TWI262005B - Access to PLMN networks for non-PLMN devices, and to issues arising in interfaces in general between PLMN and non-PLMN networks - Google Patents

Abstract

Interface device for interfacing between a PLMN network and a non-PLMN network, the PLMN network being configured to recognize cellular base stations as nodes thereof through which to mediate connections to cellular mobile devices, the non-PLMN networks each comprising a plurality of access points for mediating connections to network compatible mobile devices, and for which the network compatible mobile devices are not required to be cellular devices. The interface device is configured as a node of the PLMN network to appear to the PLMN network as a standard cellular base station, and comprises functionality to make non-cellular devices connecting to the non-PLMN network and attempting to access the PLMN network through the non-PLMN network appear as cellular devices to the PLMN network.

Description

1262005 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 L L L L L L L L L L L L L L L L L L Access to PLMN network 5 and technologies that provide interfaces between PLMN networks and non-PLMN networks.

L·H Background of the Invention The rapid growth of demand for high-speed data access. In the late 1990s, 28 Kbps was already very fast for Internet services. However, even for 1 〇 network services, even 56 Kbps has been considered very slow, while 384 Kbps is considered a general speed. At these higher transmission speeds, downloading complex web pages and "rich media", such as continuous images, is now practical. Wireless providers are now working hard to use wired-type experience on the 15 lines. To provide them to their customers. Today, mobile phone providers provide their mobile power 4 customers with limited information instead of "diversified media, service see 7 used in wireless communications, the typical data rate is 9· 6 . GPRS will soon increase to 50 to 8 Kbps (in theory, up to 115 Kbps) but it is still slow compared to the wired 384 κ_. In order to solve the 14 issues, mobile phone operators are actively acquiring additional bandwidth and positive requirements for the engineering community to use existing and expected wireless distribution methods. But these actions take years to execute and will cost you a lot of money. Unauthorized wireless networks have become very popular and can be used in obtaining 1262005 发明, invention instructions for high-speed wireless access. Unauthorized wireless network operation in this ISM (Industrial, Scientific, and Medical) bandwidth is limited to very low power, which means that the frequency can be reused over and over again. IEEE 802.lib is an example of an unlicensed technology that is very affordable and capable of delivering speeds as high as 10,000 Kbps. An 802. lib wireless local area network (LAN) with a small home or office and supporting three computers can be purchased for about $500, and the device has evolved into standard equipment on many computer production lines, including Dell and Apple. 802. lib is just one of many wireless LAN technologies. Other technology packages include HomeRF, 802_11, Bluetooth, and more. While these technologies were originally developed for wireless local area networks (WLANs) for office and home needs, a new type of network service provider is using this technology. In terms of cost, these vendors provide public access through 802. lib. 15 These networks are being installed at airports, cafes, etc. and other places where the public will use their time to use their computers. This embodiment is related to the problem of interface connection between a wireless LAN and a mobile phone or a PLMN network. High-speed unlicensed and licensed network access technologies can now be used to support speeds from 700 Kbps to 10 Mps and beyond. Examples of such wireless access technologies 20 include Bluetooth and wireless LAN like 802.11(x). These domains have considerable speed to support diverse media services such as video telephony, continuous video, and more. PLMN users can use these non-PLMN access networks (Access Network: AN) to access multiple media services at high speed. 1262005 发明, INSTRUCTION DESCRIPTION In many access locations, the non-PLMN access network can carry a significant amount of diverse media that is located at the access location. An example may be, for example, a field of motion where the main diverse media source will be a highlight of an almost instant game. The diverse media can be transmitted via the 5 PLMN via communication. Keeping the diverse media away from the core network will reduce the burden on the network. In order to take advantage of this information but not to become part of a huge PLmn network, it needs to support group-to-group (Peer_to-Peer) 'group-to-area servers and group-pair networks in an integrated manner. The external connection type allows all single connection clients to utilize all connection types. This is because the user does not want to have a group terminal, so supporting audio communication is also a key technical requirement. It is impeding that the interface provided by this interface is a device that is designed to ensure that only users of the network are able to prove that they are the owner of a particular telephone number. The purpose of such designs is to ensure that bills are sinable, sinful, and correctly generated, while other non-personal uses are not possible and unauthorized access to the network is generally not possible. In the end, these mobile phone devices are either provided with a Subscriber Identity Module (SIM) for the Secure Chip and Algorithm to change the design and be extraordinarily executed according to the architecture of the specific network. And decryption, or they have identity data that the system uses to authenticate them to enter the network.实体Secure device that avoids copying and internal inspection, the data is not “external reading and no shortage of time. The component is purely renewed, Γ ^ The cellar is actually owned by the user and installed by the user at 20 1262005 发明, invention Illustrating the device, typically in a mobile phone, the device is used to access the network 'This means that the access device has a SIM card carrier and reader. The SIM concept is widely used and further Allowing the user to simply take his SIM card from an existing device and place it in a new device to exchange the device that is being used to access the network to maintain the same identity and phone number. The SIM-based authentication is for mobile phone devices to connect directly to the PLMN. However, it is also considered to allow users to connect to a non-PLMN network in the upper area via a mobile phone, such as a Bluetooth network and connect to it. Non-PLMN networks in the 10th and 5th areas can be used in a large number of devices, such as portable computers, PDA-type devices and non-traditional mobile devices, and non-standard configurations with mobile phone identification cards. A SIM, or even a similar device of a SIM card carrier or a picker. The inferior device is collectively referred to as a "non-SIM device,". It is necessary to provide a basic device to allow such non-SIM devices to connect to the mobile phone network through the area 15 domain network, or at least to allow them to access other networks, for example, based on their mobile phone identification unit. road. Furthermore, regional non-PLMN networks are very regional in nature. The user may want to use the device while using the device, however it may easily find that he has exceeded the range of any convenient access point - more specifically - a mobile line within a small range or limitation The user can obtain services from a regional access point (AP) using any technique suitable for a small range of 10 to 100 meter steps. Each of these APs supports a network of mobile users. The communication connection between each user and the Ap can be changed within a wide range due to the change in the path loss due to the change of the transmission energy, the interface level and the network load. If more than one AP is operating in the area, no matter how many APs are integrated into a single access point or the like is installed in a separate separate area 'it can allow the user to be used by a different AP instead of being used Or a service that has been considered for use by APs or preferred communication conditions. The question then is to decide if another AP is available and allows the user to connect to that other AP. This problem is solved by a wide range of feasible procedures, collectively referred to as "handoff," 10 15 20 Another problem occurs when a user is equipped with a pair of technical terminals, such as mobile phones and Wireless LAN, mobile phone and wired network access, etc., and the connection needs to be exchanged using one of the access points of one technology to use one of the access points of another technology. In this case, usually associated with signal delivery This logic will not be used, however, - different approaches are needed to make the best use of such efficient communication resources. A variety of techniques have been proposed to provide network connectivity in a small and limited area. The most well-known in this technology group is ··u frequency hopping and direct-sequence wireless LAN (WLAN) standards and Bluetooth technology. The standard of technology and other technologies depends on the network to operate independently. When this __ network If the member or a potential member cannot obtain satisfactory information from the network access point, the reason may be 疋 due to deteriorating communication conditions or network please, in one of the many negative results μ is from the user's position : it can Keep the network suspended or the library is provided with stone, + # 仏 仏 should not accept the low data rate. The current law can not support the search (4) (4) the network of the party, that is, not in the right Chu m A Another / has the same phone call for the mobile to use the mobile 10 1262005 发明, the inventor has been transferred to another access point that can meet your communication needs. Furthermore, and there are technical standards It has been proposed to control the conversion between technologies that provide services to such limitations and technologies that are broadly related to areas such as mobile photography, or between five technologies that cover large areas via wireless and wired connections. It is also necessary to consider remote connection authentication, for example, to authenticate a far-end transaction or to confirm that the correct user has been requested to be paid by a remote service provider, and unless, the, the, and the way are typically via other networks. The network channel is used to provide a communication connection for authentication to the user. The interface connection is not completed during the network. The network channel is not confidential or cannot be confirmed by a user. There are many transactions that do not require entities that are adjacent to each other to execute the transaction. These environments include ATM transactions, credit cards and other transactions that are made by phone, and transactions made over the Internet. The identity of the buyer will not be established at such a high level in these transactions: the transactions are made by the user through unsecured and/or non-certified connections and the use of unsecured and/or non-certified communication technologies. Data and credit card numbers have been stolen. Today, the method of electronic payment is very dependent on credit cards, which makes it difficult to pay taxes, such as the time cost of using the Internet, and the small cost of the item. There are many transactions that do not require real trading objects to execute transactions. These environments include ATM transactions, use of other transactions, and other transactions made by telephone, as well as the use of the Internet. ^ is 11 1262005 玖, invention descriptions 'the buyer's identity will not be established to a fairly high level in these transactions. These transactions allow users' personal data and "card numbers to be stolen through unsecured and/or non-certified connections and the use of unprotected and/or non-certified communication technologies. Today, electronic payment methods are highly dependent. Credit cards, which make it difficult to tax small payments, such as the time spent on the Internet, or the small cost of downloading data items.

C 明内 J Summary of Invention 10 According to a first feature of the present invention, therefore, it has an interface device interfaced between a PLMN network and a non-PLMN network, and the above 1>〇41^ network is structured to confirm the honeycomb cells The base station is connected as a relay to the node of the cellular mobile device, and each of the non-tagged networks includes a plurality of access points connected to the network compatible mobile device, and the network The phase 15 mobile device does not need to be a cellular cell mobile device, and the interface device is configured as a node of the PLMN to make the PLMN network as its base station and has a non-cellular cell mobile device connected to the non-negative The PLMN network and the functions for accessing the above network are such that the cellular cell mobile device accesses the PLMN network. 〇 The device preferably includes a switching circuit interface for talking and a sub-sealing interface for data and control. Preferably, the PLMN network is a GSM network having a Α interface or a 〇b interface, and the switching circuit interface can be operated to use the A interface and the sub-sealing interface to operate the Gb interface. 12 1262005 玖, invention instructions

