JP2008501269A - Filtering unwanted messages in wireless communication systems - Google Patents

Abstract

  The present invention relates to a method and system for identifying unwanted short message service (SMS) messages in a mobile wireless communication system. On the Internet, the problem of unwanted junk or spam electronic messages (email) is well known. However, the problem of spam SMS messages in wireless communication networks is increasing. The present invention delegates packet data messages in a wireless communication system by delegating the ability to filter packet data messages to devices located in a layer of a communication network below the Short Message Center (SMC). Provide a scalable solution to the filtering problem. The filtering device is used in connection with the base station controller. The advantage provided by this arrangement is that the system is scalable so that each device filters only a portion of the packet data messages that are processed as a whole by the communication network. The method includes intercepting unwanted messages and performing actions on these messages to indicate that the messages are unwanted.

Description

  The present invention relates to a method and system for filtering messages that may contain spam and viruses in a wireless communication system. In particular, the present invention relates to a method and system for identifying short message service (SMS) messages and multimedia message service (MMS) messages including spam and viruses in mobile wireless communication systems.

  Today, the Short Message Service (SMS) system, which is common in most mobile wireless communication networks currently in operation, allows wireless communication network subscribers to connect via mobile wireless terminals or other suitably available wireless devices. Simple text messages can be exchanged. The SMS system functions as a storage / forwarding platform that ensures delivery of short messages by a short message center (SMC) that connects to a mobile switching center (MSC) in a wireless communication network.

  In connection with the Internet, the problem of unwanted junk or spam electronic messages (email) and methods for dealing with them are well known. However, the problem of spam SMS messages in wireless communication networks is increasing. As such, there is an increasing number of threats that can flood destinations (communication network subscribers) with unsolicited messages and expose them to malicious messages, and countering such threats is a wireless communication network. • It is becoming increasingly important for operators. A common example of an annoying SMS message designed to harm the recipient and be in the financial interest of the sender of the SMS message is to receive a prize for the recipient who wins the prize to attract the recipient. And send an SMS message to call a phone number with a very high toll charge. A further example is to notify the recipient that the recipient has missed the call and send a nuisance SMS message identifying the phone number of the missed call. Again, the recipient is encouraged to call a high toll number.

  As wireless terminals and other suitably usable wireless devices become more and more technically advanced, SMS has evolved until SMS messages can contain more than simple text messages.

  Currently, after reading an SMS message, the mobile terminal with an advanced function that can cause the terminal to interpret the macro embedded in the SMS message and automatically execute the function according to the embedded macro is applied to the entire mobile terminal. The share is increasing. This feature may allow a mobile terminal to download a properly formatted web page or some other unwanted electronic message. In addition, it may be more malicious. For example, such a macro can cause the recipient's mobile terminal to automatically call back to a very high toll number. In this case, the recipient of the SMS message bears undoubtedly a large amount of call charges that will be of financial benefit to the sender of the SMS message. Often, if the recipient later becomes aware of the high charges incurred without doubt, the recipient will attempt to claim damages from the wireless network operator / service provider rather than the message originator. Let's go. The reason is, for example, that it is difficult to identify the message source or the message source is in another country.

  Currently, many mobile wireless communication network operators and service providers are introducing multimedia message services (MMS). Furthermore, since the mobile terminal is a programmable device, SMS messages and MMS messages are used as a means of transmitting spam, used to carry viruses or something that infects mobile terminals, communication networks, systems, It is increasingly likely that level devices will be more susceptible to infection than they currently are.

  It is estimated that 60% of all electronic messages (email) transmitted over the Internet contain spam (spam) messages and about 10% carry viruses, worms, etc. As a result, Internet users have made considerable efforts to filter e-mails in an attempt to reduce the amount of e-mails that are not received. Reasons for preventing such received e-mails include other than the inconvenience caused by the reception of a large amount of unnecessary e-mails and the risk to the recipient's computer device becoming infected with a virus. , Most of these messages contain content that is considered unpleasant for many people and inappropriate for children. Wireless communication network operators and service providers will understand that they now have to deal with similar problems in communication networks.

  In mobile radio communication systems with limited communication network resources, the presence of spam SMS messages is due to the nuisance of receiving such messages and the high charges that may be attributed to responding to these messages. Harming subscribers. Not only are subscribers dissatisfied with the receipt of such unwanted messages for communication network operators / wireless service providers, but the economic costs can be reduced to a large number of low-cost SMS messages that can be replaced with high-revenue services. Related to hosting. A further problem is the cost of capital that expands communication network capacity to host such an increase in low-profit services. In some wireless communication networks, the proportion of SMS messages that make up spam has increased to about 20% of such messages and has already become difficult to manage with existing communication network infrastructure. At 60%, this level of spam SMS can cause communication network connection problems for normal call connections.

  US Patent Application Publication No. 2003/0083078 uses a search in an SMS message decision database using at least one sender or receiver identification information to determine whether an SMS message is desired by the intended message recipient. A system and method for identifying unsolicited SMS messages in a mobile wireless communication network by performing is disclosed. A system for performing the method as taught in US 2003/0083078 includes a signaling gateway node that includes a message determination module. The signaling gateway node is located in a layer of the communication network above the communication network SMC, i.e. if the message determination module in the signaling gateway determines that an unwanted (spam) SMS message is sent to the mobile terminal. The SMS message is discarded, so that the message is not forwarded to the forwarding SMC associated with the mobile terminal, the terminal itself.

