US20060229071A1 - Roaming arrangement - Google Patents

Roaming arrangement Download PDF

Info

Publication number
US20060229071A1
US20060229071A1 US11/449,276 US44927606A US2006229071A1 US 20060229071 A1 US20060229071 A1 US 20060229071A1 US 44927606 A US44927606 A US 44927606A US 2006229071 A1 US2006229071 A1 US 2006229071A1
Authority
US
United States
Prior art keywords
public land
land mobile
network
mobile network
identifiers
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US11/449,276
Inventor
Henry Haverinen
Kalle Ahmavaara
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nokia Oyj
Original Assignee
Nokia Oyj
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from PCT/EP2001/012455 external-priority patent/WO2002063900A1/en
Application filed by Nokia Oyj filed Critical Nokia Oyj
Priority to US11/449,276 priority Critical patent/US20060229071A1/en
Publication of US20060229071A1 publication Critical patent/US20060229071A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/02Processing of mobility data, e.g. registration information at HLR [Home Location Register] or VLR [Visitor Location Register]; Transfer of mobility data, e.g. between HLR, VLR or external networks
    • H04W8/06Registration at serving network Location Register, VLR or user mobility server
    • H04W8/065Registration at serving network Location Register, VLR or user mobility server involving selection of the user mobility server
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0431Key distribution or pre-distribution; Key agreement
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/26Network addressing or numbering for mobility support

