WO2001099382A2 - Procede et systeme permettant de controler l'acces a un emplacement a distance - Google Patents

Procede et systeme permettant de controler l'acces a un emplacement a distance Download PDF

Info

Publication number
WO2001099382A2
WO2001099382A2 PCT/IB2001/001070 IB0101070W WO0199382A2 WO 2001099382 A2 WO2001099382 A2 WO 2001099382A2 IB 0101070 W IB0101070 W IB 0101070W WO 0199382 A2 WO0199382 A2 WO 0199382A2
Authority
WO
WIPO (PCT)
Prior art keywords
access
remote location
access code
user
mobile communication
Prior art date
Application number
PCT/IB2001/001070
Other languages
English (en)
Other versions
WO2001099382A3 (fr
Inventor
Allen Robert Yaxley
Original Assignee
Allen Robert Yaxley
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Allen Robert Yaxley filed Critical Allen Robert Yaxley
Priority to AU74373/01A priority Critical patent/AU7437301A/en
Publication of WO2001099382A2 publication Critical patent/WO2001099382A2/fr
Publication of WO2001099382A3 publication Critical patent/WO2001099382A3/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/18Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels

Definitions

  • This invention relates to a method of controlling access to a remote location forming part of a communications network and to a system employing such a method of access control.
  • Access to communication networks, or to locations forming part of such networks, is usually controlled.
  • a common way of controlling access is to provide a user with a password. The user enters his name and password and if these match the location's records access is allowed.
  • a problem with this method of access control is that it is very difficult to or impossible to prevent access where a user has his password stolen and a third party uses this information to gain access.
  • the device usually a computer, used to access the network be identified.
  • This method presupposes that users will tend to use the same device and can be useful where this is indeed so.
  • the method fails, however, where users do not use the same device repeatedly or where the device is stolen.
  • a method of controlling electronic access by a user to an installation through a transceiver comprising: identifying the user against a register and initiating of an access code by the transceiver; onwardly communicating the access code through an independent communication to a receiver, which is accessible to the user, after confirmation against a second register that the receiver is allowed for use by the user; and transmitting the code by the user to the transceiver to permit access to the installation.
  • lines of communication from the user to the transceiver and from the transceiver to the receiver to be through a public communication network and for the public communication network to be the Internet.
  • a method of controlling access to a remote location which includes: generating an access code when a user attempts to gain access to the location; sending the access code to a mobile communication device; and permitting access to the remote location if the user provides the access code to the remote location within a predetermined period of time. Further features of the invention provide for the access code to be generated once a user identification has been provided; for the details of the mobile communication device to be supplied to the location prior to access being sought; and for the user identification and details of the mobile communication 5 device to be checked against a register prior to the access code being sent to the mobile communication device.
  • the access code to be sent at least partially by a wireless transmission; for transmission to occur over a GSM network; and for transmission to be in a short message service (SMS) l o format.
  • SMS short message service
  • Yet further features of the invention provide for a unique access code to be generated each time a user attempts to gain access to the remote location; and for each access code to have a predetermined period of validity associated therewith.
  • the invention also provides a system for controlling access to a remote location comprising control means to generate an access code when a user attempts to gain access to the remote location and to cause the access code to be sent to a mobile communication device.
  • the mobile communication device 20 to be independent to the device used to attempt to gain access to the remote location; for the access code to be sent to a GSM device, preferably a cellular telephone; and for the access code to be sent in an SMS format.
  • control means to generate an access code after being provided with a user identification; for the control 25 means to form part of the remote location or to be remote therefrom; for the control means to check the user identification and mobile communication device details against a register prior to sending the access code to the mobile communication device; and for the register to include records from a service provider to the mobile communication device.
  • control means to generate a unique access code each time a user attempts to gain access to the remote location; and for each access code to be valid for a predetermined period of time.
  • the remote location to be accessible through a communication network; and for the communication network to be a public communication network, preferably the Internet.
  • Figure 1 is a schematic diagram of a communication network.
  • the control means (4) acts as a gateway to web sites (6,7) which form part of the remote location (2) and operates in the following manner.
  • the control means (4) prompts the user (10) to identify himself by means of a user name which is allocated to the user (10) in a signing up procedure at the time the user (10) first attempts to use the remote location (2). Once the user (10) has provided his user name, the control means (4) checks the user name against the registry (5) to ensure that access can be provided. If there is no bar to providing access to the user (10) the control means (4) generates a unique access code which is valid for a predetermined period of time, in this embodiment five minutes. The control means (4) then sends the access code to a receiver which may be a GSM cellular telephone (11 ) which is recorded in the registry (5) as belonging to the user (10).
  • a receiver may be a GSM cellular telephone (11 ) which is recorded in the registry (5) as belonging to the user (10).
  • control means (4) connects to a registry (12) of the service provider (13) of the cellular telephone (11 ) and verifies that the cellular telephone (11 ) is registered in the name of the user (10) and that no bars have been placed on the cellular telephone (11 ).
  • control means (4) sends the access code in SMS format to the cellular telephone (11 ) using the transmitter network (14) of the service provider (13) in conventional fashion.
  • the control means (4) which permits access to the remote location (2) if it is the same as the code it issued.
  • GSM cellular telephones are particularly attractive as these devices operate on a SIM card which uniquely identifies a telephone. Also, such telephones are fast becoming the communication tool of choice for many people which in turn means that the devices are constantly at hand to such people.
  • a further advantage of the system is that stolen or lost cellular telephones can easily be barred thus making it difficult to use a the cellular telephone to gain access to the remote location by stealing it.
  • any kind of remote location requiring access control especially those which permit financial transactions to be effected, could be used with the system.
  • any suitable mobile communication device could be used including paging devices.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Selective Calling Equipment (AREA)