  Referring to FIG. 1, a simplified structure of a conventional Global System for Mobile Communications (GSM) wireless communication network, generally designated 10, is shown in a block diagram. The communication network includes a number of mobile switching centers (MSCs) 12. Each MSC 12 controls a plurality of base station controllers (BSC) 14, and each BSC 14 controls a plurality of base stations (BS) 16. Each BS 16 manages a communication network with the radio interface 15 for any mobile terminal 18 currently present in the radio coverage area (cell).

  The normal call connection between the first mobile terminal 18a and the second mobile terminal 18b is the communication link to the BS controller 14b, BS 16b and the second terminal 18b of the second terminal via the BS 16a, BSC 14a, MSC 12a of the first terminal. including. If the BSC 14b associated with the second terminal 18b is managed by a different MSC 12b than that of the first terminal 18a, the second MSC 12b also forms part of the call connection communication link. The MSC 12 can be interconnected by a GSM return communication network 20 that can include any of a wired communication network, a wireless communication network, a satellite communication network, or any combination thereof. Similarly, the MSC 12 can be interconnected via a public switched telephone network (PSTN) 22 or any combination of the aforementioned communication networks and PSTN 22.

  The GSM communication network 10 includes at least one short message center (SMC) 24 that is responsible for relaying, storing, and forwarding SMS messages between mobile terminals 18 that can be used for sending and receiving SMS. SMS messages include messages based on packet data with low bandwidth requirements. If the SMS message cannot be immediately delivered to the recipient's mobile terminal 18, the SMC 24 stores the message until the recipient's terminal 18 becomes available, for example, by being switched on by a subscriber of the mobile terminal 18. . An SMC 24 is connected to the Internet or other data communication network 26 via an appropriate gateway (not shown) so that electronic messages generated on such communication network 26 can be delivered to the addressed mobile terminal 18. can do. In such a case, the SMC 24 is enabled to convert electronic messages received from such a communication network 26 into a format compatible with the SMS system.

  Such a communication network 26 represents the most likely future source of nuisance SMS messages to mobile terminals that are given a cost penalty associated with the generation of nuisance SMS messages from within the wireless communication network 10. Further, if a spam message source (attacker) in a wireless communication network attempts to flood the wireless communication network 10 with spam SMS messages (in a manner similar to spam email on the Internet), all SMS messages are routed through the SMC 12. Since it is sent out, flooding can be prevented in the SMC 12 by analyzing the routing information.

  In the GSM wireless communication network 10 of FIG. 1 and, similarly, in the system taught by US Patent Application Publication No. 2003/0083078, the system is a small number compared to the number of BSCs 14 or BSs 16 that include the communication network 10. It should be noted that SMC24 is included. In an actual mobile radio communication network, the number of BSs 16 can reach tens of thousands and the number of BSCs 14 can reach thousands, whereas the number of SMCs 24 in total Comparable to the number of MSCs 12, which can be several tens.

  In such an actual communication network, the number of SMS messages carried monthly by the communication network typically reaches billions, and filtering of SMS messages for detecting unnecessary messages is performed by these devices. In turn, the billions give SMC 24 a tremendous processing load problem. In US 2003/0083078, the processing problem at the signaling gateway node has essentially the same digits. As a result, the processing equipment required at each SMC 24 of the communication network shown by FIG. 1 or at each signaling gateway node of the communication network taught by US Patent Application Publication No. 2003/0083078 is installed on Therefore, the scale must be remarkably large and very expensive. This also causes unnecessary delays when forwarding the SMS message to the recipient.

  If the scale of SMS message exchange within a wireless communication network and from sources outside such communication network continues to grow at the current rate, the above problems will be exacerbated and the introduction / increase of MMS message exchange It is expected to get worse.

  As taught in US 2003/0083078, a system for preventing unwanted SMS messages from being delivered to a recipient by examining at least one of sender or receiver identification (routing) information includes: It is not effective for smaller, more targeted SMS message delivery strategies, and analyzes the content of such messages to automatically determine the probability of content containing spam, viruses, worms, etc. Not designed to highlight.

  An object of the present invention is to mitigate or eliminate problems associated with known SMS spam filtering systems in wireless communication networks.

  Another object of the present invention is to provide a method and system for identifying SMS or MMS messages containing spam and viruses in a mobile wireless communication system.

  Yet another object of the present invention is to provide a scalable system for identifying SMS or MMS messages containing spam and viruses in a mobile wireless communication system.

  The present invention contemplates packet data in a wireless communication system by delegating the ability to filter packet data messages to elements of a communication network other than the architecturally arranged elements for processing packet data messages. Includes scalable solutions that address the problem of filtering messages. Here, the elements arranged architecturally for processing such packet data messages are, for example, data message transfer apparatuses or MSCs. To eliminate doubt, the phrase “architecturally arranged to process packet data messages” is a measure by which elements are placed in the network architecture of the communication network to perform data packet processing. Can be understood as The processing here includes functions such as transfer, compression, conversion, encryption, and decryption. An element of the communication network other than the elements arranged architecturally for processing such a packet data message is, for example, a BSC. The BSC is located in the communication network layer below the SMC or MSC. Preferably, the filtering device is used in association with the base station controller. The advantage afforded by this arrangement is that the provision of a system for filtering packet data messages in a wireless communication network can be implemented gradually, thus controlling the capital expenditure associated with such implementation. The system is scalable so that each filtering device filters only a small portion of the packet data messages processed as a whole by the communication network.

