[go: up one dir, main page]

WO2021015686A1 - A security system for a computer network - Google Patents

A security system for a computer network Download PDF

Info

Publication number
WO2021015686A1
WO2021015686A1 PCT/TR2019/050711 TR2019050711W WO2021015686A1 WO 2021015686 A1 WO2021015686 A1 WO 2021015686A1 TR 2019050711 W TR2019050711 W TR 2019050711W WO 2021015686 A1 WO2021015686 A1 WO 2021015686A1
Authority
WO
WIPO (PCT)
Prior art keywords
mobile device
electronic message
computer network
service
network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/TR2019/050711
Other languages
French (fr)
Inventor
Ahmet TOPRAKCI
Emrah USLU
Fatih Dogan
Kadir Can TOPRAKCI
Kivanc BAKDI
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Peakup Teknoloji AS
Original Assignee
Peakup Teknoloji AS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Peakup Teknoloji AS filed Critical Peakup Teknoloji AS
Priority to EP19849049.2A priority Critical patent/EP3847564A1/en
Publication of WO2021015686A1 publication Critical patent/WO2021015686A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/72Subscriber identity
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2131Lost password, e.g. recovery of lost or forgotten passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/12Messaging; Mailboxes; Announcements
    • H04W4/14Short messaging services, e.g. short message services [SMS] or unstructured supplementary service data [USSD]

