[go: up one dir, main page]

WO2008007884A1 - Method of providing access rights based on device proximity and central access device used for the method - Google Patents

Method of providing access rights based on device proximity and central access device used for the method Download PDF

Info

Publication number
WO2008007884A1
WO2008007884A1 PCT/KR2007/003329 KR2007003329W WO2008007884A1 WO 2008007884 A1 WO2008007884 A1 WO 2008007884A1 KR 2007003329 W KR2007003329 W KR 2007003329W WO 2008007884 A1 WO2008007884 A1 WO 2008007884A1
Authority
WO
WIPO (PCT)
Prior art keywords
mobile device
proximity
central access
home network
access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/KR2007/003329
Other languages
French (fr)
Inventor
Shrikant Kanaparti
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Samsung Electronics Co Ltd
Original Assignee
Samsung Electronics Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from KR1020070015098A external-priority patent/KR20080005840A/en
Application filed by Samsung Electronics Co Ltd filed Critical Samsung Electronics Co Ltd
Priority to US12/301,738 priority Critical patent/US20090254980A1/en
Publication of WO2008007884A1 publication Critical patent/WO2008007884A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/107Network architectures or network communication protocols for network security for controlling access to devices or network resources wherein the security policies are location-dependent, e.g. entities privileges depend on current location or allowing specific operations only from locally connected terminals
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • H04W12/084Access security using delegated authorisation, e.g. open authorisation [OAuth] protocol
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • H04W12/086Access security using security domains
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/02Access restriction performed under specific conditions
    • H04W48/04Access restriction performed under specific conditions based on user or terminal location or mobility data, e.g. moving direction, speed

