FR2936888A1 - User data i.e. banking data, accessing method, involves establishing secured communication connection between user data management server and communication terminal if user is authenticated by server - Google Patents

Abstract

The method involves authenticating a user by an intermediate equipment e.g. banking gateway, from set of user authentication data and set of reference data. Another set of user authentication data is received by a user data management server from a communication terminal if the user is authenticated by the equipment. The user is authenticated by the server from the latter set of user authentication data and another set of reference data. A secured communication connection is established between the server and the terminal if the user is authenticated by the server. Independent claims are also included for the following: (1) a computer program product, downloaded from a communication network and stored on a computer readable medium, comprising instructions for executing an user data management server accessing method (2) a computer readable storage medium, totally or partially detachable, storing set of instructions for executing an user data management server accessing method (3) a system for accessing a user data management server from a communication terminal comprising a receiving unit.

Description

Method for accessing and managing, from a terminal, bank data managed by a server, computer program product, storage medium, terminal, intermediate equipment and corresponding server. FIELD OF THE INVENTION The field of the invention is that of operations and remote banking transactions. More specifically, the invention relates to a technique for accessing and managing, from a terminal of a communication network, bank data managed by a banking server of an external network.

The invention applies in particular, but not exclusively, to the case where the terminal is a mobile terminal (for example of the J2ME compatible telephone type, Apple iPhone (registered trademark), Smartphone, PocketPC with a Microsoft Windows Mobile system (brand filed), Palm (registered trademark), Blackberry RIM (registered trademark), Google Android (trademark), etc.) of a radiocommunication network and where the banking servers are WEB servers of the Internet network. The radiocommunication network uses, for example, the GSM standard (for "Global System for Mobile Communications" in English), or an equivalent or concurrent standard such as DCS 1800 (for "Digital Cellular System at 1800 Mhz", in English), PCS 1900 (for "Personal Communication System at 1900 MHz" in English), DECT (for "Digital European Cordless Telecommunications" in English), GPRS (for "General Packet Radio Service" in English) or UTMS (for "Universal Mobile Telecommunication System" in English). English) or CDMA (for "Code Division Multiple Access").

It is clear, however, that the present invention also applies with a fixed terminal of a wired network (for example the switched telephone network) and / or with an external network other than the Internet network. Thus, the present invention can be applied, for example, to a digital television connected to the Internet network via a Freebox residential gateway (registered trademark).

In general terms, an external network is understood to mean an independent network of the access network that constitutes the communication network. This external network allows a bank to make banking data available, generally in the form of information bases or files, by means of banking servers (also subsequently called bank servers). In the above-mentioned particular case where the external network is the Internet network, the databases are WEB sites hosted by WEB servers. 2. Technological background Today, banking data management in a situation of mobility represents a strong demand from users. Numerous techniques for accessing and remotely managing bank data managed by a banking server are already known. In general, we seek in particular to reconcile at least some of the following objectives: - universality of access and management, any type of 2G / 3G radiocommunication terminal to be able to communicate with a bank server, so as to control the latter to carry out banking operations such as, for example: the consultation of the balance of the accounts (current account, young booklet, PEL, ...), the internal transfer, the external transfer from bank to bank, the purchase / sale of shares, payment of person to person by the use of a mobile account, etc. ; - simplicity of access and management, the user having to be able to perform these operations with a reduced number of operations, and each of these operations must be as easy as possible; - security of operations and in particular control of the identity of the user (to fight against fraud); - management of mobile terminal theft and fraud in general; simplicity and low cost of implementation. The disadvantages of the prior art are discussed below through the particular case where bank data managed by a remote WEB server (ie a bank server) is accessed by means of a micro-browser WAP 30 embedded in a mobile terminal. Typically, a WAP micro-browser, following interaction with a user, will send an encoded WAP request to a WAP gateway (WAP Gateway) which decodes it (by performing a protocol conversion between WAP (Wireless) Transaction Protocol) and the WEB (HTTP for HyperText Transfer Protocol and direct it to the correct WEB server.) In response, the WEB server sends the pages to the WAP gateway that converts between the WEB and the WAP and encodes the data. contained in these pages (in order to reduce their size) before sending them to the mobile terminal The WAP micro-browser of the mobile terminal decodes these pages, interprets them and displays them.

