WO2014025829A2 - Systems and methods for connecting to local services from wan and lan - Google Patents

Systems and methods for connecting to local services from wan and lan Download PDF

Info

Publication number
WO2014025829A2
WO2014025829A2 PCT/US2013/053864 US2013053864W WO2014025829A2 WO 2014025829 A2 WO2014025829 A2 WO 2014025829A2 US 2013053864 W US2013053864 W US 2013053864W WO 2014025829 A2 WO2014025829 A2 WO 2014025829A2
Authority
WO
WIPO (PCT)
Prior art keywords
network
connection
network interface
cellular
wireless
Prior art date
Application number
PCT/US2013/053864
Other languages
French (fr)
Other versions
WO2014025829A3 (en
Inventor
Carl W. Werner
Ajay Sahai
Original Assignee
Rambus Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Rambus Inc. filed Critical Rambus Inc.
Publication of WO2014025829A2 publication Critical patent/WO2014025829A2/en
Publication of WO2014025829A3 publication Critical patent/WO2014025829A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/256NAT traversal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2592Translation of Internet protocol [IP] addresses using tunnelling or encapsulation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • H04W76/15Setup of multiple wireless link connections
    • H04W76/16Involving different core network technologies, e.g. a packet-switched [PS] bearer in combination with a circuit-switched [CS] bearer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5007Internet protocol [IP] addresses
    • H04L61/5014Internet protocol [IP] addresses using dynamic host configuration protocol [DHCP] or bootstrap protocol [BOOTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/02Terminal devices
    • H04W88/06Terminal devices adapted for operation in multiple networks or having at least two operational modes, e.g. multi-mode terminals

