| 发明名称 | User authentication | ||
| 摘要 | A method of authenticating access to a service comprises: a) receiving at a mobile terminal, over a bi-directional near-field communication channel between the mobile terminal and a browser, at least part of the identifier of a service; b) comparing, at the mobile terminal, at least part of the identifier received at the mobile terminal with a set of identifiers stored in the mobile device; and c) authenticating access to the service on the basis of whether at least part of the identifier received at the mobile terminal matches an identifier in the set. The mobile terminal may stored a set of URLs, and may compare a received URL (or part URL) with the set of stored URLs. It may generate an alert to the user if at least part of the URL received at the mobile terminal does not match a stored URL. User names and keys are not required to be stored on the web-browser, so the web-browser does not need to maintain a password database. This improves security, since a password database would be vulnerable to malicious code. | ||
| 申请公布号 | US8875232(B2) | 申请公布日期 | 2014.10.28 |
| 申请号 | US200913201694 | 申请日期 | 2009.02.18 |
| 申请人 | Telefonaktiebolaget L M Ericsson (publ) | 发明人 | Blom Rolf;Barriga Luis;Norrman Karl |
| 分类号 | H04L29/06;H04W12/06;H04L29/08 | 主分类号 | H04L29/06 |
| 代理机构 | Rothwell, Figg, Ernst & Manbeck, P.C. | 代理人 | Rothwell, Figg, Ernst & Manbeck, P.C. |
| 主权项 | 1. A method of authenticating access to a service, the method comprising: a) receiving, at a first terminal that is in close proximity to a second terminal, at least part of a service identifier that identifies a service provided by a server to which the second terminal seeks access, wherein the at least part of the service identifier is received at the first terminal over a near-field communication (NFC) channel between the first terminal and the second terminal; b) determining, at the first terminal, whether the received at least part of the service identifier corresponds to one or more approved services for the second terminal, wherein information indicating whether a service is approved for the second terminal is stored in the first terminal; c) if it is determined by the first terminal that the received at least part of the service identifier matches an approved service for the second terminal, displaying on a display of the first terminal: (1) information relating to the at least part of the service identifier, and (2) a request for a user to interact with the first terminal to provide consent to allow or deny the second terminal access to the service; d) receiving, at the first terminal, consent from the user to allow or deny the second terminal to access the service; e) generating, at the first terminal, a key to authenticate access to the service if the received response from the user indicates that the user consents to allowing the second terminal to access the service; f) transmitting the key from the first terminal to the second terminal over the near-field communication (NFC) channel to allow the user to access the service with the second terminal; and g) generating, at the first terminal, an audible or tactile indication if the at least part of the service identifier matchers an approved service identifier. | ||
| 地址 | Stockholm SE | ||