CA2358129A1 - Method and system for delivering confidential information - Google Patents
Method and system for delivering confidential information Download PDFInfo
- Publication number
- CA2358129A1 CA2358129A1 CA002358129A CA2358129A CA2358129A1 CA 2358129 A1 CA2358129 A1 CA 2358129A1 CA 002358129 A CA002358129 A CA 002358129A CA 2358129 A CA2358129 A CA 2358129A CA 2358129 A1 CA2358129 A1 CA 2358129A1
- Authority
- CA
- Canada
- Prior art keywords
- information
- digital wireless
- confidential information
- wireless device
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M15/00—Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/2866—Architectures; Arrangements
- H04L67/30—Profiles
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/51—Discovery or management thereof, e.g. service location protocol [SLP] or web services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/52—Network services specially adapted for the location of the user terminal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/30—Definitions, standards or architectural aspects of layered protocol stacks
- H04L69/32—Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
- H04L69/322—Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
- H04L69/329—Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M15/00—Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
- H04M15/48—Secure or trusted billing, e.g. trusted elements or encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M15/00—Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
- H04M15/51—Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP for resellers, retailers or service providers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M15/00—Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
- H04M15/70—Administration or customization aspects; Counter-checking correct charges
- H04M15/73—Validating charges
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/02—Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/24—Accounting or billing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/104—Grouping of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M2215/00—Metering arrangements; Time controlling arrangements; Time indicating arrangements
- H04M2215/01—Details of billing arrangements
- H04M2215/0156—Secure and trusted billing, e.g. trusted elements, encryption, digital signature, codes or double check mechanisms to secure billing calculation and information
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M2215/00—Metering arrangements; Time controlling arrangements; Time indicating arrangements
- H04M2215/20—Technology dependant metering
- H04M2215/2026—Wireless network, e.g. GSM, PCS, TACS
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M2215/00—Metering arrangements; Time controlling arrangements; Time indicating arrangements
- H04M2215/22—Bandwidth or usage-sensitve billing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M2215/00—Metering arrangements; Time controlling arrangements; Time indicating arrangements
- H04M2215/32—Involving wireless systems
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M2215/00—Metering arrangements; Time controlling arrangements; Time indicating arrangements
- H04M2215/54—Resellers-retail or service providers billing, e.g. agreements with telephone service operator, activation, charging/recharging of accounts
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M2215/00—Metering arrangements; Time controlling arrangements; Time indicating arrangements
- H04M2215/70—Administration aspects, modify settings or limits or counter-check correct charges
- H04M2215/7072—Validate charges
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/18—Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
A method and system for the delivery of confidential information upon the receipt of non-repudiable authorization in a wireless environment is described herein.
Description
Method and Svstem for Delivering Confidential Information FIELD OF THE INVENTION
[0001 ] The present invention relates generally to the delivery of confidential information in a, wireless network. More particularly, the present invention relates to a trusted party holding confidential information that is released to application providers upon authorisation of a user.
BACKGROUND OF THE INVENTION
[0001 ] The present invention relates generally to the delivery of confidential information in a, wireless network. More particularly, the present invention relates to a trusted party holding confidential information that is released to application providers upon authorisation of a user.
BACKGROUND OF THE INVENTION
[0002] The area of mobile Internet services is an emerging area of information service delivery. It is now possible to provide services to consumers via a wireless device that are appropriate for their. This is accomplished by using the cellular infrastructure to determine the location of the subscriber using such technologies such as the global position system or signal triangulation. This information, along with other confidential information such as billing address and user name, is then made available to application service providers who ultimately provide the location based service. This leads to a problem of protecting the privacy of the consumer and only releasing his location to services to which he has subscribed or purchased. Additionally, the subscriber should be informed that a service he is about to access requires the release of confidential information and have the option of accepting or rejecting the request to release information.
[0003] It is, therefore, desirable to provide a system and method for the delivery of confidential information from the digital cellular provider to an application provider after obtaining the authorisation, preferably a non-repudiable authorisation, of the user of the digital cellular device.
SUMMARY OF THE INVENTION
SUMMARY OF THE INVENTION
(0004] It is an object of the present invention to obviate or mitigate at least one disadvantage of the prior art.