Definitions

  • the present invention relates to a security system for a computer network with a directory service, particularly authentication systems processing user credentials.
  • Computer networks operate directory services to store password information and authenticate users to access any password protected services over the computer network.
  • a system administrator manually reset the password on the directory service and inform user manually.
  • the computer network provide a web based password reset system, user is obliged to fill out a web form and submit to the web server to submit a password reset request to the computer network.
  • a one time verification code is generated by the password reset system and user asked to use a graphical user interface to provide verification code in correct manner. This procedure is time consuming and for the most of the time very complex for an ordinary computer user.
  • EP3407536 discloses a server device in communication with a control panel device in a region can include a database of authorized users and phone numbers of mobile devices associated with the authorized users.
  • the control panel device can generate a onetime password or security token, and when the control panel device generates the onetime password or security token, the control panel device can use GSM capability to transmit the onetime password or security token to the server device, and the server device can identify from the database one of the authorized users associated with the region in which the control panel device is located, identify from the database the phone number of a mobile device associated with the one of the authorized users, and transmit the onetime password or security token to the mobile device associated with the one of the authorized users for use in programming and updating software or firmware of the control panel device.
  • the object of the invention is to facilitate providing a new permanent password upon request to a user allowing access to a password protected computer network.
  • invention relates to a security system for a computer network comprising an operation server accessible to a directory service of the computer network and a mobile device connected with the operation server by means of an electronic message service adapted to transmit electronic messages between the operation server and the mobile device.
  • an access control server in communication with a processor of the computer network is configured such that receive and parse a first electronic message from the mobile device into an identification data of the mobile device and a predetermined command, validate predetermined command with a stored pattern thereon; establish a data connection with the directory service via a network connection module and pair the device identification information with a registered user on a user database of the directory service, generate a permanent new password data for authorization of the registered user to the computer network by a security protocol and overwrite on a stored password data on the directory service with the new password data and send a second electronic message including new password data directly to the mobile device via electronic message service.
  • Security system provide easy access to the computer network by a user of the mobile device when the mobile device is known to the directory service of the computer network.
  • Directory service can be provided on the multiple operation servers for various services, e.g. active directory, SAP directory etc. distributed over the computer network communicating with the access control server using TCP/IP protocol.
  • a single first message to the access control server will suffice to retrieve the new password data without any need for a further security steps to be followed by the user of the mobile device.
  • additional security measures can be taken.
  • the permanent password means a password that is not changing during each cycle of the described operation.
  • the password in the second electronic message can be a temporary password for the operation server and user can be forced to change the password after using the permanent password provided in the second electronic message.
  • the operation server can be a single server or can be a group of servers providing single or integrated directory service of various services.
  • the processor under the computer network belong to the operation server.
  • the processor can be a CPU provided at the access control server.
  • the electronic message service is an SMS service over a GSM network provided by a GSM operator. SMS prioritization is provided by the GSM operator so that resources of security system is not allocated by such a task. This allow installation of a scalable security system in an affordable cost.
  • the identification data is GSM subscription number assigned by the GSM network. Simply registration of the GSM subscription number to the directory service of the computer network will allow easy authentication by the access control server to provide a sensitive information, i.e. new password data to user of the mobile device.
  • the access control server is equipped with a SIM shield in a persistent connection with the GSM network.
  • the access control server on various computer networks provide with persistent connection with the GSM network over the electronic messaging service and will allow any user to access new password data to access the computer network at any time.
  • the access control server further comprises a memory module in which a pattern for predetermined command is stored such that access control server is enabled to terminate the remaining process when predetermined command does not match with the stored pattern.
  • Memory module can be RAM or any SSD or hard drive storing the pattern for a predetermined command to compare with the first message.
  • Integrated memory module provide box type server device running as access control server to be installed in a computer network.
  • Predetermined command can be any alphanumerical character or a gesture data captured by the mobile device. In some instances, predetermined command can be blank.
  • the network connection module is configured to access local area network to establish a data connection with the directory service on the computer network. Therefore, instant access to the operation server by the access control server is possible.
  • data connection can be encrypted over an SSL protocol.
  • an operating method for a mobile device comprising the steps of sending a first electronic message having an identification data of the mobile device and a predetermined command for password renewal request from the mobile device to an access control server under a computer network by means of a first electronic message; interpretation of the first electronic message by an operation server at the computer network via LAN connection to the access control server to parse into an identification data and a predetermined command; validate the predetermined command with a stored pattern thereon; connect to a directory service; pair a registered user on a user database of the directory service using the identification data; generate a new password data for the registered user and overwrite on a stored password data.
  • the electronic messaging service connecting the mobile device and the access control server is SMS over a GSM network.
  • Figure 1 shows a schematic view of a security system for a computer network according to an exemplary application of the present invention.
  • FIG. 1 a security system for a computer network (1 ) is schematically shown.
  • An operation server (10) namely a group of servers providing various services in the same network area, e.g. operating system, ERP, CRM, etc. is actively connected or separately providing a directory service (12) to the computer network (1 ) under a known protocol, e.g. Active Directory, LDAP, from an assigned port and handle requests from the computer network (1 ).
  • a directory service store user information such as, username, password, mobile phone number, e-mail address, role of the user, etc. in an encrypted manner.
  • Mobile device (20) which is equipped with a SIM Card (22) having an assigned mobile phone number as identification data (261 ) to change a stored password data (A) on the directory service (12).
  • Mobile device (20) is a cell phone with graphical user interface or SIM interface to send an electronic message through electronic messaging service (32) of a GSM network (30).
  • An access control server (40) in the computer network (1 ) is arranged such that post data to the directory service (12) of the operation server (10) using a middleware (50) running on the operation server (10).
  • Access control server (40) has a processor (42), a memory module (43) and a network connection module (44) which are connected to each other in an electronic signal transmitting manner.
  • a SIM shield (48) is adapted into the access control server (40) providing access to the GSM network (30) by means of a SIM card inserted inside the SIM shield (48).
  • a GSM operator has assigned a unique subscription number to the SIM card inside the SIM shield (48) and configured such that allowing access to the electronic messaging service (32), namely SMS service.
  • the middleware (50) run on the operation control server (10) interprets the electronic messages received by the SIM shield (46).
  • the middleware (50) is a piece of software run by a processor and has full access rights on the directory service (12) and in connection with the access control server (40) by means of the network connection module (44) and can send electronic messages to the access control server (40).
  • the access control server (40) forward the electronic messages by means of the SIM shield (48) to the GSM network.
  • GSM operator of the GSM network (30) has means to prioritize the messages to the SIM shield (48) and provide a number of electronic messages, namely SMS to the access control server (40) by means of the SIM shield (48).
  • Access control server (40) persistently connected to the GSM network (30) by SIM shield (48).
  • GSM network (30) provide a list of electronic messages
  • access control server (40) initiate a read and validation procedure by running software commands for each one of the electronic messages independently. If the first electronic message (26) is unreadable, access control server (40) break the interpretation operation and terminate the first electronic message (26). Otherwise, forward the first electronic message (26) to the middleware (50) over the network connection module (44).
  • Middleware (50) running on the operation server (10) initiate a parse procedure and split the first electronic message into several pieces including an identification data (261 ) and a predetermined command (262).
  • Identification data (261 ) is the assigned subscriber number of the SIM card (22) in the mobile device (20).
  • Middleware (50) establish a connection with the directory service (12) to check phone number information of the users registered to the directory service (12). If the identification data pairs with a user with the identification data (261 ) generate a new password data (B) according to the internal password policy of the computer network and send a command to the directory service (12) to overwrite a stored password data (A) accordingly. If the password change at the directory service (12) is successful, middleware (50) prepare a plain text password information from the new password data (B) and forward the access control server (40) to create an electronic message as the second electronic message (46) and send back to the mobile device (20) over the GSM network (30) using SIM shield (48). The user receive the new password data (B) from the mobile device (20). User can be able to access operation server (10) using the new password data (B) over the secure internet connection (14) using the computer (60).
  • Operation server 32 Electronic messaging service