Preferably, the PLMN network is a UMTS network having an IuCS interface and an IuPS interface, and the switching circuit interface is operable to use the IuCS interface and the partitioning interface to operate the IuPS interface. 5 Preferably, the apparatus includes an analog cellular cell identification gateway associated with the privacy layer of the non-PLMN network and operable to determine that a connection device has been authenticated by the non-PLMN network, and operable to respond to a PLMN A network authentication queue is displayed to indicate that the above authentication has been successful. Preferably, the analog cellular cell identification gateway is an analog SIM 10 gateway and the PLMN network is a GSM network. Preferably, the simulated cellular cell identification is an analog ESN gateway and the PLMN network is a CDMA network. Preferably, the non-PLMN security layer is one of a group including SSL, IPsec, TLS, SRP, and SSH, and the authentication of the group of the above-mentioned group needs to allow the above-mentioned analog SIM gateway to provide The above authentication is responsive to the above PLMN network. Preferably, the security layer can be architected to set a desired level of privacy. Preferably, the apparatus includes a microphone for receiving a portion of the voice signal from the non-20 PLMN network for voice transmission, and for receiving the voiced signal from the PLMN network for partial decoding . The device most includes a microphone for receiving a portion of the voice signal from the non-PLMN network for voice transmission and for receiving a voice signal from the PLMN network for partial decoding. 13 1262005 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明 发明Preferably, the function of authenticating to one of the non-PLMN networks is further included. Preferably, the apparatus further includes functionality for a device connected to the non-PLMN network. Preferably, the apparatus includes functionality to update the location of the device connected to one of the non-PLMN networks. Preferably, the apparatus includes functionality to support the ability to connect to a device on the non-PLMN network to generate a service request. Preferably, the apparatus includes the functionality of providing the PLMN network having connection control data normalized to the PLMN network to integrate the corresponding activity to a full bill. The device is preferably architected to operate with one of the non-PLMN network connection management units to obtain non-PLMN network details from the quality of the connected user and the exchanged material. Preferably, the apparatus includes the functionality of the above-described details obtained by normalization to become a PLMN compatible specification. Preferably, the apparatus includes a cellular cell identification module associated therewith for providing a PLMN security function to allow access to a PLMN network over the wireless LAN. Preferably, the honeycomb cell identification module is mounted on the access card. Preferably, the honeycomb cell identification module is installed in the reverse direction at 14 1262005. Preferably, the honeycomb cell identification module is a SIM. Preferably, the device includes both a SIM carrier and a SIM reader. Preferably, the honeycomb cell identification module is a vertical honeycomb cell identification module. Preferably, the vertical honeycomb cell identification module is a vertical module including a SIM function. Preferably, the apparatus includes the ability to exchange authentication signals with an L A N gateway to thereby achieve network authentication. Preferably, the authentication signal is normalized and can be transferred between the gateway and the PLMN network to obtain PLMN authentication. According to a second feature of the present invention, there is provided a method of accessing a PLMN network via a non-PLMN network using a non-PLMN device, comprising: providing a non-PLMN device having one of the non-PLMN networks The access card provides the access card with a cellular cell identification module, and provides the non-PLMN network with a gateway function to preserve the cellular 20 cell identification signal between the non-PLMN device and the PLMN network. According to a third feature of the present invention, there is provided a method of accessing a PLMN network via a non-PLMN network using a non-PLMN device, comprising: 15 1262005 发明, the invention provides that the non-PLMN network described above is provided for authentication a non-PLMN device, one of the non-PLMN devices, and the non-PLMN network having a gateway function associated with the security authentication unit to operate the authentication unit and to maintain a hazard that is certified by the non-5 PLMN network Cell identification signal to the above PLMN network. According to a fourth feature of the present invention, there is provided a method of operating between a PLMN network and a non-PLMN network. A gateway for enabling a non-PLMN device to authenticate a method for using a PLMN connection, the method comprising: 10 authenticating the non-PLMN network by a first authentication protocol, and communicating with the PLMN network via a cellular authentication protocol The circuit exchanges signals, including the first protocol to indicate that the authentication is followed by the device authentication. According to a fifth feature of the present invention, there is provided a method of operating a security gateway between a PLMN network 15 and a non-PLMN network to enable a non-PLMN device to authenticate the use of the PLMN connection, the method comprising : exchanging signals with the PLMN network through a cellular authentication protocol to authenticate the non-PLMN network to connect to the device. According to a sixth feature of the present invention, there is provided a signal handoff manager for managing a signal handoff of a mobile device 20 unit for use in a first mobile device network access point and a second mobile device Communicating with a identifiable telecommunications work period between the network access points, wherein the first access point belongs to a first network, and the second access point belongs to a second network, and the manager can share Each network is stored and includes: 16 1262005 发明, invention description-mobile device unit matcher, the mobile device unit for cutting off and the matching and mating period maintenance device for connecting to other networks, The mobile device unit matcher is configured to transmit a work period between the thus paired mobile device units to thereby perform money transfer between the networks. Preferably, the signal handoff manager includes one of the in-single-area units. The signal handoff manager preferably includes a decentralized function located on a plurality of internal networks and interactive networks. Preferably, the network in the above network is a -PLMN network. Preferably, one of the networks in the above network is a wireless lan network. Preferably, the network in the above network is a wireless secondary network. Preferably, the signal delivery manager further includes a telecom working period active management list 7G. When the connection quality threshold cannot be reached, a current network is used by the current 15 to determine the mobile device unit to search around. The network and its connection parameters are determined to identify a maximum network from the above parameters and to indicate that the mobile device unit is connected to the best network. Preferably, the telecom working period active management unit is used with the mobile device single source matcher, thereby using the above indication to assist in the matching of the above 20. Preferably, the telecom working period active management unit is operable to determine whether the indicated matching has been successful, and when there is no successful connection, it is operable to instruct the mobile device unit to connect to the next best network. Preferably, the above-mentioned telecommunication working period active management unit is operable to continue the operation of the best unit until a connection indicating that the mobile device unit is connected to the Dingyi is successfully indicated. Preferably, the signal delivery manager includes a passive management unit during the telecommunications security period, and is determined by the mobile device unit when the connection quality threshold cannot be met, to instruct the mobile device unit to search for a nearby network and The connection parameters are determined to be connected to the network by the above-mentioned mobile network unit. Preferably, the signal handoff manager is operative to instruct the mobile device unit to be disconnected by a first network and then connected to the best network. Preferably, the signal delivery manager is operative to indicate that the mobile device unit is connected to the best network and then disconnected by the current network. Preferably, the signal handoff manager is operable to reduce the quality of the connection on a current network&apos; thereby forcing the mobile device unit to cut off and find another network. 15 Xiao (four) handover management 11 is best followed by the choice - the best network is used to reconnect, to talk about the quality of the connection on the current network, and to send an indication to the above action list "connected to the best selected above The signal delivery manager preferably operates to provide the above mobile device unit identification code for a plurality of possible networkable devices. ° 四 (4) handover management 11 preferably provides operation - a mobile device that may use the network Preferably, the parameters include any one of the following groups: a preferred access channel to the PLMN network, which can support the proxy of the preferred distributed SSC basic architecture for Internet access. Code, the above may use 18 1262005 发明, the invention describes the network load conditions. The above may obtain the general parameters of the network 'Internet access network access number, and the above may be available Preferably, the network of the first mobile device and the network of the second mobile device 5 are respectively a wireless hotspot of a single hotspot (H〇tsp〇t). Preferably, The first and second networks are overlapped networks and one of the mobile device units is located at a point overlapped between the networks. Preferably, the first and the second networks respectively use the same Preferably, the first network and the second network respectively use different network protocols. Preferably, the first and second networks are non-overlapping. Preferably, the first network is Preferably, the different hotspots have a region overlap and one of the signal handoff units is located in the overlap region. Preferably, the above-mentioned overlapping regions. The hotspot uses a single communication protocol. The car owner preferably uses different communication protocols for each of the hotspots. Preferably, the first network and the second network are respectively 20 networks. Preferably, the foregoing A PLMN and the second PLMN network use a single communication protocol. Preferably, the first PLMN and the second PLMN network respectively use different communication protocols. 19 1262005 发明, invention description preferably, the above And the second communication network has an overlapping area and a signal handover unit is disposed in the overlapping area. Preferably, the first network is a wireless area network and the second 5 network Preferably, the wireless local area network is located within the pLMN network coverage area. The signal handover manager preferably includes a wireless local area network as a higher priority than the PLMN. One of the sequence priority units, 10 causes the mobile device unit to automatically signal to the wireless local area network when it is within its range. According to a seventh feature of the present invention, there is provided an action device a signal delivery method of the unit, the mobile device unit communicates during a communication working period, and the signal handover is between an access point of an individual 15 between the first and second wireless networks, and the method includes : providing a control point common to both locations of the network; determining the identity of the mobile device unit at the control point, wherein the connection has been interrupted and its relative power is obtained Information of the working period; determining, at the above control point, the formation of a new connection with the mobile device unit; matching the identity at the control point, thereby matching the early with a mobile device - the existence of the telecommunications work period, wherein The mobile device unit has suspended the connection at a first access point and has been reconnected to a second access point 〇20 1262005. The invention provides an authentication device according to the eighth feature of the present invention, comprising: a communicator for communicating with a certified mobile device unit; a verifier for cooperating with the authentication mobile device unit to verify that the communication device is a preliminary authentication device; and a correlator for associating the verification with a non-authenticating device And the activity request, thereby authenticating the activity request of the non-authentication device. Preferably, the authentication device is a GSM device and the authentication link is a GSM link. Preferably, said authentication device is a CDMA device and said authentication link is a CDMA link. Preferably, the authentication device is a PDC device and the authentication link is a PDC link. Preferably, the authentication device is an EDGE device and the authentication chain is an EDGE link. Preferably, the authentication device is a WCDMA device and the authentication link is a WCDMA link. Preferably, the authentication device is a GPRS device and the authentication link is a GPRS link. Preferably, the authentication device is an Iridium device and the authentication key is a table network link. Preferably, the security link is involved in a telecommunications service user identity module of the encrypted mobile device. Preferably, the above-mentioned secret link is involved in one of the above-mentioned authentication devices 21 1262005 发明, the invention describes the telecommunication service user identity module. Preferably, the authentication device is a mobile phone. Preferably, the communication includes an electronic data communication. Preferably, the electronic data communication comprises electronic message transmission. 5 Preferably, the electronic message transmission includes SMS message transmission. Preferably, the electronic message transmission includes a WAP. Preferably, the electronic message transmission includes an email. Preferably, the electronic message transmission includes an EMS. Preferably, the electronic message transmission includes an MMS. Preferably, the communicator includes a function of initiating the communication by transmitting a start signal from the one of the authentication devices, and has a function of receiving a reply to the activation message from the authentication device, and further authorizing The above activity request. Preferably, the communicator has a function of receiving a start communication from one of the authentication device and the non-authentication device, and has a function of transmitting a reply to the start message, and further authorizing the activity request. Preferably, the communicator includes a function of receiving communication from one of the external devices and establishing a link between the authentication device and the non-authentication device, which is to authorize the activity request. Preferably, the communicator is operative to receive a message from the authentication device and to perform the communication by transmitting a response to the secure authentication device, thereby authorizing the activity request. Preferably, the communicator includes a function of inserting an identification code into the reply to a requesting end through the non-authenticating device, and wherein the 22 1262005, the invention verifier further includes determining whether the identifier has been transmitted. The above non-authenticated device is received. Preferably, the communicator is operable to use an automatic sound to communicate with the authentication device. Preferably, the authentication device is used with a payment account, and the device further includes a function of charging the payment account to the requesting activity. Preferably, the requested activity is an internet browsing activity or a point of sale activity. Preferably, the above requested activity is access to a network. Preferably, the device is operatively coupled to the non-authenticated device via a Bluetooth access point. In the case of Che Yijia, the device can be connected to the non-authenticated device via at least one WLAN access point. Preferably, the device is connectable to the non-authenticated device via a TCP/IP. Preferably, the communicator is operable to obtain a telephone number for communication with the authentication device by the non-authentication device. Preferably, the communicator is operable to obtain identity data from the non-authentication device 20 for forming the association. Preferably, the non-authentication device is one of the following groups, including: a credit card, a smart card, an infrared device, a Bluetooth device, a PDA, a portable computer, a fixed computer, and a Computer network. Preferably, the apparatus includes a counter 'If the communication is not 23 1262005, the invention is completed within a predetermined number of times to calculate the connection authentication failure. Preferably, the apparatus includes means for logging in to the non-authentication device. One of the login features. Preferably, said correlator is coupled to an authenticator to indicate that said activity request is permitted. Preferably, the authentication communicator is operable to communicate the authentication to an external gateway associated with the non-authentication device. Preferably, the authentication communicator is operable to communicate the authentication to a server associated with the requesting activity. Preferably, the authentication communicator is operable to communicate the authentication by using a change on a router on a router. According to a ninth feature of the present invention, there is provided a personal transaction card compatible with an ATM machine, comprising an ATM transfer number in an ATM read format and a mobile phone number, the mobile phone number being associated with the personal transaction card use. Preferably, the above number is stored in a magnetic strip. Preferably, the above number is stored in an internal integrated circuit. According to a tenth feature of the present invention, there is provided an authentication method, comprising: 20 communicating with an authentication device via a secure link; verifying that the communication is associated with an intended authentication device; and associating with a non-authenticating device Verification and an activity request, thereby authenticating the activity request of the non-authenticated device. 24 1262005 发明, DESCRIPTION OF THE INVENTION Preferably, the authentication device is a GSM device and the authentication link is a GSM link. Preferably, the authentication device is a CDMA device and the authentication link is a CDMA link. Preferably, the authentication device is a PDC device and the authentication link is a PDC link. Preferably, the authentication device is an EDGE device and the authentication link is an EDGE link. Preferably, the authentication device is a WCDMA device and the authentication 10 link is a WCDMA link. Preferably, the authentication device is a GPRS device and the authentication link is a GPRS link. Preferably, the authentication device is a network device and the authentication link is a network link. Preferably, the authentication link includes a secure link of a telecommunications service user identity module involved in the authentication device. Preferably, the security link includes a telecommunications service user identity module involved in the authentication device. Preferably, the authentication device is a mobile phone. 20 Preferably, the communication includes electronic data communication. Preferably, the electronic data communication includes electronic message transmission or SMS message transmission. Preferably, the method includes the function of initiating the communication by receiving an activation message to the authentication device, and receiving a response to the activation message from the authentication device, and authorizing the activity. request. Preferably, the method wherein the communication involves receiving a message from one of the authentication devices and performing the communication by transmitting a reply to the authentication device to thereby authorize the activity request. Preferably, the method includes inserting a password into the reply to a requesting end to input through the non-authenticating device, and determining whether the password has been received through the non-authenticating device. Preferably, the method includes using an automatic voice and the above authentication communication. Preferably, the authentication device is used with a billing account, and the method further includes charging the billing account for the requesting activity. Preferably, the request activity is a group or activity comprising an internet browsing activity, a point of sale activity and access to a network. Preferably, the method includes the use of one of infrared or blue buds. Preferably, the non-authenticated central device is a TCP/IP link. Preferably, the method includes obtaining a telephone number communicated with the above-mentioned non-authentication device by the non-authentication device. Preferably, the non-authentication device is one of the following groups, including a credit card, a smart card, an infrared device, a Bluetooth device 20, a PDA, a portable computer, and a fixed computer. And a computer network. Preferably, the method includes a counter, and if the communication is not completed within a predetermined number of times to calculate the connection authentication failure, preferably the method includes using one of the non-authentication devices to log in. 26 1262005 玖, invention description function. The above activity request has been allowed to be preferred, and the method includes an indication of the output. The car is not the one that is output to the phase of the authentication. 5 External gateway. Preferably, the above indication « is sent to a server associated with the requested activity. Preferably, the above indication of the early indication &amp; 1 is not output by adding a change to a routing table on a router. BRIEF DESCRIPTION OF THE DRAWINGS In order to provide a better understanding of the present invention and to show how the present invention may be useful, reference will now be made to the present invention by the accompanying drawings. The features of the present invention are set forth by way of example and description of the preferred embodiments of the invention. In this regard, the details of the present invention are not intended to be exhaustive or to provide a basic understanding of the present invention, and the description and reference to the drawings will enable those skilled in the art to know that many embodiments of the present invention can be in life. In the accompanying drawings: Figure 1 is a simplified representation of SIM, Figure 2 is a simplified block diagram showing the functional operation of a SIM, and Figure 3 is a first embodiment showing a first embodiment of the present invention. The client device is connected to a non-PLMN network through a virtual SIM gateway and is simplified from the simplified description of one of the PLMN networks. Figure 4a is a more detailed view of Figure 3. One simplified embodiment of the block diagram includes a secondary system for simulating a SIM gateway, and FIG. 4b is a simplified comparison diagram showing another solution for providing a 5 PLMN service over a non-PLMN network, the service being known Art, Figure 4c is an exemplary diagram showing a palm-sized device and a card insertable therein for use with Bluetooth and similar non-PLMM networks, Figure 5 is for use in accordance with the present invention One embodiment simplifies the flow chart, 10 shows that a non-SIM device is connected to a PLMN network via a virtual SIM gateway through a non-PLMN network, and FIG. 6 shows an overview of a typical PLMN network infrastructure. Figure 7, Figure 7 is in accordance with the present invention A schematic diagram of an embodiment showing the use of a virtual base station controller as an interface to the PLMN network, FIG. 8 is a schematic diagram of a preferred embodiment of the present invention, shown in a wireless Protocol layer and packetized data authentication between a LAN and a PLMN network, FIG. 9 is a schematic diagram showing a protocol layer between a LAN and a PLMN network, in accordance with a preferred embodiment of the present invention </ RTI> <RTIgt; </ RTI> <RTIgt; </ RTI> <RTIgt; </ RTI> <RTIgt; </ RTI> <RTIgt; </ RTI> <RTIgt; A schematic diagram of a preferred embodiment showing a protocol layer relating to the provision of a switching circuit support service through a PLMN and a wireless network, and a description of the invention. FIG. 12 is a preferred embodiment of the present invention. An overview of an example showing a virtual SGSN+ being used as an interface between a wireless LAN and a PLMN, FIG. 13 is a schematic diagram of a preferred embodiment of the present invention, shown in a Wireless LAN and a PLMN Protocol layer and packetized data authentication between networks, Figure 14 is a schematic diagram showing a provision of a packet support service between a wireless LAN and a PLMN, in accordance with a preferred embodiment of the present invention Figure 15 is a schematic diagram showing a protocol for providing a switching circuit support service between a wireless LAN and a PLMN according to a preferred embodiment of the present invention, and Figure 16 is a diagram according to the present invention. A schematic diagram of a preferred embodiment, wherein 15 shows an association layer for providing packetized data traffic management between a wireless LAN and a PLMN, and FIG. 17 is a schematic diagram of a preferred embodiment of the present invention. a display of a common area and a wireless network coupled to a hotspot center point, which can be used to coordinate the handover between the networks, 20 FIG. 18 is a diagram of one of the preferred embodiments of the present invention A schematic diagram showing a wireless network present within a coverage area of a cellular or PLMN network, and FIG. 19 is a schematic flow diagram of a preferred embodiment of the present invention, shown in two networks Intersect as a signal The entire principle, 29 1262005 发明, the invention description 20 is a schematic flow chart according to a preferred embodiment of the present invention, which illustrates the signal handover from the viewpoint of the mobile device unit, and FIG. 21 is a diagram according to the present invention. A flow chart of a preferred embodiment showing another embodiment of a signal handover procedure, and FIG. 22 is a simplified schematic diagram illustrating two non-overlapping WLANs having a common center point, and FIG. 23 is a simplified A schematic diagram illustrating that each of the two overlapping WLANs is part of a different hotspot and has a common center point outside of the hotspots, and the Figure 1 is a variation of the plot of Figure 23, wherein the hotspot There is no overlap, Figure 25 illustrates a two-overlapping plmN network, Figure 26 illustrates a two-non-overlapping plmN network, and Figure 27 is a simplified block 15 showing a certificate authority in accordance with yet another preferred embodiment of the present invention. , Figure 28 shows a simplified illustration of one of the devices used in the security key of Figure 27, and Figure 29 is a simplified illustration showing one of the devices used in the non-secure chain of Figure 27, 20 3 0 is based on One of the other embodiments of the authentication mechanism simplifies the block diagram, in particular allows control access to a wired or wireless LaN, and FIG. 31 is a simplified flowchart of one of the operations of the authentication machine of FIG. Wherein the setting can be started by either device, confidential or non-confidential, including 30 1262005 发明, the invention description is set by a different device. c. Embodiment 3 DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS Embodiments of the present invention provide a non-PLMN network interface to a PLMN 5 network connection. The invention described below provides an interface between the non-PLMN network and the PLMN network, which causes the PLMN network to detect units accessed via the non-PLMN network as if they were accessing the PLMN network. The same is true for those units that access the PLMN network through the PLMN's radio access network. Therefore, the PLMN network 10 detects that the non-PLMN network providing the service to the supported device is simplified as part of the PLMN network. The present invention includes a set of elements that interact as a system for its users to access different resources from a non-PLMN or a PLMN without the need for a device that can interface with the PLMN entity (eg, 15 a mobile phone). Some of the elements described herein are installed on a device that accesses the PLMN network or the non-PLMN network, and some components are within the gateway between the non-PLMN network and the PLMN network. Some embodiments use a code that proves the mobile phone user, as produced by the mobile phone switchboard (e.g., IMSI and Ki within a GSM SIM, or MIN and ESN within a 20 CDMA device) - Other embodiments do not use such code. These embodiments do not require any modification to the PLMN infrastructure; they require additional new units to enable seamless access between the non-PLMN network and the PLMN network. A system that allows access from non-PLMN to PLMN must be able to execute to 31 1262005. 1. An authenticated user, i.e., the authenticated user of the PLMN in the PLMN, the user requesting access to its resources or other resources requesting payment for the PLMN account. In some instances, this certification includes, in addition to the proof of 5 identity, the right to access a particular service. The PLMN must not be able to distinguish between a non-PLMN initiated access and its own access to the network via the PLMN, whether it is a wireless or other physical communication architecture. This must be done because the PLMN must be acknowledged and the access request is actually associated with a valid account number for that particular request service. 10 2. Enable transmission of user traffic between non-PLMNs and PLMNs. The PLMN must not be able to distinguish the difference between the traffic originating from a non-PLMN or to a non-PLMN and the traffic between the PLMN's own access network and the user or from the user. All embodiments relate to 15 authentication and communication security for accessing the access device of the non-PLMN, wherein the service is capable of requesting payment for a PLMN account associated with the access device upon access. The second embodiment describes the physical unit responsible for causing the PLMN to detect the access as it is done via a standard cellular cell node; the characterization of the physical unit is thus designed to simulate a row of cellular nodes. 20 These nodes are connected to both a non-PLMN and a PLMN; they may exist in the PLMN infrastructure in the same manner as the nodes they emulate. The VBSN (Virtual Base Station Controller) seems to have the PLMN as a BSS); in this case, the simulated node is a BSC. The VSGN+ seems to have the PLMN as a 32 1262005 发明, invention mobile phone cell switching node, that is, a SGSN of a switch data or a circuit switch MSC. The VBSC and the VSGN+ can perform the above two functions. They participate in the authentication of the non-PLMN access device to the PLMN network; and they can transmit the information stream from the non-PLMN network 5 to the PLMN network. In two of the embodiments, an access device having a SIM and hybrid network authentication is based on accessing the PLMN itself by the PLMN operator (the user provided to them by the PLMN operator) Accessing the same identification parameter of the PLMN operator of the network) to provide a token for the use of 10, for example, for a GSM PLMN system, those present within a SIM, or typically directly Stored in a cellular cell phone). In the other two embodiments, an SSG (Analog SIM Gateway) and a virtual SIM, the substitute symbol is replaced by a virtual substitute symbol, which is a set of software that simulates the substitute symbol. In the first embodiment, the virtual substitute symbol is installed in the gateway (VBSC or VSGN+). In the previous embodiment, the package software is installed in the non-PLMN access device. The system supports many different authentication methods. The simulated cellular cell node (VBSC or VSGN+) plays a role of 20 in each authentication method. We classify these authentication methods (and individually for these embodiments) into the following categories.

1. PLMN-type authentication of the terminal user access device - in the authentication method, the terminal user access device includes a SIM: the following includes an embodiment in which the SIM is a real SIM and the SIM is For the virtual SIM 33 1262005, an embodiment of the invention (ie, the SW SIM of the GSM system and the stored cellular cell phone identification code for the non-GSM network). A physical SIM can be installed in the device, which can be installed on the access card, installed on a dedicated card, or installed with other peripheral devices (e.g., embedded in a disk). In such methods, the 5 mobile phone cell node (the VBSC or the VSGSN+) obtains the cellular cell phone authentication information by the terminal user and compares it with the authentication data already stored in its database. Yes, or in comparison with the authentication material taken from the PLMN architecture. Hybrid network authentication is a one-way phase of the simulated cellular 10 cell node with or without authenticated authentication data. 2. Non-PLMN assertion of the access device, receiving the PLMN by an analog gateway (presented within the simulated PLMN infrastructure node, eg, a cellular node), an analog SIM gateway (SSG) The authentication data and the cellular network are considered to have a physical proxy symbol/hive cell 15 density and response as any cellular cell phone. The gateway actually authenticates devices that use different authentication protocols, typically in the Internet. The non-PLMN gateway uses an identification code having a node of a particular priority, and the mobile telephone network provides this node. 3. Involving authentication of the user PLMN device, such as cellular cell 20, by attaching a non-authenticated non-PLMN access device to an identifiable PLMN access device by correlation between the two access devices, eg, a hive Cell phone. Hybrid network authentication allows the user to access the non-PLMN based on whether the user is an authorized user of the PLMN. It is assumed that it has a VBSC or VSGSN+ that is used to provide access to the PLMN by non-PLMNs. For the purpose of such authentication, there are three examples; i. The PLMN provides a one-time access code each time the user requests access to the non-PLMN. This approach requires simultaneous communication between the networks and the manual insertion of the user. 5 ii. Automatically access the node at one time. The way is that the non-PLMN device has a client unit to automatically process the program, which may be extended or even used to automatically transmit the access code to the non-PLMN access device by the PLMN device (honeycomb cell phone). The client unit in . Iii. Start of a virtual SIM. In this system, a relationship between the PLMN device 10 and the non-PLMN device is used to initiate authentication of the non-PLMN device having a virtual SIM or having another authentication system (possibly for use by the SSG). The non-PLMN device. The user can then be authenticated by the PLMN via the non-PLMN and access the PLMN without being included in the PLMN. A feature of the present invention is to provide a virtual SIM gateway that can be used to interface between a non-PLMN network and a PLMN network. The gateway performs authentication suitable for communicating with the access device, such as a typical Internet Protocol environment authentication on the entire PLMN network; after it satisfies that it has been authorized to connect the device, then it represents the The device grants itself to the PLMN network as if it had a SIM on a device (including the same cellular cell identification code that does not use SIM in those networks). On the other hand, the two gates can be integrated, and the intermediate step of an authentication is based on the intermediate steps of other certifications. For example, the gateway can transmit requests, queries, and responses from one link to another. If the stream is transmitted to the PLMN, then the gateway encrypts it as if it had the SIM (or the same honeycomb cell identification code). Yet another variation of the present invention is to use a SIM on the non-SIM device, preferably the SIM in the connection card of the device, so that different types of 5 WLANs and other connection cards used by the integrated SIMs can be provided. When it is preferable not to integrate a SIM in the access device, another architecture using different authentication options exists: configuring the connection device with a virtual SIM. The virtual SIM can be stored in other access devices 10 having a processor embedding its algorithm in the access device, i.e., without a particularly rigid software implant. In detail, hybrid network authentication, which will be described later, can be used to authorize the activation of the virtual SIM installed at the remote connection device. A virtual device is configured to authenticate via VBSC or VSGSN, which will be described in detail later, which ultimately exists between the non-PLMN network and the PLMN network, and which may be 15 for generating virtual SIMs or other A pseudo triplet (rand, sres, kc) of its equivalent (MIN, ESN) in the network, or other authentication material, such as a username and password that can be authenticated by the analog SIM gateway. And providing to the network, if a user will be able to access via the PLMN access network and the analog node, the analog node will be able to exchange the same or equivalent information with the PLMN. However, if the method is used, then the PLMN does not directly authenticate the user (ie, does not verify that the SIM or equivalent mobile phone cell identification code is present in the device it owns), but instead relies on the gateway. Device. The gateway can then provide charging information to the PLMN. 36 1262005 玖, invention description Here it is pointed out that when a virtual SIM is used in the access device

