EP2425389A1 - Method for suspending and activating a service in a mobile network - Google Patents

Method for suspending and activating a service in a mobile network

Info

Publication number
EP2425389A1
EP2425389A1 EP10727067A EP10727067A EP2425389A1 EP 2425389 A1 EP2425389 A1 EP 2425389A1 EP 10727067 A EP10727067 A EP 10727067A EP 10727067 A EP10727067 A EP 10727067A EP 2425389 A1 EP2425389 A1 EP 2425389A1
Authority
EP
European Patent Office
Prior art keywords
service
mobile communication
communication terminal
platform
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
EP10727067A
Other languages
English (en)
French (fr)
Inventor
Thomas Bourgeois
Pierre De Chastellier
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Dhatim SAS
Original Assignee
Dhatim SAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Dhatim SAS filed Critical Dhatim SAS
Publication of EP2425389A1 publication Critical patent/EP2425389A1/de
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/16Payments settled via telecommunication systems
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/325Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wireless networks
    • G06Q20/3255Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wireless networks using mobile network messaging services for payment, e.g. SMS
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices

Definitions

  • the present invention relates to a method for a mobile communication terminal belonging to the network of a mobile operator to suspend or activate a service provided by a service platform.
  • service is meant a software module to be downloaded or used online, a feature or any other application accessible via a mobile communication terminal.
  • These services can be send and receive emails, connect to the Internet, download files, ...
  • a user when a user wishes to access a service by means of his mobile communication terminal such as a mobile phone or an advanced smart phone, he contacts the provider of this service via the Internet. on the provider's website, by email or by telephone to request the activation of the service.
  • his mobile communication terminal such as a mobile phone or an advanced smart phone
  • the present invention aims at a new method for effectively managing such a service.
  • a mobile communication terminal belonging to the network of a mobile operator to suspend or activate a service provided by a service platform.
  • the method comprises the following steps:
  • the invoicing is updated instantaneously and it is thus possible to bill only the actual consumption.
  • granularity in billing is more accurate than in the case of conventional billing where a service is billed at one time and in an indivisible manner.
  • the cost of this service may be based on a duration of use, a number of uses or a volume of data.
  • the method further comprises the following authentication steps:
  • This first authentication can in particular take into account cryptographic secrets contained in a memory contained in the mobile communication terminal, in particular in a SIM card.
  • the SIM card (for "Subscriber Identity Module” in English) is an electronic chip containing a microcontroller and memory. She stores user-specific information. Thus authentication is done from encrypted data from a physical device.
  • this first authentication can take into account a confidential code entered by the user on his mobile communication terminal.
  • the mobile communication terminal is equipped with a biometric characteristics reader, in particular a fingerprint reader and / or a fundus reader, and this reader is used to enable strong authentication of the user.
  • a biometric characteristics reader in particular a fingerprint reader and / or a fundus reader
  • the various authentication modes described here are not exclusive of one another, and, according to the particular embodiment of the invention, it will be possible to authenticate either only the terminal used, or only the user, or the two.
  • the authentication of the user, when it is required, can also be done either by a code entered at the terminal, or by reading one or more biometric characteristics (fingerprint, fundus, etc.). ) by both simultaneously.
  • the user is clearly authenticated and the fact of using a signaling channel makes it possible to consume few network resources and especially to transmit information in a secure manner.
  • the request for suspension or activation is transmitted via a data channel of the mobile network of the operator.
  • the authentication request is a short text message according to SMS technology or an unstructured message according to USSD technology.
  • SMS technology for "Short Message Service” in English
  • GSM Global System for Mobile communications
  • GPRS Universal Mobile Radio Service
  • UMTS Universal Mobile Broadband
  • USSD Unstructured Supplementary Service Data
  • the method also comprises a step during which the service platform transmits a notification to the operator's server platform if the service platform does not receive a message from the service provider. the portion of the operator's server platform beyond a predetermined time with respect to the step of transmitting a request for suspension or activation of the service.
  • the service platform monitors this period of validity and interrupts the service when this period of validity is expired.
  • the service platform may transmit to the mobile communication terminal a message containing a transaction number identifying this request for suspension or activation of the service.
  • the service platform comprises at least one multimedia service server and a gateway between the operator's server platform and the multimedia service server, the gateway executing all the communication steps with the service server.
  • the gateway can thus interface service between the operator and the mobile communication terminal on the one hand, and several multimedia service servers on the other hand.
  • the gateway records the operational state of each service accessible by the user; at each change of state, the gateway transmits this change of state to the mobile communication terminal.
  • the mobile communication terminal indicates the operational state of this service by means of a graphic icon on a screen of the mobile communication terminal.
  • the operational state can include the following states: activated, suspended, and not activated.
