FR2834410A1 - Terminal for enabling access to a computer network, especially the Internet from any type of suitable microcomputer, is particularly suited to providing public Internet access - Google Patents

Abstract

Device (6) for accessing a computer network (9) comprises network access programs that are executed to provide network access and network functionality. The access device is suitable for use with all types of microcomputer, e.g. PC, Macintosh, SUN, games console, etc., equipped with navigation means, user interface and a master-slave device for communication with the access device. Updating of software in the access device is undertaken from a remote server (10). The invention also relates to a corresponding access method, system and Internet terminal. The inventive device can be equipped with card reader to enable payment for access.

Description

<Desc / Clms Page number 1>

Device for accessing a computer network, method implemented by such a device and system comprising such a device.

 The present invention relates to a device for accessing a computer network, used as the brain of a terminal, in particular a public terminal. The network accessed can be public, such as the Internet, or private.

 It also relates to a method implemented by such a device and to a computer network access system comprising at least one such device.

 The invention therefore finds a particularly interesting application, but not exclusively, in the field of public Internet access terminals. It can in particular apply to private networks of companies which offer services to users.

 The terms and phrases listed below are used in the rest of the text with the meaning defined below.

 By terminal is meant any device placed in a place accessible to users, capable of providing access to services offered by one or more service providers, through a computer network, free of charge or at a cost.

 By terminal is meant the element of a terminal which provides the interface between the user and the terminal. It can also perform other functions (for example: browsing the Internet).

 A software solution is understood to mean all of the programs, procedures and functions necessary for the management, operation and maintenance of a fleet of terminals while guaranteeing the security of transactions.

 By Platform in this document we mean all the hardware and software elements that give a computer its ability to run programs and communicate with its environment. Among the hardware components of a platform, we include in particular: the processor, memory, storage units, controllers and data input and output ports, peripherals ensuring communication between humans and the machine (keyboard, screen, pointing device, speakers), power supplies. Among the software components of a platform, we

<Desc / Clms Page number 2>

 includes: the operating system, function libraries, device drivers.

 Payment card means any type of card authorized to make a payment. It may be a telecommunication card, a bank card, a credit card, a debit card, an electronic purse, comprising a coded magnetic stripe and / or a chip.

des interfaces spécifiques, par exemple des écrans d'accueil ou films de présentation lorsque la borne est en attente d'utilisation ; des fonctions de gestion de parc comme l'administration distante des paramètres de la borne, la remontée de statistiques d'utilisation et d'informations comptables ; - des fonctions de maintenance des installations comme le télédiagnostic, la mise à jour à distance, la restauration automatique après défaillance. The availability of services on public or private networks has increased the demand for terminals allowing access to these services. Certain operators have thus deployed sets of terminals in public places. Their use is often chargeable. In addition to the network connection and navigation functions, the public and commercial nature of these terminals requires the installation of a specific software solution to handle the management and administration functions specific to their operation. Among these functions, the most frequent are: - managing the cost of the service and secure payment (by card for example); - security functions to protect machines, confidential user data, prevent illicit access and attacks against the network and service providers; - the filtering policy which defines the URLs (addresses of Internet sites) accessible from a terminal;

specific interfaces, for example welcome screens or presentation films when the terminal is awaiting use; fleet management functions such as remote administration of terminal parameters, reporting of usage statistics and accounting information; - facility maintenance functions such as remote diagnostics, remote updating, automatic restoration after failure.

 The public terminal can therefore present a level of complexity that is out of proportion with the services rendered to the user, because the software solution, in the sense defined above, represents a preponderant part of it.

 In general, a public Internet access point is constructed from a microcomputer provided with hardware and software interfaces, supporting a browser and various programs, and possibly provided with specific peripherals in particular intended for managing

<Desc / Clms Page number 3>

 means of payment, such as a payment card reader. This microcomputer can be housed in furniture suitable for use, and connected to peripherals, such as a modem and a printer.