  In a first aspect of the present invention, a method for identifying unwanted packet data messages in a wireless communication network, other than elements arranged architecturally to process packet data messages Intercepting the packet data message at an element of the communication network, determining whether the intercepted packet data message is an unwanted message, and accepting the intercepted packet data message as an unwanted message If determined to be, a method is provided that includes performing an action on the message to indicate that the message is not needed. These actions can also include a series of single actions.

  Elements of the communication network other than those arranged architecturally for processing such packet data messages are also referred to below as packet data message interceptors for ease of reference. The elements arranged in the architecture for processing such packet data messages are also referred to as packet data message transfer devices below for easy reference. The architecture of a communication network typically exhibits a layered structure referred to herein for more clarity. Above the wireless communication network terminal is a base station layer, and above the base station layer is a base station controller layer. Following the base station controller layer is a mobile switching center (MSC) layer, where the MSC layer is a layer containing elements that are architecturally arranged to process packet data messages. Since the MSC layer is the top layer, the packet data message interceptor is typically placed in a layer below the MSC layer.

  Preferably, the packet data message transfer device includes a short message center (SMC) or a multimedia message center (MMC) connected to a mobile switching center (MSC) of the wireless communication network, and the wireless communication network Is a mobile radio communication network.

  Preferably, a packet data message transmitted by a predetermined base station controller or a radio communication network terminal managed by the base station or distributed to the radio communication network terminal is converted into a packet data message interceptor. A packet data message interceptor is provided in the wireless communication network so as to intercept. The packet data message interceptor can be co-located with the base station controller.

  As a result, a packet data message interceptor including a filter that determines whether an intercepted message is desired is a small subset of a wireless communication network managed by a given base station or series of base stations. Only packet data messages such as SMS and MMS messages that are forwarded by or addressed to these subscribers are processed. In this way, the methods and systems herein are implemented as a scalable solution to the vast task of filtering SMS messages and the like. In addition, by distributing the system in layers lower than the layers of communication network systems such as MSC and SMC in the communication network, the transmission delay inherent in any filtering mechanism is higher than that proposed in the communication network Less than the delay caused when the inventive filtering system is implemented at the layer.

  The method of the present invention can be implemented as a software program that can be executed by the processor of the packet data interceptor, and in the packet data interceptor, the memory is a program of the software program that implements the first aspect of the present invention. It is arranged to store machine readable instructions including code.

  Determining whether the intercepted packet data message is an unwanted message can include, for example, the method taught by US Patent Application Publication No. 2003/0083078.

  Preferably, the step of determining whether the intercepted packet data message is an unwanted message analyzes the content of the message to determine whether the content contains malicious attack code, spam, Alternatively, it is determined whether the content includes a virus, a worm, or the like.

  As wireless communication network terminals are becoming increasingly sophisticated, it is increasingly possible to adapt the system to address the growing problem of spam messages in the wireless communication network and the inevitable prevalence of viruses in the communication network. It is becoming necessary.

  The step of performing an action on the intercepted message to indicate that the message is an unwanted message can be to discard the message and include spam, viruses, worms, etc. Encapsulate the message with a warning and forward the encapsulated message to the intended recipient, and forward the message to a different destination than the intended recipient, such as a spam repository And can be included.

  Preferably, before determining whether the intercepted packet data message is an unwanted message, as an initial step, the method determines whether the intercepted message is an SMS message or an MMS message and intercepted If it is determined that the message is not an SMS message or an MMS message, the method includes a step of transferring the message to a target destination, thereby avoiding the unnecessary message determination device. Including the initial step as described above increases the message filtering rate when the system is engaged only with SMS and MMS messages.

  Also, preferably, as an initial or additional step, before determining whether the intercepted packet data message is an unwanted message, the method includes a communication in which the message is subscribed to an unwanted message filtering service. Determining whether the call originated from the terminal of the network subscriber.

  The filtering method according to the present invention can be provided on a per subscription basis as a means of generating additional communications network operating revenue for operators and service providers.

  According to a second aspect of the present invention, there is provided a system for identifying an unnecessary packet data message in a wireless communication network, the packet data message being arranged in a communication network layer below a packet data message transfer device layer. Also called data message interceptor and unnecessary message determination device, means for determining whether the intercepted packet data message is an unnecessary message, and in response to the unnecessary message determination device, that the message is unnecessary. A system is provided that includes a processor for processing messages to indicate.

  Preferably, the system includes an updater that updates the packet data message interceptor memory with a program code that includes the latest definitions for malicious attack code, spam, viruses, worms, and the like.

