WO2004036856A1 - Method for controlling access to a communication network, corresponding wireless network, device and computer programmes - Google Patents

Method for controlling access to a communication network, corresponding wireless network, device and computer programmes Download PDF

Info

Publication number
WO2004036856A1
WO2004036856A1 PCT/FR2003/003087 FR0303087W WO2004036856A1 WO 2004036856 A1 WO2004036856 A1 WO 2004036856A1 FR 0303087 W FR0303087 W FR 0303087W WO 2004036856 A1 WO2004036856 A1 WO 2004036856A1
Authority
WO
WIPO (PCT)
Prior art keywords
communication
network
distance
long
characterized
Prior art date
Application number
PCT/FR2003/003087
Other languages
French (fr)
Inventor
Philippe Guillemette
Original Assignee
Wavecom
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to FR0212957A priority Critical patent/FR2846175B1/en
Priority to FR02/12957 priority
Application filed by Wavecom filed Critical Wavecom
Publication of WO2004036856A1 publication Critical patent/WO2004036856A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/08Access point devices
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity ; Protecting confidentiality; Key management; Integrity; Mobile application security; Using identity modules; Secure pairing of devices; Context aware security; Lawful interception
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/02Terminal devices
    • H04W88/04Terminal devices adapted for relaying to or from another terminal or user

Abstract

The invention concerns a method for controlling access to at least one long-distance communication network (111) for equipment items (221, 231) of a short-distance wireless network. The invention is characterized in that it consists in selectively assigning to at least one of the equipment items, specific conditions for implementing a communication on the long-distance communication network(s). The invention also concerns corresponding wireless network, device and computer programmes.

Description

A method of controlling access to a communication network, wireless network, and device programs corresponding computers.

The present invention relates to the field of wireless communication systems short, particularly but not exclusively using Bluetooth standards (trademark) (de facto standard Bluetooth SIG or "Bluetooth Special Interest Group"), IEEE 802.11 ( IEEE standard or "Institute of Electrical and Electronics Engineers") or HIPERLAN (from the English "HIgh Performance Radio Local Area Network Enhanced" standardized by ETSI ( "European Telecommunications Standardization Institute")).

More specifically, the invention relates to a communication gateway between one or more wireless communication systems in short distance and a long distance link which may be wired (e.g. type switched network link or Internet type network) or wireless (eg according to the GSM (standard for Global System for Mobile communication "in English), DCS1800 (" for Digital Cellular System 1800 MHz "in English), PCS 1900 (for" Personal communication System "in English) or yet UMTS (standing for "Universal Mobile Telecommunication System" in English) and more generally depending on mobile communication standards of the first, second or third generation)

Recall that a radio communication module is an essential part of a radio telephone. He hosts and executes a main software (commonly called "software radio"), which handles mobile communication functions (radio) and controls various hardware components of the radiotelephone (screen, keyboard, speaker ...). We know several of these modules marketed by WAVECOM (trademark) under the WISMO reference. Usually (first application), the radio communication module is included in a terminal which interacts with a SIM card (for "Subscriber Identity Module" in English or "subscriber identity module").

Thus, a possibility to allow wireless terminals short-distance communication from connecting to a long distance communication network is to integrate into these terminals a radio communication module as described above. Nevertheless, this solution has drawbacks, since it is relatively cumbersome to implement, each wireless communication terminal to be short with a long-range radio communication module.

Other applications have already been envisaged for the above communication module.

It has been proposed including (second application) to integrate the communication module in devices other than radiocommunication terminals but nonetheless requiring communication functionality to a remote network. Examples include telemetry devices (meter reading), alarm devices or credit card reader devices.

It has also been proposed (third application) to provide the radiocommunication module independent form: then it is called a modem. Such a modem does not comprise any hardware element (display, keyboard, loudspeaker, ...) of man-machine interface. It is designed to work with third-party equipment (supporting client software), which has him interface hardware human machine. The third device may include, but not exclusively, be a microcomputer.

To allow devices without short-range communication wire to connect to a long-distance communication network, as illustrated in Figure 1, another solution is to integrate the gateway functionality of the communication module; to connect to the remote network, each wireless terminal transmits instructions to the communication module via the wireless link as if it were a serial link. The terminal hosts and executes a client driver software, allowing to control (that is to say to control) the communication module through a set of piloting commands to the AT format. The AT commands (for "CAUTION command" in English) allow the terminal to request the radio communication module to which it is connected, to perform certain predetermined actions. To this end, the main software (hosted by the radiocommunication module) comprises execution means of AT commands that are sent to it by the client driver software (hosted by the terminal). For more information about AT commands, reference may be made firstly to standard "GSM 07.05" and "GSM 07.07" ETSI and secondly to N42ter recommendation of the ITU-T ( "International telecommunication Union - telecommunication standardization sector "), which are incorporated herein by reference. Integration into a gateway-like functionality communication module, this module is controlled by the terminals, is cumbersome to implement.

In addition, it has the disadvantage of a lack of flexibility and does not allow particular use by non-adapted to its control terminals.

The invention in its various aspects in particular to overcome these disadvantages of the prior art.

More specifically, an object of the invention is to provide a system and communications devices enabling terminals adapted for communications without short distance also contact wire through long distance network in a simple manner to implement.

Another object of the invention is to implement a system and communications devices enabling terminals adapted for short distance wireless communications also communicate through WAN without it being necessary to introduce in the terminals of the fine control features of a long-distance communication module.

The invention also aims to provide control and / or long-distance communications management in a local wireless network (that is, dedicated to short distance communication) and / or devices having means of wireless short-distance effective, flexible and easy to implement.