Definitions

  • the invention relates to arranging roaming in a telecommunications system comprising a wireless local access network and a public land mobile network (PLMN).
  • PLMN public land mobile network
  • the general packet radio service provides GSM networks with efficient data transmission, where radio capacity is only reserved during transfer of packets.
  • GPRS general packet radio service
  • a 3G universal mobile telecommunications system (UMTS), standardized by 3GPP (Third Generation Partnership Project), will provide even higher data transmission capacity than GSM/GPRS networks.
  • UMTS 3G universal mobile telecommunications system
  • a radio interface provided by a UMTS terrestrial radio access network is based on enhanced WCDMA (Wideband Code Division Multiple Access) technology, and a core network is based on the GSM/GPRS core network.
  • WCDMA Wideband Code Division Multiple Access
  • WLAN wireless local area network
  • GSM-based base stations can be used in an office data system to provide a wireless connection to the local area network of the office.
  • WLANs have also been provided with network elements, with which the WLAN can utilize a PLMN.
  • WLANs according to the IEEE 802.11 standard and GSM networks have been provided with network elements for accessing GSM authentication and billing services via a WLAN.
  • Roaming can also be arranged in a WLAN, i.e. a user can be authenticated in the local network where he is roaming (and with which he typically has no service contract made in advance) by means of the PLMN, a subscriber identification module (in the GSM a subscriber identity module SIM) provided by the home PLMN (HPLMN), and subscriber data located in the subscriber's home network.
  • a mobile station can also be located for example abroad in the area of a local network with no direct connection to the subscriber's HPLMN but only to one or more networks of other PLMN operators. In order to provide successful roaming in such a situation, PLMN operators must have mutual roaming agreements determining how a roaming subscriber is to be charged.
  • the mobile station When a roaming mobile station contacts a local network, it is not necessarily aware of the PLMNs that are available via the local network in question. In such a case, the mobile station must provide the local network with the network identifier (PLMN ID) of its HPLMN operator. Based thereon, the local network should select the PLMN that the roaming user should use. For this purpose, the local network should store data about the PLMNs where the user can roam, and preferably also data on the preferred PLMNs. This would require additional functionality and increase the need for memory capacity in the local network, and it might also cause conflicts of interest between the PLMN operators and the operators of local area networks.
  • PLMN ID network identifier
  • An objective of the invention is to provide an improved arrangement for implementing roaming in local networks, which provide access to PLMNs.
  • the objectives of the invention are achieved by a method, a telecommunications system and a wireless terminal equipment which are characterized by what is disclosed in the independent claims.
  • the preferred embodiments of the invention are disclosed in the dependent claims.
  • PLMN identifiers and network element identifiers linked therewith are determined in a system and transmitted to a terminal equipment.
  • PLMN selection is performed by means of a comparison of the received PLMN identifiers and PLMN identifiers stored in the terminal equipment.
  • the terminal equipment is provided access, via a local network, to a network element defined by a network element identifier linked with the identifier of the selected PLMN.
  • a local network is typically either a wireless local area network (WLAN) or a wired local area network (LAN) operating on a non-licensed frequency range, but the scope of application of the invention is not restricted thereto, however.
  • WLAN wireless local area network
  • LAN wired local area network
  • An advantage of the arrangement according to the invention is that the network can be selected in the mobile station according to the preferences set by the user and/or the HPLMN operator. Therefore, the local network does not require data about roaming agreements between different PLMN operators, nor is it necessary to provide local networks with functionality implementing network selection. Thus, the interests of users, local network operators and PLMN operators can be satisfied through network selection carried out by the mobile station, and by using the PLMN identifiers the mobile station contains.
  • the mobile station can utilize arrangements that are similar to the network selection methods used in existing PLMNs.
  • a PLMN network element indicated by an identifier is an authentication server.
  • the authentication server defined by the network element identifier linked with the identifier of the selected PLMN thus performs the authentication between each user and the PLMN.
  • Data transmission services can be provided in a local network and/or a PLMN where the mobile station is roaming if successful authentication has taken place between the mobile station and the selected PLMN. Therefore highly functional and highly reliable PLMN authentication methods can also be applied on roaming users in local networks.
  • a user does not necessarily have to have a subscription with a local network operator, but he may also be able to use local network services by means of a subscriber identification module provided by the UMTS operator, for example.
  • billing data about the telecommunication services the mobile station has used is transmitted from the local network to the PLMN billing system, provided that the mobile station has been successfully authenticated. The roaming mobile station can thus also be charged via the HPLMN operator.
  • FIG. 1 a shows a telecommunications system comprising a PLMN and a local network
  • FIG. 1 b illustrates the structure of a mobile station
  • FIG. 2 is a flowchart illustrating a method according to a preferred embodiment of the invention.
  • FIG. 3 is a signalling chart illustrating an authentication process according to a preferred embodiment of the invention.
  • FIG. 1 a illustrates a network architecture according to a preferred embodiment comprising a public land mobile network PLMN, or in this case a UMTS network, and a local network, in FIG. 1 a a broadband access network BAN.
  • the local network BAN is a wireless local area network employing user authentication and access control according to IEEE 802.1x standard, for example a WLAN according to IEEE 802.11i.
  • the invention can also be applied in other IEEE 802-based WLANs or other types of local networks BAN typically operating on a non-licensed frequency band, such as a broadband radio access network (BRAN) or a Bluetooth network.
  • BRAN standards include type 1 and type 2 HIPERLAN (High Performance Radio Local Area Network) standards, and HIPERACCESS and HIPERLINK standards.
  • a public land mobile network can be for example a GSM/GPRS network instead of a UMTS network.
  • the local network BAN and the UMTS network PLMN can communicate over an IP-based (Internet Protocol) network (IPNW).
  • IPNW IP-based (Internet Protocol) network
  • the UMTS network PLMN can comprise a UMTS terrestrial radio access network UTRAN and/or a UMTS core network CN, or at least some functionalities thereof.
  • the local network BAN can operate as one of UMTS access networks, and it can also provide access to other networks, such as the public Internet.
  • the BAN comprises access elements called access points AP, which provide a mobile station MS with radio access and thus terminate the broadband radio connection.
  • the access point AP controls the L2 radio interface according to the applied radio technology, which means the IEEE 802.11 standard according to a preferred embodiment.
  • the IEEE 802.11 specifications determine both physical level and MAC level protocols for data transmission over the radio interface.
  • the data transmission can utilize either infrared or two spread spectrum techniques (Direct Sequence Spread Spectrum DSSS, Frequency Hopped Spread Spectrum FHSS). Both spread spectrum techniques utilize a 2.4 GHz band.
  • the MAC layer utilizes a CSMA/CA (Carrier Sense Multiple Access with Collision Avoidance) technique.
  • the AP also manages bridging of data streams at the radio interface or routing thereof to and from other network nodes.
  • the local network BAN also comprises a control element or a gateway element BANGW (BAN Gateway).
  • the BANGW operates as a gateway in data transmission between the AP and the UMTS network PLMN. These functions can be carried out in one or more logical or physical nodes, which can also be referred to by some other name than the BAN gateway, for example an access controller.
  • the BANGW also allocates IP addresses to the mobile station MS and stores and delivers network information related to the UMTS network PLMN to the mobile stations MS requiring such information.
  • the BANGW also receives and stores data about other networks that can be accessed via the BANGW, at least about the UMTS network PLMN.
  • the BANGW forms charging information based on the data to be transmitted, and forwards it to the billing server for example according to an AAA (Authentication, Authorization and Accounting) protocol.
  • AAA Authentication, Authorization and Accounting
  • either all or some of the BANGW functionality can be implemented in an access point AP.
  • an AP supporting user authentication and access monitoring according to IEEE 802.1x standard typically utilizes the AAA protocol and can thus communicate directly with authentication and accounting servers and also form the charging information based on the amount of transferred data or durations of connections.
  • the UMTS core network CN comprises a serving GPRS support node SGSN serving the mobile stations connected to the UMTS network, and a gateway GPRS support node GGSN, which provides a gateway function to external networks, such as the Internet or a company intranet.
  • the PLMN can also comprise a mobile services switching centre 3GMSC providing circuit-switched services, and other network elements, such as a short message service centre SMSC and elements of the UMTS charging system, which are not shown in FIG. 1 a.
  • the UMTS network PLMN comprises an authentication server AUTS, which provides local networks BAN with services for authenticating UMTS mobile subscribers and preferably also with charging services. Therefore UMTS network subscriber data and authentication services can be used to serve mobile stations MS roaming in the local network BAN and comprising a universal subscriber identity module USIM.
  • a mobile station MS user does not necessarily have to have a contract made in advance with the local network BAN operator. In such a case an MS can be charged for the wireless connection provided by the local network BAN later on via the PLMN.
  • the UMTS network PLMN operator can later reimburse the BAN operator for the use of the network.
  • the authentication server is shown as a separate element in FIG. 1 a , it can be implemented for example as a part of a service node BSN, the SGSN or the GGSN.
  • the roamed network must communicate with the HPLMN according to an international mobile subscriber identity IMSI indicated by a universal subscriber identity module USIM of the mobile station MS for purposes of authentication and charging.
  • the HPLMN comprises a home location register HLR containing the subscriber data, and typically also an authentication centre AuC calculating authentication vectors.
  • FIG. 1 a does not show any other HPLMN elements, such as the 3GMSC or the SGSN, via which the connection to the HLR/AuC is typically set up.
  • the UMTS specifications also refer to the roamed network as a serving network (SN) and to the HPLMN as merely a home network (HN).
  • the mobile station MS comprises a memory M, a user interface UI, a transceiver TxRx for implementing wireless data transmission, and a central processing unit CPU comprising one or more processors.
  • the memory M comprises a non-volatile section for storing applications controlling the CPU and other data to be maintained, and a volatile section for temporary data processing.
  • Computer program codes executed in the CPU can be used to make the MS implement the means according to the invention, some embodiments of which are illustrated in FIGS. 2 and 3 .
  • a computer program can be stored on any memory means, such as a PC hard disk or a CD-ROM, from which it can be loaded into the memory M of the MS executing the program.
  • a computer program can also be loaded via the network for example by means of a TCP/IP protocol stack. It is also possible to use hardware arrangements or a combination of hardware and software to implement the means according to the invention.
  • the MS can be for example an integrated communication device, a laptop computer combined with equipment providing radio access (e.g. a WLAN card), or a combination of a PDA and a mobile phone.
  • a mobile station MS comprises a UMTS-specific universal subscriber identity module USIM.
  • the identity module used in the MS can be different in different mobile networks, for example GSM networks apply subscriber identity modules (SIM).
  • SIM subscriber identity modules
  • the CPU can utilize a universal integrated circuit card (UICC), including the USIM, according to the 3GPP specifications.
  • UICC universal integrated circuit card
  • a USIM has been given by the HPLMN operator, and the HLR of the home network HPLMN stores data on the USIM.
  • the USIM contains an international mobile subscriber identifier IMSI, which represents the subscriber in the network and thus operates as identification for the MS user.
  • the terminal equipment TE part of the MS can also be provided with a specific international mobile equipment identity IMEI, which is not relevant for the invention, however.
  • the USIM also contains a secret key K, an algorithm for forming a cipher key CK, an algorithm for verifying an authentication response AUTN transmitted from the PLMN, and an algorithm for forming a reference authentication response RES (if the AUTN has been verified).
  • data transmission services of the UMTS network PLMN can be used via the local network BAN.
  • the UMTS network comprises, besides the known UMTS access network elements, a broadband service node BSN for one or more local networks BAN.
  • the MS can also use the services of the roamed UMTS network PLMN (either via the local network BAN and the service node BSN or directly via a node B and a radio network controller RNC).
  • the operation of a BSN corresponds to the operation of an RNC.
  • BSN functions include:
  • RRC Radio Resource Control
  • the functions of the BSN can possibly also comprise monitoring of the use of the local network BAN resources in order to check the charging of the BAN operator.
  • the local network BAN can be shared by several UMTS networks.
  • the local network BAN can also be connected to several BSNs, and a BSN can be connected to one or more local networks BAN.
  • a BSN can be divided into different user plane and control plane server and gateway functions.
  • a BSN can be connected to an SGSN, a mobile switching centre MSC and possibly to other UMTS core network elements via a standard lu interface.
  • a BSN can also be connected to other BSNs or UTRAN RNCs via lur signalling interfaces in order to support handover inside a UTRAN or between UTRANs.
  • the MS supports at least some of the protocol entities required for communicating with the UMTS network PLMN.
  • the MS contains means for implementing lower layers (L 1 , L 2 ) of the local network BAN, and means for communicating with the UMTS network via the local network.
  • the MS also comprises the following functions:
  • Such protocols include RRC (Radio Resource Control), session management and mobility management.
  • Such protocols include RLC (Radio Link Control) and PDCP (Packet Data Control Protocol).
  • the MS is a dual-mode terminal, which is also able to connect not only to the local network BAN but also to a UMTS network via UTRAN base stations (node B).
  • FIG. 2 is a flowchart illustrating a method according to a preferred embodiment of the invention.
  • System data of one or more mobile networks PLMN is stored 201 in a local network BAN, preferably in a gateway element BANGW.
  • This data includes at least the identifiers (PLMN ID) of the PLMNs to which it is possible to connect from the local network BAN.
  • the data also includes each network element identifier linked with the PLMN network identifier PLMN ID, such as an identifier of the authentication server AUTS according to a preferred embodiment.
  • This identifier determines the network element that should be applied when using UMTS network services. The identifier thus identifies the UMTS network PLMN in the local network BAN.
  • the identifier can also indicate some other UMTS network PLMN service or network element, such as a support node BSN.
  • the data on the UMTS network PLMN can be determined 201 after the operators of the UMTS network PLMN and the local network BAN have agreed on the use of the PLMN authentication services, or the data can be transmitted from the network PLMN whenever needed.
  • PLMN identifiers PLMN ID are also determined 201 in the USIM connected to the MS to be used in network selection.
  • a PLMN ID can consist for example of MCC (Mobile Country Code) and MNC (Mobile Network Code) sections of the IMSI.
  • the PLMN identifiers are added to the USIM for example during the personalization thereof before the home operator HPLMN gives the USIM to the user. It is possible to determine 201 , in a memory included in the UICC, a PLMN identifier list controlled by the operator, and a PLMN identifier list controlled by the user, which contain PLMN identifiers in order of priority.
  • the PLMN identifiers can also be supplemented with an identifier indicating the access technology, such as UTRA or GSM. PLMN identifiers can also be determined in the memory M of the mobile station MS.
  • a network element identifier linked with a PLMN identifier PLMN ID is a realm identifier, which is a part of an NAI (Network Access Identifier) that is of the form username@realm.
  • a realm identifier is typically used in the AAA protocol to select a suitable AAA server (authentication server).
  • a realm identifier is preferably a domain name, such as ‘server_finland.com’, which can be used to determine the IP address of the server by means of the name service.
  • Table 1 illustrates an imaginary table of correspondences combining PLMN identifiers PLMN ID and the network element realm identifiers. TABLE 1 PLMN ID Realm 1122 Mobileoperator1_server1.com 1234 Mobileoperator2_server1.com 4365 Mobileoperator3_server5.fi
  • One UMTS network identifier can naturally be provided with several network element identifiers, if alternative access is to be provided for example as backup in failure situations in the primary network element.
  • System information related to UMTS networks PLMN is determined in the local network BAN and transmitted 202 to the mobile station MS (information about networks, the authentication services and possibly other services of which can be utilized via the network BAN).
  • the system information contains at least the PLMN identifiers PLMN ID of the UMTS networks PLMN, and the network element identifiers linked therewith, but other information is also possible.
  • data on local services can be transmitted within the system information, and the mobile station can later utilize the data in order to obtain a service of the UMTS network PLMN.
  • the system information can also comprise system information that is broadcast to mobile stations in cells of the UMTS network PLMN.
  • This system information can be broadcast in the access points AP of the local network, and a roaming mobile station MS will therefore receive data on the available UMTS networks in advance.
  • the BANGW can implement broadcast of system information at certain intervals in the access points AP connected thereto.
  • the system information can also be transmitted after the mobile station has set up a radio connection to the local network BAN and authentication must be carried out.
  • the MS can specifically ask for transmission of the system data for example by indicating that it wants to use the services of the UMTS network PLMN.
  • the mobile station performs 203 PLMN selection on the basis of a comparison of the received PLMN identifiers PLMN ID and the PLMN identifiers stored in the USIM (possibly also in the memory M) according to a preferred embodiment.
  • a network is selected as far as possible according to the 3GPP UMTS specifications, and the PLMN lists and the USIM can be utilized in the MS similarly as in a UMTS mobile station.
  • network selection can be either automatic or manual. In automatic network selection, the PLMN list stored in the USIM is checked in order of priority to see whether a PLMN identifier determined on the list is defined in the system information received from the local network BAN.
  • the MS selects this PLMN. If none of the PLMN identifiers stored in the USIM are found among the PLMN identifiers received from the local network BAN, the user can be given a possibility to select a PLMN identifier. Even several lists can be stored in the USIM, for example a PLMN list controlled by the user and a PLMN list controlled by the operator, and the identifiers to be checked first are preferably those of the user's PLMN list.
  • the user is shown all the names, or usually operator identifiers of the networks, according to the PLMN identifiers received from the local network, from which the user can select the PLMN to be used. These networks are usually presented in a similar order as on the list defined in the USIM.
  • the mobile station MS can also maintain a list of forbidden networks (forbidden PLMNs), which are not taken into account in the network selection 203 .
  • the MS After the MS has selected a PLMN, it can transmit 204 a request to the local network BAN for setting up a connection with a network element according to the network element identifier linked with the identifier of the selected PLMN.
  • the local network BAN finds out the IP address of the network element from the network identifier, which is typically a domain name, by means of the name service or based on the data configured in the AAA network elements, and carries out the operations required to set up a connection 204 between the MS and the network element. If the selected network PLMN cannot be used for some reason, the network selection 203 can be carried out again as described above either automatically or manually, and a connection 204 can be set up to another UMTS network PLMN.
  • the mobile station MS and the local network BAN may thus utilize the identifier of the network element to identify the UMTS network PLMN.
  • the network element is the authentication server AUTS, and the PLMN is used at least for authentication and charging of the MS user on the basis of the subscriber data contained in the USIM and the HPLMN.
  • the AUTS can utilize prior art UMTS signalling for requesting authentication data for the USIM, and it performs authentication and authorizes provision of services to the MS.
  • the network element of the BAN implementing access control such as the BANGW or the AP, can provide access to the Internet or to other parts of the WLAN.
  • access can be provided to the services of the UTMS network PLMN that the mobile station can use after successful authentication.
  • An advantage of this embodiment is that the user can utilize the services of the roamed local networks BAN and UMTS networks (and GSM networks) by means of a conventional USIM (a UICC), which does not have to be modified due to the invention.
  • the user can for example connect his UICC card to a mobile station given at the airport, with which the USIM can be authenticated, and the user can be charged via the home network HPLMN for the data transmission services he has used.
  • FIG. 3 illustrates this embodiment in the form of a signalling chart, where a roaming mobile station MS is provided, after the network selection, with access to the server AUTS that implements the authentication of the selected PLMN.
  • the AUTS implements, by means of UMTS technology, the authentication of the MS and also provides a cipher key, which can be used in data transmission over a radio interface provided by the local network. If the MS does not utilize other UMTS services, this embodiment does not require the service node BSN illustrated in connection with FIG. 1 a and the UMTS protocols required in the MS for communicating with the service node (however, the MS does need means for operating the USIM). What is needed from the UMTS network PLMN of FIG.
  • authentication between the MS and the AUTS is based on the EAP (Extensible Authentication Protocol) Authentication and Key Agreement (AKA), set forth in the IETF Internet draft “ EAP AKA Authentication ”, October 2001, J. Arkko and H. Haverinen, determining the UMTS EAP utilizing the AKA mechanism.
  • EAP Extensible Authentication Protocol
  • AKA Authentication and Key Agreement
  • a subscriber identification module USIM comprised in the MS provides the MS with an identity IMSI.
  • a process of authenticating an MS is typically triggered when the MS starts setting up a connection to the local network BAN. Before a mobile station MS is allowed to set up a connection to a network other than the BAN, the authentication must be completed in an acceptable manner.
  • the BANGW transmits 301 system information to the MS either as broadcast or in response to a request received from the MS. By means of this information, the MS performs 302 network selection according to the received PLMN identifiers and the PLMN identifiers stored in the USIM (PLMN selection).
  • PLMN selection PLMN selection
  • the BANGW or according to another embodiment an access point AP that operates as an authenticator for the EAP, can transmit 303 to the MS a request for transmitting a user identity [EAP-Request/Identity].
  • the MS requests 304 (IMSI request) the USIM to transmit an IMSI, and the USIM returns 305 the IMSI.
  • the MS transmits 306 a response [EAP-Response/Identity] preferably comprising a network identifier NAI.
  • the response is routed via the IP network IPNW typically by means of the AAA protocol to the AUTS, which acts as an EAP authentication server.
  • the NAI comprises the IMSI obtained from the USIM, and the realm identifier of the authentication server AUTS of the roamed network PLMN obtained as described above.
  • the MS is thus provided with access via the local network BAN to the authentication server AUTS of the selected network PLMN by means of the identifier thereof, which is preferably a realm identifier.
  • the MS is configured to replace, in the NAIs of the EAP messages, the realm identifier of its own default authentication server (in the HPLMN) with the realm identifier of the authentication server AUTS of the roamed network PLMN.
  • the request 306 can be transmitted in an encrypted form to the BANGW for example by using the Diffie-Hellman algorithm.
  • the MS can also transmit its own security code MS_RAND, which is typically a random number, in the request 306 .
  • the security code MS_RAND By means of the security code MS_RAND, the MS can later ensure that the party providing a UMTS vector has access to the secret key K stored in the subscriber's HPLMN. However, it is not necessary to use a security code.
  • the MS can also transmit an EAP request 306 independently and without a specific request 303 after it has selected the network.
  • the authenticating network element can decrypt the request 306 , if required, and forward 307 the EAP request [EAP-Response/Identity] to the AUTS on the basis of the IP address obtained from the realm identifier of the NAI, or by utilizing conventional manners of the AAA protocol of controlling AAA traffic to a suitable AAA server by means of the realm identifier of the NAI by utilizing AAA configuration data.
  • the authenticator can alternatively forward 307 the request to an AAA proxy server, which selects the correct server AUTS by means of the realm identifier of the NAI.
  • the AUTS requests 308 (Auth.
  • UMTS authentication vectors from the authentication centre HLR/AuC of the home network HPLMN (typically via the SGSN or the 3GMSC of the HPLMN).
  • Authentication vectors are formed 309 (Calculate AV(s)) in the authentication centre AuC of the HPLMN in a manner defined in the UMTS specifications.
  • One authentication vector comprises a random number RAND, an expected response XRES, a cipher key CK, an integrity key IK and an authentication token AUTN.
  • the HLR/AuC transmits 310 the authentication vector to the AUTS (typically via other network elements of the UMTS core network) [Auth. Data Resp.]. It is also possible to transmit several authentication vectors from the HPLMN, so that the AUTS preferably selects one vector and stores the others for subsequent use.
  • the AUTS transmits 311 an authentication request [EAP-Req/USIM-Chall.] comprising one or more challenges RAND for the MS, and an authentication token AUTN (the AUTN is not used if GSM authentication is applied).
  • This message can also comprise data related to charging.
  • the message can also be encrypted by means of a security code MS_RAND.
  • the challenge(s) RAND and the authentication token AUTN are supplied 313 to the USIM, which checks the authentication token. If the AUTN can be accepted, the USIM calculates 314 (Calculate RES(s)) an authentication response(s) RES similarly as in the authentication centre HLR/AuC, and forwards 315 the authentication response RES to the MS processing unit CPU (to an application entity managing tasks related to authentication and calculation of the cipher key CK).
  • the MS transmits 316 a response [EAP-Resp/USIM-Chall.] comprising at least the authentication response RES to the authenticator BANGW (or AP).
  • the authenticator BANGW forwards 317 the response [EAP-Resp/USIM-Chall.] to the authentication server AUTS.
  • the AUTS checks 318 (Check RES) the authentication response transmitted by the MS by comparing it to the expected authentication response XRES. If XRES and RES are identical, the MS (USIM) has been successfully authenticated.
  • the AUTS transmits 319 data about the successful authentication [EAP-Success] to the authenticator (BANGW or AP).
  • This message preferably comprises a cipher key CK.
  • the message 319 can also contain data (for example data on the quality of service QoS) about the services the MS is entitled to use.
  • the authenticator can allow data transmission services to be provided to the MS in the local network, for example in the case of a WLAN by allowing traffic via a controlled gate according to the IEEE 802.1x standard.
  • the MS can be provided with access to the Internet via the local network BAN.
  • the authenticator forwards 320 data about successful authentication to the MS.
  • the USIM can then calculate the cipher key CK and possibly the integrity key IK, and both the MS and the authenticator can transmit the cipher key CK to the ciphering means, which thereafter cipher traffic by means of the cipher keys according to the UMTS network.
  • the MS can then be provided 321 (Usage of BAN Services) at least with data transmission services of the local network BAN.
  • the charging of the MS can be initiated via the BANGW or the access point AP and the authentication server AUTS, which collects charging data from the BANGW or the AP by means of the AAA protocol, such as a RADIUS protocol, and generates charging data records CDR to be transmitted to the UMTS charging system.
  • the message 319 contains information about the unsuccessful authentication, whereupon the MS will not preferably be provided with services in the local network BAN (nor preferably in the roamed UMTS network PLMN).
  • the data transmission between the MS and the authenticating base station AP can be implemented for example by means of the EAP for WLAN (EAPOL) determined in the IEEE 802.1x protocol.
  • the RADIUS (Remote Authentication Dial In User Service) protocol in turn, can be used between the authenticator (AP or BANGW) and the AUTS.
  • RADIUS proxy servers between the authenticator and the AUTS for transmitting RADIUS messages.
  • the AUTS can communicate with the SGSN (or the 3GMSC) (either directly via the HPLMN or the PLMN) for example by means of a protocol over the TCP/IP, and the SGSN (3GMSC) in turn can communicate with the authentication centre HLR/AuC according to the Gr interface (the 3GMSC in turn communicates according to the MAP).
  • the AUTS can also communicate directly with the AuC for example using the MAP.
  • the PLMN identifier PLMN ID and the authentication server identifiers linked therewith can also be transmitted in an [EAP-Request/ldentity] message ( 303 ).
  • the MS thus performs network selection after it has received the EAP request and it responds with an NAI (step 306 ) containing the realm identifier according to the selected network.
  • the AP of the local network operates as an EAP authenticator instead of the BANGW. It is also possible that the MS transmits a request [EAP-Response/ldentity], to which the BANGW responds with system information.
  • the MS can use the UMTS network also for other purposes, as illustrated already in connection with FIG. 1 a .
  • One possibility is to set up a data transmission connection via the local network BAN to the UMTS network PLMN by means of the aforementioned service node BSN and the access it provides to the UMTS core network and particularly to the SGSN.
  • the MS can transmit and receive data via a broadband connection provided by the local network BAN by utilizing, however, the PLMN coverage and the services specified in the subscription, which the user has also used via the WCDMA radio access of the UMTS network. This expands the availability of the UMTS services and provides easy access to the service also for mobile stations MS roaming outside the HPLMN.
  • the MS can also start using the radio access provided by the radio network controllers and base stations (node B) of the selected UMTS network PLMN.
  • Such a handover can be implemented for example automatically when none of the local network access points AP can provide sufficiently high data transmission quality.
  • the PLMN identifiers PLMN ID and the authentication server identifiers linked therewith can also be determined in some other location than in the local network BAN, and they can be forwarded to the roaming MS from some other location.
  • a UMTS network PLMN can store such data and broadcast it via UMTS base stations (nodes B) or possibly also via the local network BAN, which only has to forward the data to the MS.