[0005] In a first aspect, the present invention provides a method of delivering confidential information to an application provider through an information gateway on a digital wireless network including the steps of receiving a request for confidential information, examining a subscriber information database to determine if a subscription with the application provider exists, segregating the requested information into approved for transmission and non-approved for transmission sets by examining digital wireless network preferences, the subscriber information database and an application provider database, requesting through a non-repudiation centre, that the user of the digital wireless device authorise the release of the non-approved information, receiving through the non-repudiation centre, authorisation from the user of the digital wireless device to release the previously non-approved information and providing to the application provider, the requested confidential information.
[0006] Other aspects and features of the present invention will become apparent to those ordinarily skilled in the art upon review of the following description of specific embodiments of the invention in conjunction with the accompanying figures.
BRIEF DESCRIPTION OF THE DRAWINGS
BRIEF DESCRIPTION OF THE DRAWINGS
[0007] Embodiments of the present invention will now be described, by way of example only, with reference to the attached Figures, wherein:
Fig. l is an illustration of the system of the present invention.
DETAILED DESCRIPTION
Fig. l is an illustration of the system of the present invention.
DETAILED DESCRIPTION
[0008] Generally, the present invention provides a method and system for obtaining non-repudiable authorisation for providing confidential information about a digital wireless subscriber to an application provider.
[0009] The invention consists of a digital wireless device 100, such as a digital cellular phone, that is assumed to have a user. Application provider (AP) 104 provides a service to the user but requires the release of confidential information to deliver service.
AP 104 may be on the public Internet or a private network.
AP 104 may be on the public Internet or a private network.
[0010] Digital wireless network 102 is a wireless network operator that delivers data and information services to digital wireless device lOCI. Digital wireless network 102 includes of a number of elements as illustrated. Included in the elements are a digital wireless network preferences database 106 which contains. a definition of carrier policies regarding release of confidential information related to digital wireless device 100. For example, digital wireless network preferences database :L06 may assign each piece of confidential information a status of "never release" or "subscriber approve".
"Never release" indicates that AP 104 never has access to the specific data.
"Subscriber approve"
indicates that the subscriber must approve the release of the confidential data to AP 104 prior to the information being delivered. Associated with the network preferences database 106 is an application provider database 108 containing the.
information that AP
104 requires to deliver a service.
"Never release" indicates that AP 104 never has access to the specific data.
"Subscriber approve"
indicates that the subscriber must approve the release of the confidential data to AP 104 prior to the information being delivered. Associated with the network preferences database 106 is an application provider database 108 containing the.
information that AP
104 requires to deliver a service.
[0011] Another element in digital wireless network is a subscriber information database 110. The subscriber information database 110 includes information associated with the digital wireless device 100 including subscriber preferences which define policies to be followed regarding release of confidential information associated with the digital v%ireless device 100. Typically the user of digital wireless device 100 will place limits on the information that is releasable to AP 104. For example., for each piece of confidential information the user may specify "never release", "release on subscription purchase", "requires approval on subscription purchase" or "requires approval on each access". A
"never release" status indicates that the user would never approve the release of specific information. "Release on subscription purchase," indicates digital wireless network 102 should release the confidential information to APs from v~hom the user has purchased a service and this release of confidential information does not require specific user approval.
"Requires approval on subscription purchase," indicates that the user must approve the release of the specific information, preferably through a non-repudiation technique, at the time a subscription is purchased. "Requires approval on each access" indicates that user must be informed each time the confidential information is requested. The above description of the subscriber preferences is indicative of the types of algorithms that can be used to restrict the releases of conf dential information. One skilled in the art could devise a number to extensions to the algorithms that enhance the capabilities of the subscriber to control the release of confidential information. Other information that may be contained in the subscriber information database includes subscription information.
The subscription information includes a summary of the services to which the subscriber has subscribed. For each subscription, a list of the confidential information which the subscriber has approved release to AP 104 is maintained. The subscription information may also contain data such as subscription duration; number of uses permitted and cost of access.
