摘要 |
A mobile device application is provided which authenticates a user at a physical location by capturing a challenge code S3.3, such as a 2D barcode or QR code, at that location from a local service 8, generating a response to the challenge code which is sent for validation S3.5 with a remote authentication service 4 which returns a confirmation code, such as another 2D barcode, which the mobile device/user then presents S3.6 for validation at the local service. This validation may also involve the remote authentication service. The challenge code is generated independently of any user authentication session and may be indicative of the physical location of the local service or the time at which the challenge is presented. Another mobile telephony device application is operable to authenticate a user and initiate a telephone call to a remote service, including sending a call identifier to the remote service. A further mobile device application validates a user during a secure messaging session with a remote service responding to an authentication request by sending an authorisation message. |