METHOD AND SYSTEM FOR DATA SYNHRONIZING
TECHNICAL FIELD
The invention is concerned with a method and system for data synchronizing between a mobile phone and another computer, especially in connection with Personal Digital Assistant Services, PDA and Wallet Provisioning Services, WP.
BACKGROUND ART
The Global System for Mobile Communication (GSM) is a standard for digital wireless communications. GSM has much more services than just voice telephony. Today's second-generation GSM networks deliver high quality and secure mobile voice and data services (such as SMS/Text Messaging) with full roaming capabilities across the world.
The development of GSM Networks and terminals to support more advanced data bearer technologies has allowed for the introduction of new exciting data services and mobile applications.
The Subscriber Identity Module (SIM) inside GSM phones is a smart chip that was originally designed as a secure way to connect individual subscribers to the network. There is an on-going evolution of the SIM into a standardized and secure application platform for GSM and next generation networks. New functions added to the SIM card have enabled different applications and accelerated the move towards the mobile phone as a data terminal.
The SIM card will keep offering its intrinsic security to validate new services access and to secure transactions. The future generation of "Internet-like" phones will make the best use of the SIM card through the execution of authentication applications for service access and transaction acceptation, but also through its capability to store configuration and user data.
PDA (personal digital assistant) is a term for any small mobile hand-held device that provides computing and information storage and retrieval capabilities for personal or business use, often for keeping schedule calendars and address book information handy.
Personal Digital Assistants, or PDAs, in form of small calculators or computers are becoming more and more popular. PDAs are used as notebooks/organizers that has an address book, a daily planner, to-do lists, memo pads, calendars, project lists and expense reports - everything that is needed to keep life organized.
Though originally intended to be simple digital calendars, PDAs have evolved into machines for crunching numbers, playing games or music and downloading information from the Internet. Characteristic for the PDAs is that they are designed to complement a desktop or laptop computer, not to replace one.
PDAs vary in how you can input data and commands. Hand-held computers typically use a miniature keyboard in combination with a touch screen. Palm-sized computers use a stylus and touch screen exclusively in combination with a handwriting recognition program. Each model also has a few buttons to bring up screens or applications.
The disadvantage of handwriting recognition software is that you have to learn a new way to write, which is slower than normal handwriting. Some PDAs has an onscreen keyboard that plugs into the PDA, which in some uses is more practical than handwriting.
Because PDAs are designed to work in parallel with a desktop or laptop, they need to work with the same information in both places. A change in e.g. the information saved in the desktop computer need to be transfered to the PDA and vice versa; new information saved in the PDA should be updated later to the PC. So, any PDA must be able to communicate with a PC. The communication between PDA and PC is referred to as data synchronization or syncing. This is typically done through a serial or Universal Serial Bus, USB, port on the PDA.
In addition to communicating through a cable, many PDAs have an infrared communications port that uses infrared (IR) light to beam information to a PC or another PDA. Some PDAs also offer wireless methods to transfer data to and from a PC/PC network through a wireless e-mail /Internet service provider like those available on new models of mobile phones. Finally, some PDAs offer telephone modem accessories to transfer files to and from a PC/PC network.
Any new device is, however, a burden for the consumer. Having many devices means costs, needs of multiple battery sources, along with space and weight disadvantages.
Another disadvantage with PDAs today is that most of them lack Virtual Privat Networks, VPN, for secure synchronization with corporate servers. Virtual private networks are secured private network connections, built on top of publicly-accessible infrastructure, such as the Internet or the public telephone network. VPNs typically employ some combination of encryption, digital certificates, * strong user authentication and access control to provide security to the traffic they carry. They usually provide connectivity to many machines behind a gateway or firewall. IPSec and L2TP are examples of VPN protocols.
M-commerce (mobile commerce) is the buying and selling of goods and services through wireless handheld devices such as cellular telephone and personal digital assistants (PDAs). Known as next-generation e-commerce, m-commerce enables users to access the Internet without needing to find a place to plug in.
The Electronic Commerce Modeling Language (ECML) is an open internet standard for digital wallets that supports automatic entry of consumer payment and shipping information into merchant order forms to facilitate automatic exchange of transaction information. It allows fast and secure online payment via a "digital wallet" in the phone.
The wallet concept works well for static, unchanging information. And of course, requires a wallet to store the information. It will work fine as long as the initial entry of data, and subsequent updating if need be, into the wallet by the subscriber is correct/accurate and without typo. Otherwise, the automatic submission of mistyped
information will still lead to errors, and wasteful time-consuming round-trips to the content provider. In those scenarios with a wallet, the subscriber will need to reconfigure their wallet before they can try the service again. This is almost twice as difficult as without a wallet. Even for a one-time entry, the initial setup for non- experienced subscribers can be a bad first impression. Credit card numbers and expiry dates do change once in a while, and the subscribers may be put off updating the wallet / using the service, by their prior memories.