"never release" status indicates that the user would never approve the release of specific information. "Release on subscription purchase," indicates digital wireless network 102 should release the confidential information to APs from v~hom the user has purchased a service and this release of confidential information does not require specific user approval.
"Requires approval on subscription purchase," indicates that the user must approve the release of the specific information, preferably through a non-repudiation technique, at the time a subscription is purchased. "Requires approval on each access" indicates that user must be informed each time the confidential information is requested. The above description of the subscriber preferences is indicative of the types of algorithms that can be used to restrict the releases of conf dential information. One skilled in the art could devise a number to extensions to the algorithms that enhance the capabilities of the subscriber to control the release of confidential information. Other information that may be contained in the subscriber information database includes subscription information.
The subscription information includes a summary of the services to which the subscriber has subscribed. For each subscription, a list of the confidential information which the subscriber has approved release to AP 104 is maintained. The subscription information may also contain data such as subscription duration; number of uses permitted and cost of access.
[0012] Associated with the subscriber information is a confidential information database 112. Confidential information database 112 contains information about the user of digital wireless device 100, such as accounting ini:ormation, and may include geographic information. It is the information in the confidential information database 112 that AP 104 requests from digital wireless network 102.
[0013] Information access gateway 114 provides AP 104 with information from the confidential information database 112. Information access gateway 114 optionally has a secure and authenticated communications channel with AP 104, and only releases information from the confidential information database 112 upon receiving instruction to do so from the user of digital wireless device 100.
[0014] The non-repudiation centre 116 obtains non-repudiable user authorisation for the release of confidential information from the confidential information database 112.
Optionally, prior to seeking approval, the non-repudiation centre informs the user of digital wireless device 100 of the confidential information that will be released. Non-repudiable proof of the authorisation can be obtained by the digital wireless network 102 in a number of ways that are known to one of skill in the art. The identity of a device acting on digital wireless network 102 is authenticated at the beginning of the interaction between digital wireless network 102 and digital wireless device 100, making the collection of identity information in the approval process a simple task.
Additionally, there presently exist methods of authenticating the user of the digital wireless device 100; in addition to simply authenticating the digital wireless device 100, these methods can be employed to provide non-repudiable evidence that the transfer of the confidential information was approved by the user of digital wireless device 100. The non-repudiation centre 116 can optionally interact with the subscriber information database 110 to update the information containing subscription infornmtion related to AP 104. In a presently envisioned embodiment the non-repudiation centre can interact with AP 104 and digital wireless device 100, not solely for obtaining non-repudiabl.e authorisation for the transfer of confidential information, but could also be used to obtain non-repudialile authorisation for transactions such as the purchase of services from AP 104. The combination of transaction authentication and obtaining authorisation for transferring information to the AP 104 could be combined in a single prompt to the digital wireless device 100, as will be explained below.
Optionally, prior to seeking approval, the non-repudiation centre informs the user of digital wireless device 100 of the confidential information that will be released. Non-repudiable proof of the authorisation can be obtained by the digital wireless network 102 in a number of ways that are known to one of skill in the art. The identity of a device acting on digital wireless network 102 is authenticated at the beginning of the interaction between digital wireless network 102 and digital wireless device 100, making the collection of identity information in the approval process a simple task.
Additionally, there presently exist methods of authenticating the user of the digital wireless device 100; in addition to simply authenticating the digital wireless device 100, these methods can be employed to provide non-repudiable evidence that the transfer of the confidential information was approved by the user of digital wireless device 100. The non-repudiation centre 116 can optionally interact with the subscriber information database 110 to update the information containing subscription infornmtion related to AP 104. In a presently envisioned embodiment the non-repudiation centre can interact with AP 104 and digital wireless device 100, not solely for obtaining non-repudiabl.e authorisation for the transfer of confidential information, but could also be used to obtain non-repudialile authorisation for transactions such as the purchase of services from AP 104. The combination of transaction authentication and obtaining authorisation for transferring information to the AP 104 could be combined in a single prompt to the digital wireless device 100, as will be explained below.
