WO2007000636A2 - System and method for automatic application profile and policy creation - Google Patents
System and method for automatic application profile and policy creation Download PDFInfo
- Publication number
- WO2007000636A2 WO2007000636A2 PCT/IB2006/001672 IB2006001672W WO2007000636A2 WO 2007000636 A2 WO2007000636 A2 WO 2007000636A2 IB 2006001672 W IB2006001672 W IB 2006001672W WO 2007000636 A2 WO2007000636 A2 WO 2007000636A2
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- application
- profile
- specific
- request
- mobile node
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/102—Entity profiles
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/30—Security of mobile devices; Security of mobile applications
- H04W12/35—Protecting application or service provisioning, e.g. securing SIM application provisioning
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/50—Service provisioning or reconfiguring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/22—Processing or transfer of terminal data, e.g. status or physical capabilities
- H04W8/24—Transfer of terminal data
- H04W8/245—Transfer of terminal data from a network towards a terminal
Definitions
- the mobile Internet Protocol enables a mobile terminal to move freely from one point of connection to another in various networks it visits along its route.
- the MIP protocol describes those actions that enable a mobile terminal to maintain connectivity during a handover from one access router to another access router.
- a mobile terminal operating in an enhanced third-generation (3G) wireless communication network such as IXEV-DO (TIA/EIA/IS-856) may desire to move to a wireless local area network (WLAN), and vice versa.
- 3G enhanced third-generation
- IXEV-DO TIA/EIA/IS-856
- WLAN wireless local area network
- VoIP voice over IP
- the user may desire to move the VoIP call from the IXEV-DO network to the WLAN, such as to obtain better or more economical connectivity, speed, quality of service (QoS) and the like.
- QoS quality of service
- Contexts such as that described above are generally applicable to mobile terminals that have communication interfaces that permit the mobile terminals to access networks via different interface technologies.
- various networks may be accessible via different interface technologies
- different accessible networks differ in their data transmission characteristics, and/or in one or more other dimensions such as their administrative models.
- differing data transmission characteristics can impact the kind of applications that can operate over a given interface.
- the data flows of one or more applications may be mapped to different network interfaces, such mapping may require policy decision making within or remote from the respective mobile terminals.
- the number of communication interfaces and applications increase, the importance of the mobile terminal as a personal trusted device also typically increases.
- exemplary embodiments of the present invention provide an improved system, network entity, profile server, method and computer program product for configuring an application onboard a mobile node that includes a plurality of communication interfaces for accessing a plurality of types of networks.
- a mobile node may be configured with one or more base profiles that include base preferences and/or settings interpretable into base policy rules that generally control operation of the mobile node.
- the mobile node may download or otherwise receive one or more applications for operation thereon. In such instances, before or as those applications are installed or otherwise initiated for operation, the applications can be automatically configured based upon application- specific profiles without user input.
- a system for configuring an application for operation onboard a mobile node that includes a plurality of communication interfaces for accessing a plurality of types of networks.
- the system includes a network entity, such as the mobile node or an application- provisioning server, and a profile server located remote from the network entity.
- the network entity is capable of sending a request for an application-specific profile for operating an application onboard the mobile node.
- the request includes information capable of identifying the application such as, for example, an identifier (ID) associated with the application, and/or one or more characteristics and/or requirements of the application.
- ID identifier
- the profile server is capable of receiving the request, and in response thereto, creating or otherwise retrieving an application-specific profile based upon the request.
- the application-specific profile includes one or more application-specific preferences and/or one or more application-specific settings, where at least one of the application- specific preference(s) and/or setting(s) is capable of being interpreted into one or more policy rules capable of at least partially controlling selection of one or more of the communication interfaces of the mobile node during operation of the application.
- the profile server can send the application-specific profile back to the network entity. Thereafter, the application can be configured at least partially based upon the application-specific profile, where the application is at least partially configured based upon the application-specific profile independent of user input.
- the application may also be further configured based upon at least one base profile.
- the base profile(s) include one or more base preferences and/or settings that are capable of being interpreted into policy rule(s), which in turn, are capable of at least partially controlling operation of the mobile node including during operation of the application.
- the system may further include an application-provisioning server capable of providing the application to the mobile node.
- the mobile node can be capable of sending the request to the application-provisioning server, which in turn, is capable of sending a request to the profile server.
- the profile server can be capable of receiving the request from the application-provisioning server, and sending the application-specific profile to the application-provisioning server.
- the application-provisioning server can then be capable of sending the application-specific profile to the mobile node.
- a network entity, profile server, method and computer program product are provided for configuring an application onboard a mobile node.
- Exemplary embodiments of the present invention therefore provide an improved system, network entity, method and computer program product for configuring an application.
- applications installed or otherwise initiated for operation onboard a mobile node can be automatically configured for operation from application-specific profiles.
- the application-specific profiles can include one or more preferences and/or settings that are interpretable into policy rules at least partially controlling selection of one or more of the communication interfaces of the mobile node during operation of the application.
- the user need not manually configure the application for operation, and need not fully understand all of the preferences and/or settings with which the application is configured.
- the system, network entity, method and computer program product of exemplary embodiments of the present invention may solve at least some of the problems identified by prior techniques and may provide additional advantages.
- FIG. 1 is a block diagram of one type of mobile node and system that would benefit from exemplary embodiments of the present invention
- FIG. 2 is a schematic block diagram of an entity capable of operating as a mobile node, gateway and/or correspondent node, in accordance with exemplary embodiments of the present invention
- FIG. 3 is a schematic block diagram of a mobile node, in accordance with one embodiment of the present invention
- FIG. 4 is an schematic architecture diagram of a number of applications operating on top of a number of services onboard a mobile node, in accordance with exemplary embodiments of the present invention
- FIG. 5 is a schematic operational block diagram of the system of one exemplary embodiment of the present invention.
- FIG. 6 is a flowchart illustrating various steps in a method of configuring an application onboard a mobile node, in accordance with one exemplary embodiment of the present invention.
- FIG. 1 an illustration of one type of system that would benefit from exemplary embodiments of the present invention is provided.
- the system, method and computer program product of exemplary embodiments of the present invention will be primarily described in conjunction with mobile communications applications. It should be understood, however, that the system, method and computer program product of exemplary embodiments of the present invention can be utilized in conjunction with a variety of other applications, both in the mobile communications industries and outside of the mobile communications industries.
- the system, method and computer program product of exemplary embodiments of the present invention can be utilized in conjunction with wireline and/or wireless network (e.g., Internet) applications.
- wireline and/or wireless network e.g., Internet
- the system can include a mobile node (MN) 10 capable of transmitting signals to and for receiving signals from base sites or base stations (BS) 14 (one or more of which may be more particularly referred to as access points - APs), two of which are shown in FIG. 1.
- the base stations can include an anchor BS 12a that provides access to one network (e.g., first type of network) and a target BS 12b that provides access to another network (e.g., second type of network) during handoff.
- One or more base stations are part of one or more cellular or mobile networks that each include elements required to operate the network, such as a mobile switching center (MSC) (not shown).
- MSC mobile switching center
- the mobile network may also be referred to as a Base Station/MSC/Interworldng function (BMI).
- BMI Base Station/MSC/Interworldng function
- the MSC is capable of routing calls to and from the terminal when the terminal is making and receiving calls.
- the MSC can also provide a connection to landline trunks when the terminal is involved in a call.
- the MSC can be capable of controlling the forwarding of messages to and from the terminal, and can also control the forwarding of messages for the terminal to and from a messaging center.
- the MN 10 can also be coupled to a data network.
- one or more BSs 12 can be coupled to one or more data networks, such as a local area network (LAN), a metropolitan area network (MAN), and/or a wide area network (WAN).
