Mobile email messaging systems typically use a store and forward architecture. Electronic Mail (email) redirector software runs either on an enterprise email server or on a desktop computer. The redirector software monitors a user mailbox. When a new email message is received in the mailbox, the redirector makes a copy of the email message and wraps the copy in an encryption envelope and encapsulates the copy for delivery to the mobile device. The redirector may optionally encrypt and/or digitally sign the encapsulated email message.
The encrypted encapsulated email message is sent out over the Internet and routed to a mobile device associated with the user mailbox. If encrypted, the email message is decrypted by the mobile device prior to being stored on the mobile device and then displayed and stored on the mobile device. This same process is repeated for every new email that is received in the user's mailbox.
Thus, with this architecture two versions of the same mailbox exist. The primary mailbox on the email server or desktop PC, and the replicated mailbox on the mobile device. Consistency between the primary and the replicated mailbox may be maintained to some degree using synchronization messages passing back and forth between the redirector and the mobile device. For example, an email message deleted from the mobile device may result in a synchronization message to the desktop redirector, which instructs it to also delete that message from the primary mailbox. In some versions of this architecture, no effort at all is made to ensure consistency of mailbox state between the primary and replicated instances. This store and forward architecture is cumbersome, does not operate in real-time, and requires sending a large number of email messages over the Internet. The present invention addresses this and other problems associated with the prior art.
A real-time communication architecture establishes a continuous connection between an enterprise network and a communication management system. The connection is continuously held open allowing mobile devices real-time access to enterprise data sources such as email systems. The real-time communication architecture can support an entire enterprise email system or individual email users.
The foregoing and other objects, features and advantages of the invention will become more readily apparent from the following detailed description of a preferred embodiment of the invention which proceeds with reference to the accompanying drawings.
For simplicity, data, databases, files, and data transactions may be referred to generally as Electronic mail (email), email transactions, mailboxes, etc. However, it should be understood that any type of email data or email transaction described below can be similarly performed for calendars, contacts, tasks, notes, electronic documents, files or any other type of data that needs to be transferred between a local network and a mobile device,
The enterprise network 18 in one instance is a private network that contains a firewall 31. The firewall 31 can be a set of related programs, located at a network gateway server that protects the resources of the enterprise network 18 from users from other networks. The term ‘firewall’ also implies the security policy that is used with the firewall programs.
The mobile network 14 includes mobile devices 21 that communicate over the Internet through a wireless or landline mobile network 14. Since mobile networks 14 are well known, they are not described in further detail.
The enterprise network 18 can be any business network, individual user network, or local computer system that maintains local email or other personal data for one or more users. In the embodiment shown in
The PC 38 is connected to the email server 34 over a Local Area Network (LAN) 35. The PC 38 includes memory 39 for storing local files that may include personal email data as well as any other types of electronic documents. Personal client software 40 is executed by a processor in the PC 38. The personal client 40 exchanges transactions with the mobile device 21 for browsing email, calendars, and contact information as well as accessing local files.
A communication management system 16 includes at least one management server 28 that manages the transactions between the mobile device 21 and the enterprise network 18. A user database 42 includes configuration information for different users. For example, the user database 42 may include login data for user's in enterprise network 18.
Enterprise Version
The communication management system 16 in
The mobile devices 21 in
Mobile connection 23 in
Continuous Real-Time Connectivity
Referring specifically to
If the authentication token 29 is authenticated, the connections 25 or 48 are established through the firewall 31 to achieve access to the management server 28 which is outside the private enterprise network 18. The management server 28 then sends the personal client 40 connection authorization and any other needed information. For example, the management server 28 may send back connection sharing information, email notification filters, and other mobile communication configuration parameters associated with a particular user.
The management server 28 and the personal client 40 then go into a quiescent mode until a transaction, such as a data query, is transferred between the mobile device 21 and the personal client 40. If for any reason the connection 25 is disconnected, the personal client 40 automatically establishes another connection 25 with management server 28.
It is important to note that the connection 25 is continuously maintained even when no connection 23 is currently exists between mobile device 21 and management server 28. In one embodiment, the connection 25 is a Transmission Control Protocol/Internet Protocol (TCP/IP) connection. However, any connection protocol can be used that allows continuous connectivity between the enterprise network 18 and communication management system 16.
In an alternative embodiment, the connection 25 may be established through a proxy server (not shown) in enterprise network 18. For example, messages sent by the personal client 40 may be encrypted by the proxy server with a Secure Sockets Layer (SSL).
