US Patent No. 9,319,407

AUTHENTICATION EXTENSION TO UNTRUSTED DEVICES ON AN UNTRUSTED NETWORK


Patent No. 9,319,407
Issue Date April 19, 2016
Title Authentication Extension To Untrusted Devices On An Untrusted Network
Inventorship Brian Mauer, Shawnee, KS (US)
Richard Morton, Overland Park, KS (US)
Assignee Sprint Communications Company L.P., Overland Park, KS (US)

Claim of US Patent No. 9,319,407

1. A method of an authentication server providing premium communications services via an untrusted network, comprising:
receiving a request from an untrusted communication device to access a premium communication service via the untrusted network,
wherein the request comprises an internet protocol (IP) address of a router; and

authenticating the untrusted communication device for a time period based on a time-to live value included in an earlier authentication
for a trusted mobile communication device, the authenticating comprising:

matching the IP address of the router from the request with a previously stored source IP address of the router associated
with a message received earlier from the trusted mobile communication device, wherein the trusted mobile communication device
is authorized to access the premium communication service via the untrusted network;

upon matching the IP address of the router from the request with the previously stored source IP address of the router associated
with the message sent by the trusted mobile communication device, obtaining a mobile directory number of the trusted mobile
communication device;

sending a message to the mobile directory number of the trusted mobile communication device via a cellular wireless communication
link, wherein the message requests a confirmation from the trusted mobile communication device before proceeding with authentication
of the untrusted communication device in accessing the premium communication service;

in response to the confirmation, determining whether the request is received within the time period indicated by the time-to-live
value included in the earlier authentication for the trusted mobile communication device;

upon determining that the request is received within the indicated time period, generating a cookie associated with the untrusted
communication device;

embedding a new time-to-live value associated with premium content access within the cookie, wherein the new time-to-live
value indicates a window of time for which extended authentication of the untrusted communication device is valid; and

sending the cookie to the untrusted communication device via the untrusted network, wherein the untrusted communication device
and the trusted mobile communication device are different devices.