 This architecture implies that the software installed on the microcomputer implements: - on the one hand, the services rendered to the user such as navigation or access to particular services, and - on the other hand, the solution terminal software.

 The services rendered to the user can frequently use commercial software, possibly with a slight adaptation. The software solution, when it is complex, requires that software be developed specifically for a homogeneous set of terminals. The term homogeneous terminal park means a set of terminals all based on the same computer platform, for example a microcomputer compatible with IBM-PC &commat; associated with a LINUX operating system.

 In the state of the art, document WO 0046654 is known in which an apparatus for controlling the use of a personal computer is described. The device includes means of payment (card reader) and is configured to manage the user account for an Internet connection. It is a device interposed between the personal computer and Internet access. This device has a set of connection ports for connecting computer peripherals so that the central unit remains isolated and is only connected to this device.

Document FR2796238 is also known, describing a connection system for a public terminal. The system described presents two connection devices, a first device connected to a telephone server via a PSTN (Telephone Network) link.
Switched) and a second device connected to the Internet via a digital fast link. The Internet connection and accounting functions are separate and arranged in these two separate devices. The operation of this system requires keeping active the connection on the PSTN line (accounting) in order to allow browsing on the Internet.

 The effectiveness of the security devices protecting a public terminal against malicious attacks, for example an encryption device, is very difficult to obtain on an installation where the user has direct physical access to the protection system.

<Desc / Clms Page number 4>

 In particular, the confidential codes, passwords and records of the data read on a payment card generally circulate in the computer before any processing and can sometimes be stored there, at least temporarily.

 In addition, the security of the terminal is dependent on the intrinsic security of the microcomputer operating system. However, the operating system of a modern personal computer is very large software that can contain millions of lines of code, which evolve rapidly. These operating systems turn out to be impossible to audit.

Furthermore, operating a heterogeneous fleet, made up of various platforms (IBM-PCO, Macintosh SUN &commat;, etc.), would be difficult and costly, because a version of the software solution should be created and maintained for each of the different models and versions of IT platform.

The object of the invention is to remedy the aforementioned drawbacks by proposing: - the strengthening of the security of transactions from an access point to a computer network, - the possibility of automatically, selectively and remotely updating the programs and operating data for the terminals of a given fleet without requiring the intervention of personnel at each terminal, - the possibility of automatically restoring the proper functioning of a terminal after a failure, - the possibility of operating a fleet heterogeneous access points to a computer network, that is to say to ensure that the software solution can easily be installed and kept up to date in a fleet of terminals that can include any type of microcomputer, platform form and operating system, without requiring adaptation to each particular case.

 The above objectives are achieved by means of a device for accessing a computer network, interposed between this network and a terminal comprising first user interface software means, so as to constitute a terminal for accessing services for a user, this device comprising control and processing means.

 According to the invention, this access device further comprises second software means provided for managing a flow of information between said terminal and said computer network, these second software means cooperating with the control and

<Desc / Clms Page number 5>

 processing and being arranged to perform an accounting function linked to the services accessed by the user of said terminal.

 Thus, with an access device according to the invention, the software resources for managing the information flow and for accounting, by being located within the access device, are physically decoupled from the user interface software resources which, they are normally located within the terminal. This considerably simplifies the maintenance and updating operations of these management software resources, also referred to below as the software solution. This is particularly advantageous when it comes to managing and maintaining a set of terminals which can be heterogeneous when different types of terminals are implemented.

 In a particular embodiment of the invention, the access device according to the invention further comprises means for controlling the supply of the terminal, these control means being in particular arranged to interrupt and automatically restore this supply without human intervention . This characteristic allows the access device to control the microcomputer by possibly interrupting the supply of the microcomputer, then by restoring it in order to restore its correct functioning after a failure or an update, without requiring the intervention of no personnel on the terminal. This feature can also be implemented to provide security by neutralizing the terminal against attempts at illegal use.

 It is advantageously possible to provide that the access device according to the invention is equipped with a payment module which cooperates with the accounting means of said device.