After the connection 25 is established by the personal client 40, a mobile connection 23 can be established at any time between the mobile device 21 and the management server 28. After the mobile connection 23 is established, the mobile device 21 can then access email and other information in the email server 34 or memory 39 through personal client 40. Thus, after connection 25 is established, the personal client 40 effectively operates as an email server for the mobile device 21.
Referring to
In the version of the communication architecture shown in
Mobile Device Log-In
Referring to
The mobile device 21 sends an authentication token 27 either directly to the management server 28 or to the SDS 30 which forwards the authorization token 27 to the management server 28. The management server 28 verifies information in the authorization token 27 with information in the user database 42. If the authentication token 27 is verified, the management server 28 sends an authorization acknowledgement directly to the mobile device 21 or through the SDS 30.
Once the mobile device 21 has successfully logged in, the management server 28 unlocks the user's enterprise user name and password. This allows the mobile device 21 to access email and other local files in the enterprise network 18 either through connection 25 or connection 48.
The management server 28 also conducts rendering and view functions needed for presenting email and other data to the different mobile devices 21. For example, the management server 28 reformats local data retrieved from the enterprise network 18 according to the particular mobile device 21 requesting the information. The management server 28 also operates as a transactional routing engine for routing transactions between the mobile devices 21 and the enterprise network 18.
Stateless Non-Replicated Connectivity
Referring to
The transaction request 62 is sent from the mobile device 21 to the management server 28 over mobile connection 23. The management server 28 locates the personal client 40 associated with request 62 and forwards the request 62 over the appropriate connection 25. The personal client 40 accesses data in mailbox 60 according to the transaction request 62. For example, if the transaction request 62 requests viewing the user's latest emails, the personal client 40 generates an email list 64 containing the emails received in mailbox 60. The personal client 40 then sends the email list 64 back to the mobile device 21 through connection 25.
If the mobile device 21 has limited memory or viewing capability, only a latest portion of the emails in mailbox 60 may be included in email list 64. Alternatively, the personal client 40 may send all of the emails in mailbox 60 to the management server 28. The management server 28 then doles out portions of the email list 64 to the mobile device 21 according to the type of electronic platform used by the mobile device 21.
These transactions allow the mobile device 21 to view information in mailbox 60 in real time without having to maintain a second version of the emails in mailbox 60. Once the connection 23 is terminated, the email list 64 received by the mobile device 21 may be deleted. If emails in mailbox 60 need to be viewed again, the mobile device 21 sends a new transaction request 62 to the personal client 40.
If the items requested in transaction 62 are too numerous or too large for viewing by the mobile device 21, the personal client 40 may send only enough information in list 64 to identify the items. For example, the personal client 40 may glean out from an email the email sender information, when the email was sent, and the subject line. The personal client 40 may only send out this gleaned information for the latest emails received in mailbox 60.
The mobile device 21 receives the gleaned partial list 64 and can then select one or more of the items in list 64 for viewing. Depending on the type of data requested for viewing, another transaction request 62 may be sent from mobile device 21 to personal client 40 to view the selected email in its entirety. The personal client 40 then sends any remaining contents of that selected email to the mobile device 21. Alternatively, if the gleaned partial email list 64 does not contain the email that the mobile device user wishes to view, the mobile device 21 can send another transaction request 62 to the personal client 40 to view a second portion of the emails contained in mailbox 60.
After the transaction between the mobile device 21 and the management server 28 is completed, no emails from mailbox 60, or any other files from the PC 38 need to remain on the mobile device 21. That is unless the mobile device 21 saves a copy of the data. Thus, the servers 28, 30 and 32 and the mobile devices 21 shown in
This stateless connectivity does not require the large number of transactions that are typically required in store and forward architectures and also eliminates having to copy emails and send the copies to the mobile device each time an email is received at the user's mailbox.
Local Data File Access
Some mobile devices 21 may not have the capability to actually open and read the files in root directory 80 or there may be too much data in certain files for the mobile device 21 to store. In these situations, the mobile device 21 can still view, navigate and select folders and files located under the root directory 80.
An email message 70 is opened on the mobile device 21. An Insert File option may then be selected in the email application running on the mobile device 21. Selecting the Insert File option sends a view files transaction 76 from the mobile device 21 to the management server 28.
The management server 28 sends the transaction 76 over the appropriate connection 25 to personal client 40. The personal client 40 receives the transaction 76 and determines the mobile device 21 has requested a list of files in root directory 80. The personal client 40 generates a response containing a file list 78 identifying the subfolders 82 and files 84-90 in root directory 80. The response message containing file list 78 is then sent back to the mobile device 21 over connection 25.
