Patent Grant
8402111
With the advent of mass market digital communications, applications and content distribution, many access networks such as wireless networks, cable networks and DSL (Digital Subscriber Line) networks are pressed for user capacity, with, for example, EVDO (Evolution-Data Optimized), HSPA (High Speed Packet Access), LTE (Long Term Evolution), WiMax (Worldwide Interoperability for Microwave Access), DOCSIS, DSL, and Wi-Fi (Wireless Fidelity) becoming user capacity constrained. In the wireless case, although network capacity will increase with new higher capacity wireless radio access technologies, such as MIMO (Multiple-Input Multiple-Output), and with more frequency spectrum and cell splitting being deployed in the future, these capacity gains are likely to be less than what is required to meet growing digital networking demand.
Similarly, although wire line access networks, such as cable and DSL, can have higher average capacity per user compared to wireless, wire line user service consumption habits are trending toward very high bandwidth applications and content that can quickly consume the available capacity and degrade overall network service experience. Because some components of service provider costs go up with increasing bandwidth, this trend will also negatively impact service provider profits.
Various embodiments of the invention are disclosed in the following detailed description and the accompanying drawings.
The invention can be implemented in numerous ways, including as a process; an apparatus; a system; a composition of matter; a computer program product embodied on a computer readable storage medium; and/or a processor, such as a processor configured to execute instructions stored on and/or provided by a memory coupled to the processor. In this specification, these implementations, or any other form that the invention may take, may be referred to as techniques. In general, the order of the steps of disclosed processes may be altered within the scope of the invention. Unless stated otherwise, a component such as a processor or a memory described as being configured to perform a task may be implemented as a general component that is temporarily configured to perform the task at a given time or a specific component that is manufactured to perform the task. As used herein, the term ‘processor’ refers to one or more devices, circuits, and/or processing cores configured to process data, such as computer program instructions.
A detailed description of one or more embodiments of the invention is provided below along with accompanying figures that illustrate the principles of the invention. The invention is described in connection with such embodiments, but the invention is not limited to any embodiment. The scope of the invention is limited only by the claims and the invention encompasses numerous alternatives, modifications and equivalents. Numerous specific details are set forth in the following description in order to provide a thorough understanding of the invention. These details are provided for the purpose of example and the invention may be practiced according to the claims without some or all of these specific details. For the purpose of clarity, technical material that is known in the technical fields related to the invention has not been described in detail so that the invention is not unnecessarily obscured.
Device assisted services (DAS) install techniques are provided in accordance with some embodiments. In some embodiments, DAS install techniques for providing service processors for mobile devices are provided. In some embodiments, DAS install techniques for downloading/installing new and/or updated service processors for mobile devices are provided. In some embodiments, DAS install techniques for providing verified service processors for mobile devices are provided. In some embodiments, DAS install techniques for providing secured service processors for mobile devices are provided. In some embodiments, DAS install techniques include providing a generic first version service processor for downloading and installing a second version service processor. These and other DAS install techniques are described herein with respect to various embodiments.
In some embodiments, the wireless communications device is a mobile communications device, and the service includes one or more Internet based services, and the mobile communications device includes one or more of the following: a mobile phone, a PDA, an eBook reader, a music device, an entertainment/gaming device, a computer, laptop, a netbook, a tablet, and a home networking system. In some embodiments, the wireless communications device includes a modem, and the processor is located in the modem. In some embodiments, an intermediate networking device includes any type of networking device capable of communicating with a device and a network, including a wireless network, example intermediate networking devices include a femto cell, or any network communication device that translates the wireless data received from the device to a network, such as an access network. In some embodiments, intermediate networking devices include 3G/4G WWAN to WLAN bridges/routers/gateways, femto cells, DOCSIS modems, DSL modems, remote access/backup routers, and other intermediate network devices.
In some embodiments, there are at least two versions of a service processor. For example, a first version service processor can be a generic version of a service processor version that can be pre-installed during manufacture or distribution and used for downloading a second version service processor. For example, the first version service processor can be a generic version that is not specific to a device group while the second version is specific to a device group. As another example, the first version service processor installed during time of manufacture or during device distribution may not contain all of the functions that are available for a permanent second version service processor that is installed when the device first connects to a network. As another example, service processors can be regularly updated to change the security parameters of the software, such as software signatures, encryption, obfuscation, secure query response sequence information, and/or other parameters, so that it becomes more difficult to hack or otherwise modify the software. As another example, the second version service processor can be uniquely associated with the device 100 (e.g., wireless communications device or an intermediate networking device) and the associated service plan and/or service provider. In some embodiments, a first version service processor is installed on a device 100 (e.g., service processor 115 installed on the device 100 can be a first version service processor that was previously installed during manufacture or distribution, or downloaded and installed during initial network access, as shown in
In some embodiments, a new and/or updated version service processor 115 can be downloaded from, for example, a service processor download 170, as described herein. In some embodiments, the service processor download 170 provides a function or service that is located elsewhere in the network or partially located in elsewhere or integrated with/as part of other network elements (e.g., the service processor download 170 can be a function/service of service control 150 and/or service policies and accounting 165). In some embodiments, the devices 100 are in service control communication with service control 150 via central provider access and core networks 220 as shown in
In some embodiments, the devices 100 network access is initially restricted to service control related access for service processor 115 verification and/or download(s)/update(s) (e.g., a first version service processor installed on the mobile device 100 can limit or direct network access to the service control 150, service processor download 170, and/or service policies and accounting function 165), as described herein with respect to various embodiments. In some embodiments, after this initial restricted access period is completed and/or if the service processor 115 of the mobile device 100 is verified for the device and is current/updated, the device 100 can communicate via the central provider access and core networks 220 to the Internet 120 for access to various Internet sites and/or services 240 as shown in
Those of ordinary skill in the art will appreciate that various other network architectures can be used for DAS install techniques, and
In some embodiments,
In some embodiments, DAS install clients (e.g., bootstrappers for devices 100) are provided. In some embodiments, a first version service processor provides DAS install client function that facilitates a bootstrapping function for downloading and installing a second version service processor. In some embodiments, DAS install clients are provided for creating/downloading and installing a verifiable service processor for each device (e.g., a network capable device, such as a mobile wireless communications device or intermediate networking device). In some embodiments, a DAS install client downloads a uniquely secured service processer for device 100 (e.g., hashed/encrypted, such as based on device credentials, to prevent, for example, mass hacking or other security vulnerabilities, and/or a signed interface between the service processor and modem). In some embodiments, a non-advertised IP address allocated for each device group is rotated (e.g., to counter denial of service (DoS), distributed denial of service (DDS), and/or other types of attacks and/or vulnerabilities or exploits), and service processors are configured with multiple IP addresses for service control access (e.g., for secured network communication with service control 150 and/or service policies and accounting 165).
In some embodiments, DAS install techniques include one or more of the following operations. First, in some embodiments, whether a device is in a device group or list that includes an installed, up to date, and/or validated service processor is determined (e.g., verify that SIM, ESN, or other unique device identifier is registered, such as in a Home Location Register (HLR)/Network Information Repository (NIR) database or other authorized data store, as associated with service settings/policies for that device for service access and send its associated Charging Data Records (CDRs) to the service controller). Second, in some embodiments, if the device does not have an installed, up to date, and/or validated service processor, then the device is directed to, for example, an activation server to, for example, authenticate the device and/or verify a service processor for the device (e.g., ensure that a current and verified service processor version is installed and/or download a current and verified service processor version for the device).
For example, a DAS install client can be downloaded and installed (e.g., using various bootstrapping techniques, in which, for example, during the installation of the service processor software it is sometimes necessary to update the installer or package manager itself, by using, for example, a small executable file, such as a bootstrapper, that updates the installer and then initiates the new/updated/second version service processor installation after the update, and, in some cases, the bootstrapper can install other prerequisites for the service processor software during the bootstrapping process as well; and using network access to a download server, and/or from a website, including, for example, service processor download function 170) that allows for secure connection from the device (e.g., mobile device 100) to a secure download server (e.g., service processor download 170). In this example, support for a configuration of the device can be determined, such as through a device query or device download of client verification software can be used to verify the device hardware/software configuration). In this example, a user/device validation step can also be performed. For example, an authorization process for a user sign-up can be performed (e.g., based on a user name, MAC address, Turing machine text verification, and/or credit card verification or using other authorization/validation techniques), in which this can be performed automatically or the user/device can be required to enter certain credentials for authorization/validation.
In some embodiments, the authorization process also includes various security techniques for securely associating a user's identity with the device (e.g., using public key/TLS techniques, SSH techniques for TLS, and/or identity management techniques or other security techniques). For example, a check can also be performed to determine if the device was previously and/or is currently an activated device (e.g., the device is already associated with an active service plan). For example, whether the device belongs to a registered device group can also be determined during a DAS install, and if not, then the default settings for that type of device can be applied. In some embodiments, the service processor is encrypted, hashed, and/or obfuscated based on the previous determination (e.g., device group association, default device settings, and/or any other settings/criteria).
In some embodiments, if the device is not associated with a service plan (e.g., based on the device look-up using device based unique identifier(s)/credential(s) or using other techniques, as described herein), then the device can be redirected to a service portal for an activation offer for a service plan (e.g., using an activation server). In some embodiments, the portal utilizes header information to indicate that the device is a managed device (e.g., for a given service provider, MVNO, or other service partner) in the portal request to proxy to an appropriate proxy server for that service provider for the activation process.