- the BS is coupled to a gateway (GTW), which is coupled to the data network, such as an Internet Protocol (IP) network 14.
- GTWs can comprise any of a number of different entities capable of providing network connectivity between the MN and other nodes directly or indirectly coupled to the data network.
- the GTWs can include a home GTW 16 comprising a router within a home network 20 of the MN, as well as one or more visited GTWs comprising router(s) within one or more visited networks 22 of the MN.
- the GTWs of the respective networks may operate as an anchor GTW 18a coupled to the anchor BS 12a and a target GTW 18b coupled to the target BS 12b. It should be understood, however, that during handoff from or to the home network, the home GTW may likewise operate as an anchor or target GTW.
- a HA comprises a router within the home network 20 of the MN 10.
- the HA is capable of tunneling data for delivery to the MN when the MN is away from home, and can maintain current location information for the MN.
- a FA comprises a router within a visited network 22 of the MN. The FA provides routing services to the MN while the MN is registered with the visited network.
- the FA detunnels data from the HA, and delivers the data to the MN. Then, for data sent from a MN registered with the visited network, the FA can serve as a default router.
- MIP protocol such as MIPv4 or MIPv6
- exemplary embodiments of the present invention may operate in accordance with any of a number of other protocols.
- the other nodes coupled to the MN 10 via the IP network 14 can comprise any of a number of different devices, systems or the like capable of communicating with the MN in accordance with exemplary embodiments of the present invention.
- the other nodes can comprise, for example, GTWs to other networks, personal computers, server computers or the like.
- one or more other nodes can comprise other MNs, such as mobile telephones, portable digital assistants (PDAs), pagers, laptop computers, or the like.
- MNs such as mobile telephones, portable digital assistants (PDAs), pagers, laptop computers, or the like.
- PDAs portable digital assistants
- CN correspondent node
- a MN may be capable of directly communicating with one or more CNs, such as in accordance with any of a number of different short-range communication techniques.
- a MN may be capable of directly communicating with a CN in accordance with radio frequency (RF), Bluetooth (BT), infrared (IrDA), universal serial bus (USB) or any of a number of different wireline or wireless communication techniques, including LAN techniques, WLAN techniques such as IEEE 802.11, WiMAX techniques such as IEEE 802.16 or the like.
- RF radio frequency
- BT Bluetooth
- IrDA infrared
- USB universal serial bus
- One or more CNs 24 may be coupled to the IP network via one or more Intranets 26, one of which is illustrated in FIG. 1.
- Each Intranet generally comprises a private network contained within an enterprise.
- Each Intranet can comprise one or more interlinked LANs, as well as portions of one or more LANs, MANs, WANs or the like.
- CNs can be coupled to the Intranet, and thus the IP network and MN, via the Intranet.
- the Intranet, and thus the CNs of the Intranet is typically indirectly coupled to the IP network, and thus the MN, via a GTW.
- each network or portion of a network included within the Intranet can be interconnected with one another via a gateway.
- a MN is capable of accessing the Intranet, and thus CNs of the Intranet, by establishing a Virtual Private Network (VPN) across a GTW to the Intranet, and if so required, across one or more other gateways within the Intranet.
- VPN Virtual Private Network
- the GTW is typically referred to as a VPN GTW 28, as shown in FIG. 1.
- mobile network(s) can be capable of supporting communication in accordance with any one or more of a number of second-generation (2G), 2.5G, third-generation (3G) and/or fourth-generation (4G) mobile communication protocols or the like. Additionally or alternatively, mobile network(s) can be capable of supporting communication in accordance with any of a number of different wireless networking techniques, including WLAN, WiMAX or the like.
- the mobile network(s) can be capable of supporting communication in accordance with any one or more of a number of different digital broadcast networks, such as Digital Video Broadcasting (DVB) networks including DVB-T (DVB-Terrestrial) and/or DVB-H (DVB-Handheld), Integrated Services
- DVD Digital Video Broadcasting
- DVB-T DVD-Terrestrial
- DVB-H DVD-Handheld
- ISDB networks including ISDB-T (ISDB-Terrestrial), or the like.
- the MN 10 can be coupled to one or more networks capable of supporting communication in accordance with 2G wireless communication protocols IS-136 (TDMA), GSM, and IS-95 (CDMA).
- one or more of the network(s) can be capable of supporting communication in accordance with 2.5G wireless communication protocols GPRS, Enhanced Data GSM Environment (EDGE), or the like.
- one or more of the network(s) can be capable of supporting communication in accordance with 3 G wireless communication protocols such as cdma2000, Universal Mobile Telephone System (UMTS) network employing Wideband Code Division Multiple Access (WCDMA) radio access technology.
- WCDMA Wideband Code Division Multiple Access
- one or more of the network(s) can be capable of supporting enhanced 3G wireless communication protocols such as IXEV- DO (TIA/EIA/IS-856) and IXEV-DV.
- FIG. 2 a block diagram of an entity capable of operating as a MN 10, GTW 16, 18 and/or CN 24 is shown in accordance with one embodiment of the present invention.
- one or more entities may support one or more of a MN, GTW and/or CN, logically separated but co-located within the entit(ies).
- a single entity may support a logically separate, but co-located, GTW and CN.
- the entity capable of operating as a MN 10, GTW 16, 18 and/or CN 24 includes various means for performing one or more functions in accordance with exemplary embodiments of the present invention, including those more particularly shown and described herein. It should be understood, however, that one or more of the entities may include alternative means for performing one or more like functions, without departing from the spirit and scope of the present invention. More particularly, for example, as shown in FIG. 2, the entity can include means, such as a processor 30 connected to a memory 32.
- the memory can comprise volatile and/or non-volatile memory, and typically stores content, data or the like. For example, the memory typically stores content transmitted from, and/or received by, the entity. Also for example, the memory typically stores client applications, instructions or the like for the processor to perform steps associated with operation of the entity in accordance with embodiments of the present invention. As explained below, for example, the memory can store client application(s).
- the client application(s) may each comprise software operated by the respective entities. It should be understood, however, that any one or more of the client applications described herein can alternatively comprise firmware or hardware, without departing from the spirit and scope of the present invention.
- the MN 10, GTW 16, 18 and/or CN 24 can include one or more logic elements for performing various functions of one or more client application(s). As will be appreciated, the logic elements can be embodied in any of a number of different manners.
- the logic elements performing the functions of one or more client applications can be embodied in an integrated circuit assembly including one or more integrated circuits integral or otherwise in communication with a respective network entity (i.e., MN, GTW, CN, etc.) or more particularly, for example, a processor 30 of the respective network entity.
- a respective network entity i.e., MN, GTW, CN, etc.
- the design of integrated circuits is by and large a highly automated process.
- complex and powerful software tools are available for converting a logic level design into a semiconductor circuit design ready to be etched and formed on a semiconductor substrate. These software tools automatically route conductors and locate components on a semiconductor chip using well established rules of design as well as huge libraries of pre-stored design modules.
- the resultant design in a standardized electronic format (e.g., Opus, GDSII, or the like), may be transmitted to a semiconductor fabrication facility or "fab" for fabrication.
- the processor 30 can also be connected to at least one interface or other means for displaying, transmitting and/or receiving data, content or the like.
- the interface(s) can include at least one communication interface 34 or other means for transmitting and/or receiving data, content or the like.
- the communication interface(s) can include a first communication interface for connecting to a first network, and a second communication interface for connecting to a second network.
- the interface(s) can also include at least one user interface that can include a display 35 and/or a user input interface 37.
- the user input interface in turn, can comprise any of a number of devices allowing the entity to receive data from a user, such as a keypad, a touch display, a joystick or other input device.
- FIG. 3 illustrates one type of MN 10 that would benefit from exemplary embodiments of the present invention.