  • the invention also relates to a system for accessing a service comprising a service platform, a server platform of a mobile network operator and a mobile communication terminal; according to the invention: the service platform comprises a server application, and
  • the mobile communication terminal comprises a client application associated with said server application by a client-server type communication; the client and server applications being configured so that an access by the mobile communication terminal to a service of the service platform is performed using the method as described above.
  • the invention also relates to a mobile communication terminal comprising functionalities for authenticating it when accessing a service platform by implementing the method that is the subject of the present invention.
  • the terminal may include a client application for authenticating the user of the mobile terminal with the service platform and the server platform of the operator from data contained in a memory of said mobile communication terminal.
  • the client application can be set to generate:
  • a first data stream for a first upstream authentication for example of the operator's server platform via a first communication channel
  • a second data stream for additional authentication with, for example, the service platform via a second communication channel.
  • the first channel and the second channel may be the same. But preferably, the first channel is a signaling channel, the second channel being a data channel.
  • the terminal includes a memory containing cryptographic secrets used during said first authentication. This memory is in particular contained in a SIM card.
  • the client application is advantageously configured to take into account a PIN entered on the mobile communication terminal by the user and / or a biometric characteristic of the user, in particular a fingerprint and / or a fundus, when the first authentication.
  • FIG. 1 is a general view of a system implementing a method according to the invention
  • FIG. 2 is a general view of a diagram illustrating steps of the method according to the invention as a function of each entity;
  • FIG. 3 is a general view of a process for suspending and activating a service according to the invention,
  • FIG. 4 is a general view of a diagram illustrating steps of the process of suspending and activating a service according to the invention as a function of each entity;
  • FIG. 5 is a general view illustrating a process of FIG. secure authentication using a data channel and a signaling channel according to the invention, and
  • FIG. 6 is a general view of an XML schema and associated metadata.
  • FIG. 1 we see a platform A servers of a mobile operator.
  • the mobile telephone B comprises software and hardware means enabling it to access the mobile network of the operator.
  • the telephone B comprises a client application capable of communicating with a server application within a service platform C.
  • These applications are contained in conventional storage means, and can be managed by an operating system using a microcontroller or microprocessor (not shown).
  • the service platform C offers many services accessible to the user of the mobile phone B.
  • this service can be a "push mail” service for receiving 100 emails over a period of 30 days.
  • the "push mail” service allows you to constantly scan the arrival of new e-mail messages. Any new incoming email is forwarded ("pushed") to the phone ("smart phone").
  • the user sends in step 1 in FIGS. 1 and 2 a verification request to the service platform C.
  • This verification request may contain an identifier of the desired service as well as an identifier of the user.
  • the service platform C verifies that the user is able to use this service and transmits a message of agreement to the mobile phone B.
  • the client application of the telephone B transmits a transactional request to the operator platform A.
  • This request may be an MMS message, or a URL type address, containing information relating to the service. to the service platform, and data from a SIM card of the telephone B.
  • the transactional request is a premium-rate SMS message or an overtaxed USSD message with information about the required service, the service platform, and data from a SIM card of the telephone B so as to authenticate the user.
  • the client application has pricing for different services, it can include the cost of the required service in the transaction request. But, one can also predict that the cost of this service is communicated by the service platform during step 1 of verification.
  • one or more SMS messages are sent whose total amount equals the cost of the required service.
  • the SMS sending number is a number associated with the service platform C.
  • the transaction request is received by an SMS management server D within the operator platform A.
  • the user is then authenticated from the data of the SIM card, then the charging is carried out within an accounting server E within the operator platform A.
  • This accounting server E holds an account of the user thus authenticated. This is the account normally used for billing the mobile communications of the user. Thus, the purchase of a service does not require the opening of an account with the service platform C.
  • This account can advantageously be a prepaid account where the user has a credit balance. This account will then be debited with an amount equal to the cost of the required service. In fact, the accounting server E manages this purchase of service as if it were the consumption of one or more premium SMS messages.
  • step 3 the platform A transmits a message of agreement on the authentication and the taxation towards the platform of services C. This then activates the required service. The user can then send and receive emails. It is also expected to send a service confirmation message activated from the service platform C to the telephone B.
  • a variant of the invention is the dashed step 4 in FIGS. 1 and 2, where charging is done in response to a payment request from the service platform C after activation of the service.
  • the service platform C may comprise a gateway C1 enclosing said server application capable of communicating with the client application and the operator platform A, as well as a plurality of multimedia servers C2-C4 each offering services . It can be seen in FIG. 1 that step 5 corresponds to the step where the telephone B accesses the required service from one of the multimedia servers C2, for example via the Internet.
