[go: up one dir, main page]

WO1997017791A2 - Dispositif d'authentification d'utilisateur par signaux acoustiques en relation avec un terminal telephonique - Google Patents

Dispositif d'authentification d'utilisateur par signaux acoustiques en relation avec un terminal telephonique Download PDF

Info

Publication number
WO1997017791A2
WO1997017791A2 PCT/DE1996/001814 DE9601814W WO9717791A2 WO 1997017791 A2 WO1997017791 A2 WO 1997017791A2 DE 9601814 W DE9601814 W DE 9601814W WO 9717791 A2 WO9717791 A2 WO 9717791A2
Authority
WO
WIPO (PCT)
Prior art keywords
acoustic signals
user
pbx
telephone set
authentication
Prior art date
Application number
PCT/DE1996/001814
Other languages
German (de)
English (en)
Other versions
WO1997017791A3 (fr
Inventor
Michael Horn
Original Assignee
Siemens Aktiengesellschaft
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Siemens Aktiengesellschaft filed Critical Siemens Aktiengesellschaft
Publication of WO1997017791A2 publication Critical patent/WO1997017791A2/fr
Publication of WO1997017791A3 publication Critical patent/WO1997017791A3/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M3/00Automatic or semi-automatic exchanges
    • H04M3/38Graded-service arrangements, i.e. some subscribers prevented from establishing certain connections
    • H04M3/382Graded-service arrangements, i.e. some subscribers prevented from establishing certain connections using authorisation codes or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M3/00Automatic or semi-automatic exchanges
    • H04M3/42Systems providing special services or facilities to subscribers
    • H04M3/42314Systems providing special services or facilities to subscribers in private branch exchanges
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q3/00Selecting arrangements
    • H04Q3/58Arrangements providing connection between main exchange and sub-exchange or satellite
    • H04Q3/62Arrangements providing connection between main exchange and sub-exchange or satellite for connecting to private branch exchanges
    • H04Q3/625Arrangements in the private branch exchange
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q2213/00Indexing scheme relating to selecting arrangements in general and for multiplex systems
    • H04Q2213/13095PIN / Access code, authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q2213/00Indexing scheme relating to selecting arrangements in general and for multiplex systems
    • H04Q2213/13109Initializing, personal profile
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q2213/00Indexing scheme relating to selecting arrangements in general and for multiplex systems
    • H04Q2213/1322PBX
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q2213/00Indexing scheme relating to selecting arrangements in general and for multiplex systems
    • H04Q2213/13224Off-net subscriber, dial in to/out from network, teleworking
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q2213/00Indexing scheme relating to selecting arrangements in general and for multiplex systems
    • H04Q2213/13282Call forward, follow-me, call diversion
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q2213/00Indexing scheme relating to selecting arrangements in general and for multiplex systems
    • H04Q2213/13378Speech recognition, speech analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q2213/00Indexing scheme relating to selecting arrangements in general and for multiplex systems
    • H04Q2213/13384Inter-PBX traffic, PBX networks, e.g. corporate networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q2213/00Indexing scheme relating to selecting arrangements in general and for multiplex systems
    • H04Q2213/13405Dual frequency signaling, DTMF