Preferably, the analog PLMN gateway then has the function of authenticating a virtual SIM. Another feature of the present invention provides a virtual base station controller that provides a five-interface function such that the non-PLMN network appears to the PLMN network, such as the same cellular cell base station controller. This concept can even extend to simulating a honeycomb cell base station, so that the PLMN network appears as one or more honeycomb cell base stations. Basically, the provider is a proxy server type configuration. An extension function to the virtual base station controller allows a peer-to-peer connection in the non-10 PLMN network, a peer-to-peer connection within the non-hole, and is derived from the network to be used by the PLMN The connection managed by the network. Another feature of the invention provides the cellular network to agree to access to the cellular telephone via a different path via a non-cellular cell device. 15 The means for allowing the device associated with the honeycomb cell device to be connected to the cellular network via the regional network is extended to a network of honeycomb cells configured with a honeycomb cell model or a non-SIM similar. Another feature of the present invention is to provide a method for a mobile device user to maintain a seamless connection regardless of the different communication networks that can be accessed, and whether or not it is moved from one connection type to another. Before the present invention is described in detail, it is understood that the invention is not limited by the description and the description of the drawings. The invention may be applied to other embodiments or may be implemented or carried out in different methods. Furthermore, it can be understood that the terms used herein and the description of the invention are for illustrative purposes and are not to be considered as limiting. Analog SIM Gateway The current reference is shown in Figure 1, which is a typical SIM for a mobile phone. The SIM1G is a small module of a _SIM card carrier and reader 12 inserted in the cellular and field cell device 14. The SIM provides an identification code for the cellular cell telephone device and allows it to be operatively coupled to the cellular cell telephone network. Referring now to Figure 2, Figure 2 is a simplified block diagram showing the primary subsystem within ASIM 10. The sim includes a certification sub-system 10 15 20 'first 16 for obsessing the secret identity to ensure that the network is the user of the phone number and the addition system, the voice and data from the network Communication, and its decryption of incoming voice or data communication from the network, and its use is like the algorithm of A5. Of course, 'note that other encryption systems', first or 70 different King 9 systems can also be used. Encryption and decryption are performed using the message that is supplied as Langlu-certified. The authentication to be used and The correct type of encryption is based on the network. In the authentication, a random number RAND is sent to the SIM by the network, which is used as the input to the one-way function A3. Wherein the base station applies rand to A3 in comparison with the pre-action SREs completed by the system. If the response conforms to hall 8, then the connecting device is authenticated. Referring now to Figure 3, it is one The schematic illustration shows a remote device connected to a cellular cell or pLMN network via a local area network. Device 20, however, has processing capabilities to allow it to identify itself, albeit in a manner that does not match the requirements of the PLMN network. The device does not need to be 38 1262005. The invention is a mobile phone or has a SIM. This device is referred to herein as a non-PLMN device. The device 20 is connected to a non-PLMN network 22, which can be coded.The type is a LAN network with one of the wireless access points. The LAN typically uses TCP-IP as a communication protocol. The LAN is connected to the PLMN or cellular network 26 via an analog SIM gateway 24 5 . The analog SIM gateway 24 provides a bridge between the TCP-IP authentication and encryption protocol and the PLMN protocol, and thus allows the device 20 to be securely acknowledged by the PLMN network even if it does not have a SIM. As shown in Figure 3, the connection 10 between the device 20 and the gateway is protected using any standard TCP/IP security protocol, such as secure socket link (SSL), TLS, Ispec, which is any secure encryption and authentication technology typically used in IP networks, which will be described in further detail below, which is used in the device 20 to identify itself to the gateway without confusion. On the other hand, other IPSec-like agreements can also be used for this purpose; that is, the term SSL is used when it is used to refer to any device that can be used to protect the device and Transmission between gateways Any security agreement for the data, including those operating at a lower level and not using a socket. The gateway performs a SIM matching process with the PLMN network after determining the identity of the connected device, wherein the gate The router indicates that the PLMN has been authorized to connect the device. The authorization procedure will be described in more detail in Figure 5. Referring now to Figure 4A, which is a simplified diagram showing the implementation of Figure 3 in detail. For example, and particularly showing the internal subsystem of the gateway 24. The same components as the previous figures are given the same reference numerals and will not be referred to again unless it is necessary to understand the present invention. . The analog SIM gateway 24 includes a database subsystem 28, an access subsystem 30, an interaction subsystem 32 and a PLMN subsystem 34. The different subsystems can be installed on a number of servers or the entire gateway can be installed in a single server 5, depending on the scale of operation required. The gateway is preferably placed in a secure position to protect against possible damage to the system. However, as will be explained later, the gateway does not store any information that would compromise the SIM security requirements. The access subsystem 28 generally includes a standard LAN security device, and is typically configured to establish an SSL socket at the connection device 20. The access subsystem recognizes the device and notifies the PLMN subsystem 34. The PLMN secondary system communicates to the PLMN network 26, one of which is required. The gateway is constructed to look like a standard mobile phone cell base station, or a standard SGSN for the PLMN network, a standard base station controller or a 15-standard MSC that carries the standard SIM Identity data to the PLMN subsystem. When the device does not have a SIM, the secondary system does not pass any identity data to the device. In addition, it briefly verifies that the SSL or other TCP/IP-based authentication protocol is successful and sends a standard SIM confirmation to the PLMN network. 20 If the information flow transmitted by the terminal user access device to the PLMN is needed, and then needs to provide matching with the PLMN network, the PLMN secondary system 34 can also perform encryption and delivery of the outgoing data and voice. Decryption of sound and data. The interaction affects the secondary system to provide a bridge between the IP base access subsystem and the mobile phone cellular protocol of the PLMN system used by the invention. The database subsystem includes data for users of the LAN, so individual users can be authorized and given access to the appropriate service. Referring now to Figure 4B, which is a simplified comparison diagram, another embodiment of allowing a non-PLMN device to access a PLMN network is shown. As described above, the non-PLMN device is required by the PLMN network to do the following: 1) The user authenticates that the PLMN transmits a random number (RAND) to the access unit. In order to be authenticated, the access unit must respond to the correct number (SRES). The access device determines 10 SRES by inputting the RAND to the SIM, wherein the secret A3 algorithm processes the action and the SRES is for the output. The SRES is sent back to the PLMN where it is compared to the expected value. In a device that uses another cellular cell identification system, the access unit provides MIN and ESN for a first access, and the TMSI and ESN are immediately followed to enable similar authentication for the PLMN. 15 2) Data or voice encryption - Digitally held information (sound or data) sent by the access device to the PLMN is encrypted to avoid eavesdropping. In the GSM network example, the SIM encryption uses the data stream of the A5 algorithm and an internally generated encrypted message derived by the RAND. Different algorithms for the same purpose are defined for CDMA and other networks. 20 The above requirements may be performed by providing access to one of the non-PLMN networks (or equivalent mobile phone cell identification data), and this may be performed by integrating the SIM to the user terminal. carry out. The SIM can be integrated into the device itself, integrated into a separate access card or module or a SIM carrier and reader can be part of the network access card. For a non-SIM type cellular network, the cellular identification data can be stored in a user terminal, a special smart card or the access card. Access cards used for non-PLMN devices use a wide variety of access technologies, including Bluetooth, wireless area network (802.11X) and wired 10/100. Specifications for these cards include standard PCMCIA, CompactFlash and other specifications. For personal digital assistants and laptops, the access cartoon can often be built-in. More likely, it can be provided with an add-on card, such as a CompactFlash (or PCMCIA) add-on card. One standard that has been established includes a Bluetooth card with a CompactFlash specification. The card is modified to include a SIM bearer and the Bluetooth driver software is modified to include the SIM card reader and control. The SIM carrier and card reader can be added to a wireless local area network card, such as 15 in the 802.11b protocol in CompactFlash or PCMCIA format. Figure 4 is based on the GSM/GPRS network. The top half of the diagram shows the current standard method that GPRS can be fully used. The SIM card and control software are normally installed in the GPRS access card. The GPRS access card is installed in the User Device, which is typically a number of digits assistant, laptop or mobile phone. The principle of this method is shown in Figure 4B. In Figure 4B, a comparison is shown between the upper half of the figure and the bottom half of the figure, in which the standard GPRS is used and the SIM access is accessed via a GPRS. The card 36 is provided, and in the bottom half, a non-PLMN network 42 1262005 玖, invention inter-region arbitration and SIM access are provided via a Bluetooth access card 38. In the lower portion of the figure, the GPRS access card 36 is replaced by a Bluetooth access card 38. The control software is installed on the same card. The blue access card is installed in the user device and communicates through the Bluetooth network. The 5 GPRS message is transmitted via the Bluetooth and on the edge of the network. Bluetooth transmission is replaced by standard GPRS transmission as shown in the figure. An advantage of the above method is that the SIM described above is included in an access card device as compared to that shown in Figure 4A. The specified value is limited to a particular card, that is, the solution can be implemented solely on the basis of providing SI]V[s on the 10 non-pLMN device, and substantially no additional functionality must be provided to Any related network. Applicants are provided with access to all web services. All access and encryption uses standard and complete unmodified PLMN technology. The supplier can be protected from being deceived because it is based on its own security system. The access network switchboard is protected from being spoofed by the same 15 ί test and test PLMN system. Referring to Figure 5, a flow diagram of a method for accessing the cellular or PLMN network via a LAN connection via a non-SIM device. This figure refers to the embodiment of Figure 4A. In contrast, the device of Figure 4B is connected in a completely standard manner. According to Fig. 5, the apparatus is connected to the LAN in step 20, and a subsequent SSL software material structure (socket) is established in the next step S2. The connection to the LAN is preferably performed using a standard web browser, preferably supporting an SSL software profile or other TCP/IP authentication protocol. The software data structure is standard and can typically be encrypted using a 64, 128-bit encryption key or other confusing data link to provide communication security from eavesdropping. . Once the software data structure is created, it is used in the second stage &quot;bearing operation, including the first step S3, where the server authenticates itself to the 'Hail Connection Client'. The server recognizes that the system 5, which is certified by the summer heat certificate, is usually used to achieve, for example, the standard server authentication, which reconfirms the connection device to communicate with the server that is confirmed and can be tracked if necessary. Once the server has authenticated itself to the device, then at step S4, the user is asked to provide a username and password. This is best done using a private alignment box. The username and password are compared to the server profile 10 library and the server can then determine the connection agreement to which the connection device is assigned. If steps 3 and 4 are successfully communicated between the gateway and the device, then in step 5, the gateway prompts the pLMN-connection to be required. In step 6, the PLMN responds by providing a SIM secret triplet (the triplet code includes a random number rand, and the expected response from the SIM to the random triplet code is 8 and an encryption Key &amp; In the normal example of a -SIM device, the RAN is sent to the read, which is used as an input to the one-way function. The SIM sends back the function output, where the base station is compared to the SRES. If the response matches SRES, then the device is authorized. However, in this example, the connecting device is not a device. In step 37, instead, the PLMN system 43 is successfully authenticated to the connection device in steps 3 and 4, and then an authentication response is sent to the PLMN. In step 8, the gateway uses the encryption key Ke for subsequent communication to encrypt the data and sound. Preferably, the sound is always decrypted by the SSL at the time of the invention, and the A5 algorithm and the encryption key Kc can be used to re-encrypt according to the requirements of the PLMN network. The advantages of the above embodiments can be applied to the network user, the LAN switchboard and the PLMN or cellular network switchboard. The network user uses all of the encryption provided by the 5 standard PLMN, but can use a low cost device to connect or simply use a device that was readily available at the time, without the need for any special hardware kit. For this LAN switchboard, it can provide a full range of connectivity services based on its own TCP/IP authentication technology. Finally, for the PLMN switchboard, the present embodiment provides means for the network user to connect via the LAN to have a full set of services to ensure that its response will be accepted by the LAN switchboard. Although the above example has used a standard A or Gb interface to describe the GSM system, this embodiment can be used in EDGE, WBCDMA, UMTS, 3G, CDMAone, CDMA2000, 3GPP 15, 3GGP2, PDC and other PLMs in addition to GPRS. standard. The above listed are not the owners, and it is expected that additional agreements will be added to the PLMN field over time. The non-PLMN network can typically be a wired LAN, Bluetooth, 820·11 (χ), wireless LAN or Similar. 20 Although the above has been described for SIMs and GSM, the same solution uses MIN and ESN in any system as a cellular network for identification and/or privacy, and in particular in CDMA networks. Example: One example of the above may be to use an 802.11 access card to connect to a PDA, one of the 802.11 LAN PDAs, which is connected to the GSM or GPRS cellular network. According to the above embodiment, this connection can be achieved when the PDA is provided with a GSM compatible SIM.

Virtual SIM 5 Referring now to Figure 4C, which is a simplified comparison diagram showing a variant embodiment that allows a non-PLMN device to access a PLMN network. The method is suitable when the connection to the PLMN is urgently required for authentication and accounting purposes, but no user traffic is exchanged between the access device and the PLMN. As described above, in this method, the terminal user access device is equipped with a 10 virtual SIM. The simulated honeycomb cell node (VBSC or VSGSN+) has an authentication database, all of which have authentication information for network users who need to SIM (or other methods to simulate authentication codes as hive cell identification). The virtual SIM can initiate or use the information in a number of ways, at least some of which can only be used for an access or access attempt. In detail, the hybrid network authentication described later in 15 can be used to authenticate the virtual SIM installed in the remote connection device, and to use the cellular identity and the data stored in the simulated cellular node. The library's certification information is relevant. A device equipped with a virtual SIM is authenticated by a VBSC or a VSGSN, as will be described in detail later, preferably between the non-PLMN network and the PLMN network 20, and may be generated for virtual SIMs or A fake triple code (rand,sres,kc) of other equivalents in other networks. However, if this method is used, the PLMN does not directly authenticate the user (i.e., does not confirm that the device he owns has SIM or equivalent cellular identity), but relies on the gateway. The gateway may then further provide accounting information 46 1262005 发明, invention description to the PLMN, or the accounting information may be based on the non-PLMN, or both. The virtual 5 SIM method can be used for access devices when they prefer not to include a SIM s or other hardware base recognizer (a smart card or its equivalent) for a non-PLMN to PLMN connection; or It can be used in non-PLMN to PLMN connections, where the PLMN does not support integrated SIM based authentication - for example, CDMA. In this method, a virtual (usually software) SIM is installed at the remote device. The remote unit does not have a SIM. The SSG is replaced by an assigned gate, which produces a false three-pass code to the remote device. The gateway and the remote device share the virtual SIM secret key (which is stored in the simulated cell node authentication database). The gateway uses it to generate the triple code (RAND, SRES, KC) and generates a GSM-like challenge to the remote device (ie RAND). The triple code can be used by the GSM authentication protocol. Phase 15 is generated with the same algorithm (for example, HMAC-SHA-1 or HMAC-MD5). The requirements of the same algorithm will be used for the virtual SIM and the simulated cellular node (VBSC or VSGSN+). The remote device then responds to the challenge using the virtual SIM and sends an SRES to the simulated cellular node (via the non-PLMN network). When the authentication procedure is successfully completed, the terminal user access device and the analog cellular node share a secret key (Kc) as in the GSM system, which is not known to others. The end user access device and the simulated cellular cell can use the encryption key to encrypt traffic between them. However, this encryption key cannot use the traffic that is assigned to the PLMN network in the encryption because the 47 1262005 发明, invention description PLMN does not have this encryption key. SIM or USIM can be implemented in this way. Unlike the SIM-software SIM, which can be copied, the authentication protocol using the virtual SIM includes a replication detection mechanism. 5 Virtual Base Station Controller (VBSC) Refer to Figure 6 for a simplified block diagram of a standard GSM network configuration. A base station system (BSS) 40 supports the remote location mobile device 42. It is connected to a circuit switched network via an MSC 44, in this case the PSTN, and connected to a packet switched network via an SGSN, such as 10 being the Internet. The key point to observe is that the base station interface to the MSC uses the A interface for circuit switched connections and the Gb interface for the sealed connections. These interfaces may be used by the V B S C as will be described later such that the P L Μ N is like any other BSS in the GPS network. Referring now to Figure 7, there is shown a simplified block diagram of a non-PLMN network 48 connected by a virtual base station controller VBSC 50 interface to the GSM network of Figure 6. The same elements as those in the previous figures are given the same reference numerals and will not be described again unless necessary as understood by the present invention. The non-PLMN network 48 is coupled to the remote device 52 via a series of access points and has its own network servo 20 in any typical network type. A SIM server 56 is shown providing an analog SIM gateway, or a virtual SIM server authentication as described above. As shown in Figure 6, the VBSC 50 uses the A interface to reach a circuit switched network such as the PSTN and the GB network to reach a packet switched network. The VBSC (Virtual Base Station Controller) is a proxy gateway that functions between the non-PLMN access network (Bluetooth, 802.11, etc.) and the PLMN. The VBSC is connected to the PLMN through the A and Gb interfaces. Some interfaces are used by the PLMN to communicate with a BSC and thus the VBSC appears to treat the PLMN as a BSC. 5 The VBSC 62 communicates with one of the non-PLMN network access devices 52, such as a PDA, or a notebook computer. The communication is done by a client application installed on the access network or a network server and executed using one of the standard protocols based on TCP/IP or other matching standards. The communication is required for the VBSC to be used for the above-mentioned SIM server as a license and encryption service. The end user access device can have a virtual SIM installed therein, and the SIM server can be compared to a virtual SIM authenticator, or it can be an analog SIM gateway as described above. Preferably, the VBSC can also communicate with a packet of data on the access device or with a circuit switched software client. The client can be used by the network to obtain the specific service such as a corporate VPN, Internet access, access to a server or voice exchange connection within the cellular network, access The device client application software is typically a download software as an application, particularly if the access device is a PDA or a notebook computer.

The VBSC 50 serves as an interface between the access, the non-PLMN, the network and the PLMN, and preferably supports a wide range of communications through the A and Gb interfaces. The VBSC initiates and responds to the message to and from the PLMN, and interacts with components in the access network to perform such functions. The selected function will be described later. 49 1262005 发明, Invention Description Please refer to Figures 8 and 9 for the simplified signal plane of SIM service to Gb interface and SIM service to A interface. The correct interface connection between the PLMN and the non-PLMN network is such that the interface appears to be part of a PLMN base station (BTS) or a 5 base station system (BSS). Figure 8 shows a serial serial device 52 connected between a wireless LAN network via an access point 54. The wireless LAN uses its own protocol, the RF infrastructure, including the MAC from the client to the LAN connection, and the client-to-VBSC connection and other network protocols within the network. VBSC 62 acts as a relay between the network protocol signal and the 10 PLMN signal. Obtaining the correct signal content requires that the mobile component have built-in SIMs or an analog SIM gateway of the type described above. The Gb interface is used to transmit signals between the VBSC and the GPRS service support point SGSN, wherein the standard access is obtained from the basic cellular architecture of the cellular cell: the HLR is authenticated on the Gr, and the data channel is on the Gn. GGSN, accounting information on Ga to Ga and so on. A Gs interface 68 is used to transmit data in an active exchange MSC. It is to be noted here that the VSGSN+ preferably always has a packet of data towards the mobile interface; however, towards the network, it can use a packet or circuit. That is to say, the VSGSN is specifically made such that the non-PLMN access network can appear as one of the packetized information SGSN and the BSC as circuit switched data. Note that only the cellular protocol is illustrated in Figure 8, so the internet connection can be used as a conversion station. The SGSN 66 is preferably used as a relay between the Gb and Gs interfaces 50 1262005 发明, invention description. It should be noted that the MSC is only considered for circuit switched data. The equivalent of the exchange data as the partition is the SGSN. Figure 9 shows the authentication plane for circuit switched data. The same components as the previous figures are given the same reference numerals and will not be explained unless they are required to understand the present invention. In addition to the SGSN phase being omitted, Figure 9 is the same as Figure 8 and the A-Agreement 70 is used to communicate directly between the VBSC 62 and the MSC 68. Referring now to Figure 10, it is a simplified diagram of a communication protocol plane for displaying a packet switched transport channel service. The same components 10 as those of the previous figures are given the same reference numerals and will not be explained except when it is necessary to understand the present embodiment. A GPRS network server 72 is transparent to the GSN interface 74 to the SGSN 66. For each component in the figure, different available protocol layers are displayed. A data access client executes the GPRS application software, typically including 15 as a WAP browser. The communication path to be used is the same as that in the above Fig. 8. Although not shown, the application software can be accessed via the gateway GPRS support node GGSN 76 to access the PLMN GPRS network as shown in Fig. 6. When downloaded to the access device, the data access client is typically 20 combined by standard GPRS software protocol elements and communicates with the VBSC over the TCP/IP channel. On the VBSC, the transport layer is preferably replaced with a BSSGP (BSS GPRS Protocol) to be compatible with the SGSN. Furthermore, at the VBSC, the radio link control layer message number is supported when the BSSGP needs it. 51 1262005 发明, Invention Description Referring now to Figure 11, it shows a simplified agreement block diagram of one of the relevant agreements on the different components of the circuit-switched services provided. Elements of the communication path as shown in Fig. 7 and the same elements as those of the previous figures are given the same reference numerals ' and are not explained unless they are necessary for understanding the present embodiment. As described above, after the access device has been authenticated, it can be connected to a packet or circuit switched connection. Figure 11 illustrates the connection path for a circuit switched service with a specific discussion of sound. It will be appreciated by those skilled in the art that fax and HS data are processed in an analog form. For audio access, the connection device 52 preferably includes a telephone button and display and a support audio server. If the device 54 itself is a telephone unit, such as a Bluetooth radiotelephone, then such structures are used in the device and the client only needs to have access to the data channel. If the device is a standard PDA or laptop, the client 15 preferably includes a softphone button and display and preferably includes audio support. This structure is already a standard structure in IP phone clients today. The speech is preferably transmitted by AMR (Ad MVP) for sound propagation, which is the standard adopted today in GSMpLMNt. This sound propagation can be performed at the client or on the VBSC. 20 Each of the possible advantages and disadvantages are as follows: 1. The AMR sound propagation in the access device by the sound spreader in the mobile device has the LAN reduced. The advantage of audio and audio bandwidth is that it has significant processing requirements on the access device to exchange for performing the sound propagation and synchronization with the resound box of the AMR partition on the VBSC. 52 1262005 发明, DESCRIPTION OF THE INVENTION The wireless LAN transmission channel is generally required to generate this time delay to direct resynchronization. The partition may encounter splitting through the passage, but because the sound propagates, the VBSC can be sent to the MSC via the A interface only if the full frame has been received and reworked. 5 2. Sound Propagator on the VBSC Another technique used on the client has been used to make sound through IP and is called a lightweight sound propagation technique. On the VBSC, the light weight is encoded and then preferably transcoded into an AMR. When the wireless LAN is a Bluetooth-based wireless network, the sound propagation can be distributed together on the client. This is a circuit switched channel designed for the Bluetooth wireless network protocol to support specific sounds. It supports both 32 Kbps ADPCM and 64 Kbps PCM. If the Bluetooth sound channel is used, then the only sound propagation required is at the VBSC. One of the disadvantages of placing the sound spreader on the VBSC is that the 15 wireless LAN ends up carrying a relatively high data rate sound channel. This results in a loss of channel capability, especially since this capability must be guaranteed to maintain its immediate characteristics. As shown in the above figures, the VBSC 62 is mounted on the LAN. However, it can be installed by means of a device that is transformed with the PLMN, typically 20 in the carrier exchange. The advantage of the foregoing method is that a VBSC failure may affect only one LAN. The latter example allows a single VBSC to serve many LANs, and then there is a cost savings, but a higher level of confidence is needed. The VBSC provides an agreement between the LAN and the cellular network of the cell 53 1262005. The invention describes bridging, which allows the two to work together as one. Therefore, the telecommunication service provider can use the non-PLMN network (Bluetooth, 802.11b, etc.) to provide the service of the telecommunication service user 3G when there is no other user, whether it is the reason for using the bandwidth or because of the reception. The devices do not have complex 5 circuits to receive them. Thus, for example, most mobile phones cannot receive any simple images, but most of the basic PDAs that can be connected to the LAN network can receive fairly complex images. Telecommunications service users can be provided with high-speed, rich experience from the non-PLMN network itself, while fully accessing standard voice and data services. Telecommunications services allow 10 users to be additionally provided with complete payment and service profiles via the standard PLMN network. Telecommunications service providers have access to low-cost access networks to allow them to lower their prices for telecom service users. The use of telecommunications services can be provided on the network for communication privacy through the integration of a security mechanism such as one of the SI gateways. Similarly, simultaneous voice and data communications are provided. Virtual VSGN adds the interface between the non-PLMN and the PLM network to be efficient and allows the non-PLMN portion of the network to provide its own contribution to the user experience, a well-known VSGN bonus (VSGN+). ) is provided with support group 20 peer-to-peer, peer-to-local server and group-to-offline network communication, and its exchange connection to a PLMN network is like The whole part of the network. In particular, the VSGSN causes the non-PLMN access network to simultaneously present a serving GPRS support node (SGSN) for the packetized data and a BSC for circuit switched data. 54 1262005 发明, Invention Description A standard service GPRS support node is responsible for the transfer and receipt of data from its geographic service area to and from such mobile base stations. Its work includes separate routing and delivery, mobility management (addition/separation and location management), logical connection management, and authentication and charging functions. The location of the SGSN temporarily stores the location data of the GPRS user registered in the SGSN (for example, the current cellular cell, the current VLR) and the user profile (for example, IMIS, in the packetized data network). The location used in). The meaning of naming the addition refers to the function of supporting circuit switched communication, which is usually not part of the GPRS and therefore cannot be supported by a standard SGSN. 10 In order to provide this integrated functionality, the interface is required to provide, inter alia, the following services: Authenticate and register the telecommunications service user, update the location of the telecommunications service user (or support incoming messages or calls), 15 Support service requests generated by users of the telecommunications service, integrate activities into complete payment forms, and provide a range of other support services. The virtual base station controller (VBSC) enables the above services as described above, but does not itself enable peer-to-peer, peer-to-local server and group For offline network communication. The VSGSN+ integrates all VBSC features and additional support group-to-group and group-to-offline network connections.