(0015] The system as described above provides the ability to obtain authorisation from the user of digital wireless device 100 for transfers of confidential information. A
detailed description of the method is presented below, but an overview of the method immediately follows. As was mentioned earlier, the digital wireless network classifies confidential information into a number of categories, as does the user of the digital wireless device 100. When the digital wireless device 100 connects to AP 104, for the first time, a profile is established in the subscriber information database 110. AP 104 typically requests a set of information from the confidential information maintained by the digital wireless network 102 in the confidential information database 112. For this information to be transmitted, the user of the digital wireless device 100 must agree. The information requested has been classified by the user into one of several levels that detail the security required prior to releasing each piece of confidential information. For example, the user may specify that certain pieces of information are to never be released, other pieces can be released to a group of APs, still other pieces of information are to be released only after being approved, and the balance of the information can be released to anyone. The first time that the request is made by AP 104., the information that must be authorised is released only after getting non-repudiable authorisation, and depending upon the profile in the subscriber information database 110 the authorisation to release the confidential information to AP 104 automatically is stored. The next time that the digital wireless device 100 connected to AP 104, AP 104 requests the confidential information.
The request for information by AP 104 is then compared to the digital wireless network preferences 106 and the subscription information stored in the subscriber information database 110. Depending on the levels of security that were established by the digital wireless network preferences 106 and the subscriber information database 110, authorisation for transmitting confidential information may be avoided. AP 104 makes its request to the information access gateway 114; which checks the digital wireless network preferences 106 and the subscriber information data base 110 and then sends the authorised information. If some of the information that AP 104 requires is not releasable without authorisation from the digital wireless device 100, the information access gateway 114 requests authorisation for the release of the confidential information through non-repudiation centre 116.
detailed description of the method is presented below, but an overview of the method immediately follows. As was mentioned earlier, the digital wireless network classifies confidential information into a number of categories, as does the user of the digital wireless device 100. When the digital wireless device 100 connects to AP 104, for the first time, a profile is established in the subscriber information database 110. AP 104 typically requests a set of information from the confidential information maintained by the digital wireless network 102 in the confidential information database 112. For this information to be transmitted, the user of the digital wireless device 100 must agree. The information requested has been classified by the user into one of several levels that detail the security required prior to releasing each piece of confidential information. For example, the user may specify that certain pieces of information are to never be released, other pieces can be released to a group of APs, still other pieces of information are to be released only after being approved, and the balance of the information can be released to anyone. The first time that the request is made by AP 104., the information that must be authorised is released only after getting non-repudiable authorisation, and depending upon the profile in the subscriber information database 110 the authorisation to release the confidential information to AP 104 automatically is stored. The next time that the digital wireless device 100 connected to AP 104, AP 104 requests the confidential information.
The request for information by AP 104 is then compared to the digital wireless network preferences 106 and the subscription information stored in the subscriber information database 110. Depending on the levels of security that were established by the digital wireless network preferences 106 and the subscriber information database 110, authorisation for transmitting confidential information may be avoided. AP 104 makes its request to the information access gateway 114; which checks the digital wireless network preferences 106 and the subscriber information data base 110 and then sends the authorised information. If some of the information that AP 104 requires is not releasable without authorisation from the digital wireless device 100, the information access gateway 114 requests authorisation for the release of the confidential information through non-repudiation centre 116.
[0016] The system of the present invention is used in the following method to provide confidential information to AP 104 after obtaining non-repudiable proof of permission. Digital wireless device 100 connects to AP 104 through digital wireless network 102 as shown in flow 150. The connection between digital wireless device 100 and AP 104 provides AP 104 with a unique client identifier (client id) that is used to identify the digital wireless device 100. After receiving a connection from the digital wireless device 100, AP 104 receives a request for a subscription service (also flow 150) and determines that it requires confidential information about the digital wireless device 100. In the following example the request for confidential information is paired with a transaction request, though one of skill in the art will recognise that a transaction request can be omitted without deviating from the scope of the present invention. AP
determines it must charge the user of digital wireless device 100 for the requested subscription service and confidential information must also be released to successfully deliver the service. AP 104 forwards the non repudiation centre 116 a transaction request, as shown in flow 152. The transaction request may include a service purchase price, client ID and a specification of required confidential information along with other information.
