ATE383691T1 - Verfahren zum prüfen einer berechtigung - Google Patents

Verfahren zum prüfen einer berechtigung

Info

Publication number
ATE383691T1
ATE383691T1 AT98905901T AT98905901T ATE383691T1 AT E383691 T1 ATE383691 T1 AT E383691T1 AT 98905901 T AT98905901 T AT 98905901T AT 98905901 T AT98905901 T AT 98905901T AT E383691 T1 ATE383691 T1 AT E383691T1
Authority
AT
Austria
Prior art keywords
user
mobile telephone
computer
access
encryption key
Prior art date
Application number
AT98905901T
Other languages
English (en)
Inventor
Robert Leonardi
Original Assignee
Ericsson Telefon Ab L M
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ericsson Telefon Ab L M filed Critical Ericsson Telefon Ab L M
Application granted granted Critical
Publication of ATE383691T1 publication Critical patent/ATE383691T1/de

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/10Integrity
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3825Use of electronic signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0806Details of the card
    • G07F7/0813Specific details related to card security
    • G07F7/082Features insuring the integrity of the data on or in the card
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/72Subscriber identity

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Strategic Management (AREA)
  • Finance (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Circuit For Audible Band Transducer (AREA)
  • Air Bags (AREA)
  • Paper (AREA)
  • Holo Graphy (AREA)
  • Stereophonic System (AREA)
  • Testing, Inspecting, Measuring Of Stereoscopic Televisions And Televisions (AREA)
  • Numerical Control (AREA)
  • Telephonic Communication Services (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Communication Control (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
AT98905901T 1997-02-19 1998-02-05 Verfahren zum prüfen einer berechtigung ATE383691T1 (de)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
SE9700587A SE508844C2 (sv) 1997-02-19 1997-02-19 Förfarande för behörighetskontroll med SIM-kort

Publications (1)

Publication Number Publication Date
ATE383691T1 true ATE383691T1 (de) 2008-01-15

Family

ID=20405854

Family Applications (1)

Application Number Title Priority Date Filing Date
AT98905901T ATE383691T1 (de) 1997-02-19 1998-02-05 Verfahren zum prüfen einer berechtigung

Country Status (12)

Country Link
US (1) US6556680B1 (de)
EP (1) EP0962071B1 (de)
JP (1) JP2001513274A (de)
CN (1) CN1140087C (de)
AT (1) ATE383691T1 (de)
AU (1) AU725952B2 (de)
BR (1) BR9807372A (de)
CA (1) CA2281816C (de)
DE (1) DE69838974D1 (de)
NO (1) NO993939L (de)
SE (1) SE508844C2 (de)
WO (1) WO1998037663A1 (de)