In some embodiments, the device is in probation mode after the new service processor install (e.g., restricted a restricted IP address can be used for the service controller or other network element for service control instead of the secured service controller IP addresses reserved for validated and non-probation mode service processors, which, for example, can reduce the risks of various security risks, such as DoS, DDS, and/or other mass or other types of attacks against publicly or other more easily accessible service controller or download servers). In some embodiments, while in probation mode, the service processor executes more robust service monitoring techniques (e.g., more frequent and/or more robust service integrity checks and/or more frequent heartbeats, for example, to monitor actual device/user behavior with the associated expected behavior, as described herein with respect to various embodiments). In some embodiments, after a probation period ends, the device is provided access based on the associated service plan, which is managed, at least in part, by the service processor (e.g., service processor 115) in communication with, for example, a service controller (e.g., service control 150 and service policies and accounting 165) or other authorized network elements for service control.
In some embodiments, the various techniques and embodiments described herein can be readily applied to intermediate networking devices (e.g., an intermediate modem or networking device combination). In some embodiments, intermediate networking devices include, for example, WWAN/WLAN bridges, routers and gateways, cell phones with WWAN/WLAN or WWAN/Bluetooth, WWAN/LAN or WWAN/WPAN capabilities, femto cells, back up cards for wired access routers, and/or other intermediate networking devices. In some embodiments, an intermediate networking device (e.g., an intermediate modem or networking device combination) downloads and sends a service processor to one or more devices communicating via the intermediate networking device. In some embodiments, an appropriate and validated service processor is securely downloaded to the intermediate networking device, and the intermediate networking device performs the service processor functions for various wireless communication devices (e.g., mobile wireless communication devices) in communication with the intermediate networking device. In some embodiments, in which one or more wireless communication devices are in wireless communication via an intermediate networking device, some of the service processor functions are performed on the intermediate networking device (e.g., an appropriate and validated service processor is installed or securely downloaded and installed on the intermediate networking device), and some of the service processor functions are performed on the one or more wireless communication devices (e.g., an appropriate and validated service processor is installed or securely downloaded and installed on the mobile device) (e.g., stack controls can be performed on the mobile device and various other controls can be performed on the intermediate networking device). In some embodiments, the one or more wireless communication devices cannot access the network via the intermediate networking device (e.g., the devices are quarantined) unless the one or more wireless communication devices each have an installed and functioning verified service processor (e.g., using CDRs from intermediate networking device and/or network).
In some embodiments, a USB WLAN stick or other similar networking device is provided (e.g., including a modem) with DAS install client software that loads onto the device 100 and installs a service processor 115 on the device 100. In some embodiments, software on the device 100 instructs the user to insert a properly configured memory device (e.g., a secured USB memory stick, dongle, or other secured device that can provide a DAS install client software, a service processor image, and/or device credentials for network access). In some embodiments, the USB WLAN installed software assumes control over, for example, the network stack of the device (e.g., for managing network access) and sets various service policies based on whether the service is communicated via the USB WLAN stick or via the WiFi/other (e.g., including requiring no policies, such that access is open). In some embodiments, the DAS install client software on the USB WLAN stick provides a secure client that installs itself/certain software on the device that provides a DAS install client (e.g., bootstrapper) for the device, and the DAS install client downloads an appropriate service processor onto the device and/or the USB WLAN stick (e.g., the stack can also be located and managed on the USB WLAN stick).
In some embodiments, DAS install techniques include ensuring that a device's (e.g., the device modem's) credentials for the access network match the unique credentials for the service processor and the unique credentials for the device (e.g., MAC, SIM, MZ, and/or other unique credentials for the device). In some embodiments, DAS install techniques include ensuring that multiple IP addresses are not associated with the same service processor for a particular device. In some embodiments, DAS install techniques include determining that this is the same device/modem that a service processor was previously downloaded for and whether that prior service processor is still active on the network. If so, then, in some embodiments, the user is required to type in, for example, a password to continue, for example, a reimaging of the device (or prevent the new device install or to disable the previously activated other service processor).
In some embodiments, DAS install techniques include starting with a device that does not include a service processor (e.g., a device, with, for example, a SIM or EVDO ESSN, but with no service processor, attempts to connect to the network, an appropriate service processor for the device is determined, and then a uniquely associated service processor is downloaded and installed on the device, for example, using a bootstrapper, as similarly described herein). In some embodiments, unique device credentials (e.g., MAC, SIM, MZ, and/or other unique credentials for the device) are used to create a secure connection with, for example, the service controller (e.g., service control 150) or a secure download server (e.g., service processor download 170), to download a (e.g., new or replacement) service processor to be securely installed on the device. Accordingly, as similarly described herein, DAS install techniques can be applied to at least one or more of the following situations: a new service processor install; and/or a replacement service processor install (e.g., the originally/previously installed service processor was wiped/reimaged, hardware failure, or otherwise corrupted or deleted, and, thus, a replacement service processor is needed). In some embodiments, when a device connects to the network without, for example, a service processor, then a look up is performed (e.g., in a data store, such as a database) to determine whether the device is a member of a device group or a new device, and an appropriate service processor (e.g., version and settings) is provided for installation on the device. In some embodiments, when the device attempts an initial access to the network, at that time an updated version of a service processor for that device can be provided based on, for example, device type, device group, master agent, user interface (UI), settings, marketing pages, and/or other features and/or settings, which, for example, can allow for a new, changed, or evolving service plan/program by the time the device logs onto the network to provide, for example, for a dynamic and scalable solution.
In some embodiments, as similarly discussed above, two versions of the service processor are provided (e.g., a first version/image and a second version/image of the service processor software). In some embodiments, a first version service processor is a general purpose version used, for example, primarily for connecting to the network and loading a second version service processor software that, for example, can be one or more of the following: an updated version, a version tailored to a more specific purpose (e.g., based on a device type, device group, service type, service provider or service provider partner, or any other purpose/criteria), a version that includes additional features/functionality, an encrypted service processor version, a version that includes special service plan settings or capabilities associated with a device group, a version that includes specific branding or features/functionality for a given service provider or service provider partner associated with a device group, a version that includes special marketing materials to motivate the user to try or buy services or transactions associated with a device group, and various other versions as will now be apparent to one of ordinary skill in the art in view of the various embodiments described herein.
In some embodiments, depending on whether the user has pre-signed up for a service plan, for example, a different version of the service processor software and/or settings is/are downloaded to the device during this initial service processor download process, including, for example, one or more of the following: a different set of options for service plan choices, marketing materials, ambient service settings and service options, service plan settings, and possibly various other features and/or settings.
In some embodiments, the first version of the service processor is installed during manufacturing or in the distribution channel prior to sale of the device. In some embodiments, the first version of the service processor is installed after the time of sale of the device using various DAS install techniques as described herein with respect to various embodiments.
In some embodiments, the first version of the service processor is not uniquely encrypted so that a general purpose version of the first service processor image can be distributed to multiple devices (e.g., downloadable via the Internet, such as through a website, or a software update not installed by an operable service processor or a software image that is loaded onto the device before the device credentials or device group associations are available or known). In some embodiments, a non-encrypted generic version of the service processor is used for broad distribution to many devices in which the device credentials are not known at the time of service processor software distribution (e.g., the generic version of the service processor can log onto the network to access a software update function in the service controller or service control 150, service processor downloader or service process download 170, and/or similar authorized network function, then the service controller can obtain the device credentials and/or user information and provide an updated version of the service processor using the various techniques or similar techniques to those described herein). In some embodiments, the second/updated version of the service processor is uniquely encrypted (e.g., based at least in part on the device credentials or device group associations).
In some embodiments, a first version of the service processor need not be uninstalled and replaced by a new install of a second version of the service processor, as, in some embodiments, the second version of the service processor includes updates to the first version of the service processor, settings changes to the first version of the service processor, and/or encryption or obfuscation of the first version of the service processor to provide a second version of the service processor that is uniquely associated with the device, the device user, the device group, and/or the service plan associated with the device. In some embodiments, the second/updated version of the service processor includes one or more restricted IP addresses providing for access to the secured service control/service controller IP addresses reserved for validated and non-probation mode service processors, which, for example, can reduce the risks of various security risks for the secured service control/service controller(s), such as DoS, DDS, and/or other mass or security attacks against publicly or other more easily accessible service control/service controller(s) and/or service processor download servers.
In some embodiments, the second version of the service processor is uniquely associated with some aspect(s) of the device credentials and/or user information with a temporary user account (e.g., also sometimes referred to herein as a dummy user account) or user account. In some embodiments, the second version of the service processor and/or the settings in the service processor are chosen based on a look up of some aspect of the device credentials and/or the user information to determine which device group version of the service processor and/or settings should be loaded. In some embodiments, when there is no appropriate device group association or the user preference takes priority over device group association, the first version of the service processor software is used to log onto the network (e.g., including potentially the service controller) to select a service offer, or device group association that then determines the second version and/or settings of the service processor software that will be loaded onto the device.
