. The dependent claims disclose preferred embodiments of the invention.

* ·

The invention is based, in part, on the discovery of a surprising problem. which has been identified as a result of a comprehensive market investigation.

Although customers of mobile networks normally rely on their mobile operators for voice calls, they are surprisingly reluctant to rely on their mobile operators for data services, such as e-mail services.

• · ·

An aspect of the invention is a method of transmitting mail traffic between an email server and a mobile station when a mobile station. has an email address under a mail server and a # ·] deep terminal identity and temporary identity on the access network. The method comprises the following steps: - The connection function, which acts as an intermediary between the email server and 35 mobile stations, is operatively connected to the email server and the access network. The connection function is arranged to encrypt the e-mail traffic to the mobile station and to open the encryption of the e-mail traffic from the mobile station. In order to encrypt and unlock email traffic, the connection function requires encryption-5 information.

- The necessary encryption information is developed by the mobile station.

The generated encryption information as well as the mobile station identifier is transported over a secure channel to the communication function, either after authentication of the entity carrying the encryption information or by utilizing the entity authentication already performed.

The encryption information and the mobile station identifier are combined into a service activation code, which further comprises checksum information for detecting an incorrectly entered service activation code.

According to one embodiment of the invention, a secure channel for transmitting cryptographic information is implemented as follows. The user of the mobile station may have a host system, such as an office terminal, which is connected to the communication function over a private network. The private network requires authentication to grant users access. In this embodiment, the mobile station generates encryption information and displays it on its display, and the user enters the encryption information into the host system connected to the private network.

. . Alternatively, the mobile user may have a trust relationship with another person, such as a support person authenticated in a private network. The trust relationship can be established, for example, by a voice call, where the · · · support person recognizes the voice of the mobile user. The mobile user sane- * ·. · · 25 then obtains the encryption information to the support person, who inputs it to the private network through a hosted system.

: ***: The secure channel from the mobile station to the communication function thus comprises a short segment through which the encryption information is transmitted to an off-line human user, who may be a mobile user or someone who trusts him. The off-• · · [·· .. 30 line segment is a segment that is disconnected from public networks and is immune to ♦ · T interception or eavesdropping on public networks. The off-line segment may be implemented visually so that the mobile station displays the encryption information on its display and the user enters it into the terminal of the private network.

; ! ·, Alternatively, the encryption information may be carried on removable memory or • * · 35 short-range microwave, one example of which is known as Bluetooth ™. The secure channel also comprises a segment covered by the private network, segment I-1-1 8288. The secure channel may also comprise a segment covered by a conventional voice call if the mobile station is far from a private network terminal.

BRIEF DESCRIPTION OF THE DRAWINGS

The invention will now be described in more detail with reference to the preferred embodiments, with reference to the accompanying drawings, in which:

Figure 1 shows an exemplary system architecture in which the invention can be used; and

Figure 2 illustrates the procedure steps for establishing a secure connection.

DETAILED DESCRIPTION OF THE INVENTION

The invention is applicable to virtually any e-mail system architecture. Figure 1 illustrates an exemplary system architecture supported by the holder of this application. Reference numeral 100 designates a host system capable of sending and receiving e-mails. Reference numeral 102 indicates a mobile station which is also capable of sending and receiving e-mails. E-mail messages may start and end at external e-mail terminals, one of which is designated by reference numeral 104. The invention seeks to improve cooperation between host system 100 and mobile station 102 so that they can use as many e-mail accounts as 20 as possible. This means, for example: ***: that users of external e-mail terminals 104 do not need to know whether to use the host system 100 when sending or receiving e-mail; the user is actually a host system 100 or a mobile station 102 messaging • · · ·:. *. weather by email. Transparency also means that the processing of e-mail 25 in the mobile station 102 has as much effect as the corresponding processing of the e-mail in the host system 100. For example, e-mails read by the mobile station 102 should preferably be marked as read in the host system.

Reference numeral 106 denotes a data network, such as an Internet Protocol (IP): 30 network, which may be the general Internet or its closed subnets, commonly referred to as * intranets or extranets. Reference number 108 indicates an email * * ·. ·. server with associated databases. Incoming and outgoing e-mail may have separate e-mail servers and / or server addresses. An e-mail account is stored in the database, * which can be addressed through an e-mail address and is displayed to the 35 e-mail account owners as a mailbox. To communicate with mobile stations 102 118288, data network 106 is connected through gateway 112 to access network 114. The access network comprises a plurality of base stations 116 for providing wireless coverage over the wireless interface 102 to mobile stations 102.