Definitions

  • the present invention relates to a network field, and more particularly, to managing access rights for devices in a home network and protecting data shared between the devices.
  • the mechanisms are not limited to a home network, and most of the mechanisms are defined for a company network using a technology such as a virtual private network (VPN).
  • technologies used for the mechanisms are not fully described as in the current description.
  • the technologies are not automated and therefore need involvement with a user for every authentication whenever the user wants to connect to devices in a network. Disclosure of Invention Technical Solution
  • the present invention provides a method of providing access rights as an automated remote control mechanism for a mobile device connecting to a home network.
  • the present invention also provides a central access device used for the method of providing access rights.
  • the present invention also provides a computer-readable medium having embodied thereon a computer program for executing the method of providing access rights.
  • the access rights can be seamlessly controlled to protect contents of various devices in the home network.
  • FlG. 1 is a view showing an example of devices connecting to a home network
  • FlG. 2 is a view showing an example of a residential gateway
  • FlG. 3 is a view showing a method of providing access rights according to an embodiment of the present invention.
  • FlG. 4 is a view showing a central access device according to an embodiment of the present invention.
  • GPS Global Positioning System
  • ISP Internet Service Provider
  • IP Internet Protocol
  • SSL Secure Sockets Layer
  • VPN Virtual Private Network
  • a method of providing access rights based on proximity of a mobile device by a central access device in a home network to the mobile device in order to connect the mobile device to the home network comprising: determining proximity showing how close the mobile device is to the central access device when the mobile device connects to the central access device; and granting an access right to the mobile device according to the determined proximity.
  • a central access device providing access rights based on proximity of a mobile device in order to connect the mobile device to a home network
  • the central access device comprising: a proximity determination unit which determines the proximity showing how close the mobile device is to the central access device when the mobile device connects to the central access device; and an access right grant unit which grants an access right according to the proximity determined for the mobile device.
  • the proximity determination unit may determine the proximity of the mobile device based on a type of a network on which the mobile device connects to the central access device.
  • the proximity determination unit may determine that the mobile device connects inside the home network when the mobile device connects by using a short- distance wireless communication link, and determine that the mobile device connects outside the home network when the mobile device connects by using a long-distance communication link.
  • the access right grant unit may determine to encrypt data provided to the mobile device when it is determined that the mobile device connects outside the home network.
  • the proximity determination unit may determine a position of the mobile device based on strength of signals transmitted from the mobile device.
  • the access right grant unit may determine to encrypt data provided to the mobile device when it is determined that the position of the mobile device determined based on the strength of the signals is further than a reference distance.
  • the central access device may be a residential gateway.
  • FlG. 1 is a view showing an example of devices connecting to a home network.
  • the devices connecting to the home network 120 include external mobile devices 100 and 110 and an internal mobile device 122.
  • the external mobile devices 100 and 110 may connect to the home network 120 through the Internet 105 or using a wireless connection 115.
  • the home network 120 has a device for performing access control so as to allow the mobile device to connect to the home network 120.
  • the device is called a central access device.
  • a residential gateway (RG) 124 is shown as an example of the central access device.
  • a content hosting device 126 In the home network 120, a content hosting device 126, a media server device 128, and the like are connected in order to provide services to the devices connecting to the home network 120.
  • the content hosting device 126, the media server device 128, and the like are also connected to the central access device (the residential gateway 124 in FIG. 1).
  • the central access device (the central access device is generally the residential gateway) has to have intelligence necessary to decide whether or not to give a needed access right based on a position of a user while the user is connecting to the home network 120. This is generally applied only to the mobile device.
  • a rationale for this is to prevent pilferage into the home network by a user who is not known when the mobile device is far from the home. This is because a remote device cannot confirm whether or not the user is a right user by using only the device connecting to the home network 120.
  • Examples of a short-distance wireless communication link may include WiFi and Bluetooth.
  • examples of a longdistance wireless communication link may include worldwide interoperability for microwave access (WiMax) and 3G.
  • WiMax worldwide interoperability for microwave access
  • 3G 3G.
  • External connection is performed on a VPN or a HTTPS link due to security reasons.
  • standards such as UPNP exist.
  • the RG 124 is the only device for providing heterogeneous connectivity in order to satisfy needs of various devices in the home network 120.
  • the mobile devices can support one or more connection types for supporting different connection requests.
  • the mobile devices use available network types based on proximity for device networks. Proximity information is based on a type of a network connecting a user device to the central access device. This can be improved based on the position within connection with the same type (for example, based on simple parameters such as strength of a signal) in order to find the proximity information without using a technology such as GPS.
  • a plurality of intelligence can be implemented. For example, there is an access right policy used with encryption. In addition, there is encryption of plural levels employed with a simple access policy.
  • the RG as a device having a plurality of communication interfaces may provide application logic needed for a needed result. In this case, finding the proximity information from a connected interface and analysis are required.
  • the home network is a network of internal and neighboring devices for providing communication links therebetween.
  • the communication links may be used for various purposes such as data transmission, device control, or other purposes generally required in a home.
  • various standards formed for the purposes exist.
  • FIG. 2 is a view showing an example of the RG.
  • the RG is a device for providing heterogeneous connectivity for satisfying requirements of various devices in the home network.
  • the RG is a central device which is unchangeable to activate operations over the entire home network and serves as a hub of the system. Roles of the RG are to provide connectivity having a plurality of types for seamless connection between the devices in the network and perform data conversion/code conversion for meaningful interactions between the devices when required.
  • the RG serves as a device interfacing with the home network and an external system (that is, the Internet world). Accordingly, the RG includes communication interfaces, media codes, and conversion devices having various types.
  • a seamless mechanism for controlling access rights between the home network and the devices using the characteristics of the RG is provided.
  • the types of the communication interfaces provided by the RG are based on types of connection needed for the devices neighboring to the home.
  • the communication links have ranges so that the communication links can practically provide services. More specifically, the communication links are limited by their proximity between two devices that can communicate. For example, there is a short-distance communication link mainly provided inside the home network. In addition, there is a long-distance communication service which is conventionally provided by an external provider and has a charge for services.
  • access permission always can be defined and is determined using various standards.
  • a conventional method widely performed in the market is performed by identifying a user using login details based on identification of a needed access right set for the user.
  • the permission standards are defined according to a type of connection for deciding his/her access right.
  • the access rights may be a set of permissions defined in advance ideally by a person who has rights to decide the access rights (for example, an owner of the house).
  • FIG. 3 is a view showing a method of providing access rights according to an embodiment of the present invention.
  • the mobile device 10 is connected to the home network by connecting to the central access device 20 (operation S200).
  • the central access device 20 determines proximity of the mobile device 10 (op eration S210) and grants an access right to the mobile device 10 according to the determined proximity (operation S220).
  • the central access device 20 connects to a home network device 30 requested to connect by the mobile device 10 in a proper method according to the access right
  • FlG. 4 is a view showing a central access device according to an embodiment of the present invention.
  • the central access device 300 includes a proximity determination unit 310 and an access right grant unit 320.
  • the proximity determination unit 310 determines proximity showing how close is the mobile device
  • the access right grant unit 320 may grant a different access right to the mobile device 10 according to the determined proximity.
  • a control device When the mobile device becomes distant more than predetermined proximity, a control device is operated. For example, when a person goes out of his house while keeping his wireless device, as proximity of the wireless device becomes distant, an air conditioner may be controlled to be turned off.
  • the aforementioned operations require different logics of the residential gateway in order to arrive at a needed decision based on the proximity information transmitted from each of the devices.
  • the access rights are accomplished by examining the set access right policy, and encryption is generated by using an encryption engine.
  • the invention can also be embodied as computer readable codes on a computer readable recording medium.
  • the computer readable recording medium is any data storage device that can store data which can be thereafter read by a computer system. Examples of the computer readable recording medium include read-only memory (ROM), random-access memory (RAM), CD-ROMs, magnetic tapes, floppy disks, optical data storage devices, and carrier waves (such as data transmission through the Internet).