Definitions

  • the disclosure generally relates to systems and methods for connecting to multiple networks from a single device with multiple network interfaces, and more particularly for connecting to local services from WAN and LAN while using cellular and wifi access radios respectively to connect to network services.
  • cellular data devices must typically be purchased preconfigured to operate over pre-selected owned networks; or in some cases the devices will be provisioned by the operators or their agents by the programming of an "identity module” (e.g.: SIM, UIM, RUIM, MEID, ⁇ , smartcard, etc.) and inserting the module into the device.
  • identity module e.g.: SIM, UIM, RUIM, MEID, ⁇ , smartcard, etc.
  • cellular data devices can be provisioned at point-of-sale by an authorized agent who accesses a service provider's billing system to provision the cellular data device and associate the device with particular services.
  • the cellular service and device can alternately be provisioned by a retail agent or DAAS provider, such as amazon.com.
  • DAAS provider such as amazon.com.
  • cellular devices must be provisioned by the service provider or their agent.
  • provisioning may require that a physical device, such as a CDMA phone from Sprint or Verizon, be present and attached to a programmer.
  • a user identity module such as a Subscriber Identity Module (SIM) may be programmed by the service provider or agent for the specific provider network and inserted into the device.
  • SIM Subscriber Identity Module
  • UE smartphone devices
  • operator services e.g. services within a wall garden
  • 3GPP radio technologies allow devices to be connected to more than one service (e.g. operator and Internet), usually with the help of multiple APNs.
  • Enterprise users may have access to enterprise-based services (email, calendar, etc.) through a pre-authorized service arrangement between the enterprise and the service provider (e.g. Blackberry).
  • enterprise-based services email, calendar, etc.
  • service provider e.g. Blackberry
  • Cellular operators are deploying small 3GPP/3GPP2 base-stations (femtocells, Home eNB, etc.) for use within the home or enterprise. These devices carry cellular traffic over the local internet service provider (ISP), but do not provide access to home network resources.
  • ISP internet service provider
  • Wi-Fi access points are commonly used for home networking and consumers may use their mobile devices over WLAN.
  • the device can connect and obtain a single IP address from the AP and use it to reach destinations since the AP/gateway is typically connected to the internet in residential applications.
  • Local services can also be accessed; however, there are a few issues, over WLAN today.
  • a mobile device using WLAN cannot access services in the operator walled garden, e.g., VoIP services.
  • 3GPP (Rel. 6).
  • I- WLAN and UMA defined ways for the mobile device to connect over WLAN to a remote service.
  • these solutions required software clients in the devices and have not become popular.
  • these solutions did not allow the UE to be simultaneously connected over a WLAN interface to both operator walled garden and local services.
  • Machine-to-machine (M2M) communications and Device as a Service (DAAS) business models both increasingly rely on private networks to carry traffic.
  • Machine-to-machine models include building control, security, industrial control and services that happen without user interaction.
  • DAAS includes devices such as the Kindle where merchandise or content is paid but the price of network access and data traffic is implicit in the cost of the transaction.
  • the choice of network interface may be driven not by a consumer's network choice but by the device provider or availability of a network. This choice may vary by geography or other factors secondary to the device operation, and may not be known until the device is put into service.
  • cellular data devices must be purchased preconfigured to operate over preselected owned networks; or in some cases the devices will be provisioned by the operators or their agents by the programming of an "identity module” (e.g.: SIM, UIM, RUIM, MEID, EIN, smartcard, etc.) and inserting the module into the device.
  • identity module e.g.: SIM, UIM, RUIM, MEID, EIN, smartcard, etc.
  • Figure 1 illustrates a mobile device connecting to a provider network and local network in accordance with certain embodiments of the invention.
  • Figure 2 illustrates a mobile device connecting to a provider network and local network in accordance with certain embodiments of the invention.
  • Figure 3 illustrates a device with multiple network interfaces in accordance with certain embodiments of the invention.
  • Figure 4 illustrates a device with multiple network interfaces in accordance with certain embodiments of the invention.
  • Figure 5 illustrates a wireless access point in accordance with certain embodiments of the invention.
  • a system for enabling a device to connect to multiple networks comprising: a first network interface; a second network interface; and a control layer for enabling the device to perform two or more of: connecting to a cellular provider network using the first network interface to establish a first connection, connecting to the cellular provider network using the second network interface to establish a second connection, and connecting to a local area network using the second network interface to establish a third connection.
  • the third IP address may be obtained from an authority other than a cellular provider.
  • the first IP address and the second IP address may be obtained from an Internet Service Provider.
  • the first IP address and the second IP address may be obtained from the local area network.
  • the control layer may further configured to enable the device to connect to the cellular provider network using the first network interface and the second network interface.
  • the control layer may be further configured to enable the device to maintain the first connection, the second connection and the third connection simultaneously.
  • the control layer may be further configured to obtain a first IP address for the first connection, a second IP address for the second connection and a third IP address for the third connection.
  • Establishing a first connection may comprise obtaining an IP address from the cellular provider network for the first connection
  • establishing a second connection may comprise obtaining an IP address from the cellular provider network for the second connection
  • establishing a third connection may comprise obtaining an IP address from the local area network for the third connection.
  • the control layer may be further configured to enable the device to maintain the second connection and the third connection simultaneously.
  • the first network interface may comprise a cellular network interface.
  • the second network interface may comprise a wireless network interface.
  • a system for enabling a device to connect to multiple networks comprising: a first network interface; a second network interface; and a control layer for coordinating communication via the first network interface and the second network interface, wherein the control layer enables the device to connect to a first network and a second network simultaneously.
  • the device may comprise a selected one of a mobile device and a wireless access point.
  • the first network interface may comprise a cellular network interface.
  • the second network interface may comprise a wireless local area network interface.
  • the first network comprises a cellular provider network.
  • the second network comprises a wireless local area network.
  • the control layer may be configured to enable the device to simultaneously maintain a first connection to the first network via the first network interface and a second connection to the second network via the second network interface.
  • the control layer may be configured to enable the device to maintain a first connection to the first network and a second connection to the second network via the first network interface.
  • the control layer may be configured to enable the device to maintain a first connection to the first network and a second connection to the second network via the second network interface.
  • a mobile device for connecting to multiple networks comprising: a cellular network interface; a wireless network interface; and a control layer for coordinating communication via the cellular network interface and the wireless network interface, whereby the mobile device is configured to connect to a cellular provider network and a wireless local area network simultaneously.
  • the mobile device may be configured to maintain a first connection to the cellular provider network via the cellular network interface and a second connection with the wireless local area network via the wireless network interface.
  • the mobile device may be configured to maintain a connection to the cellular provider network and the wireless local area network simultaneously via the cellular network interface.
  • the mobile device may be configured to maintain a connection to the cellular provider network and the wireless local area network simultaneously via the wireless network interface.
  • the mobile device is configured to access the wireless local area network via the cellular network interface.
  • the mobile device may be configured to access the cellular provider network via the wireless network interface.
  • the mobile device may be configured to access at least one networked device connected to the wireless local area network via the cellular network interface.
  • the at least one networked device may comprise at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device, an audio speaker, a media player, a television, and a security camera.
  • a Wireless Access Point comprising: a wireless network interface; and a local services gateway for controlling connections using the wireless network interface to a remote network and a local network, such that: when connected to the remote network, a downlink channel is used for accessing a service on the local network, and when connected to the local network, an uplink channel is used for accessing a service offered by the remote network.
  • the remote network may comprise a cellular provider network.
  • the wireless network interface may comprise a selected one of a wifi interface, an Ethernet interface, a cellular interface, a telecom based broadband services interface, and a broadband services interface over coax.
  • the local services gateway may be configured to obtain a network address from the remote network.
  • the local services gateway may be configured to assign a locally addressable network address to the wireless access point.
  • a wireless access point for connecting to multiple networks comprising: a first wireless network interface; and a local services gateway for connecting the wireless access point to a cellular provider network and a local area network simultaneously.
  • the first wireless network interface is configured to connect to a second wireless network interface in a mobile device.
  • the wireless access point may further comprise a first cellular network interface for connecting to a second cellular network interface in a mobile device.
  • the local services gateway may be configured for obtaining a cellular network address from a services gateway in the cellular provider network.
  • the local services gateway may be configured to provide access to one or more local network devices from the cellular provider network.
  • the one or more local network devices comprises at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device and a security camera, a tablet, TV, game console or any media player, home security system, home gateway appliance (e.g., a connected refrigerator, oven, etc.).
  • the wireless access point may further comprise an authentication device for authenticating the wireless access point to the cellular provider network.
  • the authentication device may comprise at least one of a SIM card, a credential and a token, an embedded security module, an embedded security protocol processor and a cryptographic engine.
  • the security credential can be on the same chip or on a separate chip.
  • a method for connecting a device to multiple networks comprising: providing a first network interface; providing a second network interface; and establishing a first connection to a first network and a second connection to a second network, whereby the device is simultaneously connected to the first network and the second network.
  • the device may comprise a selected one of a mobile device and a wireless access point.
  • the first network interface may comprise a cellular network interface.
  • the second network interface may comprise a wireless local area network interface.
  • the first network may comprise a cellular provider network.
  • the second network may comprise a wireless local area network.
  • the first connection is made via the first network interface and the second connection is made via the second network interface.
  • the first connection and the second connection are made via the first network interface.
  • the first connection and the second connection are made via the second network interface.
  • a method for connecting a mobile device to multiple networks comprising: providing a cellular network interface; providing a wireless network interface; and establishing a first connection to a cellular provider network and a second connection to a wireless local area network, whereby the device is simultaneously connected to the cellular provider network and the wireless local area network.
  • the first connection is made via the cellular network interface and the second connection is made via the wireless network interface.
  • the first connection and the second connection are made via the cellular network interface.
  • the first connection and the second connection are made via the wireless network interface.