For this purpose, the invention provides an access control method for at least one long distance communication network to equipment of a wireless short range, remarkable in that it selectively assigns to at least one equipment, specific conditions for the implementation of a communication on the one or more network (s) long-distance communication.

Thus, the invention enables to flexibly manage communications between a wireless short range (eg, a local radio or infrared network) and one or more long distance wireline networks (eg, switched networks or networks Internet) or non-wired (eg, wireless and mobile satellite networks) depending on the specific conditions of each equipment (such as a device having certain technical characteristics, or as a device used by a user having or not certain rights access).

According to a particular characteristic, the access control method is characterized in that the specific conditions belong to the group comprising:

- emission allowances and / or receiving a communication on the one or more network (s) long-distance communication;

- the transmission prohibitions and / or receiving a communication on the one or more network (s) long-distance communication; and

- the maximum duration of transmitting and / or receiving a communication on the one or more network (s) long-distance communication. According to a particular characteristic, the access control method is remarkable in that it controls at least a communication module capable of transmitting and / or receiving communications over the one or more network (s) long-distance communication . According to a particular feature, the access control method is characterized in that it controls:

- at least one first communication module (201), said long-distance communication module capable of transmitting and / or receiving communications over the one or more network (s) long-distance communication;

- at least a second communication module, said short-distance communication module capable of transmitting and / or receiving communications over the wireless communication network short; and - at least one application, said local, each associated with at least one of or long-distance communication modules and at least the or short-distance communication modules.

According to a particular characteristic, the access control method is remarkable in that it comprises a transparent communication between the step or local applications and at least one of the devices of the wireless network at short distance.

Here, transparent communication can notably be implemented in higher layers as communication between communication layers to a higher level. In the case of a Bluetooth network type of thread, the transparent mode can be implemented, in particular either in an application layer on top of Bluetooth profiles, either by offset Bluetooth profiles (here a Bluetooth profile being a profile defined by, and / or compatible with Bluetooth standard). Thus, the method facilitates communication between the local application and the equipment in the wireless network (e.g., terminal type headphones or fax or computers).

According to a particular characteristic, the access control method is noteworthy in that the wireless short-range Bluetooth is a type of network and that the local application implements at least one remote Bluetooth profile.

Thus, the method allows high scalability of communications systems, especially when implementing a Bluetooth communication module that is limited by memory size and / or construction and / or has not been designed or manufactured to receive specific Bluetooth profiles. It allows the use of standard Bluetooth modules, relatively simple (memory size Bluetooth modules then being reduced), the local application that can easily adapt to different needs.

According to a particular characteristic, the access control method is remarkable in that it comprises a switching step:

- a non-transparent mode communication between the local application, at least one of short-range communications modules and at least one equipment of the wireless short distance; at

- a transparent mode of communication between the local application and the equipment or said short distance wireless network, the method of transparent communication using at least one remote Bluetooth profiles. According to a particular characteristic, the access control method is characterized in that associated with at least one of the devices a device profile defining including specific conditions, and in that it implements a step of processing each profile to determine if the corresponding equipment will be allowed subsequently to access at least one or the network (s) long-distance communication. It is noted that the combination with at least one of the equipment of a profile can be particularly upon detection of equipment carried by the communication module or following a declaration of the presence of equipment communication module. Thus, the invention does not require heavy and cumbersome user intervention.

The invention, moreover, allows an advance processing of each device profile or some profiles and thus advantageously allows not to increase the number of transmission profile and analysis and to make very simple query processing of subsequent access.

Thus, according to the invention, the treatment profile made in advance makes it possible to quickly and simply treat the access requests or remote networks, which are received and further processed.

According to a particular characteristic, the access control method is remarkable in that it comprises the following steps:

- application by one of the equipment, implementation of a communication on the one or more network (s) long-distance communication;

- Analysis of the request, in light of specific conditions, and acceptance or rejection of implementation of the communication on or the network (s) long-distance communication; and,

- acceptance if implementation at the analysis stage:

- transmission to the communication module an implementation of the communication control; - implementation of the communication by the communication module; or

- if refusal to implement during the analysis stage, transmission equipment of a refusal of information. It is noted that according to the invention, the analysis of the request may be based on predetermined profile or established during the first implementation of a communication request or on long distance networks.

According to a preferred embodiment of the invention, all devices have such a profile, and if a device does not have the profile, by default, it will be him, for example, forbidden to access the network or long distance.

According to a variant of the invention, only certain devices have a profile, and can be especially configured implementation means of the access control process to allow, by default, the equipment does not have a profile , unconditional access or otherwise reduced or no access to or WANs.

According to a particular characteristic, the access control method is characterized in that, when a long distance communication is allowed for a device, the communication goes through the communication module, or by a device incorporating the latter, according to the protocol communication of the wireless network at short distance.

Thus, according to the invention, an authorization signal or denial of access to networks or long distances can be transmitted to the communication module, allowing the communication module to offload the permissions processing task as such and to focus on the operations specific to the establishment, maintenance and termination of communications.

Thus, the access control method can be implemented regardless of the communication module, allowing both to have implemented means of dedicated process and implement a generic communication module whose authorization management part is very limited.

According to the invention, the control means are simple to implement and configure. So easily it adopts a communication module that can communicate both with one or more long-distance networks and one or more wireless local area networks, a gateway-like functionality between one or more long distance and one or more networks networks local wireless.

According to a particular characteristic, the access control method is remarkable in that the equipment shall implement an interface of "Bluetooth".

According to a particular characteristic, the access control method is characterized in that the equipment implementing an interface belonging to the group comprising: - the IEEE 802.11 interfaces;

- HIPERLAN type interfaces.

Thus, the invention is particularly suitable for short-distance wireless communication networks operating according to a standardized protocol. According to a particular characteristic, the access control method is characterized in that the long-range communication network is a mobile telecommunications network.