To use the terminal, the user must then insert a payment card or an access card into a card reader which can be external or integrated into the access device.

 In a particular embodiment, the access device according to the invention can comprise: a microprocessor for implementing an operating system, data storage means, a software solution comprising software means for managing and operation of the access point, these management software means comprising accounting means, - connection means for establishing at least one link with a computer network, said link possibly making it possible to communicate with a

<Desc / Clms Page number 6>

 remote server located in the computer network and containing pricing data, - connection means for establishing a connection with a terminal, and connections with other peripherals, such as a possible payment card reader, and - means for update the software solution via the computer network.

 Unlike document FR2796238, the accounting functions are also managed in relation to a remote server via the computer network. Consequently, it is possible to establish only one connection to the computer network, without it being necessary to establish and maintain a connection on the Switched Telephone Network (PSTN).

d'interfaçage homme/machine. The access device according to the invention can also comprise means capable of establishing a master / slave type communication with a terminal. Preferably, the terminal is a microcomputer. It can also be any other intelligent device such as a game console provided with software means necessary for browsing the computer network and

of man / machine interfacing.

 Such a device brings together on a dedicated platform all the functions (the software solution) necessary for the management and operation of an access point to a public or private computer network. The terminal retains the conventional functions linked to the man / machine interface, executing software that provides services to the user, such as an Internet browser for example.

 According to an advantageous embodiment of the invention, the access device is in the form of an electronic card pluggable into a standard connector of the terminal, for example a card of PCI type ("Peripheral Component Interconnect") designed to fit into a PCI slot.

 According to an alternative embodiment of the invention, the access device is in the form of an independent box connected to the microcomputer by means of cables, for example of the USB ("Universal Serial Bus") type. , or by means of a wireless link.

 Preferably, the access device is capable of connecting to the remote server as well as to the servers of the service providers using the same digital link which can be at high speed. This connection can also be made through a local network to which the access device connects to reach the computer network.

 The access device can communicate with the computer network via a modem, external or integrated, or even via a wireless connection.

<Desc / Clms Page number 7>

 Preferably, software and hardware security means are installed and implemented in the access device to protect the confidential data contained in the device or passing through the network against any pirate act.

The present invention combines both hardware and software elements. For example, the device is built around a dedicated IT platform which executes the programs of the software solution it contains. This software solution notably includes: - means of managing and operating the access point, and in particular accounting means for managing the invoicing of connections to said computer network and the payment for the services used, - security means , software and hardware, to protect confidential data, the network and service providers against hacker attacks, - means of connection to a remote server, located in the computer network, which contains pricing data and issues the necessary authorizations to validate payments, - means to update the software solution via the computer network without direct intervention of personnel on the terminal, - means of connection to a terminal, the terminal playing the role of slave in a master relationship / slave.

 In another of its aspects, the invention proposes a method for accessing a computer network by means of a terminal comprising at least one terminal and an access device as described above, the characteristic properties of which it uses. According to the invention, the method comprises the following steps: - optionally, identification of the user of the terminal by the access device, - connection to the remote server via the computer network so as to download a set to the access device parameters related to this user, and - connection of the terminal to the computer network through and under the control of the device.

 The user can be identified for example by means of a payment card inserted in a reader linked to the access device. The parameters can include pricing and restriction data, for example a navigation restriction in a predetermined area of the computer network.

<Desc / Clms Page number 8>

 According to another aspect of the invention, there is proposed a system for accessing a computer network by means of at least one access device executing the programs of a software solution adapted to the operating mode of the terminal. The system may further include a plurality of terminals capable of each connecting to an access device. The device then constitutes a conditional access point to the computer network, integrating processing and storage means to implement and contain the set of functions necessary for the management and operation of an access point, in connection with one or more remote servers accessible on the network.

