TR201619122A2 - A VERIFICATION SYSTEM USING A REFERENCE CODE - Google Patents
A VERIFICATION SYSTEM USING A REFERENCE CODE Download PDFInfo
- Publication number
- TR201619122A2 TR201619122A2 TR2016/19122A TR201619122A TR201619122A2 TR 201619122 A2 TR201619122 A2 TR 201619122A2 TR 2016/19122 A TR2016/19122 A TR 2016/19122A TR 201619122 A TR201619122 A TR 201619122A TR 201619122 A2 TR201619122 A2 TR 201619122A2
- Authority
- TR
- Turkey
- Prior art keywords
- verification
- code
- mobile device
- reference code
- server
- Prior art date
Links
- 238000012795 verification Methods 0.000 title claims description 61
- 238000012790 confirmation Methods 0.000 claims description 15
- 238000000034 method Methods 0.000 claims description 11
- 238000010200 validation analysis Methods 0.000 description 13
- 238000010295 mobile communication Methods 0.000 description 4
- 230000009977 dual effect Effects 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0892—Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/041—Key generation or derivation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/12—Messaging; Mailboxes; Announcements
- H04W4/14—Short messaging services, e.g. short message services [SMS] or unstructured supplementary service data [USSD]
Abstract
Bu buluş, birden fazla uygulamaya "mobile connect" üzerinden giriş yapılmak istendiği durumlarda yapılan her giriş talebi için bir referans kod üreten ve kodu doğrulama sunucusunda hem de mobil cihaz üzerinde gösteren bir doğrulama sistemi ile ilgilidir.The present invention relates to an authentication system that generates a reference code for each login request and displays the code on the authentication server and on the mobile device in cases where more than one application is required to be logged in via "mobile connect".
Description
TARIFNAME REFERANS KOD KULLANILAN BIR DOGRULAMA SISTEMI Teknik Alan Bu bulus, birden fazla uygulamaya “mobile connect” üzerinden giris yapilmak istendigi durumlarda yapilan her giris talebi için bir referans kod üreten ve kodu dogrulama sunucusunda hem de mobil cihaz üzerinde gösteren bir dogrulama sistemi ile ilgilidir. Önceki Teknik dogrulanmasini saglayan, mobil operatörlerden ve telekomla ilgili firmalardan olusan GSMA (GSM association) inisiyatifidir. “Mobile connect” kullanicilari dogrulamak isteyen kullanicidan kullanici adi ya da sifre girisi yapmadan cep telefonlarini kullanarak uygulamaya giris yapmasini saglamaktadir. GSMA standartlarina bagli olarak kullanicilar tek tus (ClickOk) ile dogrulanmaktadir. DESCRIPTION A VERIFICATION SYSTEM USING REFERENCE CODE Technical Area This invention is used to access more than one application via “mobile connect”. which generates a reference code for each entry request made when requested, and A validation showing on both the validation server and the mobile device relates to the system. Prior Art from mobile operators and telecom-related companies It is the GSMA (GSM association) initiative. “Mobile connect” users from the user who wants to authenticate without entering a username or password. allows them to log in to the application using their phones. GSMA Depending on the standards, users are authenticated with one click (ClickOk).
GSMA (GSM association)”in sundugu çözüm önerisinde kullanicilar ayni anda sadece bir uygulamaya giris yapabilmekte ve ikinci bir uygulamadan onay talebi geldiginde talebin hangi uygulamadan geldigi belli olmamaktadir. In the solution proposal offered by the GSMA (GSM association), users simultaneously can only log in to one application and request approval from a second application. It is not clear from which application the request came.
KR101401259 sayili Kore patent dokümaninda, dogrulama bilgisinin korunmasindan ve daha da özelinde; bir dogrulama bilgisi güvenli bölgesinde (veya cihazinda) rastgele bir depolama alani belirleyerek dogrulama bilgisini tutan, dogrulama bilgisi gereken dogrulama bilgisine erisim durumlarinda önceden belirlenmis bir anahtar ve bir tek kullanimlik sifre ile ikili dogrulama gerçeklestiren ve bu dogrulama basarili oldugunda dogrulama bilgisi saklama alanindaki dogrulama bilgisine geçici erisim saglayan bir mobil tek kullanimlik sifre kullanan dogrulama bilgisi erisim kontrol sistem, yöntem ve cihazindan bahsedilmektedir. In the Korean patent document KR101401259, the verification information protection and more specifically; in a validation safe zone (or holding the verification information by specifying a random storage area (on the device), In case of accessing the required verification information, the verification information is performs dual authentication with a designated key and a one-time password and when this validation is successful, the validation information is stored in the using a mobile one-time password that provides temporary access to verification information authentication information access control system, method and device are mentioned.