  • a service suspension and activation process is provided.
  • the same elements bear the same references as in FIG. 1. It is in the case where the user has subscribed to a "push mail" service for receiving 100 emails over a period of 30 days, and that he has already consumed 80 emails in 10 days. He then wishes to suspend his service for 10 days in order to be able to use it during the last 10 days where he foresees the reception of important messages.
  • the client application of the telephone B transmits a service suspension request to the service platform C. The latter identifies the user from data present in the service platform. request for suspension.
  • the client application of the telephone B transmits in step one an SMS message to the SMS management server D within the operator platform A.
  • This management server D authenticates the user from the data of the SIM card sent with the SMS message, then transmits an agreement message to the service platform C in step 2.
  • the user is thus definitely authenticated within the service platform C and the push mail service. Can be suspended.
  • the service platform C confirms the suspension of the service with the accounting server E of the operator platform A in step 3. This is an update.
  • a provisional billing can be established with the effective consumption of the service and not the whole of the service.
  • the service platform continues to monitor the period of validity of the service, that is to say the 30 days, and can send reminder messages before the end of this period.
  • the user may want to reactivate his "push mail" service to consume his last 20 emails. It then performs the same operations as those described above for Figures 3 and 4, but in the context of a service activation request.
  • the process is greatly secured by the fact that communication is provided between the telephone B and the service platform C via a data channel, in particular via the Internet, while the communication between the telephone B and the operator platform A for sending SMS is via a signaling channel, the latter being a very proven channel, secure and to recover the data from the SIM card. It is therefore possible to carry out steps 1 and 1 in parallel fashion since they are two separate channels. Two separate communication channels are thus used to authenticate the user.
  • FIG. 5 we see a secure authentication process using a data channel 10 and a signaling channel 11 according to the invention.
  • the client application 12 housed in the telephone B communicates with the server application 13 housed within the service platform C, via the Internet.
  • the data exchanged transit via the data channel 10 from the telephone B. This connection via the Internet is not completely secure.
  • the signaling channel 11 is used to communicate between the client application 12 and a billing application 14 housed within the operator platform A, preferably in the server It is through this secure connection via the mobile network of the operator that the transactional request, such as a premium SMS, or the authentication request is transited.
  • the operator platform is therefore able to detect the data of the SIM card of the user of the telephone B, authenticate the user, possibly manage the charging or the billing, and then transmit a message of agreement or not to the platform of services via Internet.
  • a new mode of communication of XML files is provided which is used to update the client application from the server application.
  • a synchronization is performed.
  • an XML file is sent to the client application.
  • the method according to the invention provides for sending an identification number of the XML schema with the data. Only if the client application does not have this XML schema would the server application send the XML schema in response to the request from the client application.
  • a server application is therefore provided that can identify XML schemas by identification numbers, and generate an XML file containing not the associated XML schema but only an identification number next to the data.
  • the client application is able to save different XML schemas, each being identified with the same identification number as that provided by the server application.
  • Figure 6 we see a simplified example of an XML schema containing metadata and an example of associated data. We see that we achieve a considerable bandwidth gain if we manage to save the systematic sending of XML schemas that have a much larger size than the data.
  • Potential applications of the method, object of the present invention are numerous, and are not limited to services directly related to a mobile communication terminal.
  • the invention can be implemented whenever it is necessary to activate, deactivate, suspend or modify any service.
  • the invention finds a particularly interesting application in the field of access to pay television channels, including channels broadcast cable, ADSL or satellite, when the user wishes, with immediate effect, activate or suspend the access to a channel. He will then use his mobile communication terminal to transmit his request by implementing the present invention.
  • Another particularly interesting application of the invention lies in the field of car navigators (using in particular so-called GPS systems), offering certain complementary services such as real-time access to traffic information, in order to determine optimal route.
  • the invention offers the user the possibility, with immediate effect, of enabling or disabling access to such a supplementary service, in particular when, during a trip, he arrives in a region to which he had not subscribed to this service. He will then use his mobile communication terminal to transmit his request by implementing the present invention.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Finance (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)
EP10727067A 2009-04-29 2010-04-29 Method for suspending and activating a service in a mobile network Ceased EP2425389A1 (de)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
FR0952815A FR2945140B1 (fr) 2009-04-29 2009-04-29 Procede de suspension et d'activation d'un service dans un reseau mobile
PCT/FR2010/050820 WO2010125318A1 (fr) 2009-04-29 2010-04-29 Procede de suspension et d'activation d'un service dans un reseau mobile