- MN illustrated and hereinafter described is merely illustrative of one type of MN that would benefit from the present invention and, therefore, should not be taken to limit the scope of the present invention. While several exemplary embodiments of the MN are illustrated and will be hereinafter described for purposes of example, other types of MNs, such as portable digital assistants (PDAs), pagers, laptop computers and other types of electronic systems, can readily employ exemplary embodiments of the present invention.
- PDAs portable digital assistants
- the MN 10 includes various means for performing one or more functions in accordance with exemplary embodiments of the present invention, including those more particularly shown and described herein.
- the MN may include alternative means for performing one or more like functions, without departing from the spirit and scope of the present invention. More particularly, for example, as shown in FIG. 3, in addition to an antenna 36, the MN 10 can include a transmitter 38, receiver 40, and means, such as a controller 42 or other processor, that provides signals to and receives signals from the transmitter and receiver, respectively. These signals include signaling information in accordance with the air interface standard of the applicable cellular system, and also user speech and/or user generated data. In this regard, the MN can be capable of operating with one or more air interface standards, communication protocols, modulation types, and access types.
- the MN can be capable of operating in accordance with any of a number of second generation (2G), 2.5G and/or third-generation (3G) communication protocols or the like.
- the MN may be capable of operating in accordance with 2G wireless communication protocols IS-136 (TDMA), GSM and IS-95 (CDMA), 2.5G wireless communication protocols such as GPRS and/or Enhanced Data GSM Environment (EDGE), and/or 3 G wireless communication protocols such as cdma2000, Universal Mobile Telephone System (UMTS) network employing Wideband Code Division Multiple Access (WCDMA) radio access technology.
- the MN can also be capable of operating in accordance with enhanced 3 G wireless communication protocols such as IXEV- DO (TIA/EIA/IS-856) and IXEV-DV.
- the controller 42 includes the circuitry required for implementing the audio and logic functions of the MN 10.
- the controller may be comprised of a digital signal processor device, a microprocessor device, and various analog-to-digital converters, digital-to-analog converters, and other support circuits. The control and signal processing functions of the MN are allocated between. these devices according to their respective capabilities.
- the controller can additionally include an internal voice coder (VC) 42a, and may include an internal data modem (DM) 42b.
- the controller may include the functionality to operate one or more software programs, which may be stored in memory (described below).
- the controller may be capable of operating a connectivity program, such as a conventional Web browser.
- the connectivity program may then allow the MN to transmit and receive Web content, such as according to HTTP and/or the Wireless Application Protocol (WAP), for example.
- the MN 10 also comprises a user interface including a conventional earphone or speaker 44, a ringer 46, a microphone 48, a display 50, and a user input interface, all of which are coupled to the controller 42.
- the user input interface which allows the MN to receive data, can comprise any of a number of devices allowing the MN to receive data, such as a keypad 52, a touch display (not shown) or other input device.
- the keypad includes the conventional numeric (0- 9) and related keys (#, *), and other keys used for operating the MN.
- the MN can include a battery, such as a vibrating battery pack, for powering the various circuits that are required to operate the MN, as well as optionally providing mechanical vibration as a detectable output.
- the MN 10 can also include one or more means for sharing and/or obtaining data.
- the MN can include a short-range radio frequency (RF) interface 54 so that data can be shared with and/or obtained from electronic devices in accordance with RF techniques.
- the RF interface may function as a WLAN and/or WAN interface capable of sharing data with other radio frequency interfaces in accordance with WLAN and/or WAN techniques.
- the RF interface may function as a WLAN interface, or the MN may include a separate WLAN interface 55, capable of sharing data in accordance with WLAN techniques such as IEEE 802.11, WiMAX techniques such as IEEE 802.16 or the like.
- the MN can include a separate WAN interface 57 capable of sharing data in accordance with WAN techniques.
- the MN can additionally or alternatively include other wireline and/or wireless interfaces.
- the MN can include a universal serial bus (USB) interface 59, and/or short-range wireless interfaces, such as an infrared (IR) interface 56, and/or a Bluetooth (BT) interface 58 operating using Bluetooth brand wireless technology developed by the Bluetooth Special Interest Group.
- USB universal serial bus
- BT Bluetooth
- the MN can therefore additionally or alternatively be capable of transmitting data to and/or receiving data from electronic devices in accordance with such techniques.
- the MN 10 can further include memory, such as a subscriber identity module (SIM) 60, a removable user identity module (R-UIM) or the like, which typically stores information elements related to a mobile subscriber.
- SIM subscriber identity module
- R-UIM removable user identity module
- the MN can include other removable and/or fixed memory.
- the MN can include volatile memory 62, such as volatile Random Access Memory (RAM) including a cache area for the temporary storage of data.
- RAM volatile Random Access Memory
- the MN can also include other non-volatile memory 64, which can be embedded and/or may be removable.
- the non-volatile memory can additionally or alternatively comprise an EEPROM, flash memory or the like.
- the memories can store any of a number of software applications, instructions, pieces of information, and data, used by the MN to implement the functions of the MN.
- the memories can store an identifier, such as an international mobile equipment identification (IMEI) code, international mobile subscriber identification (IMSI) code, mobile station integrated services digital network (MSISDN) code (mobile telephone number), Internet Protocol (IP) address, Session Initiation Protocol (SIP) address or the like, capable of uniquely identifying the MN.
- IMEI international mobile equipment identification
- IMSI international mobile subscriber identification
- MSISDN mobile station integrated services digital network
- IP Internet Protocol
- SIP Session Initiation Protocol
- a number of network entities of the system are configured to operate in accordance with a protocol stack, such as the protocol stack provided by the Open Systems Interconnection (OSI) model.
- OSI Open Systems Interconnection
- the protocol stack may be implemented in software, hardware, firmware or combinations of the same.
- the OSI model comprises seven layers, including an application layer, presentation layer, session layer, transport layer, network layer, data link layer and physical layer.
- the OSI model was developed by the International Organization for Standardization (ISO) and is described in ISO 7498, entitled: The OSI Reference Model, the contents of which are incorporated herein by reference in its entirety.
- each layer of the OSI model performs a specific data communications task, a service to and for the layer that precedes it (e.g., the network layer provides a service for the transport layer).
- the process can be likened to placing a letter in a series of envelopes before it is sent through the postal system.
- Each succeeding envelope adds another layer of processing or overhead information necessary to process the transaction.
- all the envelopes help make sure the letter gets to the right address and that the message received is identical to the message sent.
- a MN 10 may be configured with one or more base profiles that include one or more base preferences (parameters that guide operation of the MN) and/or settings (parameters that restrict operation of the MN). The base preferences and/or settings can then be interpreted into one or more base policy rules that generally control operation of the MN.
- the application-specific profiles include one or more preferences and/or settings specific to the respective applications.
- the application-specific preferences and/or settings can likewise be interpreted into one or more application-specific policy rules that control operation of the respective application, and thus the MN during operation of the respective application.
- one or more of the application-specific preferences and/or settings may supersede one or more conflicting base preferences and/or settings during operation of the respective applications. Accordingly, applications installed on the MN may operate based upon base preferences and/or settings and/or respective application-specific preferences and/or settings.
- application-specific profiles including one or more application-specific preferences and/or settings can be generated or otherwise provided in any of a number of different manners.
- one or more applications may be associated with one or more application identifiers.
- the application identifier(s) may be associated with one or more application- specific preferences and/or settings, and/or one or more application-specific profiles including one or more such parameters and/or settings.
- application-specific preferences/settings and/or profile(s) can be retrieved based upon respective application identifier(s).
- An application-specific profile can then be generated or otherwise provided based upon the retrieved application-specific preferences/settings and/or profile(s).