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Provided is a method of providing access rights based on device proximity and a central access device used for the method. The method of providing access rights to a mobile device includes: determining proximity showing how close the mobile device is to the central access device when the mobile device connects to the central access device in a home network; and granting an access right to the mobile device according to the determined proximity. The access rights used for protecting contents of various devices in the home network can be seamlessly controlled, and in the network, intelligence of a person (identified by his/her device) can be generated and his/her access right can be properly controlled. In addition, there is no need to concern about leakage of data beyond the near the house and there is no need to try to change anything of set parameters for this purpose, and there is no need to try to protect data in a ubiquitous information network which has been widely introduced.

Description

Description
METHOD OF PROVIDING ACCESS RIGHTS BASED ON DEVICE PROXIMITY AND CENTRAL ACCESS DEVICE USED
FOR THE METHOD
Technical Field
[1] This application claims the benefit of Korean Patent Application No.
10-2007-0015098, filed on February 13, 2007, in the Korean Intellectual Property Office, and the benefit of Indian Patent Office No. 1210/CHE/2006, filed on July 10, 2006, in the Indian Patent Office, the disclosures of which are incorporated herein in their entirety by reference.
[2] The present invention relates to a network field, and more particularly, to managing access rights for devices in a home network and protecting data shared between the devices. Background Art
[3] Now, there are several defined remote control mechanisms. The mechanisms are not limited to a home network, and most of the mechanisms are defined for a company network using a technology such as a virtual private network (VPN). However, technologies used for the mechanisms are not fully described as in the current description. In addition, the technologies are not automated and therefore need involvement with a user for every authentication whenever the user wants to connect to devices in a network. Disclosure of Invention Technical Solution
[4] The present invention provides a method of providing access rights as an automated remote control mechanism for a mobile device connecting to a home network.
[5] The present invention also provides a central access device used for the method of providing access rights.
[6] The present invention also provides a computer-readable medium having embodied thereon a computer program for executing the method of providing access rights. Advantageous Effects
[7] Advantages according to the present invention are as follows.
[8] 1. The access rights can be seamlessly controlled to protect contents of various devices in the home network.
[9] 2. In the network, intelligence of a person (identified by his/her device) can be generated and his/her access right can be properly controlled.
[10] 3. There is no need to concern about leakage of data beyond the proximity of a home and there is no need to try to change anything of set parameters for this purpose.
[11] 4. There is no need to try to protect data in a ubiquitous information network which has been widely introduced. Description of Drawings
[12] The above and other features and advantages of the present invention will become more apparent by describing in detail exemplary embodiments thereof with reference to the attached drawings in which:
[13] FlG. 1 is a view showing an example of devices connecting to a home network;
[14] FlG. 2 is a view showing an example of a residential gateway;
[15] FlG. 3 is a view showing a method of providing access rights according to an embodiment of the present invention; and
[16] FlG. 4 is a view showing a central access device according to an embodiment of the present invention.
[17] <Description of Reference Numerals Indicating Primary Elements in the Drawings>
[ 18] GPS : Global Positioning System
[ 19] HTTP: HyperText Transfer Protocol
[20] HTTPS : HTTP over SSL
[21 ] ISP: Internet Service Provider
[22] IP: Internet Protocol
[23] RG: Residential Gateway
[24] SSL: Secure Sockets Layer
[25] UpnP: Universal Plug & Play
[26] VPN: Virtual Private Network
[27] WAN: Wide Area Network
Best Mode
[28] According to an aspect of the present invention, there is provided a method of providing access rights based on proximity of a mobile device by a central access device in a home network to the mobile device in order to connect the mobile device to the home network, the method comprising: determining proximity showing how close the mobile device is to the central access device when the mobile device connects to the central access device; and granting an access right to the mobile device according to the determined proximity.
[29] According to another aspect of the present invention, there is provided a central access device providing access rights based on proximity of a mobile device in order to connect the mobile device to a home network, the central access device comprising: a proximity determination unit which determines the proximity showing how close the mobile device is to the central access device when the mobile device connects to the central access device; and an access right grant unit which grants an access right according to the proximity determined for the mobile device.
[30] The proximity determination unit may determine the proximity of the mobile device based on a type of a network on which the mobile device connects to the central access device. The proximity determination unit may determine that the mobile device connects inside the home network when the mobile device connects by using a short- distance wireless communication link, and determine that the mobile device connects outside the home network when the mobile device connects by using a long-distance communication link. The access right grant unit may determine to encrypt data provided to the mobile device when it is determined that the mobile device connects outside the home network.
