Device and method for authenticating a transaction with a data processing apparatus
First Claim
1. A device for connection to a data processing apparatus, the device comprising:
- a first interface operatively coupled to an authentication storage means, the authentication storage means being registered with a telecommunications system and storing predetermined authentication information that is respectively associated with a subscription of a user with the telecommunications system, the predetermined authentication information corresponding to information used for authenticating a telecommunications terminal that is respectively used in association with the subscription of the user with the telecommunications system for conducting communications in the telecommunications system, the telecommunications system including an authenticating means that maintains a correspondence between the information used for authenticating the telecommunications terminal and the subscription of the user with the telecommunications system;
a second interface configured to connect to the data processing apparatus; and
an interface driver that, upon the first interface operatively coupling to the authentication storage means and the second interface connecting to the data processing apparatus, controls access to the predetermined authentication information and, in response to an input message transmitted in a communication session established between the data processing apparatus and the authenticating means included within the telecommunications system requesting a response that is based on the input message and the predetermined authentication information, enables the authenticating means, via the communication session between the data processing apparatus and the authenticating means included within the telecommunications system, to execute an authentication process for authenticating a transaction by the user with the data processing apparatus, andwherein the authentication process for authenticating the transaction by the user with the data processing apparatus involves use of the predetermined authentication information stored by the authentication storage means, does not require use of the telecommunications terminal that is respectively associated with the subscription of the user with the telecommunications system, and does not require the telecommunications terminal to be authenticated for conducting communications in the telecommunications system using the information used for authenticating the telecommunications terminal that corresponds to the predetermined authentication information that is respectively associated with the subscription of the user.
0 Assignments
0 Petitions
Accused Products
Abstract
A device or “dongle” (30) is provided for controlling communications between a Subscriber Identity Module (for SIM) (12), such as of the type used in a GSM cellular telephone system, and a computer, such as a WINDOWS® operating system-based PC (10). The SIM (12) can be authenticated by the telephone network, in the same way as for authenticating SIMs of telephone handset users in the network, and can in this way authenticate the user of the PC (10) or the PC (10) itself. Such authentication can, for example, permit the use of the PC (10) for a time-limited session in relation to a particular application, which is released to the PC (10), after the authentication is satisfactorily completed. The application may be released to the PC (10) by a third party after and in response to the satisfactory completion of the authentication process. A charge for the session can be debited to the user by the telecommunications network and then passed on to the third party. The dongle (30) provides additional security for the authentication data stored on the SIM by requiring a PIN to be entered and/or by only being responsive to requests received from the PC (10) which are encrypted using a key, which requests are generated by a special PC interface driver (38).
25 Citations
60 Claims
-
1. A device for connection to a data processing apparatus, the device comprising:
-
a first interface operatively coupled to an authentication storage means, the authentication storage means being registered with a telecommunications system and storing predetermined authentication information that is respectively associated with a subscription of a user with the telecommunications system, the predetermined authentication information corresponding to information used for authenticating a telecommunications terminal that is respectively used in association with the subscription of the user with the telecommunications system for conducting communications in the telecommunications system, the telecommunications system including an authenticating means that maintains a correspondence between the information used for authenticating the telecommunications terminal and the subscription of the user with the telecommunications system; a second interface configured to connect to the data processing apparatus; and an interface driver that, upon the first interface operatively coupling to the authentication storage means and the second interface connecting to the data processing apparatus, controls access to the predetermined authentication information and, in response to an input message transmitted in a communication session established between the data processing apparatus and the authenticating means included within the telecommunications system requesting a response that is based on the input message and the predetermined authentication information, enables the authenticating means, via the communication session between the data processing apparatus and the authenticating means included within the telecommunications system, to execute an authentication process for authenticating a transaction by the user with the data processing apparatus, and wherein the authentication process for authenticating the transaction by the user with the data processing apparatus involves use of the predetermined authentication information stored by the authentication storage means, does not require use of the telecommunications terminal that is respectively associated with the subscription of the user with the telecommunications system, and does not require the telecommunications terminal to be authenticated for conducting communications in the telecommunications system using the information used for authenticating the telecommunications terminal that corresponds to the predetermined authentication information that is respectively associated with the subscription of the user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A method for authenticating a transaction with a data processing apparatus, the data processing apparatus being operatively associated with a security device, the security device being operatively associated with an authentication storage means that is registered with a telecommunications system and stores predetermined authentication information that is respectively associated with a subscription of a user with the telecommunications system, the predetermined authentication information corresponding to information used for authenticating a telecommunications terminal that is respectively used in association with the subscription of the user with the telecommunications system for conducting communications in the telecommunications system, the security device being configured to control access to the predetermined authentication information, the telecommunications system including an authenticating means that maintains a correspondence between the information used for authenticating the telecommunications terminal and the subscription of the user with the telecommunications system, the method comprising:
-
operatively coupling the security device to the authentication storage means and connecting the device to the data processing apparatus; and using the security device to, in response to an input message transmitted in a communication session established between the data processing apparatus and the authenticating means included within the telecommunications system requesting a response that is based on the input message and the predetermined authentication information, obtain the predetermined authentication information from the authentication storage means and enable the authenticating means, via a communication session between the data processing apparatus and the authenticating means included within the telecommunications system, to execute an authentication process for authenticating the transaction by the user with the data processing apparatus that involves use of the predetermined authentication information stored by the authentication storage means, and wherein the authentication process for authenticating the transaction by the user with the data processing apparatus does not require use of the telecommunications terminal that is respectively associated with the subscription of the user with the telecommunications system and does not require the telecommunications terminal to be authenticated for conducting communications in the telecommunications system using the information used for authenticating the telecommunications terminal that corresponds to the predetermined authentication information that is respectively associated with the subscription of the user. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52)
-
-
53. A device, comprising:
-
authentication storage means registered with a telecommunications system and storing predetermined authentication information that is respectively associated with a subscription with the telecommunications system, the predetermined authentication information corresponding to information used for authenticating a telecommunications terminal that is respectively used in association with the subscription with the telecommunications system for conducting communications in the telecommunications system, the telecommunications system including an authenticating means that maintains a correspondence between the information used for authenticating the telecommunications terminal and the subscription with the telecommunications system, a first interface for coupling to a data processing apparatus to provide for the predetermined authentication information to be used to authenticate a transaction to be performed by the data processing apparatus, a security means for controlling access to the predetermined authentication information via the data processing apparatus, and an interface driver that, upon the first interface coupling to the data processing apparatus, in response to an input message transmitted in a communication session established between the data processing apparatus and the authenticating means included within the telecommunications system requesting a response that is based on the input message and the predetermined authentication information, enables the authenticating means, via a communication session between the data processing apparatus and the authenticating means included within the telecommunications system, to execute an authentication process that involves use of the predetermined authentication information stored by the authentication storage means for authenticating performance of the transaction by the data processing apparatus, and wherein the authentication process for authenticating performance of the transaction by the data processing apparatus does not require use of the telecommunications terminal that is respectively used in association with the subscription with the telecommunications system and does not require the telecommunications terminal to be authenticated for conducting communications in the telecommunications system using the information used for authenticating the telecommunications terminal that corresponds to the predetermined authentication information that is respectively associated with the subscription with the telecommunications system. - View Dependent Claims (54, 55, 56, 57, 58, 59)
-
-
60. A device for connection to a data processing apparatus, the device comprising:
-
a first interface operatively coupled to an authentication storage means, the authentication storage means being registered with a telecommunications system and storing predetermined authentication information that is respectively associated with a subscription of a user with the telecommunications system, the predetermined authentication information corresponding to an authentication unit that is registered with the telecommunications system in association with the subscription of the user and that is used for authenticating a telecommunications terminal to be used in association with the subscription of the user with the telecommunications system for conducting communications in the telecommunications system, the telecommunications system including an authenticating means that maintains a correspondence between information used for authenticating the telecommunications terminal in connection with the authentication unit and the subscription of the user with the telecommunications system; a second interface configured to connect to the data processing apparatus; and an interface driver that, upon the first interface operatively coupling to the authentication storage means and the second interface connecting to the data processing apparatus, controls access to the predetermined authentication information and, in response to an input message transmitted in a communication session established between the data processing apparatus and the authenticating means included within the telecommunications system requesting a response that is based on the input message and the predetermined authentication information, enables the authenticating means, via a communication session between the data processing apparatus and the authenticating means included within the telecommunications system, to execute an authentication process for authenticating a transaction by the user with the data processing apparatus, and wherein the authentication process for authenticating the transaction by the user with the data processing apparatus involves use of the predetermined authentication information stored by the authentication storage means, does not require use of the authentication unit that is registered with the telecommunications system in association with the subscription of the user, and does not require the telecommunications terminal to be authenticated for conducting communications in the telecommunications system using the information used for authenticating the telecommunications terminal.
-
Specification