DE10054046A1 - System for producing mobile communication services based on independent radio access points connected to internet, in which private access point is made available to third parties - Google Patents

Abstract

The system is organizes and coordinates independent radio-access points with internet connections, such that wireless terminals that are within radio coverage of a radio access point can use the internet and can be contacted via the access point, under the control of an authority connected to the internet.

Description

1. State of the art and features of the invention

Communication services for mobile users are currently through cellular networks the 2nd and 3rd generation, with the exception of those services that are provided only locally Cordless and wireless systems are provided. The construction and operation of such Networks is associated with considerable costs and planning and organizational effort connected. To protect the high investments for construction and operation such networks operated in licensed frequency bands. This is the number competing operators of such networks are limited. Through the exclusive assignment of a frequency band to an operator of a mobile radio network Operators plan and control the quality of service. The components of the permanently installed The infrastructure of such a cellular network is managed by the operator; u. U. the service provider acting towards the mobile phone user does not have any Network infrastructure but only has transmission capacity of one Infrastructure operators rented.

The access to the fixed internet is increasing for companies and private individuals lighter and cheaper. Flat-rate fees, i.e. not time-dependent billed access to the Internet, enable companies and private individuals permanent internet access, e.g. B. a workstation constantly on the Internet keep operational so that the computer can send and receive constantly.

In addition to wired Internet access, a large number of powerful systems for wireless short-range communication between computers and with other digital devices (e.g. cell phones) are available at low cost, e.g. B. wireless local area networks (WLAN) according to the standards IEEE 802.11 , Hiperlan / 2, Bluetooth and others. These wireless systems transmit in non-licensed frequency bands and expand Internet access to wirelessly connected devices.

The invention describes a system using wireless systems for the Short-range communication offers communication services for mobile devices,  the costs incurred in the 2nd and 3rd generation mobile networks and planning-organizational effort is eliminated.

The system according to the invention consists of radio access points, hereinafter referred to as FZP, with a connection to the Internet and is characterized by the following features:

• - The system provides communication services for mobile and mobile Participants, even with movement during communication.
• - The Internet with its existing network serves as the system's transport network Infrastructure that is a network of communication networks.
• - Any device that can be addressed via an IP address on the Internet can be Equipment with a radio modem to become an FZP, in the Radio supply environment that allows wireless access to the Internet. The Internet terminal itself can be wireless or via a fixed medium connected to the internet.
• - The FZP are operated in the license-free or licensed range.
• - FZP are independent and are typically under the control of the Owner of the respective internet device, d. H. nobody but that Operator of one or more FZP coordinates the assembly and dismantling or the Switching a single FZP on and off.
• - The quality of service possible by an FZP for external wireless terminals the provision of communication services is subject to the respective Operator of the FZP established rules.
• - The connection of the FZP to the Internet is the responsibility of the FZP operator.
• - The operator of the FZP uses standardized wireless systems that the Rules of the respective regulatory authority for the use of the Radio spectrum are sufficient.

2. Benefits of the invention

The invention solves the problem that the operation of a mobile radio network for the supraregional supply of mobile devices with mobile communication services is associated with considerable financial outlay, for. B. for the acquisition of a license, for the administration, construction and operation of the network as well as for planning-organizational measures. By using the public Internet as a transport network, anyone whose infrastructure (e.g. workstation) is connected to the Internet can, as shown in Fig. 5, turn this infrastructure into an FZP by using a radio modem and by him provide unnecessary computing and transmission services for the provision of communication services for mobile devices that are neither known nor conscious to the operator of the FZP. The fact that both the transport (Internet) and the radio access network is realized by existing infrastructure and that free computing and transmission power is made available to third parties, both the construction and the operation of such a mobile radio network are possible at low cost. The transport network consists of the Internet and standardized wireless systems are used for radio access, which are operated in the unlicensed or licensed spectrum. It is not necessary to coordinate the FZP in order to provide communication services. The FZP therefore do not have to be owned or responsible by a network operator. The personal initiative of the individual operators of FZP to be expected due to the cost-effective and uncoordinated implementation of such a cellular network when setting up and operating FZP leads to a widespread and inexpensive supply of mobile communication services without control by a network operator. In return, in order to create an incentive to operate an FZP, the FZP operator could be allowed to use other FZPs for wireless Internet access. It need not be mentioned that for the system according to the invention typically no nationwide radio coverage, but only an unrelated radio coverage is achieved.