- FIG. 4 illustrates an architecture diagram of a number of applications 66 (e.g., application 1, application 2, etc.) operating on top of a number of services 68 (e.g., service A, service B, service C, service D, etc.) onboard a MN 10 in accordance with exemplary embodiments of the present invention.
- the applications can comprise any of a number of different software applications including, for example, a WAP (Wireless Application Protocol) browser, file (e.g, MP3) transfer client, messaging (e.g., MMS, SMS, email, etc.) client, short-range connectivity OBEX (Object Exchange) engine, PC-connectivity, Bluetooth and IR stacks, PIM (personal information management) and/or telephony applications.
- WAP Wireless Application Protocol
- file e.g, MP3 transfer client
- messaging e.g., MMS, SMS, email, etc.
- OBEX Object Exchange
- the services can comprise any of a number of different services accessible to the MN user via one or more applications.
- the services can include IP browsing, IP real-time, IP background, messaging, telephony, video conferencing and/or VPN tunneling.
- the MN includes a number of different communication interfaces for accessing a number of different types of networks (e.g., WLAN, GPRS, VPN, etc.).
- one or more of the services can be configured to communicate with one or more particular communication interfaces of the MN for accessing one or more particular types of networks to effectuate the respective services.
- one or more of the applications can be configured to communicate with one or more particular services for operating the respective application(s) via the respective service(s). As also shown in FIG.
- the MN 10 may be configured with one or more base profiles 70 that include one or more base preferences (parameters that guide operation of the MN) and/or settings (parameters that restrict operation of the MN).
- the base profiles can include a default profile as well as a best service profile and a customized profile.
- other examples of base profiles include user profiles, such as for silent operation or operation when the user is in a meeting, and/or "presence" profiles, such as for operation at work and/or at home. These base preferences and/or settings can then be interpreted into one or more base policy rules that generally control operation of the MN, such as during effectuation of a particular service 68.
- one or more of the applications 66 operating onboard the MN may be configured with application-specific profiles 72 including one or more preferences and/or settings specific to the respective applications, where these application-specific preferences and/or settings may also be interpreted into one or more application-specific policy rules that control operation of the respective application, such as during operation of the respective application(s) via particular services. As indicated above, then, one or more of the application-specific preferences and/or settings may supersede one or more conflicting base preferences and/or settings during operation of the respective applications.
- the profiles can include any of a number of different base/application-specific preferences and/or settings upon which the MN 10 generally, and/or applications of the MN 10 more particularly, operate, such as to select the communication interface and thus the type of network that the MN/applications access during operation.
- the one or more profiles can include preferences and/or settings related to price (e.g., cheapest price) where the cost to access different types of networks may be the dominating factor, or capacity (e.g., highest capacity) where quality of service (QoS) available in accessing different types of networks may be the dominating factor.
- price e.g., cheapest price
- capacity e.g., highest capacity
- QoS quality of service
- one or more profiles can include preferences and/or settings related to services and/or availability (e.g., best services and/or availability) where network connectivity and/or service availability may be the dominating factors, and/or battery power where uptime (e.g., highest uptime) of the MN may be the dominating factor.
- one or more profiles can include preferences and/or settings related to a level of control over the device for security purposes
- one or more profiles can include preferences and/or settings related to control over services that a MN user accesses, roaming decisions or the like.
- the profiles can comprise any of a number of different preferences and/or settings from a number of different sources including, for example, MN users, information technology (IT) departments, network operators, service providers, or the like.
- a MN 10 can communicate with a number of CNs, including an application provisioning server 26a, a profile server 26b and/or an authentication server 26c, via a number of different communication channels. More particularly, for example, MN can communicate with the application provisioning server across a communication channel A.
- the application provisioning server in turn, can communicate with the profile server across channel B, and the profile server can communicate with the authentication server across channel C.
- the MN can communicate with the profile server across channel D, which may or may not pass through the application provisioning server therebetween. Further, for example, the MN can communicate with the authentication server across channel E. Similar to above, although shown as separate entities, in some embodiments, one or more entities may support one or more of a MN, application provisioning server, profile server and/or authentication server, logically separated but co-located within the entit(ies). For example, a single entity may support a logically separate, but co-located, application provisioning server and profile server, profile server and authentication server, or application provisioning server, profile server and authentication server.
- a single entity may support a logically separate, but co-located, MN and profile server, MN and authentication server, or MN 5 profile server and authentication server.
- configuring an application 66 for operation onboard a MN 10 includes receiving or otherwise downloading an application at the MN, as shown in block 80.
- the application can be received or otherwise downloaded from any of a number of different sources in any of a number of different manners.
- the MN downloads the application from an application provisioning server 26a across communication channel A.
- the application is initiated or otherwise installed onboard the MN, as shown in block 82.
- the MN can determine if the application has an associated application profile identifier (ID), as shown in block 84. If the application does not have an associated application profile ID, the MN can proceed in a number of different manners. For example, the MN can proceed to initiate/install the MN by configuring the application based upon one or ' more base profiles 70, as shown in block 86. In this regard, if the MN includes one base profile, the MN can configure the application based upon that profile.
- ID application profile identifier
- the MN can select a base profile or receive a selection of a base profile, and/or select one or more preferences and/or settings from more than one base profile and/or receive a selection of one or more preferences and/or settings from more than one base profile.
- the MN 10 can proceed to initiate/install the MN by configuring the application based upon one or more application-specific profile(s) 72 at least one of which is capable of being identified based upon the respective ID.
- configuring the application based upon application-specific profile(s) can include communicating with an application provisioning server 26a, which may be the same or different from the server that provided the application to the MN, as shown in block 88.
- the application provisioning server can be selected in any one of a number of different ways. For example, the application provisioning server can be selected by pre-configuring the application to direct the MN to receive application-specific profile(s) for the respective application from one of one or more particular application provisioning servers.
- the MN 10 can request application-specific profile(s) 72 for the respective application 66, where the request can include the application profile ID and may include one or more other pieces of information.
- the profile request can also include an ID of a policy server 26b providing policy services to the MN, if so desired or otherwise required.
- the profile request can also include ID(s) associated with the MN and/or MN user, and/or one or more pieces of information related to capabilities of the MN (e.g., included communication interfaces, etc.).
- the application provisioning server can initiate communication with a profile server 26b across channel B to retrieve application-specific profile(s) for the respective application, such as based upon a profile server ID, as shown in block 90.
- the profile server may require authentication of the application provisioning server, such as in any of a number of different manners, as shown in block 92.
- the profile server can authenticate the application provisioning server in accordance with the generic authentication architecture (GAA).
- GAA generic authentication architecture
- the application provisioning server can request application- specific profile(s) 72 based upon the application profile ID and, if so desired or otherwise necessary, one or more other pieces of information such as, for example, ID(s) associated with the MN 10 and/or MN user, and/or one or more pieces of information related to capabilities of the MN (e.g., included communication interfaces, etc.), as shown in block 94.
- the profile server may additionally require authentication of the MN and/or MN user, such as in any of a number of different manners, as shown in block 96.
- the profile server can authenticate the MN and/or MN user by communicating with the MN across channel D, such as in accordance with GAA.
- the profile server may communicate with an authentication server 26c across channel C.
- the MN and/or MN user may have a predefined security association (SA), previously established across channel E.
- SA predefined security association
- the profile server 26b can retrieve or otherwise create application-specific profile(s) 72 based upon the request, such as in any of a number of different manners, as shown in block 98.
- the profile server can retrieve application-specific profile(s) based upon the application profile ID in the request, such as from a database of application-specific profile(s) maintained by the profile server.
- the profile server can create application-specific profile(s) based upon the application profile ID in the request, such as from a database of application-specific parameters and/or settings maintained by the profile server.
