WO2010031700A3 - Verfahren, computerprogrammprodukt und system zur authentifizierung eines benutzers eines telekommunikationsnetzwerkes - Google Patents

Verfahren, computerprogrammprodukt und system zur authentifizierung eines benutzers eines telekommunikationsnetzwerkes Download PDF

Info

Publication number
WO2010031700A3
WO2010031700A3 PCT/EP2009/061476 EP2009061476W WO2010031700A3 WO 2010031700 A3 WO2010031700 A3 WO 2010031700A3 EP 2009061476 W EP2009061476 W EP 2009061476W WO 2010031700 A3 WO2010031700 A3 WO 2010031700A3
Authority
WO
WIPO (PCT)
Prior art keywords
token
authenticating
user
telecommunication network
computer system
Prior art date
Application number
PCT/EP2009/061476
Other languages
English (en)
French (fr)
Other versions
WO2010031700A2 (de
Inventor
Frank Dietrich
Manfred Paeschke
Robert Fiedler
Original Assignee
Bundesdruckerei Gmbh
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from DE200810042262 external-priority patent/DE102008042262B4/de
Priority claimed from DE102008042582A external-priority patent/DE102008042582A1/de
Application filed by Bundesdruckerei Gmbh filed Critical Bundesdruckerei Gmbh
Priority to EP09782626.7A priority Critical patent/EP2338255B1/de
Priority to US13/120,983 priority patent/US8726360B2/en
Publication of WO2010031700A2 publication Critical patent/WO2010031700A2/de
Publication of WO2010031700A3 publication Critical patent/WO2010031700A3/de

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/22Arrangements for preventing the taking of data from a data transmission channel without authorisation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/18Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/84Vehicles

Abstract

Die Erfindung betrifft ein Telekommunikationsverfahren mit folgenden Schritten: Aufbau einer ersten Verbindung (101) zwischen einem ersten ID-Token (106) und einem ersten Computersystem (136) über ein zweites Computersystem (100) zum Auslesen zumindest eines ersten Attributs aus dem ersten ID-Token, Generierung eines ersten Soft-Tokens, wobei der erste Soft-Token das zumindest eine erste Attribut und eine Zeitangabe beinhaltet, und wobei der erste Soft-Token von dem ersten Computersystem signiert ist, Senden des ersten Soft-Tokens von dem ersten Computersystem an ein drittes Computersystem (150). wobei es sich bei der ersten Verbindung um eine Verbindung mit Ende-zu-Ende-Verschlüsselung handelt.
PCT/EP2009/061476 2008-09-22 2009-09-04 Telekommunikationsverfahren, computerprogrammprodukt und computersystem WO2010031700A2 (de)

Priority Applications (2)

Application Number Priority Date Filing Date Title
EP09782626.7A EP2338255B1 (de) 2008-09-22 2009-09-04 Verfahren, computerprogrammprodukt und system zur authentifizierung eines benutzers eines telekommunikationsnetzwerkes
US13/120,983 US8726360B2 (en) 2008-09-22 2009-09-04 Telecommunication method, computer program product and computer system

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
DE102008042262.2 2008-09-22
DE200810042262 DE102008042262B4 (de) 2008-09-22 2008-09-22 Verfahren zur Speicherung von Daten, Computerprogrammprodukt, ID-Token und Computersystem
DE102008042582.6 2008-10-02
DE102008042582A DE102008042582A1 (de) 2008-10-02 2008-10-02 Telekommunikationsverfahren, Computerprogrammprodukt und Computersystem

Publications (2)

Publication Number Publication Date
WO2010031700A2 WO2010031700A2 (de) 2010-03-25
WO2010031700A3 true WO2010031700A3 (de) 2010-07-01

Family

ID=42039945

Family Applications (2)

Application Number Title Priority Date Filing Date
PCT/EP2009/061476 WO2010031700A2 (de) 2008-09-22 2009-09-04 Telekommunikationsverfahren, computerprogrammprodukt und computersystem
PCT/EP2009/061471 WO2010031698A2 (de) 2008-09-22 2009-09-04 Verfahren zur speicherung von daten, computerprogrammprodukt, id-token und computersystem

Family Applications After (1)

Application Number Title Priority Date Filing Date
PCT/EP2009/061471 WO2010031698A2 (de) 2008-09-22 2009-09-04 Verfahren zur speicherung von daten, computerprogrammprodukt, id-token und computersystem

Country Status (5)

Country Link
US (2) US8726360B2 (de)
EP (2) EP2338255B1 (de)
ES (1) ES2573692T3 (de)
PL (1) PL2332313T3 (de)
WO (2) WO2010031700A2 (de)