  • the method may further comprise accessing the wireless local area network via the cellular network interface.
  • the method may further comprise accessing the cellular provider network via the wireless network interface.
  • the method may further comprise accessing at least one networked device connected to the wireless local area network via the cellular network interface.
  • the at least one networked device may comprise at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device, an audio speaker, a media player, a television, and a security camera
  • a method for connecting a wireless access point to multiple networks comprising: connecting a wireless access point to a local area network; connecting the wireless access point to a cellular provider network, thereby connecting the wireless access point to the cellular provider network and the local area network simultaneously.
  • the step of connecting the wireless access point to the local area network may comprise obtaining a local area network address for the wireless access point.
  • the step of connecting the wireless access point to the cellular provider network comprises obtaining a cellular network address for the wireless access point from the cellular provider network.
  • the method may further comprise providing access to one or more local network devices from the cellular provider network via the wireless access point.
  • the one or more local network devices may comprise at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device and a security camera.
  • the step of connecting the wireless access point to the cellular provider network may comprise authenticating the wireless access point to the cellular provider network.
  • the step of authenticating may comprise authenticating with at least one of a SIM card, a credential and a token.
  • the method may further comprise connecting the wireless access point to a mobile device to provide the mobile device with access to the local area network and the cellular network simultaneously.
  • a device is disclosed with multiple communications interfaces where a subscription based private network interface (e.g., 3GPP) may be provisioned and/or configured through a second communication port (e.g., WLAN, USB) connected to a second network when user connects the device to a network through the second interface.
  • a subscription based private network interface e.g., 3GPP
  • a second communication port e.g., WLAN, USB
  • Machine-to-machine (M2M) communications and Device as a Service (DAAS) business models both increasingly rely on private networks to carry traffic.
  • Machine -to-machine models include building control, security, industrial control and services that happen without user interaction.
  • DAAS includes devices such where merchandise or content is paid but the price of network access and data traffic is implicit in the cost of the transaction.
  • the choice of network interface may be driven not by a consumer's network choice but by the device provider or availability of a network. This choice may vary by geography or other factors secondary to the device operation, and may not be known until the device is put into service.
  • Cellular chipsets have reached a very high level of integration including RF transceiver functions, baseband signal processing, application processors, and bridge functions for managing multiple secondary interfaces (USB, GMII, IIC, WLAN etc.).
  • RF transceiver functions including RF transceiver functions, baseband signal processing, application processors, and bridge functions for managing multiple secondary interfaces (USB, GMII, IIC, WLAN etc.).
  • Present levels of integration and software defined radio support having a RF front-end and transceiver combination that support multiple service operators and access networks. Consumer devices that require connectivity may be assembled and sold with minimal knowledge of the networks on which they will be deployed.
  • the foregoing developments have the potential to simplify manufacturer supply chain and retail distribution of connected devices to consumers, avoiding the current need for maintaining separate inventories of the same device, each preconfigured for a different provider network.
  • a device with multiple communications interfaces where a subscription based private network interface which may include without limitation 3GPP, GPRS, 1XRTT, EVDO, LTE, Wi-Max, ALTE, HSPA, HSPA+, WCDMA Wireless - Wifi (also including TV white spaces and other unregulated bands), a wireless network interface operating in any of 2.14, 5, 60 Ghz bands), may be provisioned and/or configured through a second communication port (e.g. WLAN, USB) connected to a second network when the user connects the device to a network through the second interface.
  • the terminal may establish a connection to a server in the provider network through the second communication port on the terminal.
  • the server may communicate through the second communication port to configure at least a circuit or parameter in the private network interface.
  • At least one of an RF circuit, a baseband circuit, or an identity module may be configured through the second communication port or interface.
  • the second communication port or interface may comprise a WLAN, Ethernet or other connection known to those of ordinary skill in the art for connecting to a second host which connects to the server on the service provider network.
  • the provisioning process may write or program a secure element required by the service provider network.
  • the secure element may comprise a user identity module, which can comprise hardware or software and may be removable from the user device or attached to the user device.
  • the user interface module may comprise a SIM, UIM, RUIM, MEID, EIN, smartcard or other form of user identity module known to those of ordinary skill in the art.
  • the user may initiate the process through a GUI or a setup executable.
  • the device may connect securely through a public network to an agent of the private network.
  • the private network agent can access parameters and configuration data on the private network interface by communicating through the public network.
  • the device may be connected to the private network directly, or through roaming arrangements, or through offloaded connections via public networks.
  • a terminal device with multiple interfaces may be delivered to a subscriber or user with at least one unprovisioned interface.
  • a terminal device 100 may comprise an Application/UI Layer 110 and a control layer 120. The control layer may be located above the MAC layer or near the physical layer.
  • the terminal device 100 may include a user interface module 130.
  • the terminal device 100 may include a configuration module 140.
  • the terminal device 100 may include a first interface 145, which may comprise a first MAC address 150 and a first physical address 160.
  • the terminal device 100 may include a second interface 165, which may comprise a second MAC address 170 and a second physical address 180.
  • the control layer 120 may provide access to second interface 165 via first interface 145 so as to provision second interface 165 to communicate with a service provider network.
  • Second interface 165 may be configured to be provisioned for one of a plurality of service provider networks.
  • second interface 165 may be configured to be provisioned for a second service provider network after being provisioned for a first service provider network.
  • UI layer 110 may initiate a communication session 155 with a network service provider via first interface 145.
  • the first network interface may comprise a selected one of a wireless local area network interface, an Ethernet connection, or a USB connection.
  • the service provider may message to control layer 120 to query and gain access to second interface 165.
  • a user may authorize the provisioning of second interface 165 by establishing an identity, subscription or billing relationship with the service provider or by reusing a preexisting identity, subscription or billing relationship with the service provider.
  • the second interface may comprise a cellular network interface, a satellite network interface or another service provider network interface known to those of ordinary skill in the art.
  • the cellular network interface may comprise a 3GPP interface.
  • the service provider may access the device through first interface 145 to provision second interface 165.
  • Provisioning may include provisioning of RF parameters, a baseband processor or user identity module 130 associated with terminal device 100.
  • Provisioning may comprise configuring a physical layer parameter, wherein the physical layer parameter may comprise at least one of an RF frequency parameter and a channel parameter.
  • Provisioning may comprise modifying a secure element to permit connection to the service provider network.
  • the secure element may comprise a user identity module which may comprise a SIM, UIM, RUIM, MEID, EIN, smartcard or other form of user identity module known to those of ordinary skill in the art.
  • Connection messages may be passed through first interface 145 to second interface 165 to establish trust and verification for the service provider. Once trust and verification is established, the foregoing initial setup connection using first interface 145 may be torn down. Once provisioned, applications may use second interface 165 to connect 175 to a service provider network.
  • the terminal device or user equipment (UE) 100 may use provisioned interface 165 to connect to a service provider network.
  • UE 100 may use first interface 145 to connect to a second network, which may not be connected to the service provider network.
  • the first interface 165 may be used to connect to a local area network via a wi-fi connection, an Ethernet connection, or other network connection known to those of ordinary skill in the art.
  • UE 210 may utilize first interface 145 to connect to WLAN AP 350.
  • first interface 145 and second interface 165 provide considerable flexibility to connect UE 100 to the provider network and the local network.
  • first interface 145 can be used to connect to a service provider network.
  • second interface 165 can be used to connect to the service provider network.
  • first interface 145 may be used to connect to a local area network.
  • Each connection can be created by obtaining an IP address from the respective network.
  • Control layer 120 may be configured to create and manage multiple network connections for a single UE 100.
  • control layer 120 may be configured to permit UE 100 to connect to a cellular provider network using a cellular network interface and a local network interface.
  • control layer 120 may be configured to permit UE 100 to establish a first connection to a cellular provider network using a cellular network interface, second connection to the cellular provider network using a local network interface and a third connection to a local area network using a second network interface, which may comprises without limitation a wireless interface, an Ethernet interface, or other network interface known to those of ordinary skill in the art.
  • the control layer 120 may be configured to maintain two or more of the first connection, the second connection and the third connection simultaneously.
  • Each of the first, the second and the third connections may be created by obtaining an IP address from the target network for the connection.
  • either the first interface 145 or the second interface may be used to obtain an IP address from the service provider network to enable UE 100 to access Operator IP Services 330 associated with the service provider network.
  • the first interface 145 may be used to obtain a first IP address from the service provider network and a second IP address from the local area network to enable the UE 100 to access Operator IP Services 330 associated with the service provider network and Local IP Services 370 via first interface 145.
  • the first interface 145 may be used to obtain a first IP address from the local area network and second interface 165 may be used to obtain a second IP address from the service provider network.
  • control layer 120 may be used to maintain multiple connections by enabling a single UE 100 to simultaneously have multiple IP addresses associated with multiple networks or multiple connections to the same network via multiple network interfaces.
  • the control layer 120 may be configured to establish a first connection to a cellular provider network and a second connection to a wireless local area network, whereby the device is simultaneously connected to the cellular provider network and the wireless local area network.
  • the first and second connections may be established via a wireless network interface.
  • the first and second connections may be established via a cellular network interface.
  • the first connection may be established via a cellular network interface and the second connection may be established via a wireless network interface.
  • the local area network may be accessed via the cellular provider network.
  • the cellular provider network may be accessed via the wireless network interface.
  • at least one networked device connected to the wireless local area network may be accessed via the cellular network interface.
  • a terminal device may be delivered to a subscriber or user with at least one unprovisioned interface 165.
  • a terminal device 200 may comprise an Application/UI Layer 110 and a control layer 120.
  • the terminal device 200 may include a user interface module 130.
  • the terminal device 100 may include a configuration module 140.
  • the terminal device 100 may include an unprovisioned interface 165, which may comprise a first MAC address 170 and a first physical address 180.
  • the unprovisioned interface 165 may comprise a cellular network interface, a satellite network interface or another service provider network interface known to those of ordinary skill in the art.