Abstract

The invention relates to a method of arranging roaming in a telecommunications system comprising a local network, at least one public land mobile network, and a terminal equipment. In the telecommunications system, public land mobile network identifiers and network element identifiers linked therewith are defined. These public land mobile network identifiers and the network element identifiers linked therewith are transmitted to the terminal equipment. The terminal equipment selects a public land mobile network by means of a comparison of the received public land mobile network identifiers and public land mobile network identifiers stored in the terminal equipment. Access is arranged for the terminal equipment via the local network to the network element determined by the network element identifier linked with the identifier of the selected public land mobile network.

Description

    CROSS-REFERENCE TO RELATED APPLICATIONS
  • This is a continuation application of application Ser. No. 10/281,072, filed Oct. 24, 2002, the content of which is incorporated herein by reference in its entirety.
    • BACKGROUND OF THE INVENTION
  • The invention relates to arranging roaming in a telecommunications system comprising a wireless local access network and a public land mobile network (PLMN).
  • There has been considerable development in recent years in data services provided for mobility-enhancing PLMNs with large coverage areas. The general packet radio service (GPRS) provides GSM networks with efficient data transmission, where radio capacity is only reserved during transfer of packets. A 3G universal mobile telecommunications system (UMTS), standardized by 3GPP (Third Generation Partnership Project), will provide even higher data transmission capacity than GSM/GPRS networks. A radio interface provided by a UMTS terrestrial radio access network (UTRAN) is based on enhanced WCDMA (Wideband Code Division Multiple Access) technology, and a core network is based on the GSM/GPRS core network.
  • In addition to data services provided by PLMNs, various wireless local area networks have been developed to provide wideband wireless data transmission from a very limited coverage area. An example of such technology is a wireless local area network (WLAN) based on IEEE 802.11. These local networks provide high-speed data transmission and access to the Internet in different hot spots, such as offices or airports. There has also been some convergence of local area networks and PLMNs. For example GSM-based base stations can be used in an office data system to provide a wireless connection to the local area network of the office. On the other hand, WLANs have also been provided with network elements, with which the WLAN can utilize a PLMN. For example WLANs according to the IEEE 802.11 standard, and GSM networks have been provided with network elements for accessing GSM authentication and billing services via a WLAN.
  • Roaming can also be arranged in a WLAN, i.e. a user can be authenticated in the local network where he is roaming (and with which he typically has no service contract made in advance) by means of the PLMN, a subscriber identification module (in the GSM a subscriber identity module SIM) provided by the home PLMN (HPLMN), and subscriber data located in the subscriber's home network. However, a mobile station can also be located for example abroad in the area of a local network with no direct connection to the subscriber's HPLMN but only to one or more networks of other PLMN operators. In order to provide successful roaming in such a situation, PLMN operators must have mutual roaming agreements determining how a roaming subscriber is to be charged. When a roaming mobile station contacts a local network, it is not necessarily aware of the PLMNs that are available via the local network in question. In such a case, the mobile station must provide the local network with the network identifier (PLMN ID) of its HPLMN operator. Based thereon, the local network should select the PLMN that the roaming user should use. For this purpose, the local network should store data about the PLMNs where the user can roam, and preferably also data on the preferred PLMNs. This would require additional functionality and increase the need for memory capacity in the local network, and it might also cause conflicts of interest between the PLMN operators and the operators of local area networks.
    • BRIEF DESCRIPTION OF THE INVENTION
  • An objective of the invention is to provide an improved arrangement for implementing roaming in local networks, which provide access to PLMNs. The objectives of the invention are achieved by a method, a telecommunications system and a wireless terminal equipment which are characterized by what is disclosed in the independent claims. The preferred embodiments of the invention are disclosed in the dependent claims.
  • According to the basic idea of the invention, PLMN identifiers and network element identifiers linked therewith are determined in a system and transmitted to a terminal equipment. PLMN selection is performed by means of a comparison of the received PLMN identifiers and PLMN identifiers stored in the terminal equipment. The terminal equipment is provided access, via a local network, to a network element defined by a network element identifier linked with the identifier of the selected PLMN.
  • A local network is typically either a wireless local area network (WLAN) or a wired local area network (LAN) operating on a non-licensed frequency range, but the scope of application of the invention is not restricted thereto, however.
  • An advantage of the arrangement according to the invention is that the network can be selected in the mobile station according to the preferences set by the user and/or the HPLMN operator. Therefore, the local network does not require data about roaming agreements between different PLMN operators, nor is it necessary to provide local networks with functionality implementing network selection. Thus, the interests of users, local network operators and PLMN operators can be satisfied through network selection carried out by the mobile station, and by using the PLMN identifiers the mobile station contains. The mobile station can utilize arrangements that are similar to the network selection methods used in existing PLMNs.
  • According to a preferred embodiment of the invention, a PLMN network element indicated by an identifier is an authentication server. The authentication server defined by the network element identifier linked with the identifier of the selected PLMN thus performs the authentication between each user and the PLMN. Data transmission services can be provided in a local network and/or a PLMN where the mobile station is roaming if successful authentication has taken place between the mobile station and the selected PLMN. Therefore highly functional and highly reliable PLMN authentication methods can also be applied on roaming users in local networks. A user does not necessarily have to have a subscription with a local network operator, but he may also be able to use local network services by means of a subscriber identification module provided by the UMTS operator, for example. According to another embodiment, billing data about the telecommunication services the mobile station has used is transmitted from the local network to the PLMN billing system, provided that the mobile station has been successfully authenticated. The roaming mobile station can thus also be charged via the HPLMN operator.
    • BRIEF DESCRIPTION OF THE FIGURES
  • The invention will be described in more detail below in connection with the preferred embodiments and with reference to the accompanying drawings, in which
  • FIG. 1 a shows a telecommunications system comprising a PLMN and a local network;
  • FIG. 1 b illustrates the structure of a mobile station;
  • FIG. 2 is a flowchart illustrating a method according to a preferred embodiment of the invention; and
  • FIG. 3 is a signalling chart illustrating an authentication process according to a preferred embodiment of the invention.
    • DETAILED DESCRIPTION OF A PREFERRED EMBODIMENT OF THE INVENTION
  • Reference is made to FIG. 1 a, which illustrates a network architecture according to a preferred embodiment comprising a public land mobile network PLMN, or in this case a UMTS network, and a local network, in FIG. 1 a a broadband access network BAN. According to a preferred embodiment, the local network BAN is a wireless local area network employing user authentication and access control according to IEEE 802.1x standard, for example a WLAN according to IEEE 802.11i. However, the invention can also be applied in other IEEE 802-based WLANs or other types of local networks BAN typically operating on a non-licensed frequency band, such as a broadband radio access network (BRAN) or a Bluetooth network. BRAN standards include type 1 and type 2 HIPERLAN (High Performance Radio Local Area Network) standards, and HIPERACCESS and HIPERLINK standards. A public land mobile network can be for example a GSM/GPRS network instead of a UMTS network.
  • The local network BAN and the UMTS network PLMN can communicate over an IP-based (Internet Protocol) network (IPNW). The UMTS network PLMN can comprise a UMTS terrestrial radio access network UTRAN and/or a UMTS core network CN, or at least some functionalities thereof. As shown in FIG. 1 a, the local network BAN can operate as one of UMTS access networks, and it can also provide access to other networks, such as the public Internet. The BAN comprises access elements called access points AP, which provide a mobile station MS with radio access and thus terminate the broadband radio connection.
  • The access point AP controls the L2 radio interface according to the applied radio technology, which means the IEEE 802.11 standard according to a preferred embodiment. The IEEE 802.11 specifications determine both physical level and MAC level protocols for data transmission over the radio interface. The data transmission can utilize either infrared or two spread spectrum techniques (Direct Sequence Spread Spectrum DSSS, Frequency Hopped Spread Spectrum FHSS). Both spread spectrum techniques utilize a 2.4 GHz band. The MAC layer utilizes a CSMA/CA (Carrier Sense Multiple Access with Collision Avoidance) technique. The AP also manages bridging of data streams at the radio interface or routing thereof to and from other network nodes.
  • As shown in FIG. 1 a, the local network BAN also comprises a control element or a gateway element BANGW (BAN Gateway). The BANGW operates as a gateway in data transmission between the AP and the UMTS network PLMN. These functions can be carried out in one or more logical or physical nodes, which can also be referred to by some other name than the BAN gateway, for example an access controller. The BANGW also allocates IP addresses to the mobile station MS and stores and delivers network information related to the UMTS network PLMN to the mobile stations MS requiring such information. The BANGW also receives and stores data about other networks that can be accessed via the BANGW, at least about the UMTS network PLMN. The BANGW forms charging information based on the data to be transmitted, and forwards it to the billing server for example according to an AAA (Authentication, Authorization and Accounting) protocol.
  • According to an alternative embodiment, either all or some of the BANGW functionality can be implemented in an access point AP. For example, an AP supporting user authentication and access monitoring according to IEEE 802.1x standard typically utilizes the AAA protocol and can thus communicate directly with authentication and accounting servers and also form the charging information based on the amount of transferred data or durations of connections.
  • The UMTS core network CN comprises a serving GPRS support node SGSN serving the mobile stations connected to the UMTS network, and a gateway GPRS support node GGSN, which provides a gateway function to external networks, such as the Internet or a company intranet. The PLMN can also comprise a mobile services switching centre 3GMSC providing circuit-switched services, and other network elements, such as a short message service centre SMSC and elements of the UMTS charging system, which are not shown in FIG. 1 a.
  • The UMTS network PLMN comprises an authentication server AUTS, which provides local networks BAN with services for authenticating UMTS mobile subscribers and preferably also with charging services. Therefore UMTS network subscriber data and authentication services can be used to serve mobile stations MS roaming in the local network BAN and comprising a universal subscriber identity module USIM. A mobile station MS user does not necessarily have to have a contract made in advance with the local network BAN operator. In such a case an MS can be charged for the wireless connection provided by the local network BAN later on via the PLMN. The UMTS network PLMN operator can later reimburse the BAN operator for the use of the network. Even though the authentication server is shown as a separate element in FIG. 1 a, it can be implemented for example as a part of a service node BSN, the SGSN or the GGSN.
  • If the PLMN is not the home network HPLMN of the mobile station MS, i.e. the mobile station is roaming in the PLMN, the roamed network must communicate with the HPLMN according to an international mobile subscriber identity IMSI indicated by a universal subscriber identity module USIM of the mobile station MS for purposes of authentication and charging. The HPLMN comprises a home location register HLR containing the subscriber data, and typically also an authentication centre AuC calculating authentication vectors. FIG. 1 a does not show any other HPLMN elements, such as the 3GMSC or the SGSN, via which the connection to the HLR/AuC is typically set up. The UMTS specifications also refer to the roamed network as a serving network (SN) and to the HPLMN as merely a home network (HN).
  • As shown in FIG. 1 b, the mobile station MS comprises a memory M, a user interface UI, a transceiver TxRx for implementing wireless data transmission, and a central processing unit CPU comprising one or more processors. The memory M comprises a non-volatile section for storing applications controlling the CPU and other data to be maintained, and a volatile section for temporary data processing. Computer program codes executed in the CPU can be used to make the MS implement the means according to the invention, some embodiments of which are illustrated in FIGS. 2 and 3. A computer program can be stored on any memory means, such as a PC hard disk or a CD-ROM, from which it can be loaded into the memory M of the MS executing the program. A computer program can also be loaded via the network for example by means of a TCP/IP protocol stack. It is also possible to use hardware arrangements or a combination of hardware and software to implement the means according to the invention. The MS can be for example an integrated communication device, a laptop computer combined with equipment providing radio access (e.g. a WLAN card), or a combination of a PDA and a mobile phone.
  • A mobile station MS according to a preferred embodiment comprises a UMTS-specific universal subscriber identity module USIM. The identity module used in the MS can be different in different mobile networks, for example GSM networks apply subscriber identity modules (SIM). By means of card-reading elements comprised by the MS (not shown in the figures), the CPU can utilize a universal integrated circuit card (UICC), including the USIM, according to the 3GPP specifications. A UICC can be changed from one MS to another. A USIM has been given by the HPLMN operator, and the HLR of the home network HPLMN stores data on the USIM. The USIM contains an international mobile subscriber identifier IMSI, which represents the subscriber in the network and thus operates as identification for the MS user. The terminal equipment TE part of the MS can also be provided with a specific international mobile equipment identity IMEI, which is not relevant for the invention, however. The USIM also contains a secret key K, an algorithm for forming a cipher key CK, an algorithm for verifying an authentication response AUTN transmitted from the PLMN, and an algorithm for forming a reference authentication response RES (if the AUTN has been verified).
  • According to a preferred embodiment, data transmission services of the UMTS network PLMN can be used via the local network BAN. In such a case the UMTS network comprises, besides the known UMTS access network elements, a broadband service node BSN for one or more local networks BAN. In this embodiment, after successful authentication (carried out by the authentication server AUTS) the MS can also use the services of the roamed UMTS network PLMN (either via the local network BAN and the service node BSN or directly via a node B and a radio network controller RNC). In many respects the operation of a BSN corresponds to the operation of an RNC. However, a BSN cannot be arranged to control the radio resources of the local network, and therefore a conventional lub interface is replaced with an I4 interface to the local network BAN, so that the BSN communicates with the MS via the local network BAN. BSN functions include:
  • executing RRC (Radio Resource Control) signalling protocols defined for the UTRAN possibly according to BAN-specific restrictions
  • multiplexing higher-layer UMTS data streams, such as logic channels or transport channels, to IP-based transmission paths (e.g. a UDP/IP tunnel) to the BAN, and demultiplexing from the BAN
  • managing radio connections
  • providing UMTS encryption
  • compressing UMTS IP headers
  • UMTS RLC-level (Radio Link Control) retransmissions.
  • The functions of the BSN can possibly also comprise monitoring of the use of the local network BAN resources in order to check the charging of the BAN operator. The local network BAN can be shared by several UMTS networks. The local network BAN can also be connected to several BSNs, and a BSN can be connected to one or more local networks BAN. A BSN can be divided into different user plane and control plane server and gateway functions. A BSN can be connected to an SGSN, a mobile switching centre MSC and possibly to other UMTS core network elements via a standard lu interface. A BSN can also be connected to other BSNs or UTRAN RNCs via lur signalling interfaces in order to support handover inside a UTRAN or between UTRANs.
  • In an embodiment where a mobile station MS can utilize UMTS data transmission services, the MS supports at least some of the protocol entities required for communicating with the UMTS network PLMN. The MS contains means for implementing lower layers (L1, L2) of the local network BAN, and means for communicating with the UMTS network via the local network. In this embodiment, the MS also comprises the following functions:
  • executing UMTS higher-layer signalling protocols determined in the 3GPP specifications. Such protocols include RRC (Radio Resource Control), session management and mobility management.
  • implementing limited functionality of UMTS user plane protocols, and communicating user plane data with the BSN in view of possible limitations resulting from the local network BAN. Such protocols include RLC (Radio Link Control) and PDCP (Packet Data Control Protocol).
  • multiplexing higher-layer UMTS data streams to the UDP/IP-based communication of the lower layers, and inversely demultiplexing the received data into UMTS data streams.
  • According to a preferred embodiment, the MS is a dual-mode terminal, which is also able to connect not only to the local network BAN but also to a UMTS network via UTRAN base stations (node B).