- the profile server can retrieve or otherwise create application-specific profile(s) based upon the MN and/or MN user, as such may be identifiable from the MN and/or MN user ID(s), and/or information related to the capabilities of the MN. More particularly, for example, the profile server can retrieve application-specific profile(s) based upon the application profile ID and further based upon the MN, MN user and/or MN capability information, such as from the database of application-specific prof ⁇ le(s). Alternatively, the profile server can create application-specific profile(s) based upon the application profile ID and further based upon the MN, MN user and/or MN capability information, such as from the database of application-specific parameters and/or settings.
- the database of application-specific profile(s) and/or the database of application-specific parameter and/or settings may include profile(s) and/or preference(s)/setting(s), respectively, associated with the respective MN ID and/or MN user ID.
- Those profile(s) and/or preference(s)/setting(s) may be previously specified by the user and stored in the respective database(s), such as during previous communication with the profile server.
- the profile server may store MN capability information associated with the MN ID and/or MN user ID. In such instances, the request to the application provisioning server 26a, and thus the profile server, need not include such capability information.
- the application-specific profile(s) can thereafter be provided to the MN, as shown in block 100.
- profile server can thereafter transfer the application-specific profile(s) to the application provisioning server 26a in response to the request from the application provisioning server.
- the application provisioning server can transfer the application-specific profile(s) to the MN in response to the previous profile request from the MN.
- the MN can proceed to initiate/install the MN by configuring the application based upon the application-specific profile(s), as shown in block 102.
- the application may be further configured based upon one or more base profiles 70, such as to configure the unspecified preferences and/or settings of the application, as shown in block 104.
- the MN 10 receives or otherwise downloads an application 66, and when the application has an associated application profile ID, requests and thereafter receives application-specific profile(s) 72 for that application from an application provisioning server 26a (receiving the profile(s) from a profile server 26b).
- the MN can then configure the received/downloaded application based upon the application-specific profile(s).
- the application can be configured with such application-specific profile(s) in any of a number of other manners.
- the MN can request the application from the application provisioning server.
- the application provisioning server itself can request/receive application-specific profile(s), such as in the same manner explained above with respect to the MN requesting/receiving such profiles via the application provisioning server.
- the application provisioning server can configure the application, such as in the same manner as the MN, and thereafter transmit the configured application to the MN.
- the MN need not configure the application based upon the application-specific profile(s).
- the application provisioning server may or may not need to further configure the application in this manner.
- the profile server 26b can at least partially retrieve or otherwise create application-specific profile(s) 72 without or independent of an application profile ID.
- the request to the profile server can include one or more characteristics, requirements or the like of the respective application 66.
- the request can identify a class or type of the application, such as a browsing application, file transfer application or the like. Additionally or alternatively, the request can identify QoS requirements, security requirements or the like of the application.
- the profile server can retrieve or otherwise create application-specific profile(s) additionally or alternatively based upon such characteristics, requirements or the like.
- the request to the profile server can include information capable of at least partially identifying an application, where the information can include an application profile ID, and/or characteristics, requirements or the like of the application,
- the profile server 26b may retrieve or otherwise create application-specific profile(s) 72 for an application 66 in an incremental manner based upon multiple requests, and/or the MN 10 or application provisioning server 26a may incrementally configure the application based upon retrieved/created application-specific profile(s).
- the profile server may receive multiple requests for application-specific profile(s), or for preference(s) and/or setting(s) of application-specific profile(s).
- the profile server may authenticate the application-provisioning server, MN and/or MN user for each request, the profile server may more typically authenticate the application- provisioning server, MN and/or MN user for the first request and maintain that authentication for each subsequent request with respect to the same application- provisioning server, MN, MN user and/or application.
- the application-specific preferences and/or settings may supersede one or more conflicting base preferences and/or settings during operation of the respective applications, one or more base preferences and/or settings may be predefined as incapable of being superseded or as otherwise having a higher priority.
- an application-specific preference and/or setting may conflict with a corresponding predefined preference and/or setting
- the application can be configured based upon the respective base preference and/or setting in lieu of the otherwise superseding application-specific preference and/or setting.
- the MN 10 may solicit, and thereafter receive, user input selecting to configure the application based upon the respective base preference and/or setting, or the otherwise superseding application-specific preference and/or setting.
- the profile server 26b is capable of providing application-specific profile(s) including application-specific preferences and/or settings
- the profile server may also be capable of providing other preferences and/or settings for at least partially controlling operation of the MN 10 and/or application 66.
- the profile server may be capable of providing the MN with one or more base profile(s), and/or one or more base preferences and/or base settings.
- the profile server may be capable of providing the MN with addressing information such as an email address, home network IP address, telephone number or the like, and/or operation information such as country details, subscription details or the like.
- the application may thereafter be operated onboard the MN 10 at least partially based upon the application-specific/base profile(s) with which the application is configured.
- the MN can interpret the preferences and/or settings of the configured application-specific/base profile(s) into one or more application-specific policy rules that may be implemented by a policy manager (e.g., software application, firmware and/or hardware) to control operation of the respective application, and thus the MN during operation of the respective application.
- a policy manager e.g., software application, firmware and/or hardware
- the respective preferences and/or settings can be interpreted into application-specific policy rule(s) that are thereafter stored in a policy database maintained by the MN, such as in non-volatile memory (e.g., memory 32, 64).
- a policy database maintained by the MN, such as in non-volatile memory (e.g., memory 32, 64).
- the policy manager can receive a use case from the application describing one or more conditions under which the application is operating, or desires to operate. The policy manager can then process the use case based upon policy rule(s) in the policy database such that the policy manager can direct or otherwise control operation of the of the application consistent with the respective policy rule(s).
- the policy rules controlling operation of the application 66, and thus the MN 10 during operation of the application can comprise any of a number of different rules effectuating the configured preferences and/or settings.
- the MN includes a number of different communication interfaces for accessing a number of different types of networks (e.g., WLAN, GPRS, VPN, etc.).
- one or more policy rules may control the service(s) with which the application communicates to access the respective service(s), and/or the communication interface(s) with which the respective service(s) communicate to access respective type(s) of network(s), to effectuate operation of the application.
- the communication interface(s) over which the applications communicate can be selectively controlled at least partially based upon the policy rule(s) into which the configured preferences and/or settings are interpreted.
- a policy rule may specify that the application only operates with communication to a WLAN, and accordingly only communicates with a service 68 that communicates with a WLAN interface (i.e., communication interface) of the MN 10 to provide access to a WLAN when such a network is available.
- a policy rule may specify that the application only download new media over the least costly available network, and/or only download new media when the network is the least congested, such as at night.
- the functions performed by one or more of the entities of the system may be performed by various means, such as hardware and/or firmware, including those described above, alone and/or under control of a computer program product.
- the computer program product for performing one or more functions of exemplary embodiments of the present invention includes a computer-readable storage medium, such as the non- volatile storage medium, and software including computer-readable program code portions, such as a series of computer instructions, embodied in the computer-readable storage medium.
- FIG. 6 is a flowchart of systems, methods and program products according to exemplary embodiments of the present invention. It will be understood that each block or step of the flowchart, and combinations of blocks in the flowchart, can be implemented by various means, such as hardware, firmware, and/or software including one or more computer program instructions. As will be appreciated, any such computer program instructions may be loaded onto a computer or other programmable apparatus (i.e., hardware) to produce a machine, such that the instructions which execute on the computer or other programmable apparatus create means for implementing the functions specified in the flowchart block(s) or step(s).
- a computer or other programmable apparatus i.e., hardware
- These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart block(s) or step(s).
- the computer program instructions may also be loaded onto a computer or other programmable apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer-implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart block(s) or step(s).