Returning now to Figure 6 and an important point to observe is that the BBS 40 interfaces to the MSC through the A interface as a circuit switched connection. The SGSN 55 1262005, the invention description 46 is connected to the MSC/VLR 44 through the Gs interface, connected to the AuC/HLR 78 through the Gr interface, and connected to the remaining interface in the network through the Gn interface. These interfaces are used by VSGSN+ to make the PLMN both a standard BSS and a standard SGSN, and will be normally configured as part of the PLMN network. Referring now to Figure 12, it is a simplified block diagram showing the overall VSGN+ and how it is configured into the network environment. The same components as those in the previous figures are given the same reference numerals and will not be described unless they are necessary for the understanding of the present invention. A wireless LAN 48 has a SIM server 56 10 as described above but additionally has a connection manager 82 and a regional server 82, wherein the latter carries media rich material specific to the LAN. The network is connected to a VSGSN+ unit 84, which is connected between the LAN and the PLMN in a similar manner to the VBSC of the previous figure. The VSGSN+ 84 is exchanged with the PLMN as if it were a standard 15 SGSN; it can also use an additional A interface. The Gs and Gr and Ga interface connections are used to communicate with the MSC/VLR 44 and HLR 78 and CGF (not shown) in this general PLMN network function. Such network functions are like authentication. The booklet, the service summary and the flow measurement including the accounting, for example, through the Ga interface to the CGF. In contrast, the transport stream 20 flows through the Gn interface to the IP cloud of the telecommunications service provider. However, the different Gx interfaces are functionally different and they are typically placed on the same transmission medium. The circuit switched sound control and the individual transmitted signal are again communicated via the A interface via the VSGSN+. The sub-PLMN regional network is configured with a connection manager 80 as described above, 56 1262005, invention description to establish its group-to-group and group-to-area server and group-to-offline network server. The connection manager 80 provides the total number of pieces of data that are moved between the units by providing the identity of the vsGSN and the connected unit. This information is used by the VSGSN to normalize dialing detailed inputs. The specification is that the 5 PLMN is expected to come from a standard SGSN, and the dialing detailed record is requested by the PLMN to perform its dial management function. The VSGSN+ initiates and responds to messages from the PLMN and interacts with components within the access network to perform these functions. Referring now to Figure 13, it is a protocol that can be found in different parts of the LAN PLMA interface 10, and is used exclusively by the authenticator. This figure is the same as Fig. 8 except that the Gb interface is replaced by the Gs interface 86. The VBSC 62 is replaced by the VSGSN+ 84, which operates like a bridge between the LAN protocol and the PLMN network protocol. More specifically, the figure shows such agreements involving the registration of the VSGSN+84 interface between the MSC/VLR 68 of the PLMN 15 and the LAN SSG. Figure 13 focuses on the switching side, that is, data transmission. For sounds and the like, interconnection with the MSC on the A interface is similar. Referring now to Figure 14, a simplified illustration of a network and protocol environment for a data transfer PLMN server 90 is shown. The VSGSN+r interface connection 20 is as shown in Fig. 12 between the LAN and the PLMN. In addition to performing some internet connections, the access client 52 performs standard GPRS applications, which typically include access to services on the cellular network of the cellular cells as special emails, video material, etc. . The communication is wrong with the information and the agreement as shown in Figure 14. Although not shown, 57 1262005 发明, invention description The application can obtain access to the PLMN GPRS network through the GGSN. The data access client can be combined by standard GPRS software protocol components and can communicate with the VSGSN+ over TCP/IP. Referring now to Figure 15, it is a simplified diagram showing a simplified diagram showing the circuit between the delivery service network and the network environment. Once again, the VSGSN+ application acts as an interface between the LAN 60 and the PLMN, and is connected to the MSC 44 through the A interface. Sound compression and sound propagation are the same as those described in the VBSC above. Please refer to Figure 16 for a simplified illustration of the network protocol environment and 10 description of the data flow management. As mentioned above, the VSGSN+ 84 is used to support non-PLMN networks, which can provide connection types including group-to-group, group-to-server and group-to-offline networks. All of these connection patterns are preferably established and managed by the connection manager 80. The VSGSN+ obtains the flow management information from the connection manager node and formats it into a message group compatible with the PLMN format. At least, the Call Detail Records (CDRs) mentioned above are generated in this way. Figure 16 shows the message traffic for the segmented data service. Circuit switched communication is replaced in a similar manner by replacing the Gs interface with the A interface. 20 As for the VBSC described above, the VSGSN+ can be installed at the wireless LAN location or at the telecommunications service provider switching center. The benefit swap between cost and credibility is used as described above. If a centralized VSGSN+ is used, it preferably has a high level of usability. When most non-PLMN access networks are in very close geographical position, a centralized VSGSN+ will most likely be the best method. In addition to the advantages described above with respect to the VBSC, the VSGSN+ provides support for group-to-group, group-to-server and group-to-offline network communications without being affected by the PLMN with loss of visibility and control. . 5 VSGSN+ concludes that the VSGSN+ performs the following tasks: (1) The authentication challenge of the mobile device using the appropriate method of the mobile device, whether it has a SIM, using a standard or proprietary method, in some examples may require VSGSN + de-interface connection HLR; this is why 10 Gr is required; and (2) - the role of the standard mobile device for the network, if it is to connect to the MSC of the network exchange data, then through the A or Gs interface, if it wants A standard SGSN connected to the decapsulation device uses Gb. If the role of the SGSN is used and directly connected to a GGSN (the Gn interface, it is carried for the real 15-channel, regardless of what the mobile device is to exchange. ). It should be noted here that the VBSC is a special example of the most common of the VSGSN+. Handoff The signal handoff feature of the present invention incorporates signal handoffs to communication control in many wireless networks that do not currently have this capability. Effective signal handoff allows the user to have all the benefits of a wireless LAN while still in the network but still moving, because when he leaves the network, the connection is made by connecting another wireless LAN or if It has a suitable client that is reserved by directly connecting to the PLMN network. 59 1262005 发明, Invention Description In order to provide all the solutions, five general examples are considered as follows, each with sub-examples: 1. Intra Hot Spot signal delivery a) Overlapped wireless network (WNs) operate with the same technology 5 b) operate with the same technique between non-overlapping WNs c) operate with different techniques between overlapping WNs 2. Inter Hot Spot signal delivery a) operate with the same or different techniques between overlapping hotspots b) operate with the same or different techniques between non-overlapping hotspots 10 3. Internal Wireless Wide Area Network (PLMN) signal delivery a) Overlapping PLMNs Operation between different technologies b) Operation of different technologies between non-overlapping PLMNs 4. Signal handover between wireless area and wide area network a) Signal handover between area to wide area network 15 b Signal transfer between wide-area and regional networks. 5. Interpretation of the concept of signal handover via a wired network such as the Internet to connect and reconnect to the WWAN (Hive Cell, GPRS) network. The following example is the invention The signal handover feature is guaranteed to contain: 20 1. Signal handover is commanded by a network control unit or by the user; 2. The network maintains a strong working period logic to consider signal handover and temporarily lose communication. . This period of work can be continued after the communication has been established on the new network. The system can determine that the user has been detached from a network 60 l262 〇〇 5 玖, detached from the invention description and joined to another network, and can then restart - interrupted working period; more nicknamed parent or soft signal Delivery can be supported. Not interrupted when the soft signal is handed over, and connected to the new network is established when the communication is still valid on the original network 5; 4. Signal handover can be achieved by the Ap protocol (the intermediate access control) Or MAC) to deal with. This may require modifications to the existing agreement. If this option is not available, the system logic can support control external to the MAC to initiate communication with another AP and then establish the working period. Although the Ap 10 does not know that a signal handover has taken place, the AP that has been supported by the support communication is best reacted as if the user has left the network. At the same time, the AP-to-communication has been transmitted preferably as a new user (and a new working period) has been accessed into its network. 5_ This logic preferably supports all systems or parts of the system, including: 15 multiple hotspots; each hot bottom can include one or more Aps. Hotspots can operate using the same or different local area network technologies or connection protocols, such as 802.11 'Blue, etc., and one or more wide area technologies or communication protocols such as GPRS, CDMA2000, Reflex. 6. The logic preferably determines the priority of the search to ensure that the delivery is 20 APs that require the same technology between the following technologies; APs of different technologies; regional network and wide area network technologies; and different wide area technologies. 61 1262005 玖, invention description. Preferably, the slamming unit is coupled to the &apos;the service controller is responsible for the mobile telephone communication operation&apos; via a logic/entity designed for the service controller. These working periods are independent communication entities between the mobile device and the other individual or service. The other individual is defined as the near end for the distal end of the working period. The service controller can instantly or non-instantly support services from the far end that can appear to be circuit switched or packet switched, sounds on the stomach/sand. This signal handover thus ensures the continuation of such work periods when the mobile device changes the access path of the mobile device. 1〇 The working period of the stomach is defined in any agreement, standard or non-standard that is common to the mobile device to the service controller. This working period is implemented as a layer above the currently used mobile unit and the access unit, which is a wireless wide area network (WWAN), a wireless local area network (WLAN), an internet, an intranet. Road, pSTN, etc. Therefore, it is added 15 in this embodiment, the network is included in other PLMNs (including gPRS, EDGE and CDMA cellular data), different 8〇211 WLANs, Bluetooth, ISDN, X.25, Frame relay (prame relay). A variety of types of signal delivery are discussed as follows. For the purpose of conceptual clarification, each definition describes a specific example, for example, signal handover between wlan &amp; wwan 20. It is directly emphasized that complex signal delivery logic, which actually includes one or more of the methods defined above, can operate on the same mobile device and be actuated when needed &amp; For example, a mobile device that loses communication within a WLAN may attempt to perform signal handover to another wireless network within the same WLAN hotspot, and look for a possible signal 62 1262005. The invention instructions are forwarded to a WWAN. Therefore, when the actuation of more than one question is practicable, the binding device i, its service control or even the hotspot can choose to use signal delivery with higher priority or advantage. The continuation of the service is ensured by the multi-package network, which does not have the ability to deliver configuration signal 5 or handover. This service is continuously implemented by performing signal handoffs at a level above the network communication. This actual detail varies with the type of wireless network supported by the signal handover. Referring now to Figure 17, a simplified overview of the two-region wireless networks WN1 and WN2 having overlapping portions is shown, which are controlled by the same hotspot center point 100. The first wireless network WN1 includes an access point API for controlling four telecommunication service subscriber units ~μ#. The second wireless network WN2 has an access point AP2 that controls one of the two telecommunication service users, early SU5 to SU6. The Mobile Subscibler (MS) unit SU4 15 is now served by the API, that is, it is part of WN1. When the communication condition within the WN1 becomes unacceptable, it may be received due to a degraded signal on the SU4 or API (eg, due to movement or interference), or because the load within WN1 is too high, a signal The handover is performed, where SU4 becomes part of WN2 and the same work performed via the WN1 20 SU4 continues through WN2 until now. Referring now to Figure 18, a simplified schematic diagram showing the operation of a regional wireless network 110 within an area covered by a wide area network 112 is shown. The area wireless network 110 includes an access point (AP) 114 that is set to be controlled, although, on the other hand, it can be described as a hotspot center by means of the invention as described in FIG. Point controlled. The WAN 112 is controlled by a WAN center 116. Many telecommunications service subscriber units su operate in each network. A particular telecommunications service subscriber unit is transferred between the two networks, i.e., it has been operated between the WAN 12 and transmitted to the WN 110 5, or vice versa. The Huiduo solution was proposed for the implementation of signal delivery while maintaining the working hours of the wireless telecommunications service user within the network. These solutions are designed to support a wide range of mobile devices and network capabilities. It is pointed out here that the solutions described herein, whether they use hard or soft signal handover, can achieve a cost-sharing basis by reducing the hardware cost and thereby reducing it on a time-sharing basis. There is more than one interference typically occurring in a single radio unit within a single mobile unit. Solution 1 - Internal Hotspot Signal Handover between Overlapped Wireless Networks One Same Technology 15 L continues to strongly switch wireless network communications during the same guard period.

Referring now to Figure 19, it shows the signal handover using the same technique between overlapping overlay networks. When the network or mobile device recognizes that the communication condition is unacceptable, the corresponding individual leaves the communication. The user 2 device may simply leave and switch to another wireless network, or the Ap may include a stop-stop service that actively abandons the user. In this example, the MS tries to join another network, in this case for purchase. Once the communication is re-established, the towel (10) logically determines that there is a request from the user device (waiting or inserting), and the requested service period is automatically re-joined. When the assigned central point logic (the cp logic within the Ap) is implemented, the AP 64 1262005 发明, the invention indicates that the accepted wireless network is notified by the push or pull logic to request the secondary MS to work. period. In the example of the push logic, the AP (4) of the service wireless network informs the towel of the Yu (4) pure wireless network (and possibly other adjacent wireless networks) of the Ap; the pull logic means the previous one. The AP receiving the wireless network requests to be added to the information of the MS's requested working period of the new network. 2. / There is also a regional wireless mobile assistant to assist in the hard network control signal handover. Please refer to Figure 20, which is to simplify the flow chart for showing how the signal handover is performed without the assistance from the mobile device. . In this implementation, the second receiver within the proximity wireless network measures the reception from the user that needs to be signaled. The second receiver may be a separate receiver or simply include some time slots allocated for this purpose to the general AP receiver operating meter. The decision to hand over the mobile device signal from one WN to another WN is determined by the CP when the 15 is the centralization logic, or by the service eight? And the APs that are ready to receive WNs. If the logic determines that the pre-receiving WNs can provide improved communication services, each time it measures the mobile device to one of the AP communication characteristics and its loading conditions (one of the conditions or both), the signal is handed over. occur. 20 The mobile device is handed over by the WN of the service to the received WN in two ways: a) if the mobile device can receive wireless network selection control, its command signal is handed over to the selected (received WN, including if it is possible to transmit the WN communication parameters to speed up the signal handover process; 65 1262005 发明, invention description b) if the mobile device cannot accept wireless network selection control, it abandons the WN by denial of service The service; then the mobile device logs into another WN, and only the selected (received) WN accepts its request to join the network. 5 3. Mobile device with hard network control signal handover In this implementation, the regional wireless mobile device looks for additional channels to measure 3: and determine the communication conditions of other networks and send this information to the Ap. The network infrastructure can be centralized or decentralized whereby the Ap area maintains the information or sends the information to the CP. 10 The wireless mobile device in the area searches for additional channels when only one of the following conditions is met: The mobile device is programmed to execute within the normal interval to perform the acquisition and the end of the interval. The search interval can be pre-programmed or controlled via the Ap transmission. 15 Violation of the mobile device is commanded by the AP to search for additional channels. This will typically occur when the AP decides that a signal handover may be needed. c) The mobile device is commanded by the cp or distributed cp logic to perform an search for additional channels. This search is needed to support instant hotspots (Hot