Although WAP technology has been an important advance in the remote management mechanism of bank data, this known technology nevertheless has a number of disadvantages. Indeed, the ergonomics of this known technique is limited by the fact that the user must first launch the WAP micro-browser embedded on the mobile terminal, then enter manually by means of an alphanumeric keyboard, usually small size, a URL (for Uniform Resource Locator, for example of the type: http://wap.creditmutuel.fr). In certain situations, and particularly when the user is traveling on a public transport (subway, bus, ...), entering such a URL can be difficult and time consuming. Another disadvantage of this known technique lies in the fact that it requires the creation of pages developed in WML (Wireless Markup Language), the only language used by micro-browsers WAP embedded on mobile phones. The WML language defines a number of basic instructions supported by all micro-browsers, but other functions depend on the type of micro-browser used. In other words, when creating a WAP site, developers must not only translate pages developed in HTML into WML, but must do so by taking into account the different types of existing micro-browsers. Creating a WAP site is therefore complex. To reduce this complexity, developers sometimes choose to develop WML pages only for certain types of micro-browsers. Thus, other WAP micro-browsers are unable to decode these pages, to interpret and display them, or do not take advantage of the optimal technical characteristics of recent mobile terminals.

Moreover, the inventors have found that in the event of a network loss, that is to say when the mobile terminal is no longer connected to the banking server via the radio communication network (this may for example occur when the user pass under a tunnel), the time to restore the connection to the banking server is relatively long. It should be noted that during this period of network loss, the user can not consult his banking data, and must sometimes restart the connection procedure from the beginning of the procedure, which is expensive and difficult in a mobile situation, with a small keyboard. 3. Objectives of the invention The invention, in at least one embodiment, is intended in particular to overcome these various disadvantages of the state of the art. More precisely, one of the objectives of the present invention, in at least one embodiment, is to provide a technique for accessing and managing bank data, from any mobile terminal, which is simple to implement and effective , especially in terms of speed of access to the bank server and fluidity of the man-machine interface. A complementary objective of the invention, in at least one of its embodiments, is to provide such a technique that eliminates the manual entry of URLs via the human / machine interface of the mobile terminal, allowing access the most direct and easy to use at his bank.

The invention also aims, in at least one embodiment, to provide such a technique that allows better security of access to banking data of a bank server, to fight against fraud and theft. Another object of the invention, in at least one of its embodiments, is to provide such a technique which is inexpensive and compatible with all existing banking servers.

At least one embodiment of the invention also aims to provide such a technique that allows a user to view all or part of his banking data, when his mobile terminal is disconnected from the communication network.

At least one embodiment of the invention also aims to provide such a technique that allows a user to view all or part of his bank data from his ADSL television, or from a mini Widget application (for example, an application for the Microsoft Windows Vista (registered trademark) office or for an Apple (registered trademark) Mac Dashboard) or Online Widget (for example a mini application for iGoogle (registered trademark) or Facebook (registered trademark)). 4. DESCRIPTION OF THE INVENTION In a particular embodiment of the invention, there is provided a method for accessing and managing, from a terminal of a communication network, bank data managed by a server. banking operations of an external network. According to the invention, the method comprises: a configuration phase comprising the following steps: recording by said terminal of reference access data provided by a user; o first negotiation between said terminal and said server; in the case of a first successful negotiation, reception by said terminal of bank data associated with said user, called user data, from said server; recording by said terminal of said user data, a usage phase comprising the following steps: reception by said terminal of current access data provided by the user; first authentication of the user by said terminal, from said current access data and said reference access data; o in case of first negative authentication, deleting said user data recorded by said terminal. Thus, the invention is based on a completely new and inventive approach to banking data management. Indeed, the invention proposes to store on the terminal all or part of the bank data associated with the user. Thus, in use and contrary to the techniques of the prior art (in particular WAP technology), the invention enables the user, in the event of a network loss (that is to say when the terminal is no longer connected to the communication network), to continue to consult his banking data (for example the balance of his bank accounts) and / or the last banking operations he has carried out.

In a particular embodiment, the bank data is stored on the terminal in an encrypted and / or compressed form. Furthermore, during the configuration phase, the user enters access data such as, for example, a four-digit PIN code via a man / machine interface (for example the terminal keyboard or a virtual keyboard). This PIN code is then stored on the terminal. According to the invention, during the use phase access to the bank data stored on the terminal is conditioned by the authentication of the user by the terminal. In other words, to access the bank data stored on the terminal the user must provide the terminal with the correct PIN code. In the case where the user is not successfully authenticated by the terminal (that is to say when the user has not entered the correct access data), the latter deletes all bank data. Thus, the invention makes it possible to maximize the confidentiality of banking data stored on the terminal, especially in the event of the theft of the terminal. According to an advantageous aspect of the invention, said phase of use comprises, in case of first positive authentication, a step of rendering by said terminal of said registered user data, as well as personalization data: logotype of the bank or the cash register Regional, personalized greetings, information about promotional products. Advantageously, said use phase further comprises, in case of first positive authentication, a second negotiation step between said terminal and said server. According to the invention, in the case of a successful second negotiation, the method comprises the following steps: the terminal sends to an intermediate device, via the communication network and according to a first communication protocol, at least one request for launching a banking operation on the server; the intermediate equipment translates said at least one request from the terminal into at least one request and transmits said at least one request to the server via the external network and according to a second communication protocol; the server receives and executes the said at least one request. Thus, all the intelligence and management logic are moved to the intermediate equipment (gateway), which makes the invention usable for any type of communication terminal and bank server, the latter not requiring therefore no complex and expensive adaptation to be compatible with the method according to the invention, which is particularly interesting.