In some embodiments, the first version of the service processor is installed on aftermarket devices, and after installation this more general purpose version of the service processor provides for access to the service control/service controller (or similar network function). In some embodiments, the service control/service controller determines what type of device and/or what operating system (OS) software and/or what modem and modem software is on the device, and then loads an appropriate version of the service processor for that device or facilitates an updating of the first version of the service processor to provide a second version of the service processor for that device.
In some embodiments, the service processor is distributed on a peripheral device suitable for use with more than one type of device and/or more than one type of OS. Accordingly, in some embodiments, more than one version of the service processor can be shipped with the device for installation on the device once the device type and/or OS type is/are known, with each version of the software either being a first version of the service processor software as discussed above, or a second version or final version of the service processor software as similarly discussed above with respect to various embodiments.
In some embodiments, the first version/second version service processor software techniques, for example, allow for installations of a new OS version that is not compatible in some way with the present version of the service processor. For example, the installation of such a new and incompatible OS version can render the currently installed service processor version incapable of connecting to the network and updating the service processor. In such an example, a first version service processor software image that is compatible with the new OS can be used to access the network (e.g., connect to the service control/service controller or some other network element) to download and install a new, possibly uniquely encrypted and compatible second service processor image, as similarly discussed above with respect to various embodiments.
In some embodiments, the first version/second version service processor software techniques, for example, can handle situations in which a device has an inadvertently wiped or damaged service processor image such that the device is no longer capable of logging onto the network with its secure credentials and/or uniquely encrypted service processor software image. In such an example, the first version software processor can then be used as similarly described above with respect to various embodiments to download and install a new/replacement second version service processor on the device.
In some embodiments, there are multiple types of device log-in to the service control/service controller depending on whether a first or second version service processor is being used. For example, if a second version service processor is being used, which, in some embodiments, includes unique secure credentials, a uniquely encrypted or secure heartbeat channel, and/or a uniquely encrypted service processor software image, then the capabilities of the device and/or service processor to access the network and/or service controller elements can be as similarly described herein with respect to various embodiments. However, if the device is using a first version service processor, which, for example, does not have unique secure credentials, a uniquely encrypted heartbeat control channel, and/or a uniquely encrypted software image, then the heartbeat control channel traffic can be handled in a differential manner as compared to the traffic handling implemented for a second version service processor image. For example, the service controller heartbeat processing elements can detect that the service processor is a first version service processor and can then route the heartbeat traffic through a different set of security processes that do not rely on all the security aspects present in a second version service processor. As another example, the first version service processor can be a widely distributed software image that does not have unique encryption on the heartbeat channel and can be handled differentially, such as handled with a different server designed to handle insecure traffic and designed to not be disposed or easily exposed to mass or other security attacks (e.g., DoS, DDS attacks, and other types of security related and/or mass/large scale attacks against a network element, such as a download server or web/application server).
In some embodiments, a device supports two or more operating systems (e.g., different versions of operating systems and/or different operating systems) and for each operating system includes a compatible service processor. For example, when a dual boot configured device boots in a first operating system version, then a first service processor that is compatible with that first operating system version is selected for network access, and when the dual boot configured device boots in a second operating system version, then the second service processor that is compatible with that second operating system version is selected for network access.
In some embodiments, initial network access for a device is directed to a service controller (e.g., service control 150), service processor downloader (e.g., service processor download 170), and/or similar network element for managing service control. In some embodiments, initial network access is restricted to this initial network access to the service controller, service processor downloader, and/or similar network element for managing service control. In some embodiments, such initial network access is restricted until the device has been verified for network access, as similarly discussed herein with respect to various embodiments. In some embodiments, such initial network access is restricted until the device has been verified for network access and an appropriate service processor has been verified on the device and/or downloaded and installed on the device, as similarly discussed herein with respect to various embodiments. In some embodiments, such initial network access is restricted using various techniques, such as using a first version of a service processor on the device that restricts such initial network access. In some embodiments, such initial network access is restricted to and maintained in probation mode, as similarly described herein (e.g., a restricted IP address can be used for the service controller or other network element for service control instead of the secured service controller IP addresses reserved for validated and non-probation mode service processors, which, for example, can reduce the risks of various security risks, such as DoS, DDS, and/or other mass attacks against publicly or other more easily accessible service controller or download servers). For example, such initial network access can include access to a common activation server, which the device can access for determination of a supported configuration for a new or second service processor image download. As another example, such initial network access can direct the device to an initial web page including access to a service plan offer and purchase options (e.g., providing for a device credential look up for device group, provide choices of programs to user, or other service plan offer and purchase options). As another example, the initial web page can include access to a service plan offer and purchase options and a service processor verification and download/update function.
In some embodiments, a network based charging data record (CDR) feed, as described herein with respect to various embodiments, is provided for monitoring service usage by managed devices. In some embodiments, the CDR feed includes device generated CDRs or micro-CDRs generated by the service processor (e.g., service processor 115 can generate CDRs for monitored service usage on the device, which can, for at least some CDRs, include unique transaction codes for uniquely identifying the monitored service usage based on service or other categorizations/criteria) on the device (e.g., a mobile device or an intermediate networking device for that mobile device). In some embodiments, the CDR feed is a real-time (e.g., near real-time) network based CDR feed provided for determining whether any devices have been compromised (e.g., a hack of a first version or second version service processor providing for unrestricted service usage for such devices, and/or any other mass or security attack or vulnerability or exploit). For example, such a CDR feed can be used to determine abnormal or unusual traffic patterns and/or service level usage activities, which, for example, can be used to identify and/or protect against a DoS/DDS attack or other types of security attacks.
In some embodiments, based on various device and/or network based monitoring techniques, as described herein with respect to various embodiments, a determination is made that the service processor (e.g., service processor 115) is not functioning properly (e.g., may have been damaged and/or compromised/tampered with and, for example, allowing network access beyond the device's associated service plan and/or not properly monitoring/billing for such service usage) and that a new/replacement service processor should be downloaded. In some embodiments, a new/replacement service processor can be downloaded and installed in such situations, using the various techniques described herein with respect to various embodiments. In some embodiments, based on various criteria (e.g., service usage monitoring, billing, and/or any other criteria) or based on proactive and/or periodic administrative/security measures, a new/replacement service processor can be downloaded and installed, using the various techniques described herein with respect to various embodiments.
In some embodiments, based on, for example, service plan changes (e.g., user changes to their service plan), service provider changes (e.g., service provider changes to their services/service policies or the associated service plan), device changes (e.g., operating system version or other software platform changes or various hardware changes), a new service processor can be downloaded and installed or the installed service processor can be updated, using the various techniques described herein with respect to various embodiments.
In some embodiments, service usage information includes network based service usage information (e.g., charging data records (CDRs)), which is obtained from one or more network elements. In some embodiments, service usage information includes micro-CDRs provided by the service processor (e.g., service processor 115) installed on the device (e.g., mobile device 100). In some embodiments, micro-CDRs are used for CDR mediation or reconciliation that provides for service usage accounting on any device activity that is desired, as described herein with respect to various embodiments. In some embodiments, each device activity that is desired to be associated with a billing event is assigned a micro-CDR transaction code, and the service processor 115 is programmed to account for that activity associated with that transaction code. In some embodiments, the service processor 115 periodically reports (e.g., during each heartbeat or based on any other periodic, push, and/or pull communication technique(s)) micro-CDR usage measures to, for example, the service controller 122 or some other network element. In some embodiments, the service controller 122 reformats the heartbeat micro-CDR usage information into a valid CDR format (e.g., a CDR format that is used and can be processed by an SGSN or GGSN) and then transmits it to an authorized network element for CDR mediation (e.g., CDR storage, aggregation, mediation, feed 118, billing system 123, and/or billing interface 127 or another authorized network element/function). In some embodiments, CDR mediation is used to account for the micro-CDR service usage information by depositing it into an appropriate service usage account and deducting it from the user device bulk service usage account. For example, this technique provides for a flexible service usage billing solution that uses pre-existing solutions for CDR mediation and billing. For example, the billing system (e.g., billing system 123 and/or billing interface 127) processes the mediated CDR feed from CDR storage, aggregation, mediation, feed 118, applies the appropriate account billing codes to the aggregated micro-CDR information that was generated by the device, and then generates billing events in a manner that does not require changes to billing systems and/or billing infrastructure (e.g., using new transaction codes to label the new device assisted billing capabilities).
As shown in
Those of ordinary skill in the art will appreciate that various other network architectures can be used for providing DAS install techniques, and
In some embodiments, CDR storage, aggregation, mediation, feed 118 (e.g., service usage 118, including a billing aggregation data store and rules engine) is a functional descriptor for, in some embodiments, a device/network level service usage information collection, aggregation, mediation, and reporting function located in one or more of the networking equipment apparatus/systems attached to one or more of the sub-networks shown in
In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) provides a device/network level service usage information collection, aggregation, mediation, and reporting function. In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) collects device generated usage information for one or more devices on the wireless network (e.g., devices 100); and provides the device generated usage information in a syntax and a communication protocol that can be used by the wireless network to augment or replace network generated usage information for the one or more devices on the wireless network. In some embodiments, the syntax is a charging data record (CDR), and the communication protocol is selected from one or more of the following: 3GPP, 3GPP2, or other communication protocols. In some embodiments, as described herein, the CDR storage, aggregation, mediation, feed 118 collects/receives micro-CDRs for one or more devices on the wireless network (e.g., devices 100). In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) includes a service usage data store (e.g., a billing aggregator) and a rules engine for aggregating the collected device generated usage information. In some embodiments, the network device is a CDR feed aggregator, and the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) also aggregates CDRs and/or micro-CDRs for the one or more devices on the wireless network; applies a set of rules to the aggregated CDRs and/or micro-CDRs using a rules engine (e.g., bill by account, transactional billing, revenue sharing model, and/or any other billing or other rules for service usage information collection, aggregation, mediation, and reporting), and communicates a new set of CDRs for the one or more devices on the wireless network to a billing interface or a billing system (e.g., providing a CDR with a billing offset by account/service).