Spot) Analysis of communication conditions and allowing for the redistribution of 20 WNs when necessary or for testing purposes. The CP (or the decentralized cP logic within the ap) then determines which of the best WNs the mobile device can signal for. The decision is based on the reported communication conditions, the download conditions of the WNs and the services required by the mobile device. The AP controls the WN and is then prompted. 66 1262005 发明, Invention Description The swaying device signals the transmission of the WN of the service to the received WN by reference to one of the two methods discussed in Figure 20: a) if the mobile device is acceptable When the wireless network selects control, its command is signaled to the selected (received) WN, including if the WN communication parameter can be transmitted to accelerate the signal handover procedure. b) if the mobile device is unable to accept the wireless network selection control, it may waive the service WN by denial of service; then the mobile device attempts to log in to another WN, and only the selected (received) WN accepts it Request to join the network. 10 4 · Mobile device controlled by hard signal handover In this implementation, the wireless mobile device in the area searches for additional channels when (1) the quality of the service is gradually unsatisfiable, or (ii) when it receives an instruction to send the parent signal When a better channel to a different WN. The mobile device then performs a search and measurement of all wireless networks, which can receive and determine which one is the best network to switch. The conditions for determining the optimum W N to be switched may include measurement of communication characteristics and load of the network. The mobile device then leaves the WN that provides the service to it. The selection is reserved for the mobile device and a prompt, 20 is delivered prior to exiting the WN to speed up the signal handover procedure. After being detached from the current service WN, the mobile device attempts to add the WN selected for signal delivery. The system can recognize that the mobile device has been disconnected from its current service WN to a new WN for signal delivery and to ensure that its telecommunications work period is resumed via the new WN. 67 1262005 Although the preferred embodiment of the signal handover method is not necessary for network assistance, the selection may be retained to implement the nickname handover as described with network assistance. Network assistance can be provided in any of the following: (I) Identification of acceptable WNs that can be received, that is, their communication parameters 5, for example, to avoid logging into WNs belonging to other systems; (II) Information on load conditions and available parameters of other neighboring WNs; and (Hi) information on expected load conditions of the service WN. 5. Network command, action control hard signal delivery 10 Please refer to Figure 21, which shows that the network control that exists in any of the CP or 4 AP determines that the service WN cannot support the mobile service. Communication conditions. The network control may or may not determine the possible neighboring network with the support service monthly force; if this capability is determined, the network control (via the AP communication) delivers the information on the communication parameters that can use the WNs to 15 Wireless mobile devices in the region. The mobile device then searches for other WNs that can support its service requirements. In a preferred embodiment of the method, the mobile unit time multiplexes the search for the neighboring network of its communication within the service WN, thereby minimizing the impact of the signal handover service. When this is not possible, an optional embodiment is maintained, wherein the mobile device accesses the service network and searches for neighboring WNs. In such embodiments, the mobile device can use the data provided by the network or use it in an arbitrary search. Based on this search, the mobile device decides which _WN will hand over the signal to try to access the WN. 68 1262005 发明, Invention Description If the mobile device does not successfully access — the WN is selected, the action access attempts to fetch the best WN based on its search results, and so on. After the access has been successfully completed, the network confirms that this is the beginning of the previous period of the letter to ensure the continuation of this telecommunications work period. 6. Soft signal handover (s〇ft handoff) Four of the above five methods with hard signal handover can also use "soft (''' signal handover. This term "soft" signal is handed over here. Is used to refer to the seamless continuity of maintaining communication when transferred from -WN to another, regardless of the telecommunications work period activities within the wireless mobile phone in the area, including those based on communications. The time limit is continuous, and there is no impact. The soft signal handover supported by this embodiment can be established between the mobile device unit and the second AP before leaving the current serving AP. In another method, it can also be achieved by switching between WNs quickly and without interruption in the telecommunications work period. Soft signal handover can be used, for example, when the second Ap is used as a design Transmitting outwards is actually achieved by listening to one of the current mobile devices. In the opposite example, where the mobile device unit takes the initiative, the mobile device can be designed to listen to it. Time slots for active neighboring systems. There are a number of methods discussed below for soft handoff within a WN. a) Soft network control signal delivery without regional wireless mobile device assistance 69 1262005 In this implementation, the second receiver in the adjacent wireless network measures the reception of the handover by the user request signal. The second receiver may be an eight-way receiver or allocated for this purpose. The normal AP receiver controls some time slots in the plan. 5 The network control provides the precise parameters of the new service AP to the mobile device and provides signal handover control to the new service WN, so there is no in the telecommunication service. b) providing a mobile device with soft network control signal handover assistance. In this implementation, the wireless mobile device in the area searches for additional channels to measure and determine the communication conditions of other networks and transmit the information. Ap, which maintains the information or sends the information to the CP regionally based on the centralized or decentralized infrastructure. The HS network (centralized or decentralized) is now based on the mobile device The information provided and the operational status of its WNs are used to select a new service. 15 The network control provides the precise parameters of the new service AP to the mobile device and provides signal handover control to the new service w N. To ensure uninterrupted communication, the mobile device now establishes communication within the new service WN without cutting off its old job communication. Once the communication is established, the action is out of service and has served its position. The change 20 implementation allows the mobile device to send a prompt before leaving the job. C) Soft Signal Handover Control Actions In this implementation, the wireless mobile device in the region searches for additional channels when the quality of the (1) service is gradually unsatisfied. Or, (ii) when it receives a command to signal the delivery to a preferred channel in a different position. 70 1262005 玖, invention describes the tracking device and then performs all wireless network searches and measurements, It can then receive and decide which one is the best network to be switched. The optimal w_ condition to decide to be switched may include measured communication characteristics and/or network load. 5 The slamming device then prompts the network controller to indicate which WN it selected is to be handed over as a signal and wait for an acknowledgment or end of time, where it establishes communication with the new WN without cutting off the current WN. After the communication has been established, the mobile phone leaves the WN that it has been served. The selection is reserved for the mobile device and a prompt signal is sent between the WNs and the network command. The mobile device controls the soft signal handover. The method is implemented in the network that exists in the cp or Ap. Control determines when the service WN cannot support the mobile service communication condition. The network control may or may not determine the possible neighboring network with the support service capability; if the 15 capabilities are determined, the network control (via the AP communication) delivers the information on the communication parameters of the available WNs. Wireless mobile device in the area. Once the mobile device has the possible WNs, the procedure continues as in the previous example (action control soft signal handover). An intra hot spot handoff that operates in the same technology between non-overlapping WNs. Referring now to Figure 22, a simplified summary of one of the two sub-overlapping WNs shown within the same hotspot is shown and is coupled to a single central point 100. This hotspot can include additional WNs. When a mobile device unit is disconnected from a WN communication, and at the same time, the communication condition does not allow communication with the 71N 1262005, the invention description, another -WN, which assumes that the use is not within the coverage of the hotspot. It may be that the hotspot actually covers the mobile device unit, but it is not supported now, but this example is preferably in the same way that the mobile device unit is not within the covered area. deal with. However, the time for the pause can be constant or can be changed, and the logical communication of the mobile unit can be maintained or frozen. This pause can be defined differently depending on the circuit switching communication and the divided communication, or the sound and data. The communication with the mobile device unit is assumed to be lost until the end of the suspension. If, when the communication continues, the mobile device unit accesses another WN, the hotspot preferably controls the first signal delivery example defined by the above-mentioned time period (at the telecommunication work level, the continuous wireless network) Powerful switching of road communication). Operation in different techniques, internal hotspot signal handover between WNs is also described in FIG. 22 in an embodiment, the difference being that in this example the WNs operate with different techniques, for example 8 分别2. Ub wireless network (Wi-Fi) and Bluetooth. Since different techniques are used, it makes no effect on the overlap of the WNs; the assumption is that the mobile device unit performs signal handover by a WN before another WN establishes communication. Preferably, signal handoff is performed in the same manner as described above in detail in the same technical operation as described above and is described in detail above. As before, the mobile device unit is not considered as if it has been detached from a network. Rather, for a fixed or adjustable pause duration of 72 l262〇〇5 玖, the inventive device's logical communication is reserved or frozen, which is maintained during the request of Ihai Telecom. status. This pause can give different definitions for the switching circuit communication and for the packetized communication. At the end of the suspension, communication with the mobile unit is assumed to be lost. 5 The communication was defined missing and a new communication was re-established. The hot spot controller (Hot Spot contr() ller), or any connection logic thereon, checks the requesting telecommunications work period of the user mobile device unit to establish communication. If the hotspot connection logic successfully establishes the mobile device unit to maintain the overnight (one or the evening telecom working period), the hotspot control immediately considers that it is a continuous wireless network communication in the telecommunications working period level. The example of the signal handover as defined above for the strong handover, and the telecommunications work period or the telecommunications work period are re-established in a short period of time without data loss. The internal hotspot signal delivery between the overlapping hotspots by the same or different techniques 15 or more may be extended to include the action element accessing one of the different hotspots WN instead of A new WN controlled by the same hotspot, such as the overlap wNs shown in Fig. 23 and the non-overlapping WNs shown in Fig. 24. In the example of Fig. 24 (overlapping WNs), signal handoff is considered to have many similarities to those described by 20 pairs of signal handoffs between the WNs in the same hotspot. All of the signal handoff techniques mentioned above are used in this example as well as hard and soft signal handoffs. Internal Hotspot Signal Handover Between Non-Overlapping Hotspots Using the Same or Different Techniques An embodiment is provided for internal hotspot signal delivery when the hotspot is non-stacked. 73 1262005 范例, an example of an inventive description. This is shown, for example, in Fig. 24, which shows a hotspot controller 110 and two non-overlapping hotspots HS1 and HS2. Within each hotspot is a wireless LAN, WN1 &amp; WN2. This hotspot can use the same or different technologies. This embodiment operates in the same manner as an example of 5 non-overlapping WNs within the same hotspot, as described above with respect to Figure 23, and when the mobile device unit exceeds the coverage of any WN It is described by the temporary loss of communication. The above solution can also be applied in the example of Fig. 24. The hotspot controller 110 controls at least one of the entities of the hotspots or at least exchanges information between the hotspots, which ensures that the mobile device unit remains frozen during the telecommunications period, that is, the request is not lost. On the other hand, the hotspot that last served the mobile device unit maintained the telecommunications operation period in a frozen state. Maintaining the telecommunications work period opening can be performed by not providing an indication of the communication with the mobile device. Other components within the system 15 can ensure that the telecommunications service period can be truly maintained in this frozen state as long as no such information is provided, and at least for the time of the required suspension. Referring now to Figure 24, it is assumed that the mobile device M was last served in the wireless network WN1, which is located within the hot spot HS1. After the mobile device loses communication or service within WN1, it then establishes communication with the wireless network as it then comes within the coverage of WN2 within hotspot HS2. Information related to the establishment of this communication is delivered to the hotspot controller 无论i 〇, whether the controller is centralized or decentralized. A search is then carried out to determine whether there is a frozen telecommunications work period during the operation of the device. If a frozen telecommunications work is discovered, it is re-established to ensure that no loss is lost in the communication. The selected communication technology supports this signal handover procedure in the same way as the signal handover between WNs of the same hotspot. 5 This embodiment thus ensures that the transmission between WNs of the same hotspot or different hotspots maintains the same seamless characteristics. Internal PLMN signal handover between overlapping PLMNs operating in different techniques. Referring now to Figure 25, it is a simplified overview of signal delivery between overlapping PLMNs, which has two cellular networks. road. 10 2 PLMNs, PLMN1 120 and PLMN2 122 overlap. Each PLMN has an access point 124 and 126, respectively, and the access point is ultimately connected to a shared logic controller 128. Referring now to an embodiment illustrated in Figure 25, an improved method is provided for providing a service to a mobile device unit that can receive 15 of the two PLMNs within the area covered by the two PLMNs in which it is currently located. signal. That is, the two PLMNs use the same technology or the mobile device unit can be connected using two techniques. The data communication used by the mobile device (including voice over IP VoIP) is now served by PLMN1 120. The quality of the service becomes difficult to accept, and the mobile device is instructed to search, or it searches for itself, another service. The result of this search indicates that it is to be served by PLMN2 122. According to this embodiment, the mobile device unit is preferably served by the service controller 128. The service controller is typically operated by a different service than the PLMN, although in some instances it may in fact belong to one of the PLMN carriers. As will be explained hereinafter, embodiments will provide instant continuous service, if the mobile device can be configured to maintain synchronous communication with both PLMNs 5 , and for this simpler example, the mobile device leaves communication with the plmN1 And then establish communication with PLMN2. When the service provided to the mobile device within the PLMN 1 becomes unreachable, the mobile device unit searches for another service whether due to bad communication conditions, load or other conditions within the pLMN1. The service control device is in the ongoing telecommunications mastering period to become a preset temporary longest transient, wherein the pause can be fixed or can be set. The logical communication of the mobile device unit is thus retained or bundled, while the physical communication is inoperable or is being re-established. This pause can be defined differently by sound or different types of data. Before the end of the suspension, 15 communication with the mobile device is assumed to be lost. The next selective technique was proposed to use signal handoff between the pLMNs. 1. Continuous switching of wireless network communication during the telecommunications satellite level 20 When the PLMN' service controller or mobile device unit recognizes that the communication condition is unacceptable, the opposite end abandons communication. Preferably, the communication abandoned by the service controller is configured to cause the mobile device to determine the communication by transmitting a path to a mobile device unit or by interrupting the % of the mobile device during the telecommunications operation. Need to be switched. The line - the mobile device unit 70 can then be switched as long as 76 1262005, the invention description is disconnected from communication and another PLMN is searched, or the PLMN 1 stops the service to effectively detach from the mobile device unit. In both cases, the mobile device unit finds that another PLMN is present in the area and attempts to join its network, in this case PLMN2. Once the communication is re-established, the service 5 controller recognizes that one or more requested telecommunications work periods exist in the reconnected mobile device unit and the telecommunications work period (or the telecommunications work period) and is thus recognized as an automatic re Join. Another embodiment uses the service control logic present in the PLMN. In this example, the PLMN accepting the mobile device unit discovers whether the mobile device unit has subsequently been serviced and whether there is a request (freeze) of the telecommunications work period by contacting the PLMNs operating within the area; In respect, one of the open working periods is maintained to notify neighboring pLMNs. 2. Hard Network Control Signal Handover Assistance Mobile Device Unit In yet another embodiment, the mobile device unit searches for and identifies another acceptable pLMN before exiting the PLMN 15, which is now acceptable or Available for use. The mobile device then sends a notification to the service controller or to another entity to control the logic of its physical communication. This entity then refers to the mobile device not switching to the new PLMN, where the new PLMN is determined to accept each logical condition (work relationship, 20 load conditions, mobile device service application contract, etc.). The area wireless mobile device unit searches for a range covered by another PLMN when either of the following conditions is met: a) The heart unit is programmed to perform the search normally. The search interval can be set or controlled by the service controller or the communication logic controller command. b) The mobile device is commanded by the service controller or communication logic controller to search for additional channels. This typically occurs when the latter decides that signal delivery is needed. 5 The service logic (or equivalent communication control logic) can then determine if the mobile unit is healthy enough to actually hand over the signal to another PLMN. This decision is based on the replies to the communication conditions, the load conditions of the participating PLMNs and the services required by the mobile device. If this signal handover is considered worthwhile, the PLMN will be prompted. 10 The mobile device is preferably handed over to the receiving WN by the WN of the service in one of two ways: a) if the mobile device can accept wireless network selection control, it is ordered to hand over to the mobile device The PLMN is selected (received). Preferably, the signal delivery includes the transmission of the PLMN communication parameter to speed up the delivery procedure; 15 b) if the mobile device is unable to accept the wireless network selection control, the network is denied the service because it refuses to provide the service Serving PLmn. 1 - Hard Signal Handover Controlled Mobile Device In yet another embodiment, the regional wireless mobile device searches for another PLMN coverage when 20 (1) quality of service is gradually deemed to be unsatisfiable, or (9) when it receives from the service An instruction of controller 128 or similar communication control logic requires a change to a preferred communication service. The action is executed and then it can detect the search and measurement of the machine and determine which one is the best pLMN that can be switched. The possible conditions for determining the best PLMN to be handed over include the measured communication condition characteristics or any other relevant parameters that may be provided by the particular PLMN. The mobile device leaves the PLMN that is currently serving it. In a preferred embodiment 5, the mobile device unit sends a prompt before disengaging the PLMN to speed up the signal handover procedure. Prior to detachment from the current serving PLMN, the mobile device unit attempts to join the PLMN that has been selected for signal delivery. The service controller 128 recognizes that the mobile device unit has been handed over by the PLMN signal of the previous service to a new PLMN, typically by matching it to a requesting service period as before, and via the new PLMN. Restart its working period. In a preferred embodiment of the above signal handoff method, no network assistance is required. However, in another embodiment, network assistance is used. 15 Network assistance is typically provided to any of the following: (i) the identification of acceptable adjacent PLMNs, ie the provision of their communication parameters, for example to avoid attempting to log in to operate within the area due to other restrictions but not PLMNs that can be accepted; (ii) information on load conditions or available parameters of other neighboring PLMNs 20: and (iii) information on the network load conditions of the service PLMN. 1. Network Command, Action Control Hard Signal Handover Again and again, the embodiment includes a hard signal handoff that is a network command but is controlled by the mobile device unit. This embodiment is implemented when the telecommunications operating period logically determines that the serving PLMN cannot support the mobile device communication condition when there is a 79 1262005 发明 invention described in the service controller or other communication control logic. Network control may or may not determine the availability of a neighboring network with the ability to support the service. If a capability is recognized, then the network control preferably transmits information about the possible PLMN2 communication parameters to the regional wireless mobile device unit. The mobile device then searches for other PLMNs that can support its service requirements. In a preferred embodiment of the invention, the mobile device unit multiplexes the neighboring network with the communication at the serving PLMN, thereby minimizing the impact of the signal delivery service. When signal handoff is not feasible, the choice for the mobile device unit is to replace the service's pL_ access and search with the adjacent PLMNs. In both examples, the mobile phone can use the search previously provided by the service controller network or perform an arbitrary search. 15 Green search, the mobile device decides that the recording signal is handed over to another PLMN and attempts to access the PLmn. If the mobile device does not successfully access the plmn of (4), the mobile device attempts to access the next best PLMN as indicated by its search results, and so on. After the 20-inch access has been successfully completed, the service controller confirms that the connection is actually a restart of the telecommunications service period and thereby ensures continuity of the telecommunications service period. 2. Soft k number handover (s〇ft Handoff) The three embodiments of the above four embodiments using hard signal handover are also 80 1262005. The invention description can be implemented using soft signal handover. As used above, the term "soft signal," as used herein, is intended to mean seamlessly continuous communication when switching from one pLMN to another, without affecting the electrical work within the regional wireless mobile device. Period activities, including those based on time-limited continuous communication. That is, it has limited communication limitations, such as TCP, and time-limited applications such as signal streaming. Regarding the soft signal handover, it is not frozen during the telecommunications work period, so there is no feeling that the service is downgraded. The soft signal handover supported by the present embodiment can be implemented by establishing communication between the mobile device unit and the second PLMN prior to disengagement from the currently serving PLMN. On the other hand, it can be achieved by switching PLMNs quickly to no interruption in telecommunications work period communication. In order to support the latter conditions, the service controller 128 can present prior information to the mobile device unit. This prior information can be temporarily maintained in the service during signal delivery. The mobile device logic can also switch to a mode that requires less degradation of one of the data to extend the time supported by the buffer providing continuous service if the user of the mobile device unit is acceptable if the common service is in the second PLMN The network can be used, at least in the direction of transmission of the mobile device, the letter 20 can be soft. So that the candidate PLMN can have its own resources to listen to the mobile device before the signal handover actually occurs; or conversely, when the mobile device begins to be responsible for the soft signal handover, and then still connected to the The mobile device unit of a PLMN can use its own resources to monitor the neighboring PLMN. 81 1262005 发明, Invention Description A number of methods represent the implementation of this soft signal handover by the following embodiments: a) Soft network control signal handover without mobile device assistance In this embodiment, in the neighbor (candidate The second receiver within the PLMN 'has measured the received signal from the mobile device after it has been prompted by the service controller of the mobile device that it may need to be taken out by the parent device. The second receiver can be a dedicated receiver that can include temporarily available resources or simply some time slots within the PLMN work plan for this purpose. 10 The service controller provides the parameters of the new PLMN to the mobile device unit so that there is no interruption in the service. b) Mobile device assists soft PLMN signal handover. Still another embodiment includes soft signal handover from one of the PLMN to another PLMN with assistance from the mobile device unit. In this embodiment, the 15 忒 mobile device searches for additional channels to measure and determine the communication conditions of other PLMNs and to deliver the information to the service controller or similar communication control logic. The service controller or similar communication control logic, whether centralized or decentralized, now selects a new service PLMN based on the mobile device unit and the operational status of the pLMNs. Preferably, the PLMNs provide this status to the service controller/communication logic to support the mobile device. The service controller then provides the parameters of the new serving PLMN to the subscriber. Furthermore, if the new service PLMN can receive it. The service controller provides signal handover control/indication to the new serving PLMN. 82 1262005 发明, Invention Description In order to ensure uninterrupted communication, the mobile device unit now establishes communication within the new serving PLMN without interrupting the old PLMN communication. Once the communication is established, the mobile device leaves the old pLMN. In the event of a change, the mobile device unit sends a prompt 5 signal before leaving the PLMN. c) Mobile Device Control Soft Signal Handover A further embodiment relates to soft signal handover from the PLMN to another PLMN under full control of the mobile device unit, which is only assisted by the mobile device as compared to the previous embodiment. In this embodiment, the mobile device itself searches for the channel of the extra PLMNs by itself. (1) The quality of the service is gradually unsatisfied and the better service that cannot be obtained within the current 1&gt;1^1^^, or (ii) It receives an instruction to signal the delivery to another plmn. The mobile device then performs the search and participates in measuring all of the wireless networks it can receive. From the results of this measurement, it can be determined which one is to switch the best network. The most appropriate conditions for deciding to be switched include the measured communication characteristics and the network load if there is a propagation from the service controller or a service controller is available. The mobile device then prompts the service controller/communication logic, the 20-PLMNS it chooses to make the signal handover and wait--acknowledgement or time-out, that-point is that it establishes communication with the new PLMN without The current PLMN is interrupted. After the communication is established, the mobile device|(10) is away from the PLMN that has served it. In the event of a change, the action is sent to send a prompt signal before leaving the PLMN. 83 1262005 玖, invention description d) network command, action control soft signal handover again and again embodiment includes a network command signal handover, once commanded by the network has been completely under the control of the mobile device unit At the time of implementation. The method is implemented when the mobile device service control/communication logic controller determines that the serving PLMN cannot support the mobile device service communication condition. Service Control may or may not determine possible neighboring PLMN networks with support capabilities. If the capability is determined, then the service control transmits the data on the communication parameters of the available PLMN to the regional wireless mobile device. 10 Once the mobile device owns the candidate PLMN, the procedure continues as in the previous action control soft signal handover embodiment. It should be noted here that the above PLMN concept can be extended to any type of wireless wide area network (WWAN). Such extended use is contemplated to be encompassed within the scope of the invention. 15 Interacting PLMN Signal Handover with Different Techniques in Non-Overlapping PLMNs Referring now to Figure 26, it is a simplified overview of one of the two non-overlapping PLMN networks with a common service/communication logic controller. The two networks PLMN1 130 and PLMN2 132 each have individual access points 134 and 136. A mobile device unit 138 is on the edge covered by the PLMN 1, and the coverage of 20 and PLMN 2 is nearby but without any real overlap. For purposes of illustration, it may be that the PLMNs have overlaps in certain areas but do not include the current MS area, but this does not affect the operation as long as the mobile device unit 138 can arrive. Logic controller 140 is located at a point accessible to both PLMN networks. 84 1262005 发明, invention description Once the action is installed and PLMN communication, the example is PLMN1, and its working period is maintained by the service (4) _ 10 15 . The service controller; East knot the ongoing mobile device telecommunications work ^ most often to a preselected maximum length of time. Therefore, the logical communication of the mobile device unit will be maintained or frozen, and the actual communication is not operational or is being established. This maximum length of time can be defined for sound and different types of data. At the end of the pause, communication with the mobile unit 138 is assumed to be lost. While the communication with the current PLMN is lost, each of the logic in the panning unit typically contacts another PLMN service continuously or sequentially. When it enters the coverage of another PL_, in this case PLMN2, which establishes communication with the RAM 2, however, in the preferred embodiment, the mobile unit is added to the PLMN network. Provide the address of its service controller. The signal handoff procedure in this example is implemented at the telecommunications work time level without involving the PLMN. When the mobile device unit re-establishes communication with the service controller 140, the service controller checks for any telecommunications work periods that the line 20 is still requesting, that is, those pauses have ended and are not maintained by them. Participants cut off the period of telecommunications work. The only requirement is that the mobile device can communicate with the service controller via the PLMN currently being used to communicate. 85 1262005 玖, DESCRIPTION OF THE INVENTION Signal Handover Between Wireless Areas and Wireless Wide Area Networks A further embodiment is related to signal handoff between a wireless LAN and a WAN. More particularly, an additional embodiment of the present invention illustrates, on the one hand, signal handover for optimal service with dual mode mobile devices accessing a wireless wide area network 5 such as a PLMN (e.g., GPRS), the other illustrative By one or more wireless area networks like 802. 11 A hot spot in a location of a WLAN or a Bluetooth support that is served by one or more access points. Such wide area or regional networks are used herein to refer to the term "communication modes." The desired plot is illustrated in Figure 10 on page 18. As before, the mobile device unit is connected via a logical entity designed for the service controller, which is responsible for maintaining the operational time of the mobile communication message. In this example, the purpose of the signal handover is to support the use of the best communication in the mobile device, and each defined system service condition is subject to the limitations of the WWAN and the WLAN. Typical service system conditions are the lowest cost of best service quality, however other conditions τ are used within the entity that controls the flow of the communication: the mobile device client, the service controller and the communication network (the WWAN) And the WLAN). It will be understood that because the hotspots are all within the scope of the WWAN, the problem of service quality falling below the critical level will not occur. Another consistent example considers a mobile dream office egg J*** Muller has another search module in the early 7L