  • FIG. 2 is a flowchart illustrating a method according to a preferred embodiment of the invention. System data of one or more mobile networks PLMN is stored 201 in a local network BAN, preferably in a gateway element BANGW. This data includes at least the identifiers (PLMN ID) of the PLMNs to which it is possible to connect from the local network BAN. The data also includes each network element identifier linked with the PLMN network identifier PLMN ID, such as an identifier of the authentication server AUTS according to a preferred embodiment. This identifier determines the network element that should be applied when using UMTS network services. The identifier thus identifies the UMTS network PLMN in the local network BAN. The identifier can also indicate some other UMTS network PLMN service or network element, such as a support node BSN. The data on the UMTS network PLMN can be determined 201 after the operators of the UMTS network PLMN and the local network BAN have agreed on the use of the PLMN authentication services, or the data can be transmitted from the network PLMN whenever needed. According to a preferred embodiment, PLMN identifiers PLMN ID are also determined 201 in the USIM connected to the MS to be used in network selection. A PLMN ID can consist for example of MCC (Mobile Country Code) and MNC (Mobile Network Code) sections of the IMSI. The PLMN identifiers are added to the USIM for example during the personalization thereof before the home operator HPLMN gives the USIM to the user. It is possible to determine 201, in a memory included in the UICC, a PLMN identifier list controlled by the operator, and a PLMN identifier list controlled by the user, which contain PLMN identifiers in order of priority. The PLMN identifiers can also be supplemented with an identifier indicating the access technology, such as UTRA or GSM. PLMN identifiers can also be determined in the memory M of the mobile station MS.
  • According to a preferred embodiment, a network element identifier linked with a PLMN identifier PLMN ID is a realm identifier, which is a part of an NAI (Network Access Identifier) that is of the form username@realm. A realm identifier is typically used in the AAA protocol to select a suitable AAA server (authentication server). A realm identifier is preferably a domain name, such as ‘server_finland.com’, which can be used to determine the IP address of the server by means of the name service. Table 1 illustrates an imaginary table of correspondences combining PLMN identifiers PLMN ID and the network element realm identifiers.
    TABLE 1
    PLMN ID Realm
    1122 Mobileoperator1_server1.com
    1234 Mobileoperator2_server1.com
    4365 Mobileoperator3_server5.fi
  • One UMTS network identifier can naturally be provided with several network element identifiers, if alternative access is to be provided for example as backup in failure situations in the primary network element.
  • System information related to UMTS networks PLMN is determined in the local network BAN and transmitted 202 to the mobile station MS (information about networks, the authentication services and possibly other services of which can be utilized via the network BAN). The system information contains at least the PLMN identifiers PLMN ID of the UMTS networks PLMN, and the network element identifiers linked therewith, but other information is also possible. For example data on local services can be transmitted within the system information, and the mobile station can later utilize the data in order to obtain a service of the UMTS network PLMN. The system information can also comprise system information that is broadcast to mobile stations in cells of the UMTS network PLMN. This system information can be broadcast in the access points AP of the local network, and a roaming mobile station MS will therefore receive data on the available UMTS networks in advance. For example, the BANGW can implement broadcast of system information at certain intervals in the access points AP connected thereto. The system information can also be transmitted after the mobile station has set up a radio connection to the local network BAN and authentication must be carried out. Moreover, the MS can specifically ask for transmission of the system data for example by indicating that it wants to use the services of the UMTS network PLMN.
  • The mobile station performs 203 PLMN selection on the basis of a comparison of the received PLMN identifiers PLMN ID and the PLMN identifiers stored in the USIM (possibly also in the memory M) according to a preferred embodiment. According to a preferred embodiment, a network is selected as far as possible according to the 3GPP UMTS specifications, and the PLMN lists and the USIM can be utilized in the MS similarly as in a UMTS mobile station. According to the UMTS specifications, network selection can be either automatic or manual. In automatic network selection, the PLMN list stored in the USIM is checked in order of priority to see whether a PLMN identifier determined on the list is defined in the system information received from the local network BAN. When the mobile station finds a UMTS network PLMN the PLMN ID of which is stored in the USIM and received from the local network BAN, the MS selects this PLMN. If none of the PLMN identifiers stored in the USIM are found among the PLMN identifiers received from the local network BAN, the user can be given a possibility to select a PLMN identifier. Even several lists can be stored in the USIM, for example a PLMN list controlled by the user and a PLMN list controlled by the operator, and the identifiers to be checked first are preferably those of the user's PLMN list. If network selection is manual, the user is shown all the names, or usually operator identifiers of the networks, according to the PLMN identifiers received from the local network, from which the user can select the PLMN to be used. These networks are usually presented in a similar order as on the list defined in the USIM. The mobile station MS can also maintain a list of forbidden networks (forbidden PLMNs), which are not taken into account in the network selection 203.
  • After the MS has selected a PLMN, it can transmit 204 a request to the local network BAN for setting up a connection with a network element according to the network element identifier linked with the identifier of the selected PLMN. The local network BAN finds out the IP address of the network element from the network identifier, which is typically a domain name, by means of the name service or based on the data configured in the AAA network elements, and carries out the operations required to set up a connection 204 between the MS and the network element. If the selected network PLMN cannot be used for some reason, the network selection 203 can be carried out again as described above either automatically or manually, and a connection 204 can be set up to another UMTS network PLMN. The mobile station MS and the local network BAN may thus utilize the identifier of the network element to identify the UMTS network PLMN.
  • According to a preferred embodiment, the network element is the authentication server AUTS, and the PLMN is used at least for authentication and charging of the MS user on the basis of the subscriber data contained in the USIM and the HPLMN. The AUTS can utilize prior art UMTS signalling for requesting authentication data for the USIM, and it performs authentication and authorizes provision of services to the MS. Due to the authorization, the network element of the BAN implementing access control, such as the BANGW or the AP, can provide access to the Internet or to other parts of the WLAN. According to an embodiment, access can be provided to the services of the UTMS network PLMN that the mobile station can use after successful authentication.
  • An advantage of this embodiment is that the user can utilize the services of the roamed local networks BAN and UMTS networks (and GSM networks) by means of a conventional USIM (a UICC), which does not have to be modified due to the invention. The user can for example connect his UICC card to a mobile station given at the airport, with which the USIM can be authenticated, and the user can be charged via the home network HPLMN for the data transmission services he has used.
  • FIG. 3 illustrates this embodiment in the form of a signalling chart, where a roaming mobile station MS is provided, after the network selection, with access to the server AUTS that implements the authentication of the selected PLMN. The AUTS implements, by means of UMTS technology, the authentication of the MS and also provides a cipher key, which can be used in data transmission over a radio interface provided by the local network. If the MS does not utilize other UMTS services, this embodiment does not require the service node BSN illustrated in connection with FIG. 1 a and the UMTS protocols required in the MS for communicating with the service node (however, the MS does need means for operating the USIM). What is needed from the UMTS network PLMN of FIG. 1 a is the authentication server AUTS and access therefrom to the authentication centre HLR/AuC. According to a preferred embodiment, authentication between the MS and the AUTS is based on the EAP (Extensible Authentication Protocol) Authentication and Key Agreement (AKA), set forth in the IETF Internet draft “EAP AKA Authentication”, October 2001, J. Arkko and H. Haverinen, determining the UMTS EAP utilizing the AKA mechanism.
  • A subscriber identification module USIM comprised in the MS provides the MS with an identity IMSI. A process of authenticating an MS is typically triggered when the MS starts setting up a connection to the local network BAN. Before a mobile station MS is allowed to set up a connection to a network other than the BAN, the authentication must be completed in an acceptable manner. As described above, the BANGW transmits 301 system information to the MS either as broadcast or in response to a request received from the MS. By means of this information, the MS performs 302 network selection according to the received PLMN identifiers and the PLMN identifiers stored in the USIM (PLMN selection). The BANGW, or according to another embodiment an access point AP that operates as an authenticator for the EAP, can transmit 303 to the MS a request for transmitting a user identity [EAP-Request/Identity].
  • The MS requests 304 (IMSI request) the USIM to transmit an IMSI, and the USIM returns 305 the IMSI. The MS transmits 306 a response [EAP-Response/Identity] preferably comprising a network identifier NAI. The response is routed via the IP network IPNW typically by means of the AAA protocol to the AUTS, which acts as an EAP authentication server. The NAI comprises the IMSI obtained from the USIM, and the realm identifier of the authentication server AUTS of the roamed network PLMN obtained as described above. The MS is thus provided with access via the local network BAN to the authentication server AUTS of the selected network PLMN by means of the identifier thereof, which is preferably a realm identifier. Therefore the MS is configured to replace, in the NAIs of the EAP messages, the realm identifier of its own default authentication server (in the HPLMN) with the realm identifier of the authentication server AUTS of the roamed network PLMN. The request 306 can be transmitted in an encrypted form to the BANGW for example by using the Diffie-Hellman algorithm. The MS can also transmit its own security code MS_RAND, which is typically a random number, in the request 306. By means of the security code MS_RAND, the MS can later ensure that the party providing a UMTS vector has access to the secret key K stored in the subscriber's HPLMN. However, it is not necessary to use a security code. It should be noted that unlike shown in FIG. 3, the MS can also transmit an EAP request 306 independently and without a specific request 303 after it has selected the network.
  • The authenticating network element (BANGW or AP) can decrypt the request 306, if required, and forward 307 the EAP request [EAP-Response/Identity] to the AUTS on the basis of the IP address obtained from the realm identifier of the NAI, or by utilizing conventional manners of the AAA protocol of controlling AAA traffic to a suitable AAA server by means of the realm identifier of the NAI by utilizing AAA configuration data. The authenticator can alternatively forward 307 the request to an AAA proxy server, which selects the correct server AUTS by means of the realm identifier of the NAI. The AUTS requests 308 (Auth. Data Req.) UMTS authentication vectors from the authentication centre HLR/AuC of the home network HPLMN (typically via the SGSN or the 3GMSC of the HPLMN). Authentication vectors are formed 309 (Calculate AV(s)) in the authentication centre AuC of the HPLMN in a manner defined in the UMTS specifications. One authentication vector comprises a random number RAND, an expected response XRES, a cipher key CK, an integrity key IK and an authentication token AUTN. The HLR/AuC transmits 310 the authentication vector to the AUTS (typically via other network elements of the UMTS core network) [Auth. Data Resp.]. It is also possible to transmit several authentication vectors from the HPLMN, so that the AUTS preferably selects one vector and stores the others for subsequent use.
  • The AUTS transmits 311 an authentication request [EAP-Req/USIM-Chall.] comprising one or more challenges RAND for the MS, and an authentication token AUTN (the AUTN is not used if GSM authentication is applied). This message can also comprise data related to charging. The message can also be encrypted by means of a security code MS_RAND. The BANGW-forwards 312 the authentication request [EAP-Req/USIM-Chall.] to the MS.
  • In the MS, the challenge(s) RAND and the authentication token AUTN are supplied 313 to the USIM, which checks the authentication token. If the AUTN can be accepted, the USIM calculates 314 (Calculate RES(s)) an authentication response(s) RES similarly as in the authentication centre HLR/AuC, and forwards 315 the authentication response RES to the MS processing unit CPU (to an application entity managing tasks related to authentication and calculation of the cipher key CK).
  • The MS transmits 316 a response [EAP-Resp/USIM-Chall.] comprising at least the authentication response RES to the authenticator BANGW (or AP). The authenticator BANGW forwards 317 the response [EAP-Resp/USIM-Chall.] to the authentication server AUTS. The AUTS checks 318 (Check RES) the authentication response transmitted by the MS by comparing it to the expected authentication response XRES. If XRES and RES are identical, the MS (USIM) has been successfully authenticated.
  • The AUTS transmits 319 data about the successful authentication [EAP-Success] to the authenticator (BANGW or AP). This message preferably comprises a cipher key CK. The message 319 can also contain data (for example data on the quality of service QoS) about the services the MS is entitled to use. As a result of the message (319) received from the AUTS, the authenticator can allow data transmission services to be provided to the MS in the local network, for example in the case of a WLAN by allowing traffic via a controlled gate according to the IEEE 802.1x standard. For example, the MS can be provided with access to the Internet via the local network BAN. The authenticator forwards 320 data about successful authentication to the MS. The USIM can then calculate the cipher key CK and possibly the integrity key IK, and both the MS and the authenticator can transmit the cipher key CK to the ciphering means, which thereafter cipher traffic by means of the cipher keys according to the UMTS network. The MS can then be provided 321 (Usage of BAN Services) at least with data transmission services of the local network BAN. The charging of the MS can be initiated via the BANGW or the access point AP and the authentication server AUTS, which collects charging data from the BANGW or the AP by means of the AAA protocol, such as a RADIUS protocol, and generates charging data records CDR to be transmitted to the UMTS charging system.
  • If authentication was not successful, the message 319 contains information about the unsuccessful authentication, whereupon the MS will not preferably be provided with services in the local network BAN (nor preferably in the roamed UMTS network PLMN).
  • There are several alternative embodiments of the authentication procedure illustrated above. According to an embodiment, the data transmission between the MS and the authenticating base station AP can be implemented for example by means of the EAP for WLAN (EAPOL) determined in the IEEE 802.1x protocol. The RADIUS (Remote Authentication Dial In User Service) protocol, in turn, can be used between the authenticator (AP or BANGW) and the AUTS. In such a case there can be RADIUS proxy servers between the authenticator and the AUTS for transmitting RADIUS messages. As described above, the AUTS can communicate with the SGSN (or the 3GMSC) (either directly via the HPLMN or the PLMN) for example by means of a protocol over the TCP/IP, and the SGSN (3GMSC) in turn can communicate with the authentication centre HLR/AuC according to the Gr interface (the 3GMSC in turn communicates according to the MAP). The AUTS can also communicate directly with the AuC for example using the MAP.
  • It should be noted that unlike shown in FIG. 3, the PLMN identifier PLMN ID and the authentication server identifiers linked therewith can also be transmitted in an [EAP-Request/ldentity] message (303). The MS thus performs network selection after it has received the EAP request and it responds with an NAI (step 306) containing the realm identifier according to the selected network. According to an embodiment, the AP of the local network operates as an EAP authenticator instead of the BANGW. It is also possible that the MS transmits a request [EAP-Response/ldentity], to which the BANGW responds with system information.
  • When the roaming mobile station MS has selected the UMTS network PLMN to be used, and the authentication has been successfully completed as described above, the MS can use the UMTS network also for other purposes, as illustrated already in connection with FIG. 1 a. One possibility is to set up a data transmission connection via the local network BAN to the UMTS network PLMN by means of the aforementioned service node BSN and the access it provides to the UMTS core network and particularly to the SGSN. The MS can transmit and receive data via a broadband connection provided by the local network BAN by utilizing, however, the PLMN coverage and the services specified in the subscription, which the user has also used via the WCDMA radio access of the UMTS network. This expands the availability of the UMTS services and provides easy access to the service also for mobile stations MS roaming outside the HPLMN.
  • If the system supports full mobility between different access networks, the MS can also start using the radio access provided by the radio network controllers and base stations (node B) of the selected UMTS network PLMN. Such a handover can be implemented for example automatically when none of the local network access points AP can provide sufficiently high data transmission quality.
  • Unlike in the embodiments shown in FIGS. 2 and 3, the PLMN identifiers PLMN ID and the authentication server identifiers linked therewith can also be determined in some other location than in the local network BAN, and they can be forwarded to the roaming MS from some other location. For example a UMTS network PLMN can store such data and broadcast it via UMTS base stations (nodes B) or possibly also via the local network BAN, which only has to forward the data to the MS.
  • It is obvious to those skilled in the art that as the technology develops the basic idea of the invention can be implemented in various ways. Thus, the invention and the embodiments thereof are not restricted to the examples described above, but they can vary within the scope of the claims.