  In a third aspect of the present invention, a packet data message is transmitted by a wireless communication network terminal managed by a predetermined base station controller or base station in a wireless communication system, or distributed to the wireless communication network terminal. Intercepting packet data message interceptor, which is located in a layer of the communication network below the packet data message transfer device layer, and the packet data message interceptor Includes a memory and a processor, the memory being arranged to store machine-readable instructions including program code for performing the method according to the first aspect of the invention, wherein the processor is configured to execute the stored program code. Arranged To provide a packet data message interceptor.

  In a fourth aspect of the present invention there is provided a machine readable medium comprising program code executable on an apparatus according to the third aspect of the present invention for implementing the method of the first aspect of the present invention.

  In a fifth aspect of the present invention, a method for identifying unwanted packet data messages in a wireless communication network, the method comprising: determining whether the intercepted packet data message is an unwanted message; If the received packet data message is determined to be an unwanted message, the message packet message is received in an intercepted manner to indicate that the message is not needed. Determining whether it is an unwanted message includes analyzing the content to determine if the message content contains malicious attack code, spam or viruses, worms, etc. Provide a method.

  Preferably, a packet data message interceptor is provided in a communication network in a layer below the packet data message transfer device layer, and the packet data message transfer device is connected to a mobile switching center (MSC) of the wireless communication network. The wireless communication network is a mobile wireless communication network, including a short message center (SMC) or a multimedia message center (MMC) connected to

  In a sixth aspect of the present invention, a system for identifying unwanted packet data messages in a wireless communication network, wherein the system includes a packet data message interceptor and an intercepted packet data message as an unwanted message. An unnecessary message determination device that determines whether there is a message, and a processor that processes the message to indicate that the message is unnecessary in response to the unnecessary message determination device. A system that analyzes content to determine whether the content of the message contains worms or all of them.

  Preferably, a packet data message interceptor is provided in a communication network in a layer below the packet data message transfer device layer, and the packet data message transfer device is connected to a mobile switching center (MSC) of the wireless communication network. The wireless communication network is a mobile wireless communication network, including a short message center (SMC) or a multimedia message center (MMC) connected to

  In a seventh aspect of the present invention, a packet data message is transmitted by a wireless communication network terminal managed by a predetermined base station controller or base station in a wireless communication system or distributed to the wireless communication network terminal. An intercepting packet data message interceptor comprising a memory and a processor, the memory comprising machine readable instructions comprising program code comprising the method of the fifth aspect of the invention. Arranged to store, the processor provides a packet data message interceptor arranged to execute the stored program code to implement the method.

  In an eighth aspect of the present invention there is provided a machine readable medium comprising program code executable by an apparatus according to the seventh aspect of the present invention for implementing the method of the fifth aspect of the present invention.

  The description of the present invention will be continued with reference to the accompanying drawings.

  The foregoing and further features of the present invention will be readily understood from the description of a preferred embodiment by way of example of the present invention, with reference to FIGS.

  In the following description of the GSM mobile radio communication network according to the present invention, numerals similar to those used in the description of the conventional GSM mobile radio communication network shown in FIG. 1 are used to indicate similar parts. The number “1” is added in front.

  Referring to FIG. 2, the GSM communication network 110 includes a plurality of mobile switching centers (MSCs) 112. The main function of each MSC 112 is to switch call connections between mobile terminals 118 and between mobile terminals 118 and handsets (not shown) in a fixed or wired communication network such as PSTN 122. Each MSC 112 controls a plurality of base station controllers (BSC) 114, and each BSC 114 controls a plurality of base stations (BS) 116. Each BS 116 manages a communication network with a radio interface 115 for any mobile terminal 118 currently present in the radio coverage area (cell).

  GSM communication network 110 relays and stores short message service (SMS) messages and / or multimedia message service (MMS) messages between mobile terminals 118 available for transmission and reception M / SMS; It includes at least one packet data message transfer center (M / SMC) 124 that is responsible for forwarding. For convenience, the M / SMC 124, shown in FIG. 2 as a combined functional device, can include SMC, MMC, separate SMC and separate MMC, or combined SMC and MMC as shown. M / SMC 124 can relay, store, and forward other types of packet data messages in addition to SMS and MMS messages, but generally functions in the same way as SMC in traditional GSM communication networks. To do. The M / SMC 124 is connected to the Internet and / or other data communication network 126 via an appropriate gateway (not shown), and electronic messages generated on such communication network 126 are routed to the addressed mobile terminal 118. Can be delivered to. In such a case, the M / SMC 124 is enabled to convert electronic messages received from such a communication network 126 into a format compatible with the SMS system and / or MMS system.

  The GSM communication network 110 of FIG. 2 described so far has a structure generally known to those skilled in the art. Therefore, it is necessary to include further detailed description and operation of such a communication network to understand the following description of how such a communication network can be adapted according to the present invention as an example of the present invention. Absent.

  The proposed solution seeks to distribute or delegate processing of packet data messages transmitted by or received by mobile terminals 118 away from high level communication network devices such as SMC or MSC. The reason is that the amount of traffic based on packet data messages passing through each such device comprises a significant percentage of the total packet data message traffic processed by the communication network 110. Accordingly, the processing capabilities of the message filtering / processing device at this level of the communication network 110 must be enormous. As a result, a scalable system is provided that processes these packet data messages to identify packet data messages such as SMS and MMS messages that contain unwanted, eg, spam or computer viruses, worms, etc. Packet data, also referred to as a packet data message interceptor, that intercepts and processes packet data messages such as SMS messages and / or MMS messages coming to or from the mobile terminal 118. A message interception and processing system 128 is associated with each base station controller (BSC) 114. Accordingly, the packet data message interceptor 128 is located at a level or layer below the SMC or MSC 112 or packet data message transfer device 124 layer.