The invention also relates to a wireless short interconnecting at least two devices, characterized in that it comprises access control means to at least one long distance communication network, according to specific conditions of implementation of a communication on the one or more network (s) long-range communication selectively allocated to at least one of the equipments.

The invention further relates to an access control device to at least one long range communication network for network equipment without short thread, in that it takes into account specific conditions of implementation of a communication on the one or more network (s) long-range communication selectively allocated to at least one of the equipments. According to a particular characteristic, the access control device is characterized in that it controls at least a communication module capable of transmitting and / or receiving communications over the one or more network (s) long-distance communication . It is noted, moreover, that the invention advantageously enables direct communication between the or the equipment and the monitoring device (such as a protocol layer) using the communication module is for managing the lower layers of the communication. According to a particular characteristic, the access control device is characterized in that driver:

- at least one communication module capable of transmitting and / or receive communications (201) on the one or more network (s) long-distance communication; and - at least one communication module capable of transmitting and / or receiving communications on leréseau without short-distance wireless. According to a particular characteristic, the access control device is characterized in that it comprises means of transparent communication with at least one of the devices of said wireless short distance. According to a particular characteristic, the access control device is noteworthy in that leréseau wireless short-range Bluetooth is a network type and in that the device implements at least one remote Bluetooth profile.

According to a particular characteristic, the access control device is characterized in that it comprises tilting means:

- a non-transparent mode communication between the device, at least one of short-range communications modules and at least one of the devices of said short distance wireless network; at

- a transparent mode of communication between the device and or the equipment of said short distance wireless network, the method of transparent communication using at least one remote Bluetooth profiles. According to a particular characteristic, the access control device is characterized in that it is combined with the one or more communication modules in an access gateway.

According to a particular characteristic, the access control device is characterized in that it forms an independent equipment or communication modules with which it cooperates.

According to a particular characteristic, the access control device is characterized in that it is adapted for communication with the one or more network (s) through the remote communication modules or

Thus, the control device can communicate with the one or more remote networks by using the means of the communication module, and can benefit from all access to the remote networks or in the same manner as the equipment.

In addition, the invention relates to a computer program for controlling access to at least one long distance communication network to equipment of a wireless short distance, characterized in that it comprises elements of program, recorded on at least a medium readable by at least one microprocessor, taking into account specific conditions of a communication implementing on the one or more network (s) long-range communication selectively allocated to at least one of the devices .

According to a particular feature, the computer program is characterized in that it controls at least a communication module capable of transmitting and / or receiving communications over the one or more network (s) long-distance communication, or communication modules implementing on their own communications.

The advantages of the wireless short-range, access control system, and the computer program are the same as those of the access control process, they are not described in more detail. Other features and advantages of the invention will become apparent from reading the following description of a preferred embodiment given as a simple illustrative and not restrictive, and the appended drawings in which: - Figure 1 shows a block diagram of a communication system in a standalone operation, known per se;

- Figure 2 shows a block diagram of a communication system according to the invention, in a mode of operation controlled by a master application in accordance with the invention according to a particular embodiment;

- Figure 3 shows a block diagram of the system of Figure 2 in a transparent operating mode;

- Figures 4 and 7 illustrate a protocol for communication between various elements of Figures 2 and 3; and - Figures 5 and 6 illustrate BlueTooth protocol stacks in a Bluetooth module, respectively, of the system shown with reference to Figure 2 and according to one embodiment of the invention.

The general principle of the invention relies on the control of communications from (respectively to) wireless communication terminals in short distance (including Bluetooth type) to (respectively from) one or more remote networks ( example of the GSM type) by a control master application.

This control is master application, for example by means of specific AT commands directly on the interface between a local area network comprising communication terminals and the one or more remote networks. It is responsible in particular manage permissions and connection settings to a remote network from queries sent by the short terminals via a wireless interface.

The master application appears as an application of high level. Thus, the remote or applications on each communication terminal can be easily identified to the master application which can after logging enable communications between the or applications on each communication terminal and the one or more remote networks.

We present, in relation to Figure 1, a block diagram of a communication system in an autonomous operating mode, known per se.

This communication system includes:

- a remote network of GSM 111;

- a gateway 100; and

- two terminals 121 and 131 Bluetooth. The Gateway 100 itself comprises:

- a connection unit 101 to the remote network 111, connected to the network 111 via a wireless link 110;

- a serial interface 102 of the type N24;

- a Bluetooth interface 104; and - a serial link 103 connecting the sériel02 interface to the Bluetooth interface

104. The Bluetooth device 121 (respectively 131) is connected to the gateway 100 via a wireless link 120 (respectively 130) and comprises:

- a Bluetooth interface 122 (respectively 132); - a remote application 123 (respectively 133); and

- an inner link 124 (respectively 134).

The gateway 100 enables the connection setup between the network 111 and a remote application 123 or 133. The wireless link 120 (respectively 130) act as a serial link and allow the AT command transmission from the terminal 121 (respectively 131) to the gateway 100, these orders being for the communication module 101. thus, terminals 121 and 131 directly control the communication module 101 to connect to the remote network 111. It is therefore necessary that the terminals 121 and 131 have the means necessary for such management including control means and transmission aT commands adapted for transmissions over the remote network 111.

Side communication module, interface means are relatively heavy to implement and include battery management means and conflicts between different communications to or from the remote network 111.

Is present in relation to Figure 2 a block diagram of a communication system in a mode of operation controlled by a master application 211 according to the invention according to a preferred embodiment.