[31] The proximity determination unit may determine a position of the mobile device based on strength of signals transmitted from the mobile device. The access right grant unit may determine to encrypt data provided to the mobile device when it is determined that the position of the mobile device determined based on the strength of the signals is further than a reference distance.
[32] The central access device may be a residential gateway.
Mode for Invention
[33] Hereinafter, a method of providing access rights based on device proximity and a central access device used for the method according to exemplary embodiments of the present invention will be described in detail with reference to the attached drawings.
[34] FlG. 1 is a view showing an example of devices connecting to a home network.
[35] Referring to FlG. 1, the devices connecting to the home network 120 include external mobile devices 100 and 110 and an internal mobile device 122.
[36] The external mobile devices 100 and 110 may connect to the home network 120 through the Internet 105 or using a wireless connection 115.
[37] The home network 120 has a device for performing access control so as to allow the mobile device to connect to the home network 120. The device is called a central access device. In FlG. 1, as an example of the central access device, a residential gateway (RG) 124 is shown.
[38] In the home network 120, a content hosting device 126, a media server device 128, and the like are connected in order to provide services to the devices connecting to the home network 120. The content hosting device 126, the media server device 128, and the like are also connected to the central access device (the residential gateway 124 in FIG. 1).
[39] In a home networking environment, the central access device (the central access device is generally the residential gateway) has to have intelligence necessary to decide whether or not to give a needed access right based on a position of a user while the user is connecting to the home network 120. This is generally applied only to the mobile device.
[40] A rationale for this is to prevent pilferage into the home network by a user who is not known when the mobile device is far from the home. This is because a remote device cannot confirm whether or not the user is a right user by using only the device connecting to the home network 120. Examples of a short-distance wireless communication link may include WiFi and Bluetooth. On the contrary, examples of a longdistance wireless communication link may include worldwide interoperability for microwave access (WiMax) and 3G. External connection is performed on a VPN or a HTTPS link due to security reasons. In order to activate the home network itself and provide seamless transactions for checking devices and services provided from the devices, standards such as UPNP exist.
[41] The RG 124 is the only device for providing heterogeneous connectivity in order to satisfy needs of various devices in the home network 120. The mobile devices can support one or more connection types for supporting different connection requests. The mobile devices use available network types based on proximity for device networks. Proximity information is based on a type of a network connecting a user device to the central access device. This can be improved based on the position within connection with the same type (for example, based on simple parameters such as strength of a signal) in order to find the proximity information without using a technology such as GPS.
[42] According to the embodiment of the present invention, a plurality of intelligence can be implemented. For example, there is an access right policy used with encryption. In addition, there is encryption of plural levels employed with a simple access policy.
[43] The RG as a device having a plurality of communication interfaces may provide application logic needed for a needed result. In this case, finding the proximity information from a connected interface and analysis are required.
[44] The home network is a network of internal and neighboring devices for providing communication links therebetween. The communication links may be used for various purposes such as data transmission, device control, or other purposes generally required in a home. In the market, various standards formed for the purposes exist.
[45] FIG. 2 is a view showing an example of the RG. The RG is a device for providing heterogeneous connectivity for satisfying requirements of various devices in the home network.
[46] The RG is a central device which is unchangeable to activate operations over the entire home network and serves as a hub of the system. Roles of the RG are to provide connectivity having a plurality of types for seamless connection between the devices in the network and perform data conversion/code conversion for meaningful interactions between the devices when required. In addition, the RG serves as a device interfacing with the home network and an external system (that is, the Internet world). Accordingly, the RG includes communication interfaces, media codes, and conversion devices having various types.
[47] According to the embodiment of the present invention, a seamless mechanism for controlling access rights between the home network and the devices using the characteristics of the RG is provided.
[48] The types of the communication interfaces provided by the RG are based on types of connection needed for the devices neighboring to the home. In addition, the communication links have ranges so that the communication links can practically provide services. More specifically, the communication links are limited by their proximity between two devices that can communicate. For example, there is a short-distance communication link mainly provided inside the home network. In addition, there is a long-distance communication service which is conventionally provided by an external provider and has a charge for services.
