METHOD, APPARATUS, AND ARRANGEMENT FOR AUTHENTICATING A USER TO AN APPLICATION IN A FIRST COMMUNICATIONS NETWORK BY MEANS OF A MOBILE STATION COMMUNICATING WITH THE APPLICATION THROUGH A SECOND COMMUNICATIONS NETWORK

US 6,430,407 B1
Filed: 02/04/1999
Issued: 08/06/2002
Est. Priority Date: 02/25/1998
Status: Expired due to Term

First Claim

Patent Images

1. An arrangement for authenticating an application provided by an application provider through a communications network, comprising:

a user interface;

a first connection between the application and the user interface through the communications network so as to enable use of the application;

a database, accessible by the application, for storing user authentication information including information indicating one or more geographical cells associated with a cellular radio communications system from which the user may access the application;

a mobile station; and

an authentication controller for enabling an authentication procedure if the mobile station is situated in the one or more geographical cells associated with the cellular radio communications system, and if so, communicating over a second connection established between the application and the mobile station corresponding to a cellular radio communications channel associated with one of the geographical cells at least some of the user authentication information to the mobile station.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, arrangement, and apparatus for providing an authentication to an application provided through a communications network. A connection is established between the application and a user interface through said communications network so as to enable an access of a user to the application. An authentication is provided to said application by means of a mobile station communicating through a mobile communications network.

174 Citations

20 Claims

1. An arrangement for authenticating an application provided by an application provider through a communications network, comprising:
- a user interface;
  
  a first connection between the application and the user interface through the communications network so as to enable use of the application;
  
  a database, accessible by the application, for storing user authentication information including information indicating one or more geographical cells associated with a cellular radio communications system from which the user may access the application;
  
  a mobile station; and
  
  an authentication controller for enabling an authentication procedure if the mobile station is situated in the one or more geographical cells associated with the cellular radio communications system, and if so, communicating over a second connection established between the application and the mobile station corresponding to a cellular radio communications channel associated with one of the geographical cells at least some of the user authentication information to the mobile station.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. An arrangement according to claim 1, wherein the mobile station comprises a mobile station personal authentication device (MS PAD) arranged to control the authentication procedure, and a subscription identification module (SIM including a secret and being operationally connected to the MS PAD, wherein the secret of the SIM is arranged to be utilized in the authentication procedure.
  - 3. An arrangement according to claim 1, wherein authentication signaling to and from the mobile station is in the form of text messages provided by a short message system (SMS) of the cellular radio communications system.
  - 4. An arrangement according to claim 1, wherein the application is a banking service, an electronic shopping service, or some other commercial service requiring an acknowledgment for an electronic transaction.
  - 5. An arrangement according to claim 1, wherein the mobile station comprises an infrared or radio transceiver capable of directly communicating with the user interface.
  - 6. An arrangement according to claim 1, wherein the mobile station is a cellular telephone communicating over a digital cellular radio communications system.

7. A method for authenticating a user to an application, the method comprising:
- establishing a first communications channel between the application and a user interface through a communications network so as to enable a user to access the application;
  
  retrieving user authentication information from a database including information indicating one or more geographical cells associated with a cellular radio communications system from which the user may access the application;
  
  establishing a second connection between the application and a mobile station through a separate, cellular radio communications channel associated with one of the geographical cells;
  
  authenticating the user to the application by confirming that the mobile station is currently situated within one of the geographical cells associated with the cellular radio communications system included in the user authentication information; and
  
  communicating at least some of the user authentication information with the mobile station through the separate, cellular radio communications channel associated with the cellular radio communications system.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15)
- - 8. A method according to claim 7, wherein the step of authenticating comprises using the mobile station such that a secret of a Subscription Identification Module (SIM) of the mobile station is utilized in encryption operations of the authentication.
  - 9. A method according to claim 7, wherein the step of authenticating comprises using the mobile station for acknowledging a transaction or proceeding which the user has previously requested from the application through the user interface.
  - 10. A method according to claim 7, further comprising
- 11. A method according to claim 7, wherein the step of authenticating comprises using the mobile station to verify the identity of the user as the user accesses the application by the user interface.
- 12. A method according to claim 7, wherein at least part of the signaling between the application and the mobile station is in the form of short message system text messages.
- 13. A method according to claim 7, wherein a Subscription Identification Module (SIM) of the mobile station is used for providing the identity of the user.
- 14. A method according to claim 13, further comprising:
  - charging costs of the connection from the user interface to the application to a holder of the subscription identified by the SIM.
- 15. A method according to claim 7, wherein the mobile station is a cellular telephone communicating with a digital cellular communications system.

16. A mobile station comprising:
- means for establishing a first communication path between a user interface and an application to access a service provided by the application;
  
  means for providing the mobile station s current cell location with a cellular grid associated with a cellular radio communications system;
  
  means for establishing a separate, second communication path for authenticating use of the application over a cellular radio channel associated with the mobile station'"'"'s current cell location; and
  
  means for authenticating the use of the application if the current cell location of the mobile station is in an authorized cell location with the cellular grid.
- View Dependent Claims (17, 18, 19, 20)
- - 17. A mobile station according to claim 16, further comprising means for providing the mobile station'"'"'s current cell location, wherein the means for authenticating is arranged to determine whether the current cell location of the mobile station is consistent with an authorized cell location from which to access and use the application.
  - 18. A mobile station according to claim 16, wherein the mobile station is a digital mobile telephone and comprises a subscription identification module (SIM) including a secret, wherein the secret of the SIM is arranged to be utilized by the means for authenticating.
  - 19. A mobile station according to claim 18, further comprising at least one additional SIM.
  - 20. A mobile station according to claim 16, wherein the means for authenticating includes an integrated mobile station personal authentication device (MS PAD).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Telefonaktiebolaget LM Ericsson
Original Assignee
Telefonaktiebolaget LM Ericsson
Inventors
Turtiainen, Esa
Primary Examiner(s)
Trost, William
Assistant Examiner(s)
PEREZ GUTIERREZ, RAFAEL

Application Number

US09/244,018
Time in Patent Office

1,279 Days
Field of Search

455/411, 455/410, 455/414, 455/432, 455/456, 455/407, 455/406, 455/408, 380/247, 380/270, 380/33, 380/248, 380/271
US Class Current

455/411
CPC Class Codes

G06F 21/43   wireless channels

G06Q 20/322   Aspects of commerce using m...

G06Q 20/3224   Transactions dependent on l...

G06Q 20/3255   using mobile network messag...

G06Q 20/326   Payment applications instal...

G06Q 20/4014   Identity check for transact...

G06Q 20/425   using two different network...

G07F 7/08   by coded identity card or c...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 63/18   using different networks or...

H04L 9/40   Network security protocols

METHOD, APPARATUS, AND ARRANGEMENT FOR AUTHENTICATING A USER TO AN APPLICATION IN A FIRST COMMUNICATIONS NETWORK BY MEANS OF A MOBILE STATION COMMUNICATING WITH THE APPLICATION THROUGH A SECOND COMMUNICATIONS NETWORK

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

174 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD, APPARATUS, AND ARRANGEMENT FOR AUTHENTICATING A USER TO AN APPLICATION IN A FIRST COMMUNICATIONS NETWORK BY MEANS OF A MOBILE STATION COMMUNICATING WITH THE APPLICATION THROUGH A SECOND COMMUNICATIONS NETWORK

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

174 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links