This communication system includes:

- a remote network of GSM 111;

- a local application 211;

- a gateway 200; - a serial link 210 connecting the local application 211 to the gateway

200; and

- two terminals 221 and 231 Bluetooth. The Gateway 200 itself comprises:

- a connection module 201 to the remote network 111, connected to the network 111 via a wireless link 110;

- two serial interfaces 202 and 203 of the type N24;

- a Bluetooth interface 104; and

- a serial link 103 between the serial interface 202 to the Bluetooth interface 104. The communication module 201 is, for example, type WISMO

(Trademark) of WAVECOM (trademark).

For more information about the terminals and Bluetooth interfaces, reference may be made to the Bluetooth specifications (including documents "Specification of the Bluetooth system-Core" and "Specification of the Bluetooth system-Profiles" available on the website www. bluetooth.com and edited by Bluetooth SIG) which are inserted herein by reference.

The Bluetooth device 221 (respectively 231) is connected to the gateway 200 via a wireless link 220 (respectively 230) and comprises: - a Bluetooth interface 122 (respectively 132);

- a remote application 223 (respectively 233); and

- an inner link 124 (respectively 134).

The Gateway 200 allows the connection establishment between the network 111 and a remote application 223 or 233 under the control of the master application 211 using a simple protocol to implement and as described in reference to FIG 4.

Is presented in connection with Figure 3 of the system of the invention in one mode of operation transparent.

It is noted that this system comprises the same elements as Figure 2; These common elements are not described further.

However, when the remote application 223 (respectively 233) comes into communication with the local application 211 to connect to the remote network 111, a transparent virtual link 300 (respectively 301) is established between the local application 211 and application remote 223 (respectively 233). The transparent virtual connection can in particular be implemented in higher-level layers in the form, for example, a Bluetooth profiles offset as illustrated with reference to Figure 6 or according to a communication between communication layers a higher level.

4 illustrates a communication protocol between the gateway 200, the remote application 223, local application 211 and the GSM network 111 of Figures 2 and 3.

When the remote application 223 wishes to access and connect to the GSM 111 network, it must first be authorized.

This authorization takes place in several steps through exchanges with the local application 211 (as according to the prior art, after authorization would be the GSM network itself) and in particular comprises a first phase detection of 'remote application 223 by the local application 211 subsequently enabling, where applicable, to the remote application to make calls to the remote network 111 or receive. During a first step 400, the Bluetooth terminal in the vicinity of the bridge 200 equipped with a Bluetooth interface 104 and the gateway 200 as a Bluetooth terminal will detect and mutually exchange Bluetooth identification messages. Bluetooth messages received by the gateway 200 are transmitted to the module 201 via the interface 202 N24.

In short a step 401, the communication module 201 (present in the gateway 200) analyzes the information received from the remote application 223 (present in the terminal 221), identifies a Bluetooth terminal and / or a remote application may connecting to the remote network 111 and generates a return message containing the remote application profile 223 and / or 221 corresponding Bluetooth device. This profile indicates, for example:

- the type of terminal (PDA (standing for "Personal Digital Assistant"), PC ...) - the services supported by the terminal (eg data type of call, voice mail, access to Internet services, ...);

- the type of remote application (file management, organizer, voice application, email, web pages viewed, ...); - ...

Then, during a step 402, the module 201 sends the statement to the local application 211.

During a step 403, the local application 211 analyzes the received message and identifies a statement relating to the remote application 223. At this step, the local application 211 checks a function in particular of the profile contained in the statement if the remote application 223 is allowed or not to make calls to the remote network 111 or receive and if so, records the declaration in an application dedicated table allowed to communicate with remote network 211, to induce the response of the communication module for future connections. This authorization is, for example, the type of the remote application 223 itself, its user, the terminal 121 the host and / or a communication available credit.

According to a variant not shown, the local application 211 transmits a signal of acknowledgment to the communication module 201 and / or to the remote application 223 (through the communication module 201) indicating whether the remote application 223 is authorized or not to connect to the network 111.

After step 400 (or, where appropriate, after receiving a positive acknowledgment), in a step 404, the remote application 223, desiring to connect to the remote network 111 issues a request in the format Bluetooth to the gateway 200; This request is received by the module 201.

During a step 405, the module 201 analyzes the content of the received request and identifies a Bluetooth format authorization request from the application 211 and reformats the request (e.g. by translating the commands into a format understandable by the local application 211 or as aT commands suitable for topical application or by updating some fields).

Then, during a step 406, the module 201 transmits the request fitness to the local application 211.

During a step 407, the local application 211 analyzes the received message, identifies an authorization request and its emitter (the remote application

223) checks whether the remote application 223 is allowed or not to make calls to the remote network 111 or receive a function, if any, of a prior statement.

If so, during a step 408, the local application 211 transmits to the module 201 via the serial link 210 an authorization message type signal (ACK or acknowledgment of the connection request) to the remote network connection 111.

If not, according to a variant not shown, in step 408, the local application 211 transmits to the module 201 via the serial link 210 an inhibit type message signal (NACK or no acknowledgment of the connection request ) indicating that the remote application 223 is not permitted to connect to the remote network 111, possibly the reason for the ban.

Then, during a step 409, the module 201 analyzes the content of the received message (authorized or not authorized), identifies the recipient and makes it fit for transmission via Bluetooth.

Then, during a step 410, the module 201 transmits the authorization message (ACK) or prohibition (NACK) reshaped to the remote application via the Bluetooth link 220. When the remote application 223 has receiving a connection permission to the remote network 111, it may issue in a step 411, a GSM application of a high level, encapsulated in a message to the Bluetooth module 201.

Then, during a step 412, the module 201 processes the request received by checking in particular that it has been authorized by the local application 211.