In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) communicates a new set of CDRs (e.g., aggregated and mediated CDRs and/or micro-CDRs that are then translated into standard CDRs) for the one or more devices on the wireless network to a billing interface (e.g., central billing interface 127) or a billing system (e.g., central billing system 123). In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) communicates with a service controller (e.g., service controller 122) to collect the device generated usage information (e.g., micro-CDRs) for the one or more devices on the wireless network. In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) communicates with a service controller, in which the service controller is in communication with a billing interface or a billing system. In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) communicates the device generated usage information to a billing interface or a billing system. In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) communicates with a transport gateway (not shown) and/or a Radio Access Network (RAN) gateway (not shown) to collect the network generated usage information for the one or more devices on the wireless network. In some embodiments, the service controller 122 communicates the device generated service usage information (e.g., micro-CDRs) to the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements).
In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) performs rules for performing a bill by account aggregation and mediation function. In some embodiments, the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) performs rules for performing a service billing function, as described herein, and/or for performing a service/transactional revenue sharing function, as described herein. In some embodiments, the service controller 122 in communication with the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) performs a rules engine for aggregating and mediating the device generated usage information (e.g., micro-CDRs). In some embodiments, a rules engine device in communication with the CDR storage, aggregation, mediation, feed 118 (and/or other network elements or combinations of network elements) performs a rules engine for aggregating and mediating the device generated usage information.
In some embodiments, the rules engine is included in (e.g., integrated with/part of) the CDR storage, aggregation, mediation, feed 118. In some embodiments, the rules engine and associated functions, as discussed herein, is a separate function/device. In some embodiments, the service controller 122 performs some or all of these rules engine based functions, as discussed herein, and communicates with the central billing interface 127. In some embodiments, the service controller 122 performs some or all of these rules engine based functions, as discussed herein, and communicates with the central billing system 123.
In some embodiments, duplicate CDRs are sent from the network equipment to the billing system 123 that is used for generating service billing. In some embodiments, duplicate CDRs are filtered to send only those CDRs/records for devices controlled by the service controller and/or service processor (e.g., managed devices). For example, this approach can provide for the same level of reporting, lower level of reporting, and/or higher level of reporting as compared to the reporting required by the central billing system 123.
In some embodiments, the service controller 122 sends the device generated CDRs to the rules engine (e.g., service usage 118), and the rules engine applies one or more rules, such as those described herein and/or any other billing/service usage related rules as would be apparent to one of ordinary skill in the art. In some embodiments, the service controller 122 generates CDRs similar to other network elements, and the rules (e.g., bill-by-account) are performed in the central billing interface 127. For example, for the service controller 122 to generate CDRs similar to other network elements, in some embodiments, the service controller 122 is provisioned on the wireless network and behaves substantially similar to other CDR generators on the network) as would be apparent to one of ordinary skill in the art.
In some embodiments, the service controller 122 is provisioned as a new type of networking function that is recognized as a valid and secure source for CDRs by the other necessary elements in the network (e.g., CDR storage, aggregation, mediation, feed 118). In some embodiments, where the network necessary apparatus will only recognize CDRs from certain types of networking equipment (e.g. a RAN gateway or transport gateway), then the service controller 122 can provide authentication credentials to the other networking equipment that indicate it is one of the approved types of equipment. In some embodiments, the link between the service controller 122 and the necessary CDR aggregation and mediation equipment is secured, authenticated, encrypted, and/or signed.
In some embodiments, the CDR storage, aggregation, mediation, feed 118 discards the network based service usage information (e.g., network based CDRs) received from one or more network elements. In these embodiments, the service controller 122 can provide the device based service usage information (e.g., device based CDRs or micro-CDRs) to the CDR storage, aggregation, mediation, feed 118 (e.g., the CDR storage, aggregation, mediation, feed 118 can just provide a store, aggregate, and communication function(s)), and the device based service usage information is provided to the central billing interface 127 or the central billing system 123.
In some embodiments, the device based CDRs (e.g., micro-CDRs) and/or new CDRs generated based on execution of a rules engine as described herein are provided only for devices that are managed and/or based on device group, service plan, or any other criteria, categorization, and/or grouping, such as based on ambient service or ambient service provider or transactional service or transactional service provider.
In some embodiments, based on, for example, service plan changes (e.g., user changes to their service plan), service provider changes (e.g., service provider changes to their services/service policies or the associated service plan), micro-CDR transaction code changes, and/or any other related changes, a new service processor can be downloaded and installed or the installed service processor can be updated to allow, for example, the tracking of one or more service usage activities by the device using micro-CDRs (e.g., for new or previously unmonitored/untracked service usage activities, using, for example, new or updated micro-CDR transaction codes (uniquely) associated with such service usage activities), using the various techniques described herein with respect to various embodiments.
In some embodiments, the device is also directed to, for example, an activation server to, for example, authenticate the device and/or verify a service processor for the device (e.g., ensure that a current and verified service processor version is installed and/or download a current and verified service processor version for the device) prior to allowing such network access. For example, a DAS install client can be downloaded (e.g., using bootstrapping or other/similar techniques, from a download server and/or from a website) that allows for secure connection from the device (e.g., mobile device 100) to a secure download server (e.g., service processor download 170) (e.g., support for a configuration of the device is determined, such as through a device query or device download of client verification software can be used to verify the device hardware/software configuration). In this example, a user/device validation step can also be performed. For example, an authorization process for a user sign-up can be performed (e.g., based on a user name, MAC address, Turing machine text verification, credit card verification, and/or other authorization/validation techniques), in which this can be performed automatically or the user/device can be required to enter certain credentials for authorization/validation. In some embodiments, the authorization process also includes various techniques for associating a user's identity with the device (e.g., using public key/TLS techniques, SSH techniques for TLS, and/or identity management techniques). In this example, a check can also be performed to determine if the device was previously and/or is currently an activated device (e.g., the device is already associated with a service plan). For example, whether the device belongs to a registered device group can be determined, and if not, then the default settings for that type of device can be applied. In some embodiments, the service processor is encrypted, hashed, and/or obfuscated based on the previous determination (e.g., device group association and/or default device settings). In some embodiments, if the device is not associated with a service plan (e.g., based on the device look-up using device based unique identifier(s)/credential(s), as described herein), then the device can be redirected to a service portal for an activation offer for a service plan (e.g., using an activation server). In some embodiments, the portal utilizes header information to indicate that the device is a managed device (e.g., for a given service provider, MVNO, or other service partner) in the portal request to proxy to an appropriate proxy server for that service provider for the activation process. At 314, the process is completed.
In some embodiments, the device OS requires a pre-registered and signed version of the service processor software in order for the OS to allow the service processor to be installed or updated. In such embodiments, a sequence of pre-registered, pre-signed service processor software versions that have differing security parameters (e.g. encryption, signature, obfuscation, differences in code sequences, information for query—response sequences, and/or other security parameters) are provided. In some embodiments, the pre-registered service processors are used to regularly update the service processor software for a portion of devices connected to the network, or for all devices connected to the network. In some embodiments, a specific version of the service processor is assigned to a given device, and other versions with other security parameters will not be allowed to obtain service from the network. For example, more than one version of the software can be registered and distributed at any one time so that a hacker cannot create code that works for all devices. A sequence of service processor versions can be held in reserve and deployed when a successful software hack version is detected in the field for one or more previous service processor versions, and the new versions that have been held in reserve can be used to update devices in the field. As the reserved versions have not yet been distributed prior to the detection of a successful hack, it is not possible for a hacker to have a hacked version of the new software, and by refreshing new versions on a frequent basis it can become impossible for a hacker to successfully hack the new versions before additional new versions are deployed. Such embodiments can buy time by keeping successful software hacks out of the devices in the field until the successful software hack can be analyzed and a systematic security solution implemented to prevent the hack from remaining effective.
In some embodiments not all of the service processor software is modified into pre-registered modified security configuration versions that are regularly refreshed, but instead a portion of the service processor software that includes unique security information (e.g., security keys, signatures and/or responses to secure queries, and/or other security information, and/or the capability to analyze the integrity of the other service processor software). In this manner, when a device is suspected of being hacked the new service processor software portion with different security configuration can be updated and used to ascertain the integrity of the existing service processor configuration, which makes the update process shorter and lower bandwidth.
Although the foregoing embodiments have been described in some detail for purposes of clarity of understanding, the invention is not limited to the details provided. There are many alternative ways of implementing the invention. The disclosed embodiments are illustrative and not restrictive.