  Each packet data message interception and processing system 128 intercepts packet data message traffic for a given BSC 114, thereby delegating / distributing message processing efforts to the middle layer of the wireless communication network 110. It is arranged in the communication network 110.

  In addition to the packet data message interception and processing system 128 associated with each BSC 114, at least one unwanted message definition server 130 is provided that maintains an up-to-date list of unwanted message definitions and message filtering rules.

  The interaction between the packet data message interception and processing system 128 and the unwanted message definition server 130 is more fully understood from the description of FIG. The message interception and processing system, broadly designated by the numeral 128 in FIG. 3, includes an interface 132 within the associated BSC 114. The interface 132 may include a CORBA (Common Object Request Broker Architecture) enabled interface. CORBA is a vendor-independent architecture and infrastructure standard that can be used for computer applications to work together on a communication network. The interface 132 allows packet data messages passing through the BSC 114 to be intercepted by the BSC 114 and conveyed to the similarly usable interface 134 of the unwanted message determination device 136. The unwanted message determination system forms part of the packet data message interception and processing system 128. Although the unnecessary message determination device 136 is shown as a module separated from the message interception interface 132 for convenience in FIG. 3, the message interception interface 132 and the unnecessary message determination device 136 are actually understood. Can be provided as a separate module interconnected by a suitable communication link, or can be provided as an integrated device within the BSC 114. Similarly, it should be understood that the packet data message interception and processing system 128 need not be co-located with the BSC 114, but the same location provides several advantages, such as a common power source. Message interception interface 132 is located at a location within communication network 110 that is convenient for intercepting packet data messages carried by the associated BSC 114.

  The unwanted message determination device 136 includes a processor 138 that processes the intercepted packet data message received at the interface 134 according to a series of filtering algorithms (rules) stored in the memory 140 as program code. The filtering algorithm may include one or more spam detection algorithms that are applied to the content of the intercepted message and analyze the content to determine if the message constitutes spam. Alternatively or additionally, the filtering algorithm may include one or more virus detection algorithms that analyze the content of the intercepted message to determine whether the message contains a computer virus or the like. it can.

  The filtering algorithm used by the processor 138 to analyze the contents of the intercepted message is sent to the packet data message interception and processing system 128 of the wireless communication network 110 to define and filter the latest unwanted message. It can be dynamically downloaded to the memory 140 from the unwanted message definition server 130 acting as one of many servers that maintain the algorithm. Updates from the unwanted message definition server 130 in response to update requests initiated by the processing system processor 138 or periodically as is well known to those skilled in the Internet art. be able to.

  International Business Machines (IBM) “System Management Framework” including a computer platform that can dynamically download code from an SMF server (unwanted message definition server 130) to many SMF clients (processing system 128) The unnecessary message definition server 130 and the packet data message processing system 128 can be implemented by such a system. The unnecessary message definition server 130 can be disposed in the same place as the M / SMC 124 in the wireless communication network 110.

  The memory 140 is a program executable by the processor 138 that performs an action on the intercepted message according to the result of analyzing the content of the message according to one or more filtering (spam detection and / or virus detection) algorithms.・ Store code as well. If the step of determining whether the intercepted message is desired yielded a determination that the message is desired or safe, the message is forwarded to the BSC 114 that forwards it to the intended destination. It is conveyed via the interface 134. However, if it is determined that the message is unnecessary or unsafe, there are a number of options for further performing actions on the message.

  The first option to perform further actions on unwanted messages is to simply discard the message. The second option is to forward unwanted messages to the repository 142. This option is particularly applicable to unwanted messages that are deemed unsafe due to the presence of viruses, etc., and messages that are deemed unwanted because the message is deemed to contain spam. The repository 142 for such messages provides the communication network operator or service provider with the ability to analyze messages determined to be unnecessary to improve spam and virus filtering algorithms. A further option to further process a message that is determined to be unnecessary is to encapsulate the message with a warning and forward the encapsulated message to the intended recipient. When opening a message, only the warning part of the message is opened first to alert the recipient in advance that the message may contain spam or may contain, for example, a virus Is encapsulated.

  Reference is now made to FIG. FIG. 4 illustrates that a packet data message interception and processing system 128 associated with BSC 114 is configured to intercept and process SMS messages transmitted from terminal 118 controlled by BSC 114 and delivered to terminal 118. It includes a flow diagram that logically represents the BSC 114 of the case.

  In a first initial step, the packet data message received from the MSC 112 is analyzed to determine whether the packet data message includes an SMS message. This step can be performed by a processor (not shown) of the BSC 114. If it is determined that the intercepted packet data message is not an SMS message, the BSC 114 transfers the message to the BS 116 for relay to the intended recipient. A similar initial step is performed on the packet data message received from the BS 116 at the BSC 114, and if it is determined that the intercepted packet data message is not an SMS message, the message is forwarded to the MSC 112 for forward transmission. To do.