Then, since the connection request to the remote network is valid (that is to say, authorized by the local application 211) in steps 413 and following, the module 201 implements a communication (initialization, maintenance and end) with the remote network 111 according to the proper protocol to the remote network (e.g. GSM) in a per se known manner by performing the light shaping necessary to pass the protocol compatible with the remote network (here, e.g. , GSM) over the link 110 to the Bluetooth protocol over the link 220 (respectively vice / versa) by encapsulation of GSM messages in Bluetooth messages (GSM message extraction respectively of Bluetooth messages). Alternatively, local application 211 is authorized or not itself to communicate with the remote network 111 via the communication module 201. In the case where the local application 211 is authorized to communicate with the remote network 111 she tells the communication module 201 is authorized to connect to the remote network connects 111 and, if applicable, issuing a connection request to the remote network similar to the request sent in step 413. the communication module 201 then processes this request as if it came from a Bluetooth remote application.

Figure 5 shows a type of Bluetooth protocol stack used in the Bluetooth interface 104. This stack includes four layers:

- a first level of said physical interface HCI (English "Host Controller Interface" or "Host Controller Interface" in French);

- a layer of level 2 called L2CAP (from the English "Logical Link Control and Adaptation Protocol" or "logical link adaptation and control protocol" in French);

- a level 3 layer including the three following protocols: RFCOMM, SDP and TCS (respectively "Serial Cable Emulation Protocol", "Service Discovery Protocol" and "Telephony Control Specification" or "cable emulation protocol serial", "protocol discovery Service "and" telephony control specification "in french); and

- a final software layer Bluetooth profile GAP generic access.

The first three layers of the Bluetooth stack are specified in the Bluetooth core system specifications published the standard "Specification of the Bluetooth System - Core" (version 1.1 of February 2001).

GAP profile itself, whole or in part, used by the following profiles:

- SDAP a profile ( "Service Discovery Access Profile" or "Service Discovery Access Profile" in French); - a profile TCS ( "Telephony Control specification" or "specification telephony control" in French); and

- SPP profile ( "Serial Port Profile" or "Serial Port Profile" in French). Bluetooth profiles are specified in the Bluetooth system profile specifications published the standard "Specification of the Bluetooth System - Profiles" (version 1.1 of February 2001).

The specification describes profiles to identify the applications used on the Bluetooth radio link. Profiles define a set of pre-established behaviors associated with specific events (eg, the ability to accept or reject an incoming call) and related commands (AT commands for example).

Using a Bluetooth profile first by a second Bluetooth profile means that the second profile is based on the functionality provided by or respecting the first profile.

Thus, the SPP profile emulates a serial port used and is, wholly or partly, by PI to Pn profiles related to specific applications, such as:

- an OBEX profile ( "OBject EXchange" or "exchange of objects") (allowing exchanges of entities defining object types v-card (from the English "virtual card" or "virtual card" in French) or v-calendar (from the English "virtual calendar" or "virtual calendar" in French) in particular and may also contain FTP file transfer or synchronization profiles);

- Profile For SAP said (in English "For SIM Access Profile 'or' SIM Access Profile for cars" in French);

- a dial profile ( "Dial-up networking profile";

- a profile associated with a facsimile ( "fax profile");

- a headset profile ( "headset profile"); and

- an access profile to a local area network ( "LAN access profile"). Bluetooth profiles are interdependent: a profile can reuse all or part of another profile. Thus, the profile FTP reuse all or part of OBEX profile itself reuses all or part of the SPP profile. Illustration, OBEX level data is carried on a Bluetooth emulated port. The serial port emulation implies respect of the SPP profile allows the establishment, maintenance and shutdown emulated port.

According to the invention, the gateway 200 and the local application 211 are separated. More specifically, according to a preferred embodiment of the invention, the Bluetooth interface is in the form of a monolithic module. The ability of the gateway 200 to store and Bluetooth profiles is limited by design.

According to a variant of the invention illustrated with reference to Figure 6, the Bluetooth profiles of a gateway 600 is partly or wholly transported on a local application 610 communicating with the gateway 600 via a connection 210 (e.g., serial link Type N24 or USB) capable of conveying AT commands. This increases the scalability of the communication system while the Bluetooth module can store a limited number of Bluetooth or can not memorize new Bluetooth profiles profiles. The gateway 600 includes in particular: - a GSM interface 601 (or communication module) for communication to a GSM mobile network;

- a Bluetooth interface 605 dedicated to a Bluetooth communications network; and

- an interface 606 connecting V24 series to the connection 607. The interface 605 comprises a Bluetooth protocol stack 604 comprising the different lower layers of the stack 500 (HCI layers L2CAP, RFCOM / SDP / TCS) having a limited number of profiles (e.g., GAP profiles, SDAP, TCS and SPP).

According to the variant illustrated in Figure 6, the SPP can be used by: - ​​stored or prerecorded P'1 àP'n profiles in the module 605; and

- a link 602 to one or more profiles P "P l" m deported to the local application Local application 610 (or master application for access to or from the long-distance mobile network for Bluetooth devices similar to terminals 221 or 231) comprises:

- an interface 608 connecting N24 series to the connection 607; and

- one or more profiles P ". P l" m Bluetooth deported 609, for example of SPP and SPP profiles using such as OBEX, SAP, dialing profiles, fax, audio headphones, local area network (as illustrated with reference to Figure 5). According to an alternative embodiment, the connection 607 can be any kind including USB, IrDA, internal bus monolithic gateway. According to another alternative embodiment of the invention particularly well suited to a remote application audio / video type, connection 607 is completed by a bond purely audio / video implementation parallel to the link 607.

For the offset of Bluetooth profiles, the gateway 600 is in the transparent mode level profile, that is to say, it passes the Bluetooth profile level of data frames.