This application claims priority to U.S. Provisional Patent Application No. 61/206,354 entitled SERVICES POLICY COMMUNICATION SYSTEM AND METHOD filed Jan. 28, 2009, U.S. Provisional Patent Application No. 61/206,944 entitled SERVICES POLICY COMMUNICATION SYSTEM AND METHOD filed Feb. 4, 2009, U.S. Provisional Application No. 61/207,393 entitled SERVICES POLICY COMMUNICATION SYSTEM AND METHOD filed Feb. 10, 2009, U.S. Provisional Patent Application No. 61/207,739 entitled SERVICES POLICY COMMUNICATION SYSTEM AND METHOD filed on Feb. 13, 2009, and U.S. Provisional Patent Application No. 61/264,120 entitled DEVICE ASSISTED SERVICES INSTALL filed on Nov. 24, 2009, which are incorporated herein by reference for all purposes. This application is a continuation in part of co-pending U.S. patent application Ser. No. 12/380,780, entitled AUTOMATED DEVICE PROVISIONING AND ACTIVATION, filed on Mar. 2, 2009, which is incorporated herein by reference for all purposes, and which claims priority to U.S. Provisional Patent Application No. 61/206,354 entitled SERVICES POLICY COMMUNICATION SYSTEM AND METHOD filed Jan. 28, 2009, U.S. Provisional Patent Application No. 61/206,944 entitled SERVICES POLICY COMMUNICATION SYSTEM AND METHOD filed Feb. 4, 2009, U.S. Provisional Application No. 61/207,393 entitled SERVICES POLICY COMMUNICATION SYSTEM AND METHOD filed Feb. 10, 2009, and U.S. Provisional Patent Application No. 61/207,739 entitled SERVICES POLICY COMMUNICATION SYSTEM AND METHOD filed on Feb. 13, 2009, which are incorporated herein by reference for all purposes.
| Number | Name | Date | Kind |
|---|---|---|---|
| 5283904 | Carson et al. | Feb 1994 | A |
| 5577100 | McGregor et al. | Nov 1996 | A |
| 5594777 | Makkonen et al. | Jan 1997 | A |
| 5794142 | Vanttila et al. | Aug 1998 | A |
| 5892900 | Ginter et al. | Apr 1999 | A |
| 5903845 | Buhrmann et al. | May 1999 | A |
| 5933778 | Buhrmann et al. | Aug 1999 | A |
| 5940472 | Newman et al. | Aug 1999 | A |
| 6038452 | Strawczynski et al. | Mar 2000 | A |
| 6047268 | Bartoli et al. | Apr 2000 | A |
| 6078953 | Vaid et al. | Jun 2000 | A |
| 6098878 | Dent et al. | Aug 2000 | A |
| 6141686 | Jackowski et al. | Oct 2000 | A |
| 6148336 | Thomas et al. | Nov 2000 | A |
| 6198915 | McGregor et al. | Mar 2001 | B1 |
| 6226277 | Chuah | May 2001 | B1 |
| 6263055 | Garland et al. | Jul 2001 | B1 |
| 6317584 | Abu-Amara et al. | Nov 2001 | B1 |
| 6418147 | Wiedeman | Jul 2002 | B1 |
| 6449479 | Sanchez | Sep 2002 | B1 |
| 6477670 | Ahmadvand | Nov 2002 | B1 |
| 6502131 | Vaid et al. | Dec 2002 | B1 |
| 6505114 | Luciani | Jan 2003 | B2 |
| 6532235 | Benson et al. | Mar 2003 | B1 |
| 6532579 | Sato et al. | Mar 2003 | B2 |
| 6539082 | Lowe et al. | Mar 2003 | B1 |
| 6563806 | Yano et al. | May 2003 | B1 |
| 6574321 | Cox et al. | Jun 2003 | B1 |
| 6574465 | Marsh et al. | Jun 2003 | B2 |
| 6581092 | Motoyama et al. | Jun 2003 | B1 |
| 6603969 | Vuoristo et al. | Aug 2003 | B1 |
| 6606744 | Mikurak | Aug 2003 | B1 |
| 6631122 | Arunachalam et al. | Oct 2003 | B1 |
| 6639975 | O'Neal et al. | Oct 2003 | B1 |
| 6650887 | McGregor et al. | Nov 2003 | B2 |
| 6651101 | Gai et al. | Nov 2003 | B1 |
| 6658254 | Purdy et al. | Dec 2003 | B1 |
| 6678516 | Nordman et al. | Jan 2004 | B2 |
| 6683853 | Carlsson et al. | Jan 2004 | B1 |
| 6684244 | Goldman et al. | Jan 2004 | B1 |
| 6725031 | Watler et al. | Apr 2004 | B2 |
| 6763000 | Walsh | Jul 2004 | B1 |
| 6765864 | Natarajan et al. | Jul 2004 | B1 |
| 6785889 | Williams | Aug 2004 | B1 |
| 6829596 | Frazee | Dec 2004 | B1 |
| 6829696 | Balmer et al. | Dec 2004 | B1 |
| 6839340 | Voit et al. | Jan 2005 | B1 |
| 6876653 | Ambe et al. | Apr 2005 | B2 |
| 6920455 | Weschler | Jul 2005 | B1 |
| 6922562 | Ward et al. | Jul 2005 | B2 |
| 6947723 | Gurnani et al. | Sep 2005 | B1 |
| 6952428 | Necka et al. | Oct 2005 | B1 |
| 6965667 | Trabandt et al. | Nov 2005 | B2 |
| 6967958 | Ono et al. | Nov 2005 | B2 |
| 6996076 | Forbes et al. | Feb 2006 | B1 |
| 6998985 | Reisman et al. | Feb 2006 | B2 |
| 7002920 | Ayyagari et al. | Feb 2006 | B1 |
| 7024200 | McKenna et al. | Apr 2006 | B2 |
| 7027408 | Nabkel et al. | Apr 2006 | B2 |
| 7039403 | Wong | May 2006 | B2 |
| 7042988 | Juitt et al. | May 2006 | B2 |
| 7058968 | Rowland et al. | Jun 2006 | B2 |
| 7068600 | Cain | Jun 2006 | B2 |
| 7069248 | Huber | Jun 2006 | B2 |
| 7092696 | Hosain et al. | Aug 2006 | B1 |
| 7113997 | Jayapalan et al. | Sep 2006 | B2 |
| 7142876 | Trossen et al. | Nov 2006 | B2 |
| 7158792 | Cook et al. | Jan 2007 | B1 |
| 7167078 | Pourchot | Jan 2007 | B2 |
| 7174174 | Boris et al. | Feb 2007 | B2 |
| 7180855 | Lin | Feb 2007 | B1 |
| 7197321 | Erskine et al. | Mar 2007 | B2 |
| 7212491 | Koga | May 2007 | B2 |
| 7228354 | Chambliss et al. | Jun 2007 | B2 |
| 7236780 | Benco et al. | Jun 2007 | B2 |
| 7242920 | Morris | Jul 2007 | B2 |
| 7245901 | McGregor et al. | Jul 2007 | B2 |
| 7251218 | Jorgensen | Jul 2007 | B2 |
| 7280816 | Fratti et al. | Oct 2007 | B2 |
| 7280818 | Clayton | Oct 2007 | B2 |
| 7283561 | Picher-Dempsey | Oct 2007 | B1 |
| 7283963 | Fitzpatrick et al. | Oct 2007 | B1 |
| 7289489 | Kung et al. | Oct 2007 | B1 |
| 7290283 | Copeland, III | Oct 2007 | B2 |
| 7317699 | Godfrey et al. | Jan 2008 | B2 |
| 7322044 | Hrastar | Jan 2008 | B2 |
| 7324447 | Morford | Jan 2008 | B1 |
| 7325037 | Lawson | Jan 2008 | B2 |
| 7336960 | Zavalkovsky et al. | Feb 2008 | B2 |
| 7346410 | Uchiyama | Mar 2008 | B2 |
| 7349695 | Oommen et al. | Mar 2008 | B2 |
| 7353533 | Wright et al. | Apr 2008 | B2 |
| 7356337 | Florence | Apr 2008 | B2 |
| 7366497 | Nagata | Apr 2008 | B2 |
| 7373136 | Watler et al. | May 2008 | B2 |
| 7373179 | Stine et al. | May 2008 | B2 |
| 7388950 | Elsey et al. | Jun 2008 | B2 |
| 7401338 | Bowen et al. | Jul 2008 | B1 |
| 7403763 | Maes | Jul 2008 | B2 |
| 7418253 | Kavanagh | Aug 2008 | B2 |
| 7418257 | Kim | Aug 2008 | B2 |
| 7421004 | Feher | Sep 2008 | B2 |
| 7450591 | Korling et al. | Nov 2008 | B2 |
| 7450927 | Creswell et al. | Nov 2008 | B1 |
| 7486185 | Culpepper et al. | Feb 2009 | B2 |
| 7499537 | Elsey et al. | Mar 2009 | B2 |
| 7515608 | Yuan et al. | Apr 2009 | B2 |
| 7516219 | Moghaddam et al. | Apr 2009 | B2 |
| 7546629 | Albert et al. | Jun 2009 | B2 |
| 7565141 | Macaluso | Jul 2009 | B2 |
| 7574731 | Fascenda | Aug 2009 | B2 |