According to a first advantageous embodiment of the invention, the first communication protocol belongs to the group comprising: an HTTPS protocol; - an HTTP protocol. Thus, by implementing an HTTPS (Hypertext Transfer Protocol over Secure Socket Layer) protocol, the security of the data exchanged between the terminal and the intermediate equipment is further improved. According to a second advantageous embodiment of the invention, the first communication protocol is an SMPP protocol. In this case, the method comprises the following steps: the terminal sends to a conversion gateway, via the communication network, said at least one launch request; the conversion gateway translates said at least one request from the terminal into at least one transformed launch request, in a form understandable by the intermediate equipment, and transmits said at least one transformed launch request to the intermediate equipment, via the communication network and according to an HTTPS protocol.

Thus, the invention enables a terminal implementing the SMPP (Short Message Peer-to-Peer Protocol) protocol to remotely and effectively manage bank data stored on a banking server, from SMS (Short). Message Service in English). To do this, the invention provides for the implementation of a conversion gateway between the terminal and the intermediate equipment. This conversion gateway makes it possible to convert between the SMS and the WEB. Preferably, said second communication protocol belongs to the group comprising: a SOAP protocol over an HTTPS protocol; an HTTPS protocol. Thus, by implementing a SOAP protocol over an HTTPS protocol, the security of the transit of bank data between the bank server and the intermediate equipment is further improved.

Advantageously, in the case where the execution of said at least one request results in the transmission of user data from the server to the intermediate equipment, the method further comprises the following steps: the intermediate equipment translates the user data transmitted by the server into transformed user data, in a form comprehensible by said terminal; the intermediate equipment transmits the transformed user data to said terminal; said terminal stores the transformed user data. In a particular embodiment, the intermediate equipment encrypts and compresses the bank data before transmitting them to the terminal. According to an advantageous aspect of the invention, the method further comprises the following steps: the intermediate equipment receives additional data from at least one additional data management equipment via the external network; the intermediate equipment enriches the user data transformed with said additional data, so as to transmit to said terminal enriched data. The additional data management equipment according to the invention is for example an advertisement server, a financial data server, an image server, an external system for managing bank transactions or payment of bills, etc. that is, a data server other than a bank data server. Thus, the invention proposes to transmit to the terminal advertising data, stock market data, etc., at the same time as the bank data, or to pay bills, or to send money in liquid form to the customer. by passing through the banking system ensuring traceability, or crediting a mobile account of a third person such as a supplier identified beforehand or to identify himself to receive his payment within a limited time; this identification can be performed for example on an internet system of a financial institution, or through a website. Advantageously, said terminal belongs to the group comprising: mobile terminals; - fixed terminals.

The invention therefore proposes a multi-channel solution, in that it enables any type of terminal to access and manage via any type of communication channel bank data managed by a banking server. Advantageously, said configuration phase further comprises a step of registration by the intermediate equipment of a question defined by the user and a response to said question provided by the user, called true answer. According to an advantageous aspect of the invention, each of said first and second negotiation steps comprises the following steps: reception by the intermediate equipment of a first set of current authentication data from said terminal; second authentication of the user by the intermediate equipment, from said first set of current authentication data; in the case of a second positive authentication, the server receives a second set of current authentication data from the intermediate equipment; the third authentication of the user by the server, from said second set of current authentication data; - In case of third positive authentication, establishment of a secure communication between said terminal and said server. The first and second reference authentication data sets are defined by the bank organization to which the bank server belongs, or may be generated by the gateway. Generally, the banking organization sends the user one or more mails including these reference authentication data sets. As will be seen in the remainder of the description, in a particular embodiment, the intermediate equipment implements a two-factor authentication mechanism, which makes it possible to improve the security of access to the banking server ( and therefore to the user's bank data). Preferably, each of the first and second sets of current authentication data comprises at least one item of information belonging to the group comprising: an identifier associated with the user; bank specific, or common to several financial institutions (eg OpenID) - a password; can be derived from a single table data cross-reference for each bank customer (simple naval battle-style table generated by the gateway) - a bank account number; a unique identifier number of each deployed application (TAG) providing an integrity check by crossing identification variables and a study of the behavior changes of the connection habits of the customers - an identifier associated with said terminal .