The gateway 600, the serial link 210 and the local application 610, also similar to the bridge 200, respectively, the serial link 210 and to the local application 211 illustrated with reference to Figure 2 and will not be described more.

605 the Bluetooth module to communicate with one or more Bluetooth remote terminals similar to terminals 221 and 231. The profiles present in the terminal 221 illustrated in conjunction with Figure 5 (which is identical to terminal 221 of Figure 2) provides communication between Bluetooth the remote application present in the terminal and either the Bluetooth module 605 (corresponding to a profile present in the module 605) or the local application 610 (for remote profile).

By way of illustration, assume that the Bluetooth 605 module does not include the OBEX profile that is used in particular by the FTP Profile, OBEX profile being deported in the profiles 609 of the local application 610.

In this example, it is not necessary for the general communication module 605 to hold these profiles. The OBEX level of communication is conveyed on a virtual serial port created and controlled by the Bluetooth protocol stack 604 and profile SPP Module 605. In the context of the invention, the OBEX profile can be used in a preliminary step Address Book synchronization (NCard) which holds information necessary for the establishment of a long-distance communication.

In another example, assume that the terminal is 221 Bluetooth headset type and the module 605 does not contain a profile specific to audio data processing. In this case, the local application 609 contains:

- a remote SPP profile to establish a virtual communication between local application and remote application 610 223; and

- and a remote audio profile using the SPP profile allowing the implementation of the helmet 221 for communication to a GSM network using the 601 module.

Other profiles can also be deported to the local application

610, including the profile "Car Kit Profile" ( "car kit profile") or profile

SAP grouped under the name "For SAP profile" and more generally, profiles s' pressing the SPP. In a first mode of operation, the gateway includes a SIM card allowing access to the WAN. During a call on the WAN, it is this SIM card is used.

According to a variant of the invention illustrated with reference to Figure 7, the communication system uses a SIM card in a remote device using an SAP profile by shifting the SAP profile on the local application. In a first step 700, the local application 211 to the gateway 200 indicates that it's possible, own SIM card but must route all SIM type requests to the local application 211. The application local 211 also indicates to the gateway 200 in step 700, the Bluetooth SAP profile is also transported on the local application 211. Thus, using both a virtual SIM offset physically present on a remote application (in a remote device) but for the bridge to be present on the local application.

Then, during the establishment of a long-distance communication, GSM 111 asks the SIM card to perform, for example, authenticates ation. Thus, during a step 701, the SIM authentication request is forwarded to the gateway 200.

The gateway 200 has knowledge of the SIM offset on the local application; it thus formats the request and returns it to the local application 211 in the respective steps 702 and 703.

Then, during a step 704, the local application 211 requests to the gateway 200 to pass in a transparent mode with the remote application 223, for example using AT commands.

The transparent mode being set, the SIM authentication request is transmitted to the remote application, in a step 705.

During a step 706, the remote application 223 is processing the request by the SEVI card present on the corresponding device, and the SIM card response is transmitted to the local application 211 in a step 707 .

Then, during a step 708, the local application request to the gateway to go non-transparent mode on the link 607, for example using AT commands.

When the link in non-transparent mode is established, in a step 709, the local application 211 provides the SIM card response to the gateway 200.

Then, in steps 710 and 711, the gateway 200 formats the SIM response (response to the authentication request sent in step 705) and then sends the response shaping to long network distance 111.

Of course, this type of procedure alternating transparent and non-transparent modes can be repeated for other needs access to the remote SIM card. To contact the virtual port on the general communication module 605, it becomes transparent from the perspective of the local application 610 (the latter means "only" use Bluetooth services gateway 600).

To implement this system, control commands (typically AT commands specific to the gateway 600) are used by the local application to:

- specify profiles deported or services (needed to SDP discovery process); and or

- notify the gateway 600 that he wants change to transparent mode. Since the bridge 600 is in transparent mode, the data from and / or to the port connected to the local application 610 is routed directly from / Bluetooth virtual port created for this purpose and OBEX data type, for example, are no longer processed by the GSM portion of the gateway 600 (hence the notion of transparency). Thus, the invention allows to implement a gateway between a mobile network associated with long-distance communication (eg GSM or UMTS) and Bluetooth devices with:

- access control to the mobile network for long distance communications; - supporting a transparent mode between the local and a remote application application through the Bluetooth network; and

- implementation of an offset mode Bluetooth profiles of the gateway to a master application (local application or connected to the gateway), the profiles being stored in the Bluetooth module of the gateway and / or transported on the local application . Of course, the invention is not limited to the embodiments described above.

In particular, the skilled person could make any variant in the definition of remote network that can be particularly GSM mobile network, GPRS, UMTS (from the English "Kingdom poured Mobile Telecommunications

System ") or more generally mobile type of second or third generation), wire (switched network, Internet, ADSL, ...) ...

Note that the local applications in local terminals (including Bluetooth type) are not limited to speech applications, but extends to any type of telecommunications application, including the transmission of data, connecting to websites Internet type ....

local application Note that associated with the gateway is not necessarily connected via a serial link interface module in the gateway but can be by any short connection, including parallel link, internal bus gateway (the local application is then integrated into the gateway, for example a microcontroller) ... in addition, the local application is not necessarily integrated into a dedicated module but can also be implemented in a personal computer.

Note also that the connection between the gateway and the local terminals is local wireless type, eg Bluetooth, IEEE 802.11, HIPERLAN (from the English "HIgh Performance Radio Local Area Network Enhanced" standardized by ETSI ( "European telecommunications Standardization Institute "), Infrared, powerline, ... Note that for protocols not involving automatic detection of an application by the gateway, the detection phase is replaced by an explicit declaration stage.