| 7580857 | VanFleet et al. | Aug 2009 | B2 |
| 7583964 | Wong | Sep 2009 | B2 |
| 7599288 | Cole et al. | Oct 2009 | B2 |
| 7609650 | Roskowski et al. | Oct 2009 | B2 |
| 7609700 | Ying et al. | Oct 2009 | B1 |
| 7610328 | Haase et al. | Oct 2009 | B2 |
| 7617516 | Huslak et al. | Nov 2009 | B2 |
| 7620041 | Dunn et al. | Nov 2009 | B2 |
| 7620065 | Falardeau | Nov 2009 | B2 |
| 7620162 | Aaron et al. | Nov 2009 | B2 |
| 7627314 | Carlson et al. | Dec 2009 | B2 |
| 7636574 | Poosala | Dec 2009 | B2 |
| 7644151 | Jerrim et al. | Jan 2010 | B2 |
| 7644267 | Ylikoski et al. | Jan 2010 | B2 |
| 7647047 | Moghaddam et al. | Jan 2010 | B2 |
| 7650137 | Jobs et al. | Jan 2010 | B2 |
| 7668176 | Chuah | Feb 2010 | B2 |
| 7668903 | Edwards et al. | Feb 2010 | B2 |
| 7685131 | Batra et al. | Mar 2010 | B2 |
| 7693720 | Kennewick et al. | Apr 2010 | B2 |
| 7710932 | Muthuswamy et al. | May 2010 | B2 |
| 7720505 | Gopi et al. | May 2010 | B2 |
| 7734784 | Araujo et al. | Jun 2010 | B1 |
| 7746854 | Ambe et al. | Jun 2010 | B2 |
| 7747240 | Briscoe et al. | Jun 2010 | B1 |
| 7747699 | Prueitt et al. | Jun 2010 | B2 |
| 7747730 | Harlow | Jun 2010 | B1 |
| 7756534 | Anupam et al. | Jul 2010 | B2 |
| 7778643 | Laroia et al. | Aug 2010 | B2 |
| 7792538 | Kozisek | Sep 2010 | B2 |
| 7792708 | Alva | Sep 2010 | B2 |
| 7797204 | Balent | Sep 2010 | B2 |
| 7797401 | Stewart et al. | Sep 2010 | B2 |
| 7801523 | Kenderov | Sep 2010 | B1 |
| 7822837 | Urban et al. | Oct 2010 | B1 |
| 7844728 | Anderson et al. | Nov 2010 | B2 |
| 7848768 | Omori et al. | Dec 2010 | B2 |
| 7856226 | Wong et al. | Dec 2010 | B2 |
| 7865182 | Macaluso | Jan 2011 | B2 |
| 7868778 | Kenwright | Jan 2011 | B2 |
| 7873344 | Bowser et al. | Jan 2011 | B2 |
| 7873705 | Kalish | Jan 2011 | B2 |
| 7877090 | Maes | Jan 2011 | B2 |
| 7881199 | Krstulich | Feb 2011 | B2 |
| 7882029 | White | Feb 2011 | B2 |
| 7886047 | Potluri | Feb 2011 | B1 |
| 7890084 | Dudziak et al. | Feb 2011 | B1 |
| 7890111 | Bugenhagen | Feb 2011 | B2 |
| 7903553 | Liu | Mar 2011 | B2 |
| 7911975 | Droz et al. | Mar 2011 | B2 |
| 7912025 | Pattenden et al. | Mar 2011 | B2 |
| 7912056 | Brassem | Mar 2011 | B1 |
| 7920529 | Mahler et al. | Apr 2011 | B1 |
| 7929960 | Martin et al. | Apr 2011 | B2 |
| 7937069 | Rassam | May 2011 | B2 |
| 7941184 | Prendergast et al. | May 2011 | B2 |
| 7945240 | Klock et al. | May 2011 | B1 |
| 7948952 | Hurtta et al. | May 2011 | B2 |
| 7948968 | Voit et al. | May 2011 | B2 |
| 7949529 | Weider et al. | May 2011 | B2 |
| 7953808 | Sharp et al. | May 2011 | B2 |
| 7957020 | Mine et al. | Jun 2011 | B2 |
| 7957511 | Drudis et al. | Jun 2011 | B2 |
| 7962622 | Friend et al. | Jun 2011 | B2 |
| 7970350 | Sheynman et al. | Jun 2011 | B2 |
| 7970426 | Poe et al. | Jun 2011 | B2 |
| 7975184 | Goff et al. | Jul 2011 | B2 |
| 7984130 | Bogineni et al. | Jul 2011 | B2 |
| 7986935 | D'Souza et al. | Jul 2011 | B1 |
| 8005459 | Balsillie | Aug 2011 | B2 |
| 8010080 | Thenthiruperai et al. | Aug 2011 | B1 |
| 8010081 | Roskowski | Aug 2011 | B1 |
| 8015133 | Wu et al. | Sep 2011 | B1 |
| 8015234 | Lum et al. | Sep 2011 | B2 |
| 8019687 | Wang et al. | Sep 2011 | B2 |
| 8023425 | Raleigh | Sep 2011 | B2 |
| 8036600 | Garrett et al. | Oct 2011 | B2 |
| 8050275 | Iyer | Nov 2011 | B1 |
| 8064896 | Bell et al. | Nov 2011 | B2 |
| 8068824 | Shan et al. | Nov 2011 | B2 |
| 8094551 | Huber et al. | Jan 2012 | B2 |
| 8095666 | Schmidt et al. | Jan 2012 | B2 |
| 8099077 | Chowdhury et al. | Jan 2012 | B2 |
| 8099517 | Jia et al. | Jan 2012 | B2 |
| 8102814 | Rahman et al. | Jan 2012 | B2 |
| 8108520 | Ruutu et al. | Jan 2012 | B2 |
| 8126123 | Cai et al. | Feb 2012 | B2 |
| 8135388 | Gailloux et al. | Mar 2012 | B1 |
| 8135392 | Marcellino et al. | Mar 2012 | B2 |
| 8144591 | Ghai et al. | Mar 2012 | B2 |
| 8155620 | Wang et al. | Apr 2012 | B2 |
| 8160015 | Rashid et al. | Apr 2012 | B2 |
| 8170553 | Bennett | May 2012 | B2 |
| 8184530 | Swan et al. | May 2012 | B1 |
| 8185152 | Goldner | May 2012 | B1 |
| 8185158 | Tamura et al. | May 2012 | B2 |
| 8190675 | Tribbett | May 2012 | B2 |
| 8194549 | Huber et al. | Jun 2012 | B2 |
| 8194553 | Liang et al. | Jun 2012 | B2 |
| 8195093 | Garrett et al. | Jun 2012 | B2 |
| 8200775 | Moore | Jun 2012 | B2 |
| 8204190 | Bang et al. | Jun 2012 | B2 |
| 8208919 | Kotecha | Jun 2012 | B2 |
| 8213363 | Ying et al. | Jul 2012 | B2 |
| 8214536 | Zhao | Jul 2012 | B2 |
| 8238287 | Gopi et al. | Aug 2012 | B1 |
| 8239520 | Grah et al. | Aug 2012 | B2 |
| 8244241 | Montemurro | Aug 2012 | B2 |
| 8254915 | Kozisek | Aug 2012 | B2 |
| 8255515 | Melman et al. | Aug 2012 | B1 |
| 8255689 | Kim et al. | Aug 2012 | B2 |
| 8271049 | Silver et al. | Sep 2012 | B2 |
| 8291238 | Ginter et al. | Oct 2012 | B2 |
| 8315594 | Mauser et al. | Nov 2012 | B1 |
| 8335161 | Foottit et al. | Dec 2012 | B2 |
| 8350700 | Fast et al. | Jan 2013 | B2 |
| 8353001 | Herrod | Jan 2013 | B2 |
| 20010053694 | Igarashi et al. | Dec 2001 | A1 |
| 20020022472 | Watler et al. | Feb 2002 | A1 |
| 20020120540 | Kende et al. | Aug 2002 | A1 |
| 20020131404 | Mehta et al. | Sep 2002 | A1 |
| 20020138601 | Piponius et al. | Sep 2002 | A1 |
| 20020176377 | Hamilton | Nov 2002 | A1 |
| 20020199001 | Wenocur et al. | Dec 2002 | A1 |
| 20030004937 | Salmenkaita et al. | Jan 2003 | A1 |
| 20030005112 | Krautkremer | Jan 2003 | A1 |
| 20030013434 | Rosenberg et al. | Jan 2003 | A1 |
| 20030018524 | Fishman et al. | Jan 2003 | A1 |
| 20030046396 | Richter et al. | Mar 2003 | A1 |
| 20030050070 | Mashinsky et al. | Mar 2003 | A1 |
| 20030050837 | Kim | Mar 2003 | A1 |
| 20030088671 | Klinker et al. | May 2003 | A1 |
| 20030133408 | Cheng et al. | Jul 2003 | A1 |
| 20030161265 | Cao et al. | Aug 2003 | A1 |
| 20030182420 | Jones et al. | Sep 2003 | A1 |
| 20030182435 | Redlich et al. | Sep 2003 | A1 |
| 20030220984 | Jones et al. | Nov 2003 | A1 |
| 20030224781 | Milford et al. | Dec 2003 | A1 |
| 20030229900 | Reisman | Dec 2003 | A1 |
| 20030236745 | Hartsell et al. | Dec 2003 | A1 |
| 20040019539 | Raman et al. | Jan 2004 | A1 |
| 20040021697 | Beaton et al. | Feb 2004 | A1 |
| 20040030705 | Bowman-Amuah et al. | Feb 2004 | A1 |
| 20040044623 | Wake et al. | Mar 2004 | A1 |
| 20040047358 | Chen et al. | Mar 2004 | A1 |
| 20040073672 | Fascenda | Apr 2004 | A1 |
| 20040082346 | Skytt et al. | Apr 2004 | A1 |