  The above-described function includes an SMS / MMS determination device that determines whether the intercepted message is an SMS or an MMS message, and forwards the message to a target destination in response to the SMS / MMS determination device. Thus, the message is executed by the transfer device that avoids the unnecessary message determination device 136 of the packet data message interceptor 128 when it is determined that the intercepted message is not an SMS or MMS message.

  In any of the above cases, if it is determined that the proxy message is an SMS message, the message is redirected to the unnecessary message determination device 136 for further processing as described above. If it is determined that the SMS message redirected to the unwanted message determination device 136 includes a desired or secure SMS message, the message is returned to the BSC 114, where the returned SMS message is sent to the MSC 112 or BS 116. Determine if you are going and forward the message accordingly. This further step can be performed in the processor of the BSC 114.

  In a further initial step, the processor of the BSC 114 or unwanted message determination to determine whether the intercepted packet data message originated from the subscriber's terminal 118 identified as subscribing to the message filtering service. The processor 138 of the device 136 can be arranged and designed. If it is determined that the call originated from the subscriber's terminal 118, the message is processed as described above. Accordingly, the processor includes a source determination device function. If it is determined that the message is not transmitted from the subscriber's terminal 118, the message can be transferred to the intended recipient without being processed, that is, the unnecessary message determination device 136 is avoided. However, if a communication network operator or service provider determines that the message may be insecure, i.e., contains a virus, etc., the communication network operator or service provider has not subscribed to the message filtering service. Can manipulate the policy to discard the user's message.

  If the packet data message interception and processing system 128 is co-located with the BSC 114, the BSC processor and message decision processor 138 may include a single processor.

  FIG. 5 is as previously described herein, but when the system is configured to intercept and process SMS messages transmitted from terminal 118 controlled by BSC 114 and delivered to terminal 118. A flow diagram including a logical representation of the unnecessary message determination device 136 is included.

  In an alternative arrangement, the packet data message interception and processing system 128 intercepts SMS / MMS messages for the mobile terminal 118 of only one BS 116 as shown by the dashed line in the lower left part of FIG. The packet data message interception and processing system 128 can be further scalable by placing it in the communication network 110. However, it will be appreciated that this arrangement is about 10 times that where the system is associated with the BSC 114 since there are about 15 BSs 116 for each BSC 114 in a typical wireless communication network as described above. Requires ~ 20 times as many packet data message interception and processing systems 128.

  Although the above description of embodiments of the present invention is directed to GSM wireless communication networks, it should be understood that the present invention is equally applicable to non-GSM mobile wireless communication networks and fixed wireless communication networks.

  In summary, the present invention relates to a method and system for identifying unwanted short message service (SMS) messages in a mobile wireless communication system. In the Internet context, the problem of unwanted junk or spam electronic messages (email) is well known. However, the problem of spam SMS messages in wireless communication networks is increasing. The present invention contemplates packet data messages in a wireless communication system by delegating the ability to filter packet data messages to devices located in a layer of a communication network below the Short Message Center (SMC). Includes a scalable solution to the problem of filtering The filtering device is used in connection with the base station controller. The advantage afforded by this arrangement is that the system is scalable so that each device filters only a small portion of the packet data messages processed as a whole by the communication network. The method includes intercepting unwanted messages and performing actions on these messages to indicate that the messages are not needed.

1 is a block diagram illustrating a simplified structure of a conventional global system for mobile communication (GSM) wireless communication network. FIG. 1 is a block diagram illustrating a simplified structure of a GSM wireless communication network according to the present invention. FIG. 1 is a block diagram illustrating a packet data message interception and processing system according to the present invention. FIG. 2 is a flow diagram including a logical representation of a wireless communication network base station controller according to the present invention. 3 is a flow diagram including a logical representation of a desired packet data message determination device according to the present invention.

Claims (46)