Publications (1)

Publication Number Publication Date
EP2425389A1 true EP2425389A1 (de) 2012-03-07

Family

ID=41698178

Family Applications (1)

Application Number Title Priority Date Filing Date
EP10727067A Ceased EP2425389A1 (de) 2009-04-29 2010-04-29 Method for suspending and activating a service in a mobile network

Country Status (3)

Country Link
EP (1) EP2425389A1 (de)
FR (1) FR2945140B1 (de)
WO (1) WO2010125318A1 (de)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030050081A1 (en) * 2000-02-29 2003-03-13 Adriano Huber Method for confirming transactions
US20030128822A1 (en) * 2000-06-22 2003-07-10 Mika Leivo Arrangement for authenticating user and authorizing use of secured system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030050081A1 (en) * 2000-02-29 2003-03-13 Adriano Huber Method for confirming transactions
US20030128822A1 (en) * 2000-06-22 2003-07-10 Mika Leivo Arrangement for authenticating user and authorizing use of secured system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of WO2010125318A1 *

Also Published As

Publication number Publication date
FR2945140B1 (fr) 2017-02-10
WO2010125318A1 (fr) 2010-11-04
FR2945140A1 (fr) 2010-11-05

Similar Documents

Publication Publication Date Title
WO2002065414A1 (fr) Procede et systeme de telepaiement
EP1153376A1 (de) Verfahren zum fernbezahlen und system zur durchführung des verfahrens
WO1999066705A1 (fr) Procede pour payer a distance, au moyen d'un radiotelephone mobile, l'acquisition d'un bien et/ou d'un service
FR2906662A1 (fr) Systeme de gestion de mises a jour d'evenements
FR2975860A1 (fr) Procede de paiement a distance, a partir d'un dispositif utilisateur, d'un panier d'achat sur un serveur marchand et systeme associe
FR2845189A1 (fr) Borne d'acces a des services via un terminal distant radiofrequence
WO2003071760A1 (fr) Dispositif et procede d'intermediation entre fournisseurs de services et leur utilisateurs
EP1983722A2 (de) Verfahren und System zur Internetzugangssicherung bei Mobiltelefonen sowie entsprechendes Mobiltelefon und Endgerät
EP2425389A1 (de) Method for suspending and activating a service in a mobile network
EP2425388A1 (de) Method for charging for and providing access to a service from a mobile communication terminal
FR2945173A1 (fr) Procede d'authentification d'un terminal de communication mobile lors d'un acces a une plateforme de services via un reseau mobile
EP2372958A1 (de) Authentifizierungsverfahren eines sich mit einem Internetzugriff Anbieter Endgeräts
WO2012057715A1 (fr) Système et méthode de transfert de crédits entre abonnés au téléphone mobile gsm appartenant à des opérateurs différents
WO2018029564A1 (fr) Systeme et procede d'authentification sans mot de passe d'un utilisateur d'un systeme applicatif par un serveur central
EP4320534A1 (de) Verfahren zur steuerung des zugriffs auf über ein datenkommunikationsnetz verteilte güter oder dienste
EP2320623B1 (de) Verfahren zur bereitstellung eines dienstes
FR3157626A1 (fr) Procédé et dispositif de fourniture d’un identifiant de service d’un utilisateur auprès d’un dispositif de contrôle d’accès.
FR2842380A1 (fr) Procede et systeme de gestion de la fourniture a un terminal de donnees gerees par un reseau externe, et equipement intermediaire correspondant
WO2018115641A1 (fr) Sécurisation de transaction
EP1484895A1 (de) Proze des Zuganges zu einem Netz oder zu einem Service durch das Verwenden eines Protokolls der Familie von PPPoX Protokollen und von Architektur, die solch einen Proze einführt
EP2272032A1 (de) Verfahren und system zur bewegung von waren und/oder dienstleistungen mithilfe eines endgerätes über ein kommunikationsnetzwerk
WO2006040459A1 (fr) Procede d'intermediation dans une transaction entre un terminal client et un serveur fournisseur de reponses, et serveur associe
EP1400935A1 (de) System und Anwendung zum vereinfachten Übertragen von Nachrichten, mittels einer Fest-Verbindung
FR2889901A1 (fr) Procede de transfert controle de donnees de grande taille entre un terminal mobile et un reseau de radiotelephonie et systeme controleur de transaction
FR3049369A1 (fr) Procede de transfert de transaction, procede de transaction et terminal mettant en œuvre au moins l'un d'eux

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20111116

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO SE SI SK SM TR

AX Request for extension of the european patent

Extension state: AL BA ME

RAX Requested extension states of the european patent have changed

Extension state: BA

Payment date: 20111116

Extension state: AL

Payment date: 20111116

Extension state: ME

Payment date: 20111116

17Q First examination report despatched

Effective date: 20140508

REG Reference to a national code

Ref country code: DE

Ref legal event code: R003

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION HAS BEEN REFUSED

18R Application refused

Effective date: 20171006