[49] In the home network, access permission always can be defined and is determined using various standards. A conventional method widely performed in the market is performed by identifying a user using login details based on identification of a needed access right set for the user.
[50] According to the embodiment of the present invention, the permission standards are defined according to a type of connection for deciding his/her access right. The access rights may be a set of permissions defined in advance ideally by a person who has rights to decide the access rights (for example, an owner of the house).
[51] Therefore, an assumption that the devices have wireless ability is needed. When the mobile device has a different access right for the same device based on a connecting position, the devices have connectivity with a plurality of types for the mobile devices. Another assumption is that when the user has close proximity in the home network, the user uses a short-distance link, and when the user has far proximity, the user uses a long-distance link. When the devices have one or more communication interfaces, the mobile device operates according to the same thumb rule. This is because it is economically helpful to these options. The house owner sets needed permission conditions for the devices and this provides a needed access to the house.
[52] FIG. 3 is a view showing a method of providing access rights according to an embodiment of the present invention.
[53] First, the mobile device 10 is connected to the home network by connecting to the central access device 20 (operation S200). Here, it is assumed that the mobile device 10 is connected to the home network by an optimal method for the mobile device 10. For example, when a device in the home network is possible to connect to the central access device 20 through the short-distance wireless communication link, the device does not connect to the central access device 20 through the long-distance communication link. [54] The central access device 20 determines proximity of the mobile device 10 (op eration S210) and grants an access right to the mobile device 10 according to the determined proximity (operation S220). [55] The central access device 20 connects to a home network device 30 requested to connect by the mobile device 10 in a proper method according to the access right
(operation S230). [56] FlG. 4 is a view showing a central access device according to an embodiment of the present invention. Referring to FlG. 4, the central access device 300 includes a proximity determination unit 310 and an access right grant unit 320. [57] When the mobile device 10 connects to the central access device 20, the proximity determination unit 310 determines proximity showing how close is the mobile device
10 to the central access device 20. [58] The access right grant unit 320 may grant a different access right to the mobile device 10 according to the determined proximity.
[59] An embodiment according to the present invention is as follows.
[60] - Little son Jerry of Tom has his personal e-book reader and connects to a complete collection of digital books which are his family's favorite through the e-book reader at home, and the connection to their central media server is always available. [61] - However, Jerry always brings the e-book reader wherever he goes, and his friends want to read a book by using his e-book reader through connecting to the media server
(and they want to share their books). [62] - For this reason, Tom sets a remote access permission to his e-book reader to allow
Jerry to connect to data based on his proximity. [63] - When he is at home or near the home, he can perfectly connect to the family' s collection, and when he goes out, he has a limited connection to a few selected digital books. [64] - All operations are controlled by a residential gateway and its remote access control intelligence. [65] This is a simple embodiment as an application model. In addition, other scenarios using these characteristics can be used. [66] According to another embodiment, a short-distance interaction uses non-encrypted data access, and a long-distance data access is encrypted to the same person and forms an additional layer for protecting data for the device in the home network. [67] In addition, another embodiment is described as follows.
[68] The access rights for the devices in the home network were described. However, this can be easily extended to other fields.
[69] There are several examples.
[70] 1. When a mobile device becomes distant more than predetermined proximity, data is encrypted.
[71] 2. When the mobile device becomes distant more than predetermined proximity, a control device is operated. For example, when a person goes out of his house while keeping his wireless device, as proximity of the wireless device becomes distant, an air conditioner may be controlled to be turned off.
[72] The aforementioned operations require different logics of the residential gateway in order to arrive at a needed decision based on the proximity information transmitted from each of the devices. For example, the access rights are accomplished by examining the set access right policy, and encryption is generated by using an encryption engine.
[73] The invention can also be embodied as computer readable codes on a computer readable recording medium. The computer readable recording medium is any data storage device that can store data which can be thereafter read by a computer system. Examples of the computer readable recording medium include read-only memory (ROM), random-access memory (RAM), CD-ROMs, magnetic tapes, floppy disks, optical data storage devices, and carrier waves (such as data transmission through the Internet).
[74] While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the present invention as defined by the appended claims.