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • Computing Systems (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephone Function (AREA)

Abstract

A security system for a computer network (1) comprising an operation server (10) accessible to a directory service (12) of the computer network (1) and a mobile device (20) connected with the operation server (10) by means of an electronic message service (32) adapted to transmit electronic messages between the operation server (10) and the mobile device (20). The security system further comprises an access control server (40) with a processor (42) which is configured to receive and parse a first electronic message (26) from the mobile device (20), establish a data connection with the directory service (12) via a network connection module (44) and pair the device identification information (26) with a registered user on a user database of the directory service (12), generate a new password data (A) for authorization of the registered user to the computer network (1) by a security protocol and overwrite on a stored password data (B) on the directory service (12) with the new password data (A) and send a second electronic message (46) including new password data (B) directly to the mobile device (20) via electronic message service.

Description

A SECURITY SYSTEM FOR A COMPUTER NETWORK
TECHNICAL FIELD
The present invention relates to a security system for a computer network with a directory service, particularly authentication systems processing user credentials.
PRIOR ART
Computer networks operate directory services to store password information and authenticate users to access any password protected services over the computer network. When a user forgot the password, a system administrator manually reset the password on the directory service and inform user manually. If the computer network provide a web based password reset system, user is obliged to fill out a web form and submit to the web server to submit a password reset request to the computer network. Additionally, a one time verification code is generated by the password reset system and user asked to use a graphical user interface to provide verification code in correct manner. This procedure is time consuming and for the most of the time very complex for an ordinary computer user.
EP3407536 discloses a server device in communication with a control panel device in a region can include a database of authorized users and phone numbers of mobile devices associated with the authorized users. In these embodiments, the control panel device can generate a onetime password or security token, and when the control panel device generates the onetime password or security token, the control panel device can use GSM capability to transmit the onetime password or security token to the server device, and the server device can identify from the database one of the authorized users associated with the region in which the control panel device is located, identify from the database the phone number of a mobile device associated with the one of the authorized users, and transmit the onetime password or security token to the mobile device associated with the one of the authorized users for use in programming and updating software or firmware of the control panel device.
SUMMARY OF THE INVENTION
The object of the invention is to facilitate providing a new permanent password upon request to a user allowing access to a password protected computer network. In order to achieve above objective, invention relates to a security system for a computer network comprising an operation server accessible to a directory service of the computer network and a mobile device connected with the operation server by means of an electronic message service adapted to transmit electronic messages between the operation server and the mobile device. In a preferred application, an access control server in communication with a processor of the computer network is configured such that receive and parse a first electronic message from the mobile device into an identification data of the mobile device and a predetermined command, validate predetermined command with a stored pattern thereon; establish a data connection with the directory service via a network connection module and pair the device identification information with a registered user on a user database of the directory service, generate a permanent new password data for authorization of the registered user to the computer network by a security protocol and overwrite on a stored password data on the directory service with the new password data and send a second electronic message including new password data directly to the mobile device via electronic message service. Security system provide easy access to the computer network by a user of the mobile device when the mobile device is known to the directory service of the computer network. Directory service can be provided on the multiple operation servers for various services, e.g. active directory, SAP directory etc. distributed over the computer network communicating with the access control server using TCP/IP protocol. A single first message to the access control server will suffice to retrieve the new password data without any need for a further security steps to be followed by the user of the mobile device. In a possible application, additional security measures can be taken. Herein the permanent password means a password that is not changing during each cycle of the described operation. The password in the second electronic message can be a temporary password for the operation server and user can be forced to change the password after using the permanent password provided in the second electronic message. The operation server can be a single server or can be a group of servers providing single or integrated directory service of various services. In a possible application, the processor under the computer network belong to the operation server. In another application, the processor can be a CPU provided at the access control server.
In a preferred application, the electronic message service is an SMS service over a GSM network provided by a GSM operator. SMS prioritization is provided by the GSM operator so that resources of security system is not allocated by such a task. This allow installation of a scalable security system in an affordable cost. In another preferred application, the identification data is GSM subscription number assigned by the GSM network. Simply registration of the GSM subscription number to the directory service of the computer network will allow easy authentication by the access control server to provide a sensitive information, i.e. new password data to user of the mobile device.
In another preferred application, the access control server is equipped with a SIM shield in a persistent connection with the GSM network. Thereby, the access control server on various computer networks provide with persistent connection with the GSM network over the electronic messaging service and will allow any user to access new password data to access the computer network at any time.
In another preferred application, the access control server further comprises a memory module in which a pattern for predetermined command is stored such that access control server is enabled to terminate the remaining process when predetermined command does not match with the stored pattern. Memory module can be RAM or any SSD or hard drive storing the pattern for a predetermined command to compare with the first message. Integrated memory module provide box type server device running as access control server to be installed in a computer network. Predetermined command can be any alphanumerical character or a gesture data captured by the mobile device. In some instances, predetermined command can be blank.
