Authentication in a Wireless Telecommunications Network

1. A system for facilitating authentication of machine devices over a wireless access network, the system comprising: a hub device having an authentication storage means operable to provide authentication information during an authentication process; a plurality of machine devices each operable to connect to a wireless access network and each having a communication interface with the hub device, through which requests for authentication information are made to the hub device; and a core network operable to authenticate each machine device; wherein, during the authentication process, the hub device is operable to respond to each request with authentication information that includes a corresponding temporary identifier and a distinct key association, each corresponding temporary identifier being related to a permanent identifier associated with the hub device, wherein the authentication information provided to the machine devices enables said machine devices to be concurrently authenticated with the core network so as to allow the machine devices to concurrently access the wireless access network, wherein the core network includes a home location register operable to maintain a database of records of the temporary identifiers corresponding to the authenticated machine devices so as to associate each temporary identifier with the permanent identifier of the hub device and to associate each record with the corresponding machine device identifier to enable tracking of the location of each machine device, the home location register also being operable to identify a master device as representative of the plurality of machine devices associated with the hub device by incorporating a flag in the permanent identifier or the temporary identifiers, or by using a base as the permanent identifier and offsets from the base as the temporary identifiers, and wherein the core network includes a visitor location register for storing temporary records corresponding to the machine devices that are authenticated with the core network, wherein the visited location register is configured to store a record for each authenticated machine device, such that each temporary record is related to the permanent identifier of the hub device.

2. The system as claimed in claim 1 , wherein the requests for authentication information are challenges to the authentication storage means and wherein the authentication information obtained from the hub device includes key material.

3. The system as claimed in claim 1 , wherein the a home location register is operable to redirect to the master device all incoming communications directed to any of the machine devices, the master device being the hub or one of the machine devices.

4. The system as recited in claim 1 , wherein the permanent identifier associated with the hub device is an International Mobile Subscriber Identity (IMSI).

5. The system as recited in claim 1 , wherein the authentication storage means comprises a Subscriber Identity Module (SIM).

6. The system as recited in claim 1 , wherein the base is an International Mobile Subscriber Identity (IMSI) and the temporary identifiers are offset from the IMSI.

7. A method for facilitating concurrent authentication of machine devices via a hub device having an authentication storage means, the method comprising: at the hub device, receiving requests for authentication information from each of a plurality of machine devices; and responding to each request with authentication information that includes a corresponding temporary identifier and a distinct key association, each corresponding temporary identifier being related to a permanent identifier associated with the hub device; in each of the machine devices, receiving the corresponding temporary identifier and distinct key association from the hub device; and sending the corresponding temporary identifier and distinct key association to a core network associated with a wireless access network; and in the core network, receiving the corresponding temporary identifier and distinct key association from each machine device, authenticating each machine device to provide said machine devices with concurrent access to the wireless access network; maintaining a home location register that includes records of the temporary identifiers corresponding to the authenticated machine devices so as to associate each temporary identifier with the permanent identifier of the hub device and to associate each record with the corresponding machine device identifier to enable tracking of the location of each machine device, the home location register being operable to identify a master device as representative of the plurality of machine devices associated with the hub device by incorporating a flag in the permanent identifier or the temporary identifiers, or by using a base as the permanent identifier and offsets from the base as the temporary identifiers; and storing a temporary record for each authenticated machine device in a visitor location register, such that each temporary record is related to the permanent identifier of the hub device.

8. The method as recited in claim 7 , further comprising redirecting to the master device all incoming communications directed to any of the machine devices, the master device being the hub or one of the machine devices.

9. The method as recited in claim 7 , wherein the permanent identifier associated with the hub device is an International Mobile Subscriber Identity (IMSI).

10. The method as recited in claim 7 , wherein the base is an International Mobile Subscriber Identity (IMSI) and the temporary identifiers are offset from the IMSI.