- la figure 2 représente un exemple de réalisation de borne publique d'accès à un réseau informatique selon l'invention, intégrée dans un mobilier adapté ; - la figure 3 représente un schéma simplifié d'un dispositif d'accès au réseau informatique selon un mode de réalisation particulier de l'invention ; et - la figure 4 montre une représentation conceptuelle en quatre couches d'un dispositif d'accès selon l'invention. The description of a particular and in no way limitative embodiment of the invention, as well as the appended drawings illustrate certain advantages and characteristics of the invention: - Figure 1 represents a block diagram of the general architecture of a access terminal to a computer network according to the invention;

- Figure 2 shows an embodiment of public access terminal to a computer network according to the invention, integrated in suitable furniture; - Figure 3 shows a simplified diagram of a computer network access device according to a particular embodiment of the invention; and - Figure 4 shows a conceptual representation in four layers of an access device according to the invention.

 Although the invention is not limited thereto, the following describes a device for accessing a computer network, housed in a box, arranged according to the invention between a terminal and this communication network.

 In Figure 1, are shown schematically the elements 1 to 8 which constitute an access terminal to a computer network according to the invention.

A terminal 1 is composed for example of a microcomputer 2 of IBM-PC compatible type D running a Linux type operating system, to which peripherals such as a screen 3, a keyboard 4 and a device are conventionally connected 5. This terminal has the essential role of managing the functions linked to the man / machine interface. For this purpose, it is provided with software such as an Internet browser provided with its plug-ins. It also includes a set of conventional means necessary for its connection as explained below. This terminal 1 is connected by means, for example, of a USB (Universal Serial Bus) cable or by any other suitable means to the access device 6,

<Desc / Clms Page number 9>

 which is the real brain of the base station. This access device has the capacity to control and manage communications with the terminal 1, with the computer network 9 and with the payment card reader 7. This management is carried out by means of the computer programs which it contains and that it performs using its own resources.

d'un protocole tel que Ethernet over USB ou PPP (Point to Point Protocol) . Un réseau TCP/IP est ainsi constitué entre le micro-ordinateur et le dispositif d'accès. The communication between the access device 6 and the microcomputer 2 is of the master / slave type, the access device playing the role of master of the communication. The microcomputer 2 connects at startup to the access device 6 by a USB link by means

a protocol such as Ethernet over USB or PPP (Point to Point Protocol). A TCP / IP network is thus formed between the microcomputer and the access device.

However, other means of communication between the terminal 1 and the access device 6 can be envisaged, for example, Ethernet (802.3), or a wireless link using the Bluetooth protocol, or even a Wifi link (IEEE 802 11B).

autour d'une plate forme quelconque, par exemple un ordinateur compatible IBM-PC&commat;, ou un Macintosh (l, ou encore un ordinateur de type SUN ( . On peut même envisager de remplacer l'ordinateur 2 par une console de jeu, pourvu qu'elle soit dotée de moyens d'interface homme/machine, de logiciels de navigation et de communication maître/esclave adéquats. The communication being in master / slave mode, the computer has a restricted role and it becomes possible to administer a heterogeneous fleet of access terminals, that is to say comprising several access terminals each associating a device of 6 to a built-in microcomputer 2

around any platform, for example an IBM-PC compatible computer &commat; or a Macintosh (l, or even a SUN type computer (we can even consider replacing computer 2 with a game console, provided that it be provided with man / machine interface means, adequate navigation and master / slave communication software.

6 joue le rôle de routeur et/ou de proxy pendant la connexion au réseau informatique 9 et reste maître de cette connexion sans que le micro-ordinateur 2 soit informé de l'état de cette connexion. For connection to the computer network, the access device 6 manages the connection of the terminal to a remote server 10, through a computer network 9, public or private. This connection can be either permanent (LAN, ADSL ...), or dial-in type (PSTN, ISDN ...), via modem 8 which can be integrated or external to the device. The access device

6 plays the role of router and / or proxy during the connection to the computer network 9 and remains master of this connection without the microcomputer 2 being informed of the state of this connection.