  • the cellular network interface may comprise a 3GPP network interface.
  • the control layer 120 may provide access to interface 165 via an executable program so as to provision interface 165 to communicate with a service provider network.
  • Interface 165 may be configured to be provisioned for one of a plurality of service provider networks.
  • interface 165 may be configured to be provisioned for a second service provider network after being provisioned for a first service provider network.
  • UI layer 110 may initiate a communication session with an executable program, which may reside in storage 210.
  • Storage 210 may comprise internal storage or external storage.
  • the executable program may message to control layer 120 to query and gain access to interface 165.
  • a user may authorize the provisioning of first interface 145 by providing identity, subscription or billing information associated with the service provider.
  • the executable program may then provision interface 165.
  • Provisioning may include provisioning of RF parameters, a baseband processor or user identity module 130 associated with terminal device 200. Provisioning may comprise configuring a physical layer parameter, wherein the physical layer parameter may comprise at least one of an RF frequency parameter and a channel parameter. Provisioning may comprise modifying a secure element to permit connection to the service provider network.
  • the secure element may comprise a user identity module which may comprise a SIM, UIM, RUIM, MEID, EIN, smartcard or other form of user identity module known to those of ordinary skill in the art.
  • Connection messages may be passed by the executable program to interface 165 to establish trust and verification for the service provider. Once provisioned, applications may use interface 165 to connect to a service provider network.
  • Provisioning may be initiated by user action through a software interface, an executable instruction stored on the terminal, or an executable instruction stored on a media or storage device coupled to the device.
  • a home network appliance e.g. home router with Wi-Fi access point
  • local IP resources e.g. printers, displays, storage
  • a local services gateway running as a software or firmware module in the home network appliance maintains a tunnel to a 3 GPP service provider gateway (S-GW).
  • S-GW 3 GPP service provider gateway
  • This local gateway obtains an address from the service gateway, once the 3 GPP UE is authenticated to S-GW (over either the 3 GPP network or through the Local gateway), the device can be made known to the local gateway and access the subscriber's home network through either network connection.
  • a UE using the WLAN AP may access services either in the local network or the operator's network.
  • the WLAN AP also may allow the UE to access local services from the operator network.
  • Certain embodiments have the further benefit of exposing fewer exceptions to a security policy. Certain embodiments alleviate the need for multiple UEs to expose multiple ports through the home LAN and for the local resources to require their own ports making them vulnerable. In certain embodiments, a local service gateway will expose only itself through the home LAN, and handle traffic to multiple UEs using this access.
  • Certain embodiments enable addressability of these terminals across disparate networks with separate address hosting (Dynamic Host Configuration Protocol (DHCP) or similar) authorities.
  • DHCP Dynamic Host Configuration Protocol
  • a local network may comprise a local services gateway.
  • the local services gateway may be disposed in a WLAN access point and may expose mobile capable devices to services in the local network while the mobile devices are using non-cellular or cellular access networks.
  • the local service gateway may maintain a tunnel from and/or to a cellular gateway.
  • a UE may access local network services while connected to any of a home mobile network, a visited mobile network, and a second LAN.
  • Certain embodiments provide local IP access service (LIPA) by turning an untrusted access point into a trusted device on a cellular provider network.
  • the access point may be established as a trusted Home Node B (HNB) or Home (e) Node B (HeNB) device on the provider network to permit access to services in the local network by UEs connected to the cellular provider network.
  • the local Packet Gateway/Gateway GPRS Support Node may obtain an IP address from a local DHCP server and maintain a tunnel with the cellular provider network Serving Gateway/Serving GPRS Support Node (S-GW/SGSN) to enable access to local services on the local area network by devices connected to the cellular provider network.
  • the local P- GW/GGSN may obtain an IP address from the local DHCP server to provide local access to authenticated terminals using non-cellular protocols.
  • authenticated devices may connect to local services via a wifi connection.
  • a UE 310 may be able to access Operator IP Services 330, the Internet 380, and Local IP Services 370.
  • the UE 310 may connect to Operator IP Services 330 and the Internet 380 via (e) Node B (eNB) 315, Serving Gateway (S- GW) 320, and Packet Gateway (P-GW) 325, which may reside in a service provider network.
  • eNB Node B
  • S- GW Serving Gateway
  • P-GW Packet Gateway
  • UE 310 may alternately or additionally connect to Local IP Services 370 via eNB 315, S-GW 320, WLAN AP 350 and L-P-GW 360.
  • the WLAN AP 350 may comprise Local Packet Gateway (L-P-GW) 360.
  • the WLAN AP 350 may also comprise DHCP 355.
  • L-P-GW 360 may be separate from but coupled to WLAN AP 350.
  • the local packet gateway 360 may create a connection to S-GW 320 which may be located in the operator gateway to permit UE 310 to connect to Local IP Services 370 from the provider network.
  • Local IP Services 370 may include one or more local network devices comprising one or more of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device, an audio speaker, a media player, a television, and a security camera.
  • L-P-GW 360 may act as a portal into the entire private network including Local IP Services 370, thus avoiding the necessity for a client on each local network device.
  • UE 310 may connect to Wireless Access Point 350.
  • the UE 310 may gain access to Local IP Services 370 via Wireless Access Point 350 and L-P-GW 360.
  • Wireless Access Point 350 may also or alternately connect to the provider network via S-GW 320.
  • a SaMOG capable access point as identified in 3GPP TR 23.852 connects to the packet core. Connection to the packet core may be via a connection between access point 350 in the local network to S-GW 320 in the provider network. Once access point 350 is connected to S-GW 320, the connection can be used to permit a UE 310 to access Operator IP Services 330, the Internet 380, and Local IP Services 370 through a connection between the UE 310 and access point 350 without the need for a direct connection between the UE 310 and the operator network. Such an access point 350 may also provide connectivity to the Internet. In certain embodiments a UE that can connect to both networks simultaneously (without a VPN client) may be used.
  • a UE enables simultaneous access by - the addition of a control layer within the UE that coordinates communication between the 3 GPP radio interface and WLAN interface on a 3GPP UE enables the authorization of trusted communication between the UE and the 3 GPP service gateway over the WLAN interface.
  • the control layer may exist above the MAC layer or it may exist near the physical layer.
  • the WLAN interface can establish connection to the 3 GPP S-GW or P-GW and establish connection to operator services or the internet.
  • the layer which controls the WLAN interface from the 3 GPP interface is important in that the 3GPP can establish trust with the UE and authorize the UE to connect to the service provider's network over the LAN using any security means required.
  • This mechanism would allow for authentication to (1) both an operator hotspot and access to the service gateway or (2) access to the service gateway through an established Wi-Fi connection such as the subscriber's home AP.
  • the WLAN interface supports multiple SSID connections, or if the UE has multiple WLAN interfaces, this invention allows a UE using the WLAN to access services local network over the second interface. The UE would be able to, for example, access a local printer or display, while connected to an operator service.
  • the 3 GPP network could control the use or access of that port to apps or services, for example permission only to print to a local printer, from an operator provided service.
  • WLAN AP 350 may comprise a SIDE A 510, a SIDE B 520 and service layer 530.
  • SIDE A 510 may comprise certain in home interfaces.
  • SIDE A may comprise a physical layer, a MAC Layer, and IP layer and a service layer.
  • the SIDE A physical layer may include without limitation an Ethernet interface or an 802.11 wireless interface, with corresponding MAC addresses in the MAC Layer for SIDE A 510, and corresponding IP addresses in the SIDE A 510 IP Layer.
  • the Service Layer 530 for SIDE A 510 may comprise without limitation Routing, DHCP, (No firewall), DNS server (or proxy).
  • SIDE B 520 may comprise certain broadband interfaces.
  • SIDE B may comprise a physical layer, a MAC Layer, and IP layer and a service layer.
  • the SIDE B physical layer may include without limitation one or more of a DSL interface, a Cable interface, a Fiber interface, or Wireless Broadband interface, with corresponding MAC addresses in the MAC Layer for SIDE B 520, and corresponding IP addresses in the SIDE B 520 IP Layer.
  • the Service Layer 530 for SIDE B 520 may comprise without limitation, a security firewall , NAT service, routing service, DHCP client, DNS client, and Management service
  • the WLAN AP 350 may comprise in between sides A and B, one or more of a Physical layer, which may be shared with Side A, a MAC layer, an EAP supplicant layer, an IP/IPSec Layer, a GTP tunnel, and an AAA layer.
  • the EAP Supplicant layer may talk to AAA 345, which may then talk to the provider network to authorize the WLAN AP 350 over the SIM.
  • the GTP tunnel may be used to VPN into the service provider core via IP/IPSec layer and via Side B.
  • the AAA layer may include an externally forwarding entity which may takes data from the 802.11 layer and forward it externally to Side B, thereby becoming an APN destination.
  • the AAA layer includes an internally forwarding entity to forward data to side A, a management layer, and a DHCP client.
  • the DHCP client may talk to side A, e.g., to a printer on side A.
  • the WLAN AP 350 may comprise a wireless network interface, a local services gateway for controlling connections using the wireless network interface to a remote network and a local network.
  • WLAN AP 350 may further comprise a home eNb (HeNB) or femtocell.
  • the wireless network interface may comprise wifi, Ethernet, cellular, telecom based broadband services such as DSL, broadband services over coax such as DOCSIS.
  • the remote network may comprise, without limitation, any of the service provider networks described above.
  • the local network may include any of the local area networks described above.
  • a downlink channel may be used for accessing a service on the local network, for example, by accessing the external service directly by connecting over the remote network.
  • an uplink channel may be used for accessing a service offered by the remote network.
  • the local network may be network address translated with an address assigned by DHCP authority within WLAN AP 350, thus providing a locally addressable address to UE 100 for accessing the local network.
  • the address to a gateway in the remote network may be assigned by the remote network's DHCP authority or equivalent.
  • WLAN AP 350 may be configured for connecting to a service provider network and a local area network simultaneously.
  • WLAN AP 350 may comprise a first cellular network interface for connecting to a second cellular network interface in a mobile device.
  • the first and second cellular network interfaces may comprise, without limitation, a core (including EPC, HSPA packet core, etc.), a 3gpp2 core, or a wimax network interface.
  • the WLAN AP 350 may comprise a local services gateway for connecting WLAN AP 350 to a cellular provider network and a local area network simultaneously.
  • the local services gateway may be configured for obtaining a cellular network address from a services gateway in the cellular provider network.
  • the local services gateway may be configured to provide access to one or more local network devices from the cellular provider network.
  • the one or more local network devices may comprise at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device and a security camera, a tablet, TV, game console or any media player, home security system, home gateway appliance (e.g., a connected refrigerator, oven, etc.).
  • home gateway appliance e.g., a connected refrigerator, oven, etc.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Systems and methods are disclosed for a mobile device (UE) with multiple network interfaces for connecting to a provider network and a local network. A WLAN AP is disclosed for providing access to local IP resources (e.g. printers, displays, storage) and connecting these resources to a provider's internet gateway. A local services gateway (L-P-GW) running as software or firmware in the WLAN AP maintains a tunnel to a service provider gateway (S- GW). This L-P-GW may obtain an IP address from the S-GW, once the UE is authenticated to S-GW, over either the provider network, or through the L-P-GW. The UE can be made known to the L-P-GW and access the subscriber's home network through either network connection. The UE may obtain a first IP address from the S-GW via a first network interface and a second IP address from the L-P-GW via a second network interface.

