| 摘要 |
<p>This invention describes a method to validate a transaction between a mobile terminal of the user and a requesting service provider via an authentication server. For that, a SMS authentication session is established between the authentication application of the mobile terminal's smart card of the user and a trusted third party in the network side when transaction exchange occurs between the user and the service provider. The authentication method of the invention, processed through SMS technology, guarantees the security of communication between the mobile terminal and the third party without requiring extra hardware or special client software to be installed on the user mobile terminal nor increasing the existing communication protocols, signaling resources and operation costs. Moreover, with the authentication method of the invention it is not just the identity of the user to guarantee but also that the user is really willing to make the transaction and that no one tricked the user by showing other information.</p> |