| 20040098715 | Aghera et al. | May 2004 | A1 |
| 20040103193 | Pandya et al. | May 2004 | A1 |
| 20040107360 | Herrmann et al. | Jun 2004 | A1 |
| 20040127200 | Shaw et al. | Jul 2004 | A1 |
| 20040132427 | Lee et al. | Jul 2004 | A1 |
| 20040168052 | Clisham et al. | Aug 2004 | A1 |
| 20040198331 | Coward et al. | Oct 2004 | A1 |
| 20040236547 | Rappaport et al. | Nov 2004 | A1 |
| 20040249918 | Sunshine | Dec 2004 | A1 |
| 20050009499 | Koster | Jan 2005 | A1 |
| 20050021995 | Lal et al. | Jan 2005 | A1 |
| 20050048950 | Morper | Mar 2005 | A1 |
| 20050055291 | Bevente et al. | Mar 2005 | A1 |
| 20050055309 | Williams et al. | Mar 2005 | A1 |
| 20050060266 | DeMello et al. | Mar 2005 | A1 |
| 20050097516 | Donnelly et al. | May 2005 | A1 |
| 20050107091 | Vannithamby et al. | May 2005 | A1 |
| 20050128967 | Scobbie | Jun 2005 | A1 |
| 20050166043 | Zhang et al. | Jul 2005 | A1 |
| 20050183143 | Anderholm et al. | Aug 2005 | A1 |
| 20050198377 | Ferguson et al. | Sep 2005 | A1 |
| 20050216421 | Barry et al. | Sep 2005 | A1 |
| 20050228985 | Ylikoski et al. | Oct 2005 | A1 |
| 20050238046 | Hassan et al. | Oct 2005 | A1 |
| 20050246282 | Naslund et al. | Nov 2005 | A1 |
| 20050250508 | Guo et al. | Nov 2005 | A1 |
| 20050254435 | Moakley et al. | Nov 2005 | A1 |
| 20050266825 | Clayton | Dec 2005 | A1 |
| 20050266880 | Gupta | Dec 2005 | A1 |
| 20060014519 | Marsh et al. | Jan 2006 | A1 |
| 20060019632 | Cunningham et al. | Jan 2006 | A1 |
| 20060026679 | Zakas | Feb 2006 | A1 |
| 20060034256 | Addagatla et al. | Feb 2006 | A1 |
| 20060040642 | Boris et al. | Feb 2006 | A1 |
| 20060045245 | Aaron et al. | Mar 2006 | A1 |
| 20060048223 | Lee et al. | Mar 2006 | A1 |
| 20060072646 | Feher et al. | Apr 2006 | A1 |
| 20060085543 | Hrastar et al. | Apr 2006 | A1 |
| 20060112016 | Ishibashi | May 2006 | A1 |
| 20060143098 | Lazaridis | Jun 2006 | A1 |
| 20060165060 | Dua | Jul 2006 | A1 |
| 20060178918 | Mikurak | Aug 2006 | A1 |
| 20060183462 | Kolehmainen et al. | Aug 2006 | A1 |
| 20060190314 | Hernandez | Aug 2006 | A1 |
| 20060199608 | Dunn et al. | Sep 2006 | A1 |
| 20060206904 | Watkins et al. | Sep 2006 | A1 |
| 20060218395 | Maes | Sep 2006 | A1 |
| 20060233108 | Krishnan | Oct 2006 | A1 |
| 20060233166 | Bou-Diab et al. | Oct 2006 | A1 |
| 20060236095 | Smith et al. | Oct 2006 | A1 |
| 20060242685 | Heard et al. | Oct 2006 | A1 |
| 20060258341 | Miller et al. | Nov 2006 | A1 |
| 20060291477 | Croak et al. | Dec 2006 | A1 |
| 20070019670 | Falardeau | Jan 2007 | A1 |
| 20070022289 | Alt et al. | Jan 2007 | A1 |
| 20070036312 | Cai et al. | Feb 2007 | A1 |
| 20070055694 | Ruge et al. | Mar 2007 | A1 |
| 20070061243 | Ramer et al. | Mar 2007 | A1 |
| 20070076616 | Ngo et al. | Apr 2007 | A1 |
| 20070093243 | Kapadekar et al. | Apr 2007 | A1 |
| 20070100981 | Adamczyk et al. | May 2007 | A1 |
| 20070101426 | Lee et al. | May 2007 | A1 |
| 20070104126 | Calhoun et al. | May 2007 | A1 |
| 20070130315 | Friend et al. | Jun 2007 | A1 |
| 20070140113 | Gemelos | Jun 2007 | A1 |
| 20070140275 | Bowman et al. | Jun 2007 | A1 |
| 20070198656 | Mazzaferri et al. | Aug 2007 | A1 |
| 20070220251 | Rosenberg et al. | Sep 2007 | A1 |
| 20070226225 | Yiu et al. | Sep 2007 | A1 |
| 20070243862 | Coskun et al. | Oct 2007 | A1 |
| 20070248100 | Zuberi et al. | Oct 2007 | A1 |
| 20070254675 | Zorlu Ozer et al. | Nov 2007 | A1 |
| 20070255848 | Sewall et al. | Nov 2007 | A1 |
| 20070259673 | Willars et al. | Nov 2007 | A1 |
| 20070263558 | Salomone | Nov 2007 | A1 |
| 20070274327 | Kaarela et al. | Nov 2007 | A1 |
| 20070282896 | Wydroug et al. | Dec 2007 | A1 |
| 20070294395 | Strub et al. | Dec 2007 | A1 |
| 20070298764 | Clayton | Dec 2007 | A1 |
| 20080005285 | Robinson et al. | Jan 2008 | A1 |
| 20080005561 | Brown et al. | Jan 2008 | A1 |
| 20080010452 | Holtzman et al. | Jan 2008 | A1 |
| 20080039102 | Sewall et al. | Feb 2008 | A1 |
| 20080049630 | Kozisek et al. | Feb 2008 | A1 |
| 20080052387 | Heinz et al. | Feb 2008 | A1 |
| 20080059474 | Lim | Mar 2008 | A1 |
| 20080059743 | Bychkov et al. | Mar 2008 | A1 |
| 20080060066 | Wynn et al. | Mar 2008 | A1 |
| 20080062900 | Rao | Mar 2008 | A1 |
| 20080064367 | Nath et al. | Mar 2008 | A1 |
| 20080066149 | Lim | Mar 2008 | A1 |
| 20080066150 | Lim | Mar 2008 | A1 |
| 20080081606 | Cole | Apr 2008 | A1 |
| 20080082643 | Storrie et al. | Apr 2008 | A1 |
| 20080083013 | Soliman et al. | Apr 2008 | A1 |
| 20080085707 | Fadell | Apr 2008 | A1 |
| 20080095339 | Elliott et al. | Apr 2008 | A1 |
| 20080098062 | Balia | Apr 2008 | A1 |
| 20080109679 | Wright et al. | May 2008 | A1 |
| 20080120688 | Qiu et al. | May 2008 | A1 |
| 20080127304 | Ginter et al. | May 2008 | A1 |
| 20080130534 | Tomioka | Jun 2008 | A1 |
| 20080130656 | Kim et al. | Jun 2008 | A1 |
| 20080132201 | Karlberg | Jun 2008 | A1 |
| 20080132268 | Choi-Grogan et al. | Jun 2008 | A1 |
| 20080134330 | Kapoor et al. | Jun 2008 | A1 |
| 20080147454 | Walker et al. | Jun 2008 | A1 |
| 20080160958 | Abichandani et al. | Jul 2008 | A1 |
| 20080162637 | Adamczyk et al. | Jul 2008 | A1 |
| 20080162704 | Poplett et al. | Jul 2008 | A1 |
| 20080164304 | Narasimhan et al. | Jul 2008 | A1 |
| 20080167027 | Gautier et al. | Jul 2008 | A1 |
| 20080167033 | Beckers | Jul 2008 | A1 |
| 20080168523 | Ansari et al. | Jul 2008 | A1 |
| 20080177998 | Apsangi et al. | Jul 2008 | A1 |
| 20080183812 | Paul et al. | Jul 2008 | A1 |
| 20080184127 | Rafey et al. | Jul 2008 | A1 |
| 20080189760 | Rosenberg et al. | Aug 2008 | A1 |
| 20080207167 | Bugenhagen | Aug 2008 | A1 |
| 20080212470 | Castaneda et al. | Sep 2008 | A1 |
| 20080219268 | Dennison | Sep 2008 | A1 |
| 20080221951 | Stanforth | Sep 2008 | A1 |
| 20080222692 | Andersson et al. | Sep 2008 | A1 |
| 20080225748 | Khemani et al. | Sep 2008 | A1 |
| 20080229385 | Feder et al. | Sep 2008 | A1 |
| 20080229388 | Maes | Sep 2008 | A1 |
| 20080256593 | Vinberg et al. | Oct 2008 | A1 |
| 20080262798 | Kim et al. | Oct 2008 | A1 |
| 20080268813 | Maes | Oct 2008 | A1 |
| 20080298230 | Luft et al. | Dec 2008 | A1 |
| 20080305793 | Gallagher et al. | Dec 2008 | A1 |
| 20080311885 | Dawson et al. | Dec 2008 | A1 |
| 20080316923 | Fedders et al. | Dec 2008 | A1 |
| 20080318547 | Ballou et al. | Dec 2008 | A1 |
| 20080318550 | Deatley | Dec 2008 | A1 |
| 20080319879 | Carroll et al. | Dec 2008 | A1 |
