摘要 |
The invention is concerned with a method of user authentication in a network comprising a mobile terminal, a service provider and an authentication server. The mobile terminal has a smart card with security functions and user/equipment specific information. In the method, the user gives (3) identity information to the service provider as a reply on a request (1) for using a service provided by the service provider. The identity information given by the user is sent (4) from the service provider to the authentication server, which generates (5) a random number, which is sent (6) to the smart card of the mobile terminal. The smart card creates (7) a message by combining equipment specific information in the card and the random number, The message is digitally signed by the smart card and then sent (8) to the authentication server. The authentication server decrypts (9) the message arid compares the content to originally created message information. The authentication server sends (10) a confirmation to the service provider if the content of the message and said originally created message information correspond to each other. |