All or part of the file list 78 may be sent to mobile device 21. For example, the management server 28 may determine the mobile device 21 has insufficient memory to view the entire file list 78. The management server 28 could also determine it would take too much time to send the entire file list 78 to the mobile device 21. In these cases, the management server 28 may only send a portion of the file list 78 to the mobile device 21.
The mobile device 21 displays the file list 78 received from the management server 28 and selects any of the listed files or subfolders. A subfolder in the file list 78 may be selected that contains files not included in the file list 78. This causes the mobile device 21 to send out another view file transaction 76 to the management server 28 requesting a list of the files contained in the selected subfolder. The management server 28, or personal client 40, then sends back another file list 78 containing the files in the selected subfolder.
If one or more files are selected from the file list 78, an associated file identifier 72 is inserted into the email message 70. In one example, selecting files is equivalent to a Hypertext Markup Language (HTML) forms submission where an item is selected from a website. When an email Send command is selected on the mobile device 21, an email transaction 74 is sent to the management server 28 that includes email message 70 and file identifier 72.
The management server 28 sends the email transaction 74 through connection 25 to the personal client 40. In the enterprise network shown in
The personal client 40 unwraps the email transaction 74 and extracts the email message 70 containing the file identifier 72. The personal client 40 reformats the email message 70 into an email message 92 and then attaches the file in root directory 80 corresponding to file identifier 72. The email message 92 with the attached file is then sent by the personal client 40 to the email server 34. A copy of the email message 92 may also be copied to the Sent Items folder in the user's mailbox.
Storing Queries
Referring to
The mobile client 98 can maintain a latest version of queried data in memory section 100-104 using the stateless connectivity architecture described above. For example, when a View Contacts operation is initiated on the mobile device 21, the mobile client 98 sends a view contacts transaction 106 to the personal client 40. The mobile device 21 may have requested the contacts list 114 for the entire enterprise network. If the contacts list 114 is too large to send to the mobile device 21, the personal client 40 may only send back a first portion 108 of the contacts list. For example, a list of contacts for the first few letters of the alphabet.
If the contact the user is looking for is not within the first contacts list portion 108, the user can send a second View Contacts transaction 110 to the personal client 40. The second transaction 110 may identify a specific letter of the alphabet for the personal client 40 to query. Alternatively, the transaction 110 may direct the personal client 40 to send back a next portion of the enterprise contact list 114 immediately following contacts list portion 108. The personal client 40 sends back a second portion 112 of contact list 114 pursuant to the transactions 110. If the contact the user is looking for is in the second contact list portion 112, no further queries are sent from the mobile device 21.
The mobile client 98 can store the last received contact list portion 112 in memory 100. According to the amount of memory available in the mobile device 21, the mobile client 98 may save the last few contact list portions 112 and 108 in memory 100. Thus, when the mobile device 21 goes off-line, a user is still able to view the latest information received from personal client 40. The mobile client 98 can also save the most recent email queries in memory space 102 and the most recent calendar queries in memory space 104.
Synchronization
Referring to
Triggers can be used to notify the mobile device 21 when new emails arrive on the email server 34. Filters 138 are configured in the personal client 40 that identify the types of emails or other types of events that cause the mobile device 21 to send a trigger 132.
For example, the filters 138 may tell the personal client 40 to send a trigger 132 each time a new email arrives in the user's mailbox. The personal client 40 monitors the user's mailbox in email server 34 for new emails. If a new email is detected, the personal client 40 sends a trigger 132 to the mobile device 21 through the management server 28. The trigger 132 may be a message with no payload that simply tells the mobile device 21 that something new has happened in the user's mailbox. The trigger 132 causes the mobile device 21 to establish the mobile connection 23 with the management server 28 and then send a synchronization request transaction 134 to the personal client 40.
In one implementation, Short Message Service (SMS) messages 126 are used to trigger the mobile device 21 into establishing the mobile connection 23 and send the synchronization request transaction 134. The management server 28 is coupled through a notification gateway 130 to a Short Message Service Controller (SMSC) 128 operated by a mobile communication service carrier. In other implementations, some other notification protocol, such as a Wireless Application Protocol (WAP) Push is used to trigger the mobile device 21.
The personal client 40 generates the trigger message 132 whenever an event associated with the user's mailbox 136 corresponds with an event identified in filters 138. The trigger message 132 causes the management server 28 to send a message through the notification gateway 130 to the SMSC 128. The SMSC 128 accordingly sends the SMS message 126 to the mobile device 24.