- blocks or steps of the flowchart support combinations of means for performing the specified functions, combinations of steps for performing the specified functions and program instruction means for performing the specified functions. It will also be understood that one or more blocks or steps of the flowchart, and combinations of blocks or steps in the flowchart, can be implemented by special purpose hardware-based computer systems which perform the specified functions or steps, or combinations of special purpose hardware and computer instructions.
Abstract
Description
Claims
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2008518995A JP2009500887A (en) | 2005-06-29 | 2006-06-15 | System and method for automatic application profile and policy generation |
EP06765567A EP1897322A2 (en) | 2005-06-29 | 2006-06-15 | System and method for automatic application profile and policy creation |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/169,382 US7263353B2 (en) | 2005-06-29 | 2005-06-29 | System and method for automatic application profile and policy creation |
US11/169,382 | 2005-06-29 |
Publications (3)
Publication Number | Publication Date |
---|---|
WO2007000636A2 true WO2007000636A2 (en) | 2007-01-04 |
WO2007000636A3 WO2007000636A3 (en) | 2007-03-22 |
WO2007000636A8 WO2007000636A8 (en) | 2008-03-06 |
Family
ID=37590264
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/IB2006/001672 WO2007000636A2 (en) | 2005-06-29 | 2006-06-15 | System and method for automatic application profile and policy creation |
Country Status (6)
Country | Link |
---|---|
US (1) | US7263353B2 (en) |
EP (1) | EP1897322A2 (en) |
JP (1) | JP2009500887A (en) |
KR (1) | KR100977488B1 (en) |
CN (1) | CN101238698A (en) |
WO (1) | WO2007000636A2 (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9706035B2 (en) | 2010-06-22 | 2017-07-11 | Qualcomm Incorporated | Method and apparatus for supporting operator specific profiles in wireless communications |
Families Citing this family (96)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7873646B2 (en) * | 2004-02-25 | 2011-01-18 | Research In Motion Limited | Method for modifying notifications in an electronic device |
US7398061B2 (en) * | 2004-02-26 | 2008-07-08 | Research In Motion Limited | Method and apparatus for changing the behavior of an electronic device |
US7685264B2 (en) * | 2005-08-30 | 2010-03-23 | Microsoft Corporation | System displaying a collection of network settings for a user to adjust and associate the settings with a network profile |
US8280354B2 (en) | 2005-10-27 | 2012-10-02 | Research In Motion Limited | Method and system for provisioning wireless services |
US8213922B2 (en) * | 2005-12-08 | 2012-07-03 | At&T Intellectual Property I, Lp | Method for scanning services with a multimode communication device |
US8433804B2 (en) | 2006-01-13 | 2013-04-30 | At&T Mobility Ii Llc | Dynamic event server subsystem utilizing session initiation protocol |
US20070184858A1 (en) * | 2006-02-09 | 2007-08-09 | Agere Systems Inc. | Method of attaching mobile communication tasks to a Subscriber Information Module card and mobile communication device incorporating the same |
US7949301B2 (en) | 2006-07-21 | 2011-05-24 | Research In Motion Limited | Mobile communications device access from personal computer |
US7730404B2 (en) * | 2006-07-31 | 2010-06-01 | Research In Motion Limited | Electronic device and method of messaging meeting invitees |
US20080026729A1 (en) * | 2006-07-31 | 2008-01-31 | Research In Motion Limited | Method and apparatus for configuring unique profile settings for multiple services |
US8145200B2 (en) * | 2006-07-31 | 2012-03-27 | Research In Motion Limited | Method and apparatus for configuring unique profile settings for multiple services |
US20080027955A1 (en) * | 2006-07-31 | 2008-01-31 | May Darrell R | System and method for storage and display of time-dependent events |
US8923852B2 (en) * | 2006-11-01 | 2014-12-30 | Seven Networks, Inc. | System, method, and computer-readable medium for user equipment decision-making criteria for connectivity and handover |
US8116748B2 (en) | 2006-12-14 | 2012-02-14 | At&T Intellectual Property I, Lp | Management of locations of group members via mobile communications devices |
US20080144604A1 (en) * | 2006-12-14 | 2008-06-19 | Adobe Systems Incorporated | Interface-neutral communication architecture |
US7646297B2 (en) | 2006-12-15 | 2010-01-12 | At&T Intellectual Property I, L.P. | Context-detected auto-mode switching |
US20080146250A1 (en) * | 2006-12-15 | 2008-06-19 | Jeffrey Aaron | Method and System for Creating and Using a Location Safety Indicator |
US8566602B2 (en) * | 2006-12-15 | 2013-10-22 | At&T Intellectual Property I, L.P. | Device, system and method for recording personal encounter history |
US8160548B2 (en) * | 2006-12-15 | 2012-04-17 | At&T Intellectual Property I, Lp | Distributed access control and authentication |
US8649798B2 (en) * | 2007-01-25 | 2014-02-11 | At&T Intellectual Property I, L.P. | Methods and devices for attracting groups based upon mobile communications device location |
US8787884B2 (en) * | 2007-01-25 | 2014-07-22 | At&T Intellectual Property I, L.P. | Advertisements for mobile communications devices via pre-positioned advertisement components |
US8199003B2 (en) * | 2007-01-30 | 2012-06-12 | At&T Intellectual Property I, Lp | Devices and methods for detecting environmental circumstances and responding with designated communication actions |
CN101743767A (en) * | 2007-07-13 | 2010-06-16 | 艾利森电话股份有限公司 | Matching used and allowed radio access technology types |
US8335504B2 (en) * | 2007-08-23 | 2012-12-18 | At&T Intellectual Property I, Lp | Methods, devices and computer readable media for providing quality of service indicators |
US20090064108A1 (en) * | 2007-09-04 | 2009-03-05 | Apple Inc. | Configuring Software Stacks |
ES2687405T3 (en) | 2007-09-27 | 2018-10-25 | Sun Patent Trust | Network node and mobile terminal |
US8514842B1 (en) | 2007-09-28 | 2013-08-20 | Adobe Systems Incorporated | Systems and methods for enabling communication between users of common virtual spaces |
KR100888511B1 (en) | 2007-12-12 | 2009-03-12 | 한국전자통신연구원 | System and the method for telematics service application protocol auto generation |
US9544398B2 (en) | 2008-02-15 | 2017-01-10 | Good Technology Holdings Limited | System and methods to store, retrieve, manage, augment and monitor applications on appliances |
US9185554B2 (en) * | 2008-02-15 | 2015-11-10 | Appcentral, Inc. | System and methods to store, retrieve, manage, augment and monitor applications on appliances |
US8208900B2 (en) * | 2008-03-04 | 2012-06-26 | Apple Inc. | Secure device configuration profiles |
US8418168B2 (en) * | 2008-05-29 | 2013-04-09 | Research In Motion Limited | Method and system for performing a software upgrade on an electronic device connected to a computer |
US8041346B2 (en) | 2008-05-29 | 2011-10-18 | Research In Motion Limited | Method and system for establishing a service relationship between a mobile communication device and a mobile data server for connecting to a wireless network |
US7865573B2 (en) * | 2008-05-29 | 2011-01-04 | Research In Motion Limited | Method, system and devices for communicating between an internet browser and an electronic device |
CA2730103C (en) * | 2008-06-05 | 2019-02-26 | Camiant, Inc. | Method and system for providing mobility management in network |
US8640188B2 (en) * | 2010-01-04 | 2014-01-28 | Tekelec, Inc. | Methods, systems, and computer readable media for providing group policy configuration in a communications network using a fake user |