Families Citing this family (41)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6925568B1 (en) 1998-01-16 2005-08-02 Sonera Oyj Method and system for the processing of messages in a telecommunication system
WO2000031608A2 (en) * 1998-11-24 2000-06-02 Telefonaktiebolaget Lm Ericsson (Publ) Mobile telephone auto pc logon
FR2787273B1 (fr) * 1998-12-14 2001-02-16 Sagem Procede de paiement securise
AUPP818599A0 (en) * 1999-01-18 1999-02-11 Benson, Keith Apparatus & method relating to authorisation control
FI108813B (fi) * 1999-03-08 2002-03-28 Sonera Smarttrust Oy Menetelmä ja järjestelmä tietoliikennejärjestelmässä
SE513773C2 (sv) * 1999-03-19 2000-11-06 Ericsson Telefon Ab L M Metod och system för elektronisk handel
JP4550341B2 (ja) * 1999-09-16 2010-09-22 パナソニック株式会社 通信端末および通信方法
SE522260C2 (sv) 1999-10-01 2004-01-27 Ericsson Telefon Ab L M Metod, system och säkerhetsadapter för att exekvera säker dataöverföring i ett trådlöst nät
DK174672B1 (da) * 1999-11-09 2003-08-25 Orange As System til elektronisk udlevering af en personlig identifikationskode
AU780943B2 (en) * 1999-12-30 2005-04-28 International Business Machines Corporation Method of payment by means of an electronic communication device
US6760841B1 (en) * 2000-05-01 2004-07-06 Xtec, Incorporated Methods and apparatus for securely conducting and authenticating transactions over unsecured communication channels
FR2808947B1 (fr) * 2000-05-09 2002-10-18 Bull Cp8 Procede pour authentifier un objet portatif, objet portatif correspondant, et appareil pour mettre en oeuvre le procede
US20050178060A1 (en) * 2003-05-08 2005-08-18 Weder Donald E. Collapsible and/or erectable floral containers
JP2002232861A (ja) * 2001-01-30 2002-08-16 Hitachi Ltd 映像情報配信装置および操作装置
GB2372904B (en) * 2001-03-02 2004-09-08 Nokia Mobile Phones Ltd Electronic transactions
GB2372865B (en) * 2001-03-02 2004-06-16 Nokia Mobile Phones Ltd Electronic transactions
US7032047B2 (en) * 2001-03-12 2006-04-18 Motorola, Inc. Method of regulating usage and/or concession eligibility via distributed list management in a smart card system
FR2825543B1 (fr) * 2001-06-01 2003-09-26 Radiotelephone Sfr Procede et dispositif de certification d'une transaction
FR2827448B1 (fr) * 2001-07-12 2003-12-19 Gemplus Card Int Procede assurant une garantie de paiement pour le commerce electronique notamment par telephone mobile et systeme de mise en oeuvre
CN100508448C (zh) * 2001-10-12 2009-07-01 松下电器产业株式会社 内容处理装置
US20030088794A1 (en) * 2001-11-05 2003-05-08 Aladdin Knowledge Systems Ltd. Method and system for rendering secure pin entry
WO2003050774A1 (en) * 2001-12-10 2003-06-19 Beamtrust A/S A method of distributing a public key
EP1500289B1 (de) 2002-01-16 2009-08-19 Broca Communications Limited Sicherheitsnachrichten über ein mobilkommunikationsnetzwerk
BR0308965A (pt) * 2002-04-03 2005-02-01 Swivel Secure Ltd Sistema e método para transação segura com cartão de crédito e/ou débito
EP1502388B1 (de) * 2002-05-01 2007-12-05 Telefonaktiebolaget LM Ericsson (publ) System, Apparat und Methode zur SIM basierten Authentifizierung und Verschlüsselung beim Zugriff auf ein drahtloses lokales Netz
AU2003271923A1 (en) * 2002-10-17 2004-05-04 Vodafone Group Plc. Facilitating and authenticating transactions
EG23422A (en) * 2002-11-24 2005-07-10 Ashraf Kamal Salem Mashhour Scheme for spreading and easy use of electronic services and remote payments.
DE10311249A1 (de) * 2003-03-14 2004-09-23 Robert Bosch Gmbh Mikroprozessorsystem und Verfahren zum Erfassen des Austauschs von Bausteinen des Systems
KR20040082822A (ko) * 2003-03-20 2004-09-30 엘지전자 주식회사 원격제어를 위한 사용자 인증방법 및 원격제어장치
CN100369504C (zh) * 2003-04-10 2008-02-13 中兴通讯股份有限公司 在机卡分离的phs手机上防止被并机盗打的方法
US7978707B2 (en) * 2004-04-01 2011-07-12 Alcatel Lucent Method and apparatus for securely establishing L3-SVC connections
CN100355314C (zh) * 2004-06-28 2007-12-12 华为技术有限公司 一种应用通用鉴权框架的方法
FR2876478B1 (fr) * 2004-10-12 2007-01-05 David Bensimon Systeme securise personnalisable de reconnaissance et d'utilisation conditionnelle d'appareils electriques ou electroniques et procede d'utilisation
US20070186115A1 (en) * 2005-10-20 2007-08-09 Beijing Watch Data System Co., Ltd. Dynamic Password Authentication System and Method thereof
US7926713B2 (en) * 2007-02-16 2011-04-19 Sony Corporation Settlement server, settlement request server and settlement execution terminal
WO2008150060A1 (en) * 2007-06-04 2008-12-11 Lg Electronics Inc. Contactless management using envelope format
CN101127954B (zh) * 2007-09-21 2010-08-18 冯卫东 一种基于手机拨号通讯或gprs分组通讯技术实现数据传送的方法
DE102008017630A1 (de) * 2008-04-04 2009-10-08 Deutsche Telekom Ag Verfahren, mobiles Telekommunikationsendgerät und System zur Authentisierung
FR2958102B1 (fr) * 2010-03-23 2012-08-17 Ingenico Sa Procede et systeme de validation d'une transaction, terminal transactionnel et programme correspondants.
CN102085346B (zh) * 2011-01-02 2012-02-15 刘晓云 一种治疗慢性阻塞性肺病的中药组合物
GB2611806A (en) * 2021-10-15 2023-04-19 Mastercard International Inc Chip authentication