Claims

Claims
[ 1 ] L A method of providing access rights based on proximity of a mobile device by a central access device in a home network to the mobile device in order to connect the mobile device to the home network, the method comprising: determining proximity showing how close the mobile device is to the central access device when the mobile device connects to the central access device; and granting an access right to the mobile device according to the determined proximity.
[2] 2. The method of claim 1, wherein the determining proximity of the mobile device comprises determining the proximity of the mobile device based on a type of a network via which the mobile device connects to the central access device.
[3] 3. The method of claim 2, wherein the determining the proximity of the mobile device based on the type of the network via which the mobile device connects to the central access device comprises: when the mobile device connects by using a short-distance wireless communication link, determining that the mobile device connects inside the home network; and when the mobile device connects by using a long-distance communication link, determining that the mobile device connects outside the home network.
[4] 4. The method of claim 3, wherein the granting an access right to the mobile device comprises determining to encrypt data provided to the mobile device when it is determined that the mobile device connects outside the home network.
[5] 5. The method of claim 1, wherein the determining proximity of the mobile device comprises determining a position of the mobile device based on strength of signals transmitted from the mobile device.
[6] 6. The method of claim 5, wherein the granting an access right to the mobile device comprises determining to encrypt data provided to the mobile device when it is determined that the position of the mobile device determined based on the strength of the signals is further than a reference distance.
[7] 7. The method of claim 1, wherein the central access device is a residential gateway.
[8] 8. A central access device providing access rights based on proximity of a mobile device in order to connect the mobile device to a home network, the central access device comprising: a proximity determination unit which determines the proximity showing how close the mobile device is to the central access device when the mobile device connects to the central access device; and an access right grant unit which grants an access right according to the proximity determined for the mobile device.
[9] 9. The central access device of claim 8, wherein the proximity determination unit determines the proximity of the mobile device based on a type of a network via which the mobile device connects to the central access device.
[10] 10. The central access device of claim 9, wherein the proximity determination unit determines that the mobile device connects inside the home network when the mobile device connects by using a short-distance wireless communication link, and determines that the mobile device connects outside the home network when the mobile device connects by using a long-distance communication link.
[11] 11. The central access device of claim 10, wherein the access right grant unit determines to encrypt data provided to the mobile device when it is determined that the mobile device connects outside the home network.
[12] 12. The central access device of claim 8, wherein the proximity determination unit determines a position of the mobile device based on strength of signals transmitted from the mobile device.
[13] 13. The central access device of claim 12, wherein the access right grant unit determines to encrypt data provided to the mobile device when it is determined that the position of the mobile device determined based on the strength of the signals is further than a reference distance.
[14] 14. The central access device of claim 8, wherein the central access device is a residential gateway.
[15] 15. A computer-readable medium having embodied thereon a computer program for a method of providing access rights based on proximity of a mobile device by a central access device in a home network to a mobile device in order to connect the mobile device to the home network, wherein the method comprising: determining proximity showing how close the mobile device is to the central access device when the mobile device connects to the central access device; and granting an access right to the mobile device according to the determined proximity.
PCT/KR2007/003329 2006-07-10 2007-07-10 Method of providing access rights based on device proximity and central access device used for the method Ceased WO2008007884A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US12/301,738 US20090254980A1 (en) 2006-07-10 2007-07-10 Method of providing access rights based on device proximity and central access device used for the method