| 20090005005 | Forstall et al. | Jan 2009 | A1 |
| 20090013157 | Beaule | Jan 2009 | A1 |
| 20090046723 | Rahman et al. | Feb 2009 | A1 |
| 20090054030 | Golds | Feb 2009 | A1 |
| 20090067372 | Shah et al. | Mar 2009 | A1 |
| 20090068984 | Burnett | Mar 2009 | A1 |
| 20090077622 | Baum et al. | Mar 2009 | A1 |
| 20090079699 | Sun | Mar 2009 | A1 |
| 20090113514 | Hu | Apr 2009 | A1 |
| 20090125619 | Antani | May 2009 | A1 |
| 20090180391 | Petersen et al. | Jul 2009 | A1 |
| 20090197585 | Aaron | Aug 2009 | A1 |
| 20090219170 | Clark et al. | Sep 2009 | A1 |
| 20090248883 | Suryanarayana et al. | Oct 2009 | A1 |
| 20090257379 | Robinson et al. | Oct 2009 | A1 |
| 20090271514 | Thomas et al. | Oct 2009 | A1 |
| 20090286507 | O'Neil et al. | Nov 2009 | A1 |
| 20090287921 | Zhu et al. | Nov 2009 | A1 |
| 20090288140 | Huber et al. | Nov 2009 | A1 |
| 20090307746 | Di et al. | Dec 2009 | A1 |
| 20090315735 | Bhavani et al. | Dec 2009 | A1 |
| 20100017506 | Fadell | Jan 2010 | A1 |
| 20100027469 | Gurajala et al. | Feb 2010 | A1 |
| 20100041364 | Lott et al. | Feb 2010 | A1 |
| 20100042675 | Fujii | Feb 2010 | A1 |
| 20100043068 | Varadhan et al. | Feb 2010 | A1 |
| 20100071053 | Ansari et al. | Mar 2010 | A1 |
| 20100082431 | Ramer et al. | Apr 2010 | A1 |
| 20100103820 | Fuller et al. | Apr 2010 | A1 |
| 20100144310 | Bedingfield, Sr. et al. | Jun 2010 | A1 |
| 20100153781 | Hanna | Jun 2010 | A1 |
| 20100188975 | Raleigh | Jul 2010 | A1 |
| 20100188990 | Raleigh | Jul 2010 | A1 |
| 20100188992 | Raleigh | Jul 2010 | A1 |
| 20100188994 | Raleigh | Jul 2010 | A1 |
| 20100191576 | Raleigh | Jul 2010 | A1 |
| 20100191612 | Raleigh | Jul 2010 | A1 |
| 20100191846 | Raleigh | Jul 2010 | A1 |
| 20100192170 | Raleigh | Jul 2010 | A1 |
| 20100192212 | Raleigh | Jul 2010 | A1 |
| 20100195503 | Raleigh | Aug 2010 | A1 |
| 20100197268 | Raleigh et al. | Aug 2010 | A1 |
| 20100198698 | Raleigh et al. | Aug 2010 | A1 |
| 20100198939 | Raleigh et al. | Aug 2010 | A1 |
| 20100325420 | Kanekar | Dec 2010 | A1 |
| 20110126141 | King et al. | May 2011 | A1 |
| Number | Date | Country |
|---|---|---|
| 1463238 | Sep 2004 | EP |
| 1739518 | Jun 2005 | EP |
| 1772988 | Apr 2007 | EP |
| 1978772 | Oct 2008 | EP |
| WO9965185 | Dec 1999 | WO |
| WO 9965185 | Dec 1999 | WO |
| WO 03014891 | Feb 2003 | WO |
| WO 03058880 | Apr 2003 | WO |
| WO 2004028070 | Apr 2004 | WO |
| WO 2004077797 | Sep 2004 | WO |
| WO 2004095753 | Nov 2004 | WO |
| WO 2006004467 | Jan 2006 | WO |
| WO 2006050758 | May 2006 | WO |
| WO 2006073837 | Jul 2006 | WO |
| WO 2006077481 | Jul 2006 | WO |
| WO 2006130960 | Dec 2006 | WO |
| WO 2007001833 | Jan 2007 | WO |
| WO 2007014630 | Feb 2007 | WO |
| WO 2007018363 | Feb 2007 | WO |
| WO 2007053848 | May 2007 | WO |
| WO 2007069245 | Jun 2007 | WO |
| WO 2007107701 | Sep 2007 | WO |
| WO 2008017837 | Feb 2008 | WO |
| WO 2008051379 | May 2008 | WO |
| WO 2008066419 | Jun 2008 | WO |
| WO 2008080139 | Jul 2008 | WO |
| WO 2008080430 | Jul 2008 | WO |
| WO 2008099802 | Aug 2008 | WO |
| 2010088413 | Aug 2010 | WO |
| Entry |
|---|
| Author Unknown, “Data Roaming Tariffs—Transparency Measures.” EUROPA—Europe's Information Society Thematic Portal website, date unknown. |
| International Search Report and Written Opinion mailed Mar. 9, 2010 from International Serial No. PCT/US2010/022240 filed Jan. 27, 2010. |
| Hartmann et al., Agent-Based Banking Transactions & Information Retrieval—What about Performance Issues? 1999. |
| Van Eijk, et al., GigaMobile, Agent Technology for Designing Personalized Mobile Service Brokerage, Jul. 1, 2002. |
| Yu Li, Dedicated E-Reading Devices: The State of the Art and Challenges, Scroll, vol. 1, No. 1, 2008. |
| Dikaiakos et al., A Distributed Middleware Infrastructure for Personalized Services, Nov. 24, 2003. |
| Rao et al., Evolution of Mobile Location-Based Services, Communication of the ACM, Dec. 2003. |
| Chandrasekhar et al., Femtocell Networks: A Survey, Jun. 28, 2008. |
| Hossain et al., Gain-Based Selection of Ambient Media Services in Pervasive Environments, 2008. |
| Author Unknown, 3GPP TS 23.203, V8.4.0, 3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; Policy and Charging Control Architecture (Release 8), Dec. 2008. |
| Author Unknown, 3GPP TS 23.401, V8.4.0, 3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; General Packer Radio Service (GPRS) Enhancements for Evolved Universal Terrestrial Radio Access Network (E-UTRAN) Access (Release 8), Dec. 2008. |
| Stephan Steglich, I-Centric User Interaction, Nov. 21, 2003. |
| Han et al., Information Collection Services for Qos-Aware Mobile Applications, 2005. |
| Alonistioti et al., Intelligent Architectures Enabling Flexible Service Provision and Adaptability, 2002. |
| Rolf Oppliger, Internet Security: Firewalls and Bey, Communications of the ACM, May 1997, vol. 40. No. 5. |
| Knight et al., Layer 2 and 3 Virtual Private Networks: Taxonomy, Technology, and Standardization Efforts, IEEE Communications Magazine, Jun. 2004. |
| Koutsopoulou et al., Middleware Platform for the Support of Charging Reconfiguration Actions, 2005. |
| Nilsson et al., A Novel MAC Scheme for Solving the QoS Parameter Adjustment Problem in IEEE802.11e EDCA, Feb. 2006. |
| Author Unknown, Overview of GSM, GPRS, and UMTS, Chapter 2, Nov. 4, 2008. |
| Chaouchi et al., Policy Based Networking in the Integration Effort of 4G Networks and Services, 2004 IEEE. |
| Zhu et al., A Survey of Quality of Service in IEEE 802.11 Networks, IEEE Wireless Communications, Aug. 2004. |
| Kyriakakos et al., Ubiquitous Service Provision in Next Generation Mobile Networks, Proceedings of the 13th IST Mobile and Wireless Communications Summit, Lyon, France, Jun. 2004. |
| Farooq et al., An IEEE 802.16 WiMax Module for the NS-3 Simulator, Mar. 2-6, 2009. |
| Author Unknown, HP, IP Multimedia Services Charging, A White Paper from HP, Jan. 2006. |
| Author Unknown, Kindle™ User's Guide 3rd Edition, Copyright 2004-2009. |
| Number | Date | Country | |
|---|---|---|---|
| 20100198939 A1 | Aug 2010 | US |
| Number | Date | Country | |
|---|---|---|---|
| 61206354 | Jan 2009 | US | |
| 61206944 | Feb 2009 | US | |
| 61207393 | Feb 2009 | US | |
| 61207739 | Feb 2009 | US | |
| 61264120 | Nov 2009 | US |
| Number | Date | Country | |
|---|---|---|---|
| Parent | 12380780 | Mar 2009 | US |
| Child | 12694455 | US |
