WO2013076821A1 - Procédé d'authentification et serveur d'authentification permettant d'authentifier un terminal portatif - Google Patents

Procédé d'authentification et serveur d'authentification permettant d'authentifier un terminal portatif Download PDF

Info

Publication number
WO2013076821A1
WO2013076821A1 PCT/JP2011/076943 JP2011076943W WO2013076821A1 WO 2013076821 A1 WO2013076821 A1 WO 2013076821A1 JP 2011076943 W JP2011076943 W JP 2011076943W WO 2013076821 A1 WO2013076821 A1 WO 2013076821A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
telephone number
mobile terminal
procedure
call
Prior art date
Application number
PCT/JP2011/076943
Other languages
English (en)
Japanese (ja)
Inventor
雅巳 木原
Original Assignee
学校法人日本大学
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 学校法人日本大学 filed Critical 学校法人日本大学
Priority to PCT/JP2011/076943 priority Critical patent/WO2013076821A1/fr
Publication of WO2013076821A1 publication Critical patent/WO2013076821A1/fr

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/313User authentication using a call-back technique via a telephone network
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/42User authentication using separate channels for security data
    • G06F21/43User authentication using separate channels for security data wireless channels

Definitions

  • the present invention relates to an authentication method and an authentication server for authenticating a mobile terminal.
  • the subscriber unique number is used for mobile phone authentication.
  • the mobile phone is rarely separated from the individual and is part of the user as much as the user's biometric authentication, and authenticating the mobile phone itself is equivalent to authenticating the user,
  • One of the features is that the user does not need to memorize it like a password. Because it is easy to use, it is used for user authentication in Internet services.
  • Patent Document 1 An authentication method for authenticating a mobile terminal in addition to a contractor's unique number has been proposed (see, for example, Patent Documents 1 and 2).
  • the invention of Patent Document 1 is issued from the authentication server side to a user's mobile phone through a telephone line. Call and let the user enter the phone number on the authentication server side.
  • an ID is transmitted from the authentication server to the receiver terminal using the Internet connection function, and an ID is transmitted from the receiver's mobile phone to the authentication server using the telephone connection function.
  • the contractor's unique number is a convenient authentication method, but there is a drawback that it cannot be used with smartphones whose sales volume is currently increasing. This is because smartphones have a more general computer-like device configuration and network configuration.
  • Patent Documents 1 and 2 Since the inventions of Patent Documents 1 and 2 only use the telephone connection function as a means for transmitting and receiving IDs or passwords, unauthorized users become impersonated users with the cooperation of authorized users. There is a problem that can.
  • an object of the present invention is to prevent spoofing by an unauthorized user even when there is cooperation of a regular user.
  • an authentication method and an authentication server for authenticating a mobile terminal of the present invention notify an authentication server-side authentication telephone number from the authentication server to the user's mobile terminal, and the mobile terminal authenticates the authentication.
  • the authentication server can identify whether it is a legitimate user's phone number, Two types of information are used to enable user authentication.
  • an authentication method for authenticating a mobile terminal of the present invention includes a basic authentication information transmission procedure for transmitting basic authentication information including information for identifying the mobile terminal from the mobile terminal to the authentication server, It is determined whether or not the received basic authentication information matches the basic authentication information of the mobile terminal stored in advance in the authentication server. If they match, an authentication telephone is sent from the authentication server to the mobile terminal.
  • a telephone number notification procedure for notifying the number, a calling procedure for calling from the portable terminal to the authentication telephone number through a telephone line, a caller telephone number in the calling procedure, and the mobile phone stored in advance in the authentication server Authentication succeeds when the phone number of the terminal matches and the called party phone number in the calling procedure matches the authentication phone number notified in the phone number notification procedure Having a determination procedure, in this order.
  • the authentication method for authenticating the mobile terminal of the present invention has a basic authentication information transmission procedure, it is possible to prevent an authentication telephone number from being acquired by a person other than the registered authorized user. Thereby, even if a portable terminal is stolen, impersonation by persons other than the user of a portable terminal can be prevented. Furthermore, since the authentication method for authenticating the portable terminal of the present invention has a telephone number notification procedure, a calling procedure, and a determination procedure, authentication is performed using two pieces of information: the telephone number of the portable terminal and the telephone number notified by the authentication server. It can be carried out. Thereby, even if there is cooperation of a regular user, impersonation by an unauthorized user can be prevented.
  • a call procedure comprising the telephone number notification procedure and the calling procedure is repeatedly performed, and in the telephone number notification procedure, an authentication telephone number is notified from the authentication server to the portable terminal.
  • the time interval at which the call is made varies depending on the telephone number notification procedure.
  • the time interval at the time when a call is made from the mobile terminal is measured. If the time interval for notifying the mobile terminal of the authentication telephone number from the authentication server in the notification procedure matches the time interval at the time when the call was made from the mobile terminal in the call origination procedure, You may judge.
  • impersonation by an unauthorized user can be made even more difficult even when there is cooperation from an authorized user.