Reference numeral 110 designates a communication center that is largely responsible for providing the above-mentioned transparency between the host system 100 and the mobile station 102. The system architecture also comprises a connection function 120 for pushing e-mail messages to the mobile station. In the embodiment shown in Figure 1, the communication function 120 is considered to be a physically integrated but logically distinct element of the communication center 110.

Mobile station 102 may be a pocket or briefcase computer, a smart phone or the like with a radio interface. Depending on the implementation, the potential host system 100 may assume different roles. In some embodiments, the host system 100 is optional and may be a conventional office computer that functions only as the primary computer for the mobile station user and as an email-15 terminal. In other embodiments, the host system may serve as a platform for single-user communication, in addition to being an office computer. In still other embodiments, the host system 100 may comprise a communication function for multiple users. So it's a server instead of a normal office computer.

Here, it is assumed that the access network 114 is able to establish and maintain a tunnel 122 between the communication center 110 and the mobile station 102. , it. For example, a tunnel may be formed using the GPRS Tunneling Protocol (GTP) or its subsequent derivatives, or any other suitable tunneling protocol • · ·: · *.

· * · J ...: Figure 1 illustrates an embodiment in which communication center 110 largely • ·: 25 is responsible for transporting e-mail to / from mobile station 102 via access network 114, while separate communication function 120 is responsible for security issues. The connection function 120 may be physically connected or co-located to the communication center, but they are logically separate elements. In fact, one advantage of the separate communication function 120 is that it can be separated from the communication center. ♦ ··. For example, in a company that owns a host system 100 or '· [email server 108.] For a small number of users, the connection function 120 can be installed on each host system 100, or the host system 100 can be interpreted as a separate server. installed to serve multiple users. It is even possible to implement some or all of the above options.

This means, for example, that there are one or more communication centers 110 that provide their services to a plurality of network operators, or may be a communication center dedicated to each network operator (to some extent analogous to short message centers). Each communication center 110 may have an integrated communication function 120 to support users who do not wish to install a separate communication function on the host system 100. For users installing a separate communication function 120 on their host systems 100, such communication functions override the communication center 110 and direct communication.

The actual system naturally has a large number of mobile stations 102 and tunnels 122. In order to keep track of which email account and 10 which tunnel belongs to which mobile station, the communication center 110 and the connection function jointly maintain an association 124, 124 'for each supported mobile station. Each association 124, 124 'combines three fields, namely an email address 124A assigned to a mobile station or a user thereof, an encryption information 124C, and a temporary wireless identifier 124D 15 of the mobile station in the access network. The embodiment shown in Figure 1 also uses the terminal identifier 124B, which may be the same as the email address 124A of the mobile station 102, in which case the association 124 actually associates three information elements. Alternatively, the terminal identifier 124B may be an identifier assigned to the mobile station. According to a preferred embodiment, the terminal identifier 124B is a mobile device identifier or one. . derivative. The encryption information 124C is preferably associated with the mobile device device identifier and is generated by the mobile station itself to ensure that incoming encrypted e-mails cannot be opened by any terminal other than the one used · ♦ · Create encryption information 124C. The temporary wireless identifier 124D may be the identifier of the tunnel 122 to the mobile station. The tunnel identifier is not permanent in the path and is only known when the tunnel exists.

Figure 2 illustrates a secure e-mail deployment technique in which the host system 100 authenticates the user of the mobile station 102. In step 2-1, the client software of the mobile station 102 generates and displays a service activation code.

[···. 30 In step 2-2, the host system 100 authenticates the person entering the service activation code. Instead of a separate authentication step, the technology may rely on the authentication performed by the email system below, such as a user * · · name and password combination. In step 2-3 y, \. \ 35 the service activation code is then transmitted off-line to the host system 100. The idea of off-line communication is to remove the eavesdropping before a secure traffic channel can be established. The service activation code may be entered, for example, manually or via a local connection such as a wired or optical connection, or a short range wireless connection such as Bluetooth ™. Finally, in step 2-4, the service activation code of the mobile station 5 is registered 120.

The service activation code is closely related to the encryption key used for subsequent communication between the communication function of the communication center 110 and the mobile station 102. The service activation code and the encryption key may be identical, or one may be a subset of the other, or the encryption key may be derived from the balloon activation code by some preferably unpublished algorithm. The fact that the service activation code is closely related to the encryption key ensures that the terminal used in the authentication process is the same as the one used to read the email later.