US8813168B2 (en) | 2008-06-05 | 2014-08-19 | Tekelec, Inc. | Methods, systems, and computer readable media for providing nested policy configuration in a communications network |
US8516096B2 (en) * | 2008-07-09 | 2013-08-20 | In Motion Technology Inc. | Cognitive wireless system |
US8107452B1 (en) * | 2008-09-26 | 2012-01-31 | Sprint Communications Company L.P. | Customizing a browsing experience on a mobile communications device |
US8107944B2 (en) * | 2008-10-14 | 2012-01-31 | Todd Michael Cohan | System and method for automatic data security, back-up and control for mobile devices |
US20100153695A1 (en) * | 2008-12-16 | 2010-06-17 | Microsoft Corporation | Data handling preferences and policies within security policy assertion language |
TWI396989B (en) * | 2008-12-31 | 2013-05-21 | Inventec Appliances Corp | Method for web service and apparatus therefor |
CN101516126B (en) * | 2009-03-24 | 2011-04-13 | 华为技术有限公司 | Method and device for accessing wireless local area network into the other network |
FR2943881A1 (en) * | 2009-03-31 | 2010-10-01 | France Telecom | METHOD AND DEVICE FOR MANAGING AUTHENTICATION OF A USER |
US20100318656A1 (en) * | 2009-06-16 | 2010-12-16 | Intel Corporation | Multiple-channel, short-range networking between wireless devices |
SG177156A1 (en) * | 2009-06-16 | 2012-01-30 | Intel Corp | Camera applications in a handheld device |
US8446398B2 (en) | 2009-06-16 | 2013-05-21 | Intel Corporation | Power conservation for mobile device displays |
US8254957B2 (en) | 2009-06-16 | 2012-08-28 | Intel Corporation | Context-based limitation of mobile device operation |
US8776177B2 (en) * | 2009-06-16 | 2014-07-08 | Intel Corporation | Dynamic content preference and behavior sharing between computing devices |
US9092069B2 (en) * | 2009-06-16 | 2015-07-28 | Intel Corporation | Customizable and predictive dictionary |
US8429268B2 (en) * | 2009-07-24 | 2013-04-23 | Camiant, Inc. | Mechanism for detecting and reporting traffic/service to a PCRF |
KR101247957B1 (en) * | 2009-09-21 | 2013-04-03 | 에스케이텔레콤 주식회사 | Method And Apparatus for Accessing Multi-Network |
US8443059B2 (en) * | 2009-10-08 | 2013-05-14 | F-Secure Oyj | Configuring a client application |
KR20110063297A (en) * | 2009-12-02 | 2011-06-10 | 삼성전자주식회사 | Mobile device and control method thereof |
US9166803B2 (en) * | 2010-02-12 | 2015-10-20 | Tekelec, Inc. | Methods, systems, and computer readable media for service detection over an RX interface |
WO2011109821A2 (en) * | 2010-03-05 | 2011-09-09 | Tekelec | Methods, systems, and computer readable media for enhanced service detection and policy rule determination |
US9917700B2 (en) | 2010-03-15 | 2018-03-13 | Tekelec, Inc. | Systems, methods, and computer readable media for policy enforcement correlation |
US9319318B2 (en) * | 2010-03-15 | 2016-04-19 | Tekelec, Inc. | Methods, systems, and computer readable media for performing PCRF-based user information pass through |
US20110225280A1 (en) * | 2010-03-15 | 2011-09-15 | Mark Delsesto | Methods, systems, and computer readable media for communicating policy information between a policy charging and rules function and a service node |
US8473743B2 (en) | 2010-04-07 | 2013-06-25 | Apple Inc. | Mobile device management |
JP4975140B2 (en) * | 2010-06-08 | 2012-07-11 | シャープ株式会社 | Software distribution method, information processing apparatus, and information processing system |
US8935666B2 (en) * | 2010-06-30 | 2015-01-13 | Gordon G. MILLER, III | Systems and methods for dynamic mobile applications |
WO2013015835A1 (en) | 2011-07-22 | 2013-01-31 | Seven Networks, Inc. | Mobile application traffic optimization |
JP5512896B2 (en) * | 2010-11-10 | 2014-06-04 | エスケーテレコム株式会社 | Policy providing device and terminal device for supporting method for changing connection between different types of networks |
KR101924974B1 (en) | 2011-01-04 | 2018-12-04 | 삼성전자주식회사 | Methods and apparatus for remote controlling peripheral device in mobile communication terminal |
CA2797631C (en) * | 2011-04-27 | 2013-11-19 | Seven Networks, Inc. | System and method for making requests on behalf of a mobile device based on atomic processes for mobile network traffic relief |
US10560478B1 (en) | 2011-05-23 | 2020-02-11 | Palo Alto Networks, Inc. | Using log event messages to identify a user and enforce policies |
US9215235B1 (en) | 2011-05-23 | 2015-12-15 | Palo Alto Networks, Inc. | Using events to identify a user and enforce policies |
US9660992B1 (en) | 2011-05-23 | 2017-05-23 | Palo Alto Networks, Inc. | User-ID information propagation among appliances |
US8677447B1 (en) * | 2011-05-25 | 2014-03-18 | Palo Alto Networks, Inc. | Identifying user names and enforcing policies |
GB2492544A (en) * | 2011-07-01 | 2013-01-09 | Intellectual Ventures Holding 81 Llc | Selecting a radio access type for packet data communication |
CN102868665B (en) * | 2011-07-05 | 2016-07-27 | 华为软件技术有限公司 | The method of data transmission and device |
WO2013030626A1 (en) * | 2011-08-31 | 2013-03-07 | Nokia Corporation | Method and apparatus for privacy policy management |
GB2494645A (en) * | 2011-09-13 | 2013-03-20 | Skype | Application layer handoff between wireless networks |
WO2013052163A1 (en) * | 2011-10-03 | 2013-04-11 | Intel Corporation | Device to device (d2d) communication mechanisms |
US8571549B2 (en) | 2011-11-15 | 2013-10-29 | Motorola Solutions, Inc. | Access control for roaming radio devices |
US8949203B1 (en) * | 2012-01-11 | 2015-02-03 | Cadence Design Systems, Inc. | Verification of design libraries and databases |
US9158559B2 (en) | 2012-01-27 | 2015-10-13 | Microsoft Technology Licensing, Llc | Roaming of note-taking application features |
EP2873256B1 (en) | 2012-07-14 | 2018-09-26 | Tekelec, Inc. | Methods, systems, and computer readable media for policy-based local breakout (lbo) |
US9369910B2 (en) | 2012-07-14 | 2016-06-14 | Tekelec, Inc. | Methods, systems, and computer readable media for dynamically controlling congestion in a radio access network |
WO2014015331A1 (en) | 2012-07-20 | 2014-01-23 | Tekelec, Inc. | Methods, systems and computer readable media for distributing policy rules to the mobile edge |
WO2014033492A1 (en) * | 2012-08-30 | 2014-03-06 | Telefonaktiebolaget Lm Ericsson (Publ) | Methods and apparatus for controlling permissions to be granted to applications on user equipment responsive to user privacy profiles |
KR20140043000A (en) * | 2012-09-28 | 2014-04-08 | 한국전자통신연구원 | I/o supporting apparatus and method for an external device using a mobile phone |
US9106666B2 (en) * | 2012-10-31 | 2015-08-11 | Verizon Patent And Licensing Inc. | Method and system for facilitating controlled access to network services |
KR101934025B1 (en) * | 2013-02-22 | 2018-12-31 | 삼성전자주식회사 | Device and server for applying security policy and method for controlling thereof |
US9830191B2 (en) | 2013-04-15 | 2017-11-28 | Seven Networks, Llc | Temporary or partial offloading of mobile application functions to a cloud-based environment |
KR102067093B1 (en) | 2013-05-21 | 2020-01-17 | 콘비다 와이어리스, 엘엘씨 | Lightweight iot information model |
US9686237B2 (en) | 2014-08-19 | 2017-06-20 | International Business Machines Corporation | Secure communication channel using a blade server |
US20160057206A1 (en) * | 2014-08-19 | 2016-02-25 | International Business Machines Corporation | Application profile to configure and manage a software defined environment |
US10331321B2 (en) | 2015-06-07 | 2019-06-25 | Apple Inc. | Multiple device configuration application |
CN106055413B (en) * | 2016-05-10 | 2020-06-05 | 北京奇虎科技有限公司 | Method, device, server and system for transmitting application configuration items of smart watch |
