User authentication method and apparatus
First Claim
Patent Images
1. A method for authenticating a prospective user of an electronic service associated with a service node, the user having a personal unit, said method comprising the steps of:
- transmitting a challenge code generated from an authentication center, which is either separate from or integral in the service node, over a network that is independent of the type of electronic service being selected;
receiving said challenge code in said personal unit;
generating, in said personal unit, a response code based on an algorithm having at least said challenge code and a user input as variables;
generating, in said personal unit, an output code comprising said response code for either transmission from the personal unit to the authentication center or input to a terminal, said terminal being linked to said electronic service;
comparing by the authentication center or the service node said response code with an expected response code; and
permitting access to said electronic service only when a result of said comparison step is accepted.
1 Assignment
0 Petitions
Accused Products
Abstract
Authorization for a user to use a service is provided by a modified pager which calculates a unique response code to a transmitted challenge code based on the challenge code, an input personal identification number, and an internal key. The response code is input to a simple terminal, such as a telephone and if the unique response code is acceptable, the user may access the desired service, such as cashless transactions or long distance phone service.
-
Citations
37 Claims
-
1. A method for authenticating a prospective user of an electronic service associated with a service node, the user having a personal unit, said method comprising the steps of:
-
transmitting a challenge code generated from an authentication center, which is either separate from or integral in the service node, over a network that is independent of the type of electronic service being selected; receiving said challenge code in said personal unit; generating, in said personal unit, a response code based on an algorithm having at least said challenge code and a user input as variables; generating, in said personal unit, an output code comprising said response code for either transmission from the personal unit to the authentication center or input to a terminal, said terminal being linked to said electronic service; comparing by the authentication center or the service node said response code with an expected response code; and permitting access to said electronic service only when a result of said comparison step is accepted. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A personal unit comprising:
-
a receiver for receiving a challenge code; an input means for inputting a user input; a response code generating means, linked to said receiver and said input means, for generating a response code in accordance with a received challenge code and a user input; an output means for generating an output code comprising said response code for input to a terminal connected to an external electronic service, said personal unit being physically separate from said terminal and said terminal being at the location of the user. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A system for granting access to an electronic service, comprising:
-
a personal unit for receiving a challenge code, for receiving a user input, and generating a response code according to a received challenge code and said user input; a terminal linked to an authentication center, said terminal receiving said response code; and a network independent of said electronic service for sending said challenge code when access to a service is attempted;
said network interconnectingcomparing means for comparing said response code generated by said personal unit to an expected response code and permitting means for permitting access to said service only when a result of said comparison of said response code generated by said personal unit to said expected response code is accepted. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37)
-
Specification