The idea of transmitting the service activation code to the connection function 120 via the host system 100 thus solves both the security and user interface problems mentioned above. If there is no host system 100 that can authenticate the mobile station and its user, instead, the user can input the deployment data to the connection function via some suitable connection. User-entered setup data can be verified by sending a 20-oscillation test email and trying to read it. If successful, it will be considered as authentication. Yet another way is to pass the service activation code *. · *. * 'To a dedicated support person who performs authentication (for example, by recognizing the user's face or voice) and inputs the service activation code to the connection function * ... · * 120. The association function 120 now stores the association between the email address 124: 124A and the encryption information 124C (element 124 of FIG. 1).

The mobile device generates a service activation code preferably based on the encryption key, the mobile identifier and the checksum. The advantage of the checksum is that invalid service activation codes can be detected, taking into account that the service activation code can be transported in the channels. ** ·. 30 who are immune to electronic eavesdropping but very susceptible to human error. For example, the service activation code can be read visually * · ·.

* «· * From the display of the mobile station and enter it manually at another terminal.

· · ·

The identifier of the mobile station may be its IMSI, IMEI, MSISDN or other network identifier. Encoding the mobile identifier and the encryption key ·· · 35 into the service activation code provides the advantage that the connection function 120 needs both to communicate with the mobile station. The connection function 120 requires a mobile station identifier to send data to the mobile station. The connection function 120 needs an encryption key because it is a mobile unit counterpart for encryption. As soon as the connection function 120 learns the identity of the mobile station and the encryption key, it can send a first message to the mobile station including service activation settings, after which it can start sending user traffic such as new e-mail messages, calendar information and the like.

As mentioned in the description of Figure 1, the connection function 120 has several possible implementations. It can be installed, for example, as an integrated but logically separate element in a public communications network, such as the Internet, in a communication center. It can also be installed on a company's private network inside a firewall. It can be installed as a process on each mobile user's office computer, or a single shared server can support all of the company's mobile users, to some extent analogous to the company's email-15 server. The advantages of the invention are most easily seen when the connection function is dedicated to a particular company and is located inside the company's firewall. This is because this implementation has multiple communication functions and the mobile station has no prior knowledge of which connection function it should connect to. One rough solution to this problem is to request information from the user, but input of ek-20 cact configuration information via a small interface is t # one of the problems this invention attempts to solve.

• · · t i «» · M · 9 0 9 • · • ♦ • · · • • * • ·· ’• • * I ··· * ·· f • t • · ·.

»» I

* ·· 0 040 • 0 ·· 00 0 0 0 0 0 0 09 0 0 0 0 0 0 0 9 0 00 • · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · ··· ♦ ♦ · · ··· · * ·

Claims (5)

A method of transporting e-mail traffic between an e-mail server (108) and a mobile station (102), when the mobile station has an e-mail address (124A) under the e-mail server and a permanent terminal identity (124B) and a temporary identity (124D) in an access network (114); characterized in that: - a contact function (120) is installed which is functionally connected to the e-mail server (108) and the access network (114), where the contact function (120) is arranged to encrypt the e-mail traffic to the mobile telephone. la the station and decrypt the e-mail traffic from the mobile station using encryption information (124C); - at the mobile station, (2-1) an activation code is generated for a service which includes the mobile station identifier (124D), encryption information (124C) and check sum information; - the activation code for the service is conveyed (2-3, 2-4) via a secure channel (2-3) to a verification terminal (100); - the mobile station identifier (124D) and the encryption information (124C) are conveyed to the contact function (120). 20 2. A method according to claim 1, characterized in that the encryption information is based on the mobile station's equipment identity. The method according to claim 1, characterized in that the said encryption information transmission via a secure channel comprises the presentation of the encryption information on the mobile station. screen and information: feed it into the verification terminal. «· T ·· 4. A method according to claim 1, characterized in that said transmission of the encryption information via a secure channel comprises. disseminating the encryption information via a removable memory. • · · · \ Γ: 5. The amount of computer program on at least one substrate, characterized in that the program amount comprises:. - a first routine for causing the mobile station to generate an activation code for a service and transmit it to an off-line channel (2-3), which activation code for the service comprises the mobile station. station identifier (124D), encryption information (124C) and check sum information; - a second routine for receiving the activation code for the service from the off-line channel at a verification terminal (100); 5. a third routine for transporting the mobile station identifier (124D) and encryption information (124C) to a contact function (120) functionally coupled between an e-mail server (108) and an access network (114) serving the mobile station and 10. a plurality of fourth routines for forming an encrypted data channel (122) between the contact function (120) and the mobile station (102) on the basis of the mobile station identifier (124D) and encryption information (124C). · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · • · 1 ·· 1 · ··· • »• · ··· ·· • · ··· 1 · • · • ♦ ♦ · · · · · ·· · · · · · · · · · ·. - · • · «« «« «·· · ··. '' • ♦