Alternatively, the non-repudiation centre 116 may access the application provider database 108 to obtain service purchase price, confidential information required to deliver the service and other data regarding AP 104.
determines it must charge the user of digital wireless device 100 for the requested subscription service and confidential information must also be released to successfully deliver the service. AP 104 forwards the non repudiation centre 116 a transaction request, as shown in flow 152. The transaction request may include a service purchase price, client ID and a specification of required confidential information along with other information.
Alternatively, the non-repudiation centre 116 may access the application provider database 108 to obtain service purchase price, confidential information required to deliver the service and other data regarding AP 104.
[0017] Non-repudiation centre 116 examines the confidential information required by AP 104, and then examines the digital wireless network preferences 106, flow 154, and the subscriber information database 110, flow 158, to d~ternine if the user of digital wireless device 100 must approve the release of the requested confidential information.
Additionally, the purchase amount may require user approval and the generation of non-repudiation audit information. Either the purchase amount or the nature of the confidential information required may trigger the need to get non-repudiation evidence from the user regarding the transaction.
_6_ [0018] The digital wireless network 102 and non-repudiation centre 116 may use an authentication and non-repudiation technology such as secret PIN, PKI
document signing or simple Yes/No to accomplish user approval of charge and/or confidential information release. Non-repudiation centre 116 forwards digital wireless device 100 an approval request .such as "Approve monthly subscription charge of $1 to your phone bill and the release of your location to Yellow Pages Directory Services?" as shown in flow 158. Digital wireless device 100 transmits an approval response appropriate to the non-repudiation technology being employed as shown in flow 160.
Additionally, the purchase amount may require user approval and the generation of non-repudiation audit information. Either the purchase amount or the nature of the confidential information required may trigger the need to get non-repudiation evidence from the user regarding the transaction.
_6_ [0018] The digital wireless network 102 and non-repudiation centre 116 may use an authentication and non-repudiation technology such as secret PIN, PKI
document signing or simple Yes/No to accomplish user approval of charge and/or confidential information release. Non-repudiation centre 116 forwards digital wireless device 100 an approval request .such as "Approve monthly subscription charge of $1 to your phone bill and the release of your location to Yellow Pages Directory Services?" as shown in flow 158. Digital wireless device 100 transmits an approval response appropriate to the non-repudiation technology being employed as shown in flow 160.
[0019] Upon receipt of approval response 160, non-repudiation centre 116 creates a record of the subscription purchase and confidential infornzation approved for release to AP 104 in subscriber information database 110, flow 16::. A transaction and access response is then sent to AP 104, as shown by flow 164, to indicate subscription has been created; payment for the service approved by the digital wireless network 102 and the client id is authentic. Information access gateway 114 then releases the confidential information to AP 104, as shown in flow 166.
(0020] In a subsequent session, digital wireless device 100 initiates a service request to AP 104 and provides a client id, as shown by flow 168. AP 104 forwards the client id and requested confidential information to information access gateway 114 as a confidential information access request, flow 170. Info~-~nation access gateway 114 accesses subscriber information database 110 , flow 172, to determine if AP
104 has a subscription with the specified client id. If no record of tile subscription is found then there is no proof that AP 104 has authorised access to the confidential information associated with the client id and immediate access is denied, not shown, causing AP 104 to interact with non-repudiation centre 116 as previously described. If subscriber information database 110 replies that a subscription does exists, flow 174, information access gateway 114 examines digital wireless network preferences 106, subscriber information database 110, and application provider database 108, flows 176 178 and 180, to determine if the requested confidential information should: be released and if subscriber must approve the release.
(0021 ] If the user of digital wireless device 100 must approve the release then information access gateway 114 may initiate a sequence to obtain non-repudiation evidence from the user before confidential information can be xeleased, as described above.
[0022] Information access gateway 114 retrieves the. confidential information and only returns confidential information that is approved for release, as shown in flow 182.
Information access gateway 114 then updates subscriber subscriptions in the subscriber information database 110 to reflect the fact that confidlential information has been provided to AP 104 and that subscription service has been accessed.