Claims (31)

1. A method of arranging roaming in a telecommunications system comprising at least one wireless local network, at least one public land mobile network, and at least one wireless terminal comprising means for setting up a data transmission connection at least with the local network, the method comprising:
determining, in the telecommunications system, public land mobile network identifiers and network element identifiers linked with said public land mobile network identifiers,
transmitting said public land mobile network identifiers and the network element identifiers linked therewith to the terminal,
selecting a public land mobile network by means of a comparison of said received public land mobile network identifiers and public land mobile network identifiers stored on a memory medium of or connected to the terminal, and
providing the terminal with access via the local network to the network element determined by the network element identifier linked with the identifier of the selected public land mobile network.
2. The method of claim 1, wherein said public land mobile network identifiers and the network element identifiers linked with said public land mobile network identifiers are stored in the local network, and
said public land mobile network identifiers and the network element identifiers linked with said public land mobile network identifiers are transmitted from the local network to the terminal after the terminal has set up a connection to the local network.
3. The method of claim 2, wherein said public land mobile network identifiers and the network element identifiers linked with said public land mobile network identifiers are transmitted from the local network in response to a request received from the terminal.
4. The method of claim 1, wherein said network element of the public land mobile network is an authentication server, the method further comprising:
carrying out the authentication of the terminal by an authentication server defined by the network element identifier linked with the identifier of the selected public land mobile network, and
allowing provision of data transmission services in the local network in response to successful authentication of the terminal.
5. The method of claim 4, wherein the public land mobile network is a UMTS network, and the terminal comprises a universal subscriber identity module (USIM), which stores algorithms required for calculating an authentication response, and a subscriber identifier and a secret key, and
authentication is performed by the authentication server by comparing the authentication response (RES) calculated in the USIM of the terminal to an expected authentication response (XRES) received from an authentication centre of the subscriber's home public land mobile network.
6. The method of claim 4, further comprising:
forwarding charging data about the telecommunications services used by the terminal to the charging system of the public land mobile network in response to successful authentication of the terminal.
7. The method of claim 1, wherein said network element of the public land mobile network is an authentication server, the method further comprising:
performing authentication of the terminal by an authentication server defined by the network element identifier linked with the identifier of the selected public land mobile network, and
allowing provision of data transmission services in the selected public land mobile network in response to successful authentication of the terminal.
8. The method of claim 7, wherein the public land mobile network is a UMTS network, and the terminal comprises a universal subscriber identity module (USIM), which stores algorithms required for calculating an authentication response, and a subscriber identifier and a secret key, and
authentication is performed by the authentication server by comparing the authentication response (RES) calculated in the USIM of the terminal to an expected authentication response (XRES) received from an authentication centre of the subscriber's home public land mobile network.
9. The method of claim 7, further comprising:
forwarding charging data about the telecommunications services used by the terminal to the charging system of the public land mobile network in response to successful authentication of the terminal.
10. The method of claim 1, wherein at least one list comprising the public land mobile network identifiers is stored in order of priority in the subscriber identity module contained in the terminal,
the identifiers on the list are compared in the terminal to the public land mobile network identifiers received from the local network in order of priority, and
a public land mobile network, the identifier of which is also found from the public land mobile network identifiers received from the local network, is selected.
11. A telecommunications system comprising at least one local network, at least one public land mobile network, and at least one wireless terminal configured to set up a data transmission connection at least with the local network, wherein
public land mobile network identifiers and network element identifiers linked with said public land mobile network identifiers are configured to be determined in the telecommunications system,
said public land mobile network identifiers and the network element identifiers linked therewith are configured to be transmitted to the terminal in the telecommunications system,
the terminal is configured to select a public land mobile network by means of a comparison of said received public land mobile network identifiers and public land mobile network identifiers stored on a memory medium of or connected to the terminal, and
the terminal is configured to set up a connection via the local network to the network element determined by the network element identifier linked with the identifier of the public land mobile network selected by the terminal.
12. The telecommunications system of claim 11, wherein the local network is configured to store said public land mobile network identifiers and the network element identifiers linked with said public land mobile network identifiers, and
the local network is configured to transmit said public land mobile network identifiers and the network element identifiers linked with said public land mobile network identifiers to the terminal after the terminal has set up a connection to the local network.
13. The telecommunications system of claim 12, wherein the terminal is configured to select a network by means of the public land mobile network identifiers contained in the subscriber identification module located in the terminal, and
said network element is an authentication server configured to perform authentication of the terminal by comparing an authentication response calculated by the subscriber identification module of the terminal to an authentication response calculated in the public land mobile network.
14. The telecommunications system of claim 11, wherein the terminal is configured to select a network by means of the public land mobile network identifiers contained in the subscriber identification module located in the terminal, and
said network element is an authentication server configured to perform authentication of the terminal by comparing an authentication response calculated by the subscriber identification module of the terminal to an authentication response calculated in the public land mobile network.
15. A wireless terminal apparatus configured to set up a data transmission connection at least with a wireless local network, wherein the terminal apparatus is configured to receive public land mobile network identifiers and network element identifiers linked therewith,
the terminal apparatus is configured to select a public land mobile network on the basis of a comparison of said received public land mobile network identifiers and public land mobile network identifiers stored on a memory medium of or connected to the terminal apparatus,
the terminal apparatus is configured to set up a connection via the local network to a network element defined by the network element identifier linked with the identifier of the public land mobile network selected by the terminal apparatus.
16. The terminal apparatus of claim 15, wherein the terminal apparatus is configured to access a subscriber identification module containing subscriber data required for using services of the public land mobile network,
the terminal apparatus is configured to select a network on the basis of the public land mobile network identifiers contained in the subscriber identification module of the terminal apparatus,
the subscriber identification module is configured to form an authentication response used in the authentication, and
the terminal apparatus is configured to transmit the authentication response to the network element.
17. The terminal apparatus of claim 15, wherein the terminal apparatus is configured to transmit a request to the local network for transmitting said public land mobile network identifiers and the network element identifiers linked with said public land mobile network identifiers, and
the terminal apparatus is configured to receive said public land mobile network identifiers and the network element identifiers linked with said public land mobile network identifiers from the local network in response to a request received from the terminal apparatus.
18. The terminal apparatus of claim 15, wherein the terminal apparatus is configured to set up the connection via the local network to an authentication server for authenticating the terminal apparatus as a precondition of provision of data transmission services via the local network in response to successful authentication of the terminal apparatus.
19. The terminal apparatus of claim 15, wherein the terminal apparatus comprises an Integrated Circuit IC card reader, and
the terminal apparatus is configured to obtain the public land mobile network identifiers from an IC card inserted in the terminal apparatus.
20. The terminal apparatus of claim 15, wherein the terminal apparatus is configured to check public land mobile network identifiers on a list stored in a subscriber identity module in order of priority,
the terminal apparatus is configured to compare the identifiers on the list to the public land mobile network identifiers received from the local network in order of priority, and
the terminal apparatus is configured to select a public land mobile network, the identifier of which is also found from the public land mobile network identifiers received from the local network.
21. The terminal apparatus of claim 20, wherein the subscriber identity module comprises a first list of public land mobile network identifiers controlled by a user and a second list of public land mobile network identifiers controlled by an operator, and
the terminal apparatus is configured to check identifiers of the first list before checking identifiers of the second list.
22. The terminal apparatus of claim 15, wherein the public land mobile network identifiers contained in the terminal apparatus are supplemented by an identifier indicating an access technology.
23. A computer program product operable on a processor of a mobile station, the computer program product comprising a computer program code portion for causing the mobile station to select a public land mobile network on the basis of a comparison of received public land mobile network identifiers and public land mobile network identifiers stored on a memory medium of or connected to the mobile station, and a computer program code portion for causing the mobile station to set up a connection via the local network to a network element defined by the network element identifier linked with the identifier of the selected public land mobile network.
24. A method for a wireless terminal configured to set up a data transmission connection at least with a wireless local network in a system further comprising at least one public land mobile network, the method comprising:
receiving public land mobile network identifiers and network element identifiers linked therewith,
selecting a public land mobile network by means of a comparison of said received public land mobile network identifiers and public land mobile network identifiers stored on a memory medium of or connected to the terminal, and
setting up an access via the local network to the network element determined by the network element identifier linked with the identifier of the selected public land mobile network.
25. An access controller for a wireless local network, wherein the access controller is configured to determine public land mobile network identifiers and network element identifiers linked with said public land mobile network identifiers, and
the access controller is configured to transmit said public land mobile network identifiers and the network element identifiers linked therewith to the terminal.
26. An access controller of claim 25, wherein the access controller is configured to operate as a gateway in data transmission between an access point of the local area network and a public land mobile network.
27. An access controller of claim 25, wherein the access controller is configured to operate as an authenticator for an EAP (Extensible Authentication Protocol) applied for the terminal.
28. An access controller of claim 25, wherein the access controller is configured to transmit an EAP message to an authentication server in a public land mobile network on the basis of an EAP request or response message from the terminal,
the access controller is configured to forward an authentication request from the authentication server to the terminal,
the access controller is configured to forward an authentication response from the terminal to the authentication server,
the access controller is configured to receive information on success of the authentication from the authentication server, and
the access controller is configured to allow data transmission services to be provided to the terminal in the wireless local network in response to information from the authentication server indicating successful authentication.
29. A method for providing system information for roaming in a telecommunications system comprising at least one wireless local network, at least one public land mobile network, and at least one wireless terminal comprising means for setting up a data transmission connection at least with the local network, the method comprising:
determining, in access controller for the wireless local network, public land mobile network identifiers and network element identifiers linked with said public land mobile network identifiers, and
transmitting said public land mobile network identifiers and the network element identifiers linked therewith to the terminal.
30. A method of claim 29, wherein the access controller operates as an authenticator for an EAP (Extensible Authentication Protocol) applied for the terminal.
31. A wireless terminal apparatus comprising:
means for setting up a data transmission connection at least with a wireless local network,
means for receiving public land mobile network identifiers and network element identifiers linked therewith,
means for selecting a public land mobile network on the basis of a comparison of said received public land mobile network identifiers and public land mobile network identifiers stored on a memory medium of or connected to the terminal apparatus,
means for setting up a connection via the local network to a network element defined by the network element identifier linked with the identifier of the public land mobile network selected by the terminal apparatus.
US11/449,276 2001-10-26 2006-06-08 Roaming arrangement Abandoned US20060229071A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US11/449,276 US20060229071A1 (en) 2001-10-26 2006-06-08 Roaming arrangement