Definitions

  • Private telecommunications systems (Private Branch Exchanges, PBX) today offer a wide range of features that can normally only be used by end devices that are directly connected to the PBX. Access to these features from outside, ie via the public network, is often not possible or blocked.
  • this DISA functionality not only offers advantages, but it also entails the risk of unauthorized use, which can result in high damage.
  • the present invention is therefore based on the object of specifying technical means which enable external access to protected performance features of private telecommunications systems (for example via the public network) while largely respecting the legitimate security interests of the operator of such private telecommunications systems.
  • This object is achieved by a device for performing user authentication with the aid of acoustic signals in connection with a telephone terminal with features according to claim 1.
  • This device comprises means for activating the device by a user, means for generating acoustic signals suitable for user authentication after activation and means for outputting acoustic signals in a suitable for transmission by a telephone terminal Wise.
  • the present invention is not restricted to applications in connection with private telephone systems, but rather that the present invention is generally used to carry out user authentication using acoustic signals in connection with a telephone end ⁇ device can be used. Any device that can receive commands in the form of acoustic signals via telephone lines is a possible field of application of the present invention.
  • the invention in this application is essentially to be described using the example of private telecommunications systems be, especially since it is riding to the expert no problems be ⁇ to run from this example another application of the invention.
  • the invention described here provides a separate small terminal (the "SecureDialer") for access control to a PBX, which enables external access to the PBX.
  • the SecureDialer is constructed like an auto dialer - that is, a device for generating acoustic signals for carrying out a dialing process in private or public telecommunications networks - which can be held against the mouthpiece of a telephone handset and which is used for automatic dialing enables phone numbers in the DTMF procedure via a built-in loudspeaker.
  • the SecureDialer additionally contains a data storage unit, preferably also a data processing unit, e.g. a crypto chip for encrypting information and possibly (depending on the authentication method used) an additional microphone.
  • Suitable authentication algorithms are known in large numbers to the person skilled in the art from the extensive specialist literature.
  • the publication "Information technology - Security techniques - Entity authentication - Part 2: Mechanisms using Symmetrie eneipherment algorithms" of the international standard ISO / IEC 9798-2: 1994 (E) is given here as an example, but not by way of limitation can serve the person skilled in the art as a possible source of information.
  • a remote station an authentication server, is required in the PBX to enable secure access to the PBX.
  • Access to the PBX is as follows: authentication is carried out between the external caller and the authentication server. To do this, the caller must first dial the number of the authentication server from any telephone. This can be done using both pulse and tone dialing. Depending on whether a (a) one-way or (b) two-way authentication method (see e.g. ISO / IEC 9798-2) is used, the further connection establishment preferably proceeds as follows:
  • the SecureDialer sends encrypted information (Token AB, see figure (2) in Appendix 2) in the DTMF process, which is decrypted and checked by the authentication server. If the token AB is correct, the calling subscriber is allowed to access the PBX features. He can now carry out the desired actions (e.g. dialing a phone number).
  • Token AB see figure (2) in Appendix 2
  • the authentication server After the authentication server has been selected, it sends a random number RB (see figure (3) in Appendix 2) to the SecureDialer via DTMF.
  • the SecureDialer which in this variant must have a microphone, calculates a value from RB, encrypts it to token AB and sends it to the authentication server. This decrypts and checks the token. If the token AB is correct, the calling subscriber is admitted for access to the PBX service features. He can now carry out the desired actions (e.g. dialing a phone number).

Landscapes

  • Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Physics & Mathematics (AREA)
  • Astronomy & Astrophysics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Telephonic Communication Services (AREA)
  • Telephone Function (AREA)
  • Devices For Supply Of Signal Current (AREA)

Abstract

Le dispositif selon l'invention comprend des moyens de mise en action par un utilisateur, des moyens de production de signaux acoustiques appropriés pour l'authentification de l'utilisateur une fois la mise en action effectuée, ainsi que des moyens pour l'émission des signaux acoustiques d'une manière appropriée pour la transmission par un terminal téléphonique.
PCT/DE1996/001814 1995-11-03 1996-09-25 Dispositif d'authentification d'utilisateur par signaux acoustiques en relation avec un terminal telephonique WO1997017791A2 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DE19541073.4 1995-11-03
DE19541073 1995-11-03

Publications (2)

Publication Number Publication Date
WO1997017791A2 true WO1997017791A2 (fr) 1997-05-15
WO1997017791A3 WO1997017791A3 (fr) 2001-09-13

Family

ID=7776580

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/DE1996/001814 WO1997017791A2 (fr) 1995-11-03 1996-09-25 Dispositif d'authentification d'utilisateur par signaux acoustiques en relation avec un terminal telephonique

Country Status (1)

Country Link
WO (1) WO1997017791A2 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102014002207A1 (de) 2014-02-20 2015-08-20 Friedrich Kisters Verfahren und Vorrichtung zur Identifikation oder Authentifikation einer Person und/oder eines Gegenstandes durch dynamische akustische Sicherheitsinformationen

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4348554A (en) * 1980-03-21 1982-09-07 Bell Telephone Laboratories, Incorporated Method of providing virtual private network telephone service
US4679236A (en) * 1984-12-21 1987-07-07 Davies Richard E Identification verification method and system
US5157717A (en) * 1989-11-03 1992-10-20 National Transaction Network, Inc. Portable automated teller machine
US5452352A (en) * 1990-03-20 1995-09-19 Talton; David Automatic dialing system
US5365574A (en) * 1990-05-15 1994-11-15 Vcs Industries, Inc. Telephone network voice recognition and verification using selectively-adjustable signal thresholds
DE4218124A1 (de) * 1992-06-02 1993-12-09 Tadicom Deutschland Gmbh Tonfrequenzgeneratoreinrichtung