Description

SYSTEMS AND METHODS FOR CONNECTING TO LOCAL SERVICES FROM WAN AND LAN CROSS-REFERENCE TO RELATED APPLICATIONS
[0001] This application claims priority of United States Patent Application Number 61/680,225, entitled "Systems and Methods For Connecting To Local Services From WAN and LAN," and filed August 6, 2012. The entirety of the foregoing patent application is incorporated by reference herein.
BACKGROUND OF THE DISCLOSURE
[0002] 1. Field of the Disclosure
[0003] The disclosure generally relates to systems and methods for connecting to multiple networks from a single device with multiple network interfaces, and more particularly for connecting to local services from WAN and LAN while using cellular and wifi access radios respectively to connect to network services.
[0004] 2. General Background
[0005] Presently, cellular data devices must typically be purchased preconfigured to operate over pre-selected owned networks; or in some cases the devices will be provisioned by the operators or their agents by the programming of an "identity module" (e.g.: SIM, UIM, RUIM, MEID, ΕΓΝ, smartcard, etc.) and inserting the module into the device.
[0006] Alternately, cellular data devices can be provisioned at point-of-sale by an authorized agent who accesses a service provider's billing system to provision the cellular data device and associate the device with particular services. The cellular service and device can alternately be provisioned by a retail agent or DAAS provider, such as amazon.com. In the foregoing use cases, cellular devices must be provisioned by the service provider or their agent. For example, provisioning may require that a physical device, such as a CDMA phone from Sprint or Verizon, be present and attached to a programmer. Alternately a user identity module, such as a Subscriber Identity Module (SIM) may be programmed by the service provider or agent for the specific provider network and inserted into the device.
[0007] It is desirable to be able to provision a subscription based private network interface through a second communication port or interface connected to a second network without requiring a priori selection of provider network or physical presence of the device at a retail location or connection to the provider network.
[0008] Mobile subscribers using smartphone devices (UE) have perpetual access to internet services and operator services (e.g. services within a wall garden) for which they are authorized and the while the UE is within reception area of the cellular service provider. This is possible since 3GPP radio technologies allow devices to be connected to more than one service (e.g. operator and Internet), usually with the help of multiple APNs.
[0009] Enterprise users may have access to enterprise-based services (email, calendar, etc.) through a pre-authorized service arrangement between the enterprise and the service provider (e.g. Blackberry).
[0010] Consumers with UEs and home/enterprise networks do not have access to home resources (storage, printers, files, etc.) from their UEs when they are connected to networks outside the home/enterprise. Generally the home/enterprise network manager/service providers will not have relationships in place to bridge to cellular network operators.
[0011] Cellular operators are deploying small 3GPP/3GPP2 base-stations (femtocells, Home eNB, etc.) for use within the home or enterprise. These devices carry cellular traffic over the local internet service provider (ISP), but do not provide access to home network resources.
[0012] Wi-Fi access points (APs) are commonly used for home networking and consumers may use their mobile devices over WLAN. Typically when using WLAN the device can connect and obtain a single IP address from the AP and use it to reach destinations since the AP/gateway is typically connected to the internet in residential applications. Local services can also be accessed; however, there are a few issues, over WLAN today. For example, a mobile device using WLAN cannot access services in the operator walled garden, e.g., VoIP services. 3GPP (Rel. 6). I- WLAN and UMA defined ways for the mobile device to connect over WLAN to a remote service. However, these solutions required software clients in the devices and have not become popular. Moreover, these solutions did not allow the UE to be simultaneously connected over a WLAN interface to both operator walled garden and local services.
[0013] In the meantime, operators have been investing in WLAN to offload growth in cellular data traffic. To provide mobility it becomes essential to connect these APs to the mobile packet core. In this case, however, it is desirable from an operator perspective to provide local or direct access to some services while also providing simultaneous access from the core. This requires some functionality on UE. The previous attempts using VPNs have been software centric and have not been successful. It is desirable to provide hardware centric solutions.
[0014] Machine-to-machine (M2M) communications and Device as a Service (DAAS) business models both increasingly rely on private networks to carry traffic. Machine-to-machine models include building control, security, industrial control and services that happen without user interaction. DAAS includes devices such as the Kindle where merchandise or content is paid but the price of network access and data traffic is implicit in the cost of the transaction. In these scenarios, the choice of network interface may be driven not by a consumer's network choice but by the device provider or availability of a network. This choice may vary by geography or other factors secondary to the device operation, and may not be known until the device is put into service.
[0015] Presently, cellular data devices must be purchased preconfigured to operate over preselected owned networks; or in some cases the devices will be provisioned by the operators or their agents by the programming of an "identity module" (e.g.: SIM, UIM, RUIM, MEID, EIN, smartcard, etc.) and inserting the module into the device.
[0016] It is desirable to provide access from a 3GPP terminal to a subscriber's home network regardless of the connection state: 3 GPP or non-3 GPP network.
BRIEF DESCRIPTION OF THE DRAWINGS
[0017] By way of example, reference will now be made to the accompanying drawings.
[0018] Figure 1 illustrates a mobile device connecting to a provider network and local network in accordance with certain embodiments of the invention.
[0019] Figure 2 illustrates a mobile device connecting to a provider network and local network in accordance with certain embodiments of the invention.
[0020] Figure 3 illustrates a device with multiple network interfaces in accordance with certain embodiments of the invention. [0021] Figure 4 illustrates a device with multiple network interfaces in accordance with certain embodiments of the invention.
[0022] Figure 5 illustrates a wireless access point in accordance with certain embodiments of the invention.
DETAILED DESCRIPTION
[0023] Certain embodiments of methods and systems are disclosed for simultaneously connecting to two or more networks.
[0024] In certain embodiments, a system is disclosed for enabling a device to connect to multiple networks comprising: a first network interface; a second network interface; and a control layer for enabling the device to perform two or more of: connecting to a cellular provider network using the first network interface to establish a first connection, connecting to the cellular provider network using the second network interface to establish a second connection, and connecting to a local area network using the second network interface to establish a third connection. The third IP address may be obtained from an authority other than a cellular provider. The first IP address and the second IP address may be obtained from an Internet Service Provider. The first IP address and the second IP address may be obtained from the local area network. The control layer may further configured to enable the device to connect to the cellular provider network using the first network interface and the second network interface. The control layer may be further configured to enable the device to maintain the first connection, the second connection and the third connection simultaneously. The control layer may be further configured to obtain a first IP address for the first connection, a second IP address for the second connection and a third IP address for the third connection. Establishing a first connection may comprise obtaining an IP address from the cellular provider network for the first connection, establishing a second connection may comprise obtaining an IP address from the cellular provider network for the second connection and establishing a third connection may comprise obtaining an IP address from the local area network for the third connection. The control layer may be further configured to enable the device to maintain the second connection and the third connection simultaneously. The first network interface may comprise a cellular network interface. The second network interface may comprise a wireless network interface. [0025] In certain embodiments, a system is disclosed for enabling a device to connect to multiple networks comprising: a first network interface; a second network interface; and a control layer for coordinating communication via the first network interface and the second network interface, wherein the control layer enables the device to connect to a first network and a second network simultaneously. The device may comprise a selected one of a mobile device and a wireless access point. The first network interface may comprise a cellular network interface. The second network interface may comprise a wireless local area network interface. The first network comprises a cellular provider network. The second network comprises a wireless local area network. The control layer may be configured to enable the device to simultaneously maintain a first connection to the first network via the first network interface and a second connection to the second network via the second network interface. The control layer may be configured to enable the device to maintain a first connection to the first network and a second connection to the second network via the first network interface. The control layer may be configured to enable the device to maintain a first connection to the first network and a second connection to the second network via the second network interface.
[0026] In certain embodiments, a mobile device is disclosed for connecting to multiple networks comprising: a cellular network interface; a wireless network interface; and a control layer for coordinating communication via the cellular network interface and the wireless network interface, whereby the mobile device is configured to connect to a cellular provider network and a wireless local area network simultaneously. The mobile device may be configured to maintain a first connection to the cellular provider network via the cellular network interface and a second connection with the wireless local area network via the wireless network interface. The mobile device may be configured to maintain a connection to the cellular provider network and the wireless local area network simultaneously via the cellular network interface. The mobile device may be configured to maintain a connection to the cellular provider network and the wireless local area network simultaneously via the wireless network interface. The mobile device is configured to access the wireless local area network via the cellular network interface. The mobile device may be configured to access the cellular provider network via the wireless network interface. The mobile device may be configured to access at least one networked device connected to the wireless local area network via the cellular network interface. The at least one networked device may comprise at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device, an audio speaker, a media player, a television, and a security camera.
[0027] In certain embodiments, a Wireless Access Point (WAP) is disclosed comprising: a wireless network interface; and a local services gateway for controlling connections using the wireless network interface to a remote network and a local network, such that: when connected to the remote network, a downlink channel is used for accessing a service on the local network, and when connected to the local network, an uplink channel is used for accessing a service offered by the remote network. The remote network may comprise a cellular provider network. The wireless network interface may comprise a selected one of a wifi interface, an Ethernet interface, a cellular interface, a telecom based broadband services interface, and a broadband services interface over coax. The local services gateway may be configured to obtain a network address from the remote network. The local services gateway may be configured to assign a locally addressable network address to the wireless access point.
[0028] In certain embodiments, a wireless access point is disclosed for connecting to multiple networks comprising: a first wireless network interface; and a local services gateway for connecting the wireless access point to a cellular provider network and a local area network simultaneously. The first wireless network interface is configured to connect to a second wireless network interface in a mobile device. The wireless access point may further comprise a first cellular network interface for connecting to a second cellular network interface in a mobile device. The local services gateway may be configured for obtaining a cellular network address from a services gateway in the cellular provider network. The local services gateway may be configured to provide access to one or more local network devices from the cellular provider network. The one or more local network devices comprises at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device and a security camera, a tablet, TV, game console or any media player, home security system, home gateway appliance (e.g., a connected refrigerator, oven, etc.). The wireless access point may further comprise an authentication device for authenticating the wireless access point to the cellular provider network. The authentication device may comprise at least one of a SIM card, a credential and a token, an embedded security module, an embedded security protocol processor and a cryptographic engine. In certain embodiments, the security credential can be on the same chip or on a separate chip.
[0029] In certain embodiments, a method is disclosed for connecting a device to multiple networks comprising: providing a first network interface; providing a second network interface; and establishing a first connection to a first network and a second connection to a second network, whereby the device is simultaneously connected to the first network and the second network. The device may comprise a selected one of a mobile device and a wireless access point. The first network interface may comprise a cellular network interface. The second network interface may comprise a wireless local area network interface. The first network may comprise a cellular provider network. The second network may comprise a wireless local area network. In certain embodiments, the first connection is made via the first network interface and the second connection is made via the second network interface. In certain embodiments, the first connection and the second connection are made via the first network interface. In certain embodiments, the first connection and the second connection are made via the second network interface.