In a preferred application, the network connection module is configured to access local area network to establish a data connection with the directory service on the computer network. Therefore, instant access to the operation server by the access control server is possible. In order to comply with security requirements of the computer network, data connection can be encrypted over an SSL protocol.
In order to achieve above objective, an operating method for a mobile device comprising the steps of sending a first electronic message having an identification data of the mobile device and a predetermined command for password renewal request from the mobile device to an access control server under a computer network by means of a first electronic message; interpretation of the first electronic message by an operation server at the computer network via LAN connection to the access control server to parse into an identification data and a predetermined command; validate the predetermined command with a stored pattern thereon; connect to a directory service; pair a registered user on a user database of the directory service using the identification data; generate a new password data for the registered user and overwrite on a stored password data. In a preferred application, further comprising the step of sending a second electronic message including new password data directly to the mobile device over an electronic messaging service.
In a preferred application, the electronic messaging service connecting the mobile device and the access control server is SMS over a GSM network.
BRIEF DESCRIPTON OF THE DRAWINGS
Figure 1 shows a schematic view of a security system for a computer network according to an exemplary application of the present invention.
DETAILED DESCRIPTION
While this invention is susceptible of an embodiment in many different forms, there are shown in the drawings and will be described herein in detail specific embodiments thereof with the understanding that the present disclosure is to be considered as an exemplification of the principles of the invention. It is not intended to limit the invention to the specific illustrated embodiments.
Figure 1 , a security system for a computer network (1 ) is schematically shown. An operation server (10), namely a group of servers providing various services in the same network area, e.g. operating system, ERP, CRM, etc. is actively connected or separately providing a directory service (12) to the computer network (1 ) under a known protocol, e.g. Active Directory, LDAP, from an assigned port and handle requests from the computer network (1 ). Outside traffic through the computer network (1 ) is managed by a firewall (not shown) blocking unauthorized requests to the computer network (1 ) and allow remote users to access operation server (10) via secure internet communication (14). The directory service (12) store user information such as, username, password, mobile phone number, e-mail address, role of the user, etc. in an encrypted manner. When a user try to login the computer network (1 ) using a computer (60) login request including username and password verified by operation server (10) via directory service (12) and unauthorized access requests are refused. If a user forgot current password information, the password is reset by an administrator having access to change password information.
Alternatively, user operate a mobile device (20) which is equipped with a SIM Card (22) having an assigned mobile phone number as identification data (261 ) to change a stored password data (A) on the directory service (12). Mobile device (20) is a cell phone with graphical user interface or SIM interface to send an electronic message through electronic messaging service (32) of a GSM network (30).
An access control server (40) in the computer network (1 ) is arranged such that post data to the directory service (12) of the operation server (10) using a middleware (50) running on the operation server (10). Access control server (40) has a processor (42), a memory module (43) and a network connection module (44) which are connected to each other in an electronic signal transmitting manner. Additionally, a SIM shield (48) is adapted into the access control server (40) providing access to the GSM network (30) by means of a SIM card inserted inside the SIM shield (48). A GSM operator has assigned a unique subscription number to the SIM card inside the SIM shield (48) and configured such that allowing access to the electronic messaging service (32), namely SMS service. The middleware (50) run on the operation control server (10) interprets the electronic messages received by the SIM shield (46). The middleware (50) is a piece of software run by a processor and has full access rights on the directory service (12) and in connection with the access control server (40) by means of the network connection module (44) and can send electronic messages to the access control server (40). The access control server (40) forward the electronic messages by means of the SIM shield (48) to the GSM network.
When a user of the mobile device (20) forgot the password stored on the directory service (12), e.g. active directory password to remotely access operating system, create and send an SMS and send the message as a first electronic message (26) to the assigned phone number of the SIM shield (48) by accessing GSM network (30). GSM operator of the GSM network (30) has means to prioritize the messages to the SIM shield (48) and provide a number of electronic messages, namely SMS to the access control server (40) by means of the SIM shield (48).
Access control server (40) persistently connected to the GSM network (30) by SIM shield (48). When GSM network (30) provide a list of electronic messages, access control server (40) initiate a read and validation procedure by running software commands for each one of the electronic messages independently. If the first electronic message (26) is unreadable, access control server (40) break the interpretation operation and terminate the first electronic message (26). Otherwise, forward the first electronic message (26) to the middleware (50) over the network connection module (44). Middleware (50) running on the operation server (10) initiate a parse procedure and split the first electronic message into several pieces including an identification data (261 ) and a predetermined command (262). Identification data (261 ) is the assigned subscriber number of the SIM card (22) in the mobile device (20). Middleware (50) establish a connection with the directory service (12) to check phone number information of the users registered to the directory service (12). If the identification data pairs with a user with the identification data (261 ) generate a new password data (B) according to the internal password policy of the computer network and send a command to the directory service (12) to overwrite a stored password data (A) accordingly. If the password change at the directory service (12) is successful, middleware (50) prepare a plain text password information from the new password data (B) and forward the access control server (40) to create an electronic message as the second electronic message (46) and send back to the mobile device (20) over the GSM network (30) using SIM shield (48). The user receive the new password data (B) from the mobile device (20). User can be able to access operation server (10) using the new password data (B) over the secure internet connection (14) using the computer (60).
REFERENCE NUMBERS
1 Computer network 30 GSM network
10 Operation server 32 Electronic messaging service
12 Directory service 40 Access control server
14 Secure internet connection 42 Processor
20 Mobile device 43 Memory module
22 SIM Card 44 Network connection module
24 GSM Connection 46 Second electronic message
26 First electronic message 48 SIM Shield
261 Identification data 50 Middleware
262 Predetermined command 60 Computer
A Stored password data
B New password data

