Patent Application
20100069098
The invention relates generally to telecommunication systems, and in particular to controlling addition of mobile terminals to access control lists in femtocells.
In telecommunications, a femtocell, originally known as an access point base station, is a small cellular base station, typically designed for use in residential or small business environments. It connects to the service provider's network via broadband (such as DSL or cable); current designs typically support 2 to 5 mobile phones in a residential setting. A femtocell allows service providers to extend service coverage indoors, especially where access would otherwise be limited or unavailable. The femtocell incorporates the functionality of a typical base station but extends it to allow a simpler, self contained deployment.
A femto BSR (base station router) has an access control list (ACL) that controls the subscribers that can access the wireless network via the femto BSR. A subscriber needs to be added to this list prior to gaining access to network. However, there is a security concern that the femtocell owner may add a neighbor to the respective ACL without the owner's knowledge and potentially evesdrop on calls.
Current proposed solutions provide for a button on the femtocell to add users to the ACL. Once this button is pressed then any mobile devices in a fixed area around the femtocell gets added to the ACL. Alternatively, the femtocell owner may go to a web site to add/drop users from the ACL. Any changes made to the ACL on the Web are downloaded to the femtocell. This limits the usage of the femtocell to only those users that the femtocell allows, however, this is not sufficient to protect the user from a bad femtocell that forces user calls to go through the bad femtocell thereby allowing eavesdropping on the calls.
One embodiment according to the present method and apparatus is an apparatus that may comprise: a femcell operatively coupled to an operations support system and operatively coupleable to a mobile terminal; a femtocell access control list operatively coupled to the operations support system and the femtocell; and an SMS control center operatively coupled to the operations support system and to the femtocell; wherein an addition of the mobile terminal to the femtocell access control list is initiated; wherein a message is sent to the mobile terminal that informs the mobile terminal that the mobile terminal is being added to the femtocell; wherein a response is communicated from the mobile terminal to the operations support system; and wherein the mobile terminal is added to the access control list upon receipt of the response.
Another embodiment according to the present method and apparatus is an apparatus that may comprise: at least one mobile terminal operatively coupleable to a femtocell; the femtocell operatively coupled to a femto network gateway via at least a femto base station router and a first network; the femto network gateway operatively coupled to a web server via a second network; the web server operatively coupled to a femtocell owner terminal via a third network; and an access control list in a storage operatively coupled to the femtocell owner terminal.
Another embodiment according to the present method and apparatus is a method that may comprise the steps of: initiating an addition of a mobile terminal to a femtocell access control list for a femtocell; sending a message to the mobile terminal that informs the mobile terminal that the mobile terminal is being added to the femtocell access control list; sending a response from the mobile terminal to acknowledge addition of the mobile terminal to the access control list; and adding the mobile terminal to the access control list upon receipt of the response.
The features of the embodiments of the present method and apparatus are set forth with particularity in the appended claims. These embodiments may best be understood by reference to the following description taken in conjunction with the accompanying drawings, in the several figures of which like reference numerals identify like elements, and in which:
For a mobile operator, the attractions of a femtocell are improvements to both coverage and capacity, especially indoors. There may also be opportunity for new services and reduced cost. The cellular operator also benefits from the improved capacity and coverage but also can reduce both capital expenditure and operating expense.
Femtocells are an alternative way to deliver the benefits of fixed mobile convergence (FMC). The distinction is that most FMC architectures require a new (dual-mode) handset which works with existing home/enterprise Wi-Fi access points, while a femtocell-based deployment will work with existing handsets but requires installation of a new access point.
According to embodiments of the present method and apparatus when an attempt is made to add a mobile terminal to the Femtocell ACL via a press of the button or via a Web site or other means, an SMS message informing that the mobile terminal is being added to a Femtocell and containing an accept URL will be sent to the mobile in question. Upon receipt of the SMS message, the mobile user may click on the URL in the SMS message to acknowledge the addition to ACL. The URL would identify the mobile terminal being added. Upon receipt of the acknowledgement at a matching URL the operations support system will add the mobile subscriber to the ACL.
In an alterative embodiment of the present method and apparatus, the SMS message sent to the mobile may be acknowledged by a response SMS. To enhance security a large random number may be included in the SMS message sent to the user. The mobile terminal may approve the addition by replying back with an SMS message including the random number. Upon receipt of the reply SMS message the operation support system may match the random number prior to adding the mobile subscriber to the ACL.