Bulusun Kisa Açiklamasi Bu bulusun amaci, birden fazla uygulamaya “mobile connect” üzerinden giris yapilmak istendigi durumlarda yapilan her giris talebi için bir referans kod üreten ve kodu dogrulama sunucusunda hem de mobil cihaz üzerinde gösteren referans kod kullanan bir dogrulama sistemi gerçeklestirmektir. Brief Description of the Invention The purpose of this invention is to access more than one application via “mobile connect”. generating a reference code for each entry request made in cases where it is desired to be made, and reference code that shows the code on both the authentication server and the mobile device To implement a verification system that uses
Bulusun diger amaci giris yapilmak istenen her uygulama için bes basamakli rastgele bir kod üreten bir dogrulama sistemi gerçeklestirmektir. Another aim of the invention is to use five steps for each application to be accessed. is to implement a verification system that generates a random code.
Bulusun baska amaci, birden fazla uygulamaya “mobile connect” üzerinden ayni anda giris yapilmasinin saglandigi referans kod kullanan bir dogrulama sistemi gerçeklestirmektir. Another purpose of the invention is to provide the same application to more than one application via "mobile connect". a verification system using a reference code that allows instant access is to perform.
Bulusun bir baska amaci kullanicilarin uygulamalari ayristirmasi saglanarak kullanicilarin ayni anda birden fazla uygulamaya giris yapilmasinin saglandigi referans kod kullanan bir dogrulama sistemi gerçeklestirmektir. Another purpose of the invention is to enable users to parse applications. allowing users to login to more than one application at the same time is to implement a validation system using reference code.
Bulusun diger bir amaci kötü niyetli uygulamalara karsi daha güvenli bir girisin saglandigi referans kod kullanan bir dogrulama sistemi gerçeklestirmektir. Another purpose of the invention is a more secure login against malicious applications. To implement a validation system using the reference code provided.
Bulusun Ayrintili Açiklamasi Bu bulusun amacina ulasmak için gerçeklestirilen “Referans kod kullanan bir dogrulama sistemi” ekli sekilde gösterilmis olup bu sekil; Sekil 1 _Bulus konusu referans kod kullanilan bir dogrulama sisteminin sematik görünüsüdür. Detailed Description of the Invention In order to achieve the purpose of this invention, a “Reference code using a verification system” is shown in the attached figure, which is; Figure 1 _The subject of the invention is the schematic of a verification system using reference code. is the view.
Sekilde görülen parçalar tek tek numaralandirilmis olup, bu numaralarin karsiligi asagida verilmistir. 1. Sistem Servis saglayici Mobil cihaz Dogrulama sunucusu Kod üretim birimi Dogrulama birimi Bulus konusu referans kod kullanan bir dogrulama sistemi (1 ), -internet siteleri ve/veya mobil uygulamalar üzerinden kullaniciya hizmet sunan ve hizmet sunumu öncesinde dogrulama islemi yapan en az bir servis saglayici (2), -dogrulama isleminde kullanilan, bir mobil iletisim sebekesinden mobil iletisim hizmeti alan, alinan mobil iletisim hizmeti sayesinde mobil iletisim sebekesi üzerinden bir Sunucu ile iletisim kurma özelligine sahip olan ve üzerinde en az bir uygulama yürütebilen en az bir mobil cihaz (3), -kullanicinin servis saglayici (2) üzerinden sunulan “mobile connect” seçmesi ile yönlendirildigi, ilgili uygulama için dogrulama islemlerinin kontrol edildigi ve mobil cihaz (3) ile dogrulama sürecinin yönetildigi en az bir dogrulama sunucusu -“mobil connect” ile girisi yapilmak istenen her uygulama için farkli bir referans kod üreten, bu kodlari dogrulama sunucusu (4) ve mobil cihaz (3) üzerinde gösterilmesi için tetikleme islemlerini yapan ve kodlari bir veri tabaninda saklayan en az bir kod üretim birimi (5) ve -kod üretim biriminin (5) tetiklemesi ile üretilen kodu dogrulama sunucusu (4) üzerinde ve mobil cihaz (3) üzerinde, kullanici dogrulamasi için tek tus onayi ile ya da tek tus onayi gelmediginde ya da mobil cihazin (3) ve SIM kartin tek tusu desteklemedigi durumda SMS sifresi içinde gösterilmesini saglayan, kullanicidan tek tus onayi bekleyen, tek tus onayi gelmedigi ya da tek tus desteklenmedigi durumda SMS üzerinden referans kod içeren sifre gönderilmesini saglayarak onay bekleyen ve kullanicidan onay gelmesi ile servis saglayicinin (2) istenilen servisi saglamasi için dogrulama sunucusuna (4) onay bilgisi ileten en az bir dogrulama birimi (6) içermektedir. The parts shown in the figure are numbered one by one and the corresponding numbers are given below. 