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6344745B1 (en) * 1998-11-25 2002-02-05 Medrad, Inc. Tapered birdcage resonator for improved homogeneity in MRI
DE102008040416A1 (de) * 2008-07-15 2010-01-21 Bundesdruckerei Gmbh Verfahren zum Lesen von Attributen aus einem ID-Token
WO2010031700A2 (de) * 2008-09-22 2010-03-25 Bundesdruckerei Gmbh Telekommunikationsverfahren, computerprogrammprodukt und computersystem
CA2789291A1 (en) * 2010-02-26 2011-09-01 General Instrument Corporation Dynamic cryptographic subscriber-device identity binding for subscriber mobility
DE102010028133A1 (de) * 2010-04-22 2011-10-27 Bundesdruckerei Gmbh Verfahren zum Lesen eines Attributs aus einem ID-Token
US9106645B1 (en) * 2011-01-26 2015-08-11 Symantec Corporation Automatic reset for time-based credentials on a mobile device
US20120310837A1 (en) * 2011-06-03 2012-12-06 Holden Kevin Rigby Method and System For Providing Authenticated Access to Secure Information
US20130018759A1 (en) * 2011-07-13 2013-01-17 Ebay Inc. Third party token system for anonymous shipping
US10263782B2 (en) * 2011-10-12 2019-04-16 Goldkey Corporation Soft-token authentication system
DE102012224083A1 (de) * 2012-12-20 2015-08-20 Bundesdruckerei Gmbh Verfahren zur Personalisierung eines Secure Elements (SE) und Computersystem
ES2491491B1 (es) * 2013-03-05 2015-06-16 Vodafone España, S.A.U. Método para asociar de manera anónima mediciones de un dispositivo de monitorización sanitaria con un ID de usuario
US10169704B2 (en) * 2015-04-13 2019-01-01 Research New Group, Inc. Artificially intelligent communication generation in complex computing networks
DE102016206514A1 (de) * 2016-04-18 2017-10-19 Volkswagen Aktiengesellschaft Verfahren zur digitalen Verwaltung von Eigentumsrechten an einem Fahrzeug
US10476862B2 (en) * 2017-03-31 2019-11-12 Mastercard International Incorporated Systems and methods for providing digital identity records to verify identities of users
WO2019055969A1 (en) 2017-09-18 2019-03-21 Mastercard International Incorporated SYSTEMS AND METHODS FOR MANAGING DIGITAL IDENTITIES ASSOCIATED WITH MOBILE DEVICES
US11100503B2 (en) 2018-02-07 2021-08-24 Mastercard International Incorporated Systems and methods for use in managing digital identities
IT201800002895A1 (it) * 2018-02-21 2019-08-21 Stmicroelectronics Application Gmbh Sistema di elaborazione, relativo circuito integrato, dispositivo e procedimento
US11373457B2 (en) * 2018-11-06 2022-06-28 Zf Friedrichshafen Ag System and method for detecting non-approved parts in a vehicle
EP3723017A1 (de) 2019-04-08 2020-10-14 Mastercard International Incorporated Verbesserungen im zusammenhang mit identitätsauthentifizierung und -validierung

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE10306338A1 (de) * 2003-02-10 2004-08-26 Gabriele Kappe Verfahren zum geschützten Zugang
EP1802155A1 (de) * 2005-12-21 2007-06-27 Cronto Limited System und Verfahren zur dynamischen mehrfaktorfähigen Authentifizierung