Examples of the ability of the formula, and the old waste i i , a .  The tI should once again have the ability to search for another communication mode, but only by interrupting the current communication mode. 86 1262005 发明, DESCRIPTION OF THE INVENTION The logic used in the presently preferred embodiment operates simply by prioritizing automatic correlation with the WLAN connection. This means that whenever a hotspot connection and a PLMN connection are available, the hotspot connection is more popular. In this embodiment, a mobile device unit is connected to a PLMN when it detects the presence of a 5 WLAN. When the WLAN service has priority, the mobile device unit tries to connect to the WLAN. The method by which the mobile device unit verifies that the WLAN can be used and establishes communication with its service controller via the WLAN is as described above and will not be repeated here. During a signal handover, the mobile device unit is connected to the new network 10 and again establishes communication with the service controller. In another aspect, the service controller establishes communication with the mobile device unit. The open honeycomb cells are maintained during the telecommunications work period as long as needed, and at least until the reconnected mobile device is identified or the timeout has been reached. Maintaining the working period in a cellular data service means that the cellular data protocol is used and the user data is actually transmitted via any access channel used, such as in a WLAN. This ensures that the cellular cell service will not be affected even if a non-cellular cell channel is used for access by the mobile device. If considered, the access channel that is actually used can be a channel that can actually be thought of as a type, especially the area 20 LAN can be used by the user. To further clarify this point, a telecommunications service user of a GPRS network can access its cellular service via one of the gateways discussed above. The service controller in this example can be implemented within the GPRS gateway or as a separate entity. The mobile device uses the WLAN access as long as the WLAN service 87 1262005, the invention stated that the quality is acceptable 'any condition defined within the mobile device client, the service controller or both. When the mobile device detects that the quality of service within the WLAN hotspot is unacceptable, or when its service controller indicates this, its last 5 performs a WWAN access search. If the communication is still available in the WLAN, the mobile device can prompt its service controller for signal handover and its need to search for different access paths, including WWAN access. A different embodiment has the service controller indicating that the mobile device unit should signal to the WWAN. It can be a general instruction or can be a WWAN access that is specifically intended to operate within the area in which the mobile device is located. The signal handover from the wireless area back to the wireless wide area network therefore always or almost always occurs when the mobile device's WLAN connection is severely degraded or almost lost and the mobile device detects that the WWAN can be used (eg, PLMN, GPRS). In general, it means that the mobile device unit simply removes the range of the WLAN. The various signal handoff methods discussed above can be used in general in the current WLAN to WWAN example. Five different embodiments are discussed as follows: Powerful switching with a wireless network that is quasi-continuous in telecommunications. In the first embodiment, when the hotspot controller, the service controller, or the mobile device recognizes that the communication condition is unacceptable, the opposite end abandons communication. The communication that is abandoned by the service controller will be by transmitting a signal to the mobile device or by interrupting the telecommunications period to the point at which the mobile device determines that communication must be switched. The Ms is then simply 88 1262005. The invention relinquishes communication and seeks a WWAN access to be switched, or abandons communication when it no longer knows the service from the WLAN. In either case, if the MS finds a WWAN activity in the area, it will try to log in to it. Once the communication is re-established, the service controller recognizes that one or more of the requesting telecommunications work periods and the identified telecommunications work period (or multiple telecommunications work periods) are automatically rejoined. . Another embodiment of the present invention is directed to an example in which service control logic resides within a WLAN hotspot. In this example, the service controller within the wlan is discovered by contacting the WLAN controller to discover that the mobile device 1 has been served and has no request (freeze) during the telecommunications work period. . 2. Mobile device assists in the transmission of network control signals. In this embodiment, the mobile device is detached from the search and identification of the gradual degradation of the WLAN, which is still connected and despite an unacceptable quality of service. - Acceptable WWAN operations. The mobile device then forwards the details of the identity data generated by the service controller to the service controller, or to another entity that actually controls the logic of the actual communication, and the decision is an essay Each of the defined logical conditions (roaming agreement, load condition, mobile device telecommunications service contract, etc.), the entity 20 then does not cause the mobile device to switch to the WWAN. . The mobile device is handed over to the receiving WWAN by the WLAN of the service in one of two ways: a) If the mobile device can receive wireless network selection control, it is π to the parent to the W WAN. Preferably, if possible and required, the transport package includes the WWAN communication parameters, thereby speeding up the handover procedure. b) if the mobile device is unable to accept wireless network selection control, it simply leaves the WLAN of the service by interrupting the service; at that time, the mobile device unit attempts to log in to the WWAN and access its service control logic 3. Mobile device control hard signal handover In a further example, the mobile device unit searches for WWAN coverage when (1) the quality of the service is gradually unsatisfiable; and 1 ((1) when it receives one from the service controller or similar communication control logic When the order is handed over to another preferred communication service, the mobile device then performs a search on one or more ANs for which it can be priced, and the _ is to be switched. The preferred one is usually granted by its original telecommunications service provider, 15 but the specific logic within the mobile client or the control from the muscle frequency can change this priority. The mobile device then leaves the service. Its de-frequencying, if it has not been cut off. In the variant implementation of this embodiment, the mobile device delivers a prompt before the WLAN is removed - to speed up the (4) handover procedure and to change the system and telecommunications work period After the WLAN is detached from the service, the mobile device unit attempts to join the Wan selected to perform the signal (4). The service controller preferably determines the mobile device unit p gentleman乂 疋 疋 has been signaled to the WWAN by the previously served WLAN, _ the corresponding telecommunications work period and allowed the working period 90 262 〇〇 5 玖, invention description or the work period to re-via the new connection Although there is no need for network assistance in the preferred embodiment of the signal handover method, an additional embodiment is provided to implement network-assisted signal handover. Network assistance can be provided by any of the following: 5 (1) Accept the identity of neighboring WWANs, that is, provide their communication parameters, such as avoiding attempts to log in WWANs whose known operations are within this area but are not acceptable due to other factors; (Π) Information on service conditions Or adjacent |\^ to other available parameters, for example, if their services are known or expected to have a problem 10 in the region; and (111) information that is expected to be available in the service WLAN. Network commands, mobile devices control hard signal handover. Again and again, embodiments are related to a network command signal handover. Following the command, the signal delivery itself is controlled by the mobile device unit. The method 15 is such that when the telecommunications service period control exists in the service controller or its communication control logic, the service amount cannot support the mobile service communication condition. Network control can be used to determine WWANs that may be available within the service area, but this is not necessary. If the user is determined, the network control transmits information about the parameters associated with the candidate to the mobile device unit. The mobile device unit now searches for any WWAN that can support its service request. In a preferred embodiment of the method, the mobile device unit searches for it on time and while trying to maintain communication with the WLAN. The user who provides the defect has a predetermined level of service, so the letter 91 1262005 发明, the invention description "delivery service impact is minimized. When this is not feasible, the change implementation allows the device to be disconnected from the machine. And only searching for the secret service. In two embodiments, the mobile device can use the information previously provided by the service controller network or perform an arbitrary search. Based on the search, the mobile device determines whether there is a location. The execution signal is handed over to the WWAN, and if so, it attempts to access the WWAN. If the mobile device cannot successfully access the first WWAN attempted, then it will try to access the search result in it. The next best 10 WWAN, and so on. After the access is successfully completed, the service controller _ recognizes this as the pre-telecom work period or the previous most telecommunications work period A new start is made to ensure the continuation of the telecommunications work period. 5. Soft Signal Handover 15 Three of the above four embodiments relating to hard signal handover can also be implemented to provide soft signal handover. It is explained that the term soft signal handover as used herein refers to maintaining seamless continuity of communication when converted from WLAN to |^^^ without affecting the period of telecommunications work within the wireless mobile device in the area. Activities, packages or those with continuous communication of 20 in the time limit. The difference is that they are not frozen during the telecommunications work period, and therefore there will be no degradation in the service. The soft signal delivery supported by the present invention can be deviated by Establishing communication with the mobile device unit of the WWAN before the service WLAN, or by joining the WWAN quickly, when the WLAN is detached from the WLAN, the communication is not interrupted during the telecom operation. In order to support the latter condition, the service is supported. The controller may first provide information to the mobile device. The previously provided data may be temporarily stored to maintain service during signal handover. The mobile device logic may also switch. Up to one of the less-required degraded modes to extend the time supported by the buffer to 5 is a continuous service that the user of the mobile device unit can receive. A variation of the soft signal handover embodiment takes this into account. The mobile device unit can join the WWAN and effectively perform the signal handover before leaving the WLAN. The soft signal handover can be controlled by the network control or the mobile device. 10 a) The network control soft signal is handed over to the network. In a control embodiment, the mobile device unit searches for each of its own logic, or from each of the service/communication control WWAN channels, to measure and determine their communication usability. The usability data is then used. Transferred to the service controller or similar communication control logic, where 15 may be centralized or decentralized as described above. The service controller or similar communication control logic can now select the new service WWAN based on the information provided by the mobile device unit and the operational status of the WWANs. The latter can be implemented by the wWANs providing this status information to the service controller or communication logic to support the mobile device. The service controller can provide the new service WWAN parameters to the mobile device or signal handover control/indication to the selected WWAN. To ensure uninterrupted communication, the mobile device unit preferably establishes communication within the WWAN prior to switching off its WLAN connection. b) mobile device control soft signal handover 93 1262005 发明, invention description In the mobile device control implementation, the mobile device unit searches for the active WWANs channel when (1) has indicated that the quality of the service is not satisfied; or 00 its reception An instruction is sent to signal to a WWAN. The latter 5 may occur when the service controller accepts the previous notification indication that the WLAN service is to be detached. It is best to implement a search for all available wireless networks that can now be collected and decide which network is the best to switch. The conditions for deciding which one is the best WWAN to switch to may include an overnight traffic characteristic and network load if the broadcast from the service controller is available or available to the service controller. The mobile device unit then prompts the service controller/communication logic that WWAN has been selected for the signal to be handed over and waits for an acknowledgment or a pause (the minimum pause may be zero), where it is established on the singer ^1^ The 15th communication will not be interrupted with the WLAN. After the communication has been established, the mobile device leaves the WLAN that has served it. In a variant embodiment, the mobile device delivers a prompt before leaving the WLAN. The signal handover reverse procedure from the WWAN to the WLAN is similar. However, as described above, in this example, signal handover does not need to be initiated because the quality of service from the 20 WAN has decreased. They are described as follows: The mobile device needs to periodically check its logic for the wWlan* definition. This is because the WLAN coverage of this part is within the scope of the service. Alternatively, the hotspot itself may include means for detecting the transmission of the regional mobile device to automatically direct the command to the mobile device 94 1262005, the invention description unit to find the WLAN. Signal handoff from the WWAN to the WLAN rarely requires loss of WWAN communication. However, the signal handover technique in question includes the case where the mobile device joins the WLAN and establishes communication with the service controller before the WWAN is disconnected via the WLAN (the most final soft signal handover), and the action The device lost the WWAN connection and, after some time, successfully established communication with the WLAN and re-established its telecommunications work period. The embodiments include the transfer of signals between the WLAN and the WWAN in addition to the establishment of a normal communication protocol for the intermediate medium, the activity of supporting the mobile device unit being signaled. Such supporting activities may be a WWAN registration or a different encryption procedure, so the mobile device accepted by the WWAN may be determined based on authentication and encryption that cannot be transmitted by the WLANs. Signal Handover between Wireless WAN and Internet 15 The concept of signal handoff is extended to the same as the GPRS communication unit. The WWAN mobile device can sometimes be accessed via the Internet or other wired networks. The WWAN service controller and WWAN service. These embodiments include examples of simultaneous connections to the WWAN and the Internet and the completion of one connection and the disconnection of the other. 20 For the above embodiments, the change implementation may use all previous signal handoff methods. Furthermore, the logic installed within the mobile device client or the service/communication controller can provide prioritization when both the WWAN and the internet connection are available. In the preferred embodiment, the Internet connection is 95 1262005. The invention is preferred and the WWAN traffic is transmitted to the service/controller via the Internet. The signal handover technology suitable for switching between the two networks includes the following: 1. A powerful switching network communication with a continuous level during the telecommunications work period 5 # The mobile device unit or the service control speculation _ service in one Obtained within the higher priority network, for example, in the internet in the preferred embodiment described above, the mobile device is disconnected from the lower priority network. The light is then set to try to join other networks and connect to the service. - but the communication is re-established, the service controller logic recognizes that there is one or more requests for the telecommunication work period for the mobile device unit, and that the work period or the work period is automatically continued. 2. Hard Network Control Signal Handover Without Mobile Device Assistance In this embodiment, the mobile device unit establishes communication via the two networks without controlling the telecommunications work period path. The service controller can control the detachment at the service level via the 15 lower priority network, thereby forcing the mobile device I, and establishing the service via the higher priority network. The service controller then prompts the mobile device for its decision, and many of the changes can be implemented as follows. The decision to hand over the mobile device from the network to another network depends on the service controller. a) If the child mobile device can accept network selection control from its service/communication controller, it can be handed over to the selected (received) network. It can additionally be sent out communication parameters to speed up the signal handover procedure. 96 1262005 发明, invention description b) If the mobile device cannot accept the non-current network selection control, simply deny the service to leave the service network; forcing it to try and log in to another network. 3. Mobile device assists hard network control signal handover In this implementation, the wireless mobile device in the area searches for the possibility of another service and determines the communication conditions within the other network. It then sends the information collected by the Service/Communication Controller (SCC) 128 or 140. The mobile device unit searches for the other network when one of the following conditions is met: a) The mobile device unit is programmed to perform a normal interval search. The search trajectory can be pre-programmed or via a control from the 8 (: (: ι 28 command. b) - the hardware finger is not provided to indicate that another service can be obtained. An example can be valid for lOOBasedT A hardware indication 15 20 c) The mobile device is commanded by the SCC 128 to search for another network. This typically occurs when the external service determines this achievable likelihood in each of the information provided by the mobile device. 4 The device is handed over to the selected network by its previous service network signal in one of two ways:) If the heart device can accept control, it is handed over by the command signal to the parent The selected network includes a possible transmission of the communication parameter to speed up the signal delivery procedure; the fruiting device cannot accept the wireless network selection control, which interrupts the service by _ service _ road. In this case, the action installed 97!262〇〇5 玖, invention instructions tried to connect via other networks until it touched the scc and the telecommunications work period was re-established. 4. The mobile device controls the hard signal handover. In the mobile device control hard signal handover, the mobile device searches for another network connection when (i) it detects a higher priority network, (ii) The quality of the network is gradually unsatisfied, or (1 ii) when it receives a command to signal to the other network defined above. 10 15 The mobile device unit performs the search and determines the signal handover priority order to obtain another network-acquired measurement. In the example of this measurement, the mobile device can be true-defined and delay in measuring the response. The network is connected via the selected &apos;the mobile device is off&apos; to accelerate the signal to hand over the mobile device and then to the other network that has served its choice. A prompt is sent before a current service network in a variant implementation. When the mobile device attempts to join a network that it has chosen to be handed over, the system determines that the mobile device has been handed over to its new service network by its previous service network signal, and expects to restart it to be identifiable The period of 20 years of telecommunications work or multiple periods of telecommunications work. Although there is no need for network assistance in the preferred embodiment of the signal handoff method, a change implementation is included with network assistance to perform this signal handoff. Network assistance can be provided by any of the following: (1) It is possible to obtain the identity of the network parameters, including the simple 98 1262005 发明, the invention describes the preferred access channel and supports the Internet with a better dispersed scc basic architecture. Access proxy IP; (ii) load conditions or other accessibility information for different access networks or entry points (eg, access to different Internet numbers of the Internet); and 5 (丨丨丨) 5 Information on the network load conditions of the service network (for example, for some internal network connections). The network command, the mobile device controls the hard signal handover network, and the mobile device controls the hard signal handover to be implemented when any of the SCCs 128 and 140 are found to be unacceptable or have 10 pairs of higher priority connections. During periodic inspections. Network control may or may not determine the possible other network with support capabilities. If this capability is determined, the SCC 128 sends information about the communication parameters or network access of the network to the mobile device unit. The mobile device then searches for a network that can support its service request. In a preferred embodiment of the method, the mobile device searches for another network without interrupting its current connection, thereby minimizing the impact of signal handover. An example would be to dial a number of Internet access numbers to decide to use the Internet before leaving a wireless GPRS connection. When this is not feasible, one chooses to provide the mobile device first off its service network and only after searching for another network. In the second embodiment, the mobile device can use the data previously provided by the network or perform an arbitrary search. Based on this search, the mobile device determines which network is to be signaled and tried to access the network. If the mobile device does not successfully access the selected network, then its 13620052005, invention instructions try to access the best network based on its search results, and so on. These start and subsequent access f tests are preferably controlled by a timer that can be de- or reduced. After the access has been completely successful and the connection to the scc 128 and 14 has been established, the Scc confirms that the new connection is a re-start of the previous telecommunications work period or previous multiple telecommunications work periods, preferably In one of the previously described methods, thereby ensuring continuity of the telecommunications work period. 6. Soft Signal Handover Four of the above five previous methods with hard signal handoff can also be implemented using soft signal handoff. As mentioned above, the term "soft signal handover" as used herein refers to maintaining seamless continuity of communication when switching from one network to another without wireless action in the area. The telecommunications work period activity within the device has an impact, including the presence of a time-limited continuous communicator 0. The soft signal delivery supported by this embodiment can be established via a new service network before leaving the current service network. The mobile communication with the scc 128 and 140. On the other hand, the soft signal handover can be achieved by switching the network connection quickly enough to have no interruption in the communication during the telecommunications operation period. Many methods are discussed later to implement the soft signal. Hand over. a) Mobile device assists software network control signal handover in the first software signal delivery embodiment, the wireless mobile device in the area searches for another network and determines the communication conditions. Then the information can be transmitted to the cough SCC 128 140. 100 1262005 玖, invention description The SCC continuation of the work determines which network and when to perform the signal handover. It provides signal delivery parameters to the mobile device; Optionally providing signal handoff control to a proxy IP node or controlling an entity within the WWANi. If further information suggests that the connection is about to be lost, or because of the identification of the distortion or support for the communication When one of the entities is about to be removed, the latter may be needed to ensure continuous communication. Therefore, in order to ensure uninterrupted communication, the mobile device is preferably now built on the new one. Communication within the service network without interrupting its current network communication. Once the communication with the new network is established 10 access to the SCC 128 and 140, the mobile device is disconnected from the network that has served it. In detail, the mobile device sends a prompt before leaving the network. b) mobile device control soft signal handover 15 In a second soft signal handover embodiment, the mobile device unit is now controlled by the mobile device unit. Search for additional channels when (1) a higher priority network condition is detected; (ii) the quality of service is gradually unsatisfiable; or (10) when it receives the command to signal to another When the network is in use, the mobile device unit itself performs a search that performs measurements on different networks of predefined or programmed priorities and prioritizes them to determine the preferred order to switch between the preferred and preferred networks. - In the variant, the mobile device does not need to search for all possible replacement networks, but only needs to search for: n the top n networks in the network. In a particular embodiment, (4). The optimal network conditions may include measuring the communication characteristics of the 101 1262005, the invention description, and the network load. The mobile unit indicates that the scc network has been selected for the signal to be handed over and waiting for an acknowledgment or The end of the pause time, in which it establishes communication with the new network without disconnecting from the currently served network. After the communication 5 is established, the mobile device is disconnected from the network that has served it. In a variant implementation, the mobile device sends a alert signal before it leaves the service network. c) Network commands, mobile device control soft signal handover. Again and again, embodiments include soft-signal handovers that are commanded by the network but followed by the mobile device. The signal handover is performed when it is determined that the network is unable to support the mobile device service communication condition. The SCC may or may not recognize a possible replacement network with the ability to support the communication service to the mobile device. If such capabilities are identified, the SCC then sends the information on the communication parameters thus identified to the mobile device unit. Once the mobile device has the access data that may replace the network, the process continues to control the soft signal handover-like/signal handover as in the previous embodiment. All of the above implementations are currently provided in the wireless 20 functions are available within the local area network. The soft signal delivery solution has the potential to provide smoother continuous service. L. For all solutions, the darkness is based on the split of the action, and the succession service can be achieved by soft and hard signal delivery embodiments. 102 1262005 玖, Invention Description Hybrid Network Certification Mobile Communications provides a higher level of personalization. For example, a GSM phone provides a SIM card that provides each user with a personalized communication function associated with their mobile phone service provider's account number. The CDMA type of mobile device 5 is provided with a similar personalization function. In accordance with an embodiment of the present invention, a user is given a transaction set in his deposit through any unencrypted or encrypted device that is confirmed or authorized through his/her mobile phone. The authorization can be sent to a simple reply by sending an SMS message to one of his mobile phones. On the other hand, the user can send an SMS message from his mobile phone to his exclusive number. The transaction is then charged for the mobile phone account. Unlike a credit card or other account, one advantage of charging a mobile phone account is that the phone account is specifically set up to charge a small fee at a single time. These embodiments thus provide a way to provide low cost products and services over the Internet 15 which has previously been difficult because credit card companies charge a small fee. This embodiment is also used to provide a combination between a non-authentication and an authentication device. Once the non-authenticated device has been authorized, the secret authentication information can be installed therein. This authentication material can be further used to provide a link between the non-authenticated device and the PLMN-certified device. This method can be used to initiate a virtual SIM (please refer to the previous description). Referring now to Figure 27, there is shown a simplified block diagram of a certification mechanism in accordance with one of the first preferred embodiments of the present invention. In Fig. 27, it is shown that the communicator 11 is typically a cellular internet portal, including an SMS portal. Optionally, the Internet portal may include a WAP entry in addition to the SMS entry, or may replace the SMS portal. The communicator can pass through an authentication chain 114, such as a GSM or CDMA and any extended type of link, with a first personalization device! 12 to reach a communication. Chains such as GSM provide not only authentication but also encryption 5 functions, which are preferably necessary but not required by the present invention. A basic embodiment requires only authentication and non-rejection of the transmission. In general, the communication is for digital communication, such as SMS or GPRS data messages, although, as will be explained later, the sound can be used. The communication preferably utilizes user authentication, which is a feature of GSM or CDMA. Additional authentication can be provided by a link 114 and additional support encryption for the device 112. In addition, it provides a correlator 16 that can perform the positive identity data of the first personalization device 112, and can serially connect the authentication with a different activity or via a server 丨丨 8 or similar device via The non-authentication link 120 receives a request from an activity 15 of a requesting device 122. In this context, a non-authenticated link is a front-end link that cannot be positively identified by the user or requesting device, and in particular includes a general Internet link. The inability to recognize the requesting device may be because there is no strong authentication authority like a SIM card, or because the key itself is unencrypted, allowing and eavesdropping and copying or other reasons. 2〇 The organization of Figure 27 thus allows for the resolution of this unclassified issue by requesting an additional communication through an identifiable link. In general, a mobile device is a personalised device that can be authenticated, and by requesting an extra-trip communication via a mobile phone bond, a telecommunications service provider can determine that a request is genuine. In addition, the mobile phone is related to the charging account 104 1262005 发明, the invention description, and the service provided is to allow direct charging of the identified customer. As will be explained later, the authentication link journey of the communication may be before or after the non-authentication trip as long as the two trips can be successfully correlated, and a non-exhaustive list of changes will be described later. In addition to this, many non-certified itineraries can be associated with a single certification itinerary. Of course, the invention is not limited to use with a mobile phone and any cryptographic personalization device that communicates through a secure link so that it cannot be copied. The correlator 116 is preferably coupled to an authentication communicator 123 for instructing the server 118 that a given activity request is approved. Alternatively, the authentication communicator 123 can transmit the authentication to an external proxy server or gateway associated with the non-authenticating device. In a further variation implementation, the authentication communicator can transmit the authentication to any device or network node responsible for managing the activity of the request. In still another embodiment, the authentication communicator 123 can transmit 15 authentication by using a change to a routing table on a router. In addition to GSM and CDMA, other systems that may be used to provide cryptographic links include IS-136, PDC, EDGE, WCDMA, GPRS, Irdium, and GlobalSta. The term CDMA includes the IS-95 standard and its 2. 5 and 3G versions, which are well known for 20 1XRTT and 3XRTT. Referring now to Figure 28, it is shown to display one of the GSM devices 124 like a mobile phone. The GSM device 124 includes a SIM comprising one or more integrated circuits, at least one of which includes the personalized data that supports authentication, encryption and decryption of the secure link. The printer recognizes the mobile phone and does not allow other devices to copy the phone, thus providing authentication and secure access to a charging account corresponding to one of the individual mobile phone users. Although in the above, the assumption is based on the fact that the message transmission itself is a data message transmission, the invention is not limited thereto. The secure link 114 is also encrypted for voice communication and can provide automatic voice message creation in the UI 1 1 以 to create a message from the pre-recorded message section. In addition to this, it can provide an artificial sound. Regardless of the method, a voice can be sent to the personalization device through the secret link. The voice message may, for example, identify the transaction and may request the use of a button to perform a positive response. In a particularly preferred embodiment of the present invention, a device corresponding to a service month b user requests the service through the unsecured link. The unsecured link can be any type of network, especially an open network like the Internet, or other digital or analog network, and can include a LAN, a wireless LAN (WLAN), The ground corresponds to the IEEE 802. Any WLAN of 11 standards, including 8 〇 211, 8 〇 2 Ub, 802. 11a. . . g and so on. During the login process, it identifies its secret link, for example by giving an associated mobile phone number by 20. The identity data can be retrieved from the storage memory or manually entered by the user. The correlator 116 receives the identity information (e.g., a mobile phone number). It may be necessary to translate the received identity data into different identity profiles suitable for the communicator 100, and the U-turning thick work may be performed by the correlator itself or via an external translation 106 1262005 发明, invention description service Execution, for example, by accessing a home location register (h〇me 1〇cati〇n regiSter:HLR). The correlator 116 then uses the communicator 110 to contact the mobile phone in an appropriate manner. A timer 123 is operated to allow the user of the mobile phone to repeat and confirm the identity of the user for a fixed period of time. In addition to or in addition, an error counter 124 counts the number of times the authentication is not successfully established, and the authentication operation is stopped when a critical number of times is reached. In a variant embodiment, the operation begins simultaneously with the non-authenticating device 122 in contact with the server 18 and the personalizing device 112 in contact with the communicator (four). The correlator 116 establishes a link between the two communications and the service to the non-authenticated device is authorized. One way to ensure that the user authentication is not stolen is to provide a password to the Authenticated Device 回2 upon reply. The password is then entered by the user into the non-authentication device 122, thereby clarifying that the user of the non-authentication device 122 is the same as the user of the authentication device and that the action is purposely completed. If this password embodiment is used, the authentication link is most encrypted so that the password is not exposed. On the other hand, the password is only used for a limited number of times, for example only one, in which case the authentication link does not need to be encrypted. As explained later, because the login name used by the non-authentication device is, that is, the mobile phone number, it may allow the spoofed user to detect different MSISDN values. This snooping may cause the mobile phone to receive a request for service, and if the user is not alert to %, the user may inadvertently authorize the service to the deceived user. This problem can be reduced by requesting the non-encrypted device to use a password in addition to the MSISDN. Another solution is to start the authentication sequence by the mobile device unit. The user sends an SMS to the communicator, which in turn responds to the working period with a temporary password for one of the telecommunications operating periods. The user uses the PDA or other non-authenticated device to connect to the server 118 via the 5 Internet, and enters his User Name (MSISDN) and the temporary password. On the other hand, the communicator provides a temporary identification number and password to ensure that the user is blind and the user enters the temporary identification number and the whispering pair. The transmission of the identification number from the authentication device to the non-authentication device may be 10 manual or via some regional wired or wireless communication link. The 5th correlator or the hex device confirms the provided access data, such as the temporary password or identity information, when associated with the MSISDN and the service is authorized. Preferably, in this embodiment, the SMS transmission is completed before the mobile terminal 15 (personal digital assistant, laptop, etc.) is activated. In a further variation on the above, the SMS may include a quasi-random number in which the user needs to copy or transmit to his non-authenticated device to complete the authentication, thereby reducing the risk of stolen authentication. The requested activity can be an internet browsing activity. The use of this security link associated with a billing account number 20 allows a small number of charges to be charged, and one problem with the Internet so far is the tendency to reply to credit. The requested activity may be the view itself, or it may include activities related to, for example, buying, using a paid service, and the like. Because of Jt, the user can go to the online bookstore or the like by entering his mobile phone number instead of his credit card number to complete the 108 1262005 发明, invention instructions. He then received a message on his mobile phone and replied to the message. Internet activities can be another type of activity or an activity that does not involve the end of the data, such as continuous data application, email, etc. 5 10 15 20 In the example, the non-authentication device 122 can be a credit card or a smart card, and the requested activity can be a sales activity point, such as using -ATM. In this connection, reference can be made to the continent, which is a simplified diagram of the card 128 having a memory unit 13 such as a smart card or a credit card. The memory unit 13A can be part of an integrated circuit on a smart card, or it can be a magnetic strip as on a conventional credit card. Preferably, the memory unit 13G includes the standard transaction information such as an ATM number, and in addition to the group-step number to allow the action to be charged with 5 tiger code, however, there is The downside is that a wrong phone number ^ may be lost. In another embodiment, the progressive number is the encoded version of the mobile activity weight. The encoded version is an encrypted version, one of which is used to decrypt the phone number. On the other hand, the -password can be used as a simple account number in a look-up table. The latter version is particularly confidential [because computer hackers can only replace a different phone number if they know the code on the checklist]. The user inserts his credit card into the ATM in the usual manner. The card transmits the user&apos;s phone number&apos; or a password relative to one of the phone numbers, which is used to generate a call to the user&apos;s mobile phone. The user responds to the mobile phone or the person by whom the ATM-group is to be used for the specially generated HN number in the communication. In the preferred embodiment, the use of the same reply and input 126, 2005, 发明 description of the PIN number. The requested activity can be as access to a network, that is, the messenger requests access to a LAN or access to the Internet or the like. It thus makes it possible to provide a roaming internet and the ability to use regional resources to log into the Internet when traveling or not in the vicinity of its own Internet 5 network provider. In particular, the network to which the access may be requested may be through a wireless LAN access point or an infrared access point or through one of the Bluetooth access points. Wireless LAN or Infrared or Bluetooth is required to provide resilient network access to all devices that are close to each other at the access point, and this embodiment allows potential users to be identified and the service to be toll. In still further embodiments, after the user has transmitted the quasi-random number or the password to his own non-authenticated device, the number or password can be used multiple times to authorize an activity. Since the transmission of the number or password multiple 15 is exposed to the replay attack, the multiple authorization can use the quasi-number/post code as a seed key to a challenge response agreement. For example, if a virtual SIM is installed in the non-authentication device, then the Ki of the virtual Sim (please refer to the description of the SIM above) can be set to the quasi-number/password (Ki is used in the generation of SRES, And Kc comes from RAND). Another variation with a higher level of confidentiality is the use of the above-mentioned quasi-number/password to authenticate the establishment of a secure channel (by IpSec, tls, SSL 'SSH, etc.). The key Ki can be transmitted between the correlator and the non-authenticated material, and can then be used as a seed for the challenge response execution. As discussed above, the communicator most obtains a telephone number, whether it is 110 1262005, a concise text of the invention, or a sequographed or encrypted version of the telephone number from the non-certified device. This number is preferably used to establish communication with the secure mobile device. However, in those embodiments, the communication is initiated by the secure action device, and the phone number is preferably used to link the secured and non-authenticated links that have been established. X ” According to the above, the non-authentication device can be a credit card, a smart card, an infrared device, a Bluetooth device, a PDA, a durable computer, a mobile computer, a fixed computer, and a computer network or any infrared ray. Or Bluetooth or wireless LAN or H〇meRF or wired or other type of communication 10 to establish a communication. Referring now to Figure 30, it is shown to simplify one of the embodiments of the verification device according to the present invention. The block diagram, whose components are displayed in more detail, such as - PDA 13 - non-authenticated device wirelessly communicates to -LAN/WAN 134 through a network access point, which itself can be wired or wireless. It may be directly (or indirectly) connected to a cellular cell internet authentication portal 136, and may be a device that provides the user with access to the internet or any other network or service. The portal 136 preferably The pDA 130 acts as a standard Internet authentication device that can be normally logged in. The login procedure can be performed manually or automatically when needed. The user's 2 mobile phone number can be used for The login user name or a separate part of the login process. The entry begins to execute a timer to suspend the authentication after a predetermined time limit. Alternatively, the entry can also be set to 1. The timer can be used to restrict login. The number of attempts to reduce the number of hacking attacks. 4 The portal is directly or indirectly connected to a short message service center SMS_c 138 111 1262005 玖, invention description, which is the network unit for managing SMS messages. The SMS-C 138 An SMS message is sent through MSC 140, BSC 142, and cellular base station 144 to the SIM protected by mobile phone 146. The user therefore receives a request telling him to press to reply to the network connection that has initiated it. Further 5 emphasizes that the user can be required to provide a password. The SMS itself is usually encrypted and the SIM supports authentication to make it clear that only the intended mobile phone is replying. The mobile phone replies to the SMS. The SMS message has an original location, and the transmitted SMS message can have the authenticator's phone number to allow a reply to pass the authenticator. The user who uses 10 is then authenticated to access the Internet or other data network through the LAN, and the LAN he uses can then charge his mobile phone. Please refer to Figure 31 for the display. An embodiment of the present invention passes the verification of one of the authentication channels, which is a non-authentication channel. In FIG. 3, the authentication of the key includes the step of communicating by using an authentication key 15 having an authentication device to verify the use of the chain. An authentication procedure in which the communication is associated with an intended mobile telephone device through a non-authenticated second channel or link to establish a second link. A phase is followed by a non-authentication device to associate or correlate the verification With an activity request. Once the two channels or links have been joined, then the authentication on the first link is used to allow the request on the other chain 20 as described above, thereby allowing the non-authentication device to request an activity. The step of combining can be performed by using an identification phone number provided by the authentication device. Preferably, the step of authenticating includes transmitting a message to the authentication mobile device, wherein a reply can be expected as explained above. As described above, for the present invention, it is not important that the one of the two links is completed by 112 1262005, the invention is completed first, or whether they are completed at the same time. Each possibility is accompanied by advantages and disadvantages to provide a proper embodiment of the present invention. In one case, the communication is initiated by a non-authenticated device. The system sends a message to the associated authentication device to request approval. The user of the device sends 5 copies of his approval and the certificate is completed here or the system sends a password to the claim device. The user receives the password and enters or copies or transmits the escape code to the non-authentication device, thus completing the authentication. In another case, a communication request is initiated by the authentication device. The system sends a password or a temporary username and password to the authentication device, or the user and password are copied or transmitted to the non-authenticated device, and the non-authenticated device forwards the password back to the system. Authentication 〇 The above program is only used at the beginning of a communication setup, or in a special case, only used in a startup communication. Thereafter, a secure communication channel is established between the σ 糸 及 及 及 ’ ’ ’ ’ ’ 其 其 其 其 其 其 其 其 其 其 其 其 其 其 其 ’ 其 ’ ’ ’ ’ ’ ’ ’ ’ During the future deposits, the system adds an additional ID/password and a selective prompt for the authentication device. This preferred embodiment saves the need to set an authentication channel with the authentication device after the first communication. In the preferred embodiment, the authentication method does not require any particular hardware or software to be mounted on the PDA 130. The PDA works with a standard viewer and standard network interface unit. In another embodiment, the software is installed to support the defined program and assist or omit manual user actions, such as address entry and between the identification, invention identification, and non-certification data. Data transfer. The telecommunications service user does not need to know any new numbers and passwords, and the mobile telephone number (MSISDN) can be used as a username. 5 The mobile device terminal 46 is a standard authentication unit. The terminal can be only voice, only SMS, only WAP, only GPRS, only 3 G, any other data communication or a combination. Authentication of the requested service requires possession of the user-specific SIM or USIM or similar device. 10 The service does not need to provide any specially provided databases. The user identity is the MSISDN or similar identification code (like IMIS). No new passwords need to be provided or memorized by the user. However, a variant embodiment requires the provision of a database, such as when using a RADIUS server. A RADIUS server is used to authenticate access to a communication system for authentication, wherein authentication is based on the RADIUS or remote authentication dial-in user server protocol. A single web server 122 can be used to support many telecommunications service providers. It is to be noted that some of the features of the present invention are described in the context of the respective embodiments for the sake of clarity, which may also be used in combination in a single embodiment. Conversely, many of the features of the present invention are described in a single time embodiment for the sake of brevity, which may also provide separation or other suitable sub-combinations. The present invention thus provides an authentication system that includes an authorization code that uses a mobile phone secure channel to securely transmit an authorization code that may be used to authorize some other service. Conclusions of the Examples In the above, it provides a series of embodiments in which a seamless interface between the honeycomb cell or PLMN environment and the wireless LAN ring mirror is provided therebetween. This interface allows the cellular cell enabling unit to be moved from one environment to another without the user having to notice it, thus utilizing regional resources that have a higher data rate and can utilize wireless LAN when available. A non-cellular cell-enabled unit is enabled to connect to the wireless LAN and access the cellular environment through the LAN. 1A The features of the present invention, which are illustrated in the various embodiments, for clarity of illustration, may also be a single embodiment. Conversely, various features of the invention, which are illustrated in a single embodiment, may also be separated or any suitable sub-combination. It will be appreciated by those skilled in the art that the present invention is not limited by the above shown and described. However, the scope of the present invention is defined by the scope of the appended claims and the combinations and sub-combinations of the various features described above, and those skilled in the art can make changes and modifications after reading the foregoing description. BRIEF DESCRIPTION OF THE DRAWINGS FIG. 1 is a simplified representation of a SIM, FIG. 2 is a simplified block diagram showing the functional operation of a SIM, and FIG. 3 is a view showing a client according to a first embodiment of the present invention. A simplified schematic diagram of a device connected to a non-PLMN network via a virtual SIM gateway and connected to a PLMN network there, 115 1262005 发明, Invention Description Figure 4a is an embodiment showing Figure 3 in more detail One simplified block diagram, including a secondary system of analog SIM gateways, and Figure 4b is a simplified comparison diagram showing another solution for providing PLMN services over a non-PLMN network, the service being a prior art, 5 Figure 4c is an exemplary diagram showing a palm-type device and a card insertable therein for use with Bluetooth and similar non-PLMM networks, Figure 5 is for implementation in accordance with one embodiment of the present invention One example is a simplified flow chart showing that a non-SIM device is connected to a PLMN network via a virtual SIM gate 10 through a non-PLMN network. Figure 6 is a schematic diagram showing a typical PLMN network infrastructure. Figure 7 is a diagram in accordance with the present invention. A schematic diagram of an embodiment showing the use of a virtual base station controller as an interface to the PLMN network, and FIG. 8 is a schematic diagram of a preferred embodiment of the present invention, 15 of which is shown in a wireless Protocol layer and packetized data authentication between a LAN and a PLMN network, FIG. 9 is a schematic diagram showing a protocol layer between a LAN and a PLMN network, in accordance with a preferred embodiment of the present invention Switching Circuit Data 4 Tolerance ' 20 FIG. 10 is a schematic diagram showing a protocol layer associated with a connection between GPRS and a wireless LAN in accordance with a preferred embodiment of the present invention, and FIG. 11 is based on SUMMARY OF THE PREFERRED EMBODIMENT A schematic diagram showing a protocol layer relating to the provision of switching circuit support services through a PLMN and a wireless network, 116 1262005, and FIG. 12 is a preferred embodiment of the present invention. A schematic diagram of an embodiment showing a virtual SGSN+ being used as an interface between a wireless LAN and a PLMN, and FIG. 13 is a schematic diagram of a preferred embodiment of the present invention, a wireless LAN and a P Protocol layer and packetized data authentication between LMN networks, Figure 14 is a schematic diagram showing a provision of a packet support service between a wireless LAN and a PLMN, in accordance with a preferred embodiment of the present invention 10, FIG. 15 is a schematic diagram showing a protocol for providing a switching circuit support service between a wireless LAN and a PLMN according to a preferred embodiment of the present invention, and FIG. 16 is a view of the present invention. A schematic diagram of a preferred embodiment showing a cooperating layer providing a packetized data flow between a wireless LAN and a PLMN, and FIG. 17 is a view of one of the preferred embodiments of the present invention A schematic diagram showing a common area and a wireless network coupled to a hotspot center point, which can be used to coordinate the handover between networks, FIG. 18 is a preferred embodiment of the present invention A schematic diagram showing 20 that a wireless network exists within a coverage area of a cellular or PLMN network, and FIG. 19 is a flow chart showing an overview of a preferred embodiment of the present invention. Signal between the roads The entire principle, FIG. 20 is a schematic flow chart 117 1262005 according to a preferred embodiment of the present invention, a description of the invention, illustrating the signal transfer from the viewpoint of the mobile device unit, and FIG. 21, according to the present invention. A flow chart of a preferred embodiment showing another embodiment of a signal handover procedure, and FIG. 22 is a simplified schematic diagram showing two non-overlapping WLANs having a common center point, and FIG. 23 is a Simplifying the schematic diagram, illustrating that each of the two overlapping WLANst is a part of a different hot spot and has a common center point outside the hotspot range, and FIG. 24 is a variation of the plot of FIG. 23, wherein the hot spot is not heavy 10 stacks, Figure 25 illustrates two overlapping plmN networks, Figure 26 illustrates two non-overlapping plmN networks, and Figure 27 is a simplified block in accordance with yet another preferred embodiment of the present invention showing a certification authority, 15 Figure 28 is a simplified illustration showing one of the devices used in the secure link of Figure 27, and Figure 29 is a simplified illustration showing one of the devices used in the non-secure bond of Figure 27, Figure 30 According to this issue A simplified block diagram of one of the other embodiments of one of the certification bodies 20 specifically allows control access to the _wired or wireless lan, and the figure is the operation of the authentication machine of FIG. 27 - a simplified flowchart This setting can be initiated by any device, either confidential or non-confidential, including by a different device. 118 1262005 玖, Invention Description [The main components of the diagram represent the symbol table] 10... Subscriber Identity Module (SIM) 12. .  .  SIM card carrier and reader 14... Honeycomb cell phone device 16... Authentication subsystem 18... Encryption subsystem 20. .  . Connecting device 22. .  . Non-PLMN Network 24... Analog SIM Gateway (SSG) 26...PLMN/Honey Cell Network 28. .  . Database sub-system 30. .  . Access secondary system 32...interactive secondary system 34. .  . PLMN subsystem 36··. GPRS access card 38. .  . Bluetooth Access Card 40...Base Station System (BSS) 42. .  . Mobile device