1. System Service provider mobile device validation server code generation unit verification unit A verification system using the inventive reference code (1), - providing services to the user through websites and/or mobile applications, and At least one service provider (2) that performs verification prior to service delivery, - mobile communication from a mobile communication network used in the authentication process mobile communication network thanks to the mobile communication service received capable of communicating with a Server over the at least one mobile device (3) capable of running an application, - with the user's selection of "mobile connect" offered through the service provider (2) are directed, the verification processes for the relevant application are checked, and at least one authentication server where the authentication process is managed with the mobile device (3) -A different reference for each application to be entered with “mobile connect” generating code, verifying these codes on server (4) and mobile device (3) performs the triggering operations for displaying and stores the codes in a database. at least one code generation unit (5) and -Verification server (4) of the code generated by the trigger of the code generation unit (5) on the mobile device (3), with one-key confirmation for user authentication. In the absence of one-touch confirmation, or one-key of the mobile device (3) and the SIM card. in case it does not support it, it allows the user to show it in the SMS password. pending one-key confirmation, no one-key confirmation or one-touch not supported In this case, you can confirm by sending a password containing a reference code via SMS. The requested service of the service provider (2) is pending and upon the approval of the user. At least one validation that transmits validation information to the validation server (4) to ensure unit (6).
Bulusun tercih edilen uygulamasinda mobil cihaz (3) bir cep telefonu, akilli telefon, tablet gibi internet ya da mobil uygulamalar üzerinden dogrulama sunucusu (4) ile haberlesebilen bir elektronik cihazdir. Dogrulama sunucusu (4) üzerinden dogrulama yapacak kullanicinin cep telefonu numarasini girmesi ile dogrulama süreci baslatilmaktadir. In the preferred embodiment of the invention, the mobile device (3) is a mobile phone, smart phone, with the authentication server (4) via the internet or mobile applications such as a tablet. It is an electronic device that can communicate. Via authentication server (4) verification by entering the mobile phone number of the user who will verify process is initiated.
Bulus konusu sistemde (1) kod üretim birimi (5) “mobile connect” ile yapilan her giris islemi için bes haneli rastgele bir referans kodu üretmektedir. Kod üretim birimi (5) kodu üretmekte ve dogrulama birimini (7) tetikleyerek üretilen kodunun dogrulama sunucusu (4) üzerinde ve dogrulama sunucusunun (4) tetiklemesi ile mobil cihaz (3) üzerinden gösterimini saglamaktadir. Kod üretim birimi (5) ürettigi her kodu bir veri tabani üzerinde saklamaktadir. Veri tabani üzerinde ayrica onay verilen islem bilgisi referans kod ile saklanmaktadir. In the inventive system (1) code generation unit (5) "mobile connect" generates a five-digit random reference code for the login process. Code generation unit (5) generates the code and triggers the verification unit (7) on the verification server (4) and triggered by the verification server (4) it is displayed on the mobile device (3). Code generation unit (5) produces it stores every code on a database. Confirmation on the database The given transaction information is stored with the reference code.
Bulus konusu sistemde kod üretim biriminin (5) ürettigi kod dogrulama birimi (6) tarafindan ilk olarak tek tus onayi ile kullanicida dogrulanmaya çalisilmaktadir. The code verification unit (6) produced by the code generation unit (5) in the subject system of the invention First of all, it is tried to be verified by the user with a one-click confirmation.