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
IN1210CH2006 2006-07-10
IN1210/CHE/2006 2006-07-10
KR10-2007-0015098 2007-02-13
KR1020070015098A KR20080005840A (en) 2006-07-10 2007-02-13 Method of providing access based on device proximity and central access device for same

Publications (1)

Publication Number Publication Date
WO2008007884A1 true WO2008007884A1 (en) 2008-01-17

Family

ID=38923412

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2007/003329 Ceased WO2008007884A1 (en) 2006-07-10 2007-07-10 Method of providing access rights based on device proximity and central access device used for the method

Country Status (1)

Country Link
WO (1) WO2008007884A1 (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2251808A3 (en) * 2009-05-15 2011-03-02 NEC Corporation Wireless communication system
US7933285B2 (en) 2008-10-24 2011-04-26 At&T Intellectual Property I, L.P. Distributed digital subscriber line access multiplexers to increase bandwidth in access networks
US20110302632A1 (en) * 2009-01-16 2011-12-08 David Garrett Method and System for Supporting Visitor Access Via a Broadband Gateway
US8275262B2 (en) 2008-11-10 2012-09-25 At&T Intellectual Property I, L.P. Methods and apparatus to deploy fiber optic based access networks
US20150074775A1 (en) * 2013-09-06 2015-03-12 Pradeep Nambiar System and Method To Enhance Personal Server Security Using Personal Server Owner's Location Data
US9736022B2 (en) 2009-07-29 2017-08-15 At&T Intellectual Property I, L.P. Methods and apparatus to upgrade communication services in subscriber distribution areas

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003098868A1 (en) * 2002-05-17 2003-11-27 Nokia Corporation Method and system in a digital wireless data communication network for arranging data encryption and corresponding server
KR20040028090A (en) * 2002-09-28 2004-04-03 주식회사 케이티 Method for providing private network service and public network service by wireless lan network
WO2004043006A1 (en) * 2002-11-06 2004-05-21 China Iwncomm Co., Ltd A method for the access of the mobile terminal to the wlan and for the data communication via the wireless link securely
KR20050066052A (en) * 2003-12-26 2005-06-30 한국전자통신연구원 Selective identification system based identification policies and identification method therefor