Once the SMS message is delivered to the mobile terminal and the mobile terminal user acknowledges the addition by either replying back to the SMS message including the previously communicated random number or by clicking the URL in the SMS message, the OSS may communicate the addition of the mobile terminal to a home network manager (HNM). The HNM updates the ACL in the respective femtocell.
The HA 127 and the SMSC 135 may be operatively coupled to an IP network 115 (Internet protocol network). The IP network 115 may also be operatively coupled to the femto network gateway 109 via an OSS 113 (operations support system) and an HNM 111 (home network module). The IP network 115 may also be operatively coupled to a web server 117 that has a provisioning database 119. The web server 117 may be operatively coupled to the Internet 121, which is accessed by a terminal 125 of a femtocell owner and an access control list 123.
An addition of the mobile terminal 201 to the femtocell access control list 207 is initiated by sending an ACL addition request 209 from the femtocell 201 or an ACL addition request 209 from the Web Server 220 to the OSS 203. An SMS message with URL 211 is sent from the OSS 203 via an SMS control center 205 to the mobile terminal 200 over macro network 225 that informs the mobile terminal 200 that the mobile terminal 200 is being added to the femtocell ACL. A response is communicated from the mobile terminal 200 to the OSS 203. This includes activating the URL in the SMS message 211 to acknowledge addition of the mobile terminal 200 to the access control list 207. The mobile terminal 200 is added to the access control list 207 upon receipt of the acknowledgement at a matching URL to the accept URL. An instruction 214 to add the mobile terminal 200 to the access control list 207 is sent from the OSS 203 to the access control list 207.
An addition of the mobile terminal 300 to the femtocell access control list 307 is initiated by sending an ACL addition request 309 from the femtocell 301 or an ACL addition request 310 from the Web Server 320 to the OSS 303. An SMS message 311 is sent from the OSS 303 via an SMS control center 305 to the mobile terminal 300 over the macro network 325 that informs the mobile terminal 300 that the mobile terminal 300 is being added to the femtocell 301 ACL. A response, acknowledgement 313 is communicated from the mobile terminal 300 to the OSS 303 to acknowledge addition of the mobile terminal 300 to the access control list 307. The mobile terminal 300 is added to the access control list 307 upon receipt of the SMS acknowledgement 313. An instruction 315 to add the mobile terminal 300 to the access control list 307 is sent from the OSS 303 to the access control list 307.
An addition of the mobile terminal 400 to the femtocell access control list 407 is initiated by sending an ACL addition request 409 from the femtocell 401 or an ACL addition request 410 from the Web Server 420 to the OSS 403. An SMS message with random number 411 is sent from the OSS 403 via an SMS control center 405 to the mobile terminal 400 over the macro network 425 that informs the mobile terminal 400 that the mobile terminal 400 is being added to the ACL 407. An SMS response with random number 413 is communicated from the mobile terminal 400 via the macro network to the OSS 403 to acknowledge addition of the mobile terminal 400 to the access control list 407. The random number received from the mobile terminal 400 may be compared to the random number sent in the SMS message 413. The mobile terminal 400 is added to the access control list 407 upon a matching of the random numbers. An instruction 415 to add the mobile terminal 400 to the access control list 407 is sent from the OSS 403 to the access control list 407.
The present apparatus in one example may comprise a plurality of components such as one or more of electronic components, hardware components, and computer software components. A number of such components may be combined or divided in the apparatus.
The present apparatus in one example may employ one or more computer-readable signal-bearing media. The computer-readable signal-bearing media may store software, firmware and/or assembly language for performing one or more portions of one or more embodiments. The computer-readable signal-bearing medium for the apparatus in one example may comprise one or more of a magnetic, electrical, optical, biological, and atomic data storage medium. For example, the computer-readable signal-bearing medium may comprise floppy disks, magnetic tapes, CD-ROMs, DVD-ROMs, hard disk drives, and electronic memory. In another example, the computer-readable signal-bearing medium may comprise a modulated carrier signal transmitted over a network comprising or coupled with the apparatus, for instance, one or more of a telephone network, a local area network (“LAN”), a wide area network (“WAN”), the Internet, and a wireless network.
The steps or operations described herein are just exemplary. There may be many variations to these steps or operations without departing from the spirit of the invention. For instance, the steps may be performed in a differing order, or steps may be added, deleted, or modified.
Although exemplary implementations of the invention have been depicted and described in detail herein, it will be apparent to those skilled in the relevant art that various modifications, additions, substitutions, and the like can be made without departing from the spirit of the invention and these are therefore considered to be within the scope of the invention as defined in the following.