The invention covers a first case in which the identifier associated with the terminal is the IMEI (International Mobil Equipment Identity) identifier of the terminal. The invention covers a second case in which the identifier associated with the terminal is the identity number IMSI (for International Mobile Subscriber Identity in English) stored on the SIM card (for Subscriber Identity Module in English, identity module of subscriber in French) of the terminal. The invention covers a third case in which the identifier associated with the terminal is the telephone number of the terminal.

Advantageously, said second negotiation step used for example for transactions further comprises the following steps, in case of negative second authentication: the intermediate equipment sending said terminal said registered question; the intermediate equipment receives a current response from said terminal, said current response being provided by the user; the intermediate equipment compares said current response with said recorded true response; in the case of a positive comparison, the intermediate equipment sends said server said second set of current authentication data.

The invention therefore proposes to combine a two-factor authentication mechanism and an authentication mechanism with a secret question. In a particular embodiment, it is possible to consider limiting or prohibiting any banking operation (for example the purchase / sale of shares or the external transfer) when the user is not successfully authenticated by the authentication mechanism with secret question. According to an advantageous aspect of the invention, the exchanges between said terminal and the intermediate equipment are implemented by a software application, included in said terminal, and a vacuum cleaner of HTML pages (PARSER in English), included in the equipment. intermediate.

In another embodiment, the invention relates to a computer program product downloadable from a communication network and / or recorded on a computer readable medium and / or executable by a processor, said computer program product comprising instructions program code for the implementation of the aforementioned method, when said program is executed on a computer.

In another embodiment, the invention relates to a storage medium, possibly completely or partially removable, readable by a computer, storing a set of instructions executable by said computer to implement the above method. In another embodiment, the invention relates to a communication terminal of the type that can be connected to a communication network. According to the invention, the terminal comprises: banking data storage means transmitted by a banking server of an external network; means for authenticating a user of the terminal, said first authentication means generating a control signal in the event of negative authentication; means for deleting the bank data stored in the storage means, said deletion means being activated by said control signal. In another embodiment, the invention relates to an intermediate device of the type that can communicate with a terminal, via a communication network, and with a banking server, via an external network. According to the invention, the intermediate equipment comprises: means for receiving at least one request for launching a banking operation on the server transmitted by the mobile terminal, via the communication network and according to a first protocol of communication; first means for translating said at least one request from the terminal into at least one request understandable by the server; first transmission means of said at least one request to the server, via the external network and according to a second communication protocol.

According to an advantageous aspect of the invention, the intermediate equipment comprises at least one of the following means: means for receiving bank data transmitted by the server, via the external network and according to the second communication protocol; second means for translating said bank data of the server into transformed bank data, in a form understandable by the terminal; second means for transmitting bank data transformed to the terminal, via the communication network and according to the first communication protocol; an HTML page vacuum compatible with the sites and secure infrastructures of the banks, particularly with regard to concatenations of invisible web pages. In another embodiment, the invention relates to a banking server of the type that can be connected. to an external network. According to the invention, the server comprises means for receiving and executing at least one request transmitted according to a second communication protocol by an intermediate device, via the external network, said request corresponding to the translation of a request for data transmission. a terminal received by the intermediate equipment, 20 via a communication network and according to a first communication protocol. 5. List of Figures Other features and advantages of embodiments of the invention will appear on reading the following description, given by way of indicative and nonlimiting example (not all embodiments of the invention). are not limited to the features and advantages of the embodiments described hereinafter), and the accompanying drawings, in which: FIG. 1 shows an example of a banking data access and management system according to a preferred embodiment of FIG. the invention; FIGS. 2a and 2b show flowcharts illustrating a particular embodiment of the method according to the invention, in the case where the terminal implements an HTTPS protocol; FIG. 3 shows the simplified structure of a particular embodiment of a banking server according to the invention; FIG. 4 shows the simplified structure of a particular embodiment of an intermediate device according to the invention; and FIG. 5 shows the simplified structure of a particular embodiment of a terminal according to the invention. 6. Detailed description It is recalled that the present invention proposes to define a technique of access to banking data in a mobility situation. As will be noted in all the figures of this document the elements and identical steps are designated by the same reference numeral.