 As regards the connection of the payment card reader 7, this can be connected to the access device 6 for example by means of a connection of the serial type. This reader dialogues with the solution server 10 or else with a separate server dedicated to managing secure payments, using the security means and the encryption algorithms embedded in the access device 6.

<Desc / Clms Page number 10>

 Figure 2 shows an access terminal housed in furniture 12 suitable for public use. There are the elements of Figure 1 with the same references. This furniture 12 is shaped so that a user can properly reach the keyboard 4 and view the screen 3 in a standing position. It can be equipped with speakers 11 connected to the microcomputer 2 to support multimedia services. FIG. 2 also shows the electrical supply of the assembly which can be an electrical outlet 13.

 According to an advantageous characteristic of the invention, the access device 6 is directly connected to the socket 13 while the microcomputer 2 is powered from the access device 6 which includes means for controlling the 'power supply to the microcomputer 2. The access device 6 thus has the capacity to control the stopping or starting of the microcomputer 2 by means of the power control.

 Thus, by hardware and software means, the access device 6 has a certain control over the microcomputer 2. It can also fulfill other related functions (proxy, firewall, etc.), so transparent to the microcomputer 2.

 The access device 6 is responsible for: - managing and administering the solution: the device 6 communicates with the remote server 10 for managing the solution and is responsible for all administrative exchanges (payment, rights attached to the terminal, geographic information, operating reports, etc.) invisible to the microcomputer 2; the administration of the configuration of the microcomputer 2: the access device 6 checks the presence on the microcomputer 2 of all the necessary software elements as well as their version and causes them to be updated by downloading if necessary.

 The access device 6 controls the sequence of operations to be carried out on the microcomputer 2 and, in particular, the opening and closing of the session. The access device 6 interacts with the user (for example to display the remaining credit or to warn of a rate change) by using the microcomputer 2 as a man / machine interface server. The access device 6 manages in particular all of the billing and secure payment functions in association with the payment card reader 7 and a remote server 10. This remote server 10 can be reached by the access device 6 via the network 9 through the modem 8. This server 10 can keep a set of parameters linked to each user and to each access point. These parameters can be data

<Desc / Clms Page number 11>

 predefined and prerecorded in the server 10 and associated with a payment card, so that when a user inserts his payment card in the reader 7, the access device connects to the server 10 in order to download the set of parameters linked to this user. These parameters can for example be pricing data, the credit available for this user and the pricing mode of the network connection and of the services to which the user wishes to access. These parameters may also include data relating to any restriction. For example, access to certain sites on the Internet may be prohibited. To do this, the access device 6 appropriately configures its URL filter (proxy).

 This architecture also considerably increases the security of public access points to a computer network. Conventional software applications, which can come from a variety of sources, are often a weakness in security systems. They remain housed in the microcomputer 2. The access device 6 implements a dedicated software solution using, among other things, specific hardware security means. It can be a hardware device isolating part of the memory in read and write, complementing encryption algorithms using keys like RSA. These software and hardware security means are made inaccessible to the user and to the software available to them.

 The invention is also remarkable by the fact that the access device 6 can update all or part of the software solution from data downloaded from the server 10 via the network 9. Thus, updating the device d access can be done independently of the microcomputer 2.

 The access device can also cause the software elements contained in the microcomputer 2 to be updated.

 Another advantage provided by the characteristic mentioned above is that it is no longer necessary to develop by computer programming a software solution adapted to each of the microcomputer platforms integrated in the access terminals of the same Park. It is only a question of developing and evolving a single software solution adapted to the specific operating system internal to the access device 6. The control and updating of a heterogeneous fleet of terminals is then made possible and simplified .

 In a particular embodiment, the access device can comprise several input and output means making it possible to simultaneously connect several micro-

<Desc / Clms Page number 12>

 computers 2. Preferably, the link between several microcomputers and the access device 6 can be wireless.