Family Cites Families (48)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2725537B1 (fr) * 1994-10-11 1996-11-22 Bull Cp8 Procede de chargement d'une zone memoire protegee d'un dispositif de traitement de l'information et dispositif associe
US5796832A (en) * 1995-11-13 1998-08-18 Transaction Technology, Inc. Wireless transaction and information system
WO1997022092A2 (en) * 1995-12-14 1997-06-19 Venda Security Corporation Secure personal information card and method of using the same
US5918228A (en) * 1997-01-28 1999-06-29 International Business Machines Corporation Method and apparatus for enabling a web server to impersonate a user of a distributed file system to obtain secure access to supported web documents
US7290288B2 (en) * 1997-06-11 2007-10-30 Prism Technologies, L.L.C. Method and system for controlling access, by an authentication server, to protected computer resources provided via an internet protocol network
US6754820B1 (en) * 2001-01-30 2004-06-22 Tecsec, Inc. Multiple level access system
US6173400B1 (en) * 1998-07-31 2001-01-09 Sun Microsystems, Inc. Methods and systems for establishing a shared secret using an authentication token
FR2794595B1 (fr) * 1999-06-03 2002-03-15 Gemplus Card Int Pre-controle d'un programme dans une carte a puce additionnelle d'un terminal
AU2001251701A1 (en) * 2000-02-25 2001-09-03 Identix Incorporated Secure transaction system
US20010045451A1 (en) * 2000-02-28 2001-11-29 Tan Warren Yung-Hang Method and system for token-based authentication
US20020097159A1 (en) * 2001-01-19 2002-07-25 Peter Hooglander System and method using medical information-containing electronic devices
EP1239400A1 (de) 2001-03-09 2002-09-11 Semiconductor Components Industries, LLC Lesegerät für zwei Chipkarten
US20040139028A1 (en) * 2001-03-23 2004-07-15 Fishman Jayme Matthew System, process and article for conducting authenticated transactions
US20030023858A1 (en) 2001-07-26 2003-01-30 International Business Machines Corporation Method for secure e-passports and e-visas
US7475250B2 (en) 2001-12-19 2009-01-06 Northrop Grumman Corporation Assignment of user certificates/private keys in token enabled public key infrastructure system
US7770212B2 (en) * 2002-08-15 2010-08-03 Activcard System and method for privilege delegation and control
US7725562B2 (en) * 2002-12-31 2010-05-25 International Business Machines Corporation Method and system for user enrollment of user attribute storage in a federated environment
US7587491B2 (en) * 2002-12-31 2009-09-08 International Business Machines Corporation Method and system for enroll-thru operations and reprioritization operations in a federated environment
IL154091A0 (en) * 2003-01-23 2003-07-31 A method and a system for unauthorized vehicle control
WO2004068424A2 (en) * 2003-01-28 2004-08-12 Cellport Systems, Inc. Secure telematics
US7392534B2 (en) 2003-09-29 2008-06-24 Gemalto, Inc System and method for preventing identity theft using a secure computing device
GB2409316B (en) * 2003-12-17 2006-06-21 Motorola Inc Method and apparatus for programming electronic security token
US20050138421A1 (en) * 2003-12-23 2005-06-23 Fedronic Dominique L.J. Server mediated security token access
US8504704B2 (en) * 2004-06-16 2013-08-06 Dormarke Assets Limited Liability Company Distributed contact information management
US8904040B2 (en) 2004-10-29 2014-12-02 Go Daddy Operating Company, LLC Digital identity validation
US20070208940A1 (en) * 2004-10-29 2007-09-06 The Go Daddy Group, Inc. Digital identity related reputation tracking and publishing
US20060294583A1 (en) * 2005-05-11 2006-12-28 Ingenia Holdings (U.K.) Limited Authenticity Verification
US20070008084A1 (en) * 2005-07-05 2007-01-11 Sen-Jia Wu Electronic license plate system changing displayed information and method for the same
US8069476B2 (en) * 2006-06-01 2011-11-29 Novell, Inc. Identity validation
US8180741B2 (en) * 2006-06-06 2012-05-15 Red Hat, Inc. Methods and systems for providing data objects on a token
JP4277229B2 (ja) * 2006-06-29 2009-06-10 ソニー株式会社 携帯端末、決済方法、およびプログラム
US20080083827A1 (en) * 2006-10-06 2008-04-10 Taisys Technologies Co., Ltd. Security method of dual-card assembly
US8387108B1 (en) * 2006-10-31 2013-02-26 Symantec Corporation Controlling identity disclosures
US20080120511A1 (en) * 2006-11-17 2008-05-22 Electronic Data Systems Corporation Apparatus, and associated method, for providing secure data entry of confidential information
WO2008064261A2 (en) 2006-11-21 2008-05-29 Telos Corporation Method and system for remote security token extension
US8689296B2 (en) * 2007-01-26 2014-04-01 Microsoft Corporation Remote access of digital identities
US8387124B2 (en) * 2007-03-15 2013-02-26 Palo Alto Research Center Incorporated Wormhole devices for usable secure access to remote resource
US8479254B2 (en) * 2007-03-16 2013-07-02 Apple Inc. Credential categorization
US20090198618A1 (en) * 2008-01-15 2009-08-06 Yuen Wah Eva Chan Device and method for loading managing and using smartcard authentication token and digital certificates in e-commerce
DE102008000067C5 (de) 2008-01-16 2012-10-25 Bundesdruckerei Gmbh Verfahren zum Lesen von Attributen aus einem ID-Token
US8141140B2 (en) * 2008-05-23 2012-03-20 Hsbc Technologies Inc. Methods and systems for single sign on with dynamic authentication levels
DE102008040416A1 (de) * 2008-07-15 2010-01-21 Bundesdruckerei Gmbh Verfahren zum Lesen von Attributen aus einem ID-Token
US8250366B2 (en) * 2008-09-09 2012-08-21 International Business Machines Corporation Method and system for electronic vehicle document display
US7876201B2 (en) * 2008-09-15 2011-01-25 International Business Machines Corporation Vehicle authorization method and system
WO2010031700A2 (de) * 2008-09-22 2010-03-25 Bundesdruckerei Gmbh Telekommunikationsverfahren, computerprogrammprodukt und computersystem
DE102008042259A1 (de) * 2008-09-22 2010-04-08 Bundesdruckerei Gmbh Kraftfahrzeug-Elektronikgerät, Kraftfahrzeug, Verfahren zur Anzeige von Daten auf einer Kraftfahrzeug-Anzeigevorrichtung und Computerprogrammprodukt
DE102009027681A1 (de) * 2009-07-14 2011-01-20 Bundesdruckerei Gmbh Verfahren und Lesen von Attributen aus einem ID-Token
DE102009027682A1 (de) * 2009-07-14 2011-01-20 Bundesdruckerei Gmbh Verfahren zur Erzeugung eines Soft-Tokens

