Service authentication in a communication system
First Claim
1. An authentication method for a service provided in a communication system, the method comprising the steps of:
- providing a user of a first network with a first password comprising a first element derived from a second password stored in a second network external to the first network;
in response to the user requesting a service from the first network, supplying the first password to the first network;
transmitting from the first network a first request to the second network, the first request being such that the first request triggers in the second network a sending of a first response which requests the second password;
in response to the first response, sending a third password to the second network, the third password being derived from the first element;
matching the third password against the second password stored in the second network; and
offering the service to the user when the matching step indicates that the third password and the second password have a predetermined relationship.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention concerns authentication in an access network. In order to be able to utilize the infrastructure of a separate mobile communication network for the authentication of subscribers with traditional (non-SIM) terminals, a subscriber is provided with a first password comprising a first element derived from a second password stored in the mobile communication network. When the subscriber enters the access network, a first request is sent to the mobile communication network, the first request triggering in the mobile communication network the sending of a first response which requests the second password. A third password is then sent to the mobile communication network as a response, the third password being derived from the first element. The third password is matched against the second password and the service is provided to the subscriber when the matching indicates that the third password and the second password have a predetermined relationship.
-
Citations
21 Claims
-
1. An authentication method for a service provided in a communication system, the method comprising the steps of:
-
providing a user of a first network with a first password comprising a first element derived from a second password stored in a second network external to the first network;
in response to the user requesting a service from the first network, supplying the first password to the first network;
transmitting from the first network a first request to the second network, the first request being such that the first request triggers in the second network a sending of a first response which requests the second password;
in response to the first response, sending a third password to the second network, the third password being derived from the first element;
matching the third password against the second password stored in the second network; and
offering the service to the user when the matching step indicates that the third password and the second password have a predetermined relationship. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. An authentication system for a service provided in a communication system, the authentication system comprising:
-
means for supplying a first password to a first network, the first password comprising a first element derived from a second password stored in a second network, the first network being external to the second network;
first signaling means for sending a first request to the second network, the first request being such that the first request triggers in the second network a sending of a first response which requests the second password;
second signaling means, responsive to the first response, for sending a third password to the second network, the third password being derived from the first element; and
matching means for matching the third password against the second password stored in the second network. - View Dependent Claims (16, 17, 18, 19)
-
-
20. A network element for authenticating users in a first network, the network element comprising:
-
first reception means for receiving a first password comprising a first element derived from a second password stored in a second network external to the first network;
first signaling means for sending a first request to the second network, the first request being such that the first request triggers in the second network a sending of a first response which requests the second password;
second signaling means, responsive to the first response, for sending a third password to the second network, the third password being derived from the first element;
second reception means for receiving a notification indicating whether the third password and the second password have a predetermined relationship; and
means for generating an authentication result on the basis of the notification. - View Dependent Claims (21)
-
Specification