In a different particular embodiment, provision can be made for the access point to be limited to the access device 6, to the payment card reader 7 and to the modem 8. In this case, this particular access point is suitable to accommodate users' microcomputers. One can imagine such an access point in an airport for example, where a user with his laptop comes to connect by means of a USB cable for example or from a wireless PCMCIA type card, and can thus use the functionality of the public terminal.

 Figure 3 is a more detailed schematic view showing the hardware components of the access device 6. There is a housing 14 housing an electronic card 15 on which is disposed a set of electronic components. The power supply 16 of the electronic card 15 is connected by the power port 18 directly to a power outlet 13.

The access device 6 also integrates a power controller 17 to which the microcomputer 2 is connected by the power port 19.

 The electronic card 15 is equipped with a microprocessor 24 which implements a specific operating system limited to what is necessary, executes the programs of the software solution, and manages in particular the data stored in a dynamic memory bank 25 and in a bank non-volatile memory 26.

 Also shown are input and output ports 20, 21 and 22 connected inside the access device 6 to an input-output controller 23. By way of example, these ports support respectively: - a link USB type with terminal 1, - a serial link with the payment card reader 7 and - a link with modem 8, USB or Ethernet type.

 It is also possible to plan to connect the access device 6 directly via this Ethemet port to a local network.

 We will now describe, with reference to FIG. 4, an example of architecture of the access device 6 comprising the software solution of the terminal. These are all the functions necessary for the management and operation of a public terminal.

<Desc / Clms Page number 13>

 In Figure 4, we find the hardware elements as well as the elements of the software solution, organized in four layers. This representation in layers makes it possible to show the main functions of the device and their interactions according to the invention.

 Layer 1 consists of the material elements of the platform. There are the microprocessor 24, the dynamic memory bank 25, the non-volatile memory bank 26, the input-output controller 23, and the microcomputer power controller 17.

Conventionally, the data passes between these elements of layer 1 via one or more BUSes. These hardware elements make it possible to implement all of the software functions of the access device.

 Layer 2 is called the operating system and software tools layer. One distinguishes there the specific operating system 27, which can be developed for example around a Linux kernel. Its complexity is limited to what is strictly necessary in order to facilitate security audits. The software solution uses the resources of updating mechanisms 28, a library of network access protocols 29 as well as security functions 30 to ensure the security of transactions and protect the data contained or passing through the device. 'access. These software tools 28, 29 and 30 are associated with specific applications for managing the terminal.

 Layer 3 groups together the elements most characteristic of the novelty brought by the invention, that is to say the applications of the software solution. It includes in particular: - a network access management module 32, using the resources of the library 29 of the network access protocols, which ensures the routing of the connection and the proxy function, - a so-called "watchdog" 33 capable of permanently monitoring the stability of the microcomputer and of acting if necessary on this microcomputer in order to restore the stability of its operation, a module 31 ensuring the management updates to the terminal, under the control of the security functions 30 of layer 2, and in relation to the updating mechanisms 28 and the communication protocol 37 with the microcomputer, - a module 36, using the resources specific libraries 35 for managing the terminal, and ensuring the control of the configuration and functions of the terminal,

<Desc / Clms Page number 14>

 - a URL filtering function 40, which uses the resources of the network access management module 32, making it possible to limit the access of the microcomputer to an identified part of the computer network, and - libraries 35 also allowing the execution of management programs specific to each operator, downloaded via the network.

 Layer 4 includes operator-specific programs. They may in particular include: - a function for producing and processing statistical data 42, - a remote diagnosis and maintenance function 34, - a program 39 which controls the display of waiting films on the screen of the terminal, and - Other specific functions 41 developed according to the needs of the operator.

 Layer 4 also includes a function for the implementation of electronic payment logic 43 and parameters specific to the user of the terminal, as well as a function 38 for dialogue with the remote server via the network.

 All the applications on the device that can be updated from the remote server are systematically signed. The applications of the device also make it possible to protect the microcomputer of the user. To do this, specific functions are set up to: - force the switching between "out of session" and "in session" modes, and - control the routines allowing the microcomputer to protect its storage system and trigger the if necessary a data cleaning process.