THE OBJECT OF THE INVENTION
The object of the invention is to solve the above mentioned problems arising from the use of multiple devices for PDA use.
A second object is to develop a secure system for data synchronization in connection with PDA and mobile commerce solutions.
SUMMARY OF THE INVENTION
In the method of the invention, updated data is synchronizing between a user terminal and another computer. One of these computers is a mobile phone and both computers have an interface for fetching and launching services and a memory for storing data. At least one of the available services comprises items for managing purposes. In the method the user terminal requests a service comprising items for managing purposes from the interface. The interface fetches the requested service from one of said memories. The user the selects an updates an item in said service, and sends the updated item(s) data to the interface. The interface sends the received updated item data to be stored in the memories of the user terminal and the other computer.
The preferable embodiments of the invention is presented in the subclaims.
The updating takes preferably place by first displaying data in connection with said item for the user after which the user gives instructions for updating said data. Said means for reading and storing data in said memory updates the data in connection with said item in accordance with said instructions. '
The system of the invention for synchronizing data between a mobile phone and another computercomprises at least a mobile phone and another computer both having an interface for fetching and launching services and a memory for storing data, , services to be used by the user of the mobile phone and said other computer, at least one of the services comprising items for managing purposes. One of the items is a synchronization service for synchronizing data in connection with different items between the mobile phone and the other computer.
The preferable embodiments of the invention are shortly presented in the following. ■ •■ ■ • . : ; '
Said service can be a Personal Digital Assistant (PDA) comprising items such as a date book, an address book, a note pad, an alarm, a list of things to do, expenses, and a synchronization service or a Wallet Provisioning Service (WP) comprising items such as a credit card number.
In the mobile phone, the module with a memory for storing data is a SIM (Subscriber Identity Module) card on which the services are downloaded. The interface in the computer and the mobile phone for fetching and launching services is a web browser, or the like.
A plug-in is used as means for reading and storing data in said SIM memory. A plug- in extends the abilities of a program. They are small pieces of software that allow e.g. a browser to display/execute or save additional files.
One item in said service is a synchronization service for synchronizing the data between the mobile phone and the other computer. By means of the synchronization service, data in connection with other items, like a date book, an address book, a note pad, an alarm, a list of things to do, or expenses, or a credit card number, can be synchronized between the mobile phone and the other computer. A date book can
e.g. be used to keep track of appointments, meetings, birthdays, deadlines etc. The address book stores and retrieves names, home/office addresses, emails etc. The note pad can be used to write down any thing that comes to mind. An alarm is a note pad or date book with alarm reminder. The "to do list" stores a lot of thing that needs to be done, e.g. shopping etc. Furthermore, expenses in various categories, and currencies can be kept in control by means of "expenses". The synchronization service performs a PDA data entry or a WP entry on a PC or on a mobile phone, and transfers that data between the two.
Data to be synchronized between the mobile phone and the other computer is sent through a content provider. When sending data in connection with an item to be updated from the mobile phone to said another computer or vice versa through the content provider, said data can be encrypted by a second plug-in before sending it through said content provider. The encrypted data is decrypted before receiving it by the content provider, or it can also be decrypted by the PC.
The decryption function and the functions of the content provider can be controlled by the operator of the mobile phone.
The content provider requires access information for displaying the updated data for said other computer.
Besides the benefit of having PDA services on the mobile phone by avoiding multiple devices, the invention provides affordable modem conveniences (i.e. time- management features of a personal organizer) for people and a corporate tool for companies with lean budget, as they do not need to spend a huge outlay on high-end mobiles or PDA to take advantage of PDA applications. Nor do they have to unnecessarily restrict it to top executives, as it is compatible with all basic GSM mobile phones. It is also an additional revenue source for an operator operating the PDA synchronizing service as the PDA synchronizing service generates more SMS traffic. Furthermore it reduces chum by increasing basic subscriber loyalty who find the service a daily part of their life and work.
In this document, a mobile 'wallet' thus refers to a reserved file space in a SIM file for storing m-commerce information (e.g. ECML type of data such as credit card numbers and credit card expiry dates etc). The basic usage of a wallet is for subscribers to store repeatedly requested and often-used personal transactional data (e.g. payment, shipping, billing etc). The subscriber first initializes the wallet - and updates it when required. On authorization from the subscriber, the m-commerce applications will then read these data from the SIM file, thus removing the need for the subscriber to key in the same transaction data for each and every time than they use the service, as well as for different services. Implementation wise, this solution requires a SIM card with a Browser, a reserved SIM data storage file (for the wallet), and security plug-ins such as 3DES and RSA.