The mobile device 21 monitors for particular SMS messages having some particular computer readable content. When SMS message 126 is received having that particular content, the mobile device 21 initiates a mobile connection with management server 28. The mobile device 21 may extract the SMS message 126 from a user queue before a user has a chance to see it.
The mobile device 21 initiates an authentication process with the management server 28. After successful authentication, the synchronization request 134 is sent from the mobile device 21 to the management server 28. The management server 28 transfers the request 134 to the personal client 40 over the previously established connection 25. The personal client 40 upon receiving the synchronization request 134 sends back a response 133 that includes a list of the latest emails in the user's mailbox 136.
High Priority Email
Still referring to
Whenever an email arrives in the user's mailbox 136 sent from the supervisor's email address, the personal client 40 sends a stripped down version of that email through the management server 28 to the SMSC 128. For example, the stripped down version may only identify the sender, time, date, and subject line for the email message. The SMSC 128 then sends a SMS high priority message 124 to the mobile device 24.
The stripped down high priority SMS message 124 may be slightly different than the SMS message 126 used for triggering mobile device synchronization. For example, the SMS message 126 may not contain any email content, while the priority message 124 includes some portion of the actual email content received in mailbox 136. The high priority message 124 can be sent to any SMS capable mobile device.
Power Management
The mobile device 21 can periodically initiate synchronization according to an amount of charge remaining in a battery 123. For example, when battery 123 has a relatively large amount of charge remaining, the mobile device 21 may synchronize more frequently than when the battery 123 has a relatively small amount of charge remaining Systems for determining an amount of charge remaining in battery are well known and are therefore not described in further detail.
Different charge gradient levels can be used for varying how often the mobile device 21 synchronizes with the personal client 40. For example, the mobile device 21 may synchronize every 5 minutes when the battery 123 has 75% or more charge remaining and may synchronize every 10 minutes when the battery 123 is between 75% and 50% charged. When the battery 123 is between 50% and 25% charged, the mobile device 21 may only synchronize with personal client 40 every 30 minutes. Other charge/synchronization rates can also be used.
To further conserve power, synchronization can be varied according to the day of the week. For example, the mobile device 21 may synchronize less often on weekends than on weekdays.
Summary
The system described above can use dedicated processor systems, micro controllers, programmable logic devices, or microprocessors that perform some or all of the operations. Some of the operations described above may be implemented in software and other operations may be implemented in hardware.
For the sake of convenience, the operations are described as various interconnected functional blocks or distinct software modules. This is not necessary, however, and there may be cases where these functional blocks or modules are equivalently aggregated into a single logic device, program or operation with unclear boundaries. In any event, the functional blocks and software modules or features of the flexible interface can be implemented by themselves, or in combination with other operations in either hardware or software.
Having described and illustrated the principles of the invention in a preferred embodiment thereof, it should be apparent that the invention may be modified in arrangement and detail without departing from such principles. We claim all modifications and variation coming within the spirit and scope of the following claims.
This application is a Continuation of U.S. patent application Ser. No. 11/470,802, filed Sep. 7, 2006, entitled “CONNECTION ARCHITECTURE FOR A MOBILE NETWORK,” which is a Continuation of U.S. application Ser. No. 10/339,368, filed Jan. 8, 2003, entitled CONNECTION ARCHITECTURE FOR A MOBILE NETWORK, now U.S. Pat. No. 7,139,565, which claims the benefit of both U.S. Provisional Application No. 60/346,881 filed Jan. 8, 2002 and U.S. Provisional Application No. 60/403,249 filed Aug. 12, 2002, all of which are herein incorporated by reference in their entirety.