The system according to the invention solves the problem that an operator of a Cellular network in the spectrum licensed to him a radio coverage only in the Measures how the license terms require it and how it does it moreover appears economical. The system according to the invention realizes a Radio coverage that results from the initiative of the operators of FZP and can  provide mobile communication services wherever an FZP operator provides them or wherever he thinks it makes sense (e.g. in your own home) Company premises, airports, in your own vehicle, etc.), taking from him operated FZP are part of the overall system and are not subject to coordination.

The FZP can either direct the message traffic of its own and third-party mobile devices directly to the Internet or forward it to a switching node that is under the control of an Internet service provider. In the latter case, traffic from this node is forwarded through the Internet to the destination. Conversely, all traffic to the mobile device is routed via the node to the FZP via which it last accessed the Internet or is stored in a message store for later retrieval, see Fig. 6. This procedure has the advantage that the integrity the FZP infrastructure and the integrity of the data of the wireless terminal are maintained if the data received via radio is necessarily routed to a node outside the FZP infrastructure. The software and hardware used for this purpose is solely under the control of the operator of the FZP. He can therefore ensure that the integrity of the FZP remains protected. The security of the transmitted data is achieved through encrypted transmission between the mobile terminal and the Internet access node. The operator of the FZP thus remains closed to the contents of the transmitted messages from the mobile terminal devices of third-party users of the FZP.

An Internet node can learn properties of FZP and thus the quality of service the available transmission rates of the wireless interface to the mobile device and adapt the interface between the FZP and the Internet, e.g. B. by Recoding of content such as image or sound data.

Mobility control can be implemented in this way on such a node that the node ensures that those requested by the mobile user Data that does not yet exist when leaving the radio coverage area of an FZP are transferred to him when entering the radio coverage area of another FZP be delivered.

It should be mentioned that the radio coverage realized by an FZP is a Environment that can be used by third parties, also as vagabond  Care can be called that not targeted but by the FZP operator is generated unintentionally because it needs an FZP for its own purposes.

3. Exemplary implementation of a system for the provision of mobile Communication services based on independent Radio access points with a connection to the Internet

The exemplary implementation of a system in the sense of the invention is based on radio access points that use radio technology on the radio link according to the IEEE 802.11 standard. The mobile devices also use radio technology according to the IEEE 802.11 standard. Fig. 1 shows the architecture of such a system, for the sake of clarity only with two radio access points (access point). The Internet serves as a transport network for the system, a node is used to implement security mechanisms and to manage mobility. Mobile devices are able to communicate with each other via each access point or e.g. B. to communicate with a web server.

Fig. 2 shows the protocol stacks of a mobile terminal, an FZP and an access node, each up to the network layer. At the network layer level, all parts of the network communicate via the Internet Protocol (IP). At the physical and MAC (Medium Access Control Layer) level, the terminal and access point use IEEE 802.11 protocols. The Internet is shown here in simplified form as Ethernet according to the IEEE 802.3 standard, so that nodes and access points on layer 1 and on the MAC layer communicate via IEEE 802.3 protocols. The same applies to the node and every other instance on the Internet, e.g. B. another access point.

The application in the mobile terminal communicates via an IP layer, the Data packets using a tunnel protocol through the access point to the node be forwarded (tunneled). For this purpose, the protocol stack includes of the mobile terminal and the access node two through the tunnel Protocol layer separate IP layers, in the following upper and lower IP layer  called. The lower IP layers of the end device and the IP layers in the FZP are used to transport data through the tunnel.

The lower IP layer in the terminal is used for communication with the access point. It can either be one assigned by the access point or one on the Internet have a routed IP address.

The node can then serve as a router and IP packets towards the destination address and forward the other way round. Is the lower IP layer of the terminal via an address addressable that does not belong to the subnet of the access point is enough simple routing of the IP packets in the access point is not sufficient. In this case, the Access point the address of the mobile terminal into another IP address "translate" (Network Address Translation) or "mask" the IP packets (Port and Address translation). In the latter case, a function in the node must be accessible from "masked" terminals.