US10511542B2 (en) * | 2016-06-10 | 2019-12-17 | Microsoft Technology Licensing, Llc | Multi-interface power-aware networking |
JP6810334B2 (en) | 2016-06-17 | 2021-01-06 | 富士通株式会社 | Profile data distribution control device, profile data distribution control method, and profile data distribution control program |
US11057455B1 (en) * | 2018-04-04 | 2021-07-06 | Wells Fargo Bank, N.A. | File transfer abstraction on a computer network |
US11138018B2 (en) | 2018-12-14 | 2021-10-05 | Nvidia Corporation | Optimizing execution of computer programs using piecemeal profiles |
US11757891B1 (en) * | 2019-10-29 | 2023-09-12 | Meta Platforms, Inc. | Using a host application to authorize a user of a client device to perform an action within a guest application |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1998026548A1 (en) * | 1996-12-10 | 1998-06-18 | Whistle Communications Corporation | Automatic configuration for internet access device |
US6202206B1 (en) * | 1998-05-14 | 2001-03-13 | International Business Machines Corporation | Simultaneous installation and configuration of programs and components into a network of server and client computers |
US20020154605A1 (en) * | 2001-04-24 | 2002-10-24 | Medius, Inc. | Method and apparatus for dynamic configuration of multiprocessor system |
WO2004058403A2 (en) * | 2002-12-24 | 2004-07-15 | Samrat Vasisht | Method, system and device for automatically configuring a communications network |
US20060026588A1 (en) * | 2004-06-08 | 2006-02-02 | Daniel Illowsky | System device and method for configuring and operating interoperable device having player and engine |
Family Cites Families (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FI92782C (en) * | 1993-02-09 | 1994-12-27 | Nokia Mobile Phones Ltd | Grouping mobile phone settings |
US6965948B1 (en) | 1999-11-12 | 2005-11-15 | Telefonaktiebolaget Lm Ericsson (Publ) | Method and apparatus for selective network access |
AU2003242944A1 (en) | 2002-07-10 | 2004-02-02 | Koninklijke Philips Electronics N.V. | Interface selection from multiple networks |
US7779405B2 (en) * | 2003-03-14 | 2010-08-17 | At&T Intellectual Property I, L.P. | Run-time determination of application delivery |
JP2004304399A (en) * | 2003-03-31 | 2004-10-28 | Nec Corp | Communication terminal, base station, server, network system, and handover method |
JP2004356815A (en) * | 2003-05-28 | 2004-12-16 | Sony Ericsson Mobilecommunications Japan Inc | Mobile communication terminal equipment |
US7319878B2 (en) * | 2004-06-18 | 2008-01-15 | Qualcomm Incorporated | Method and apparatus for determining location of a base station using a plurality of mobile stations in a wireless mobile network |
-
2005
- 2005-06-29 US US11/169,382 patent/US7263353B2/en active Active
-
2006
- 2006-06-15 JP JP2008518995A patent/JP2009500887A/en active Pending
- 2006-06-15 CN CNA2006800287221A patent/CN101238698A/en active Pending
- 2006-06-15 WO PCT/IB2006/001672 patent/WO2007000636A2/en active Application Filing
- 2006-06-15 KR KR1020087002322A patent/KR100977488B1/en not_active IP Right Cessation
- 2006-06-15 EP EP06765567A patent/EP1897322A2/en not_active Withdrawn
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1998026548A1 (en) * | 1996-12-10 | 1998-06-18 | Whistle Communications Corporation | Automatic configuration for internet access device |
US6202206B1 (en) * | 1998-05-14 | 2001-03-13 | International Business Machines Corporation | Simultaneous installation and configuration of programs and components into a network of server and client computers |
US20020154605A1 (en) * | 2001-04-24 | 2002-10-24 | Medius, Inc. | Method and apparatus for dynamic configuration of multiprocessor system |
WO2004058403A2 (en) * | 2002-12-24 | 2004-07-15 | Samrat Vasisht | Method, system and device for automatically configuring a communications network |
US20060026588A1 (en) * | 2004-06-08 | 2006-02-02 | Daniel Illowsky | System device and method for configuring and operating interoperable device having player and engine |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9706035B2 (en) | 2010-06-22 | 2017-07-11 | Qualcomm Incorporated | Method and apparatus for supporting operator specific profiles in wireless communications |
Also Published As
Publication number | Publication date |
---|---|
US20070004393A1 (en) | 2007-01-04 |
US7263353B2 (en) | 2007-08-28 |
EP1897322A2 (en) | 2008-03-12 |
KR100977488B1 (en) | 2010-08-23 |
WO2007000636A8 (en) | 2008-03-06 |
CN101238698A (en) | 2008-08-06 |
JP2009500887A (en) | 2009-01-08 |
KR20080019727A (en) | 2008-03-04 |
WO2007000636A3 (en) | 2007-03-22 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US7263353B2 (en) | System and method for automatic application profile and policy creation | |
EP2005690B1 (en) | Method, apparatus, network entity, system and computer program product for sharing content | |
RU2395912C2 (en) | Mobile unit, method and computer software product for transfer of service from one type of network to another type of network | |
US7545753B2 (en) | System, method and computer program product for providing quality of service during remote access to a plug-and-play network | |
TWI499324B (en) | System, terminal, network entity, method, and computer program product for system selection in a multi-mode communication system | |
US8611946B2 (en) | Methods and systems for configuring multi-mode mobile stations | |
US20060203774A1 (en) | System, method and apparatus for selecting a remote tunnel endpoint for accessing packet data services | |
US20060203722A1 (en) | System and method for managing performance of mobile terminals via remote diagnostics | |
KR20080012895A (en) | Vpn proxy management object | |
US20110111744A1 (en) | Demand-based provisioning for a mobile communication device | |
CA3095423C (en) | Access node selection in 5g network for non-3gpp and non-cellular access, also indicating regional requirement according to lawful interception | |
JP2005094774A (en) | Demand-based provisioning for mobile communication device | |
JP2010272135A (en) | Method of authorization | |
EP1850617B1 (en) | Method and apparatus for producing a user-controlled PLMN list for a SIM/USIM card with use of a user-agent application | |
US8638794B1 (en) | Method and system for routing traffic across multiple interfaces via VPN traffic selectors and local policies | |
EP1690401B1 (en) | System, method and computer program product for managing user identities | |
KR20110031234A (en) | A method and apparatus for a subscriber database | |
EP2564555B1 (en) | Managing access gateways | |
US9204483B1 (en) | Methods for obtaining a mobile internet protocol address | |
CA2618912C (en) | Methods and systems for configuring multi-mode mobile stations | |
Dagiuklas et al. | VHE provisioning in 3G mobile networks |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
WWE | Wipo information: entry into national phase |
Ref document number: 2006765567 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2008518995 Country of ref document: JP Ref document number: 10136/DELNP/2007 Country of ref document: IN |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWW | Wipo information: withdrawn in national office |
Ref document number: DE |
|
WWE | Wipo information: entry into national phase |
Ref document number: 1020087002322 Country of ref document: KR |
|
WWE | Wipo information: entry into national phase |
Ref document number: 200680028722.1 Country of ref document: CN |
|
WWP | Wipo information: published in national office |
Ref document number: 2006765567 Country of ref document: EP |