For the sake of clarity, in all the figures of this document the means are referenced by numerical references (of the type 1, 2, 3, ...) and the process steps are referenced by alphanumeric references (of the type E1, E2 , E3, ...). The general principle of the invention rests on the implementation of two modes of access: a first access mode, called connected mode, in which a user can access a banking server and manage operations in real time; banking (bank transfer, account summary, details of transactions, purchase / resale of shares, etc.) from its communication terminal. This connected mode is implemented by the terminal when the latter is connected to a communication network (for example the GPRS network). The method according to the invention in particular involves an intermediate device (also called bank gateway later) accessible from the terminal via an external network (for example the Internet). According to such a method, all the intelligence of access and management of bank data (stored at the bank server level) is provided by the bank gateway. The banking server has only a role of slave vis-à-vis the bank gateway that plays the role of the master by transmitting to the bank server queries to execute. The mobile terminal is never directly in relation (that is to say, it does not communicate directly) with the bank server, but always through the bank gateway; a second mode of access, said unconnected mode, in which the user can view (offline) his bank data and / or the latest banking he has done. This non-connected mode is implemented by the terminal, for example, in the event of network loss. The unconnected mode of the invention relies on the storage of the user's bank data on the terminal in the form of encrypted and compressed files.

An example of a system according to the invention is now presented with reference to FIG. In this simplified example, the system comprises: a communication network 1 to which is connected a terminal 2 of a user. For the sake of simplification of the description, it will be limited, throughout the rest of this document, to describe the particular case where the terminal 2 is a mobile terminal (for example a smartphone) comprising a radiocommunication module conferring the ability to connect to the Internet via the GPRS network. The skilled person will easily extend this teaching to a mobile terminal of any other nature (for example a PocketPC, a PDA, an iPhone (registered trademark) of the company Apple, a Blackberry (registered trademark) of the company RIM,. ..) and equipped with any other type of radio communication module using the DATA or SMS channel (for example in accordance with the Edge, UMTS, ...), or a fixed terminal (for example a digital television connected to the Internet network via a residential gateway); the Internet network 3 (forming an external network) to which a bank gateway 4 and a bank server 5 are connected. According to the invention, in the case where a secure WEB service is implemented on the bank server side 5, the data exchanges between the bank bank gateway 4 and the bank server 5 are done according to a SOAP protocol on an HTTPS protocol or following the HTTPS protocol (only). The data exchanged are in XML (eXtensible Markup Language) format. According to the invention, in the case where no secure WEB service is implemented on the bank server side 5, the bank gateway 4 implements a HTML pages (HTML Parsing). Suction techniques of HTML pages are well known to those skilled in the art. They will not be described in more detail in the present description. In the remainder of this document, one places oneself in the case where the exchanges of data between the bank gateway 4 and the bank server 5 are done according to the SOAP protocol on the HTTPS protocol. FIGS. 2a and 2b show a first exemplary embodiment in which a user remotely accesses bank data managed by a banking server from a mobile terminal implementing an HTTPS protocol. As illustrated by FIG. 2a, a configuration phase El is implemented when the user first launches the on-board software application containing the program code instructions for implementing the method according to the invention. The configuration phase E1 comprises a first step E10 during which the user enters via the terminal's human / machine interface (hereinafter referred to as HMI) reference access data, in response to a request from the terminal . For example, it is assumed that at this step E10 the user enters a code of 4 digits. During a step E20, the terminal stores the 4-digit code in an encrypted form, the result of a serialization of several encoding algorithms. During a step E30, the user enters via the terminal's HMI. a question and the answer to the said question, in response to a request from the terminal. During a step E40, the terminal transmits, using the HTTPS protocol, the question and the answer to the question to the bank gateway. The bank gateway receives and records the question and the answer to the question. In a particular embodiment, the question and the response are encrypted and compressed by the terminal before sending. The following substeps relate to a first negotiation step E50 between the terminal and the bank server. This first negotiation step makes it possible to establish a secure communication between the terminal and the banking server. During a substep E501, the user enters via the HMI of the terminal a username and a password, in response to a request from the terminal. During a substep E502, the terminal transmits, using the HTTPS protocol, a first set of data (called the first set of current authentication data) to the bank gateway. According to a particular embodiment of the invention, the first set of current authentication data comprises the user name and the password (entered in the substep E501), as well as an identifier associated with the terminal. As an example, it is considered for the following that the identifier included in the first set of current authentication data is the IMSI identity number stored on the SIM card of the terminal. According to an advantageous aspect of the invention, the first set of current authentication data is encrypted and compressed by the terminal before sending. The encoding techniques used are Triple DES, bit offsets, ZIP compression at base 64 and encryption, or MD5. The techniques of One Time Password are also used, as well as the known techniques of challenge-response algorithm, according to the literature in this area. During a substep E503, the bank gateway implements a first authentication mechanism for authenticating the user and the terminal. More specifically, the bank gateway maintains a table of first reference authentication data sets each comprising: an IMSI identity number, a username and a password. At this substep E503, the bank gateway checks in its table whether the first set of current authentication data corresponds to one of the first reference authentication data sets. If the first set of current authentication data is known to the bank gateway (i.e., in the case of positive authentication), then one goes on to a substep E504, otherwise (ie say in case of negative authentication) we go to a substep E510. It is noted that a negative authentication may, for example, take place if the user enters an incorrect password or, for example, if the terminal transmits an incorrect IMSI identity number (such a situation may occur if the user uses the SIM card of another person). In the substep E504, the user enters via the terminal's HMI a bank account number and a personal code (for example composed of 6 digits), in response to a request from the terminal. During a substep E505, the terminal transmits, using the HTTPS protocol, a second set of data (called the second set of current authentication data) to the bank gateway. The second common authentication data set includes the bank account number and personal code (entered in substep E504). The bank gateway then transmits, using the SOAP protocol over the HTTPS protocol, the second set of current authentication data to the bank server. During a substep E506, the bank server implements a second authentication mechanism for authenticating the user. More specifically, the banking server maintains a table of second reference authentication data sets each comprising: a bank account number and a personal code. At this substep E506, the bank server checks in its table whether the second current authentication data set corresponds to one of the second reference authentication data sets. If the second set of current authentication data is known to the banking server (that is, in the case of positive authentication) (in other words, if the user is authenticated as a customer of the bank to which the bank server belongs), then we go to a substep E507, otherwise (that is to say, in case of negative authentication) we go to a substep E513. In an alternative embodiment, it is possible to consider incrementing a counter each time the user is not authenticated by the bank server, so that: - if the counter has not reached a number N predetermined (with N> _1), then we return to the substep E504; - If the counter has reached the predetermined number N, then we go to the substep E513. In the substep E507, secure communication is established between the terminal and the bank server. In this same sub-step E507, the bank server transmits, using the SOAP protocol over the HTTPS protocol, the bank data of the user (current account statements, securities portfolios, etc.) to the bank gateway. The bank gateway translates the bank data transmitted by the bank server into transformed bank data, presenting itself in a form comprehensible to the terminal. In the exemplary embodiment illustrated, the bank gateway encrypts and compresses the bank data before sending to the terminal.