[0030] In certain embodiments, a method is disclosed for connecting a mobile device to multiple networks comprising: providing a cellular network interface; providing a wireless network interface; and establishing a first connection to a cellular provider network and a second connection to a wireless local area network, whereby the device is simultaneously connected to the cellular provider network and the wireless local area network. In certain embodiments, the first connection is made via the cellular network interface and the second connection is made via the wireless network interface. In certain embodiments, the first connection and the second connection are made via the cellular network interface. In certain embodiments, the first connection and the second connection are made via the wireless network interface. The method may further comprise accessing the wireless local area network via the cellular network interface. The method may further comprise accessing the cellular provider network via the wireless network interface. The method may further comprise accessing at least one networked device connected to the wireless local area network via the cellular network interface. The at least one networked device may comprise at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device, an audio speaker, a media player, a television, and a security camera
[0031] In certain embodiments, a method is disclosed for connecting a wireless access point to multiple networks comprising: connecting a wireless access point to a local area network; connecting the wireless access point to a cellular provider network, thereby connecting the wireless access point to the cellular provider network and the local area network simultaneously. The step of connecting the wireless access point to the local area network may comprise obtaining a local area network address for the wireless access point. The step of connecting the wireless access point to the cellular provider network comprises obtaining a cellular network address for the wireless access point from the cellular provider network. The method may further comprise providing access to one or more local network devices from the cellular provider network via the wireless access point. The one or more local network devices may comprise at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device and a security camera. The step of connecting the wireless access point to the cellular provider network may comprise authenticating the wireless access point to the cellular provider network. The step of authenticating may comprise authenticating with at least one of a SIM card, a credential and a token. The method may further comprise connecting the wireless access point to a mobile device to provide the mobile device with access to the local area network and the cellular network simultaneously. A device is disclosed with multiple communications interfaces where a subscription based private network interface (e.g., 3GPP) may be provisioned and/or configured through a second communication port (e.g., WLAN, USB) connected to a second network when user connects the device to a network through the second interface.
[0032] Machine-to-machine (M2M) communications and Device as a Service (DAAS) business models both increasingly rely on private networks to carry traffic. Machine -to-machine models include building control, security, industrial control and services that happen without user interaction. DAAS includes devices such where merchandise or content is paid but the price of network access and data traffic is implicit in the cost of the transaction. In these scenarios, the choice of network interface may be driven not by a consumer's network choice but by the device provider or availability of a network. This choice may vary by geography or other factors secondary to the device operation, and may not be known until the device is put into service.
[0033] It is desirable to provide a device that can be provisioned for one of a plurality of service provider networks without preconfiguring a service provider network interface in the device to connect with the service provider network.
[0034] Cellular chipsets have reached a very high level of integration including RF transceiver functions, baseband signal processing, application processors, and bridge functions for managing multiple secondary interfaces (USB, GMII, IIC, WLAN etc.). Present levels of integration and software defined radio support having a RF front-end and transceiver combination that support multiple service operators and access networks. Consumer devices that require connectivity may be assembled and sold with minimal knowledge of the networks on which they will be deployed. The foregoing developments have the potential to simplify manufacturer supply chain and retail distribution of connected devices to consumers, avoiding the current need for maintaining separate inventories of the same device, each preconfigured for a different provider network.
[0035] A device with multiple communications interfaces where a subscription based private network interface, which may include without limitation 3GPP, GPRS, 1XRTT, EVDO, LTE, Wi-Max, ALTE, HSPA, HSPA+, WCDMA Wireless - Wifi (also including TV white spaces and other unregulated bands), a wireless network interface operating in any of 2.14, 5, 60 Ghz bands), may be provisioned and/or configured through a second communication port (e.g. WLAN, USB) connected to a second network when the user connects the device to a network through the second interface. The terminal may establish a connection to a server in the provider network through the second communication port on the terminal. The server may communicate through the second communication port to configure at least a circuit or parameter in the private network interface. At least one of an RF circuit, a baseband circuit, or an identity module may be configured through the second communication port or interface. The second communication port or interface may comprise a WLAN, Ethernet or other connection known to those of ordinary skill in the art for connecting to a second host which connects to the server on the service provider network. The provisioning process may write or program a secure element required by the service provider network. The secure element may comprise a user identity module, which can comprise hardware or software and may be removable from the user device or attached to the user device. The user interface module may comprise a SIM, UIM, RUIM, MEID, EIN, smartcard or other form of user identity module known to those of ordinary skill in the art.
[0036] The user may initiate the process through a GUI or a setup executable. The device may connect securely through a public network to an agent of the private network. The private network agent can access parameters and configuration data on the private network interface by communicating through the public network. Once the private network connection is provisioned, the device may be connected to the private network directly, or through roaming arrangements, or through offloaded connections via public networks.
[0037] In certain embodiments as shown in Figure 1, a terminal device with multiple interfaces may be delivered to a subscriber or user with at least one unprovisioned interface. In certain embodiments, a terminal device 100 may comprise an Application/UI Layer 110 and a control layer 120. The control layer may be located above the MAC layer or near the physical layer. The terminal device 100 may include a user interface module 130. The terminal device 100 may include a configuration module 140. The terminal device 100 may include a first interface 145, which may comprise a first MAC address 150 and a first physical address 160. The terminal device 100 may include a second interface 165, which may comprise a second MAC address 170 and a second physical address 180.
[0038] The control layer 120 may provide access to second interface 165 via first interface 145 so as to provision second interface 165 to communicate with a service provider network. Second interface 165 may be configured to be provisioned for one of a plurality of service provider networks. In certain embodiments, second interface 165 may be configured to be provisioned for a second service provider network after being provisioned for a first service provider network.
[0039] In certain embodiments, UI layer 110 may initiate a communication session 155 with a network service provider via first interface 145. The first network interface may comprise a selected one of a wireless local area network interface, an Ethernet connection, or a USB connection. The service provider may message to control layer 120 to query and gain access to second interface 165. A user may authorize the provisioning of second interface 165 by establishing an identity, subscription or billing relationship with the service provider or by reusing a preexisting identity, subscription or billing relationship with the service provider. The second interface may comprise a cellular network interface, a satellite network interface or another service provider network interface known to those of ordinary skill in the art. The cellular network interface may comprise a 3GPP interface. The service provider may access the device through first interface 145 to provision second interface 165. Provisioning may include provisioning of RF parameters, a baseband processor or user identity module 130 associated with terminal device 100. Provisioning may comprise configuring a physical layer parameter, wherein the physical layer parameter may comprise at least one of an RF frequency parameter and a channel parameter. Provisioning may comprise modifying a secure element to permit connection to the service provider network. The secure element may comprise a user identity module which may comprise a SIM, UIM, RUIM, MEID, EIN, smartcard or other form of user identity module known to those of ordinary skill in the art. Connection messages may be passed through first interface 145 to second interface 165 to establish trust and verification for the service provider. Once trust and verification is established, the foregoing initial setup connection using first interface 145 may be torn down. Once provisioned, applications may use second interface 165 to connect 175 to a service provider network.
[0040] Once provisioning, either by the methods of certain embodiments of the present invention or by other methods known to those of ordinary skill in the art, is complete, the terminal device or user equipment (UE) 100 may use provisioned interface 165 to connect to a service provider network. UE 100 may use first interface 145 to connect to a second network, which may not be connected to the service provider network. The first interface 165 may be used to connect to a local area network via a wi-fi connection, an Ethernet connection, or other network connection known to those of ordinary skill in the art. As shown in Figure 4 and described in detail below, UE 210 may utilize first interface 145 to connect to WLAN AP 350.
[0041] In certain embodiments, the presence of first interface 145 and second interface 165 provide considerable flexibility to connect UE 100 to the provider network and the local network. For example, first interface 145 can be used to connect to a service provider network. Alternately, second interface 165 can be used to connect to the service provider network. In certain embodiments, first interface 145 may be used to connect to a local area network. Each connection can be created by obtaining an IP address from the respective network. Control layer 120 may be configured to create and manage multiple network connections for a single UE 100. For example, control layer 120 may be configured to permit UE 100 to connect to a cellular provider network using a cellular network interface and a local network interface. In certain embodiments, the control layer 120 may be configured to permit UE 100 to establish a first connection to a cellular provider network using a cellular network interface, second connection to the cellular provider network using a local network interface and a third connection to a local area network using a second network interface, which may comprises without limitation a wireless interface, an Ethernet interface, or other network interface known to those of ordinary skill in the art.
[0042] In certain embodiments, the control layer 120 may be configured to maintain two or more of the first connection, the second connection and the third connection simultaneously. Each of the first, the second and the third connections may be created by obtaining an IP address from the target network for the connection. For example, either the first interface 145 or the second interface may be used to obtain an IP address from the service provider network to enable UE 100 to access Operator IP Services 330 associated with the service provider network. In certain embodiments, the first interface 145 may be used to obtain a first IP address from the service provider network and a second IP address from the local area network to enable the UE 100 to access Operator IP Services 330 associated with the service provider network and Local IP Services 370 via first interface 145. In certain embodiments, the first interface 145 may be used to obtain a first IP address from the local area network and second interface 165 may be used to obtain a second IP address from the service provider network. In certain embodiments, control layer 120 may be used to maintain multiple connections by enabling a single UE 100 to simultaneously have multiple IP addresses associated with multiple networks or multiple connections to the same network via multiple network interfaces. In certain embodiments, the control layer 120 may be configured to establish a first connection to a cellular provider network and a second connection to a wireless local area network, whereby the device is simultaneously connected to the cellular provider network and the wireless local area network. The first and second connections may be established via a wireless network interface. The first and second connections may be established via a cellular network interface. The first connection may be established via a cellular network interface and the second connection may be established via a wireless network interface. [0043] In certain embodiments, the local area network may be accessed via the cellular provider network. In some embodiments, the cellular provider network may be accessed via the wireless network interface. In certain embodiments at least one networked device connected to the wireless local area network may be accessed via the cellular network interface.
