[go: up one dir, main page]

ES2411579R1 - SYSTEM AND PROCEDURE FOR USER CREDENTIAL CONTROL FOR ACCESS TO THIRD PARTY SERVICES IN MOBILE NETWORKS - Google Patents

SYSTEM AND PROCEDURE FOR USER CREDENTIAL CONTROL FOR ACCESS TO THIRD PARTY SERVICES IN MOBILE NETWORKS

Info

Publication number
ES2411579R1
ES2411579R1 ES201131968A ES201131968A ES2411579R1 ES 2411579 R1 ES2411579 R1 ES 2411579R1 ES 201131968 A ES201131968 A ES 201131968A ES 201131968 A ES201131968 A ES 201131968A ES 2411579 R1 ES2411579 R1 ES 2411579R1
Authority
ES
Spain
Prior art keywords
user
credentials
credential
procedure
access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
ES201131968A
Other languages
Spanish (es)
Other versions
ES2411579B1 (en
ES2411579A2 (en
Inventor
Calvo Antonio Manuel Amaya
Fuentes Miguel Ochoa
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Telefonica SA
Original Assignee
Telefonica SA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Telefonica SA filed Critical Telefonica SA
Priority to ES201131968A priority Critical patent/ES2411579B1/en
Publication of ES2411579A2 publication Critical patent/ES2411579A2/en
Publication of ES2411579R1 publication Critical patent/ES2411579R1/en
Application granted granted Critical
Publication of ES2411579B1 publication Critical patent/ES2411579B1/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Information Transfer Between Computers (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Sistema y procedimiento de control de credenciales de usuario para el acceso a servicios de terceras partes en redes móviles. Sistema y procedimiento para controlar credenciales proporcionadas por un usuario, en una red móvil con un servidor de terceras partes (2) y una aplicación de lado de cliente (1) que solicita acceso al servidor de terceras partes (2) en nombre del usuario, que comprenden: - un administrador de credenciales (21) para recuperar una identidad inequívoca del usuario y permitir al usuario identificado proporcionar credenciales auténticas para su uso por servicios protegidos del servidor de terceras partes (2) y credenciales falsas para su uso por la aplicación de lado de cliente (1), - un repositorio de almacenamiento de credenciales (23) en el que el administrador de credenciales (21) almacena las credenciales tanto auténticas como falsas en asociación con la identidad del usuario, - un reemplazador de credenciales (22) para detectar mensajes de autenticación en la comunicación entre la aplicación de lado de cliente (1) y el servidor de terceras partes (2) y reemplazar las credenciales falsas en los mensajes de autenticación detectados por las credenciales auténticas asociadas del repositorio de almacenamiento de credenciales (23).System and procedure for the control of user credentials for access to third party services in mobile networks. System and procedure for controlling credentials provided by a user, in a mobile network with a third-party server (2) and a client-side application (1) requesting access to the third-party server (2) on behalf of the user, comprising: - a credential administrator (21) to retrieve an unambiguous identity of the user and allow the identified user to provide authentic credentials for use by third-party server protected services (2) and false credentials for use by the application of client side (1), - a credential storage repository (23) in which the credential manager (21) stores both authentic and false credentials in association with the identity of the user, - a credential replacement (22) to detect authentication messages in the communication between the client side application (1) and the third party server (2) and replace the creden false certificates in authentication messages detected by the associated authentic credentials of the credential storage repository (23).

ES201131968A 2011-12-05 2011-12-05 SYSTEM AND PROCEDURE FOR USER CREDENTIALS CONTROL FOR ACCESS TO THIRD PARTY SERVICES IN MOBILE NETWORKS Expired - Fee Related ES2411579B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
ES201131968A ES2411579B1 (en) 2011-12-05 2011-12-05 SYSTEM AND PROCEDURE FOR USER CREDENTIALS CONTROL FOR ACCESS TO THIRD PARTY SERVICES IN MOBILE NETWORKS

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
ES201131968A ES2411579B1 (en) 2011-12-05 2011-12-05 SYSTEM AND PROCEDURE FOR USER CREDENTIALS CONTROL FOR ACCESS TO THIRD PARTY SERVICES IN MOBILE NETWORKS

Publications (3)

Publication Number Publication Date
ES2411579A2 ES2411579A2 (en) 2013-07-05
ES2411579R1 true ES2411579R1 (en) 2013-09-26
ES2411579B1 ES2411579B1 (en) 2014-08-08

Family

ID=48629030

Family Applications (1)

Application Number Title Priority Date Filing Date
ES201131968A Expired - Fee Related ES2411579B1 (en) 2011-12-05 2011-12-05 SYSTEM AND PROCEDURE FOR USER CREDENTIALS CONTROL FOR ACCESS TO THIRD PARTY SERVICES IN MOBILE NETWORKS

