-
1.发明公开Verification method and apparatus for use in providing application services to mobile communication devices 有权在用于移动通信设备提供的应用服务使用验证的方法和装置
公开(公告)号:EP2197168A1
公开(公告)日:2010-06-16
申请号:EP08171131.9
申请日:2008-12-09
CPC分类号: H04L63/0807 , H04L63/0815
摘要: A mobile communication device operates in a wireless communication network with use of a communication service provided by a service provider (e.g. a wireless carrier for voice telephony, or data service provider for data synchronization). An application server receives, via the wireless network, a message from the mobile device. The message has a field for inclusion of a token having a digital signature corresponding to the service provider. The application server performs token validation of the message, which includes a verification step for verifying the digital signature of the token with a public key corresponding to the service provider. The application server then grants or denies access to an application service depending on the outcome of the token validation. In one embodiment, the application service is an e-commerce transaction service, wherein a proof-of-work (POW) test (e.g. a Captcha test) otherwise utilized for the service is bypassed or excluded.
摘要翻译: 一种移动通信设备工作在与使用由服务提供商(例如,用于语音电话的无线载体,或用于数据同步的数据的服务提供商)提供的通信服务的无线通信网络。 应用程序服务器接收,通过无线网络,从所述移动设备的消息。 该消息对包括具有数字签名相当于服务提供商的令牌的领域。 应用程序服务器执行消息,其包括用于与一个公钥对应于服务提供者验证该令牌的数字签名的验证步骤的令牌验证。 然后应用服务器授予或取决于令牌验证的结果,拒绝访问的应用服务。 在一个,实施例的应用服务是电子商务交易服务,worin一个验证的工作(POW)测试(例如,验证码检验)否则用于该服务被旁路或排除。
-
2.发明授权Verification method and apparatus for use in providing application services to mobile communication devices 有权在用于移动通信设备提供的应用服务使用验证的方法和装置
公开(公告)号:EP2197168B1
公开(公告)日:2012-08-29
申请号:EP08171131.9
申请日:2008-12-09
CPC分类号: H04L63/0807 , H04L63/0815
-
3.发明公开cookie verification methods and apparatus for use in providing application services to communication devices 审中-公开Cookie的试验方法和设备用于在通信设备提供应用服务
公开(公告)号:EP2224670A2
公开(公告)日:2010-09-01
申请号:EP09155642.3
申请日:2009-03-19
IPC分类号: H04L29/06
CPC分类号: H04L63/08 , H04L63/12 , H04L63/168
摘要: in one illustrative example, a method in a communication device adapted for communications using Hypertext Transport Protocol (HTTP) involves setting, at the communication device, an HTTP cookie which includes a user identification of a user of the communication device and a message portion which is signed with a digital signature of the user, The communication device sends, to an application server site via the communication network, a request message which includes the HTTP cookie. If verification of the digital signature at the application server site is successful, the communication device will receive access to an application service of the application server site. In one variation, the HTTP cookie is alternatively set with a group identification of a group with which the user is associated, and the message portion is signed with a digital signature of the group. The group may be a plurality of users associated with a service provider which provides the communication device access to a communication service in the communication network, In this case, the HTTP cookie may be set with a token retrieved from the service provider, where the token includes the digital signature of the service provider,
-
-
搜索结果
3 条记录 (耗时 0.012 秒)
