User authentication in a communications network

Assignee

• British Telecommunications PLC · GB

Inventors

• Robert Andrew Bissell · Ipswich, GB
• Kevin Paul Bosworth · Ipswich, GB
• Michael John Britnell · Milton Keynes, GB
• Peter Maxwell Harding · Mengham, GB
• Richard Middleton Hicks · Malvern, GB
• Jonathan James Kingan · Ipswich, GB
• Michael V. Meyerstein · Ipswich, GB
• Keith Eric Nolde · Ipswich, GB
• John Rabson · Woodbridge, GB
• Jonathan Crispin Ranger · Chichester, GB
• David Anthony Roberts · Petworth, GB
• Mark Stirland · Ipswich, GB
• Richard P Swale · Ipswich, GB

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04Q2213/13515
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

An authentication system of a terminal on a public switched telephone network provides a security node associated with a local exchange and a network terminal. For one-way authentication, the terminal responds to a call initiation by sending a unique authentication code comprising a number and a secret key encrypted according to a first algorithm, the secret key being specific to the terminal. The security node constructs the expected authentication code from the number, using the first algorithm and a second key which is a function of a terminal identification number, and compares the expected code with the received code. In two-way authentication, the security node responds to the call initiation by sending a transaction number to the terminal encrypted according to a second algorithm. The terminal generates the authentication code as a function of the first algorithm, the secret key and the transaction number. The authentication code is sent back to the security node. An expected code is compared with the received one in the same way. In both cases, a match between expected and received authentication codes constitutes authentication of the terminal allowing the user access to t…