Abstract

La présente invention concerne un procédé permettant de contrôler l'accès par un utilisateur à un emplacement à distance. Ce procédé consiste à identifier et qualifier l'utilisateur puis à lui adresser, sur un récepteur indépendant, un code d'accès qui lui permette d'avoir accès à l'installation.
PCT/IB2001/001070 2000-06-19 2001-06-19 Procede et systeme permettant de controler l'acces a un emplacement a distance WO2001099382A2 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU74373/01A AU7437301A (en) 2000-06-19 2001-06-19 A method and system of controlling access to a remote location

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
GB0014970A GB2367976A (en) 2000-06-19 2000-06-19 Generating an access code when a user attempts to gain access to a remote location and causing it to be sent to a mobile communication device
GB0014970.8 2000-06-19

Publications (2)

Publication Number Publication Date
WO2001099382A2 true WO2001099382A2 (fr) 2001-12-27
WO2001099382A3 WO2001099382A3 (fr) 2002-03-21

Family

ID=9893957

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2001/001070 WO2001099382A2 (fr) 2000-06-19 2001-06-19 Procede et systeme permettant de controler l'acces a un emplacement a distance

Country Status (3)

Country Link
AU (1) AU7437301A (fr)
GB (1) GB2367976A (fr)
WO (1) WO2001099382A2 (fr)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7395050B2 (en) 2002-04-16 2008-07-01 Nokia Corporation Method and system for authenticating user of data transfer device
EP2215815A1 (fr) * 2007-11-27 2010-08-11 Alibaba Group Holding Limited Vérification de l'identité d'un utilisateur à l'aide d'un procédé inversé d'identification de l'appelant
US9703938B2 (en) 2001-08-29 2017-07-11 Nader Asghari-Kamrani Direct authentication system and method via trusted authenticators
US9727864B2 (en) 2001-08-29 2017-08-08 Nader Asghari-Kamrani Centralized identification and authentication system and method

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7467411B2 (en) * 2004-08-27 2008-12-16 Astav, Inc. Protecting a service provider from abuse

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1995019593A1 (fr) * 1994-01-14 1995-07-20 Michael Jeremy Kew Systeme de securite pour ordinateur
WO1997031306A1 (fr) * 1996-02-23 1997-08-28 Nokia Mobile Phones Ltd. Procede pour obtenir au moins un element de donnees d'authentification d'un utilisateur
US5668876A (en) * 1994-06-24 1997-09-16 Telefonaktiebolaget Lm Ericsson User authentication method and apparatus
US6078908A (en) * 1997-04-29 2000-06-20 Schmitz; Kim Method for authorizing in data transmission systems