[0023] Confidential information response 182 is generated and returned to AP
who in turn delivers service to digital wireless device, as slhown in flow 184. Thus, the system and method of the present invention provide means for delivering confidential information to an application provider through an infon~nation access gateway after securing non-repudiable authorisation for the transmission of the confidential information from the user of the digital wireless device, with whom the information is associated.
[0024] The above-described embodiments of the present invention are intended to be examples only. Alterations, modifications and variatiions may be effected to the particular embodiments by those of skill in the art without departing from the scope of the invention, which is defined solely by the claims appended hereto.
_g_
104 has a subscription with the specified client id. If no record of tile subscription is found then there is no proof that AP 104 has authorised access to the confidential information associated with the client id and immediate access is denied, not shown, causing AP 104 to interact with non-repudiation centre 116 as previously described. If subscriber information database 110 replies that a subscription does exists, flow 174, information access gateway 114 examines digital wireless network preferences 106, subscriber information database 110, and application provider database 108, flows 176 178 and 180, to determine if the requested confidential information should: be released and if subscriber must approve the release.
(0021 ] If the user of digital wireless device 100 must approve the release then information access gateway 114 may initiate a sequence to obtain non-repudiation evidence from the user before confidential information can be xeleased, as described above.
[0022] Information access gateway 114 retrieves the. confidential information and only returns confidential information that is approved for release, as shown in flow 182.
Information access gateway 114 then updates subscriber subscriptions in the subscriber information database 110 to reflect the fact that confidlential information has been provided to AP 104 and that subscription service has been accessed.
[0023] Confidential information response 182 is generated and returned to AP
who in turn delivers service to digital wireless device, as slhown in flow 184. Thus, the system and method of the present invention provide means for delivering confidential information to an application provider through an infon~nation access gateway after securing non-repudiable authorisation for the transmission of the confidential information from the user of the digital wireless device, with whom the information is associated.
[0024] The above-described embodiments of the present invention are intended to be examples only. Alterations, modifications and variatiions may be effected to the particular embodiments by those of skill in the art without departing from the scope of the invention, which is defined solely by the claims appended hereto.
_g_
Claims (2)
1. A method of delivering confidential information to an application provider through an information gateway on a digital wireless network including the steps of:
receiving a request for confidential information;
examining a subscriber information database to determine if a subscription with the application provider exists;
segregating the requested confidential information into approved for transmission and non-approved for transmission sets by examining digital wireless network preferences, the subscriber information database and an application provider database;
requesting, through a non-repudiation centre, that the user of the digital wireless device authorise the release of the non-approved information;
receiving, through the non-repudiation centre, authorisation from the user of the digital wireless device to release the previously non-approved information;
and providing, to the application provider, the requested confidential information.
receiving a request for confidential information;
examining a subscriber information database to determine if a subscription with the application provider exists;
segregating the requested confidential information into approved for transmission and non-approved for transmission sets by examining digital wireless network preferences, the subscriber information database and an application provider database;
requesting, through a non-repudiation centre, that the user of the digital wireless device authorise the release of the non-approved information;
receiving, through the non-repudiation centre, authorisation from the user of the digital wireless device to release the previously non-approved information;
and providing, to the application provider, the requested confidential information.