44.. .MSC 46...Serving GPRS Support Node (SGSN) 48·. Non-PLMN Network 50.. Virtual Base Station Controller (VBSC) 52.. Remote/Mobile Device 54.. Access Point 56.. .51.Server 60...Wireless LAN Network 62.. Virtual Base Station Controller (VBSC) 64..Gb Interface 66...Serving GPRS Support Node (SGSN) 69.. .Gs Interface 70...Agreement 72.. . GPRS Network Server 74 ... Gn Interface 78.. .AuC/HLR 80...Connection Manager 82.. Area Server 84.. .VSGSN+ 90.. .PLMN Server 100.. . Hotspot Center Point 110.. Area Wireless Network 112... Wide Area Network (WAN) 114.. Access Point (AP) 116.. .WAN Center 119 1262005 玖, Invention Description 123... Authentication Communicator 140.. .MSC 128...Service/Communication Controller 142 ...BSC (SCC) 144...Base Station 130...Personal Digital Assistant 146...Mobile Phone (PDA) 120,132...PLMN1 138...Mobile Device 122,132.. .PLMN2 138... short message service center 134, 136... access point (SMS-C) SU1~SU6... telecommunication service user 140... service/communication controller port early morning (SCC) WN1, WN2...regional wireless network 120

Claims (1)