[0044] In certain embodiments as shown in Figure 2, a terminal device may be delivered to a subscriber or user with at least one unprovisioned interface 165. In certain embodiments, a terminal device 200 may comprise an Application/UI Layer 110 and a control layer 120. The terminal device 200 may include a user interface module 130. The terminal device 100 may include a configuration module 140. The terminal device 100 may include an unprovisioned interface 165, which may comprise a first MAC address 170 and a first physical address 180. The unprovisioned interface 165 may comprise a cellular network interface, a satellite network interface or another service provider network interface known to those of ordinary skill in the art. The cellular network interface may comprise a 3GPP network interface.
[0045] The control layer 120 may provide access to interface 165 via an executable program so as to provision interface 165 to communicate with a service provider network. Interface 165 may be configured to be provisioned for one of a plurality of service provider networks. In certain embodiments, interface 165 may be configured to be provisioned for a second service provider network after being provisioned for a first service provider network.
[0046] In certain embodiments, UI layer 110 may initiate a communication session with an executable program, which may reside in storage 210. Storage 210 may comprise internal storage or external storage. The executable program may message to control layer 120 to query and gain access to interface 165. A user may authorize the provisioning of first interface 145 by providing identity, subscription or billing information associated with the service provider. The executable program may then provision interface 165. Provisioning may include provisioning of RF parameters, a baseband processor or user identity module 130 associated with terminal device 200. Provisioning may comprise configuring a physical layer parameter, wherein the physical layer parameter may comprise at least one of an RF frequency parameter and a channel parameter. Provisioning may comprise modifying a secure element to permit connection to the service provider network. The secure element may comprise a user identity module which may comprise a SIM, UIM, RUIM, MEID, EIN, smartcard or other form of user identity module known to those of ordinary skill in the art. Connection messages may be passed by the executable program to interface 165 to establish trust and verification for the service provider. Once provisioned, applications may use interface 165 to connect to a service provider network.
[0047] Provisioning may be initiated by user action through a software interface, an executable instruction stored on the terminal, or an executable instruction stored on a media or storage device coupled to the device.
[0048] In certain embodiments, a home network appliance (e.g. home router with Wi-Fi access point) provides access to local IP resources (e.g. printers, displays, storage) and connects these resources to a subscriber's internet gateway. A local services gateway running as a software or firmware module in the home network appliance maintains a tunnel to a 3 GPP service provider gateway (S-GW). This local gateway obtains an address from the service gateway, once the 3 GPP UE is authenticated to S-GW (over either the 3 GPP network or through the Local gateway), the device can be made known to the local gateway and access the subscriber's home network through either network connection.
[0049] In certain embodiments, a UE using the WLAN AP may access services either in the local network or the operator's network. The WLAN AP also may allow the UE to access local services from the operator network.
[0050] Certain embodiments have the further benefit of exposing fewer exceptions to a security policy. Certain embodiments alleviate the need for multiple UEs to expose multiple ports through the home LAN and for the local resources to require their own ports making them vulnerable. In certain embodiments, a local service gateway will expose only itself through the home LAN, and handle traffic to multiple UEs using this access.
[0051] Certain embodiments enable addressability of these terminals across disparate networks with separate address hosting (Dynamic Host Configuration Protocol (DHCP) or similar) authorities.
[0052] In certain embodiments, a local network may comprise a local services gateway. The local services gateway may be disposed in a WLAN access point and may expose mobile capable devices to services in the local network while the mobile devices are using non-cellular or cellular access networks. The local service gateway may maintain a tunnel from and/or to a cellular gateway. In such embodiments, a UE may access local network services while connected to any of a home mobile network, a visited mobile network, and a second LAN.
[0053] Certain embodiments provide local IP access service (LIPA) by turning an untrusted access point into a trusted device on a cellular provider network. For example and without limitation, the access point may be established as a trusted Home Node B (HNB) or Home (e) Node B (HeNB) device on the provider network to permit access to services in the local network by UEs connected to the cellular provider network. In certain embodiments, the local Packet Gateway/Gateway GPRS Support Node (P-GW/GGSN) may obtain an IP address from a local DHCP server and maintain a tunnel with the cellular provider network Serving Gateway/Serving GPRS Support Node (S-GW/SGSN) to enable access to local services on the local area network by devices connected to the cellular provider network. In certain embodiments, the local P- GW/GGSN may obtain an IP address from the local DHCP server to provide local access to authenticated terminals using non-cellular protocols. For example and without limitation, authenticated devices may connect to local services via a wifi connection.
[0054] As shown in Figure 3, in certain embodiments, a UE 310 may be able to access Operator IP Services 330, the Internet 380, and Local IP Services 370. The UE 310 may connect to Operator IP Services 330 and the Internet 380 via (e) Node B (eNB) 315, Serving Gateway (S- GW) 320, and Packet Gateway (P-GW) 325, which may reside in a service provider network. In certain embodiments, UE 310 may alternately or additionally connect to Local IP Services 370 via eNB 315, S-GW 320, WLAN AP 350 and L-P-GW 360. In certain embodiments, the WLAN AP 350 may comprise Local Packet Gateway (L-P-GW) 360. The WLAN AP 350 may also comprise DHCP 355. In certain embodiments, L-P-GW 360 may be separate from but coupled to WLAN AP 350. The local packet gateway 360 may create a connection to S-GW 320 which may be located in the operator gateway to permit UE 310 to connect to Local IP Services 370 from the provider network.
[0055] Local IP Services 370 may include one or more local network devices comprising one or more of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device, an audio speaker, a media player, a television, and a security camera. [0056] In certain embodiments, L-P-GW 360 may act as a portal into the entire private network including Local IP Services 370, thus avoiding the necessity for a client on each local network device.
[0057] As shown in Figure 4, UE 310 may connect to Wireless Access Point 350. The UE 310 may gain access to Local IP Services 370 via Wireless Access Point 350 and L-P-GW 360. Wireless Access Point 350 may also or alternately connect to the provider network via S-GW 320.
[0058] In certain embodiments, a SaMOG capable access point as identified in 3GPP TR 23.852 connects to the packet core. Connection to the packet core may be via a connection between access point 350 in the local network to S-GW 320 in the provider network. Once access point 350 is connected to S-GW 320, the connection can be used to permit a UE 310 to access Operator IP Services 330, the Internet 380, and Local IP Services 370 through a connection between the UE 310 and access point 350 without the need for a direct connection between the UE 310 and the operator network. Such an access point 350 may also provide connectivity to the Internet. In certain embodiments a UE that can connect to both networks simultaneously (without a VPN client) may be used. In certain embodiments, a UE enables simultaneous access by - the addition of a control layer within the UE that coordinates communication between the 3 GPP radio interface and WLAN interface on a 3GPP UE enables the authorization of trusted communication between the UE and the 3 GPP service gateway over the WLAN interface. The control layer may exist above the MAC layer or it may exist near the physical layer. Directed by either the user, or the 3 GPP network, the WLAN interface can establish connection to the 3 GPP S-GW or P-GW and establish connection to operator services or the internet.
[0059] The layer which controls the WLAN interface from the 3 GPP interface is important in that the 3GPP can establish trust with the UE and authorize the UE to connect to the service provider's network over the LAN using any security means required. This mechanism would allow for authentication to (1) both an operator hotspot and access to the service gateway or (2) access to the service gateway through an established Wi-Fi connection such as the subscriber's home AP. If the WLAN interface supports multiple SSID connections, or if the UE has multiple WLAN interfaces, this invention allows a UE using the WLAN to access services local network over the second interface. The UE would be able to, for example, access a local printer or display, while connected to an operator service.
[0060] Even if the UE only had one WLAN interface, the 3 GPP network could control the use or access of that port to apps or services, for example permission only to print to a local printer, from an operator provided service.
[0061] As shown in Figure 5, in certain embodiments, WLAN AP 350 may comprise a SIDE A 510, a SIDE B 520 and service layer 530. SIDE A 510 may comprise certain in home interfaces. SIDE A may comprise a physical layer, a MAC Layer, and IP layer and a service layer. The SIDE A physical layer may include without limitation an Ethernet interface or an 802.11 wireless interface, with corresponding MAC addresses in the MAC Layer for SIDE A 510, and corresponding IP addresses in the SIDE A 510 IP Layer. The Service Layer 530 for SIDE A 510 may comprise without limitation Routing, DHCP, (No firewall), DNS server (or proxy).
[0062] SIDE B 520 may comprise certain broadband interfaces. SIDE B may comprise a physical layer, a MAC Layer, and IP layer and a service layer. The SIDE B physical layer may include without limitation one or more of a DSL interface, a Cable interface, a Fiber interface, or Wireless Broadband interface, with corresponding MAC addresses in the MAC Layer for SIDE B 520, and corresponding IP addresses in the SIDE B 520 IP Layer. The Service Layer 530 for SIDE B 520 may comprise without limitation, a security firewall , NAT service, routing service, DHCP client, DNS client, and Management service
[0063] In certain embodiments, the WLAN AP 350 may comprise in between sides A and B, one or more of a Physical layer, which may be shared with Side A, a MAC layer, an EAP supplicant layer, an IP/IPSec Layer, a GTP tunnel, and an AAA layer. The EAP Supplicant layer may talk to AAA 345, which may then talk to the provider network to authorize the WLAN AP 350 over the SIM. The GTP tunnel may be used to VPN into the service provider core via IP/IPSec layer and via Side B. in certain embodiments, the AAA layer may include an externally forwarding entity which may takes data from the 802.11 layer and forward it externally to Side B, thereby becoming an APN destination. In certain embodiments, the AAA layer includes an internally forwarding entity to forward data to side A, a management layer, and a DHCP client. In certain embodiments, the DHCP client may talk to side A, e.g., to a printer on side A. [0064] In certain embodiments, the WLAN AP 350 may comprise a wireless network interface, a local services gateway for controlling connections using the wireless network interface to a remote network and a local network. In certain embodiments, WLAN AP 350 may further comprise a home eNb (HeNB) or femtocell. The wireless network interface may comprise wifi, Ethernet, cellular, telecom based broadband services such as DSL, broadband services over coax such as DOCSIS. The remote network may comprise, without limitation, any of the service provider networks described above. The local network may include any of the local area networks described above. When WLAN AP 350 is connected to the remote network, a downlink channel may be used for accessing a service on the local network, for example, by accessing the external service directly by connecting over the remote network. When WLAN AP 350 is connected to the local network, an uplink channel may be used for accessing a service offered by the remote network. The local network may be network address translated with an address assigned by DHCP authority within WLAN AP 350, thus providing a locally addressable address to UE 100 for accessing the local network. In certain embodiments, the address to a gateway in the remote network may be assigned by the remote network's DHCP authority or equivalent.
[0065] In certain embodiments, WLAN AP 350 may be configured for connecting to a service provider network and a local area network simultaneously. In certain embodiments, WLAN AP 350 may comprise a first cellular network interface for connecting to a second cellular network interface in a mobile device. The first and second cellular network interfaces may comprise, without limitation, a core (including EPC, HSPA packet core, etc.), a 3gpp2 core, or a wimax network interface. The WLAN AP 350 may comprise a local services gateway for connecting WLAN AP 350 to a cellular provider network and a local area network simultaneously. The local services gateway may be configured for obtaining a cellular network address from a services gateway in the cellular provider network. The local services gateway may be configured to provide access to one or more local network devices from the cellular provider network. The one or more local network devices may comprise at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device and a security camera, a tablet, TV, game console or any media player, home security system, home gateway appliance (e.g., a connected refrigerator, oven, etc.). [0066] While the above description contains many specifics, these should not be construed as limitations on the scope of the invention, but rather as an exemplification of preferred embodiments thereof. The invention includes any combination or subcombination of the elements from the different species and/or embodiments disclosed herein. One skilled in the art will recognize that these features, and thus the scope of the present invention, should be interpreted in light of the following claims and any equivalents thereto.

Claims

WE CLAIM:
1. A system for enabling a device to connect to multiple networks comprising: a first network interface; a second network interface; and a control layer for enabling the device to perform two or more of: connecting to a cellular provider network using the first network interface to establish a first connection, connecting to the cellular provider network using the second network interface to establish a second connection, and connecting to a local area network using the second network interface to establish a third connection.
2. The system of claim 1, wherein the control layer is further configured to enable the device to connect to the cellular provider network using the first network interface and the second network interface.
3. The system of claim 1, wherein the control layer is further configured to enable the device to maintain the first connection, the second connection and the third connection simultaneously.
4. The system of claim 1, wherein the control layer is further configured to obtain a first IP address for the first connection, a second IP address for the second connection and a third IP address for the third connection.
5. The system of claim 4, wherein the third IP address is obtained from an authority other than a cellular provider.
6. The system of claim 5, wherein the first IP address and the second IP address are obtained from an Internet Service Provider.
7. The system of claim 5, wherein the first IP address and the second IP address are obtained from the local area network.
8. The system of claim 1, wherein establishing the first connection comprises obtaining an IP address from the cellular provider network for the first connection, establishing the second connection comprises obtaining an IP address from the cellular provider network for the second connection and establishing the third connection comprises obtaining an IP address from the local area network for the third connection.
9. The system of claim 1, wherein the control layer is further configured to enable the device to maintain the second connection and the third connection simultaneously.
10. The system of claim 1, wherein the first network interface comprises a cellular network interface.
11. The system of claim 1 , wherein the second network interface comprises a wireless network interface.
12. A system for enabling a device to connect to multiple networks comprising: a first network interface; a second network interface; and a control layer for coordinating communication via the first network interface and the second network interface, wherein the control layer enables the device to connect to a first network and a second network simultaneously.
13. The system of claim 12, wherein the device comprises a selected one of a mobile device and a wireless access point.
14. The system of claim 12, wherein the first network interface comprises a cellular network interface.
15. The system of claim 14, wherein the second network interface comprises a wireless local area network interface.
16. The system of claim 12, wherein the first network comprises a cellular provider network.
17. The system of claim 16, wherein the second network comprises a wireless local area network.
18. The system of claim 12, wherein the control layer is configured to enable the device to simultaneously maintain a first connection to the first network via the first network interface and a second connection to the second network via the second network interface.
19. The system of claim 12, wherein the control layer is configured to enable the device to maintain a first connection to the first network and a second connection to the second network via the first network interface.
20. The system of claim 12, wherein the control layer is configured to enable the device to maintain a first connection to the first network and a second connection to the second network via the second network interface.
21. A mobile device for connecting to multiple networks comprising: a cellular network interface; a wireless network interface; and a control layer for coordinating communication via the cellular network interface and the wireless network interface, whereby the mobile device is configured to connect to a cellular provider network and a wireless local area network simultaneously.
22. The mobile device of claim 21, wherein the mobile device is configured to maintain a first connection to the cellular provider network via the cellular network interface and a second connection with the wireless local area network via the wireless network interface.
23. The mobile device of claim 21, wherein the mobile device is configured to maintain a connection to the cellular provider network and the wireless local area network simultaneously via the cellular network interface.
24. The mobile device of claim 21, wherein the mobile device is configured to maintain a connection to the cellular provider network and the wireless local area network simultaneously via the wireless network interface.
25. The mobile device of claim 21, wherein the mobile device is configured to access the wireless local area network via the cellular network interface.
26. The mobile device of claim 21, wherein the mobile device is configured to access the cellular provider network via the wireless network interface.
27. The mobile device of claim 21, wherein the mobile device is configured to access at least one networked device connected to the wireless local area network via the cellular network interface.
28. The mobile device of claim 27, wherein the at least one networked device comprises at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device, an audio speaker, a media player, a television, and a security camera.
29. A Wireless Access Point (WAP) comprising: a wireless network interface; and a local services gateway for controlling connections using the wireless network interface to a remote network and a local network, such that: when connected to the remote network, a downlink channel is used for accessing a service on the local network, and when connected to the local network, an uplink channel is used for accessing a service offered by the remote network
30. The wireless access point of claim 29, wherein the remote network comprises a cellular provider network.
31. The wireless access point of claim 29, wherein the wireless network interface comprises a selected one of a wifi interface, an Ethernet interface, a cellular interface, a telecom based broadband services interface, and a broadband services interface over coax.
32. The wireless access point of claim 29, wherein the local services gateway is configured to obtain a network address from the remote network.
33. The wireless access point of claim 29, wherein the local services gateway is configured to assign a locally addressable network address to the wireless access point.
34. A wireless access point for connecting to multiple networks comprising: a first wireless network interface; and a local services gateway for connecting the wireless access point to a cellular provider network and a local area network simultaneously.
35. The wireless access point of claim 34, wherein the first wireless network interface is configured to connect to a second wireless network interface in a mobile device.
36. The wireless access point of claim 34, further comprising a first cellular network interface for connecting to a second cellular network interface in a mobile device.
37. The wireless access point of claim 34, wherein the local services gateway is configured for obtaining a cellular network address from a services gateway in the cellular provider network.
38. The wireless access point of claim 34, wherein the local services gateway is configured to provide access to one or more local network devices from the cellular provider network.
39. The wireless access point of claim 38, wherein the one or more local network devices comprises at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device and a security camera, a tablet, TV, game console or any media player, home security system, and home gateway appliance.
40. The wireless access point of claim 34, further comprising an authentication device for authenticating the wireless access point to the cellular provider network.
41. The wireless access point of claim 40, wherein the authentication device comprises at least one of a SIM card, a credential and a token, an embedded security module, an embedded security protocol processor and a cryptographic engine.
42. A method for connecting a device to multiple networks comprising: providing a first network interface; providing a second network interface; and establishing a first connection to a first network and a second connection to a second network, whereby the device is simultaneously connected to the first network and the second network.
43. The method of claim 42, wherein the device comprises a selected one of a mobile device and a wireless access point.
44. The method of claim 42, wherein the first network interface comprises a cellular network interface.
45. The method of claim 44, wherein the second network interface comprises a wireless local area network interface.
46. The method of claim 42, wherein the first network comprises a cellular provider network.
47. The method of claim 46, wherein the second network comprises a wireless local area network.
48. The method of claim 42, wherein the first connection is made via the first network interface and the second connection is made via the second network interface.
49. The method of claim 42, wherein the first connection and the second connection are made via the first network interface.
50. The method of claim 42, wherein the first connection and the second connection are made via the second network interface.
51. A method for connecting a mobile device to multiple networks comprising: providing a cellular network interface; providing a wireless network interface; and establishing a first connection to a cellular provider network and a second connection to a wireless local area network, whereby the device is simultaneously connected to the cellular provider network and the wireless local area network.
52. The method of claim 51 , wherein the first connection is made via the cellular network interface and the second connection is made via the wireless network interface.
53. The method of claim 51 , wherein the first connection and the second connection are made via the cellular network interface.
54. The method of claim 51 , wherein the first connection and the second connection are made via the wireless network interface.
55. The method of claim 51, further comprising accessing the wireless local area network via the cellular network interface.
56. The method of claim 51 , further comprising accessing the cellular provider network via the wireless network interface.
57. The method of claim 51 , further comprising accessing at least one networked device connected to the wireless local area network via the cellular network interface.
58. The method of claim 57, wherein the at least one networked device comprises at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device, an audio speaker, a media player, a television, and a security camera
59. A method for connecting a wireless access point to multiple networks comprising: connecting a wireless access point to a local area network; connecting the wireless access point to a cellular provider network, thereby connecting the wireless access point to the cellular provider network and the local area network
simultaneously.
60. The method of claim 59, wherein the step of connecting the wireless access point to the local area network comprises obtaining a local area network address for the wireless access point.
61. The method of claim 59, wherein the step of connecting the wireless access point to the cellular provider network comprises obtaining a cellular network address for the wireless access point from the cellular provider network.
62. The method of claim 59, further comprising providing access to one or more local network devices from the cellular provider network via the wireless access point.
63. The method of claim 62, wherein the one or more local network devices comprises at least one of a printer, a network attached storage device, a laptop computer, a desktop computer, a mobile device and a security camera.
64. The method of claim 59, wherein the step of connecting the wireless access point to the cellular provider network comprises authenticating the wireless access point to the cellular provider network.
65. The method of claim 64, wherein the step of authenticating comprises
authenticating with at least one of a SIM card, a credential and a token.
66. The method of claim 59, further comprising connecting the wireless access point to a mobile device to provide the mobile device with access to the local area network and the cellular network simultaneously.
PCT/US2013/053864 2012-08-06 2013-08-06 Systems and methods for connecting to local services from wan and lan WO2014025829A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201261680225P 2012-08-06 2012-08-06
US61/680,225 2012-08-06

Publications (2)

Publication Number Publication Date
WO2014025829A2 true WO2014025829A2 (en) 2014-02-13
WO2014025829A3 WO2014025829A3 (en) 2015-07-16

Family

ID=50068695

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2013/053864 WO2014025829A2 (en) 2012-08-06 2013-08-06 Systems and methods for connecting to local services from wan and lan

Country Status (1)

Country Link
WO (1) WO2014025829A2 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107211488A (en) * 2014-12-04 2017-09-26 瑞典爱立信有限公司 It is used for the method to the business datum application safety of reception by what the WLAN node in integrated wireless communications network was performed
US10999264B2 (en) 2014-08-28 2021-05-04 Cryptography Research, Inc. Generating a device identification key from a base key for authentication with a network

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8428057B2 (en) * 2007-03-14 2013-04-23 Cisco Technology, Inc. Optimizing return traffic paths using network address translation
US20120184242A1 (en) * 2009-10-01 2012-07-19 Rambus Inc. Methods and Systems for Enhancing Wireless Coverage

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10999264B2 (en) 2014-08-28 2021-05-04 Cryptography Research, Inc. Generating a device identification key from a base key for authentication with a network
US11882102B2 (en) 2014-08-28 2024-01-23 Cryptography Research, Inc. Generating a device identification key from a base key for authentication with a network
CN107211488A (en) * 2014-12-04 2017-09-26 瑞典爱立信有限公司 It is used for the method to the business datum application safety of reception by what the WLAN node in integrated wireless communications network was performed

Also Published As

Publication number Publication date
WO2014025829A3 (en) 2015-07-16

Similar Documents

Publication Publication Date Title
US11089480B2 (en) Provisioning electronic subscriber identity modules to mobile wireless devices
US9980213B2 (en) Methods, apparatus and systems for wireless network selection
US9577984B2 (en) Network initiated alerts to devices using a local connection
JP6564022B2 (en) Effective user equipment identification information for heterogeneous networks
US10432632B2 (en) Method for establishing network connection, gateway, and terminal
US20130104207A1 (en) Method of Connecting a Mobile Station to a Communcations Network
US11778468B2 (en) Open access in neutral host network environments
JP2012532512A (en) Initial setup and authentication of femto access points
US11889305B2 (en) System and method for service provider specific remote access via neutral host networks
US8619674B1 (en) Delivery of wireless access point information
US20230171603A1 (en) Onboarding Devices in Standalone Non-Public Networks
TWI592001B (en) System and method for providing telephony services over wifi for non-cellular devices
WO2014035851A2 (en) Provisioning of a service provider network interface
WO2014025829A2 (en) Systems and methods for connecting to local services from wan and lan
US11711691B2 (en) Applying network policies on a per-user basis
US20230125058A1 (en) Content service accessibility for unauthenticated users
WO2024052271A1 (en) Methods, apparatuses, and a network for providing connectivity to a wireless device
US20150215780A1 (en) Method and device for transmitting data

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13827392

Country of ref document: EP

Kind code of ref document: A2

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 13827392

Country of ref document: EP

Kind code of ref document: A2