| 摘要 |
A very efficient authentication and authorisation check in n:m relationships is possible with a method for checking the entitlement of a user of a telecommunication terminal ( 1 ) to a service, whereby an access device ( 4 ) on a telecommunication network ( 3 ) obtains at least one certificate and a proof of identity ( 10 ) from the telecommunication terminal ( 1 ), whereupon NMT ( 5 ) together with a certification device ( 7 ) carries out a check of whether the certificate giving the identity is valid and has a positive status and whether particular authorisation may be obtained from complementary certificates. Should the above be the case, a secret (for example a session key) is transmitted ( 15 ) to the access device ( 4 ) which is also sent ( 15, 16 ) to the telecommunication terminal ( 1, 2 ), encoded with at least the public key. The access device ( 4 ) is then activated with a policy corresponding to the rights of the telecommunication user.
|