  • the telephone number for notification is sent from the authentication server to the portable terminal in the telephone number notification procedure by repeatedly performing a telephone call procedure comprising the telephone number notification procedure and the calling procedure. Is different for each of the phone number notification procedures, and in the determination procedure, all caller phone numbers and phone numbers of the mobile terminals stored in advance match, and If the called party telephone number and the authentication telephone number notified immediately before each outgoing call procedure all match, it may be determined that the authentication is successful. According to the present invention, an unpredictable telephone number of the mobile terminal can be notified to the mobile terminal, so that the authentication accuracy can be improved.
  • the authentication method for authenticating a mobile terminal in the call origination procedure, from the time when the authentication server number in the phone number notification procedure is notified from the authentication server to the mobile terminal, The time required up to the point in time of the call may be measured, and in the determination procedure, it may be determined that the authentication is successful if the required time is within a predetermined time. According to the present invention, impersonation by an unauthorized user can be made even more difficult even when there is cooperation from an authorized user.
  • a timing for calling the portable terminal is further specified.
  • a command is transmitted from the authentication server to the mobile terminal, and the mobile terminal makes a call at the timing when the command is issued in the call origination procedure.
  • the call timing from the mobile terminal is further determined. If it matches the command, it may be determined that the authentication is successful. According to the present invention, impersonation by an unauthorized user can be made even more difficult even when there is cooperation from an authorized user.
  • the authentication method for authenticating a mobile terminal in the telephone number notification procedure, when notifying the mobile terminal of an authentication telephone number from the authentication server, a command for reading out information unique to the mobile terminal Is transmitted from the authentication server to the portable terminal, and when the portable terminal makes a call in the calling procedure, the commanded information is read from the portable terminal and transmitted to the authentication server, and the determination procedure is performed. Further, in the case where the information received from the portable terminal matches the information stored in advance that is unique to the portable terminal, it may be determined that the authentication is successful. According to the present invention, it is possible to confirm whether or not the mobile terminal that has made a call to the authentication server is a mobile terminal that is stored in advance in the authentication server. Thereby, the impersonation by an unauthorized user can be made more difficult.
  • the authentication phone in the telephone number notification procedure, when the authentication phone number is notified from the authentication server to the mobile terminal, the authentication phone is used by using information unique to the mobile terminal.
  • the number is encrypted and notified, and in the calling procedure, the encrypted authentication telephone number is decrypted using the information unique to the mobile terminal, and the decrypted authentication telephone number is called through the telephone line. Also good.
  • the present invention it is possible to confirm whether or not the mobile terminal that has made a call to the authentication server is a mobile terminal that is stored in advance in the authentication server. Thereby, the impersonation by an unauthorized user can be made more difficult.
  • the authentication server determines whether basic authentication information, which is stored in advance and includes information for identifying a mobile terminal, matches the basic authentication information transmitted from the mobile terminal.
  • a telephone number notification unit for notifying the mobile terminal of an authentication telephone number, and a callee telephone number when a call is received from the mobile terminal
  • the telephone number authenticating unit notified by the telephone number notifying unit, and a telephone number authenticating unit that determines that the authentication is successful when the caller telephone number is included in the stored basic authentication information in advance .
  • the authentication server of the present invention includes the basic authentication information determination unit, it is possible to prevent acquisition of an authentication telephone number by a person other than the registered regular user. Thereby, even if a portable terminal is stolen, impersonation by persons other than the user of a portable terminal can be prevented. Furthermore, since the authentication server of the present invention includes a phone number notification unit and a phone number authentication unit, authentication can be performed using two pieces of information: the phone number of the mobile terminal and the phone number notified by the authentication server. Thereby, even if there is cooperation of a regular user, impersonation by an unauthorized user can be prevented.
  • the telephone number notification unit notifies the mobile terminal of the authentication telephone number a plurality of times, and the time interval when the authentication telephone number is notified to the mobile terminal is different.
  • the unit measures a time interval at the time when an incoming call is received from the mobile terminal, the caller telephone number matches the authentication telephone number notified to the mobile terminal, and the caller telephone number is the basic authentication information.
  • it is determined that the authentication is successful when the time interval at which the mobile phone is notified of the authentication telephone number and the time interval at which the mobile phone is received are the same. May be. According to the present invention, impersonation by an unauthorized user can be made even more difficult even when there is cooperation from an authorized user.
  • the telephone number notification unit notifies the mobile terminal of an authentication telephone number a plurality of times, and notifies the mobile terminal of a different authentication phone number each time the notification is made. Is the same as the caller phone number stored in advance and the phone number of the mobile terminal stored in advance, and the caller phone number and the authentication phone number notified to the mobile terminal immediately before the incoming call are all matched. In this case, it may be determined that the authentication is successful. According to the present invention, an unpredictable telephone number of the mobile terminal can be notified to the mobile terminal, so that the authentication accuracy can be improved.