A method of identifying unwanted packet data messages in a wireless communication network (110), comprising:
Intercepting the packet data message at an element (128) of the communication network (110) other than the architecturally arranged element (124) for processing the packet data message;
Determining whether the intercepted packet data message is an unwanted message;
If it is determined that the intercepted packet data message is an unwanted message, performing an action on the message to indicate that the message is not needed;
Including methods.   The architecturally arranged element (124) for processing packet data messages is a short message center (112) connected to a mobile switching center (MSC) (112) of the wireless communication network (110). The wireless communication network (110) of claim 1, wherein the wireless communication network (110) is selected as a mobile wireless communication network, wherein the wireless communication network (110) is selected to include either an SMC) or a multimedia message center (MMC). Method.   The method of claim 2, wherein the packet data message is selected to include one of a short message service (SMS) message and a multimedia message service (MMS) message.   The elements (128) of the communication network (110) other than the architecturally arranged elements (124) for processing such packet data messages include a predetermined base station controller (114) and a base station The wireless communication to intercept packet data messages transmitted by the wireless communication network terminal (118) managed by one of (116) or distributed to the wireless communication network terminal (118) The method according to claim 1, wherein the method is provided in a network.   The elements (128) of the communication network (110) other than the architecturally arranged elements (124) for processing such packet data messages are co-located with the base station controller (114). The method according to any one of claims 1 to 4.   The elements (128) of the communication network (110) other than the architecturally arranged elements (124) for processing such packet data messages include a memory (140) and a processor (138). And the memory (140) is arranged to store machine readable instructions including program code for determining whether the intercepted packet data message is an unwanted message, and the processor (138) Determines whether the intercepted packet data message is an unnecessary message, and if it is determined that the intercepted packet data message is an unnecessary message, the message is unnecessary. Action on the message to indicate It is arranged to execute the program code that implements the steps of performing a method according to any one of claims 1 to 5.   7. The method of any one of claims 1-6, wherein the step of determining whether an intercepted packet data message is an unwanted message includes analyzing routing information about the intercepted packet data message. The method described in 1.   The step of determining whether the intercepted packet data message is an unwanted message includes analyzing the content of the message, wherein the content includes a malicious attack code, spam, virus or worm. The method according to any one of claims 1 to 6, further comprising an analysis step for determining whether or not.   The method of claim 8, wherein the analyzing step comprises applying a series of filtering rules to the content of the message.   The method of claim 9, wherein the set of filtering rules is selected to include a spam detection algorithm.   The method of claim 10, wherein the spam detection algorithm is arranged to detect macros in either SMS and MMS messages.   The method of claim 11, wherein the spam detection algorithm is arranged to detect callback macros in either SMS and MMS messages.   The method of claim 9, wherein the set of filtering rules includes a virus / worm detection algorithm.   Elements (124) that are architecturally arranged to process such packet data messages with program code containing the latest definitions for any of malicious attack code, spam, viruses and worms 14. A method according to any one of claims 8 to 13, comprising updating the element (128) of the communication network (110) other than. Said step of performing an action on the intercepted message to indicate that the message is an unwanted message;
Discarding the message;
Encapsulating the message with a warning that it may contain any of malicious attack code, spam, viruses and worms, and forwarding the encapsulated message to the intended recipients;
15. The method according to any one of claims 1 to 14, comprising: forwarding the message to a destination different from the intended recipient destination.   The method of claim 15, wherein the another destination is selected to include a spam message repository.   Before determining whether the intercepted packet data message is an unwanted message, as an initial step, the method determines whether the intercepted message is an SMS or MMS message, and the intercepted message is received. 17. If the determined message is determined not to be an SMS or MMS message, the method includes the step of transferring the message to a target destination, thereby avoiding the unnecessary message determination device (136). The method according to item.   Prior to determining whether the intercepted packet data message is an unwanted message, the method sends the message from the terminal (118) of a communications network subscriber that subscribes to an unwanted message filtering service. 18. A method according to any one of the preceding claims, comprising determining whether it has been done. In a system for identifying unwanted packet data messages in a wireless communication network (110),
A packet data message interceptor (128) that intercepts packet data messages, said communication other than the elements (124) arranged architecturally to process such packet data messages A packet data message interceptor (128) which is an element of the network (110);
An unnecessary message determination device (136) for determining whether the intercepted packet data message is an unnecessary message;
And a processor (138) that performs an action on the intercepted packet data message to indicate that the message is unnecessary in response to the unwanted message determination device (136).   The elements (124) arranged architecturally to process such packet data messages are short messages connected to a mobile switching center (MSC) (112) of the wireless communication network (110). 20. The system of claim 19, comprising one of a center (SMC) and a multimedia message center (MMC), wherein the wireless communication network is a mobile wireless communication network.   The packet data message interceptor (128) is transmitted by a wireless communication network terminal (118) managed by either a predetermined base station controller (114) and a base station (116), or 21. System according to claim 19 or 20, wherein said system is provided in said wireless communication network to intercept packet data messages that are delivered to a wireless communication network terminal (118).   The system according to any of claims 19 to 21, wherein the packet data message interceptor (128) is co-located with a base station controller (114).   14. The packet data message interceptor (128) comprises a memory (140) and a processor (138), the memory (140) comprising a program comprising the method according to any one of claims 1-13. 23. The machine of claim 19-22, arranged to store machine readable instructions including code, wherein the processor (138) is arranged to execute the stored program code to implement the method. The system according to any one of the above.   Unnecessary message definition server that updates the memory (140) of the packet data message interceptor (128) with program code containing the latest definitions for any of malicious attack code, spam, viruses and worms ( 130).   25. A system according to claim 23 or 24, comprising a spam message repository (142).   The processor (138) determines whether the intercepted message is an SMS or an MMS message, and if it is determined that the intercepted message is not an SMS or an MMS message, the processor (138) sends the message to a target destination. 26. The system according to any one of claims 23 to 25, which is designed to transfer a message, thereby avoiding an unnecessary message determination device (136).   24. The processor (138) is designed to determine whether an intercepted message originated from a terminal (118) of a communication network subscriber subscribed to an unwanted message filtering service. The system according to any one of -26. Transmitted by the wireless communication network terminal (118) managed by any of the predetermined base station controller (114) and base station (116) in the wireless communication system (110), or the wireless communication network terminal (118) A packet data message interceptor (128) that intercepts the packet data message delivered to the packet data message interceptor (128). Elements of the communication network (110) other than the elements (124) arranged architecturally for processing, the packet data message interceptor (128),