The lower IP layer in the node can be addressed via a known IP address, the The address of the right IP layer of the access point is under the control of the Operator of the access point or the Internet service provider who granted access to the Internet.

The IP address of the upper IP layer of the terminal can either be dynamic, e.g. B. be allocated by the node or be an address that the terminal in its Home network. In this case, the node must act as a foreign agent for the mobile IP Serve protocol.

A mobile terminal that goes into the coverage area of an FZP synchronizes with the IEEE 802.11 radio modem of the access point. The lower IP layer of the terminal finds the MAC address of the access point via the Address Resolutinon Protocol (ARP). The access point is connected to the Internet and knows the address of the access node.

The sending of an IP packet from the mobile terminal to a web server (WS) with the IP address AdrWS is explained below. The exchange of IP packets is shown in Fig. 3.

The node has the IP addresses AdrKu (lower IP layer) and AdrKo (upper IP Layer). The terminal has the IP addresses AdrTo (upper IP layer) and AdrTu (lower IP layer). On the access point is Network Address Translation applied. For this purpose, the access point has the IP addresses AdrAPa and AdrAPb.

The upper IP layer in the mobile terminal transfers a packet
[source: AdrTo, destination: AdrWS]
to the tunnel protocol. This encrypts the content and the destination address and sends this data over the lower IP layer towards the node. The mobile terminal then sends a packet using the IEEE 802.11 protocol stack
[source: AdrTu, destination: AdrKu]
to the access point. The access point "translates" the sender's address and sends the packet
[source: AdrAPb, destination: AdrKu]
over the internet at the nodes. Here the IP packet is decrypted by the tunnel protocol, restored and handed over to the upper IP layer. The node routes the packet
[source: AdrKo, destination: AdrWS]
then towards the web server.

Conversely, packets are first sent from the web server to the mobile terminal Nodes and then from there via the access point to the mobile Terminal tunneled.

The node has a key function for the exemplary system presented because it serves to authorize wireless terminals to use the system check and because all data communication is under his control, z. B. about him or other nodes named by him. He’s also the router can be reached via the wireless terminals.

If mobile IP is used, IP packets are tunneled twice on the way from the sender to the recipient, e.g. B. once from home agent to foreign agent on the node and then from the node through the access point to the terminal. This double tunnel solves the following problems:

• - Mobile IP is usually not available in the LAN of the FZP.  
• - Mobile IP does not guarantee security against eavesdropping on the FZP
• - Mobile IP does not guarantee the integrity of the FZP
• - Mobile IP is not suitable for fast mobility.

The system presented here as an example has the following properties:

• - The radio modem can be operated in a spectrum without a separate license become. Operation by a licensed operator is also possible.
• - The IP address of the access point on the Internet is subject to the requirements of Internet service providers have no further restriction, so it is operational independent of the overall system.
• - The Network Address Translation or Port and Address Translation function must be implemented on the device that is to serve as the access point. For both Functions exist freely available software.
• - Every device connected to the Internet can therefore be connected to the Radio modem become an access point without being coordinated by needs a network operator. The FZP are therefore independent and subject to the arbitrariness of the operator of the FZP.
• - Any mobile device that has a corresponding radio modem can via any access point with any computer addressable on the Internet communicate, also with other mobile terminals.

In the sense of commercializing the system, the respective operator of an FZP (Access Point) for the provision of mobile Internet access and with it connected services provided to forward the IP packets of the mobile Terminals at the access nodes and vice versa.

The settlement between the FZP and node operators should on the Total volume of successfully forwarded IP packets based. The Access node operators can do this based on the sender's IP address, which is included in the check with every IP packet. However, for example the IP packets on their way to the access node from an attacker are manipulated (man-in-the-middle attack) so that they can Wear the sender address in favor of the attacker, without the sending FZP  or the receiving node notices this. This also applies to the other Direction of transmission, i.e. from the node to the FZP.