In the following the invention is described by means of some examples which are explained by means of signal diagrams. The intention is not to restrict the. invention to these details. ', .
FIGURES
Figure 1 presents a signal diagram for updating data in a mobile phone in connection with a PDA item
Figure 2 presents a signal diagram for data synchronizing between a mobile phone and another computer in connection with a PDA item
Figure 3 presents a signal diagram for accessing updated data for PDA items
Figure 4 presents a signal diagram for data synchronizing between a mobile phone and another computer in connection with transaction data
DETAILED DESCRIPTION
Figure 1 presents a signal diagram for updating data in a mobile phone in connection with a PDA item.
The subscriber has in the embodiment of figure 1 a PDA service in his mobile phone. Said service comprises items such as a date book, an address book, a note pad, an alarm, a "to do list", expenses, and a synchronization service and/or any other items the subscriber wants to have for managing his life and work by means of this service.
The "to do list" contains a list of attributes for different activities as an overview, such as "shopping", "sport", "to call" or anything the subscriber feels he needs to have in the list to have an overview of things to do, since all details do not have space on the screen at the same time. Every attribute can be selected for viewing more details, like "call Mr. Brown" might appear when viewing the "to call" attribute. A further view on this attribute appears, when the service asks the subscriber if the item is completed, so that the subscriber can select "done", whereby the activity will be marked as completed or the subscriber can select "not yet". The same process can be performed for all the listed items. The subscriber can then, e.g. at the end of the day update the "to do list" on the mobile terminal with the "to do list on the web or PC.
It is now assumed that the subscriber wants to add a sentence "Call Mr. Smith" to the "to call" attribute, and to remove the sentence "call Mr. Brown" which he already has performed.
The process to update the data in the PDA Service in the above way starts with step 1 of figure 1 , wherein the subscriber activates the browser, which is installed in his mobile phone. The browser is needed to fetch available services from different content providers. After having activated the browser, the subscriber can select the service he wants to have from all the available services, which are displayed to him in step 2. In this example, he selects the PDA service in step 3.
In step 4, the browser requests the PDA service information from SIM and receives it in step 5 and displays it for the subscriber in step 6.
The selected PDA service contains the different items mentioned above, and in this example, the subscriber selects the item "to do list" in step 7.
Plug-in software is installed in the mobile phone to read and save data to the SIM 5 card. As a result of step 7, the browser requests in step 8 the plug-in to read requested item data (the "to do list") from the SIM card. In steps 9 and 10, the plug-in reads the requested item data and sends it to the browser in step 11. The browser displays it to the subscriber in step 12 in form of list of attributes.
10 A further selection is made in step 13 to select a data attribute from the "to do list", i.e. "to call", the content of which is the one the subscriber wants to manipulate. The subscriber now removes the item attribute data "call Mr. Brown" and writes the new data attribute "call Mr. Smith". After that, he sends an update request in step 14 to the browser, which forwards the request to the plug-in in step 15. The plug-in, then
15. updates the changes to the SIM in step 16. . ;
In step 13, the subscriber might also just change the data status by making use of the "done" and "not yet" selections mentioned above, which saves time. This is more practical in situations with a lot of things to do. The updating can then take place 20 when there are more changes.
Later, when the subscriber wishes to synchronize the data updated e.g. as in figure 1 he again starts by activating the browser in step 1 of figure 2. After having activated the browser, the subscriber can select the service he wants to have from all the 5 available services, which are displayed to him in step 2 and selects the PDA service in step 3 as he did in figure 1 when he started the updating of the PDA service. Alternatively, the subscriber might wish to synchronize the data right away after the updating, whereby he can go directly to step 4.
In step 4, the subscriber now selects the synchronization service item. In order to 0 fulfill the second object of the invention to develop a secure system for data synchronization in connection with PDA solutions, a second plug-in is called for in step 5 in order to get encryption of the updated PDA service content. After having sent the updated PDA service content for encryption in step 5, the second plug-in
performs encryption of the content in step 6, for example with asymmetric encryption, and returns the encrypted data to the browser in step 7. In step 8, said encrypted data is sent to the operator, who forwards it in step 9 to a security server for decrypting. The security center decrypts the content in step 10 and sends the plain text back to the operator in step 11. Finally, the plain text is sent by the operator in step 12 to a content provider handling the synchronization and the content provider saves the updated PDA service in step 13. Instead of sending the encrypted content for decryption to a security center (steps 9 - 11), the content provider might decrypt the content in connection with step 13.