An interface (132) for intercepting packet data messages;
A memory (140);
A processor (138), wherein the memory (140) is arranged to store machine-readable instructions including program code for performing the method of any one of claims 1-18, The processor (138) is a packet data message interceptor (128) arranged to execute the stored program code.   A machine readable medium comprising program code executable by a processor (138) implementing the method of any one of claims 1-18. In a method for identifying unwanted packet data messages in a wireless communication network (110), the method comprises:
Intercepting packet data messages;
Determining whether the intercepted packet data message is an unwanted message;
If the intercepted packet data message is determined to be an unwanted message, performing an action on the message to indicate that the message is unnecessary;
The step of determining whether the intercepted packet data message is an unwanted message is to determine whether the content of the message contains a malicious attack code, spam, virus or worm Analyzing the content.   A packet data message interceptor (128) is provided as an element of the communication network (110) other than the architecturally arranged element (124) for processing such packet data messages. Characteristically, as the element (124) arranged architecturally for processing such packet data messages, the packet data message transfer device (124) is a mobile switching center ( MSC) is selected to include either a short message center (SMC) and a multimedia message center (MMC) connected to (112), and the wireless communication network is selected as a mobile wireless communication network The method of claim 30.   The method of claim 31, wherein the packet data message interceptor (128) is co-located with a base station controller (114).   The packet data message interceptor (128) is selected to include a memory (140) and a processor (138), and the memory (140) determines whether the intercepted packet data message is an unwanted message. Arranged to store machine readable instructions including program code for determining, wherein the processor (138) determines whether the intercepted packet data message is an unwanted message, and the intercepted packet If the data message is determined to be an unnecessary message, the program code implementing the step of performing an action on the message to indicate that the message is unnecessary is arranged to execute Any of claims 30 to 32 The method according to item.   The step of analyzing the content of the intercepted message to determine whether the content includes malicious attack code, spam, virus, or worm comprises a series of filtering rules 34. A method according to any one of claims 30 to 33, comprising applying to the content of a message.   35. The method of claim 34, wherein the set of filtering rules includes a spam detection algorithm that detects macros in either SMS and MMS messages.   36. Update the packet data message interceptor (128) with a program code containing the latest definitions for any of malicious attack code, spam, viruses and worms. The method according to claim 1. Said step of performing an action on the intercepted message to indicate that the message is an unwanted message;
Discarding the message;
Encapsulating the message with a warning and forwarding the encapsulated message to the intended recipient;
37. The method according to any one of claims 30 to 36, comprising: forwarding the message to a destination other than the intended recipient's destination.   Before determining whether the intercepted packet data message is an unwanted message, as an initial step, the method determines whether the intercepted message is an SMS or MMS message, and the intercepted message is received. 38. If the determined message is determined not to be an SMS or MMS message, the method includes the step of transferring the message to a target destination, thereby avoiding the unnecessary message determination device (136). The method according to item.   Before determining whether the intercepted packet data message is an unwanted message, the method sends the message from the terminal (118) of a communication network subscriber that subscribes to an unwanted message filtering service. 39. A method according to any one of claims 30 to 38, comprising the step of determining whether or not. In a system for identifying unwanted packet data messages in a wireless communication network (110), the system comprises:
A packet data message interceptor (128) that intercepts packet data messages;
An unnecessary message determination device (136) for determining whether the intercepted packet data message is an unnecessary message;
A processor (138) that performs an action on the message to indicate that the message is unnecessary in response to the unnecessary message determination device (136), the unnecessary message determination device (136) A system arranged to analyze the content to determine whether the content of the message contains certain attack codes, spam, viruses and worms.   The packet data message interceptor (128) is used as an element of the communication network (110) other than the elements (124) arranged architecturally to process such packet data messages. The elements of the communication network (110) other than the elements (124) that are architecturally arranged to process such packet data messages are Including a short message center (SMC) and a multimedia message center (MMC) connected to a switching center (MSC) (112), wherein the wireless communication network is a mobile wireless communication network. The system according to claim 40.   39. The packet data message interceptor (128) includes a memory (140) and a processor (138), the memory (140) executing a method according to any one of claims 30-38. 42. A system according to claim 40 or 41, arranged to store machine readable instructions including code, and wherein the processor (138) is arranged to execute the stored program code.   Unnecessary message definition server that updates the memory (140) of the packet data message interceptor (128) with program code containing the latest definitions for any of malicious attack code, spam, viruses and worms ( 130).   In response to the SMS / MMS determination device, it is determined that the received message is not an SMS or MMS message in response to the SMS / MMS determination device. And a forwarding device that forwards the message to a target destination, thereby avoiding the unnecessary message determination device (136) of the packet data message interceptor (128). The described system. In the wireless communication system (110), transmitted by the wireless communication network terminal (118) managed by either the predetermined base station controller (114) or the base station (116), and delivered to the wireless communication network terminal (118). A packet data message interceptor (128) for intercepting packet data messages, wherein the packet data message interceptor (128) comprises:
An interface (132) for intercepting packet data messages;
A memory (140);
A processor (138), wherein the memory (140) is arranged to store machine-readable instructions including program code for performing the method of any one of claims 30-39, and The processor (138) is a packet data message interceptor (128) arranged to execute the stored program code.   A machine readable medium comprising program code executable on an apparatus (128) as claimed in claim 49 for implementing the method according to any one of claims 30-39.

Images