 With such a device, the level of data protection and security of transactions and payments is considerably increased.

 Of course, the invention is not limited to the examples which have just been described. Many modifications can be made to these examples without departing from the scope of the invention.

Claims (21)

 CLAIMS 1. Device (6) for accessing a computer network (9), interposed between said network (9) and a terminal (1) comprising first user interface software means, so as to constitute an access terminal to services for a user, this device (6) comprising control and processing means (24), characterized in that it further comprises connection means for establishing a link with the computer network for connecting both to a remote server than the servers of the service providers, and second software means provided for managing a flow of information between said terminal (1) and said computer network (9), these second software means cooperating with the control means and treatment (24). 2. Device (6) according to claim 1, characterized in that it further comprises means (17) for controlling the supply of the terminal (1), these control means (17) being in particular arranged to interrupt and restore this feeding automatically without human intervention. 3. Device (6) according to one of claims 1 or 2, characterized in that it is equipped with a payment module (7), and in that the second software means are arranged to perform an accounting function linked to the services accessed by the user of said terminal in relation to the remote server via the computer network. 4. Device according to any one of claims 1 to 3, characterized in that it is in the form of an electronic card pluggable into a standard connector of the terminal.  5. Device (6) according to any one of claims 1 to 3, characterized in that it is in the form of an independent housing (14).  6. Device (6) according to claim 5, characterized in that it further comprises input-output means (20) for connecting to the terminal (1) by means of a cable.  7. Device according to claim 5, characterized in that it further comprises wireless connection means with the terminal. <Desc / Clms Page number 16>  8. Device according to any one of the preceding claims, characterized in that it further comprises means able to establish a master / slave type communication with the terminal. 9. Device according to any one of the preceding claims, characterized in that the connection means use a single digital link to the computer network. 10. Device according to any one of the preceding claims, characterized in that it further comprises means for connection to the computer network via a local network. 11. Device according to any one of the preceding claims, characterized in that it further comprises means for wireless connection to the computer network.  12. Device (6) according to any one of claims 1 to 9, characterized in that it comprises means (22) for connection to the computer network (9) via a modem (8).  13. Device (6) according to any one of the preceding claims, characterized in that the terminal comprises a microcomputer (1).  14. Device according to any one of claims 1 to 12, characterized in that the terminal is a games console provided with means of navigation in the computer network and human / machine interfacing.  15. Device according to any one of the preceding claims, characterized in that it further comprises security means for preserving the data and the network against malicious attacks.  16. Method for accessing a computer network (9) by means of an access terminal comprising a terminal (1) and an access device (6) according to any one of the preceding claims, characterized in that it comprises the following steps: - taking into account by the access device (6) of a request for connection to the computer network (9), said request resulting from the action of a user on the terminal (1) or on one of the peripherals connected to the access device (6), - identification of the user of the terminal (1) by the access device (6), <Desc / Clms Page number 17>  - after verification, establishment of a connection to a remote server (10) via the computer network (9) so as to download to the access device (6) a set of parameters related to this user, and - connection of the terminal (1) to the computer network (9) through and under the control of the access device (6). 17. Method according to claim 16, characterized in that the user is identified by means of a payment card inserted in a reader (7) linked to the access device (6). 18. The method of claim 16 or 17, characterized in that said parameters include pricing and / or restriction data. 19. Access system to a computer network by means of at least one access device according to any one of claims 1 to 15, characterized in that it further comprises a plurality of terminals able to connect to said access device. 20. The system of claim 19, characterized in that the access device, which comprises processing and storage means for implementing and containing the set of functions necessary for the management and operation of a computer network access terminal, is capable of connecting and controlling the connection of each terminal to the computer network. 21. Internet terminal comprising an access device according to any one of claims 1 to 15, this access device being associated with a terminal provided with Internet browsing means and input-output peripherals.