Number | Name | Date | Kind |
---|---|---|---|
5124117 | Tatebayashi et al. | Jun 1992 | A |
5465394 | Pinault et al. | Nov 1995 | A |
6263200 | Fujimoto | Jul 2001 | B1 |
6363480 | Perlman | Mar 2002 | B1 |
6560707 | Curtis et al. | May 2003 | B2 |
6636838 | Perlman et al. | Oct 2003 | B1 |
6715082 | Chang et al. | Mar 2004 | B1 |
6772340 | Peinado et al. | Aug 2004 | B1 |
6792545 | McCreight et al. | Sep 2004 | B2 |
6799030 | Barber et al. | Sep 2004 | B2 |
6810405 | LaRue et al. | Oct 2004 | B1 |
6820204 | Desai et al. | Nov 2004 | B1 |
6965992 | Joseph et al. | Nov 2005 | B1 |
6973335 | Ganton | Dec 2005 | B2 |
6977745 | Sharma | Dec 2005 | B2 |
6981041 | Araujo | Dec 2005 | B2 |
6983308 | Oberhaus | Jan 2006 | B1 |
6988199 | Toh et al. | Jan 2006 | B2 |
7003331 | Cromer et al. | Feb 2006 | B2 |
7016499 | Perlman | Mar 2006 | B2 |
7016710 | Carmeli et al. | Mar 2006 | B2 |
7020467 | Tada | Mar 2006 | B2 |
7027843 | Cromer et al. | Apr 2006 | B2 |
7055027 | Gunter et al. | May 2006 | B1 |
7178021 | Hanna et al. | Feb 2007 | B1 |
7181017 | Nagel et al. | Feb 2007 | B1 |
7181629 | Hatanaka et al. | Feb 2007 | B1 |
7185362 | Hawkes et al. | Feb 2007 | B2 |
7188365 | Balissat et al. | Mar 2007 | B2 |
7219225 | Rhodes | May 2007 | B2 |
7254712 | Godfrey et al. | Aug 2007 | B2 |
7280658 | Amini et al. | Oct 2007 | B2 |
7349871 | Labrou et al. | Mar 2008 | B2 |
7352868 | Hawkes et al. | Apr 2008 | B2 |
7363495 | Felt et al. | Apr 2008 | B2 |
7653815 | Godfrey et al. | Jan 2010 | B2 |
7739496 | Jacobs | Jun 2010 | B2 |
7761703 | Little et al. | Jul 2010 | B2 |
7801959 | Lennie | Sep 2010 | B1 |
7814208 | Stephenson et al. | Oct 2010 | B2 |
7983419 | Fan et al. | Jul 2011 | B2 |
8023475 | Goldberg et al. | Sep 2011 | B2 |
8799410 | Fiatal | Aug 2014 | B2 |
8838744 | Fiatal | Sep 2014 | B2 |
20010005364 | Kang | Jun 2001 | A1 |
20010053687 | Sivula | Dec 2001 | A1 |
20020038253 | Seaman et al. | Mar 2002 | A1 |
20020062467 | Hunzinger | May 2002 | A1 |
20020068559 | Sharma | Jun 2002 | A1 |
20020072395 | Miramontes | Jun 2002 | A1 |
20020103008 | Rahn et al. | Aug 2002 | A1 |
20020191785 | McBrearty et al. | Dec 2002 | A1 |
20020194207 | Bartlett et al. | Dec 2002 | A1 |
20030065738 | Yang et al. | Apr 2003 | A1 |
20030084361 | Lawrence et al. | May 2003 | A1 |
20030157947 | Fiatal et al. | Aug 2003 | A1 |
20050071674 | Chou et al. | Mar 2005 | A1 |
20060190569 | Neil et al. | Aug 2006 | A1 |
20070019610 | Backholm et al. | Jan 2007 | A1 |
20080022336 | Howcroft et al. | Jan 2008 | A1 |
20090005087 | Lunati et al. | Jan 2009 | A1 |
Number | Date | Country |
---|---|---|
2328588 | Feb 1999 | GB |
0130041 | Apr 2001 | WO |
Entry |
---|
M. Annoni et al.: “Interworking between Multi-Layer IPSEC and secure multicast services over GEO satellites”, European Cooperation in the Field of Scientific and Technical Research, 2002. |
A. Mackinnon et al.: “Overview of Internet Protocol Security”, Faculty of Computing and Information Technology Department of Robotics and Digital Technology, 1994. |
Non-Final Office Action mailed Jul. 18, 2013 for U.S. Appl. No. 13/101,775. |
Final Office Action mailed Mar. 1, 2006 for U.S. Appl. No. 10/339,368. |
Non-final Office Action mailed Jul. 31, 2013 for U.S. Appl. No. 11/470,802. |
USPTO, Non-Final Rejection for U.S. Appl. No. 14/468,282, mailed on Apr. 8, 2016. |
Number | Date | Country | |
---|---|---|---|
20150163180 A1 | Jun 2015 | US |
Number | Date | Country | |
---|---|---|---|
60403249 | Aug 2002 | US | |
60346881 | Jan 2002 | US |
Number | Date | Country | |
---|---|---|---|
Parent | 11470802 | Sep 2006 | US |
Child | 14623514 | US | |
Parent | 10339368 | Jan 2003 | US |
Child | 11470802 | US |