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5283828A (en) * 1991-03-01 1994-02-01 Hughes Training, Inc. Architecture for utilizing coprocessing systems to increase performance in security adapted computer systems
US5335278A (en) * 1991-12-31 1994-08-02 Wireless Security, Inc. Fraud prevention system and process for cellular mobile telephone networks
US5327497A (en) * 1992-06-04 1994-07-05 Integrated Technologies Of America, Inc. Preboot protection of unauthorized use of programs and data with a card reader interface
US5596718A (en) * 1992-07-10 1997-01-21 Secure Computing Corporation Secure computer network using trusted path subsystem which encrypts/decrypts and communicates with user through local workstation user I/O devices without utilizing workstation processor
ATE159602T1 (de) * 1992-11-11 1997-11-15 Finland Telecom Oy Verfahren zum durchführen von finanziellen transaktionen mittels eines mobilen telephonsystems
US5537474A (en) * 1994-07-29 1996-07-16 Motorola, Inc. Method and apparatus for authentication in a communication system
US5608778A (en) * 1994-09-22 1997-03-04 Lucent Technologies Inc. Cellular telephone as an authenticated transaction controller
FI100137B (fi) * 1994-10-28 1997-09-30 Vazvan Simin Reaaliaikainen langaton telemaksujärjestelmä
SE506506C2 (sv) 1995-04-11 1997-12-22 Au System Elektronisk transaktionsterminal, telekommunikationssystem innefattande en elektronisk transaktionsterminal, smart kort som elektronisk transaktionsterminal samt metod för överföring av elektroniska krediter

Also Published As

Publication number Publication date
SE9700587L (sv) 1998-08-20
NO993939D0 (no) 1999-08-17
CN1140087C (zh) 2004-02-25
SE508844C2 (sv) 1998-11-09
SE9700587D0 (sv) 1997-02-19
BR9807372A (pt) 2000-03-14
CA2281816C (en) 2007-09-18
EP0962071B1 (de) 2008-01-09
CN1248367A (zh) 2000-03-22
AU6126898A (en) 1998-09-09
NO993939L (no) 1999-10-19
JP2001513274A (ja) 2001-08-28
DE69838974D1 (de) 2008-02-21
EP0962071A1 (de) 1999-12-08
WO1998037663A1 (en) 1998-08-27
US6556680B1 (en) 2003-04-29
AU725952B2 (en) 2000-10-26
CA2281816A1 (en) 1998-08-27

Similar Documents

Publication Publication Date Title
ATE383691T1 (de) Verfahren zum prüfen einer berechtigung
CA2026739A1 (en) Transaction system security method and apparatus
WO1997049054A3 (en) A system, method and article of manufacture for initiation of software distribution from a point of certificate creation utilizing an extensible, flexible architecture
WO1999014711A3 (en) Method for checking rightful use of a debit card or similar means giving right of disposing of a bank account
CA2357003A1 (en) System and method for authentication of network users and issuing a digital certificate
WO2001077792A3 (en) System and method for authenticating a user
EP0773647A3 (de) Verfahren und Anordnung zur Geheimübertragung unter Verwendung von Blindunterschriften
WO2002075478A3 (en) Method for performing secure online payment transactions
ATE394885T1 (de) Verfahren zum freigeben von pki-funktionen in einer chipkarte
CA2357007A1 (en) System and method for authentication of network users with preprocessing
JPS6310839A (ja) デ−タ通信システム及び方法
WO2004097598A3 (en) Systems and methods for verifying identities in transactions
DK1190289T3 (da) Anordning til bekræftelse af en programkode, der er gemt i en hukommelsesanordning til at afpröve bekræftelsen og gyldigheden af software i et kommunikationssystems mobilstation
DE69720251T2 (de) Verfahren und einrichtung zur verbesserung der sicherheit in netzwerkanwendungen
CN101777101A (zh) 一种提高智能密钥设备易用性的方法和智能密钥设备
WO2016186369A1 (ko) 동적 otp를 이용한 카드 결제방법
WO2000000882A3 (en) Apparatus and method for end-to-end authentication using biometric data
WO2001099070A3 (en) An improved method and system for conducting secure payments over a computer network
WO2002008974A3 (en) Improvements relating to the security of authentication systems
EP0597192A3 (de) Verfahren zur Ermöglichung der nachträglichen Überprüfung bereits übermittelter Daten.
WO2000054208A3 (en) Methods and apparatus for authenticating the download of information onto a smart card
DE60141155D1 (de) Authentifizierungsverfahren und -einrichtung
WO1996041316A3 (en) Off-line compatible electronic cash method and system
ATE402451T1 (de) Verfahren und anordnung für ein rechte-ticket- system zur erhöhung der sicherheit bei der zugangskontrolle zu rechnerrecourcen
KR20030025962A (ko) 사운드기반의 보안카드를 이용한 사용자 인증방법

Legal Events

Date Code Title Description
RER Ceased as to paragraph 5 lit. 3 law introducing patent treaties