  • the telephone number authenticating unit measures a time required from the time when the telephone number notifying unit notifies the mobile phone of the authentication telephone number to the time when an incoming call is received from the mobile terminal, If the required time is within a predetermined time, it may be determined that the authentication is successful. According to the present invention, impersonation by an unauthorized user can be made even more difficult even when there is cooperation from an authorized user.
  • the telephone number notifying unit further specifies a timing at which the mobile terminal makes a call to the notified authentication telephone number when notifying the mobile terminal of the authentication telephone number.
  • the telephone number authenticating unit may determine that the authentication is successful when the incoming timing from the portable terminal matches the command. According to the present invention, impersonation by an unauthorized user can be made even more difficult even when there is cooperation from an authorized user.
  • the telephone number notification unit further transmits a command for reading out information unique to the mobile terminal when notifying the mobile terminal of the authentication telephone number, and the telephone number authentication unit May determine that the authentication is successful when the information received from the portable terminal is included in the basic authentication information. According to the present invention, it is possible to confirm whether or not the mobile terminal that has made a call to the authentication server is a mobile terminal that is stored in advance in the authentication server. Thereby, the impersonation by an unauthorized user can be made more difficult.
  • the telephone number notification unit when the authentication server notifies the portable terminal of the authentication telephone number, the telephone number notification unit further uses the secret information included in the basic authentication information.
  • the number may be encrypted and notified. According to the present invention, since it is not possible to make a telephone call by acquiring a telephone number unless it is a portable terminal pre-stored in the authentication server, it is possible to make spoofing by an unauthorized user even more difficult.
  • An example of the system configuration which performs the authentication method which authenticates the portable terminal which concerns on this embodiment is shown.
  • An example of a pickup diagram of the content storage function unit 23, the user information storage function unit 24, the authentication processing function unit 25, and the content transmission unit 26 is shown.
  • An example of the notification timing of the authentication server and the incoming timing from a portable terminal in Embodiment 3 is shown.
  • FIG. 1 shows an example of a system configuration for executing an authentication method for authenticating a mobile terminal according to the present embodiment.
  • the system configuration according to the present embodiment includes a mobile terminal 1 and an authentication server 2.
  • the conventional authentication method using a solid number of a mobile phone has a drawback that it cannot be used when the mobile terminal 1 is a smartphone, but in the present embodiment, it can be used even when the mobile terminal 1 is a smartphone.
  • the mobile terminal 1 includes a browser function unit 11 and a telephone call function unit 12.
  • the authentication server 2 includes a Web page publishing unit 21, a telephone incoming call function unit 22, a content storage function unit 23, a user information storage function unit 24, an authentication processing function unit 25, and a content transmission unit 26. .
  • FIG. 2 shows an example of a pickup diagram of the content storage function unit 23, the user information storage function unit 24, the authentication processing function unit 25, and the content transmission unit 26.
  • the user information storage function unit 24 includes a basic authentication information determination unit 31 and a user information database 32.
  • the authentication processing function unit 25 includes a telephone number notification unit 33 and a telephone number authentication unit 34.
  • the authentication method for authenticating the mobile terminal includes a basic authentication information transmission procedure, a telephone number notification procedure, a calling procedure, and a determination procedure in this order.
  • a basic authentication information transmission procedure a telephone number notification procedure, a calling procedure, and a determination procedure in this order.
  • the basic authentication information transmission procedure a user who requests content accesses the authentication server 2 using the browser function unit 11 of the mobile terminal 1 (step S1).
  • the authentication server 2 requests basic authentication information from the portable terminal 1 (step S2).
  • the basic authentication information is arbitrary information for authenticating the authorized user, for example, an ID and a password.
  • the basic authentication information may include information unique to the mobile terminal 1 such as a phone number of the mobile terminal 1 and an ID number of a SIM (Subscriber Identity Module) card.
  • SIM Subscriber Identity Module
  • the basic authentication information determination unit 31 of the authentication server 2 refers to the user information database 32, determines whether the basic authentication information is stored in the user information database 32 in advance, and is transmitted. It is determined whether the basic authentication information of the user is that of the authorized user (step S4). Then, the authentication result of the basic authentication information is transmitted to the telephone number notifying unit 33 of the authentication processing function unit 25 (step S5). If the basic authentication information belongs to a regular user, the telephone number notification unit 33 obtains a telephone number that is not used from the telephone incoming call function unit 22 and uses the empty telephone number as a server-side authentication telephone number. The mobile terminal 1 is notified (step S6).
  • the incoming call function unit 22 of the authentication server 2 preferably has a plurality of server-side authentication telephone numbers TN 1 to TN N.
  • the telephone number notification unit 33 notifies the mobile terminal 1 of any server-side authentication telephone number TN 2 among the plurality of server-side authentication telephone numbers TN 1 to TN N.
  • different server-side authentication telephone numbers can be notified in response to an authentication request from the portable terminal 1.
  • the mobile terminal 1 can know the server-side authentication phone number during communication with the authentication server 2, in this embodiment, since a plurality of server-side authentication phone numbers are prepared, an unauthorized user can authenticate the server-side authentication. It becomes difficult to estimate the telephone number for business use.
  • the notified server-side authentication telephone number is rejected until the mobile terminal 1 receives a call after the mobile-terminal 1 is notified of the server-side authentication telephone number.
  • Server-side authentication telephone numbers become widely known as authentication requests increase. In this state, if a method such as Wangiri is used and the server-side authentication telephone number is always in use, the authorized user cannot be authenticated. In order to prevent this, the server-side authentication telephone number is notified from the server, and the telephone reception function unit 22 preferably rejects the server-side authentication telephone number until a telephone call from the user is expected.
  • the browser function unit 11 transfers the received server-side authentication phone number to the phone call function unit 12 (step S7).
  • the telephone call function unit 12 makes a telephone call to the transferred server-side authentication telephone number (step S8).
  • the telephone reception function unit 22 transfers the caller number to the authentication processing function unit 25 (Ste S9).
  • the telephone number authenticating unit 34 determines whether or not the recipient telephone number matches the server-side authentication telephone number TN 2 notified by the telephone number notifying unit 33. Further, the telephone number authentication unit 34 determines whether or not the caller telephone number is included in the basic authentication information. Then, the caller telephone number and the server-side authentication telephone number notified by the telephone number notification unit 33 match in TN 2 , and the caller telephone number is stored in the user information database 32 as the telephone number of the mobile phone 1. If there is, the telephone number authenticating unit 34 determines that the authentication is successful (step S10).
  • the authentication procedure of the present embodiment is a multi-factor authentication method that uses these three types of elements: a user ID and password, a server-side authentication phone number, and a user mobile phone number.
  • the authentication method and authentication server for authenticating the mobile terminal according to the present embodiment can prevent spoofing by a terminal other than the registered regular user even when there is cooperation of the regular user. .
  • the telephone number notification unit 33 when the telephone number notification unit 33 notifies the mobile terminal 1 of the server-side authentication telephone number, the SIM card ID of the information included in the basic authentication information is further added. A command for reading information unique to the mobile terminal such as a number may be transmitted.
  • the mobile terminal 1 in the outgoing call procedure, the mobile terminal 1 reads the information for which the mobile terminal 1 is instructed from its own terminal and transmits it to the authentication server 1.
  • the telephone number authenticating unit 34 determines that the authentication is successful when the information received from the mobile terminal 1 is included in the basic authentication information stored in the user information database 32. Thereby, it can authenticate using the four types of elements which added the specific information of the portable terminal 1 to the above-mentioned three types of elements. Therefore, it is possible to further make impersonation by terminals other than registered regular users more difficult.
  • the phone number notification unit 33 further encrypts the server-side authentication phone number using the secret information included in the basic authentication information. May be notified.
  • the secret information may be information unique to the mobile terminal 1 such as the SIM card ID number, or the authentication server 2 may notify the mobile terminal 1 in advance.
  • the secret information is stored so as to be included in the basic authentication information of the user information database 32 every time it is changed.
  • the portable terminal 1 decrypts the encrypted server-side authentication telephone number using predetermined secret information stored in the terminal, and makes a call to the decrypted server-side authentication telephone number. To do. Thereby, it can authenticate using the four types of elements which added the specific information of the portable terminal 1 to the above-mentioned three types of elements. Therefore, it is possible to further make impersonation by terminals other than registered regular users more difficult.
  • the authentication server 2 may be a program that causes a computer to sequentially execute a basic authentication information transmission procedure, a telephone number notification procedure, a transmission procedure, and a determination procedure.
  • a basic authentication information transmission procedure a telephone number notification procedure
  • a transmission procedure a transmission procedure
  • a determination procedure a determination procedure.
  • an example of a multi-factor authentication method using three types of elements is used, but basic authentication information of a user and a telephone number for server side authentication may be used.
  • Emodiment 2 The authentication method and authentication server for authenticating the mobile terminal according to the present embodiment are different in the transmission procedure and the determination procedure in the authentication method for authenticating the mobile terminal described in the first embodiment. Hereinafter, differences from the first embodiment will be described.
  • the telephone number notification unit 33 stores the time when the mobile terminal 1 is notified of the server-side authentication telephone number in the user information database 32.
  • the telephone number authenticating unit 34 makes a call to the server side authentication telephone number notified by the mobile terminal 1 after the telephone number notifying unit 33 notifies the mobile terminal 1 of the server side authentication telephone number.
  • the required time until the authentication is measured, and when the required time is within a predetermined time, it is determined that the authentication is successful.
  • the time until the mobile terminal 1 makes a call to the server-side authentication telephone number notified may be the time until the incoming call function unit 22 receives an incoming call.
  • the authentication method and the authentication server for authenticating the mobile terminal are limited to the time from when the mobile terminal 1 is notified of the server-side authentication telephone number to when a call is received from the mobile terminal 1. If it exceeds that, it will not be authenticated.
  • the telephone call function unit 12 automatically uses the mobile terminal 1 of the authorized user after the browser function unit 11 of the mobile terminal 1 receives the server-side authentication phone number.
  • the time required for making a call is a time that is equal to or longer than the minimum time previously measured.
  • the predetermined time may be the time required for the authentication server 2 to receive a call after the browser function unit 11 of the mobile terminal 1 receives the server-side authentication telephone number, and may be several seconds, for example. Good.
  • the process of notifying the server-side authentication telephone number from the authentication server 2 and the process of making a telephone call from the portable terminal 1 to the server-side authentication telephone number can be automatically performed. Therefore, the time from when the authentication server 2 notifies its own server-side authentication telephone number to when the user's mobile terminal 1 makes a call is limited to a certain range. If it exceeds that, the authentication can be rejected because there is a possibility that the telephone call is made by some illegal means.
  • the authentication server 2 may be a program that causes a computer to sequentially execute a basic authentication information transmission procedure, a telephone number notification procedure, a transmission procedure, and a determination procedure.
  • An authentication method and an authentication server for authenticating a mobile terminal according to the present embodiment include a telephone call procedure including a telephone number notification procedure and an outgoing call procedure in the authentication method and authentication server for authenticating the mobile terminal described in the first and second embodiments. Is repeatedly performed.
  • points different from the first embodiment will be described with reference to FIG.
  • the telephone number notification unit 33 notifies the mobile terminal 1 of the server-side authentication telephone number a plurality of times, and notifies the mobile terminal 1 of a different server-side authentication telephone number each time the notification is made. preferable. As a result, it is possible to prevent spoofing by acquiring the authentication server-side authentication telephone number in advance.
  • the telephone number notification unit 33 performs notification S1 in the telephone number notification procedure, and the telephone reception function unit 22 receives the incoming call R1 from the mobile terminal 1 in the outgoing procedure.
  • the telephone number notification unit 33 performs notification S2 in the telephone number notification procedure, and the telephone incoming call function unit 22 receives the incoming call R2 from the portable terminal 1 in the outgoing call procedure.
  • the telephone number notification unit 33 performs notification S3 in the telephone number notification procedure, and the telephone incoming call function unit 22 receives the incoming call R3 from the portable terminal 1 in the outgoing call procedure.
  • the call procedure including the phone number notification procedure and the call origination procedure is repeatedly performed. Thereafter, a determination procedure is performed.
  • the time interval between the time points when the telephone number notification unit 33 notifies the mobile terminal 1 of the server-side authentication telephone number is different for each telephone number notification procedure.
  • the time interval between the notification N1 and the notification N2 is different from the time interval between the notification N2 and the notification N3.
  • the telephone number authenticating unit 34 measures the time interval of the incoming time from the mobile terminal 1. For example, the time interval from the incoming call R1 to the incoming call R2 and the time interval from the incoming call R2 to the incoming call R3 are measured. In addition to the determination described in the first embodiment or the second embodiment, the time interval for notifying the mobile terminal 1 of the server-side authentication telephone number and the time interval of the incoming time from the mobile terminal 1 are the same. Then, it is determined that the authentication is successful.
  • the time interval between the notification N1 and the notification N2 matches the time interval from the incoming call R1 to the incoming call R2, and the time interval between the notification N2 and the notification N3 matches the time interval from the incoming call R2 to the incoming call R3. It is determined whether or not.
  • a delay time is provided between consecutive processes, and comprehensive authentication is performed from multiple authentication results.
  • the delay time between processes is preferably set at random.
  • the mobile terminal 1 transmits the notified server-side authentication telephone number.
  • a command for designating the timing for making a call may be transmitted.
  • a time may be specified, or an elapsed time from the time of reception may be specified.
  • the mobile terminal 1 makes a telephone call in the calling procedure, the mobile terminal makes a telephone call to the notified server-side authentication telephone number at the timing when the command is issued.
  • the telephone number authenticating unit 34 determines that the authentication is successful when the incoming timing from the portable terminal 1 matches the command in addition to the determination described in the first or second embodiment. To do.
  • the authentication server 2 may be a program that causes a computer to sequentially execute a basic authentication information transmission procedure, a call procedure, and a determination procedure.
  • the present invention can be applied to the information and communication industry.
  • Mobile terminal 2 Authentication server 11: Browser function unit 12: Telephone call function unit 21: Web page disclosure unit 22: Call reception function unit 23: Content storage function unit 24: User information storage function unit 25: Authentication processing function Unit 26: Content transmission unit 31: Authentication information determination unit 32: User information database 33: Telephone number notification unit 34: Telephone number authentication unit

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Telephonic Communication Services (AREA)

Abstract

La présente invention a pour but d'empêcher la fraude par un utilisateur illégitime, même s'il est aidé par un utilisateur légitime. Elle concerne un procédé d'authentification et un serveur d'authentification permettant d'authentifier un terminal portatif, grâce auxquels : un serveur d'authentification (2) transmet au terminal portatif (1) d'un utilisateur un numéro de téléphone côté serveur d'authentification qui est destiné à l'authentification ; le terminal portatif (1) appelle le numéro de téléphone destiné à l'authentification par le biais d'une ligne téléphonique ; et un réglage permet qu'au moment dudit appel par le terminal portatif (1), ce dernier transmette le numéro de téléphone appelant. En conséquence, le serveur d'authentification (2) réalise l'authentification à l'aide des deux informations suivantes : le numéro de téléphone du terminal portatif (1) est ou n'est pas le numéro de téléphone d'un utilisateur légitime enregistré à l'avance ; et le numéro de téléphone destiné à l'authentification qui est transmis par le serveur d'authentification (2) correspond ou ne correspond pas.
PCT/JP2011/076943 2011-11-22 2011-11-22 Procédé d'authentification et serveur d'authentification permettant d'authentifier un terminal portatif WO2013076821A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/JP2011/076943 WO2013076821A1 (fr) 2011-11-22 2011-11-22 Procédé d'authentification et serveur d'authentification permettant d'authentifier un terminal portatif