The flows between the intermediate system and the bank servers are typically https encrypted streams using a virtual private channel. During a substep E508, the bank gateway transmits, using the HTTPS protocol, the encrypted and compressed banking data to the terminal. In a substep E509, the terminal receives and stores the encrypted and compressed banking data, then decompresses and decrypts them so as to restore them (on its display screen) in a form readable by the user. In the substep E510 (in case of negative authentication of the user by the bank gateway), the bank gateway transmits, using the HTTPS protocol, the question recorded in step E40 to the terminal. During a substep E511, the user enters via the HMI of the terminal a response to the question (called current response). The terminal then transmits, using the HTTPS protocol, the current response to the bank gateway. During a substep E512, the bank gateway compares the current response and the response recorded in step E40. If the current response is the same as the recorded response, then proceed to substep E504, otherwise proceed to substep E513. During the substep E513, the terminal displays on its screen an error message. As will be noted, certain steps in FIG. 2b are identical (same alphanumeric references) to certain steps previously described in FIG. 2a. These common steps (E501 to E505 and E510 to E513) are not described again below. As illustrated by FIG. 2b, a use phase E2 is implemented: when the user restarts the software application embedded on the terminal. In this first case, the use phase E2 begins at step E60 described below; or when the user uses his terminal to carry out banking operations immediately after the configuration phase El (described in FIG. 2a). In this second case, the use phase E2 starts at the step E100 described below. In step E60, the user enters via the HMI of the terminal a current 4-digit code (also called current access data), in response to a request from the terminal.

During a step E70, the terminal compares the current code entered in step E60 and the code recorded in step E20. If the current code is identical to the registered code, then we go to a step E80, otherwise we go to a step E90. In a particular embodiment, the terminal can display on its screen the bank data recorded in step E509, in sign of positive authentication of the user by the terminal. In step E90, the terminal deletes all bank data recorded in step E509. In a particular embodiment, after deleting the bank data, no message is displayed on the screen of the terminal. In an alternative embodiment, it is also possible to envisage that after deletion of the banking data the terminal generates false banking data. Thus, in case of the theft of the terminal, the thief accesses false banking data of a demo account. In step E80 (also hereinafter referred to as the second negotiation step), the substeps E501 are implemented. to E505 and E510 to E513 previously described with reference to Figure 2a. For the sake of simplification of the description, only the steps that do not appear in FIG. 2a are described below. During a substep E806, the bank server checks whether the second current authentication data set (entered by the user in the substep E504) corresponds to one of the second authentication data sets of reference (included in the table stored by the banking server). If the second set of current authentication data is known to the bank server, then we go to step E10, otherwise we go to substep E513. For the sake of simplification of the description, it will be limited in the following description to describe the particular case where the user makes a transfer from account to account. The skilled person will easily extend this teaching to any other type of banking transaction. During the step E100, the user selects in the menu of the application (displayed on the terminal screen) the icon corresponding to the bank transfer operation. The user enters via the terminal's HMI bank transfer data such as, for example, a recipient account number and a sum of money to be transferred from the user's account (entered in substep E504). to the receiving account (IBAN), as well as a wording and a date of execution. During a step E110, the terminal transmits, using the HTTPS protocol, a request to launch a bank transfer transaction to the bank gateway. Note that the launch request conveys the bank transfer data in encrypted and compressed form. During a step E120, the bank gateway translates the terminal request into a bank transfer execution request, in a form understandable by the bank server. The bank gateway then transmits, using the SOAP protocol over the HTTPS protocol, the execution request to the bank server compatible with a service-oriented architecture (SOA). During a step E130, the bank server executes the request. In this step E130, the bank server transfers the amount of money defined by the user in step E100 from his bank account to the destination account specified by the user in step E100. After execution of the request, the bank server sends the terminal a confirmation of transfer via the bank gateway, possibly doubling the sending of a confirmation SMS. Upon receipt of the confirmation message, the terminal records the bank transfer data (recipient account number, amount of money transferred, date of transfer, ...) in the form of an encrypted and compressed file, or encrypted data stored in a file. partitioned memory space. It is recalled that the recording on the terminal of banking data and banking operations in the form of encrypted and compressed files is an important aspect of the implementation of the invention. Indeed, in use when the terminal loses the connection to the communication network (for example in the case where the user traveling in a train passes under a tunnel), the user can continue to consult his bank data (c). 'ie those registered on the terminal), and if necessary, start preparing its next banking transactions, or to point his writings to make a bank reconciliation with his tickets and stubs of checks. These will be sent to the bank server as soon as the connection to the communication network is reestablished, subject to a time limit for restoration of the connection configurable by the intermediate system.

As illustrated in FIG. 1, in the case where the terminal 2 implements a SMPP protocol conferring on it the capacity to transmit SMS messages, the system according to the invention implements a conversion gateway 6 between the terminal 2 and the terminal. bank gateway 4. The conversion gateway 6 performs the conversion between the SMS and the WEB. In other words, the conversion gateway 6 translates the different data transmitted from the terminal (for example the first and second sets of current authentication data, the transfer requests, etc.) into transformed data, which are presented under a form understandable by the bank gateway 4. The conversion gateway 6 transmits, using the HTTPS protocol, the data transformed to the bank gateway 4. In other words, the customers of a bank not having a fixed price data, but only a voice and SMS package, can still be users of the system. In a particular embodiment, the bank gateway 4 may also be connected to one or more additional data management equipment (not shown) such as, for example, advertising data servers, financial data servers, etc. The bank gateway can therefore enrich the data returned to the terminal with advertising data, financial data, etc. Thus, according to an advantageous aspect of the invention, the user can receive in real time the stock market prices on his mobile terminal and simply and effectively place buy / sell orders from his terminal, or send money to a loved one, by storing only the recipient's mobile phone number. FIG. 3 shows the simplified structure of a bank server 5 according to the invention, which comprises a memory 52, and a processing unit 51 equipped with a microprocessor ptP, which is controlled by a computer program (or application) 53 implementing certain steps of the method according to the invention (described in Figures 2a and 2b). The processing unit 51 receives as input a request 54 relating to a request to launch a banking operation on the bank server 5. The microprocessor ptP processes this request, according to the instructions of the program 53 so that depending on the nature of the request the bank server transmits (using, for example, the SOAP protocol over the HTTPS protocol) to a bank gateway 4 bank data 55 of a user or a bank transaction execution confirmation message 56. FIG. 4 shows the simplified structure of a bank gateway 4 (also hereinafter referred to as intermediate equipment) according to the invention, which comprises a memory 42, and a processing unit 41 equipped with a microprocessor ptP, which is controlled by a computer program (or application) 43 implementing certain steps of the method according to the invention (described in Figures 2a and 2b). The processing unit 41 receives as input a request for launch 44 of a banking operation on the bank server 5 described in FIG. 3. The microprocessor ptP processes this request, according to the instructions of the program 43, to generate an executable request 54 5. Finally, FIG. 5 shows the simplified structure of a communication terminal 2 according to the invention, which comprises a memory 22 comprising encrypted and compressed bank data, and a processing unit 21 equipped with a ptP microprocessor, which is controlled by a computer program (or application) 23 implementing certain steps of the method according to the invention (described in Figures 2a and 2b). The processing unit 21 receives as input routine access data 24 provided by a user. The microprocessor ptP processes these current access data, according to the instructions of the program 23. More specifically, the microprocessor ptP compares the current access data and reference access data (for example stored in the memory 22 or in a memory card). other memory of the terminal), so that depending on the result of the comparison the terminal deletes or restores on its display screen the bank data 25 stored in the memory 22.25

Claims (12)

REVENDICATIONS1. Method for accessing a management server (5) of user data from a communication terminal (2) belonging to a user, characterized in that it comprises the following steps: reception (E502) by a device intermediate, a first set of authentication data specific to said user, from said terminal; authenticating (E503) said user by said intermediate equipment from said first set of received authentication data and a first set of reference data; if said user has been authenticated by said intermediate equipment, receiving (E505), by said server, a second set of authentication data specific to said user, from said terminal; authenticating (E506) said user by said server from said second set of received authentication data and a second set of reference data; if said user has been authenticated by said server, establishing, by said intermediate equipment, a secure communication link between said terminal and said server. 2. Method according to claim 1, characterized in that, if said user has not been authenticated by said intermediate equipment, said intermediate equipment performs the following steps: transmission (E510) of at least one predefined question by the user to said terminal; receiving (E511) at least one response to said at least one question from said terminal; establishment of said secure communication link, according to said at least one received response. 3. Method according to any one of claims 1 and 2, characterized in that said terminal performs the following steps: obtaining (E508) user specific data to said user, via said secure communication link; recording (E509) said user data obtained in storage means included in said terminal. 4. Method according to claim 3, characterized in that the step of obtaining said user data comprises: a step of transmitting (E110) a request for obtaining said user data by said terminal to said intermediate equipment, via said secure communication link and according to a first predetermined communication protocol; the following steps, performed by said intermediate equipment: translation of said obtaining request into a request in a form understandable by said server; transmitting (E120) said request to said server via said secure communication link and according to a second predetermined communication protocol; after execution (E130) of said request by said server, receiving said user data via said secure communication link and according to said second protocol; translating said received user data in a form understandable by said terminal; transmission of said user data translated to said terminal, via said secure communication link and according to said first protocol. 5. Method according to claim 4, characterized in that said first protocol belongs to the group comprising: an HTTP protocol; an I-ITTPS protocol; and an SMPP protocol. 6. Method according to any one of claims 4 and 5, characterized in that said second protocol belongs to the group comprising: a SOAP protocol on an HTTPS protocol; an HTTPS protocol. 7. Method according to any one of claims 3 to 6, characterized in that said terminal performs the following steps: request an access code to said user; obtaining (E70) an access code provided by said user; removing (E90) said stored user data according to said provided access code and a reference access code. 8. Method according to any one of claims 1 to 7, characterized in that said first set of authentication data comprises: an identifier associated with said user; - a password ; and an identifier associated with said terminal. 9. Method according to any one of claims 1 to 8, characterized in that said second set of authentication data comprises: - a bank account number; and a known secret code of said user. 10. Computer program product, downloadable from a communication network and / or recorded on a computer readable medium and / or executable by a processor, characterized in that it comprises program code instructions for the implementation the access method according to at least one of claims 1 to 9, when said program is run on a computer. 11. Storage medium, possibly completely or partially removable, readable by a computer, storing a set of instructions executable by said computer to implement the access method according to at least one of claims 1 to 9. 12. System for accessing a user data management server from a communication terminal belonging to a user, characterized in that said system comprises an intermediate device comprising: means for receiving a first set of authentication data specific to said user, from said terminal; authentication means of said user, from said first set of authentication data received by said receiving means 5 and a first set of reference data, in that said server comprises: reception means of a second set of authentication data specific to said user, from said terminal; authentication means of said user, from said second set of authentication data received by said receiving means and a second set of reference data, and in that said intermediate equipment further comprises means for establishment of a secure communication link between said terminal and said server, said means for establishing said secure communication link being activated by said authentication means of said server.