2. The method according to claim 1, wherein the confidential information is subscriber location.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CA002358129A CA2358129A1 (en) | 2001-10-02 | 2001-10-02 | Method and system for delivering confidential information |
PCT/CA2002/001493 WO2003030571A1 (en) | 2001-10-02 | 2002-10-02 | Method and system for delivering confidential information |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CA002358129A CA2358129A1 (en) | 2001-10-02 | 2001-10-02 | Method and system for delivering confidential information |
Publications (1)
Publication Number | Publication Date |
---|---|
CA2358129A1 true CA2358129A1 (en) | 2003-04-02 |
Family
ID=4170149
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CA002358129A Abandoned CA2358129A1 (en) | 2001-10-02 | 2001-10-02 | Method and system for delivering confidential information |
Country Status (2)
Country | Link |
---|---|
CA (1) | CA2358129A1 (en) |
WO (1) | WO2003030571A1 (en) |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20050021976A1 (en) * | 2003-06-23 | 2005-01-27 | Nokia Corporation | Systems and methods for controlling access to an event |
FR2872979A1 (en) | 2004-07-09 | 2006-01-13 | France Telecom | ACCESS SYSTEM CONTROLLING INFORMATION CONTAINED IN A TERMINAL |
US7908292B2 (en) | 2006-12-05 | 2011-03-15 | Nokia Corporation | Metadata broker |
US8040921B2 (en) * | 2007-06-15 | 2011-10-18 | Sony Ericsson Mobile Communications Ab | Method and apparatus for controlling the transfer of private information in a communication system |
US20190287109A1 (en) | 2016-02-03 | 2019-09-19 | Averon Us, Inc. | Method and apparatus for facilitating performing payment option aggregation utilizing an automated authentication engine |
US20190303929A1 (en) * | 2018-03-27 | 2019-10-03 | Averon Us, Inc. | Using out-of-band mobile device possession attestation to release verified user identity attributes during internet transactions |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6151498A (en) * | 1998-03-09 | 2000-11-21 | Ericsson Inc. | System and method for routing positioning requests based on mobile switching center address |
WO2001033936A2 (en) * | 1999-10-29 | 2001-05-17 | Privacomp, Inc. | System for providing dynamic data informed consent to provide data privacy and security in database systems and in networked communications |
EP1232659B1 (en) * | 1999-11-23 | 2009-09-23 | Nokia Corporation | Method for enabling a user to be notified of his/her positioning requests |
FI112433B (en) * | 2000-02-29 | 2003-11-28 | Nokia Corp | Location-related services |
-
2001
- 2001-10-02 CA CA002358129A patent/CA2358129A1/en not_active Abandoned
-
2002
- 2002-10-02 WO PCT/CA2002/001493 patent/WO2003030571A1/en not_active Application Discontinuation
Also Published As
Publication number | Publication date |
---|---|
WO2003030571A1 (en) | 2003-04-10 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8359273B2 (en) | Secured authentication method for providing services on a data transmisson Network | |
US7702915B2 (en) | Access authentication system | |
US7319855B1 (en) | Method for charging internet services via a mobile telephone | |
US6954793B2 (en) | Pre-paid data card authentication in a public wireless LAN access system | |
US20050080634A1 (en) | Method and network element for paying by a mobile terminal through a communication network | |
CA2294722C (en) | Procedure for setting up a secure service connection in a telecommunication system | |
US7139556B2 (en) | Provision of location dependent services without revealing the user identity via a mobile telecommunications network | |
US20060265339A1 (en) | Secure virtual point of service for 3G wireless networks | |
US20030206533A1 (en) | Terminal and repository in a telecommunications system | |
US20030078894A1 (en) | Over-network resource distribution system and mutual authentication system | |
CN1792085B (en) | online charging in mobile network | |
JP2005502141A (en) | Method and system for conducting financial transactions in a mobile communication system | |
JP2002344511A (en) | Communication method, line enterprise device and line lender device | |
WO2001031966A1 (en) | Method and arrangement relating to positioning | |
US7313381B1 (en) | Sim based authentication as payment method in public ISP access networks | |
JP4073030B2 (en) | Public wireless LAN system, temporary use service providing method, temporary use right issuing server, public wireless LAN connection device, and portable terminal | |
US20020165783A1 (en) | Accounting in peer-to-peer data communication networks | |
CA2358129A1 (en) | Method and system for delivering confidential information | |
EP1320236A1 (en) | Access control for network services for authenticating a user via separate link | |
US20230245085A1 (en) | Laterpay 5G Secondary Authentication | |
US7127428B2 (en) | Dynamic business relationship establishment in a public wireless LAN environment | |
AU2002315981B2 (en) | Parallel coordinated operations in private domains | |
WO2009090428A1 (en) | Mobile approval system and method | |
KR100597273B1 (en) | Method and system for connecting internet site using mobile communicating apparatus | |
JP2002325136A (en) | Contents distribution/accounting settlement surrogate system, network management center, and information distribution center |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
FZDE | Discontinued |