`
`PATENT
`
`1. (Previously Presented) A network system for providing connection to one or more Internet
`
`data services for one or more wireless end-user devices communicatively coupled to the
`
`network system over a wireless access network, the network system comprising:
`
`a policy enforcement function configured to block or forward Internet data traffic for each
`
`of the wireless end-user devices according to a respectively applicable data access
`
`policy for each such wireless end-user device, the respectively applicable data access
`
`policy for a first one of the wireless end-user devicesinitially comprising a first data
`
`access policy that allows Internet data traffic forwarding for the first one of the end-
`
`user devices for the limited purpose of communication between a service processor
`
`executing on the first one of the end-user devices and a service controller reachable
`
`through the policy enforcement function; and
`
`a first policy element configuredto,
`
`upon receiving a first indication from the service controller
`
`that the first one of the wireless end-user devices has at least one active
`
`Internet data service plan allowing access to an Internet data service, and
`
`that the service processor can be trusted to enforce and account for
`
`Internet data service supplied to that device according to the at least one active
`
`Internet data service plan,
`
`instruct the policy enforcement function to apply a second data accesspolicy to
`
`Internet data traffic for the first one of the wireless end-user devices, the second data
`
`access policy allowing forwarding of Internet data traffic betweenthe first one of the
`
`wireless end-user devices and unspecified Internet destinations.
`
`2-34. (Canceled).
`
`35. (Previously Presented) The network system recited in claim 1, wherein the policy
`
`enforcement function comprises a policy control enforcement function (PCEF).
`
`36. (Previously Presented) The network system recited in claim 1, wherein the policy
`
`enforcement function comprises a gateway GPRSsupport node (GGSN).
`
`App. No. 13/947,099
`
`2
`
`Docket No. RALEP118
`
`
`
`PATENT
`
`37. (Previously Presented) The network system recited in claim 1, wherein the policy
`
`enforcement function comprises a switch.
`
`38. (Previously Presented) The network system recited in claim 1, wherein the policy
`
`enforcement function comprises a packet inspection element.
`
`39-54. (Canceled).
`
`55. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a policy decision function (PDF).
`
`56. (Previously Presented) The network system recited in claim 1, wherein thefirst policy
`
`element comprises a policy control function (PCF).
`
`57. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a policy and charging rules function (PCRF).
`
`58. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises an on-line charging system (OCS).
`
`59. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises an accounting policy function (APF).
`
`60. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a policy state function (PSF).
`
`61. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a service policy managementfunction (SPMF).
`
`App. No. 13/947,099
`
`3
`
`Docket No. RALEP118
`
`
`
`PATENT
`
`62. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a device interface function (DIF).
`
`63. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a classification definition update function (CDUF).
`
`64. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a policy rules element (PRE).
`
`65. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a charging element (CE).
`
`66. (Previously Presented) The network system recited in claim 1, wherein the first policy
`
`element comprises a notification element (NE).
`
`67-81. (Canceled).
`
`82. (Previously Presented) The network system recited in claim 1, wherein the policy
`
`enforcementfunction is configured to classify traffic from at least a portion of the one
`
`or more wireless end-user devices communicatively coupled to the network system
`
`over the wireless access network, and wherein the second data access policy comprises
`
`one or moreinstructions defining a classification of service, the classification of
`
`service enabling the network system to provide or perform granular service
`
`accounting, granular service notification, or granular service control.
`
`83-89. (Canceled).
`
`90. (Previously Presented) The network system of claim 1, wherein the policy enforcement
`
`function is associated with a first APN (Access Point Name) usedbya first group of
`
`wireless end-user devices, including the one or more wireless end-user devices, for
`
`Internet data services, each device in the first group associated with the service
`
`App. No. 13/947,099
`
`4
`
`Docket No. RALEP118
`
`
`
`controller for service plan management, the network system comprising a second APN
`
`for a second group of wireless end-user devices, not associated with the service
`
`controller for service plan management.
`
`PATENT
`
`91. (Previously Presented) The network system of claim 90, further comprising an HLR (Home
`
`Location Register) to hold subscriber records for devices in the first and second groups
`
`of wireless end-user devices, the subscriber records for the first group of devices
`
`provisioned with the first APN, the network system configured such that the HLR
`
`validates the first wireless end-user device as provisioned with the first APN to
`
`determine whetherthe first wireless end-user device is allowed to connect to the first
`
`APN.
`
`92. (Previously Presented) The network system of claim 1, wherein the one or more wireless
`
`end-user devices comprise a first group of devices associated with the service
`
`controller for service plan management, and a second group of devices not associated
`
`with the service controller for service plan management.
`
`93. (Previously Presented) The network system of claim 92, the policy enforcement function
`
`generating usage reporting information for each device in the first group and each
`
`device in the second group, the network system further comprising an OCS and a
`
`proxy, the proxy routing the usage reporting information for the first group to the
`
`service controller, and routing the usage reporting information for the second group to
`
`the OCS.
`
`94. (Previously Presented) The network system of claim 1, the policy enforcement function
`
`further configured to, in responseto the first one of the wireless end-user devices
`
`requesting the start of a data session, communicate with the service controller to
`
`obtain a second indication of whether to apply the first data access policy to the first
`
`one of the wireless end-user devices, or to refuse the data session.
`
`App. No. 13/947,099
`
`5
`
`Docket No. RALEP118
`
`
`
`PATENT
`
`95. (Previously Presented) The network system of claim 94, wherein thefirst policy elementis
`
`integrated with the service controller.
`
`96. (Previously Presented) The network system of claim 94, further comprising the service
`
`controller, the service controller configured to send the second indication, and when
`
`the second indication is to apply the first data access policy, send a third indication to
`
`the policy enforcement function to tear down the data session when, within a
`
`synchronization period, the service processor executing on thefirst one of the wireless
`
`end-user devices has failed to synchronize with the service controller.
`
`App. No. 13/947,099
`
`6
`
`Docket No. RALEP118
`
`