Claims

1 - A security system for a computer network (1) comprising an operation server (10) accessible to a directory service (12) of the computer network (1 ) and a mobile device (20) connected with the operation server (10) by means of an electronic message service (32) adapted to transmit electronic messages between the operation server (10) and the mobile device (20) characterized in that an access control server (40) in communication with a processor (42) of the computer network (1 ) is configured such that receive and parse a first electronic message (26) from the mobile device (20) into an identification data (261 ) of the mobile device (20) and a predetermined command (262), validate predetermined command (262) with a stored pattern thereon; establish a data connection with the directory service (12) via a network connection module (44) and pair the device identification information (26) with a registered user on a user database of the directory service (12), generate a permanent new password data (A) for authorization of the registered user to the computer network (1 ) by a security protocol and overwrite on a stored password data (B) on the directory service (12) with the new password data (A) and send a second electronic message (46) including new password data (B) directly to the mobile device (20) via electronic message service.
2- A security system according to claim 1 , wherein the electronic message service (32) is SMS service over a GSM network (30) provided by a GSM operator.
3- A security system according to claim 2, wherein the identification data (261 ) is GSM subscription number assigned by the GSM network (30).
4- A security system according to claims 2-3, wherein the access control server (40) is equipped with a SIM shield (48) in a persistent connection with the GSM network (30).
5- A security system according to any one of the preceding claims, wherein the network connection module (44) is configured to access local area network to establish a data connection with the directory service (12) on the computer network (1 ).
6- An operating method for a mobile device (20) characterized by comprising the steps of sending a first electronic message (26) having an identification data (261 ) of the mobile device (20) and a predetermined command (262) for password renewal request from the mobile device (20) to an access control server (40) under a computer network (1 ) by means of a first electronic message (26); interpretation of the first electronic message (26) by an operation server (10) at the computer network (1 ) via LAN connection to the access control server (40) to parse into an identification data (261 ) and a predetermined command (262); validate the predetermined command (262) with a stored pattern thereon; connect to a directory service (12); pair a registered user on a user database of the directory service (12) using the identification data (262); generate a new password data (A) for the registered user and overwrite on a stored password data (B) and send a second electronic message (46) including new password data (B) directly to the mobile device (20) over an electronic messaging service (32). 7- An operating method for a mobile device (20) according to claim 7, wherein the electronic messaging service (32) connecting the mobile device (20) and the access control server (40) is SMS over a GSM network.
PCT/TR2019/050711 2019-07-23 2019-08-28 A security system for a computer network Ceased WO2021015686A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
EP19849049.2A EP3847564A1 (en) 2019-07-23 2019-08-28 A security system for a computer network