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5497420A (en) * 1994-02-07 1996-03-05 Le Groupe Vide/ otron Lte/ e Cable TV system using passwords
IL112200A0 (en) * 1994-12-30 1997-02-18 Gazelle David Secure data transaction system
GB2342816B (en) * 1998-10-13 2003-04-23 Nokia Mobile Phones Ltd Accessing a server computer
DK1206884T3 (da) * 1999-08-23 2010-09-13 Nokia Siemens Networks Oy Afsendelse af første password på SMS
GB9929291D0 (en) * 1999-12-11 2000-02-02 Connectotel Limited Strong authentication method using a telecommunications device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1995019593A1 (fr) * 1994-01-14 1995-07-20 Michael Jeremy Kew Systeme de securite pour ordinateur
US5668876A (en) * 1994-06-24 1997-09-16 Telefonaktiebolaget Lm Ericsson User authentication method and apparatus
WO1997031306A1 (fr) * 1996-02-23 1997-08-28 Nokia Mobile Phones Ltd. Procede pour obtenir au moins un element de donnees d'authentification d'un utilisateur
US6078908A (en) * 1997-04-29 2000-06-20 Schmitz; Kim Method for authorizing in data transmission systems

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9703938B2 (en) 2001-08-29 2017-07-11 Nader Asghari-Kamrani Direct authentication system and method via trusted authenticators
US9727864B2 (en) 2001-08-29 2017-08-08 Nader Asghari-Kamrani Centralized identification and authentication system and method
US9870453B2 (en) 2001-08-29 2018-01-16 Nader Asghari-Kamrani Direct authentication system and method via trusted authenticators
US10083285B2 (en) 2001-08-29 2018-09-25 Nader Asghari-Kamrani Direct authentication system and method via trusted authenticators
US10769297B2 (en) 2001-08-29 2020-09-08 Nader Asghari-Kamrani Centralized identification and authentication system and method
US7395050B2 (en) 2002-04-16 2008-07-01 Nokia Corporation Method and system for authenticating user of data transfer device
EP2215815A1 (fr) * 2007-11-27 2010-08-11 Alibaba Group Holding Limited Vérification de l'identité d'un utilisateur à l'aide d'un procédé inversé d'identification de l'appelant
EP2215815A4 (fr) * 2007-11-27 2012-06-13 Alibaba Group Holding Ltd Vérification de l'identité d'un utilisateur à l'aide d'un procédé inversé d'identification de l'appelant
US8320540B2 (en) 2007-11-27 2012-11-27 Alibaba Group Holding Limited Verifying user identity using a reverse caller ID process

Also Published As

Publication number Publication date
GB2367976A (en) 2002-04-17
WO2001099382A3 (fr) 2002-03-21
GB0014970D0 (en) 2000-08-09
AU7437301A (en) 2002-01-02

Similar Documents

Publication Publication Date Title
US6112078A (en) Method for obtaining at least one item of user authentication data
US7024226B2 (en) Method for enabling PKI functions in a smart card
EP1566045B1 (fr) Resolution de blocage de ligne subventionnee par voie hertzienne
US6078908A (en) Method for authorizing in data transmission systems
US7366506B2 (en) Remote control system in mobile communication terminal and method thereof
US6334056B1 (en) Secure gateway processing for handheld device markup language (HDML)
US20050101307A1 (en) Method for performing a voting by mobile terminals
EP0817518A2 (fr) Méthode de l'accès contrÔlé à un réseau sécurisé
JP2001500701A (ja) 移動通信システムにおけるコピーされた加入者認識の悪用防止
AU2002230306A1 (en) Method for enabling PKI functions in a smart card
GB2380356A (en) Disabling of mobile communication apparatus
WO2006071431A2 (fr) Id de communication temporaire universelle avec integration de service
US20030050918A1 (en) Provision of secure access for telecommunications system
CN100571263C (zh) 一种提高虚拟物品数据安全性的方法
JP3479270B2 (ja) 携帯通信端末、及びそれを用いた移動通信システムとその通信機能の遠隔制御方法
WO2001099382A2 (fr) Procede et systeme permettant de controler l'acces a un emplacement a distance
EP1176760A1 (fr) Procédé de connection d'un terminal à un serveur
JPH11510019A (ja) 通信ネットワーク、通信システム及びそのようなシステム用のユニットに対するアクセス制限処理
JP2001177520A (ja) 少なくとも2つの装置間の通信をオーソライズする方法、通信システム、および装置
KR100367777B1 (ko) 인증서비스 지원 시스템 및 그 서비스 지원방법
EP1146712A1 (fr) Authentification dans un système de telecommunication
KR200224815Y1 (ko) 이동통신 단말기를 이용한 자동차 원격 시동 장치
WO2009056786A1 (fr) Transmission de messages
JP2937924B2 (ja) 移動体端末システム
KR20040051037A (ko) 이동 통신 단말기의 전자화폐 지불 방법

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 69(1) EPC DATED 04-06-2003

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase in:

Ref country code: JP