Service and security enhancement of communication services

Assignee

• AT&T Intellectual Property I, L.P. · US

Inventors

• Bhuvan C. Modi · Sammamish, US
• Mohammad Khalid Hafeez · Redmond, US
• Robert B. Zegheru · Redmond, US
• Jerry Shih · Roswell, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04W12/40
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Authorization for access to an application server and associated communication service can be desirably managed. When a device attempts to access an application server and service, an authorization server generates an encrypted token, comprising device identifier information, and communicates the token to the device. The device communicates the token to the application server. The application server communicates the token to the authorization server. The authorization server determines whether the device is validated to access the application server and service based on the encrypted token, private decryption key, and initialization vector, and based on subscriber-related information. The authorization server does not share the private decryption key or initialization vector with the application server. If validated, the authorization server communicates validation-related information, including a permitted portion of subscriber-related information, to the application server. If not validated, the authorization server communicates not-validated information to the application server.