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
PCT/EP2001/012455 WO2002063900A1 (en) 2001-02-06 2001-10-26 Access system for an access network
WOPCT/EP01/12455 2001-10-26
FI20020057A FI114276B (en) 2002-01-11 2002-01-11 Arranging online visits
FI20020057 2002-01-11
US10/281,072 US7096014B2 (en) 2001-10-26 2002-10-24 Roaming arrangement
US11/449,276 US20060229071A1 (en) 2001-10-26 2006-06-08 Roaming arrangement

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US10/281,072 Continuation US7096014B2 (en) 2001-10-26 2002-10-24 Roaming arrangement

Publications (1)

Publication Number Publication Date
US20060229071A1 true US20060229071A1 (en) 2006-10-12

Family

ID=8562766

Family Applications (2)

Application Number Title Priority Date Filing Date
US10/281,072 Expired - Lifetime US7096014B2 (en) 2001-10-26 2002-10-24 Roaming arrangement
US11/449,276 Abandoned US20060229071A1 (en) 2001-10-26 2006-06-08 Roaming arrangement

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US10/281,072 Expired - Lifetime US7096014B2 (en) 2001-10-26 2002-10-24 Roaming arrangement

Country Status (5)

Country Link
US (2) US7096014B2 (en)
AT (1) ATE426310T1 (en)
DE (1) DE60231634D1 (en)
FI (1) FI114276B (en)
WO (1) WO2003037023A1 (en)

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040202145A1 (en) * 2003-04-11 2004-10-14 Terje Lundin Charging method
US20060072542A1 (en) * 2004-08-13 2006-04-06 Mci, Inc. Fixed-mobile communications with mid-session mode switching
US20080077559A1 (en) * 2006-09-22 2008-03-27 Robert Currie System and method for automatic searches and advertising
US20080235185A1 (en) * 2007-03-21 2008-09-25 Motorola, Inc. Communication system and method of accessing therefor
US20100167745A1 (en) * 2008-12-29 2010-07-01 General Motors Corporation Tertiary connection strategy for vehicle originated cellular communication to a call center
US20100261474A1 (en) * 2008-01-30 2010-10-14 Nec Corporation Plmn selection in multi-network environment
US20120108206A1 (en) * 2010-10-28 2012-05-03 Haggerty David T Methods and apparatus for access control client assisted roaming
US20120302224A1 (en) * 2011-05-23 2012-11-29 Microsoft Corporation Mobile network operator identification
US20140051391A1 (en) * 2012-08-15 2014-02-20 Cisco Technology, Inc. Wireless roaming and authentication
US9450759B2 (en) 2011-04-05 2016-09-20 Apple Inc. Apparatus and methods for controlling distribution of electronic access clients
WO2018008983A1 (en) * 2016-07-05 2018-01-11 Samsung Electronics Co., Ltd. Method and system for authenticating access in mobile wireless network system