Bunun içinde kod üretim biriminin (5) ürettigi kod dogrulama biriminin (6) tetiklemesi ile dogrulama suiiucusu (4) üzerinde ve mobil cihaz (3) ekraninda gösterilmektedir. Dogrulama birimi (6) kullanicinin hem dogrulama sunucusu (4) üzerinde hem de mobil cihaz (3) üzerinde üretilen kodu görmesini saglayarak islemleri eslestirmesini ve dogru isleme onay vermesini saglamaktadir. Kullanici mobil cihazinda (3) tek tus onayini gerçeklestirdigi durumda servis saglayici hizmeti sunmaya baslamaktadir. In this, the code verification unit (6) produced by the code generation unit (5) on the authentication server (4) and on the screen of the mobile device (3) by triggering is shown. The authentication unit (6) is used by both the user and the authentication server (4). by enabling him to see the code generated both on the mobile device (3) and on the mobile device (3). It allows it to match transactions and approve the correct transaction. User service provider service in case of performing one-key confirmation on his mobile device (3) is about to present.
Dogrulama birimi (6) tek tus ile onay alamadigi durumda ise dogrulama sunucusu (4) üzerinden mobil cihazsa (3) referans kod içeren bir SMS sifresi göndermektedir. If the verification unit (6) cannot get approval with a single click, the verification server The mobile device (3) sends an SMS password containing a reference code via (4).
Dogrulama birimi (6) SMS sifresi gönderimi için belirli bir süre beklemekte ve sürenin asilmasi ile SMS sifresini dogrulama islemi için göndermektedir. The verification unit (6) waits for a certain period of time to send the SMS password and When the time expires, it sends the SMS password for the verification process.
Dogrulama birimi (6) kullanicinin hem dogrulama sunucusu (4) üzerinde hem de mobil cihaza (3) gönderilen SMS içinde üretilen kodu görmesini saglayarak islemleri eslestirmesini ve sifreyi dogrulama sunucunda (4) girmesini saglayarak dogru isleme onay vermesini saglamaktadir. The authentication unit (6) can be used both on the authentication server (4) and on the user. by enabling the mobile device (3) to see the code generated in the SMS sent. by allowing it to match transactions and enter the password on the verification server (4) It allows it to approve the correct operation.
Dogrulama birimi (6) tercih edilen uygulamada mobil cihazin (2) ve SIM kartin tek tus onayini destekleyip desteklemedigini kontrol etmekte ve desteklemedigi durumda dogrulama sunucusu (4) üzerinden mobil cihazsa (3) referans kod içeren bir SMS sifresi göndermektedir. Bu sayede müsterinin islemlerde bekleme süreleri kisaltilmaktadir. Kullanici kendisine gelen referans kodu dogrulama sunucusu (4) üzerinde de yer alan referans kod ile dogrulamakta ve sifreyi girerek servis saglayicidan (2) hizmeti almaya baslamaktadir. In the preferred embodiment, the authentication unit (6) is a unique combination of the mobile device (2) and the SIM card. It checks whether it supports key acknowledgment and In this case, if it is a mobile device (3) via the authentication server (4), it contains a reference code. sends an SMS password. In this way, the customer's waiting times in transactions is shortened. User referral code verification server (4) verify it with the reference code on it and enter the password. starts to receive the service from the provider (2).
Bulus konusu sistemde (1) kullanici her uygulama “mobil connect 1 için üretilen farkli referans kodlari sayesinde hangi uygulamaya giris için “mobile connect” kullandigini bilmekte ve birden fazla uygulamaya ayni anda giris yapabilmektedir. In the system that is the subject of the invention (1), each application is "generated for mobile connect 1". “mobile connect” for which application to access thanks to different reference codes knows that you are using it and can log in to more than one application at the same time.
Bunun için kod üretim birimin (5) ürettigi kod bilgisi dogrulama sunucusunda (4) ve mobil cihaz (3) ekraninda ya da yine mobil cihazda (3) SMS ile gösterilmektedir. Bu sayede kullanici tek tus onayi ile ya da tek tus onayi gelmedigi durumda SMS ile ya da cihazin (3) ve SIM kartin tek tusu desteklemedigi durumda da direkt gönderilen SMS ile hangi servis saglayici (2) için dogrulama islemi yaptigini bilmektedir. For this, the code information produced by the code generation unit (5) is on the validation server (4) and on the mobile device (3) screen or on the mobile device (3) via SMS. This In this way, the user can either receive one-touch confirmation or an SMS in case one-touch confirmation is not received. In case the device (3) and SIM card do not support one-key, the direct sent It knows for which service provider (2) it is verifying via SMS.
