| 发明名称 | Method and system for authenticating a user by means of an application | ||
| 摘要 | A user may be authenticated by an application. The user may be in possession of a user-specific card, which may store a user ID (UID), an operator ID (SID), and a plurality of application IDs (AIDn), and other related data. The card may provide data for implementing a plurality of security steps, performed individually or in combination, as chosen depending on a desired security level and/or the application. In a first security step, the application may read from the card the user ID (UID) from the card. In a second security step, the application may read out the operator ID (SID) and forward it to a server of an operator, which may then verify the operator ID (SID). In a third security step, the application may read out and verify its corresponding application ID (AIDn). The application may request additional information for the user from the server, using the user ID (UID). | ||
| 申请公布号 | US9047497(B2) | 申请公布日期 | 2015.06.02 |
| 申请号 | US201213679580 | 申请日期 | 2012.11.16 |
| 申请人 | SWISSCOM AG | 发明人 | Straumann Hugo |
| 分类号 | G06K5/00;G06K7/08;G06K19/07;G06F21/35 | 主分类号 | G06K5/00 |
| 代理机构 | McAndrews, Held & Malloy, Ltd. | 代理人 | McAndrews, Held & Malloy, Ltd. |
| 主权项 | 1. A method, comprising: authenticating a user based on a user-specific card, wherein the user is in possession of the card, the authenticating comprising: reading out from the card and authenticating by an application, a user ID (UID) that is stored in the card;reading out from the card by the application an operator ID (SID) that is stored in the card, and forwarding the operator ID (SID) to a server of a particular operator;verifying by the server the operator ID (SID); andcommunicating by the server a result of the verification of the operator ID (SID) to the application. | ||
| 地址 | CH | ||