Families Citing this family (132)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE10043203A1 (en) * 2000-09-01 2002-03-21 Siemens Ag Generic WLAN architecture
US7089036B2 (en) 2000-10-03 2006-08-08 Cingular Wireless Ii, Llc Location information erase on SIM cards
US20030139180A1 (en) * 2002-01-24 2003-07-24 Mcintosh Chris P. Private cellular network with a public network interface and a wireless local area network extension
US20030233580A1 (en) * 2002-05-29 2003-12-18 Keeler James D. Authorization and authentication of user access to a distributed network communication system with roaming features
BR0305028A (en) * 2002-06-06 2004-11-09 Thomson Licensing Sa Wlan as a software node (sgsn) for interoperation between wlan and a mobile communication system
MXPA04012665A (en) * 2002-06-21 2005-03-23 Thomson Licensing Sa Registration of a wlan as a umts routing area for wlan-umts interworking.
FR2842055B1 (en) * 2002-07-05 2004-12-24 Nortel Networks Ltd METHOD FOR CONTROLLING ACCESS TO A CELLULAR RADIO COMMUNICATION SYSTEM THROUGH A WIRELESS LOCAL AREA NETWORK, AND CONTROL MEMBER FOR IMPLEMENTING THE METHOD
DE10233606A1 (en) 2002-07-24 2004-02-12 Siemens Ag WLAN to UMTS terminal connection procedure uses a Universal Chip Card to monitor activity and exchange set up data
US7882346B2 (en) * 2002-10-15 2011-02-01 Qualcomm Incorporated Method and apparatus for providing authentication, authorization and accounting to roaming nodes
US7869803B2 (en) * 2002-10-15 2011-01-11 Qualcomm Incorporated Profile modification for roaming in a communications environment
CN1709007B (en) 2002-10-30 2010-05-26 捷讯研究有限公司 Methods and device for selecting a communication network
US7346772B2 (en) * 2002-11-15 2008-03-18 Cisco Technology, Inc. Method for fast, secure 802.11 re-association without additional authentication, accounting and authorization infrastructure
EP1424810B1 (en) * 2002-11-29 2007-08-22 Motorola, Inc. A communication system and method of authentication therefore
FI115284B (en) * 2002-12-20 2005-03-31 Nokia Corp Method and arrangement for terminal authentication
US20040181692A1 (en) * 2003-01-13 2004-09-16 Johanna Wild Method and apparatus for providing network service information to a mobile station by a wireless local area network
US7457865B2 (en) 2003-01-23 2008-11-25 Redknee Inc. Method for implementing an internet protocol (IP) charging and rating middleware platform and gateway system
DE10308012A1 (en) * 2003-02-25 2004-09-09 Siemens Ag Method for operating terminals of a mobile radio communication system
US8023958B2 (en) * 2003-03-05 2011-09-20 Qualcomm Incorporated User plane-based location services (LCS) system, method and apparatus
US20040181663A1 (en) * 2003-03-13 2004-09-16 Sami Pienimaki Forced encryption for wireless local area networks
US7650428B1 (en) * 2003-04-04 2010-01-19 IntelliNet Technologies Mobile cellular network selection from wireless LAN
US7542451B2 (en) * 2003-05-19 2009-06-02 Qualcomm Incorporated Network operator identification for CDMA communication networks
US7440441B2 (en) 2003-06-16 2008-10-21 Redknee Inc. Method and system for Multimedia Messaging Service (MMS) rating and billing
US7873347B2 (en) 2003-06-19 2011-01-18 Redknee Inc. Method for implementing a Wireless Local Area Network (WLAN) gateway system
FI20030967A (en) * 2003-06-27 2004-12-28 Nokia Corp Selection of connection settings
WO2005002262A1 (en) * 2003-06-27 2005-01-06 Nokia Corporation A method and apparatus for handover in a wireless telecommunicationssystem
CN1283072C (en) * 2003-07-03 2006-11-01 华为技术有限公司 Method for processing user terminal network selection information in WLAN
CN1271822C (en) * 2003-07-04 2006-08-23 华为技术有限公司 Method of interactive processing of user terminal network selection information in WLAN
CN1265589C (en) * 2003-07-31 2006-07-19 华为技术有限公司 User terminal selective accessing mobile network optimized interacting method in wireless LAN
CN1277380C (en) * 2003-08-07 2006-09-27 华为技术有限公司 User terminal definite network selective information interacting method in wireless LAN
CN1279722C (en) * 2003-08-14 2006-10-11 华为技术有限公司 Method for rapid accessing attached networks of user terminal in wireless LAN
CN1277381C (en) 2003-08-14 2006-09-27 华为技术有限公司 Method for maintaining initial network selective set in wireles LAN
US7536186B2 (en) * 2003-08-26 2009-05-19 Motorola, Inc. System to improve handover behavior
US7769378B2 (en) * 2003-08-26 2010-08-03 Motorola, Inc. System and method to improve WLAN handover behavior at entry/exit points
TWI220833B (en) * 2003-09-12 2004-09-01 Benq Corp Method for wireless terminal to log in communication system and communication system thereof
CN1293728C (en) 2003-09-30 2007-01-03 华为技术有限公司 Rapid interactive method for selection of accessing mobile network by user terminal in WLAN
US7561879B2 (en) * 2003-10-07 2009-07-14 Motorola, Inc. Wireless access network sharing among core networks and methods
US7305251B2 (en) * 2003-10-07 2007-12-04 Motorola Inc. Method for selecting a core network
US20050090251A1 (en) * 2003-10-07 2005-04-28 Ravi Kuchibhotla Apparatus and method for shared network
US8341700B2 (en) * 2003-10-13 2012-12-25 Nokia Corporation Authentication in heterogeneous IP networks
EP1673921B1 (en) * 2003-10-14 2018-11-28 Siemens Aktiengesellschaft Method for securing the data traffic between a mobile radio network and an ims network
US6940844B2 (en) * 2003-10-17 2005-09-06 Interdigital Technology Corporation Method and apparatus for reporting WLAN capabilities of a dual mode GPRS/WLAN or UMTS/WLAN WTRU
DE60328196D1 (en) * 2003-10-30 2009-08-13 Research In Motion Ltd A method of transmitting (receiving) information of a cellular network (e.g., MNC, NCC) by a wireless LAN in an EAP protocol
EP1528718B1 (en) 2003-10-30 2009-12-16 Research In Motion Limited Method for transmitting (receiving) cellular network information (e.g. MNC, NCC) by (from) a wireless local area network in an extensible authentication protocol (EAP)
US7395083B2 (en) 2003-10-30 2008-07-01 Research In Motion Limited Methods and apparatus for the communication of cellular network information between a wireless local area network and a mobile station
MXPA06005656A (en) * 2003-11-19 2006-08-23 Research In Motion Ltd Methods and apparatus for providing network broadcast information to wlan enabled wireless communication devices.
US7610014B2 (en) * 2004-01-07 2009-10-27 Research In Motion Limited System and method for selecting a cellular network on a wireless local area network
DE602004003891T2 (en) * 2004-01-07 2007-08-30 Research In Motion Ltd., Waterloo System and method for selecting a cellular network in a wireless local area network (WLAN)
US7164912B2 (en) * 2004-01-07 2007-01-16 Research In Motion Limited Apparatus, and associated method, for facilitating selection by a mobile node of a network through which to communicate using a hierarchical selection process
AU2008201520B2 (en) * 2004-01-07 2009-11-19 Blackberry Limited System and method for selecting a cellular network on a wireless local area network
US7328016B2 (en) 2004-01-07 2008-02-05 Research In Motion Limited Apparatus, and associated method, for facilitating network selection at a mobile node utilizing a network selection list maintained thereat
CN100407849C (en) * 2004-01-17 2008-07-30 华为技术有限公司 Method for limiting random of mobile terminal in CDMA network
US7461248B2 (en) * 2004-01-23 2008-12-02 Nokia Corporation Authentication and authorization in heterogeneous networks
CN1330214C (en) * 2004-02-02 2007-08-01 华为技术有限公司 Interactive method for re-selecting operating network to wireless local network
JP2005222261A (en) * 2004-02-05 2005-08-18 Nec Corp In-train network connection service operation method, communication system using the method, and service operation system
JP4480412B2 (en) 2004-02-06 2010-06-16 株式会社バッファロー Wireless LAN communication system, wireless LAN communication method, and wireless LAN communication program
US8023942B2 (en) * 2004-02-18 2011-09-20 Megasoft Limited Network-based system and method for global roaming
US7466984B2 (en) * 2004-02-19 2008-12-16 Research In Motion Limited Apparatus, and associated method, for improvement in facilitating routing of data by a mobile node operable in a packet radio communication system
CN100372428C (en) * 2004-02-20 2008-02-27 华为技术有限公司 Method for registrating roaming region position of mobile terminal
US9686669B2 (en) * 2004-04-08 2017-06-20 Nokia Technologies Oy Method of configuring a mobile node
FR2869190B1 (en) * 2004-04-19 2006-07-21 Alcatel Sa METHOD FOR USING A WIRELESS TELEPHONE TERMINAL TO ESTABLISH AN EMERGENCY CONNECTION IN A LOCAL NETWORK; TERMINAL AND SERVER FOR IMPLEMENTING SAID METHOD
US7822412B2 (en) * 2004-04-21 2010-10-26 Hewlett-Packard Development Company, L.P. System and method for accessing a wireless network
US20050272466A1 (en) * 2004-05-03 2005-12-08 Nokia Corporation Selection of wireless local area network (WLAN) with a split WLAN user equipment
KR100601673B1 (en) * 2004-05-10 2006-07-14 삼성전자주식회사 Communication method and apparatus at mobile station having multiple interfaces
CN100355314C (en) * 2004-06-28 2007-12-12 华为技术有限公司 Method for applying general weight discrimination frame
US20060019635A1 (en) * 2004-06-29 2006-01-26 Nokia Corporation Enhanced use of a network access identifier in wlan
WO2006016209A1 (en) 2004-08-05 2006-02-16 Nokia Corporation Irregularly structured, low denisty parity check codes
US20060030315A1 (en) * 2004-08-06 2006-02-09 Christopher Smith Method and system for provisioning wireless services using SIM information
US9232463B2 (en) * 2004-08-09 2016-01-05 Blackberry Limited Apparatus, and associated method, for facilitating communications by a mobile node in a multiple network radio communication system having interworking capability
US7590732B2 (en) * 2004-10-08 2009-09-15 Telefonaktiebolaget Lm Ericsson (Publ) Enhancement of AAA routing originated from a local access network involving intermediary network preferences
US7298725B2 (en) * 2004-10-08 2007-11-20 Telefonaktiebolaget Lm Ericsson (Publ) Enhancement of AAA routing initiated from a home service network involving intermediary network preferences
US7292592B2 (en) * 2004-10-08 2007-11-06 Telefonaktiebolaget Lm Ericsson (Publ) Home network-assisted selection of intermediary network for a roaming mobile terminal
US7551926B2 (en) * 2004-10-08 2009-06-23 Telefonaktiebolaget Lm Ericsson (Publ) Terminal-assisted selection of intermediary network for a roaming mobile terminal
US8843995B2 (en) 2004-11-02 2014-09-23 Blackberry Limited Generic access network (GAN) controller selection in PLMN environment
AU2005306523B2 (en) * 2004-11-02 2010-04-08 Blackberry Limited Generic access network (GAN) controller selection in PLMN environment
BRPI0516633A (en) * 2004-11-29 2008-09-16 Research In Motion Ltd system and method to support service request capability gained on a wireless user equipment (eu) device
TWI293844B (en) * 2005-01-11 2008-02-21 Ind Tech Res Inst A system and method for performing application layer service authentication and providing secure access to an application server
US7447502B2 (en) * 2005-01-14 2008-11-04 Research In Motion Limited Scheme for providing regulatory compliance in performing network selection in a foreign country
JP4786190B2 (en) * 2005-02-01 2011-10-05 株式会社エヌ・ティ・ティ・ドコモ Authentication vector generation apparatus, subscriber authentication module, wireless communication system, authentication vector generation method, calculation method, and subscriber authentication method
CN1832617A (en) * 2005-03-09 2006-09-13 华为技术有限公司 Method for locking terminal attaching region
US20060206710A1 (en) * 2005-03-11 2006-09-14 Christian Gehrmann Network assisted terminal to SIM/UICC key establishment
FI20050491A0 (en) * 2005-05-09 2005-05-09 Nokia Corp System for delivery of certificates in a communication system
FR2887102A1 (en) * 2005-06-13 2006-12-15 France Telecom METHOD FOR MODIFYING THE SERVICE MODE REQUIRED BY A COMMUNICATION TERMINAL BASED ON AT LEAST ONE CONFIGURATION PARAMETER AND / OR REPRESENTATIVE OF NETWORK SERVICE QUALITY
US7826842B2 (en) * 2005-07-01 2010-11-02 Research In Motion Limited System and method for managing forbidden network lists on a wireless user equipment (UE) device
AU2011205126B2 (en) * 2005-07-01 2012-12-06 Blackberry Limited System and method for managing forbidden network lists on a wireless user equipment (UE) device
ATE414386T1 (en) 2005-07-01 2008-11-15 Research In Motion Ltd DEVICE AND METHOD FOR MANAGING LISTS OF FORBIDDEN NETWORKS IN A WIRELESS USER TERMINAL (UE)
US9066344B2 (en) 2005-09-19 2015-06-23 Qualcomm Incorporated State synchronization of access routers
US20070135124A1 (en) * 2005-12-13 2007-06-14 Davolos Christopher J Method and system of multiple wireless HPLMN
US8027677B2 (en) 2006-02-13 2011-09-27 Research In Motion Limited Automatic network selection methods and apparatus using a steered PLMN
US20070271458A1 (en) * 2006-05-22 2007-11-22 Peter Bosch Authenticating a tamper-resistant module in a base station router
CN100563382C (en) 2006-07-25 2009-11-25 华为技术有限公司 The method of Universal Mobile Telecommunications System and prompting user position thereof
US8775621B2 (en) 2006-08-31 2014-07-08 Redknee Inc. Policy services
US8887235B2 (en) * 2006-10-17 2014-11-11 Mavenir Systems, Inc. Authentication interworking
US8977839B2 (en) * 2006-10-20 2015-03-10 Interdigital Technology Corporation Method and apparatus for self configuration of LTE E-Node Bs
TWI493952B (en) 2006-12-27 2015-07-21 Signal Trust For Wireless Innovation Method and apparatus for base station self-configuration
DE102007009023B4 (en) * 2007-02-23 2011-12-22 Siemens Ag Device and method for providing RFID identification data for an authentication server
US8249594B2 (en) * 2007-02-28 2012-08-21 Telefonaktiebolaget L M Ericsson (Publ) Method and system to assign mobile stations to an unlicensed mobile access network controller in an unlicensed radio access network
US20080220773A1 (en) * 2007-03-07 2008-09-11 Research In Motion Limited Apparatus, and associated method, for facilitating i-wlan plmn selection
US7899939B2 (en) * 2007-04-20 2011-03-01 Research In Motion Limited Apparatus, and associated method, for facilitating network selection using access technology indicator
JP2008286999A (en) * 2007-05-17 2008-11-27 Pioneer Electronic Corp Plasma display device and driving method of plasma display panel
EP2031926A1 (en) * 2007-08-13 2009-03-04 Alcatel Lucent A method for constructing a network access identifier
GB2455064A (en) * 2007-11-12 2009-06-03 Nec Corp Network reselection method
US9059871B2 (en) 2007-12-27 2015-06-16 Redknee Inc. Policy-based communication system and method
CN101471773B (en) * 2007-12-27 2011-01-19 华为技术有限公司 Negotiation method and system for network service
KR101731200B1 (en) * 2008-01-18 2017-05-11 인터디지탈 패튼 홀딩스, 인크 Method and apparatus for enabling machine to machine communication
US8204528B2 (en) * 2008-04-24 2012-06-19 Research In Motion Limited Apparatus, and associated method, for facilitating access to a home, or other public network
US20090282251A1 (en) * 2008-05-06 2009-11-12 Qualcomm Incorporated Authenticating a wireless device in a visited network
US8190156B2 (en) * 2008-06-30 2012-05-29 Nokia Corporation Method and apparatus for selecting network providers
KR20100076264A (en) * 2008-12-26 2010-07-06 주식회사 팬택 System and method for network registration in mobile telecommunication
KR101649465B1 (en) 2009-03-05 2016-08-19 인터디지탈 패튼 홀딩스, 인크 METHOD AND APPARATUS FOR H(e)NB INTEGRITY VERIFICATION AND VALIDATION
EP2404459A2 (en) 2009-03-06 2012-01-11 Interdigital Patent Holdings, Inc. Platform validation and management of wireless devices
US8943552B2 (en) 2009-04-24 2015-01-27 Blackberry Limited Methods and apparatus to discover authentication information in a wireless networking environment
JP5389259B2 (en) * 2009-06-04 2014-01-15 ブラックベリー リミテッド Method and apparatus for use in facilitating communication of neighboring network information to a mobile terminal using a RADIUS compatible protocol
EP3062558B1 (en) 2009-06-16 2018-10-10 BlackBerry Limited Method for accessing a service unavailable through a network cell
US8861433B2 (en) 2009-06-16 2014-10-14 Blackberry Limited Method for accessing a service unavailable through a network cell
WO2010146465A1 (en) 2009-06-16 2010-12-23 Research In Motion Limited Method for accessing a service unavailable through a network cell
CN102036222B (en) * 2009-09-25 2015-05-13 中兴通讯股份有限公司 Method and system for changing M2M equipment selected home operator
CN102215476B (en) * 2010-04-02 2016-03-30 中兴通讯股份有限公司 The information transferring method of relayed communications network and system
US8774169B2 (en) * 2010-04-20 2014-07-08 Qualcomm Incorporated Supporting a multimedia application based on network zone recognition
US8644276B2 (en) 2010-05-13 2014-02-04 Research In Motion Limited Methods and apparatus to provide network capabilities for connecting to an access network
US8467359B2 (en) 2010-05-13 2013-06-18 Research In Motion Limited Methods and apparatus to authenticate requests for network capabilities for connecting to an access network
US8665842B2 (en) 2010-05-13 2014-03-04 Blackberry Limited Methods and apparatus to discover network capabilities for connecting to an access network
CN103202045B (en) 2010-11-05 2016-06-01 交互数字专利控股公司 Unit check, instruction in danger and remedy
KR20140006987A (en) * 2011-10-03 2014-01-16 엘지전자 주식회사 Method and apparatus for controlling user equipment access in wireless communication system
EP2663125B1 (en) * 2012-05-08 2019-02-13 Telefonaktiebolaget LM Ericsson (publ) Mobile terminal, network node server, method and computer program
CN103491527B (en) * 2012-06-13 2018-09-04 中兴通讯股份有限公司 A kind of method and system of searching terminal outer logo
US9313730B2 (en) 2013-02-15 2016-04-12 Blackberry Limited Public land mobile network (“PLMN”) discovery communications in a wireless network
KR102021679B1 (en) 2013-07-08 2019-09-16 콘비다 와이어리스, 엘엘씨 Connecting imsi-less devices to the epc
GB2529391A (en) * 2014-08-12 2016-02-24 Vodafone Ip Licensing Ltd Machine-to-machine cellular communication security
US9992670B2 (en) 2014-08-12 2018-06-05 Vodafone Ip Licensing Limited Machine-to-machine cellular communication security
KR102510207B1 (en) * 2015-04-17 2023-03-16 삼성전자주식회사 Method for handling attach reject message with #14 cause at user equipment
US10651987B2 (en) * 2015-08-31 2020-05-12 Qualcomm Incorporated Operator identification for co-existence on a shared communication medium
US11470474B2 (en) * 2019-09-27 2022-10-11 Qualcomm Incorporated Method for deriving a network specific identifier (NSI)

Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010024953A1 (en) * 2000-02-24 2001-09-27 Peter Balogh Method and equipment for supporting mobility in a telecommunication system
US20010028641A1 (en) * 1998-08-19 2001-10-11 Reinhard Becher Method for routing links through a packet-oriented communication network
US20020068574A1 (en) * 2000-07-18 2002-06-06 Nokia Mobile Phones Limited Network selection in a mobile telecommunications system
US20020197992A1 (en) * 1999-09-30 2002-12-26 Shlomo Nizri Idle mode handling in a hybrid GSM/CDMA network
US20030045290A1 (en) * 2001-08-21 2003-03-06 Sakari Tuohimetsa Internet protocol (IP) multimedia subsystem (IMS) availability detection
US20030045241A1 (en) * 2001-09-06 2003-03-06 Anthony Noerpel Mobility management-radio resource layer interface system and method for handling dark beam scenarios
US20030051041A1 (en) * 2001-08-07 2003-03-13 Tatara Systems, Inc. Method and apparatus for integrating billing and authentication functions in local area and wide area wireless data networks
US20050117540A1 (en) * 2003-10-07 2005-06-02 Ravi Kuchibhotla Method and apparatus for routing messages in a network
US6992993B1 (en) * 1999-11-26 2006-01-31 Utstarcom, Inc. Method for cell selection of asynchronous mobile station in asynchronous mobile communication system
US7089001B2 (en) * 2000-09-11 2006-08-08 Hong Kong Csl Limited Mobile communications
US20060291455A1 (en) * 2001-05-16 2006-12-28 Eyal Katz Access to plmn networks for non-plmn devices, and to issues arising in interfaces in general between plmn and non-plmn networks
US7200401B1 (en) * 2000-06-29 2007-04-03 Nokia Corporation Operator forced inter-system handover

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1080525C (en) * 1994-06-10 2002-03-06 西门子公司 Method of establishing a connection between a caller in a telecommunications net and a called mobile subscriber in a radio-telephone net
US5839069A (en) * 1996-04-10 1998-11-17 Sharp Microelectronics Technology, Inc. System and method for determining a mobile station home network search rate
GB2315193B (en) * 1996-07-10 2000-11-15 Orange Personal Comm Serv Ltd Mobile communications system
US6185436B1 (en) * 1997-03-27 2001-02-06 Siemens Information And Communication Networks, Inc. Wireless communication system
SE514150C2 (en) * 1997-11-07 2001-01-15 Ericsson Telefon Ab L M Procedure to avoid repeated registration attempts in land-based mobile networks
DE19806557C2 (en) * 1998-02-17 2000-08-17 Ericsson Telefon Ab L M Display of charge information using the USSD mechanism
JP4248146B2 (en) * 1998-06-02 2009-04-02 ノキア シーメンス ネットワークス ゲゼルシャフト ミット ベシュレンクテル ハフツング ウント コンパニー コマンディトゲゼルシャフト Method and mobile communication system for controlling short messages
DE19834674A1 (en) * 1998-07-31 2000-02-03 Ericsson Telefon Ab L M Method, switching center, telecommunication system and mobile station for temporary selective national roaming in the case of predetermined network operating conditions in a mobile radio communication system
US6067529A (en) * 1998-08-12 2000-05-23 Ericsson Inc. System and method for sending a short message containing purchase information to a destination terminal
EP1011274A1 (en) * 1998-12-16 2000-06-21 TELEFONAKTIEBOLAGET L M ERICSSON (publ) Method and service providing means for providing services in a telecommunication network
US6728215B1 (en) * 1998-12-30 2004-04-27 Ericsson Inc. System and method for placing wireless calls on an internet protocol based local area network based upon quality of service conditions
WO2000079814A1 (en) 1999-06-21 2000-12-28 Nokia Networks Oy Mobility between ip telephony networks and cellular networks
US6741868B1 (en) * 1999-07-30 2004-05-25 Curitell Communications Inc. Method and apparatus for interfacing among mobile terminal, base station and core network in mobile telecommunications system
US6950419B1 (en) * 1999-10-28 2005-09-27 Utstarcom, Inc. Method for interfacing asynchronous mobile communication system with at least one core network
EP1107550B1 (en) * 1999-12-06 2005-11-09 Alcatel A terminal to execute a terminal application
FR2809921B1 (en) 2000-06-06 2002-08-16 Nortel Matra Cellular METHOD FOR TRACKING COMMUNICATIONS IN A CELLULAR RADIO COMMUNICATION SYSTEM, AND NETWORK CORE USING THE SAME

Patent Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010028641A1 (en) * 1998-08-19 2001-10-11 Reinhard Becher Method for routing links through a packet-oriented communication network
US20020197992A1 (en) * 1999-09-30 2002-12-26 Shlomo Nizri Idle mode handling in a hybrid GSM/CDMA network
US6992993B1 (en) * 1999-11-26 2006-01-31 Utstarcom, Inc. Method for cell selection of asynchronous mobile station in asynchronous mobile communication system
US20010024953A1 (en) * 2000-02-24 2001-09-27 Peter Balogh Method and equipment for supporting mobility in a telecommunication system
US7200401B1 (en) * 2000-06-29 2007-04-03 Nokia Corporation Operator forced inter-system handover
US20020068574A1 (en) * 2000-07-18 2002-06-06 Nokia Mobile Phones Limited Network selection in a mobile telecommunications system
US7089001B2 (en) * 2000-09-11 2006-08-08 Hong Kong Csl Limited Mobile communications
US20060291455A1 (en) * 2001-05-16 2006-12-28 Eyal Katz Access to plmn networks for non-plmn devices, and to issues arising in interfaces in general between plmn and non-plmn networks
US20030051041A1 (en) * 2001-08-07 2003-03-13 Tatara Systems, Inc. Method and apparatus for integrating billing and authentication functions in local area and wide area wireless data networks
US20030045290A1 (en) * 2001-08-21 2003-03-06 Sakari Tuohimetsa Internet protocol (IP) multimedia subsystem (IMS) availability detection
US20030045241A1 (en) * 2001-09-06 2003-03-06 Anthony Noerpel Mobility management-radio resource layer interface system and method for handling dark beam scenarios
US20050117540A1 (en) * 2003-10-07 2005-06-02 Ravi Kuchibhotla Method and apparatus for routing messages in a network

Cited By (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040202145A1 (en) * 2003-04-11 2004-10-14 Terje Lundin Charging method
US7474645B2 (en) * 2003-04-11 2009-01-06 Nokia Siemens Networks Oy Charging method
US20060072542A1 (en) * 2004-08-13 2006-04-06 Mci, Inc. Fixed-mobile communications with mid-session mode switching
US7602748B2 (en) * 2004-08-13 2009-10-13 Verizon Business Global Llc Fixed-mobile communications with mid-session mode switching
US20090279506A1 (en) * 2004-08-13 2009-11-12 Verizon Business Global Llc Fixed-mobile communications with mid-session mode switching
US8693434B2 (en) 2004-08-13 2014-04-08 Verizon Business Global Llc Fixed-mobile communications with mid-session mode switching
US20080077559A1 (en) * 2006-09-22 2008-03-27 Robert Currie System and method for automatic searches and advertising
US9245040B2 (en) * 2006-09-22 2016-01-26 Blackberry Corporation System and method for automatic searches and advertising
US20080235185A1 (en) * 2007-03-21 2008-09-25 Motorola, Inc. Communication system and method of accessing therefor
US20100261474A1 (en) * 2008-01-30 2010-10-14 Nec Corporation Plmn selection in multi-network environment
US8929893B2 (en) * 2008-01-30 2015-01-06 Nec Corporation PLMN selection in multi-network environment
US8676199B2 (en) * 2008-12-29 2014-03-18 General Motors Llc Tertiary connection strategy for vehicle originated cellular communication to a call center
US20100167745A1 (en) * 2008-12-29 2010-07-01 General Motors Corporation Tertiary connection strategy for vehicle originated cellular communication to a call center
US20120108206A1 (en) * 2010-10-28 2012-05-03 Haggerty David T Methods and apparatus for access control client assisted roaming
US20200037161A1 (en) * 2010-10-28 2020-01-30 Apple Inc. Methods and apparatus for access control client assisted roaming
US9450759B2 (en) 2011-04-05 2016-09-20 Apple Inc. Apparatus and methods for controlling distribution of electronic access clients
US9788209B2 (en) 2011-04-05 2017-10-10 Apple Inc. Apparatus and methods for controlling distribution of electronic access clients
US20120302224A1 (en) * 2011-05-23 2012-11-29 Microsoft Corporation Mobile network operator identification
US8880040B2 (en) * 2011-05-23 2014-11-04 Microsoft Corporation Mobile network operator identification
TWI559787B (en) * 2011-05-23 2016-11-21 微軟技術授權有限責任公司 Mobile network operator identification
US20140051391A1 (en) * 2012-08-15 2014-02-20 Cisco Technology, Inc. Wireless roaming and authentication
US9253636B2 (en) * 2012-08-15 2016-02-02 Cisco Technology, Inc. Wireless roaming and authentication
WO2018008983A1 (en) * 2016-07-05 2018-01-11 Samsung Electronics Co., Ltd. Method and system for authenticating access in mobile wireless network system
US10716002B2 (en) 2016-07-05 2020-07-14 Samsung Electronics Co., Ltd. Method and system for authenticating access in mobile wireless network system

Also Published As

Publication number Publication date
FI20020057A (en) 2003-07-12
US20030119481A1 (en) 2003-06-26
FI20020057A0 (en) 2002-01-11
FI114276B (en) 2004-09-15
WO2003037023A1 (en) 2003-05-01
US7096014B2 (en) 2006-08-22
DE60231634D1 (en) 2009-04-30
ATE426310T1 (en) 2009-04-15

Similar Documents

Publication Publication Date Title
US7096014B2 (en) Roaming arrangement
FI108769B (en) Connecting an access point in a wireless communication system
KR100762644B1 (en) WLAN-UMTS Interworking System and Authentication Method Therefor
EP1465385B1 (en) Method for common authentication and authorization across disparate networks
US7974234B2 (en) Method of authenticating a mobile network node in establishing a peer-to-peer secure context between a pair of communicating mobile network nodes
US8869242B2 (en) Authentication in heterogeneous IP networks
US9716999B2 (en) Method of and system for utilizing a first network authentication result for a second network
US7206301B2 (en) System and method for data communication handoff across heterogenous wireless networks
EP1770940B1 (en) Method and apparatus for establishing a communication between a mobile device and a network
US20080026724A1 (en) Method for wireless local area network user set-up session connection and authentication, authorization and accounting server
US20040162998A1 (en) Service authentication in a communication system
US8457598B2 (en) Authentication in mobile interworking system
KR100755394B1 (en) Method for fast re-authentication in umts for umts-wlan handover
JP4624785B2 (en) Interworking function in communication system
US20150104020A1 (en) Method, Network Element, and Mobile Station for Negotiating Encryption Algorithms
US20110058670A1 (en) Arranging data ciphering in a wireless telecommunication system
US7489919B2 (en) Method and system for registering communication systems to wireless terminals
WO2004032554A1 (en) Method and system for providing access via a first network to a service of a second network
US20160044037A1 (en) Node and a method for enabling network access authorization
KR100668660B1 (en) User authentication method for roaming service between portable internet and 3g network, and router of performing the same
EP1438869B1 (en) Roaming arrangement
US20100304713A1 (en) Technique for restricting access to a wireless communication service
Jiang et al. WLAN-centric authentication in integrated GPRS-WLAN networks
US20110153819A1 (en) Communication system, connection apparatus, information communication method, and program
Kwon et al. Mobility Management for UMTS-WLAN Seamless Handover; Within the Framework of Subscriber Authentication

Legal Events

Date Code Title Description
STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION