FR3023039A1 - AUTHENTICATION OF A USER - Google Patents

Abstract

A user has a hardware data medium (SM1), carrying first identification data representative of an origin identity (IO1) assigned to the user, and a communicating mobile object capable of executing an operation. authentication from at least one data specific to the user stored in a memory of the communicating mobile object. A platform (PFass) of an authentication system generates second identification data representative of a derived identity (ID1) of the original identity and stores the second identification data in association with contact data. of the communicating mobile object. A message sent to the communicating mobile object triggers the execution by said communicating mobile object of the authentication operation from at least one own data provided by the user and the data specific to the stored user. A message indicating a success of the authentication operation is sent to a platform (PFop) accompanied by the identity of the user, who is associated with the communicating mobile object, and whose non-repudiation has been verified.

Description

The present invention relates to a system and method for authenticating a user, to which is assigned a digital data carrier carrying first identification data, representative of an original identity assigned to the user. This method or authentication system is used in particular for the authentication of the user during a request for access to a service, for example a data access service. The patent application published under the number W02013 / 121127 describes such a solution for authenticating a user. In this solution, a derived identity is generated from the original identity read on the hardware data medium, this derived identity being stored in a mobile terminal of the user in association with a specific data of the user, such as for example a PIN code or password. The authentication of the user is then carried out on the basis of the data stored in the mobile terminal: the user enters on the mobile terminal own data equal to that stored in association with the derived identity. Then, if the input data is correct, the mobile terminal transmits to an authentication server the derived identity stored in the mobile terminal. This solution has the following limitations. First, the derived identity is transmitted from the mobile terminal to the authentication server through the mobile network: the need for this transmission makes it impossible to use the service in the absence of coverage by a mobile network: in particular derived identity can not be obtained. Second, the use of this solution is possible only for certain terminals having sufficient memory and compatible with the execution of an application executed by the security module (for example a SIM card, suscriber identity module) of the terminal mobile, which is both capable of storing the derived identity in the security module and capable of performing authentication based on the stored derivative identity. In addition, such an application must be installed in the mobile terminal prior to the generation of the derived identity in order to be able to store the derived identity and the associated own data according to the procedure described in the aforementioned patent application.

Finally, this solution imposes a constraint on the number of derived identities that can be stored in the same security module and on the length in bytes of such a derived identity: in fact the storage in a SIM card is constrained and limited by the capacity of this SIM card. It is therefore necessary to limit either the number of identities derived, or their length if we want the solution to be compatible with all SIM cards regardless of their storage capacity. This would have an impact on the security level of the authentication solution, if the number of bytes of a derived identity should be limited.

The present invention improves the situation. According to a first aspect, the invention relates to a method for authenticating a user who is assigned a hardware data carrier carrying first identification data representative of an original identity assigned to the user, the method being implemented by at least one platform of an authentication system. The authentication method includes a derived identity generation phase and an identity verification phase. During the generation phase of a derived identity, the following steps are performed: a step of generating, from at least the first identification data, second identity data representative of an identity derived from the identity of origin, - a step of storage by a said platform of the second identification data in association with contact data of a communicating mobile object capable of executing an authentication operation of a user from at least a data specific to the user stored in a memory of the communicating mobile object, During the identity verification phase, the following steps are executed: a step of sending to the communicating mobile object a triggering message an execution by the mobile object communicating the authentication operation from at least one own data provided by the user and said at least one data item e specific to the user stored in the memory of the communicating mobile object, - a step of receiving a message signaling a success of said authentication operation, - a triggering step, following the reception of said message, d an identity verification step from the second identification data stored by said platform in association with the contact data of said communicating object. By "communicating mobile object" is meant for example a device capable of communicating, in particular by messages, via a telecommunications network. A communicating mobile object is for example a mobile terminal, a mobile phone, a smartphone, a personal assistant, a walkie-talkie, etc. By "contact data of a communicating mobile object" is meant, for example, data making it possible to communicate with the communicating mobile object via a telecommunication network, in order to transmit data to it and / or to receive data coming from this communicating mobile object.

When the communicating mobile object is a mobile telephone terminal, the contact data correspond for example to the telephone number (MSISDN, Mobile Station International Subscriber Directory Number, in particular) allocated to the terminal, or an identifier of the SIM card (Suscriber Identity Module) / SE (Security Element). However, it may be, alternatively, an IP address for example for a device connected via an IP (Internet Protocol) network, or an email address ("email" address). By "user-specific authentication data" is meant, for example, any user-specific information enabling the authentication of the user: for example a personal identification code (or "PIN" code), or even biometric identification data (voice or fingerprint recognition, or iris, etc.). By "derived identity" is meant, for example, an identity data item resulting from a transformation of an original identity data item. This transformation is for example a hash function. The result of such a function being uninterpretable, this derived identity is somehow anonymous, because it does not allow to find the original identity of the user. The derived identity is, like the original identity, unique and unique to a single user: it can not be assigned the same identity derived from two different users. Thus there is a one-to-one relationship between the original identity and the derived identity.

The transformation used for the generation of the derived identity can be a deterministic function so that, by applying the transformation to the original identity, it always results in the same derived identity (this derived identity is therefore unique for a given identity). given transformation) and that this same derived identity can be found in a certain way by applying this transformation to the original identity.

The present invention advantageously makes it possible to substitute for a hardware data carrier a mobile object communicating with the user for the implementation of an authentication of the user. Thus the authentication function of the identity of the user (usually performed from a bank card, a SESAM-Vitale card or other) is performed in two stages: - by means of the communicating mobile object with regard to the first part of the identity verification phase, this first part comprising a comparison of an authentication data input by a user with an authentication data stored in the communicating mobile object, and - at means of the platform with respect to the second part of the identity verification phase, this second part comprising a verification performed on the derived identity in relation to the original identity. The authentication method described here is based on a strong authentication mechanism in that it is necessary to perform this authentication of several authentication factors: 1) to access the communicating mobile object of the user, 2) to obtain at least one data specific to the user; 3) to verify the derived identity relative to the original identity. According to this method, it is no longer necessary to transmit the derived identity via a telecommunication network to perform the identity verification. For example, it is no longer necessary to be able to communicate with the communicating mobile object in order to obtain the derived identity. This makes it possible, for example, in the absence of a network connection with the communicating mobile object, to call upon an authentication mechanism of the user that does not need to communicate via a telecommunications network with the communicating mobile object. : for example a challenge / response type mechanism ("challenge / response" according to the English terminology). For example, the user may be authenticated by communicating with a terminal via which the user requests access to a service, by asking the user to send by means of this terminal an answer to a proposed challenge on a terminal. this terminal or on the communicating mobile object. Finally, since the second identifying data representative of the derived identity is stored in an authentication platform and no longer in the terminal, there are no longer any constraints related to the limited data storage capacities of the object. communicating. The solution is therefore applicable to a larger number of communicating mobile objects. In one embodiment of the authentication method, the generation of the second identification data is performed further from said contact data and / or an identifier of a security module present in the communicating mobile object. and / or data specific to the communicating mobile object. This makes it possible to strongly link the derived identity to the communicating mobile object, in that it is possible to check whether the derived identity has been generated for a given communicating mobile object or another communicating mobile object by analysis of this identity. derivative. For example, when the transformation used to generate the derived identity is deterministic, it is sufficient to regenerate this derived identity from the original identity and a contact data of a communicating mobile object and then to compare this identity. derived from that stored in the platform. In one embodiment, the authentication method further comprises a step of sending to the communicating mobile object a message comprising installation data of an authentication software application to be executed by the mobile object. communicating, said authentication software application being designed to perform said authentication operation. This allows an automated installation of the software application in the communicating mobile object. No prior configuration of the communicating object is further required. In one embodiment of the authentication method, the second identification data are stored by a said platform, for example an operator platform, in association with the first identification data. The original identity can thus be found on the one hand, of the association memorized between the contact data and the derived identity, on the other hand, of the association memorized between the derived identity and the identity of origin. This original identity can therefore be found even in the absence of a network connection with the communicating mobile object. In one embodiment of the authentication method, said identity verification step includes a non-repudiation verification of the original identity from the first identification data stored in association with the second identification data. The original identity is thus the means of controlling non-repudiation and the validity of identities. This makes the authentication solution applicable to all systems where there is already an identity management system that ensures the authenticity check, non-repudiation and validity of the identities assigned to users. In one embodiment of the authentication method, said identity verification step comprises a verification of the second identification data stored in association with the contact data of said communicating mobile object. This verification is performed for example by checking whether the second identification data stored in association with the contact data of said communicating mobile object are also stored in association with first identification data representative of an original identity. Thus by comparison, on the basis of the two memorized associations, it is possible to verify the derived identity, in particular the integrity of this derived identity. In one embodiment, the authentication method further comprises, during the execution of said authentication operation: a query of the user to ask the user to provide at least one piece of data specific to the user - A verification of said at least one own data provided by the user by comparison with said at least one data specific to the user stored in the memory of the communicating mobile object. In one embodiment of the authentication method, the first identification data is read by a reader of said hardware data medium and then transmitted to an identity management server for verification of said first identification data. This ensures that a derived identity can not be obtained for an invalid or repudiated origin identity. In one embodiment of the authentication method, the second identification data is thus generated under the condition of verifying the integrity of said first identification data obtained.

In one embodiment, the authentication method further comprises, in case of success of the identity verification step, a step of generating a cryptographic key specific to the user to be used to sign and / or numerically encrypt data. This allows the user to benefit from an audit / traceability system for the operations that he requests to perform when he has been authenticated. An association between this cryptographic key and the original identity and / or the derived identity can be created either for a given transaction performed following authentication implemented by means of the authentication method according to the invention, or for a set of transactions, each of its transactions requiring the prior implementation of the authentication method according to the invention. The various embodiments mentioned above are combinable with each other for the implementation of the invention. According to a second aspect, the invention relates to a platform for implementing a user authentication method to which a hardware data medium is allocated, carrying first identification data representative of an identity of a user. the origin assigned to the user, the platform comprising: means for generating, from at least the first identification data, second identification data representative of an identity derived from the original identity; means for storing the second identification data in association with contact data of a communicating mobile object capable of executing a user authentication operation from at least one data specific to the user stored in a memory of the communicating mobile object; means for sending to the communicating mobile object a message triggering an execution by the mobile object communicating with the op authentication eeration from at least one own data provided by the user and from said at least one data specific to the user stored in the memory of the communicating mobile object, means for receiving a message signaling a success of said authentication operation, - means for triggering an identity verification step from the second identification data stored by said platform in association with the contact data of said communicating object. The advantages stated for the authentication method according to the invention can be directly transposed to the platform according to the invention. According to a third aspect, the invention relates to a communicating mobile object of a user to whom is assigned a hardware data carrier, carrying first identification data representative of an original identity assigned to the user, said object mobile device comprising - means for executing a user authentication operation from at least one user-specific data stored in a memory of the communicating mobile object, - receiving means, originating from a platform of an authentication system, a message triggering an execution by the mobile object communicating the authentication operation from at least one own data provided by the user and said at least one data specific to the user stored in the memory of the communicating mobile object, means for sending to said platform a message signaling a success of said authentication operation, said ssage triggering an identity verification step from second identification data, representative of an identity derived from the original identity, stored in association with contact data of said moving object communicating by said platform. The invention relates, according to a fourth aspect, to a terminal comprising a communicating mobile object according to the invention. The advantages stated for the authentication method according to the invention can be directly transposed to the platform, to the communicating object and to the terminal according to the invention.

According to one implementation, the different steps of the authentication method are implemented by a software or computer program. The invention thus relates to a software or program that can be executed by a computer or by a data processor, this software / program comprising instructions for controlling the execution of the steps of an authentication method. These instructions are intended to be stored in a memory of a computing device, loaded and then executed by a processor of this computing device. This software / program can use any programming language, and be in the form of source code, object code, or intermediate code between source code and object code, such as in a partially compiled form, or in any form what other desirable form. The computing device can be implemented by one or more physically distinct machines and generally presents the architecture of a computer, including components of such an architecture: data memory (s), processor (s), communication bus hardware interface (s) for connecting this computing device to a network or other equipment, user interface (s), etc. The invention also relates to an information carrier comprising instructions of a program as mentioned above. The information carrier may be any entity or device capable of storing the program. In one embodiment, the different steps of the authentication method are implemented by a set of at least one platform constituting an authentication system, each platform of this set being endowed with the following means: storage, especially memory, for storing program instructions designed to control the execution of the steps of an authentication method; - Data processing means, including a data processor, capable of executing the stored program instructions to implement the corresponding steps of the authentication method. Each platform of this authentication system comprises means for implementing at least some steps of the authentication method as described below for the platform concerned. These means are software modules (software) and / or hardware (hardware). In this context, the term "module" corresponds in this document to a software component, to a hardware component or to a set of hardware and / or software components, able to implement a function or a set of functions, according to what which is described below for the module concerned.

Other objects, features and advantages of the invention will become apparent from the description which follows, given solely by way of nonlimiting example, and with reference to the appended drawings in which: FIG. 1 schematically illustrates the exchanges between authentication system platforms for implementing an enrollment phase of the authentication method; FIG. 2 diagrammatically illustrates the exchanges between authentication system platforms for the implementation of an authentication scheme; authentication phase of the authentication method. The authentication method is operable to authenticate a user requesting access to one or more services. This user U1 carries a hardware data medium SM1, comprising first identification data DI01, representative of an original identity I01 assigned to the user U1. The hardware data medium SM1 constitutes an identity medium. This may be for example a personal card carrying a security component, for example a credit card, a credit card, or more generally a chip card giving access to rights, such as for example a SESAM card. Vitale opening, in France, right to health care. Alternatively, it may be a piece of digital identity (passport, possibly biometric, or other). It can also be a card with a RFID radio component (Radio Frequency Identification) or NFC (Near Field Contact) adapted for near-field reading. Such hardware data support SM1 is designed to be read by an LC reader, for example a smart card reader, an RFID or NFC reading terminal or a dedicated reader capable of obtaining all or part of the data support. which are stored there. Access to the data stored in the hardware support SM1 can be secured, for example requiring the user interface of a user-specific code / password support LC read device. The authentication method can be used to authenticate a user before allowing access to one or more services. Such a service may be an access service to bank data, or data from a medical file, or other data. An aforementioned service may also be an execution service of an electronic transaction. Generally, access to the service and / or data is authorized after verification of the hardware data medium SM1. Access rights are defined for this user and stored in association with the original identity 101 represented by the first identification data DIO1 stored in the hardware data medium SM1. The authentication method that is described in this document makes it possible to authenticate a user by means of a communicating mobile object T1 of the user U1, used instead of the hardware data support SM1, and to verify whether has the necessary rights for access to the requested service or for the execution of the requested transaction by finding the original identity from the communicating mobile object T1. The authentication method is based notably on the realization of an association between the communicating mobile object T1 and the hardware data medium SM1, by means of a derived identity ID1 of the original identity I01. This ID1 derived identity serves as a logical link between the communicating mobile object T1 and the hardware data medium SM1.

The authentication method is implemented by means of an authentication system comprising several platforms cooperating with each other and communicating through at least one telecommunications network, for example through the Internet. This authentication system thus comprises a PFass association platform, which receives the requests for registration / unsubscription of a user to the authentication system and proceeds to register an association between a derived identity and an identity of origin, - a PFop operator platform, able to communicate with a communicating mobile object T1 through a telecommunication network Rop, for example through a mobile telephone network, and which stores, for each communicating object T1 communicating authorized using the service, an association between a contact data DC1 of this communicating mobile object T1 and an associated derived identity; a front-end PFin platform, which receives authentication requests for access to a service; a PFgi identity management platform, which manages and stores in a database the original identities assigned to the different users and is responsible for verifying these original identities, as well as their possible repudiation; - a service platform PFse for access to a service These different platforms communicate with each other through a telecommunication network, for example through the Internet or a private network. They use a communication protocol compatible with this network to transmit messages, for example http protocol or other. These different platforms can be physically separate or integrated into a single physical device. More generally, the various functions described for these different platforms can be implemented in one or more physically separate equipment and distributed as needed between these physical devices.

Each platform of the authentication system is a network entity, located in a network infrastructure, service platform or computer server, implementing for a plurality of users the service features described in this document for this platform. The operator platform PFop is for example located in a network infrastructure of a network operator. The PFgi identity management platform is for example located in a network infrastructure of a company managing the original identities. Enrollment and association phase The authentication method comprises a first phase, called enrollment phase, during which a derived identity is assigned to a user U1. For the implementation of this first phase, the user U1 must be provided with the hardware data medium SM1 and the communicating mobile object T1 between which an association will be made. The communicating mobile object T1 is equipped with a security module, comprising a memory for securely storing data, a microcontroller capable of executing an authentication software application. This security module is for example a SIM card type (Subscriber Identity Module), USIM (Universal Subscriber Identity Module) or SE (Secure Element).

This first phase comprises steps E100 to E180. In step E100, a user connects to the PFass association platform and makes a registration request to the authentication system. For this, the user uses a LC read device hardware data support SM1 on which are stored first DIO1 identification data representative of an original identity I01. The LC read device is connected with the PFass association platform which implements a registration service: the LC read device reads the first identification data DIO1 stored in the hardware data medium SM1, and the transmits to the PFass association platform with the registration request to the authentication system. The reading of these data stored in the hardware data medium SM1 may be conditioned on the user entering a code or password specific to this user. The PFass association platform then proceeds to the verification (step E110) of the original identity 101 prior to the generation of a derived identity ID1. In step E110, the PFass association platform transmits the first identification data DIO1 to the identity management platform PFgi for verification of the validity of the first identification data DI01. The identity management platform PFgi checks whether these first identification data DIO1 are valid, in particular that they appear in a list of valid identity data and that the original identity 101 represented by these data n has not been repudiated. If this is the case, the PFgi identity management platform sends a message to the PFass association platform to indicate that the first DIO1 identification data transmitted is valid. In the opposite case, the authentication process ends with the sending by the PFass association platform of a message informing the user U1 of the invalidity of the original identity 101 stored on the hardware support of SM1 data.

In step E120, when the first identification data DIO1 is valid, the association platform PFass asks the user U1 to enter at least one contact data DC1 of the communicating mobile object T1: identifier associated in a one-to-one way with the communicating mobile object T1, ie an identifier associated one-to-one with the security module of this communicating mobile object Tl.

In step E130, the user U1 provides the requested contact data. In practice, when the communicating mobile object T1 is a telephony terminal and the security module is a SIM / USIM / SE card or the like, the user U1 for example enters the Mobile Station International Subscriber Directory Number (MSISDN). its mobile telephone terminal or an identifier of the SIM / SE card or other contact data DC1 making it possible to identify the communicating mobile object T1 and to establish a communication with this communicating mobile object Ti. The input of the contact data DC1 can be effected by means of a keyboard present on the LC reading apparatus. Failing this, a connection may be established by the mobile object communicating with the PFass association platform and the input will be performed by means of an input interface of this communicating mobile object T1.

In one embodiment, steps E140 and E150 are added before executing step E160 to verify that the DC1 contact data supplied is correct. During step E140, in order to verify that the contact data DC1 entered for the communicating mobile object T1 is correct, a message is sent on request from the PFass association platform to the communicating mobile object T1 identified by this DC1 contact data via the PFop operator platform and the associated Rop telecommunication network. This message may be an SMS, for example compliant with the ETSI 102 225 standard: the message is either a message interpreted by an application executed in the security module for its display, or a simple text message. This message contains for example a code, for example numeric, generated randomly, that the user must then enter on the LC read device and / or its communicating mobile object T1. In step E150, the code entered is transmitted by the LC read device and / or the communicating mobile object T1 to the PFass association platform or the operator platform PFop connected thereto for verification that the code entered is identical to the code sent.

In step E160, if the code entered is identical to the code sent, the PFass association platform then sends, via the operator platform PFop and an associated telecommunication network Rop, a message to the communicating mobile object T1. The message is for example an SMS message (Short Message Service) sent using the OTA technology ("over the air") which allows to update or enrich the services / applications implemented by a SIM card. This technology is described in particular in the specification TS 31.115 defined by the organization 3GPP ("Third Generation Partnership Project") or more generally in the specification ETSI TS 102 225. All mobile terminals using a SIM card are compatible with such messages. In one embodiment, this message contains installation data of an authentication software application, executable by the communicating mobile object T1, in particular by the security module of the communicating mobile object T1. This installation data is for example constituted by a hypertext link. When, upon receipt of this secure message, the user clicks on the hypertext link, the process of downloading and installing the authentication software application in the security module is triggered automatically. In step E165, upon receipt of this message, the authentication software application is installed in the communicating mobile object T1, in particular in the security module of the communicating mobile object T1. At least one data specific to the user is also stored in the communicating mobile object T1, in particular in the security module of the communicating mobile object T1.

A first association is thus materialized in the communicating mobile object T1 between this communicating mobile object T1 and the user (at least one data specific to the user). The user-specific data may be generated by the PFass association platform or the PFop operator platform and then incorporated in the message sent in step E160 to be stored by the authentication software application after its installation and communicated. to the user by this software application, or - generated by the PFass association platform or the PFop operator platform and then encoded directly into the software code of the authentication software application to be downloaded and communicated to the user by this software application, or - entry on a user interface of the communicating mobile object T1 of the user after installation of the authentication software application and execution of an activation function of an input user interface of this own data.

The data specific to this user can be a password, a numeric or alphanumeric code, a fingerprint, biometric data etc. The own data is freely chosen by the user or constrained in number of characters and / or in form (letters, figures, special characters, etc.). This own data is known only to this user. In an alternative embodiment, several own data are required: for example a fingerprint and a password. In step E170, the PFass association platform generates a derived identity identity ID1 of the original identity 101 and stores the second identification data DID1 representative of this ID1 derived identity in association with the identity of the identity ID1. origin I01.

A second association is stored between the original identity (first identification data DIO1) and the derived identity ID1 (second identification data DID1) in the association platform PFass. The derived identity ID1 is obtained by applying a transformation function to the original identity. As a variant, this derived identity ID1 is obtained by applying a transformation function combining the original identity and the contact data DC1 of the communicating mobile object T1. The fact of combining these two pieces of information strengthens the security of the association defined between the communicating mobile object T1 and the derived identity ID1 in that, if another communicating mobile object T1 is used, it can be detected. that this other communicating mobile object T1 is not the one used during the ID1 derived identity generation phase. It is possible to combine the original identity with another data for the generation of the derived identity: an identifier of the communicating mobile object T1 and / or the security module of this communicating mobile object T1 and / or a data specific to the communicating mobile object T1 and / or the security module of the communicating mobile object T1.

The transformation function used is, for example, a hash function, an encryption function or any other suitable mathematical function. This transformation function may or may not be reversible, depending on whether or not it is desired to be able to find the original identity 101 from the derived identity ID1. The ID1 derived identity may be in the form of an alphanumeric code with no particular meaning to guarantee anonymity. The length of this alphanumeric code must be sufficiently high to optimize the entropy of the security solution and ensure that the derived ID1 identity that results is unique, and therefore unique to a user and only one. Then, during a step E180, the PFass association platform sends the derived identity to the operator platform PFop for storage in association with the contact data DC1 of the communicating mobile object T1. A third association is also stored between the communicating mobile object T1 (contact data DC1) and the derived identity ID1 (second identification data DID1) in the operator platform PFop.

With the first association stored in the communicating mobile object T1, the second association stored in the association platform PFass, and the third association stored in the operator platform PFop, a triple association is therefore formed between the communicating mobile object T1, the data specific to the user, the derived identity ID1 and the hardware support SM1 of data, bearer of the original identity I01. The ID1 derived identity is thus strongly related to the hardware support SM1 data and its carrier, in particular by means of the communicating mobile object T1. The authentication phase that will now be described is therefore based on a reconciliation allowing, through the various associations memorized, to find the original identity of the user and to perform a verification of the validity thereof. The derived identity may, unlike the original identity, be strictly anonymous and not disclose the actual identity of the user U1 concerned. Thus ID1 derived identity can limit the flow of the original identity and especially its storage elsewhere than in his manager.

Authentication Phase This second phase includes steps E200 to E280. This second phase allows the strong authentication of a user prior to access to a service: access to personal data, access to a data storage space, access to an online service, access to content and / or execution of a transaction, for example in relation to personal data, personal data, an online service, contents. During the initial step E200, the user connects to a service platform PFse, hosting the service concerned. Before opening the access to the user, this service platform PFse will send an authentication request to the front-end platform PFin, serving as a front-end platform for authentication / identification of the user. The role of this PFin front-end platform is to make the link with the other platforms having proceeded in the phase of enrollment with the memorization of the various associations. For this purpose, the user uses a T2 terminal adapted to connect to the PFse service platform and send a request for access to a service. This terminal T2 may be identical to or different from the communicating mobile object / terminal T1 used in the enrollment phase. For example, the PFse service platform comprises a Web server, implementing a communication interface using a Web protocol such as the HTTP protocol ("hypertext transfer protocol"). In this case, the request for access to the service comes from a terminal T2 of the user, integrating a web browser communicating with the service platform PFse by HTTP request for sending the access request to the service. The access request is accompanied by a contact data DC1 of the communicating mobile object T1 used in the enrollment phase.

In the step E210, following receipt of the service access request, the service platform PFse sends a message to the front platform PFin asking it to proceed with the authentication of the user and transmits it to the user. this purpose the contact data DC1 of the communicating mobile object Ti.

Then, the front platform PFin triggers the sending of a message to the communicating mobile object T1 via the operator platform PFop and the associated telecommunications network Rop. This message triggers the execution by the communicating mobile object T1 of the authentication software application installed during step E165. During step E220, the execution of the authentication software application is started by the communicating mobile object T1, in particular by the security module of the communicating mobile object Ti. This authentication software application triggers the presentation to the user of a data entry user interface of at least one data specific to the user. During the step E230, the user enters or provides by means of this data entry user interface one or some data specific to the user, before a priori being identical or corresponding to those stored during the phase enrollment.

In step E240, the authentication software application checks whether the user-specific data provided in step E230 are identical to those stored in step E165 during the enrollment phase. If so, the authentication software application sends to the PFin front-end platform, via the operator platform PFop and the associated telecommunication network Rop, a message signaling the success of the authentication operation executed by the authentication software application. This message includes an identification of the authentication operation, a date and optionally a digital signature of the authentication software application. The "Mobile Connect" technology specified as part of the GSMA Operator Association can be used for this purpose.

In the opposite case, the authentication software application sends to the front platform PFin, via the operator platform PFop and the associated telecommunications network Rop, a message signaling the failure of the authentication operation executed. by the authentication software application. The authentication phase then ends and the user is informed via the terminal T2 used to connect to the service platform PFse. In step E250, if a message is received indicating the success of the authentication operation performed by the authentication software application, the operator platform PFop retransmits this result to the front-end platform PFin. adding to it the derived identity ID1, that is to say the second identification data DID1 stored in association with the contact data of the communicating mobile object Ti. The front platform PFin then queries the PFass association platform to obtain the original identity, after checking the second identification data DID1.

In step E260, the PFass association platform performs a verification of the validity of the second identification data DID1 received from the platform PFgi. For this purpose, the PFass association management platform first searches whether the second identification data DID1 is stored in association with first identification data DI01. If so, the PFgi identity management platform is requested by the PFass association platform to check whether the original identity 101 represented by these first identification data DIO1 has not been repudiated and / or is still valid At the end of step E250, the PFgi identity management platform returns a response to the PFass association platform on the result of the verification of the original identity. In step E270, in the event of successful U1 user authentication, the PFin frontend transmits to the PFse service platform, as a result of the authentication request received by the PFin front-end platform. step E210, a response message. This response message includes for example the original identity 101 of the user. Depending on the rights granted to the user, the service platform PFse then authorizes or not access to the service requested by this user.

For example, allows access to data, secure storage, a transaction execution module, and so on. A cryptographic key specific to the user can also be generated to sign and / or encrypt data / message / content that the user would like to transmit as part of the implementation of the service. During the step E280 an electronic transaction is for example executed: for example an access to data, a data transmission, etc. If in the context of accessing the service, the user requests to execute a transaction, including a data transmission to a third party recipient, the transmitted data can be signed and / or numbers using the cryptographic key received. This allows traceability and auditing of transactions performed by a user.

Unsubscription phase of the authentication system Unsubscription / deactivation can take place at the request of the user. In this case, the user can request the uninstallation of the authentication software application and / or request the deletion of the association stored between the derived identity and the original identity. The user triggers for example the execution of the authentication software application. This application asks the user to provide at least one data specific to the user. If the own data provided by the user is correct, the authentication software application notifies, via the operator platform PFop and the associated telecommunication network Rop, the PFass association platform of the request for deletion of the association stored between the derived identity and the original identity. The operator platform PFop deletes the association stored at its level between the derived identity and the contact data DC1 of the communicating mobile object T1. The PFass association platform removes the association stored at its level between the derived identity and the original identity. The authentication software application can then be uninstalled from the communicating mobile object Tl. The unsubscription / deactivation can take place at the request of an association management service manager, in order to prevent authentication of the authentication device. a user, for example when the communicating mobile object T1 is lost or has been stolen.

This unsubscription / deactivation can consist of: - deleting the second association memorized between the communicating mobile object T1 (contact data DC1) and the derived identity ID1 (second identification data DID1) in the operator platform PFop; and / or - delete the third association stored between the ID1 derived identity and the original identity 101 in the PFass association platform. The deletion of one of these two associations makes it impossible to authenticate the user since the deletion of the second association makes it impossible to restore the ID1 derived identity associated with the communicating mobile object T1, and the subsequent search the original identity 101; the deletion of the third association makes it impossible to restore the original identity 101 associated with the derived identity ID1 and the verification of the original identity I01. The unsubscription / deactivation can take place at the request of an identity management service manager, in order to invalidate the rights of the user or when the validity of the data medium SM1 data is expired. This unsubscription / deactivation may consist of deleting the third association is stored between the ID1 derived identity and the original identity 101 in the PFass association platform. This deletion makes it impossible to authenticate the user since it makes it impossible to restore the original identity 101 associated with the derived identity ID1 and the verification of the original identity I01, and this even if the second association had to be kept at the level of the operator platform PFop between the derived identity and the contact data DC1. Alternatively, this unsubscription / deactivation may consist in modifying in the PFgi identity management platform the rights of the user and / or in making a registration of the original identity 101 in a list of invalid identities and / or repudiated. In either alternative, user authentication will fail and access to the requested service will be denied. Change of the identity material medium and / or communicating mobile object The user requests the unsubscription of the authentication system then sends a new registration request to the authentication system: the enrollment phase is then executed again for the new identity material carrier and / or the new communicating mobile object. Three new associations are then created for the hardware current SM1 hardware support and the current communicating mobile object.

The authentication method is applicable to many use cases: - for the implementation of exchanges and transactions in the context of electronic services, implemented via the Internet or via a telephone network, requiring a verification of the integrity of the identity of a user, to whom is assigned a hardware support SM1 of identity; - for identity verification involving the management of rights, including rights of access to a service, for the purpose for example to fight against fraud, and to protect users against identity theft; - in the field of health and remote services, for the control of rights and access to the medical file of a patient, especially in all cases where the protection of the anonymity of the patient is desired and where the knowledge of the real identity of the patient is not imperative, even sensitive (case of a request for analysis made by an analysis laboratory for example).

Claims (14)

REVENDICATIONS1. A method of authenticating a user to whom is assigned a hardware data medium (SM1) carrying a first identification data (DI01) representative of an origin identity (I01) assigned to the user, the method being implemented by at least one platform (PFop, PFass, PFin, PFgi, PFse) of an authentication system and comprising: a phase of generation of a derived identity comprising: a generation step, starting from less first identification data, second identification data (DID1) representative of a derived identity (ID1) of the original identity, - a step of storage by a said platform (PFop) of the second data d identification in association with contact data of a communicating mobile object capable of performing a user authentication operation from at least one user-specific data stored in a memory of the object mobile communicating, - an identity verification phase comprising: - a step of sending to the communicating mobile object of a message triggering an execution by the mobile object communicating the authentication operation from to less own data provided by the user and said at least one data specific to the user stored in the memory of the communicating mobile object, - a step of receiving a message signaling a success of said authentication operation a triggering step, following the reception of said message, of an identity verification step from the second identification data stored by said platform (PFop) in association with the contact data of said communicating object. 2. The method according to claim 1, wherein the generation of the second identification data is further performed from said contact data and / or an identifier of a security module present in the communicating mobile object and / or data specific to the communicating mobile object. 3. Method according to claim 1 or 2, a step of sending to the communicating mobile object a message comprising installation data of an authentication software application to be executed by the communicating mobile object, said application. authentication software being adapted to perform said authentication operation. 4. Method according to one of the preceding claims, wherein the second identification data are stored by a said platform (PFass) in association with the first identification data. The method of claim 4, wherein said identity verification step includes a non-repudiation verification of the original identity from the first stored identification data in association with the second identification data. The method of claim 4 or 5, wherein said identity verification step comprises checking the second stored identification data in association with the contact data of said communicating mobile object. 7. Method according to one of the preceding claims, comprising during the execution of said authentication operation: - an interrogation of the user to ask the user to provide at least one data specific to the user, - a verification of said at least one own data provided by the user by comparison with said at least one data specific to the user stored in the memory of the communicating mobile object. 8. Method according to one of the preceding claims, wherein the first identification data are read by a reader of said hardware data medium and then transmitted to an identity management server for verification of said first identification data. 9. Method according to one of the preceding claims, wherein the second identification data are generated under the condition of verifying the integrity of said first identification data obtained. 10. Method according to one of the preceding claims, comprising, in case of success of the identity verification step, a step of generating a cryptographic key specific to the user to be used for signing and / or numerically encrypt data. 11. Platform for implementing a user authentication method that is assigned a hardware data carrier carrying first identification data representative of an original identity assigned to the user, the platform comprising: - means for generating, from at least the first identification data, second identification data representative of an identity derived from the original identity, - means for storing the second data of identification in association with contact data of a communicating mobile object capable of executing a user authentication operation from at least one data specific to the user stored in a memory of the communicating mobile object, means for sending to the communicating mobile object a message triggering an execution by the mobile object communicating the authentication operation from at least one no own data provided by the user and said at least one data specific to the user stored in the memory of the communicating mobile object, means for receiving a message signaling a success of said authentication operation, means for triggering an identity verification step from the second identification data stored by said platform in association with the contact data of said communicating object. A recording medium on which is recorded a program comprising program code instructions for performing the steps of a method according to one of claims 1 to 10. A communicating mobile object of a user to whom is assigned a hardware data carrier carrying first identification data representative of an original identity assigned to the user, said mobile object comprising means for executing an operation. for authenticating a user from at least one user-specific data stored in a memory of the communicating mobile object; receiving means coming from a platform of an authentication system , a message triggering an execution by the mobile object communicating the authentication operation from at least one own data provided by the user and said at least one data specific to the user stored in the memory of the communicating mobile object, means for sending to said platform a message signaling a success of said authentication operation, said message triggering a verification step of identity from second identification data, representative of an identity derived from the original identity, stored in association with contact data of said mobile object communicating by said platform. Terminal (T1) comprising a communicating mobile object according to claim 13.