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
TR201911013 2019-07-23
TR2019/11013 2019-07-23

Publications (1)

Publication Number Publication Date
WO2021015686A1 true WO2021015686A1 (en) 2021-01-28

Family

ID=69528930

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/TR2019/050711 Ceased WO2021015686A1 (en) 2019-07-23 2019-08-28 A security system for a computer network

Country Status (2)

Country Link
EP (1) EP3847564A1 (en)
WO (1) WO2021015686A1 (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001091486A1 (en) * 2000-05-22 2001-11-29 Bolt Media Ltd. Informing a subscriber about the position of another subscriber
US20070190995A1 (en) * 2006-02-13 2007-08-16 Nokia Corporation Remote control of a mobile device
US20100004980A1 (en) * 2006-01-20 2010-01-07 Berkley Bowen Systems and methods for managing product and consumer information
US8503988B2 (en) * 2007-08-31 2013-08-06 At&T Mobility Ii Llc Systems and methods for providing a password reset feature
EP3407536A1 (en) 2017-05-26 2018-11-28 Honeywell International Inc. Systems and methods for providing a secured password and authentication mechanism for programming and updating software or firmware

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001091486A1 (en) * 2000-05-22 2001-11-29 Bolt Media Ltd. Informing a subscriber about the position of another subscriber
US20100004980A1 (en) * 2006-01-20 2010-01-07 Berkley Bowen Systems and methods for managing product and consumer information
US20070190995A1 (en) * 2006-02-13 2007-08-16 Nokia Corporation Remote control of a mobile device
US8503988B2 (en) * 2007-08-31 2013-08-06 At&T Mobility Ii Llc Systems and methods for providing a password reset feature
EP3407536A1 (en) 2017-05-26 2018-11-28 Honeywell International Inc. Systems and methods for providing a secured password and authentication mechanism for programming and updating software or firmware

Also Published As

Publication number Publication date
EP3847564A1 (en) 2021-07-14

Similar Documents

Publication Publication Date Title
CN110324287B (en) Access authentication method, device and server
US8589675B2 (en) WLAN authentication method by a subscriber identifier sent by a WLAN terminal
JP5926441B2 (en) Secure authentication in multi-party systems
CN110855621B (en) Method for controlling access to an in-vehicle wireless network
CA2744971C (en) Secure transaction authentication
CN100438421C (en) Method and system for conducting user verification to sub position of network position
EP2924944B1 (en) Network authentication
CN103119975B (en) User account recovers
US9787678B2 (en) Multifactor authentication for mail server access
US20200382500A1 (en) Methods, systems, and computer readable mediums for securely establishing credential data for a computing device
US11768930B2 (en) Application authenticity verification in digital distribution systems
KR101473719B1 (en) Intelligent login authentication system and method thereof
CN118842617A (en) Cross-device login method, device and storage medium
WO2021015686A1 (en) A security system for a computer network
US12063215B2 (en) Method for configuring access to an internet service
CN115834114A (en) Method for logging in bastion machine, system and storage medium
US20250233856A1 (en) Systems and methods for authenticating account changes in a wireless network
CN114531303B (en) Server port hiding method and system
CN120658535A (en) Campus broadband access management system and method
HK40061824A (en) Method, system and apparatus for remotely accessing application, and device and storage medium
CN116796305A (en) Data center access method, device, equipment and medium
JP2016143397A (en) Terminal detection system and method
HK40016152A (en) Methods, systems and media for authorizing transactions over communication channels
KR20130124448A (en) Legitimacy checking login authentication system and method thereof

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19849049

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2019849049

Country of ref document: EP

Effective date: 20210406

NENP Non-entry into the national phase

Ref country code: DE