Bu temel kavramlar etrafinda, referans kod kullanan bir dogrulama sisteminin (1) çok çesitli uygulamalarinin gelistirilmesi mümkün olup, bulus burada açiklanan örneklerle sinirlandirilamaz, esas olarak istemlerde belirtildigi gibidir. Around these basic concepts, a validation system using reference code (1) It is possible to develop a wide variety of applications and the invention is described herein. not limited to examples, essentially as specified in the claims.
Claims (12)
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TR2016/19122A TR201619122A2 (en) | 2016-12-21 | 2016-12-21 | A VERIFICATION SYSTEM USING A REFERENCE CODE |
PCT/TR2017/000141 WO2018203845A2 (en) | 2016-12-21 | 2017-12-21 | An authentication system wherein reference code is used |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TR2016/19122A TR201619122A2 (en) | 2016-12-21 | 2016-12-21 | A VERIFICATION SYSTEM USING A REFERENCE CODE |
Publications (1)
Publication Number | Publication Date |
---|---|
TR201619122A2 true TR201619122A2 (en) | 2018-07-23 |
Family
ID=64016214
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
TR2016/19122A TR201619122A2 (en) | 2016-12-21 | 2016-12-21 | A VERIFICATION SYSTEM USING A REFERENCE CODE |
Country Status (2)
Country | Link |
---|---|
TR (1) | TR201619122A2 (en) |
WO (1) | WO2018203845A2 (en) |
-
2016
- 2016-12-21 TR TR2016/19122A patent/TR201619122A2/en unknown
-
2017
- 2017-12-21 WO PCT/TR2017/000141 patent/WO2018203845A2/en active Application Filing
Also Published As
Publication number | Publication date |
---|---|
WO2018203845A2 (en) | 2018-11-08 |
WO2018203845A3 (en) | 2019-01-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US20200304491A1 (en) | Systems and methods for using imaging to authenticate online users | |
TWI530894B (en) | Method and related apparatus for information verification and apparatus thereof | |
US20150261948A1 (en) | Two-factor authentication methods and systems | |
US9756056B2 (en) | Apparatus and method for authenticating a user via multiple user devices | |
US9419969B2 (en) | Method and system for granting access to a secured website | |
US20200210988A1 (en) | System and method for authentication of a mobile device | |
US20180219851A1 (en) | Method and system for authentication | |
US20170230351A1 (en) | Method and system for authenticating a user | |
US20140223520A1 (en) | Guardian control over electronic actions | |
US11665156B2 (en) | Method and system for securely authenticating a user by an identity and access service using a pictorial code and a one-time code | |
US9137241B2 (en) | Method and system using a cyber ID to provide secure transactions | |
US20130151411A1 (en) | Digital authentication and security method and system | |
KR101739446B1 (en) | User authentication system and user authentication method therefor | |
KR101961714B1 (en) | Service providing system and method for security based on multi-channel authentication with user equipment, and non-transitory computer readable medium having computer program recorded thereon | |
TR201619122A2 (en) | A VERIFICATION SYSTEM USING A REFERENCE CODE | |
KR20130026265A (en) | System and method for providing user authentication | |
TR201619616A2 (en) | A VERIFICATION SYSTEM | |
KR20170022298A (en) | Authentication security system, server, mobile communication terminal, method of authentication security and the program stored in medium for executing the method | |
KR101571199B1 (en) | Login processing system based on inputting telephone number and control method thereof | |
TR2021022034A2 (en) | A SYSTEM PERFORMING USER VERIFICATION THROUGH SMS LINK and QR CODE | |
KR20130050333A (en) | User authentification system using call identification information and method thereof | |
KR101199927B1 (en) | Certification Method for Payment Card Based On Bidirectional Messaging | |
TR202000707A1 (en) | VERIFICATION METHOD AND SYSTEM WITH PROGRAMMABLE DEVICES | |
TR201516941A2 (en) | A SECURE AUTHENTICATION SYSTEM FOR INTERNET APPLICATIONS | |
EP3024194A1 (en) | Method for accessing a service and corresponding server, device and system |