Note that the invention is not limited to a purely hardware installation but can also be implemented as a sequence of instructions of a computer program or any form combining a hardware part and a software. In the case where the invention is partly or wholly in software form, the corresponding sequence of instructions may be stored in a removable storage medium (such as, for example a floppy disk, a CD-ROM or DVD-ROM) and no, this storage means being partially or totally readable by a computer or a microprocessor.

Claims

1. A method for controlling access to at least one long distance communication network (111) to equipment (221, 231) of a wireless communication network to a short distance, characterized in that selectively affect, to at least one of said equipment, specific conditions of implementation of a communication on said one or more network (s) long-distance communication.
2. Method of controlling access according to claim 1, characterized in that said specific conditions belong to the group comprising:
- emission allowances and / or receiving a call on said one or more network (s) long-distance communication;
- the transmission prohibitions and / or receiving a communication on said one or more network (s) long-distance communication; and - the maximum duration of transmitting and / or receiving a call on said one or more network (s) long-distance communication.
3. Method of controlling access according to any one of claims 1 and 2, characterized in that the driver:
- at least one first communication module (201), said long-distance communication module capable of transmitting and / or receiving communications on said one or more network (s) long-distance communication;
- at least a second communication module, said short-distance communication module capable of transmitting and / or receiving communications over said wireless communication network short; and
- at least one application, said local, each associated with at least one of said at least one long distance communication module and at least one of said at least one short-range communication module.
4. A method according to claim 3, characterized in that it comprises a transparent step of communicating between said at least one local application and at least one of said devices of said wireless short distance.
5. A method according to any one of claims 3 and 4, characterized in that said network without short wire is a Bluetooth network type and in that said local application implements at least one remote Bluetooth profile.
6. A method according to claim 5, characterized in that it comprises a switching step:
- a non-transparent mode communication between said local application, at least one of said short-distance communication modules and at least one of said devices of said wireless short distance; at
- a transparent mode communication between said local application and said at least one of said devices of said wireless short range wireless network, said transparent communication mode using at least one of said remote Bluetooth profiles.
7. Method of controlling access according to claim 3 to 6, characterized in that associated with at least one of said equipments a device profile defining said particular specific conditions, and in that it implements a processing step (403) of each of said profiles to determine whether the corresponding device will be allowed subsequently to access at least one said one or more network (s) long-distance communication.
8. Method of controlling access according to any one of claims 3 to 7, characterized in that it comprises the following steps: - application (404) by one of said equipment, implementation of a communication over said one or more network (s) long-distance communication;
- analysis (407) of said request, in the light of said specific conditions, and accepting (408) or implementation of refusal of said communication on said one or more network (s) long-distance communication; and if acceptance implementation in said analyzing step: transmission (411) to said communication module an implementation of said communication control; implementation (413) of said communication by said communication module; or
- if implementation of refusal in said analyzing step, said transmission equipment a refusal information.
9. Method of controlling access according to any one of claims 3 to
8, characterized in that, when a long distance communication is allowed for a device, said communication passes through said communication module, or by a device incorporating the latter, according to the communication protocol of said network without short-distance wireless.
10. Method of controlling access according to any one of claims 1 to
9, characterized in that said equipment implementing an interface of "Bluetooth" (122, 132).
11. Method of controlling access according to any one of claims 1 to
10, characterized in that said equipment implementing an interface belonging to the group comprising: the IEEE 802.11 interfaces; - HIPERLAN type interfaces.
12. Method of controlling access according to any one of claims 1 to
11, characterized in that said long distance communication network is a network (111) of mobile telecommunication.
13. WLAN short interconnecting at least two devices, characterized in that it comprises access control means (200) at least one long distance communication network, depending on specific conditions of implementation implementation of a communication on said one or more network (s) long-range communication selectively allocated to at least one of said equipment.
14. Access control device (200) at least one long distance communication network to equipment of a wireless short distance (221, 231), characterized in that it takes into account specific conditions implementation of a communication on said one or more network (s) long-range communication, allocated selectively to at least one of said equipment.
15. The device access control according to claim 14, characterized in that the driver:
- at least one communication module capable of transmitting and / or receive communications (201) on said one or more network (s) long-distance communication; and
- at least one communication module capable of transmitting and or receiving communications over said network without short-distance wireless.
16. The device access control according to claim 15, characterized in that it comprises means of transparent communication with at least one of said devices of said network without short-distance wireless.
17. Access control device according to any one of claims 15 and 16, characterized in that said short distance wireless network is a Bluetooth network type and in that said device implements at least a Bluetooth profile deported.
18. Device according to claim 17, characterized in that it comprises tilting means:
- a non-transparent mode between said communication device, at least one of said short-distance communication modules and at least one of said devices of said wireless short distance; at
- a transparent mode of communication between said device and said at least one of said devices of said wireless short range wireless network, said transparent communication mode using at least one of said remote Bluetooth profiles.
19. The device access control according to any one of claims 15 to 18, characterized in that it is combined with said one or more communication modules in an access gateway.
20. Access control device according to any one of claims 15 to 18, characterized in that it forms an independent equipment said one or more communication modules with which it cooperates.
21. Access control device according to any one of claims 14 to 20, characterized in that it is adapted to communicate with said one or more network (s) spaced across said one or more communication modules.
22. A computer program for controlling access to at least one long distance communication network to equipment of a wireless short distance, characterized by comprising program elements, recorded on at least a medium readable by at least one microprocessor, taking into account specific conditions of implementation of a communication on said one or more network (s) long-distance communication, selectively allocated to at least one of said equipment.
23. Computer program according to claim 16, characterized in that it controls at least a communication module capable of transmitting and / or receiving communications on said one or more network (s) long-distance communication, said or communication modules implementing by themselves such communications.
PCT/FR2003/003087 2002-10-17 2003-10-17 Method for controlling access to a communication network, corresponding wireless network, device and computer programmes WO2004036856A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
FR0212957A FR2846175B1 (en) 2002-10-17 2002-10-17 of access control method in a communication network, wireless LAN, device and computer programs corresponding
FR02/12957 2002-10-17