Country Status (1)

Country Link
ES (1) ES2411579B1 (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5586260A (en) * 1993-02-12 1996-12-17 Digital Equipment Corporation Method and apparatus for authenticating a client to a server in computer systems which support different security mechanisms
ES2233641T3 (en) * 2000-03-27 2005-06-16 E-PLUS MOBILFUNK GMBH & CO. KG CUSTOMER IDENTIFICATION PROCEDURE BASED ON THE NUMBER OF CALLS FOR CUSTOMIZABLE INTERNET PORTALS.
US20070006299A1 (en) * 2005-06-30 2007-01-04 Ian Elbury System and method of user credential management
US20070005801A1 (en) * 2005-06-21 2007-01-04 Sandeep Kumar Identity brokering in a network element
US20090125993A1 (en) * 2007-11-12 2009-05-14 International Business Machines Corporation Method for protecting against keylogging of user information via an alternative input device
US20110154459A1 (en) * 2009-02-03 2011-06-23 Randy Kuang Method and system for securing electronic transactions

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5586260A (en) * 1993-02-12 1996-12-17 Digital Equipment Corporation Method and apparatus for authenticating a client to a server in computer systems which support different security mechanisms
ES2233641T3 (en) * 2000-03-27 2005-06-16 E-PLUS MOBILFUNK GMBH & CO. KG CUSTOMER IDENTIFICATION PROCEDURE BASED ON THE NUMBER OF CALLS FOR CUSTOMIZABLE INTERNET PORTALS.
US20070005801A1 (en) * 2005-06-21 2007-01-04 Sandeep Kumar Identity brokering in a network element
US20070006299A1 (en) * 2005-06-30 2007-01-04 Ian Elbury System and method of user credential management
US20090125993A1 (en) * 2007-11-12 2009-05-14 International Business Machines Corporation Method for protecting against keylogging of user information via an alternative input device
US20110154459A1 (en) * 2009-02-03 2011-06-23 Randy Kuang Method and system for securing electronic transactions

Also Published As

Publication number Publication date
ES2411579B1 (en) 2014-08-08
ES2411579A2 (en) 2013-07-05

Similar Documents

Publication Publication Date Title
MX2020006875A (en) METHODS TO DETERMINE CATEGORIES OF ACCESS AND/OR CAUSES OF ESTABLISHMENT AND RELATED DEVICES.
CL2021000335A1 (en) Method and apparatus for the realization of secure connections through heterogeneous access networks
CU20170034A7 (en) METHODS AND DEVICE FOR THE RE-AUTHENTICATION ON DEMAND OF A SEVICE NETWORK BY A USER TEAM (EU)
AR083113A1 (en) PROCEDURES AND APPLIANCES FOR THE PROVISIONING OF ACCESS CREDENTIALS
CO2019013129A2 (en) Privacy flags to control authentication requests
MX2013000004A (en) Systems and methods for terminating communication requests.
EP3737071A3 (en) Method and system for internetwork communication with machine devices
BR112018070893A2 (en) beam management system and method
CL2018002724A1 (en) Systems and methods to provide a multi-factor personal identity verification based on a blockchain
MX2016013472A (en) Power management of mobile clients using location-based services.
AR086967A1 (en) AUTHENTICATION SYSTEM AND METHOD FOR ACCESS TO SERVICES
MX358557B (en) Wireless data privacy maintained through a social network.
MX2017007650A (en) Generating user notifications using beacons on online social networks.
WO2013106688A3 (en) Authenticating cloud computing enabling secure services
WO2015008158A8 (en) Securing method for lawful interception
AR081944A1 (en) METHOD AND APPLIANCE TO UNITE THE AUTHENTICATION OF THE SUBSCRIBER AND THE AUTHENTICATION OF THE DEVICE IN COMMUNICATION SYSTEMS
WO2014182816A3 (en) One-time pad communications network
BR112014014776A2 (en) Device, Systems, and IP Address Discovery Methods for Channeled Direct Link Configuration
BR112017019799A2 (en) device and method for sponsored wireless connectivity using application-specific network access credentials
BR112018001939A2 (en) wifi network access management system, wifi network access management method, and non-transient readable media
WO2012036992A8 (en) Mobile device and method for secure on-line sign-up and provisioning for wi-fi hotspots using soap-xml techniques
SA114350627B1 (en) Key agreement protocol
BR112017014984A2 (en) techniques for managing a remote network client from an app on a mobile device
GB2543441A (en) Per-user wireless traffic handling
GB2511225A (en) Method and device for dynamically selecting a DHCP server for a client terminal device

Legal Events

Date Code Title Description
FG2A Definitive protection

Ref document number: 2411579

Country of ref document: ES

Kind code of ref document: B1

Effective date: 20140808

FD2A Announcement of lapse in spain

Effective date: 20210915