Therefore, between the FZP and the node, the mobile Internet access a mutual authentication, in which also the Exchange of one or more secret keys and other security-relevant ones Information (e.g. temporary FZP identification number) that manipulates enable secure and fair billing takes place. Because such Security protocols mostly only implemented on the basis of public key cryptography FZP and access nodes must have certificates issued by a trusted certification authority can be created or signed. The Exchanged security-relevant information is only valid as long as one mobile internet access can be provided by the FZP. At the beginning of The next provision of mobile internet access is a new authentication and key exchange required.

In addition to the security measures against the above. man-in-the-middle attack, Appropriate protocols are used to ensure that the IP packets sent by nodes that were requested by the terminal, also at addressed mobile terminal arrive so that a fair billing the FZP and can take place opposite the mobile terminal.

The use of a node is not mandatory for the implementation of the system. Fig. 4 shows the protocol stack of an exemplary implementation of the system without nodes. The mobile terminal maintains an IP connection with the FZP and has any IP address that can be assigned by the FZP. The FZP implements the Port and Address Translation (PAT) function. The mobile terminal can then be uniquely addressed via the IP address of the access point on the Internet and a TCP port. A disadvantage of this implementation is that it is not generally known under which IP address and in particular under which TCP port the terminal can be reached.

The mobility function (mob) is optional. It ensures that when leaving the Radio area of the FZP no data requested by the terminal is lost.  

This can be ensured by assigning the terminal the IP address and the TCP port are communicated under which it can be addressed on the Internet. Leave that Terminal the radio area of the FZP, the mob saves all in the abandoned FZP Data destined for the terminal that is available on the FZP arrive. If the end device enters the coverage area of another FZP the mob in the end device takes over its old IP address and the corresponding TCP port contact the mob of the abandoned FZP to to request any accumulated data.

The addressability of a terminal can be distributed or centrally implemented Database that guarantees an identity of the terminal (e.g. Identification number) into the corresponding IP address and a TCP port. Such a system also has the properties formulated in the claims.

Claims (12)

1. System for the provision of mobile communication services based on independent radio access points connected to the Internet, characterized in that the system organizes and coordinates independent radio access points connected to the Internet in such a way that wireless terminals located in the radio coverage area of an FZP use it under the control of an instance connected to the Internet, can use the Internet and are reachable. 2. System for the provision of mobile communication services on the basis of independent radio access points with a connection to the Internet characterized that the system is not by one operator alone, but together by the operators of radio access points and operators of the Internet is operated. 3. System for the provision of mobile communication services on the basis of independent radio access points with a connection to the Internet characterized in that every device addressable on the Internet in connection with  a radio modem can be a radio access point to the system via which wireless terminals can be reached and can use the Internet. 4. System for the provision of mobile communication services on the basis of independent radio access points with a connection to the Internet characterized that every mobile terminal that has the same radio access technology used as an FZP, can use communication services on this FZP. 5. System for the provision of mobile communication services on the basis of independent radio access points with a connection to the Internet characterized that FZP enable radio access through wireless systems, which comply with the rules of the respective regulatory authority for the use of the Radio spectrum are sufficient. 6. System for the provision of mobile communication services on the basis of independent radio access points with a connection to the Internet characterized that the assembly or dismantling of the FZP as well as the attachment and Switching off a radio access point of arbitrariness and responsibility of the Radio access point operator is left. 7. System according to one of the main claims 1 ) -6), characterized in that the quality of service provided by a radio access point is subject to the arbitrariness of the operator of the radio access point when providing communication services. 8. System according to one of the main claims 1 ) -6), characterized in that the wireless systems used for radio access by FZP are operated in the licensed spectrum. 9. System according to one of the main claims 1 ) -6), characterized in that the wireless systems used for radio access by FZP are operated in the license-free spectrum. 10. System according to one of the main claims 1 ) -6), characterized in that the connection of the radio access point to the Internet is the responsibility of the operator of the radio access point. 11. System according to one of the main claims 1 ) -6), characterized in that the radio access points carry the traffic from mobile subscribers directly to the Internet. 12. System according to one of the main claims 1 ) -6), characterized in that the radio access points can forward the traffic from mobile terminals to a node that is under the control of a service provider. The traffic is only forwarded to the destination at this node.