Communications: electrical – Continuously variable indicating – With meter reading
Patent
1998-04-23
2000-11-28
Horabik, Michael
Communications: electrical
Continuously variable indicating
With meter reading
713200, G07D 700
Patent
active
06154146&
DESCRIPTION:
BRIEF SUMMARY
BACKGROUND OF THE INVENTION
For many communication services, realized for example with the aid of a intelligent network (IN), such as for example Virtual Card Calling (VCC), Universal Personal Telecommunication (UPT), remote access to Virtual Private Network (VPN) and multimedia services, authentication methods are used to check the caller's access authorization to the communication service and to allocate the fees to him.
Such authentication methods are usually based on the input of a user identification (e.g., a card number) and, if warranted, a personal identification number (PIN) as well. The user must keep these authentication data secret.
The foregoing authentication methods can offer only limited security. This is because valid authentication data can in principle be determined by trying out a large number of data, and can then be used abusively, e.g. in order to carry out communications at the expense of someone else.
If this misuse (illegal use) is to be impeded by the use of numbers with a larger number of digits, acceptance problems arise, since very long inputs are then necessary in normal use (legal use).
An impedance of misuse can also be effected in principle by charging fees for unsuccessful authentication processes. However, this charging of fees cannot take place to the account of the user, as actually desired, because at the time of unsuccessful authentication processes the user has not yet been identified. In place of this, a charge to the account of the terminal used is on the other hand undesirable for the legal use of these services, because it contradicts the fee principle of these services. This is because according to this fee principle, the terminal used should remain free of fees, because the terminal used in these services may belong to a third party.
The result of the above is that, under the control at a PC, thousands of authentication attempts can be carried out abusively (with a chance of success) without any fees thereby arising for the abusive caller (illegal user). The misuse can thus be practiced commercially.
Due to the circumstance that unsuccessful authentication processes are free of charge, a further case of misuse is also made easier. For reasons of security, access to a service is as a standard procedure blocked for a user if, given his identification, a predetermined number of false PIN entries is exceeded. Persons with malicious intent can make use of this to block access to services for others deliberately and without incurring fees.
SUMMARY OF THE INVENTION
The invention is based on the object of impeding the named misuse, without thereby having any significant adverse effect on the legal use of the services named.
In general terms the present invention is a method for impeding misuse in communication services, in which user-specific authentication data must be inputted in order to call a communication service. The authentication of the service user is carried out by the communication network. A chance-controlled fee assessment is caused for the network terminal used to call the communication service, before the service user can determine that there has been an unsuccessful authentication.
The present invention is also an authentication means of a network, which, given a call to a communication service by a user, carries out an authentication by checking the authentication data indicated by the user. Given successful authentication, the user gains access to the communication service. The authentication causes a chance-controlled fee assessment for the network terminal used to carry out the call, before the service user can determine that there has been an unsuccessful authentication.
By means of the invention, the following is achieved: relatively low probability (e.g. 1:20 chance) that the terminal he is using will be charging a fee. of failed attempts while the possibilities are being sequentially tried. If, due to the statistical degree of security, an average of e.g. 10,000 failed attempts are necessary in order to find a successful authentication by
REFERENCES:
patent: 4326098 (1982-04-01), Bouricius et al.
patent: 4799255 (1989-01-01), Billinger et al.
patent: 5343529 (1994-08-01), Goldfine et al.
patent: 5978669 (1999-11-01), Sanmugam
Lueder Reinhard
Zygan-Maus Renate
Horabik Michael
Shimizu M
Siemens Aktiengesellschaft
LandOfFree
Method of rendering misuse of communication services more diffic does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method of rendering misuse of communication services more diffic, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method of rendering misuse of communication services more diffic will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1730176