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE10306338A1 (de) * 2003-02-10 2004-08-26 Gabriele Kappe Verfahren zum geschützten Zugang
EP1802155A1 (de) * 2005-12-21 2007-06-27 Cronto Limited System und Verfahren zur dynamischen mehrfaktorfähigen Authentifizierung

Also Published As

Publication number Publication date
EP2338255A2 (de) 2011-06-29
PL2332313T3 (pl) 2016-08-31
WO2010031698A3 (de) 2010-06-17
US20110191829A1 (en) 2011-08-04
US8726360B2 (en) 2014-05-13
US8707415B2 (en) 2014-04-22
EP2332313B1 (de) 2016-04-27
ES2573692T3 (es) 2016-06-09
WO2010031698A2 (de) 2010-03-25
EP2332313A2 (de) 2011-06-15
WO2010031700A2 (de) 2010-03-25
EP2338255B1 (de) 2017-04-05
US20120023559A1 (en) 2012-01-26

Similar Documents

Publication Publication Date Title
WO2010031700A3 (de) Verfahren, computerprogrammprodukt und system zur authentifizierung eines benutzers eines telekommunikationsnetzwerkes
WO2008070422A3 (en) Remote access to internet protocol television by enabling place shifting utilizing a telephone company network
WO2007101700A3 (en) Method for providing certain information
WO2008019193A3 (en) Method and apparatus for monitoring and synchronizing user interface events with network data
TW200711392A (en) Methods and apparatus for packetization of content for transmission over a network
WO2007028336A8 (fr) Procede et reseau de traitement de contenu d'un message de protocole d'ouverture de session
MY170276A (en) Method and system for synchronizing operations of multiple groups
WO2008145558A3 (fr) Procede de securisation d'echange d'information, dispositif, et produit programme d'ordinateur correspondant
WO2010041164A3 (en) A method for operating a network, a system management device, a network and a computer program therefor
MY156650A (en) Multi-modal communication through modal-specific interfaces
WO2009014876A3 (en) Streaming data content in a network
WO2007117592A3 (en) System and method for managing product information
WO2010027190A3 (ko) 진동 정보를 전달하는 이동통신 단말기 및 방법
WO2006097937A3 (en) A method for a clustered centralized streaming system
WO2006127876A3 (en) Method and system for delta compression
TW200726166A (en) Method for transmitting real-time streaming data and apparatus using the same
WO2009148931A3 (en) Call group management using the session initiation protocol
DE602006021712D1 (de) Kontext-sensitivitätsbasierte Kryptographie
EP1906637A4 (de) Verfahren und system zur bereitstellung von informationen über den anrufer an den angerufenen
SI1938625T1 (sl) Postopek za posredovanje signalizacijskih podatko v vmesniški enoti za prenos v omrežju in v krmilni enoti
WO2007098282A3 (en) System and method for an integrated communications framework
WO2011085495A8 (en) System and method for reducing message signaling
WO2013105115A3 (en) A method and system for creating an intelligent social network between plurality of devices
WO2006066209A3 (en) Method and system for conducting client-to-server or peer-to-peer or mixed mode data synchronization
WO2008120281A1 (ja) データ処理装置、分散処理システム、データ処理方法、及びデータ処理プログラム

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09782626

Country of ref document: EP

Kind code of ref document: A2

REEP Request for entry into the european phase

Ref document number: 2009782626

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2009782626

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 13120983

Country of ref document: US