Figure 2 describes the scenario, wherein the operator is running the content provider. In embodiments meant for corporate applications, the content provider can be managed by the corporate itself.
Figure 3 presents a signal diagram for accessing updated PDA data items from a PC as an example. The process begins with the subscriber activating the browser in step 1 as in figures 1 and 2. The browser then gives access info of the user in step 2 to the content provider, which has saved the updated PDA service. The access information might contain a password and user name and other conventional access information. As a response, the content provider sends the updated PDA info to the browser in step 3, which displays it for the user in step 4. The updated PDA info is then saved e.,g. in a file in the PC, such as in a PIM application file.
Figures 1 - 3 described the situation, wherein items in the PDA were updated in the mobile phone and then sent to a PC to be synchronized with the data in the PC. The subscriber can, however, also browse and manipulate the information on the PC, (e.g. by means of a web-based office, their local desktop PDA client, or a desktop office application e.g. Lotus, Outlook etc).
The updating on the PC and the synchronization to the mobile phone works in a corresponding way in this direction. Then, instead of fetching the PDA service from the SIM as is done in steps 4 and 5 of figure 1 , the PDA service is fetched from a file in the PC. To mention some examples, it can be fetched either from the subscriber's PC based PDA/PIM application, or from a web-page, that is a virtual or on-line PDA/PIM application. PIM (Personal Information Manager) is a type of software that
organizes and retrieves personal information, such as names, addresses, phone numbers, and notes. It typically includes features such as automatic dialing, calendar, and scheduler. Similarly, instead of reading data from SIM as is done in steps 8 - 11 of figure 1 , the data is read from the PIM application and updated in the PIM application correspondingly to step 16 of figure 1.
When the PDA info that now was updated in the PIM application of the PC shall be synchronized with the PDA info in the SIM of the mobile phone, the synchronizing proceeds as in figure 2 except that the browser is now activated at the PC in steps 1 and 2 of figure 2.
To store the updated PDA data in the SIM, the subscriber accesses the updated PDA info in the content provider in the same way as in figure 3 except that the browser is activated from the mobile phone in step 1 and the updated PDA info is stored in the SIM of the mobile phone by forwarding ;a. request to the plug-in in the mobile phone which stores the updated PDA info, in the SIM.
Figure 4 presents a signal diagram for updating transaction data.
The subscriber has in the embodiment of figure 4 access to a wallet provisioning service in his PC. Said service comprises items for transactions, such as "credit card number". Each item shows more detailed data when selected, i.e. the credit card number is displayed or debit card number, address details, phone number details, expiry date, and a synchronization service.
It is now assumed that the subscriber wants to change a data attribute in the transaction data, like e.g. the credit card number. The invention enables the subscriber to do this from his PC instead of using his mobile even if the wallet provisioning information is stored on the SIM of his mobile station. The process to update data in the wallet provisioning service reminds of the one presented in steps 1 - 6 of figure 1 , except that instead of the PDA service, it is question about updating wallet provisioning (WP) information , why a wallet provisioning service substitutes the PDA service in steps 1 - 6 in figure 4. For getting access to the service from his PC, the subscriber authenticates himself by a user account and/or password (step
not illustrated). Step 4 is an over-the-air (OTA) request to the subscriber's MSISDN/SIM (Mobile Subscriber International Services Directory Number/Subscriber Identity Module). The wallet provisioning information received by the browser in step 5 is formatted in e.g. Wireless Markup Language (WML), which is executed upon receipt of the WP information. The WML instructs the browser to call a plug-in to read wallet information from a file space in the SIM, which call is performed in step 6. The wallet information is read by the plug-in in steps 7 and 8 and is then retrieved over- the-air (OTA) to the WP service in the browser in step 9. The WP service then presents the existing WP information to the subscriber in step 10 on the screen of the PC. The presentation is done with a form to fill in the wallet information details to be updated. The form contains the different items mentioned above and in this example, the subscriber selects the "credit card number " and changes it in step 1 1.
After that, he sends an update request in step 12 to the browser. The WP service in the browser then formats the wallet information (which was entered by the subscriber in step 12) into an optimized wallet data download format and sends it over-the-air
(OTA) to the subscriber's MSISDN/SIM in step 14, which is received by a browser in the SIM (step not illustrated). When the browser receives the updated WP data, which is now formatted into WML, it executes the WML (step not illustrated). The WML instructs the browser to call a plug-in in the SiM to write the wallet information into the SIM wallet file, which the plug-in performs in step 15.
The plug-in performing steps 6 - 9 to read data from the SIM and the plug-in performing step 14 to write data to the SIM might be the same-plug-in performing both operations or different plug-ins.