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2011/076943 WO2013076821A1 (fr) 2011-11-22 2011-11-22 Procédé d'authentification et serveur d'authentification permettant d'authentifier un terminal portatif

Publications (1)

Publication Number Publication Date
WO2013076821A1 true WO2013076821A1 (fr) 2013-05-30

Family

ID=48469300

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2011/076943 WO2013076821A1 (fr) 2011-11-22 2011-11-22 Procédé d'authentification et serveur d'authentification permettant d'authentifier un terminal portatif

Country Status (1)

Country Link
WO (1) WO2013076821A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2015082140A (ja) * 2013-10-21 2015-04-27 株式会社りーふねっと ワンタイムパスワード発行装置、プログラムおよびワンタイムパスワード発行方法

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002335330A (ja) * 2001-05-11 2002-11-22 Nippon Telegr & Teleph Corp <Ntt> 携帯電話認証方法およびそのシステム、ならびにそのプログラムとプログラム記録媒体
JP2003009243A (ja) * 2001-06-22 2003-01-10 Sumitomo Heavy Ind Ltd 認証装置及び方法、ネットワークシステム、コンピュータプログラム

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002335330A (ja) * 2001-05-11 2002-11-22 Nippon Telegr & Teleph Corp <Ntt> 携帯電話認証方法およびそのシステム、ならびにそのプログラムとプログラム記録媒体
JP2003009243A (ja) * 2001-06-22 2003-01-10 Sumitomo Heavy Ind Ltd 認証装置及び方法、ネットワークシステム、コンピュータプログラム

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2015082140A (ja) * 2013-10-21 2015-04-27 株式会社りーふねっと ワンタイムパスワード発行装置、プログラムおよびワンタイムパスワード発行方法

Similar Documents

Publication Publication Date Title
EP3223549B1 (fr) Procédé d&#39;accès à un réseau sans fil et appareil d&#39;accès, client et support de stockage
US11399018B2 (en) Network device proximity-based authentication
JP6668407B2 (ja) 移動通信システムに用いられる端末認証方法及び装置
US9602504B2 (en) Strong Authentication by presentation of a number
CN105898743B (zh) 一种网络连接方法、装置及系统
US20130305325A1 (en) Methods for Thwarting Man-In-The-Middle Authentication Hacking
DK2924944T3 (en) Presence authentication
JP2012530311A5 (fr)
WO2017054617A1 (fr) Procédé, dispositif et système d&#39;authentification de réseau wifi
TWI632798B (zh) 伺服器、行動終端機、網路實名認證系統及方法
JP2012530311A (ja) 移動無線機の移動無線網へのログイン方法
JP2007025802A (ja) 無線通信端末を利用したゲートシステムおよびゲート解除方法
KR20130048695A (ko) 인증시스템, 인증방법 및 인증서버
EP3566160A1 (fr) Procédé d&#39;authentification d&#39;un utilisateur et dispositif correspondant, premier et second serveur et système
CN102984335A (zh) 拨打固定电话的身份认证方法、设备和系统
WO2015113351A1 (fr) Procédé, terminal et serveur de traitement d&#39;informations, et procédé et système de communication
CN107172620B (zh) 一种无线局域网认证方法和装置
JP5850270B2 (ja) 携帯端末の認証システム及びその方法
EP2482575B1 (fr) Authentification et localisations d&#39;un utilisateur mobile
WO2013076821A1 (fr) Procédé d&#39;authentification et serveur d&#39;authentification permettant d&#39;authentifier un terminal portatif
KR20120089388A (ko) 데이터 통신망을 이용한 음성 통화망의 발신자 인증을 요청하는 방법과 이를 위한 발신측의 스마트폰 및 프로그램
WO2015151251A1 (fr) Dispositif de fourniture de service de réseau, procédé de fourniture de service de réseau, et programme
JP2009232108A (ja) 通信装置及びコンピュータプログラム
WO2018103527A1 (fr) Procédé d&#39;authentification, et dispositif d&#39;authentification
KR101607234B1 (ko) 사용자 인증 시스템 및 방법

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11876056

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11876056

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: JP