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003098868A1 (en) * 2002-05-17 2003-11-27 Nokia Corporation Method and system in a digital wireless data communication network for arranging data encryption and corresponding server
KR20040028090A (en) * 2002-09-28 2004-04-03 주식회사 케이티 Method for providing private network service and public network service by wireless lan network
WO2004043006A1 (en) * 2002-11-06 2004-05-21 China Iwncomm Co., Ltd A method for the access of the mobile terminal to the wlan and for the data communication via the wireless link securely
KR20050066052A (en) * 2003-12-26 2005-06-30 한국전자통신연구원 Selective identification system based identification policies and identification method therefor

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7933285B2 (en) 2008-10-24 2011-04-26 At&T Intellectual Property I, L.P. Distributed digital subscriber line access multiplexers to increase bandwidth in access networks
US8275262B2 (en) 2008-11-10 2012-09-25 At&T Intellectual Property I, L.P. Methods and apparatus to deploy fiber optic based access networks
US8582971B2 (en) 2008-11-10 2013-11-12 At&T Intellectual Property I, L.P. Method and apparatus to deploy fiber optic based access networks
US8965205B2 (en) 2008-11-10 2015-02-24 At&T Intellectual Property I, L.P. Methods and apparatus to deploy fiber optic based access networks
US20110302632A1 (en) * 2009-01-16 2011-12-08 David Garrett Method and System for Supporting Visitor Access Via a Broadband Gateway
US9167005B2 (en) * 2009-01-16 2015-10-20 Broadcom Corporation Method and system for supporting visitor access via a broadband gateway
EP2251808A3 (en) * 2009-05-15 2011-03-02 NEC Corporation Wireless communication system
US9736022B2 (en) 2009-07-29 2017-08-15 At&T Intellectual Property I, L.P. Methods and apparatus to upgrade communication services in subscriber distribution areas
US20150074775A1 (en) * 2013-09-06 2015-03-12 Pradeep Nambiar System and Method To Enhance Personal Server Security Using Personal Server Owner's Location Data

Similar Documents

Publication Publication Date Title
US20090254980A1 (en) Method of providing access rights based on device proximity and central access device used for the method
US20240414213A1 (en) Automated service enrollment in a machine-to-machine communications network
Filkins et al. Privacy and security in the era of digital health: what should translational researchers know and do about it?
JP6599341B2 (en) Method, device and system for dynamic network access management
US9489787B1 (en) Short-range device communications for secured resource access
US7865718B2 (en) Computer-readable recording medium recording remote control program, portable terminal device and gateway device
US9059995B2 (en) Delegating or transferring of access to resources between multiple devices
US9584482B2 (en) Access control lists for private networks of system agnostic connected devices
CN104081799B (en) Social focus
KR101926134B1 (en) Method of providing user-specific intergrated data services to car-sharing vehicles and system for it
US9319412B2 (en) Method for establishing resource access authorization in M2M communication
US20140127994A1 (en) Policy-based resource access via nfc
CN103793656B (en) The safety realized by metadata telegon
EP3066857A1 (en) Sharing of credentials for a wi-fi network based on social network contacts
WO2008007884A1 (en) Method of providing access rights based on device proximity and central access device used for the method
US20100036950A1 (en) Method and apparatus for providing home contents
JP2016530605A (en) Trust heuristic model to reduce control load in IoT resource access network
TW201807961A (en) End-to-end architecture, API framework, discovery, and access in a virtualized network
CN113596165A (en) Service layer registration
EP2741465B1 (en) Method and device for managing secure communications in dynamic network environments
TW201032626A (en) Dynamic access to radio networks
JP2010507864A (en) Domain management method, domain device, and program
Kiourtis et al. Improving Health Information Exchange through Wireless Communication Protocols
JP2019047239A (en) Packet filtering device
US20210112035A1 (en) Apparatus and method for secure communication over restricted network

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07768668

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 200780010837.2

Country of ref document: CN

WWE Wipo information: entry into national phase

Ref document number: 12301738

Country of ref document: US

NENP Non-entry into the national phase

Ref country code: DE

NENP Non-entry into the national phase

Ref country code: RU

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1)EPC

122 Ep: pct application non-entry in european phase

Ref document number: 07768668

Country of ref document: EP

Kind code of ref document: A1