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102014002207A1 (de) 2014-02-20 2015-08-20 Friedrich Kisters Verfahren und Vorrichtung zur Identifikation oder Authentifikation einer Person und/oder eines Gegenstandes durch dynamische akustische Sicherheitsinformationen
WO2015124696A1 (fr) * 2014-02-20 2015-08-27 Friedrich Kisters Procédé et dispositif d'identification ou d'authentification d'une personne et/ou d'un objet par des informations de sécurité acoustiques dynamiques
KR20160133463A (ko) * 2014-02-20 2016-11-22 프리드리히 키스터스 동적 음향 보안 정보에 의해 사람 및/또는 객체를 식별 혹은 인증하기 위한 방법 및 디바이스

Also Published As

Publication number Publication date
WO1997017791A3 (fr) 2001-09-13

Similar Documents

Publication Publication Date Title
EP1112567B1 (fr) Procede de controle d'autorisation d'acces pour la telephonie vocale au niveau d'un poste d'abonne a un reseau fixe ou d'un poste d'abonne mobile, et reseau de communication
DE69926977T2 (de) Anruferidentifizierungsauthentisierung und Leitweglenkung als Antwort hierauf
US5351290A (en) Telecommunications fraud prevention system and method
EP0689368B1 (fr) Dispositif de transmission de messages dans un réseau de communication mobile
DE69118115T2 (de) Vorrichtung und Verfahren zur Gültigkeitserklärung für Kreditkarten in einen ISDN-Netz
WO1998026569A2 (fr) Procede et dispositif pour utiliser et commander a distance des dispositifs et des appareils par l'intermediaire d'un reseau telephonique
DE69736394T2 (de) Verfahren und system zur absicherung der dienstleistungen von fernmeldenetzbetreibern
DE102008035763A1 (de) Accessmanagement für verbindungsbegleitende Daten von Telekommunikationsverbindungen
WO1997017791A2 (fr) Dispositif d'authentification d'utilisateur par signaux acoustiques en relation avec un terminal telephonique
EP1060607A1 (fr) Procede et dispositif d'acces universel et protege a des reseaux telephoniques
EP1044560B1 (fr) Procede et reseau de communication destines a la taxation de la telephonie classique par reconnaissance vocale
DE4207837A1 (de) Verfahren und vorrichtung zur ueberpruefung und erlangung einer zugangsberechtigung
DE102011002903B3 (de) Vorrichtung zur diskreten Kommunikation für ein mobiles Kommunikationsgerät
EP1763949B1 (fr) Procede d'interrogations a distance d'informations memorisees dans un dispositif de telecommunication, et dispositif de telecommunication a fonctionnalite d'interrogations a distance d'informations memorisees
DE60026316T2 (de) System und verfahren zur bearbeitung von fernsprechanrufen
DE102005003208B4 (de) Authentisierung eines Benutzers
HUP0700716A2 (en) Supervisory communication system serving callers with restricted freedom
DE19542781C2 (de) Authentifizierung von Teilnehmeranschlüssen
EP1163559B1 (fr) Procede et dispositif permettant de securiser l'acces a un dispositif de traitement de donnees
DE29905006U1 (de) Telekommunikationsendgerät für Steuer- und Regelaufgaben
DE4408976C2 (de) Telekommunikationsendgerät
DE10047177A1 (de) Verfahren zur Authentisierung eines Telekommunikationsteilnehmers und Telekommunikationsanlage
DE3410936C2 (de) Verfahren zum Erkennen der unerlaubten Benutzung einer, einer beweglichen Funkstation zugeordneten Identifizierung in einem Funkübertragungssystem
EP0915610A2 (fr) Procédé, réseau téléphonique et terminal pour la reception d'information de tarification pour connexions individuelles
DE10254620B4 (de) Mehrfachregistrierung in Telefonsystemen

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): JP US

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL PT SE

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: JP

Ref document number: 97517731

Format of ref document f/p: F

122 Ep: pct application non-entry in european phase
AK Designated states

Kind code of ref document: A3

Designated state(s): JP US

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL PT SE