An authentication technique with a teaching phase and authentication phase. In the teaching phase, authentication information is collected for a user in at least two categories, wherein one category relates to measurable physical characteristics of the user, another category relates to communication resources available to the user; and a third category relates to knowledge possessed by the user. In the authentication phase (7-10... 7-44), some of the collected authentication information is used to formulate challenge(s) (7-10... 7-24; 7-62) for presentation to the user. Response(s) to the formulated challenge(s) is/are received from the user and correctness of the received response is determined based at least partially on comparison (7-44, 7-66) with at least a portion of the collected authentication information. A correctness metric is calculated for the response(s). The user is authenticated if the correctness metric meets or exceeds a first threshold value.
H04L 9/32 - Arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system
G06F 21/40 - User authentication by quorum, i.e. whereby two or more security principals are required
G06Q 20/40 - Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check of credit lines or negative lists
2.
USING SUCCESSIVE LEVELS OF AUTHENTICATION IN ONLINE COMMERCE
A method comprising performing following acts on a network server: receiving a communication from a client terminal operated by a client; performing a first authentication of the client terminal or client; in response to the first authentication, delivering a first service to the client; after delivering the first service, sending an offer for a second service to the client terminal; receiving an acceptance message for the second service from the client terminal; performing a second authentication of the client terminal and/or the client; in response to receiving the acceptance message for the second service from the client terminal and to the second authentication being successful, delivering a second service to the client; wherein the first authentication and the second authentication use different authentication techniques. Other aspects include a programmed data processing apparatus for carrying out the method and a tangible program carrier instructing the apparatus to perform the acts.
Equipments and methods are disclosed for facilitating service provisioning in a system that comprises a payment processor (9-200), a number of service provid¬ ers (9-400, 9-401 - 9-40n) and a mediator (10-300) that mediates information exchange between the payment processor and service providers, and a mobile terminal (9-620) operated by a payment card holder (9-600). In some implemen¬ tations, service provisioning can be facilitated in cases wherein the payment pro¬ cessor (9-200) must reside in a strictly regulated Payment Card Industry (PCI) compliant environment (9-100) and the service providers operate servers that are not PCI-compliant.
G06Q 20/40 - Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check of credit lines or negative lists
G06Q 20/42 - Confirmation, e.g. check or permission by the legal debtor of payment
G06Q 20/32 - Payment architectures, schemes or protocols characterised by the use of specific devices using wireless devices
G06Q 20/12 - Payment architectures specially adapted for electronic shopping systems
G06Q 20/16 - Payments settled via telecommunication systems
G06Q 30/06 - Buying, selling or leasing transactions
G06Q 10/02 - Reservations, e.g. for tickets, services or events
H04L 9/32 - Arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system
H04W 4/14 - Short messaging services, e.g. short message service [SMS] or unstructured supplementary service data [USSD]
Equipments and methods are disclosed for facilitating service provisioning in a system that comprises a payment processor (9-200), a number of service providers (9-400, 9-401 - 9-40n) and a mediator (10-300) that mediates information exchange between the payment processor and service providers, and a mobile terminal (9-620) operated by a payment card holder (9-600). In some implementations, service provisioning can be facilitated in cases wherein the payment processor (9-200) must reside in a strictly regulated Payment Card Industry (PCI) compliant environment (9-100) and the service providers operate servers that are not PCI-compliant.
G06Q 20/40 - Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check of credit lines or negative lists
G06Q 20/42 - Confirmation, e.g. check or permission by the legal debtor of payment
G06Q 20/32 - Payment architectures, schemes or protocols characterised by the use of specific devices using wireless devices
G06Q 20/12 - Payment architectures specially adapted for electronic shopping systems
G06Q 20/16 - Payments settled via telecommunication systems
G06Q 30/06 - Buying, selling or leasing transactions
G06Q 10/02 - Reservations, e.g. for tickets, services or events
H04L 9/32 - Arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system
H04W 4/14 - Short messaging services, e.g. short message service [SMS] or unstructured supplementary service data [USSD]
The present publication discloses a method and system for delivering goods from main system (S1) via subsystem (S2) to an end address (D1-Dn) of the customer (3). According to the invention the end address (D1-Dn) of the customer (3) is enquired (4) from the customer via telecommunications network by a multiple choice enquiry (4), the end address (D1Dn) selected by the customer is received (5) and the goods are delivered to the selected end address (D1-Dn).
The present publication discloses a method and system for sending messages in a telecommunications network (1, 2, 6,11, 12). In the method, a first text-form message (54) is sent to a user (50, 51) of the service, a reply (55) to the first text-form message is received from the user (50, 51) of the service to an address defined in the previous message, if the reply is of the correct form and content, the desired service (56, 58, 61) is sent to the user of the service. According to the invention, the user (50, 51) of the messaging service is offered a second service by a message (62), the information (such as the sending number is text-message traffic) defining the reply address of which differs from that of the first message (54), and the second offer message (62) is sent with a sending delay, which depends on the content or type of the first service.
H04W 4/06 - Selective distribution of broadcast services, e.g. multimedia broadcast multicast service [MBMS]; Services to user groups; One-way selective calling services
7.
METHOD AND SYSTEM FOR COMBINING TEXT AND VOICE MESSAGES IN A COMMUNICATIONS DIALOGUE
This publication discloses a method for delivering messages in a telecommunications network (1, 2, 6, 11, 12). In the method, the first text-form message (40) of the session N is delivered (43) to the user of the service, in such a way that the sender address (e.g., the A number) is converted to correspond to the session number N and the session stage J, in stages 2-n (41) of the session N, a text-form message (40) is received, from the user of the message service, at the sender address defined in the message in the previous stage, and the session proceeds according to the contents of the message (40), in such a way that the sender address (e.g., the A number) is converted to correspond to the session number N and the new session stage J, and the next text-form message of session N is sent to the user of the message service. According to the invention, in some stage of the session N, a voice message is received (42), from the user of the message service, at the sender address of the message defined in the message (40) in the previous stage, or at an address contained in the message, and the session proceeds according to the content of the message (40), and if necessary, the next text-form message of the session N is sent to the user of the message service, in such a way that the sender address (e.g., the A number) is converted to correspond to the session number N and the new session stage J.
This publication discloses a method and system for delivering messages in a telecommunications network (1, 2, 6, 11, 12). In the method a voice-message call attempt is received (43), or a connection is formed to a potential user of a service, on the basis of a voice-message call attempt. According to the invention, as a response to the voice-message connection formed or to the call attempt, to the second part (41) of the connection is sent a text- form message, which initiates a long, logically continuous, temporally discontinuous session N, in such a way that the sender address (e.g., the A number) is converted to correspond to the session number N and the session stage J at the time, and in the message there is at least one selection query.
The present publication discloses a method and system for sending messages in a telecommunications network (1, 2, 6, 11, 12), in which method digital messages (40) which contain information on the desired reply address (32) are mass sent (3), and messages, which are sent on the basis of the reply-address information (32) are received (10). According to the invention, the reply-address information of each mass-sent message (40) is converted (3) to correspond to a predefined dialogue, in which the stage of the dialogue defines unequivocally the reply-address information (32), so that the transmission and reception of the messages are implemented in different parts of the telecommunications system (1, 2, 6, 11, 12).
patents