×

Authentication process including setting up a secure channel between a subscriber and a service provider accessible through a telecommunications operator

  • US 6,745,326 B1
  • Filed: 01/24/2000
  • Issued: 06/01/2004
  • Est. Priority Date: 01/22/1999
  • Status: Expired due to Term
First Claim
Patent Images

1. Process for ensuring the security of a communications between firstly a subscriber to a telecommunications network and secondly a service provider accessible through an operator of the telecommunications network to which the subscriber is attached,characterized in that it comprises firstly a process for initial registration of the subscriber to the service provider through the operator, and secondly a process in which each of the communication sessions between the subscriber and the service provider takes place, and in that the initial registration process comprises:

  • firstly, the telecommunications operator provides the service provider with an identifier (Device ID) of the subscriber in his attachment network, and an authenticator (R1) of the subscriber composed of a first numeric value calculated from an identifier (Idx) of the service provider in the operator'"'"'s network, the identifier (Device ID) of the subscriber in his attachment network, and a secret element (Sec. Op.) characterizing the subscriber;

    secondly, the service provider provides the subscriber with data for identification/authentication (Login, mdp) of the subscriber with the service provider;

    and in that the execution process of each of the sessions comprises authentication of the subscriber by the service provider through the following steps;

    a step in which a second numeric value (R2) is calculated from a subscriber identifier (mdp) with the service provider and a diversification data (Date) generated at the subscriber a step in which a third numeric value (R3) is calculated starting from the first numeric value (R1), the second numeric value (R2) and a third data (Login) identifying the subscriber with the service provider, a step in which a first data frame composed of the third numeric value (R3) and input data, namely data (Login) identifying the subscriber with the service provider, and the diversification data (Date) generated at the subscriber, is transmitted from the subscriber to the service provider, a step in which the service provider authenticates the subscriber by recalculating, as a validation, the third numeric value (R3) starting from the input data (Login, Date) in the first data frame, and data (R1, mdp) already provided to the service provider and associated with the subscriber.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×