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
AU2003286227A AU2003286227A1 (en) 2002-10-17 2003-10-17 Method for controlling access to a communication network, corresponding wireless network, device and computer programmes

Publications (1)

Publication Number Publication Date
WO2004036856A1 true WO2004036856A1 (en) 2004-04-29

Family

ID=32050497

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/FR2003/003087 WO2004036856A1 (en) 2002-10-17 2003-10-17 Method for controlling access to a communication network, corresponding wireless network, device and computer programmes

Country Status (3)

Country Link
AU (1) AU2003286227A1 (en)
FR (1) FR2846175B1 (en)
WO (1) WO2004036856A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1610510A1 (en) * 2004-06-24 2005-12-28 France Telecom Wireless access control to telematics and voice services
WO2013005075A1 (en) 2011-07-01 2013-01-10 Nokia Corporation Method and apparatus for providing network access to a connecting apparatus

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020080757A1 (en) * 2000-12-15 2002-06-27 Kai Narvanen Arranging packet data connections in office system
US20020085540A1 (en) * 2000-12-29 2002-07-04 Jani Hyvarinen Telecommunication service provision in multi-network wireless telecommunication system
US20020132582A1 (en) * 2001-03-14 2002-09-19 Mooney Philip D. Cell phone extension using wireless piconet
EP1257132A1 (en) * 2001-05-08 2002-11-13 Telefonaktiebolaget Lm Ericsson Apparatus for integrating mobile telephones as terminals of a private communication system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020080757A1 (en) * 2000-12-15 2002-06-27 Kai Narvanen Arranging packet data connections in office system
US20020085540A1 (en) * 2000-12-29 2002-07-04 Jani Hyvarinen Telecommunication service provision in multi-network wireless telecommunication system
US20020132582A1 (en) * 2001-03-14 2002-09-19 Mooney Philip D. Cell phone extension using wireless piconet
EP1257132A1 (en) * 2001-05-08 2002-11-13 Telefonaktiebolaget Lm Ericsson Apparatus for integrating mobile telephones as terminals of a private communication system

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1610510A1 (en) * 2004-06-24 2005-12-28 France Telecom Wireless access control to telematics and voice services
FR2872376A1 (en) * 2004-06-24 2005-12-30 France Telecom Method and control device for wireless access to the telematics and voice services
US7738926B2 (en) 2004-06-24 2010-06-15 France Telecom Method and device for wireless controlled access to telematic and voice services
WO2013005075A1 (en) 2011-07-01 2013-01-10 Nokia Corporation Method and apparatus for providing network access to a connecting apparatus
EP2727410A1 (en) * 2011-07-01 2014-05-07 Nokia Corp. Method and apparatus for providing network access to a connecting apparatus
EP2727410A4 (en) * 2011-07-01 2015-03-25 Nokia Corp Method and apparatus for providing network access to a connecting apparatus
US9549366B2 (en) 2011-07-01 2017-01-17 Nokie Technologies Oy Method and apparatus for providing network access to a connecting apparatus

Also Published As

Publication number Publication date
AU2003286227A1 (en) 2004-05-04
FR2846175B1 (en) 2005-01-28
FR2846175A1 (en) 2004-04-23

Similar Documents

Publication Publication Date Title
EP1529352B1 (en) A method for grouping 802.11 stations into authorized service sets to differentiate network access and services
US9564962B2 (en) Method and system for sending user information to a car
JP3795754B2 (en) A communication method between a network in particular the Internet and the user equipment, the architecture for the implementation of the communication method
US7924825B2 (en) System for providing portable VoIP services
US20040142684A1 (en) Radiotelephone system
US6519458B2 (en) Wireless data transport method, and mobile terminal and interworking function device therefor
KR100778322B1 (en) Method for managing multimedia data transmission via internet and smart card therefor
US20040110504A1 (en) System and method for handshaking between wireless devices and servers
US20050064896A1 (en) Dual mode terminal for accessing a cellular network directly or via a wireless intranet
JP2987933B2 (en) Interface for data network
US6460083B1 (en) Communication system for selectively connecting a server to numerous terminal units over a public network
EP1365603B1 (en) System for transmitting/receiving short messages (sms) between mobile terminals and remote servers
US7185360B1 (en) System for distributed network authentication and access control
US20070211624A1 (en) Communication device, radio communication arrangement and method for transmitting information
US6278706B1 (en) Wireless packet data communication apparatus and method
JP3764345B2 (en) The mobile communication terminal device and a server device
JP4319284B2 (en) Internet subscriber profile
US6052725A (en) Non-local dynamic internet protocol addressing system and method
US20080167072A1 (en) System and method for providing telephone service access via a gateway telephone
US20020157090A1 (en) Automated updating of access points in a distributed network
CN201623861U (en) Multifunctional vehicle-mounted terminal and vehicle-mounted terminal system
US20020061744A1 (en) Controlling wireless, low-power radio frequency network
CN101252376B (en) System and method for connecting blue tooth equipment and mobile communication terminal thereof
US7542455B2 (en) Unlicensed mobile access (UMA) communications using decentralized security gateway
KR20020005669A (en) Method for managing multimedia data transmission via internet and smart card therefor

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NI NO NZ OM PH PL PT RO RU SD SE SG SK SL TJ TM TN TR TT TZ UA UG US UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase in:

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP