WO2006043061A1 - System and method for providing a secure and efficient communicaton connection - Google Patents
System and method for providing a secure and efficient communicaton connection Download PDFInfo
- Publication number
- WO2006043061A1 WO2006043061A1 PCT/GB2005/004035 GB2005004035W WO2006043061A1 WO 2006043061 A1 WO2006043061 A1 WO 2006043061A1 GB 2005004035 W GB2005004035 W GB 2005004035W WO 2006043061 A1 WO2006043061 A1 WO 2006043061A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- call
- gatekeeper
- switch
- firewall
- isdn
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0272—Virtual private networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/1066—Session management
- H04L65/1101—Session protocols
- H04L65/1106—Call signalling protocols; H.323 and related
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M3/00—Automatic or semi-automatic exchanges
- H04M3/42—Systems providing special services or facilities to subscribers
- H04M3/56—Arrangements for connecting several subscribers to a common circuit, i.e. affording conference facilities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M7/00—Arrangements for interconnection between switching centres
- H04M7/12—Arrangements for interconnection between switching centres for working between exchanges having different types of switching equipment, e.g. power-driven and step by step or decimal and non-decimal
- H04M7/1205—Arrangements for interconnection between switching centres for working between exchanges having different types of switching equipment, e.g. power-driven and step by step or decimal and non-decimal where the types of switching equipement comprises PSTN/ISDN equipment and switching equipment of networks other than PSTN/ISDN, e.g. Internet Protocol networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
Definitions
- the present invention relates to a system and a method for providing a secure and efficient communication connection between the networks of different service providers .
- a telecommunication system comprising at least a multi-point conferencing unit, a gatekeeper, a switch, an optional radius server and a firewall, the multi-point conferencing unit being connected with the firewall through the switch via the optional radius server and gatekeeper.
- the telecommunication system may further comprise a VPN (Virtual Private Network) connected with the firewall to allow a secure connection to separate IP networks of different telecommunication service providers.
- the telecommunication system further includes an ISDN gateway connected with the switch to provide an ISDN connection to networks of different telecommunication service providers.
- the different types of interfaces ensure a maximum flexibility.
- the telecommunication system of the present invention acts as a rerouting engine between networks of different service providers.
- the security and reliability of established telecommunication connections is ensured by the interaction of the firewall and gatekeeper and/or multi-point conferencing unit.
- the firewall prevents any unwanted data from entering the system.
- the gatekeeper and/or the multi ⁇ point conferencing unit will only reroute any incoming call and will thereby establish a connection between different users if the calling user or party is registered in the gatekeeper.
- the radius server is used for authentication and accounting of users. Therefore, the radius server and gatekeeper store relevant registry data required to verify the identity of a calling party.
- the system is a multi-functional system and can be used for providing any type of audio, visual and/or video conference communications over ISDN and/or IP as well as telecommunications over ISDN and/or IP.
- a main advantage of the present invention is that it allows a cross-network connection between independently managed and administered networks of different telecommunication service providers without interfering with any of the cross-connected networks. None of the separate networks will become a part of any other network. In fact, a connection between separate networks can be established by the telecommunication system of the present invention which acts like a central switch for these networks.
- a user means a service provider which manages and administers its own network and which itself serves end-users or parties, such as individuals.
- the service providers are registered with the system and can be identified for instance by their IP number.
- a party who wants to make a call to another party, calls from within a first telecommunication network managed and administered by a first service provider, such as British Telecom.
- the called party is served by a second service provider managing and administering a second telecommunication network.
- the telecommunication system of the present invention provides a platform for a cross-network connection between the first and the second telecommunication network to reroute the call from the first to the second telecommunication network.
- the call can also be routed to further networks of other service providers depending on the number of called parties.
- the service provider of the calling party In order to provide the connection requested, the service provider of the calling party must be registered.
- the object of the invention is also solved by a method for providing a secure and efficient communication connection.
- the method comprises the steps of (a) providing a telecommunication system that comprises at least a multi ⁇ point conferencing unit, a gatekeeper, a switch, an optional radius server and a firewall, the multi-point conferencing unit being connected with the firewall through the switch via the optional radius server and gatekeeper; (b) receiving a call from a user; (c) directing the call to the gatekeeper; (d) verifying whether the calling user is registered; (e) if the user is identified, redirecting the call to the called user.
- the incoming call is directly rerouted by the gatekeeper if only a point-to-point connection is requested, i.e. a connection between two users.
- the gatekeeper directs the incoming call to the multi-point conferencing unit which itself will reroute the incoming call via the gatekeeper to the called parties.
- the rerouted call can be passed through the firewall or through an ISDN gateway connected with the switch.
- the connection between the firewall and the users can be established via an IP or ISDN network.
- the IP call will pass through the VPN on to the radius server and gatekeeper, which goes through the firewall and switch.
- the ISDN call will go through the gateway then onto the gatekeeper, which will also go through the switch.
- the outgoing call will then go through the switch which determines, depending on whether the service provider of the receiving party is on ISDN or IP, the direction of the call. If the party is on ISDN then the call will be routed to the gateway. If the call is IP then the call will go through the firewall and then onto the VPN.
- Figure 1 is a schematic diagram of a telecommunication system according to the invention.
- the telecommunication system 2 shown in Figure 1 comprises a firewall 4, a gatekeeper 6, a switch 14, a radius server 16 and a multi-point conferencing unit 8.
- the firewall 4 is connected with a VPN and a router 12 to create security over the IP network. Any IP call whether incoming or rerouted and outgoing must pass the firewall, the VPN and then the router 12. Hence, the firewall 4 provides the only connection to an external IP network.
- An ISDN gateway 10 is connected with the switch 14.
- the VPN may be provided by the firewall or by a separate device.
- the telecommunication system 2 is an IP network.
- a connection to other IP networks 20, 30 is therefore provided by the VPN interface 12, which ensures an encrypted connection between the telecommunication system 2 and other IP networks 20, 30 managed by different service providers.
- the VPN creates a direct connection from a party 26 at its office through a first service provider (user) 20 to the telecommunication system 2, which forwards the connection, to a second service provider (user) 30 of the receiving party 36 at the destination.
- the VPN creates a tunnel effect through the external network as it would with a private network.
- the network of each service provider 20, 30 may comprise a router 22, 32 and a firewall and VPN client 24, 26.
- the ISDN gateway 10 converts ISDN into IP as well as IP into ISDN. This provides a party on an IP network with the ability of having no restrictions when wanting to dial out on either network. The same applies for a vice-versa scenario, through out the telecommunication system.
- the ISDN gateway 10 is shown in Figure 1 as a part of the multi-point conferencing unit 8, it is a separate device solely connected with the switch 14.
- the switch 14 will route the call to the correct destination within the telecommunication system 2.
- a switch port receives video packets, it forwards those packets only to the appropriate port for the intended recipient.
- Each individual user or system will be registered with his own personal identification number on the gatekeeper 6 and radius server 16. This will be the same as if a user had his own personal mobile number or desk telephone number, which will be a unique number to the individual user or the system.
- the gatekeeper 6 acts as an intelligent system for directing the call to the required destination.
- the radius server 16 acts as an intelligent system to only allow users access only if they have paid to use the system.
- the multi-point conferencing unit 8 will be able to connect multi-sites into a video conference.
- a party 26, 36 served by a service provider 20, 30 which is registered onto the multi-point conferencing unit and creates a meeting will be known as the chair person.
- the chair person will be able to hold a multi-point conference as well as have full control of the conference shown by means of the screen layout as well as controlling who would be invited into the meeting.
- the chair person will be able to give the following parties, who would want to participate in the meeting, a password. This will ensure privacy in the meeting.
- the firewall 4 will prevent any unwanted data and thereby stops any IP traffic from entering the telecommunication system 2.
- the gatekeeper 6 will only connect point-to-point unless the participant establishes a multi-conference, then the call will be directed through to the multi-point conferencing unit 8.
- the multi-point conferencing unit 8 will enable a chair person or party to create and set the time of a meeting which will be scheduled on the multi-point conferencing unit 8 and to specify a unique password. The chair person will then inform the relevant participants or parties of the password and time of the meeting. This will enable a secure environment for a multi-conference.
- the telecommunication system 2 is preferably monitored and controlled by a computer system (not shown) running software, such as available from MTS, that monitors the calls and bills according to the customers' requirements.
- a party 26, 36, 38 dials out over his IP or ISDN network, i.e. the respective service provider (user) 20, 30, 40 directs the call to the telecommunication system 2.
- the system thus receives a call from a user.
- the call is either directly passed through the VPN and router 12 or through the ISDN gateway 10. If the call comes from an ISDN network 40, then the ISDN gateway 10 processes the call so that it can be forwarded within the IP based telecommunication system 2.
- the incoming call is then directed through the firewall 4, switch 14 to the gatekeeper 6 and radius server 16 which verify whether the service provider (user) of the calling party is registered. If the user is known to the system, the gatekeeper 6 will direct the call on to its destination. If only a point-to-point connection is requested the call is rerouted by the gatekeeper 6, radius server 16 through the switch 14, the firewall 4 and on to the VPN and router 12 or through the switch 14 on to the ISDN gateway 10 depending on whether the called party can be reached via an IP or an ISDN network. If the incoming call is an audio call, then the gatekeeper will treat the call as if it was a video call and route it through to its destination.
- the gatekeeper 6 will direct the incoming call to the multi-point conferencing unit 8, which itself will reroute the incoming call via the gatekeeper 6, radius server 16 and the firewall 4 or the ISDN gateway 10 to the called users.
- a party 26, 36 served by a service provider 20, 30 on an IP network wants to make a point-to-point video call to a party 38 on an ISDN network 40, then the party 26, 36 dials out over the IP network 20, 30 of his service provider.
- the call is then directed to the VPN, which directs the video call through the firewall 4, switch 14 and then on to the gatekeeper 6.
- the gatekeeper 6 directs the video-call back through the switch 14 and on through the ISDN gateway 10, which converts the IP call to an ISDN call and vice-versa.
- the multi-point conferencing unit 8 will reroute the call.
Abstract
Description
Claims
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
GB0707521A GB2434285B (en) | 2004-10-20 | 2005-10-20 | System and method for providing a secure and efficient communication connection |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
GB0423295.5 | 2004-10-20 | ||
GBGB0423295.5A GB0423295D0 (en) | 2004-10-20 | 2004-10-20 | System and method for providing a secure and efficient communication connection |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2006043061A1 true WO2006043061A1 (en) | 2006-04-27 |
Family
ID=33484886
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/GB2005/004035 WO2006043061A1 (en) | 2004-10-20 | 2005-10-20 | System and method for providing a secure and efficient communicaton connection |
Country Status (2)
Country | Link |
---|---|
GB (2) | GB0423295D0 (en) |
WO (1) | WO2006043061A1 (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2009045207A1 (en) | 2007-10-01 | 2009-04-09 | Hewlett-Packard Development Company, L.P. | Systems and methods for managing virtual collaboration systems spread over different networks |
CN101159750B (en) * | 2007-11-20 | 2011-12-07 | 杭州华三通信技术有限公司 | Identification authenticating method and apparatus |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6426955B1 (en) * | 1997-09-16 | 2002-07-30 | Transnexus, Inc. | Internet telephony call routing engine |
US20030154410A1 (en) * | 2002-02-11 | 2003-08-14 | David Drell | System and method for videoconferencing across networks separated by a firewall |
US20040085952A1 (en) * | 2002-06-06 | 2004-05-06 | Clinton Watson | Mechanism for implementing Voice Over IP telephony behind network firewalls |
-
2004
- 2004-10-20 GB GBGB0423295.5A patent/GB0423295D0/en not_active Ceased
-
2005
- 2005-10-20 WO PCT/GB2005/004035 patent/WO2006043061A1/en active Application Filing
- 2005-10-20 GB GB0707521A patent/GB2434285B/en not_active Expired - Fee Related
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6426955B1 (en) * | 1997-09-16 | 2002-07-30 | Transnexus, Inc. | Internet telephony call routing engine |
US20030154410A1 (en) * | 2002-02-11 | 2003-08-14 | David Drell | System and method for videoconferencing across networks separated by a firewall |
US20040085952A1 (en) * | 2002-06-06 | 2004-05-06 | Clinton Watson | Mechanism for implementing Voice Over IP telephony behind network firewalls |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2009045207A1 (en) | 2007-10-01 | 2009-04-09 | Hewlett-Packard Development Company, L.P. | Systems and methods for managing virtual collaboration systems spread over different networks |
US7990889B2 (en) | 2007-10-01 | 2011-08-02 | Hewlett-Packard Development Company, L.P. | Systems and methods for managing virtual collaboration systems |
CN101159750B (en) * | 2007-11-20 | 2011-12-07 | 杭州华三通信技术有限公司 | Identification authenticating method and apparatus |
Also Published As
Publication number | Publication date |
---|---|
GB0423295D0 (en) | 2004-11-24 |
GB2434285B (en) | 2008-11-26 |
GB0707521D0 (en) | 2007-05-30 |
GB2434285A (en) | 2007-07-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US7460493B1 (en) | Video conferencing system with dynamic call management and set-up | |
US8891410B2 (en) | Voice-over-IP enabled chat | |
US6754322B1 (en) | Call me conference call system | |
CA2859816C (en) | Ip-based conferencing in a telecommunications network | |
JP4620632B2 (en) | Multimedia communication networks and services | |
US6320857B1 (en) | Telephone doubler arrangement | |
US6671263B1 (en) | Multimedia call handling | |
JP3940122B2 (en) | Method for forming usable features for alternate connections of primary connections | |
US6226287B1 (en) | System and method for integrating voice on network with traditional telephony | |
CA2607815C (en) | System and method for proxy signaling manipulation in an ip telephony network | |
US20080159490A1 (en) | System and method for controlling access to conference calls | |
US20070019627A1 (en) | Virtual PBX Based on SIP and Feature Servers | |
US20100303061A1 (en) | Network communication system for supporting non-specific network protocols and network communication method thereof | |
US6647109B1 (en) | Network telephony | |
WO2002076072A1 (en) | Voip systems | |
US7016675B1 (en) | System and method for controlling telephone service using a wireless personal information device | |
US10069968B2 (en) | Automatic number identification validation in a collaboration conference system | |
WO2006043061A1 (en) | System and method for providing a secure and efficient communicaton connection | |
EP1248445B1 (en) | Call appearance shared by PSTN phone and Voice over IP phone | |
CA2303840A1 (en) | System and method for integrating voice on network with traditional telephony | |
US7187763B1 (en) | Secure method for conferencing through a remote PBX | |
Sijben et al. | Building the bridge: Devising an architecture to migrate voice-band calls to packet transport and multimedia services | |
Sijben et al. | and Jack Kozik | |
Grądkowska et al. | SIP-CCME cooperation in multimedia VoIP network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV LY MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU LV MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
ENP | Entry into the national phase |
Ref document number: 0707521 Country of ref document: GB Kind code of ref document: A Free format text: PCT FILING DATE = 20051020 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 0707521.1 Country of ref document: GB |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 05794692 Country of ref document: EP Kind code of ref document: A1 |