摘要 |
<p>A method for enabling limitation of service access is disclosed, wherein a service provider (SP) offers at least one service (SR) and wherein a user (U) possesses multiple different digital identities Ii that can be used to invoke or register with said service (SR), access to said service (SR) requiring an account at a third party entity, wherein the user (U) registers his digital identities Ii with said account and wherein the user (U) agrees on a secret S with said third party entity, the method comprising the steps of: the user (U) assigning to his different digital identities Ii counter values ki, SR the user (U) requesting said service (SR) employing a specific digital identity Ii and calculating a verification value - first verification value V1 - by applying an encryption algorithm H on said secret S and said counter value ki,SR assigned to the digital identity Ii employed for said service request, said third party entity receiving said first verification value V1, applying said encryption algorithm H to reconstruct said employed counter value ki, SR and providing information of whether the reconstructed counter value ki, SR exceeds a limit limSR.</p> |