'.One. .... .......................................... ...................... 1262005 — Pickup, Patent Application No. 91034023 Application for Patent Scope Amendment 94.07.21 L One for Interfacing to PLMN An interface device between the network and the non-PLMN network, the PLMN network is configured to confirm that the cellular cell base station is connected as a relay to the node of the cellular mobile device, and each of the non-PLMN networks includes a relay Connected to a plurality of access points of the network compatible mobile device, the network compatible mobile device does not need to be a cellular mobile device, and the interface device is configured as one of the PLMN nodes, and the node can execute the representative The terminal device of the network is configured to make the network as its base station, and the interface device includes at least one of the network compatible mobile devices as the non-PLMN network. The function of the terminal _ terminal, ^ ❹ (4) to the above network compatible mobile device to recognize the above-mentioned network of the Na network, and 20 The sputum cell allows the non-cellular cell mobile device to be connected to the non-PLMN network and to access the network, whereby the female cellular cell mobile device accesses the slit-like path. The interface device as described in claim 1 includes a switching interface for calling and a (four) application and control interface. The interface device of claim 1, wherein the PLMN network is one of having a -A" plane or a Gb interface. GSM network 12} &amp; 62005 The above-mentioned Gb interface can be operated by using the A interface and the above-mentioned sub-sealing interface. 4. The interface device according to claim 1, wherein the PLMN network is a UMTS network having an IuCS interface and an Iups interface, and the switching circuit interface of the above is operable to use the IuCS interface and the above-mentioned blocking interface. You can use the above Iups interface. 5. The interface device of claim 1, comprising an analog honeycomb cell identification gateway associated with the privacy layer of the non-PLMN network, and operable to determine that a connection device has been used by the non-pLMN network The authenticated, and operationally responsive, PLLM network authentication queue indicates that the above authentication has been successful. 6. The interface device of claim 5, wherein the analog cellular cell identification gateway is an analog SIM gateway and the PLMN network is a gsm network. 7. The interface device of claim 6, wherein the analog honeycomb cell identification is an analog ESN gateway and the PLMN network is a CDMA network. 8. The interface device of claim 5, wherein the non-PLMN security layer is one of a group including SSL, IPsec, TLS, SRP, and SS, and one of the groups The authentication needs to allow the above analog SIM gateway to provide the above authentication response to the above PLMN network. 9· The interface device according to item 8 of the patent application, wherein the above protection 22 K62005 The dense layer can be architected to set a required level of confidentiality. 1〇·If you apply for a patent range! The interface device further includes a microphone for receiving a part of the voice signal from the non-PLMN network for voice transmission, and receiving the sound signal from the PLMN network 5 Used for partial decoding. 11. The interface device of claim i, further comprising a relay for receiving a portion of the voice signal from the non-PLMN network for voice transmission, and receiving from the PLmn The voice signal of the network is used for partial decoding. Pain | ίο I2· The interface device described in claim 1 is structured such that the above PLMN network serves as a base for the GPRS support point (SGSN) and one of the switching circuit materials. station. 13. The interface device of claim 12, further comprising a function of authenticating a device connected to one of the non-PLMN networks. 14. The interface device of claim 13, further comprising a function of connecting to one of said non-PLMN networks. 15. The interface device of claim 12, further comprising the function of updating a location of the device connected to one of the non-PLMN networks. The interface device of claim 12, further comprising the function of supporting the connection to the non-PLMN network to generate a service request. 17. The interface device of claim 7, further comprising providing a connection control data standardized for the PLMN network. 2005262005~~Ticking the patent application scope, the PLMN network can be integrated Activities to a full billing function. 18. The interface device of claim 12, wherein the interface device is configured to operate with a connection management unit of one of the non-PLMN networks, whereby the quality of the connected user and the exchanged data is obtained. Non-PLMN network details. 19. The interface device of claim 18, which further includes the above-mentioned details obtained by the ceremonial ritual to become a compatible specification. The access + used in the wireless LAN includes a cellular cell identification module associated therewith for providing a PLMN security function, thereby allowing access to a PLMN network through the wireless LAN. 21. The access card according to the patent scope (4), wherein the honeycomb cell identification module is mounted on the access card. The access card of claim 2, wherein the honeycomb cell identification module is reversibly mountable to the access card. 23. The access card of claim 2, wherein the honeycomb cell identification module is a SIM. 24. The access card of claim 23, which includes both a SIM carrier and a SIM reader. 25. The access card of claim 2, wherein the honeycomb cell identification module is a vertical honeycomb cell identification module. 26. The access card of claim 25, wherein the vertical honeycomb cell identification module comprises a vertical module comprising an s M function. 124 1262005 Pickup 27. 28. 5 29. The access card as described in claim 20 includes the function of exchanging authentication signals with a LAN gateway to thereby achieve network authentication. The access card of claim 27, wherein the authentication signal is normalized to be passed between the gateway and the PLMN network, thereby obtaining PLMN authentication. A method for accessing a PLMN network via a non-PLMN network using a non-PLMN device, comprising: providing the non-PLMN device with an access card matching one of the non-PLMN networks, providing the access card to have a hive The cell identification module and the non-PLMN network providing the gateway function to preserve the cellular cell identification signal between the non-PLMN device and the PLMN network. A method for accessing a PLMN network via a non-PLMN network using a non-PLMN device, comprising: providing the non-PLMN network with a secure authentication unit for authenticating one of the non-PLMN devices, and providing the non-PLMN network There is a gateway function associated with the above-described secure authentication unit to operate the authentication unit and to maintain a cellular identification signal that is authenticated to the non-PLMN network to the PLMN network. A method of operating a secure gateway between a PLMN network and a non-PLMN network to enable a non-PLMN device to authenticate the use of the PLMN connection, the method comprising: 10 30. 15 20 125 31. 1262005 ........... ..----· ··:'· &gt;- .... t »· - /. ·· Pick 5 32. Orthodox • The word, &gt; the scope of the patent for reviewing the non-PLMN network by a first authentication protocol, and exchanging signals with the PLMN network via a cellular authentication protocol, including indicating by the first agreement The certification is followed by device authentication. A method of operating a secure gateway between a PLMN network and a non-PLMN network to enable a non-PLMN device to authenticate the use of the PLMN connection, the method comprising: communicating with the PLMN network via a cellular authentication protocol The road exchanges signals, thereby authenticating the non-PLMN network to connect to the above device. A signal handoff manager for managing a handoff of a mobile device unit, using an identifiable telecommunication between a first mobile device network access point and a second mobile device network access point The working period is to communicate, wherein the first access point belongs to a first network, and the second access point belongs to a second network, and the manager can access each network in common and includes: a mobile device unit matcher for performing a match between a mobile device unit having no network disconnection and a connection to another network; and a telecommunications work period maintainer for use with the mobile device unit matcher A period of operation between the thus paired mobile device units is transmitted to thereby perform signal handoffs between the networks. The signal handover manager as described in claim 33, including 10 33. 15 20 126 34. Ϊ262005 Pick and claim 范围 range has one unit in a single area. 35. The signal handover manager as described in item 5% of the patent application includes distributed functions on a plurality of internal networks and interactive networks. 36. The signal handover manager according to claim 100, wherein one of the above networks is a PLMN network. 37. The signal handover manager of claim 33, wherein one of the networks is a wireless LAN network. 38. The signal handover manager of claim 36, wherein one of the above-mentioned networks is a wireless LAN network. 10 39· &amp; The signal handover manager described in item 100 of the patent application scope includes an active management unit during the telecommunications work period, which is determined by a network that is currently used when the connection quality threshold cannot be reached. The mobile device unit is instructed to search the surrounding network and determine the connection parameters to identify a maximum network and the indication 15 from the above parameters. The mobile device unit is connected to the optimal network. 4. The signal handover manager according to claim 39, wherein the active management unit of the telecommunications work period and the mobile device are used by the mobile device, thereby using the above indication to assist the above The signal handover manager described in claim 39, wherein the active management unit of the telecommunications work period is operable to determine whether the above-mentioned matching is successful 'and successfully connected It is operable to instruct the mobile device unit to connect to the next best network. 42. The signal handover manager according to claim 39, wherein the 127 12620 (35 &quot; '^申谞 patent scope describes the telecommunication working period active management unit operable to continue to indicate the above-mentioned binding device unit to connect To the next best unit until a successful connection is indicated. $43. (6) The signal handover manager described in claim 33, and the package 2 has a passive management unit during the telecommunications period for connecting When the product value cannot be met, it is determined by the mobile device unit, and the mobile device unit searches for the nearby network and determines its connection number to identify an optimal network from the above parameters and indicate the above action. The device unit is connected to the above network. #1〇44· The signal handover manager described in claim 33 of the patent scope, further indicates that the mobile device unit is disconnected and then connected by a first network. To the best network. 45. The signal handover manager described in claim 33 of the patent application is more capable of connecting the upper mobile device unit to an optimal network and then 15 from the current The road is cut off. The signal transfer manager described in Section 33 of the patent scope can be inserted to reduce the quality of the connection on the current network, thereby forcing the 31 φ locator unit to be cut off and Looking for another network. 47. If you apply for the signal handover manager described in item 33 of the patent application, you can choose the best network for reconnection to reduce the connection quality on the current network. And transmitting an indication to the mobile unit to connect to the selected optimal network. 48. The signal handover manager as described in claim 33, the operation being provided to a plurality of possible network possible The above-mentioned mobile device single 128 1262005 picks up and applies for a patent identification range. The level is as described in claim 33, and the signal processing manager provides a mobile device unit that may use the network. code. 5. The signal handover manager according to claim 33, wherein the above parameters include any of the following groups: a preferred access channel to the pLMN network can support better distributed SSC The basic architecture of the Internet access agent „&gt;'s identity code, the above may use the load condition of the network 1 $. The above may obtain the network's general-purpose 1 〇 #数' Internet transit access The network access number and the information on the expected load conditions of the network may be obtained. 51. The signal handover manager according to claim 33, wherein the first mobile device network is described And the second mobile device network is respectively a wireless hotspot (Hotspot) wireless signal [ANs. 15 52. &gt; Patent Application No. 51, the signal handover manager, wherein the first and second networks Is an action of overlapping networks and signal delivery I set the unit bits at a point that overlaps between the above networks. 53. The signal handover manager of claim 33, wherein the first and second networks respectively use the same network protocol. The signal handover manager of claim 33, wherein the first and second networks respectively use different network protocols. The signal delivery manager of claim 5, wherein the first and second networks are non-overlapping. 56. The signal handover manager as described in claim 33, wherein 129 Ϊ 262005 picks up 57. 5 58. 59. 60. 10 61. 62. 15 63. 20 64. 65. '申I靑 patent scope The first network and the second network are different hotspots respectively. The signal handover manager described in the scope of the patent application, wherein the different hotspots have an overlap of a region and a mobile device unit in which the signal is handed over is located in the overlap region. The signal delivery manager of claim 3, wherein the hotspots use a single communication protocol. For example, the signal handover manager described in claim 33, wherein the hotspots of the Haihai use different communication protocols. The signal handover manager according to claim 33, wherein the first network and the second network are respectively PLMN networks. The signal handover manager of claim 60, wherein the first PLMN and the second PLMN network use a single-communication protocol. The signal handover manager of claim 6, wherein the first PLMN and the second PLMN network respectively use different communication protocols. The signal handover manager according to the sixth aspect of the invention, wherein the first and the second communication networks have an overlapping area and a mobile device unit in which the signal is transmitted is located in the overlapping area. The signal handover manager according to claim 33, wherein the first network is a wireless area network and the second network is a PLMN network. The signal handover manager according to claim 33, wherein the wireless local area network is located in the coverage area of the PLMN network, 130 Ί 262 〇ϋ 1 . . . - »&gt;·«···&lt;·&gt;· .·η·. ,ν .'.'*:·'· ν .··. ...»*··* , JV—«-, Fengkou, Shen 5靑 patents. 66. The signal handover manager as described in claim 33 includes a priority unit for setting a wireless area network as a higher priority than the PLMN, and the mobile device unit is in place. When the range is within, the signal is automatically handed over to the above wireless local area network. a signal transfer method for a mobile device unit that communicates during a communication period, the signal transfer being between individual access points between a first and a second wireless network The method package provides a common use of m at both locations of the network to determine the identity of the mobile device unit at the control point, wherein the connection has been interrupted and the data of its relative redemption period is obtained; '15 Determining at the above control point the identity of the new connection with the mobile device unit; Matching the identity at the control point, thereby matching a telecom service period with one of the mobile device units, wherein the mobile device unit has terminated the connection at the first access point and has been reconnected to a second storage Take a point. 68--authentication device, comprising: a communicator, communicating with the authentication mobile device unit; a verifier, with the above-mentioned authentication line - 曰&quot; '仃勤 I is used to verify that the communication is in one a preparatory authentication device; and 131 Ϊ 262005 picking up, applying for a patent scope-associator, associating the verification with the activity request through a non-authentication device, thereby authenticating the activity request of the non-authentication device. 69. The device of claim 68, wherein the authentication device is a GSM device and the authentication link is a GSM link. The device of claim 68, wherein the authentication device is a CDMA device and the authentication link is a CDMA link. 71. The device of claim 68, wherein the authentication device is a PDC device and the authentication link is a PDC link. 72. The device of claim 68, wherein the authentication device is an EDGE device and the authentication link is an EDGE link. 73. The device of claim 68, wherein the authentication device is a WCDMA device and the authentication link is a WCDMA link. 74. The device of claim 68, wherein the authentication device is a GPRS device and the authentication link is a GPRS link. 75. The device of claim 68, wherein the authentication device is an Iridium device and the authentication link is a network link. 76. The device of claim 68, wherein the security chain 20 is involved in a telecommunications service user identity module of the encrypted mobile device. 77. The device of claim 68, wherein the security link is involved in a telecommunications service user identity module of the authentication device. 132 For example, please refer to the device described in item 68 of the patent, in which the above authentication device is a mobile phone. In the device described in claim 68 of the patent scope, the above communication includes an electronic data communication. For example, in the device described in claim 79, the above electronic material communication includes electronic message transmission. For example, in the device described in claim 68, the above electronic information transmission includes SMS message transmission. The device of claim 8, wherein the electronic information transmission comprises a WAP. The device of claim 8, wherein the electronic information transmission comprises an electronic mail. The apparatus of claim 80, wherein the electronic information transmission comprises an EMS. The device of claim 80, wherein the electronic information transmission comprises an MMS. The device of claim 80, wherein the communicator comprises a function of initiating the communication by transmitting a start signal from the one of the authentication devices, and having the receiving message from the authentication device. A reply function, in addition to authorizing the above activity request. The device of claim 80, wherein the communicator has a function of receiving initiation communication from one of the authentication device and the non-authentication device, and has a transmission to the start message The function of applying for a patent scope reply, in addition to authorizing the above activity request. The device of claim 80, wherein the communicator includes a function of receiving a communication from an external device, and a link between the authentication device and the non-authentic device. 'This is to authorize the above activity request. 89. The device of claim 8, wherein the communicator involves receiving a function from a message of the authentication device and performing a communication by transmitting a response to the secure authentication device. This authorizes the above activity request. 1. The device of claim 1 , wherein the communicator includes a function of inserting an identification code into the reply to a requesting end through the non-expressing device, and wherein the verification device is further The apparatus of claim 68, wherein the communication device is operable to use an automatic sound to communicate with the authentication device. 92. The device of claim 68, wherein the authentication device is used with a pay-per-account, the device further comprising a function of charging the above-mentioned paid account by the requesting activity. The apparatus of claim 68, wherein the requested activity is an internet browsing activity or a point of sale activity. 94. The device of claim 68, wherein the requested activity is access to a network. 95. The device of claim 68, wherein the device is operatively coupled to the non-certified device via a Bluetooth 134 β62005:, V-, ..., patent-accessible access point. 96. The device of claim 68, wherein the device is operatively coupled to the non-authenticated device via at least one WLAN access point. 97. The device of claim 68, which is connectable to the non-authenticated device via a TCP/IP. 98. The device of claim 68, wherein the communicator is operable to obtain a telephone number for communication with the authentication device by the non-authentication device. 99. The device of claim 68, wherein the communicator is operable to obtain identity data from the non-authenticated device to form the association. 100. The device of claim 68, wherein the non-authentication device is one of the following groups, including: a credit card, a smart card, an infrared device, a Bluetooth device, a pda, A portable computer, a fixed computer, and a computer network. 101. The device of claim 68, further comprising a count If the above communication is not completed within a predetermined number of times, the connection authentication failure is calculated. 102. The device of claim 68, further comprising a login function for registering one of the non-authenticated devices. 103. The device of claim 68, wherein the correlator is coupled to an authenticator to indicate that the activity request is permitted. 〇4. The device described in claim 3, wherein the above-mentioned certification benefits operate the communication to the above-mentioned certification to a non-certified device 135 brother y 1 l UZ view Jiajing Jiaqing祀 修 , , , 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 3.3 I26200J, the patent scope of the external gateway 1 〇 5. If Shen. The device of claim 10, wherein the authentication is performed by the above-mentioned authentication to a server associated with the requesting activity. 106. The apparatus of claim 68, wherein the authentication communicator is operable to communicate the authentication by using a change on a routing table on a router. 10 15 20 1〇7.- A personal transaction card compatible with an ATM (ATM machine), which contains an ATM transfer number in an ATM readable format and one of the actions associated with the owner of the personal transaction card described above. The telephone number; wherein the mobile telephone number provides the association of the ATM transfer number and a PLMN access device, thereby enabling the -PLMN network to authenticate the personal parent e-card and permitting transactions at an ATM machine. 108. The personal transaction card of claim 107, wherein the number is stored in a magnetic strip. 109. The personal transaction card of claim 107, wherein the number is stored in an internal integrated circuit. 110. An authentication method, comprising: communicating with an authentication device through a secure link; verifying that the communication is associated with an intended authentication device; and communicating with the non-authenticating device to authenticate the non-authentication device with an activity request An activity request for the authentication device. (1) The method of claim 1, wherein the authentication device 疋-GSM device and the authentication link are a GSM bond. 136 尥62005 10 15 20 Picking up the scope of patent application 】] 2· As for the patent application scope 11 〇 only 1 K method, wherein the above authentication device is a CDMA device and the above authentication 缱 and the 缱 is a CDMA link. U3. For example, in the scope of the patent application, the above-mentioned authentication device is a PDC device and the above-mentioned authentication chain #θ 硬, , , .疋 - PDC link. 114. If the patent application scope is described in item 11 of the law, wherein the above authentication device is - the coffee collection and the above certification chain is - edge bonding. U5. As described in claim 11 of the patent application, the above authentication device is a WCDMA device and the above-mentioned authentication and the link is a WCDMA link. 116. As described in the application of patent scope 11th, the above-mentioned certification is based on a GPRS device and the above-mentioned certification 117 ^ ^, 犍 疋 疋 GPRS link. 117. If the scope of the application for the scope of patent application is θ, the above-mentioned certification is set up in a network device and the above-mentioned certification e 1 1 〇, . ^ hard, 、, 疋 铱 铱 铱 铱 铱. • Μ Μ Μ Μ 第 第 110 110 110 ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ α α α α α α α α α α α α α α α α α α α α α α α α α α α α α . Η9· For example, the method of applying for the scope of the patent, the chain method, wherein the above-mentioned confidential chain, ,,. It includes a telecom service private user identity module that is involved in the above-mentioned services, free water, and exhibition. 12〇·If you apply for the scope of patent application, the method of the above-mentioned certification, the above-mentioned certification is a mobile phone. 121. The electronic data communication is included as described in Section 11 of the patent application. ', the above communication] 22. The method described in the scope of claim (2), wherein 137 ,. - ,.,,勹s 1262005 Pick up, apply for patent coverage Data communication includes electronic message transmission or SMS message transmission. 123. The method of claim 122, comprising the function of initiating the communication and receiving a reply to the activation message from the authentication device by transmitting a start message to the authentication device, 5 Activity request. 124. The method of claim 123, wherein the communication involves receiving a message from the authentication device and transmitting The above authentication device is replied to complete the above communication, thereby authorizing the above activity request. The method of claim 124, comprising inserting a password into the reply to a requesting end through the non-authenticating device, and determining whether the password has been received through the non-authenticating device. 15 20 126. The method of claim nG, including the use of automatic voice communication with the above authentication. For example, the method described in item (4) of the patent scope, wherein the above recognition The device is used with the pay-of-account 1. The above method further includes charging the paid account with the above-mentioned request activity. 128. If you apply for the scope of patent application, go to the above, please refer to the above activities as a group or move--including, 匕^有-Internet browsing activities, sales point activities and access to a network. 29. The method of claim 11, wherein there is one of the use, the outside line or the blue bud. 1 30. The method of claim 4, wherein the above-mentioned non-138 1262005 picks up 131 132 5 133. 10 134. 135. 15 136. 137. 138. 20, Shen 5 H patent scope certificate Is a TCP/IP link. • A method as described in the 'Patent Scope Π 〇 , , , , , , , , 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 • The ^^^ θ method as described in claim 1 of the patent scope, wherein the non-recognised peas are placed in one of the following groups, including: a credit card, a smart card, an infrared device, - Zhiji device, a PDA, a portable computer, a fixed computer, and a long computer network. The &lt;method of claim 1 of the claim patent scope further includes a counter ‘if the communication is not completed within a predetermined number of times to calculate the connection authentication failure. For example, the method described in the application of the 11G item includes a login function for logging in to the non-authentication device. The method of claim 11G includes the indication that the above request for activity has been permitted. The method of claim 135, wherein the indication is output to an external closed loop associated with the § forcible device. The method of claim 135, wherein the indication is output to one of the servers associated with the requested activity. The method of claim 135, wherein the indication is output by force in a change in a routing table on the routing state. 139