US 20130060892A1
(19) United States
(12) Patent Application Publication (10) Pub. No.: US 2013/0060892 A1
Barthelemy
(54)
(43) Pub. Date:
METHOD FOR PROVIDING A DYNAMIC
CODE VIA A TELEPHONE
(75) Inventor:
Mar. 7, 2013
Publication Classi?cation
(51)
Int. Cl.
(52)
US. Cl. ..................................................... .. 709/217
Serge Barthelemy, Montpellier (FR)
G06F 15/16
(73) Assignee: PAYCOOL INTERNATIONAL LTD.,
Hong Kong S.A.R. (CN)
(2006.01)
(57)
ABSTRACT
A user provides an identi?er to a computer server operating
(21)
Appl. NO.I
13/575,483
an online service by means of a network terminal connected
_
to the computer server by a digital network. The user also
(22)
PCT Flledi
Jan- 26: 2011
(86)
PCT N05
§ 371 (OX1),
(2)’ (4) Date;
PCT/FR11/00054
(30)
provides a dynamic code that is to be used With the online
service. The dynamic code is made up of a subset of digits that
make up the number of a calling line, selected by a code server
from among a set of available lines, so as to call the telephone
of the user. The number for the dynamic code is transmitted to
the online service by the code server. The dynamic code is
extracted from the number for the calling line on the basis of
No“ 19, 2012
Foreign Application Priority Data
an extraction rule indicated by the online service on the net
Jan. 28, 2010
(FR) .................................... .. 10 00347
Work terminal ofthe user.
was
SOFTWARE
Server 1 side
Server 2 side
11
Reception of "'
request to access
online service
21
Stan {
f'jz
Specification of r’
V
the Parameters
Of the dynamic
Reception of dynamic
Code request
code and of the
w’
extraction mi;:
13
H i.
23
H
"
Transmission of r
Random selection
dynamic code
request
of caliing line
20
24
.
14
- Usertelephone<
/-f/
10
3969mm“ of
I 4,
k
'
of calling iine numbe
15
“Y
I
/—'/
25
’ m
dynamic code
'
-
17
16
2
i ompanso
,
\
Reception
of dynamir
F
code trornthe user
terminal
call
- Transmission
Calling line number ‘
Extraction of
/
HOK
Patent Application Publication
Mar. 7, 2013 Sheet 1 0f 3
US 2013/0060892 Al
L
G)
E
(1)
U)
(D
(O
'8
\k
U
0"}
(1)
GD
C
O
.C:
D.
.9.)
(I)
\ ‘1": l.i”
v‘:
Q
LL.
/
/
h. E
EL
(U
-l-'
l
G.)
U!
:1
W
L0
2.3
E E
O 3
‘v’
Patent Application Publication
Mar. 7, 2013 Sheet 2 0f 3
///f5
/7
I
I
(O) : Transmission of user>< ID
SPECIFI ATION AND
US 2013/0060892 A1
8M (/6
I
I
I
i
I
(I8) = REOUECT TO SEND DYN MIC CODE
I
l~~I
FOR USE? ><
I (1b) CALL NoTsEIqATIoN
I
f
;
I
i
'
I
i
DISPLAY
I
i
I
I (2a)
I
sELEmI N OF
cALLqN LINE
(2b) SENDING OI THE CALLING LINE NUMBER
I
i
i
|
|
I
I
I
3) CALL WITH CALLING
I
- CALL RECEFI’TION MISSEED
.
LN:
I
(4) - EXTRACTION OF DYNAI/Ic cpDE
_ INPUT OF D NAMIC coI: E
ON TERMINAL
I
'
- I (4b) TRANswIIssIbN OF DYNAMIC boDE
i
I
I
1
I
I
I
my;Y
Y
(5) VERIFICATION OF DYNAMIC COD E
FIG.2
Y
Patent Application Publication
Mar. 7, 2013 Sheet 3 0f 3
SOFTWARE
Server 1 side
US 2013/0060892 A1
SOFTWARE
Server 2 side
‘it
Reception of ""‘
“-"
request to access
online service
21'
Start
12
"1
Reception of dynamic
of the dynamic
22
code and of the
code request _
13
extractinn rule
23 l
/~/
\
Random selection
Transmission of 'r
of caliing line
dynamic code
request
20
24
14
- Userte|e|ohone(
/-/
Reception of I
caiiing line number ~11
call
1
~ Transmission
of calling iine number
15
F”,
Extraction of
17
162
i empan'so
‘’ Reception ofdynamir
code fromths user
_
r’,
25
I
dynamic code
terminal
_
‘
i
if
Specification of I
the parameters
I
>
_
OK
Free‘
Mar. 7, 2013
US 2013/0060892 A1
METHOD FOR PROVIDING A DYNAMIC
CODE VIA A TELEPHONE
[0001]
The present invention relates to a method for gener
ating, delivering and checking dynamic code. The method is
of the type in Which the dynamic code is made available to a
user notably via a mobile or ?xed line telephone. The
dynamic code can then be used, for example, to authenticate
the user With the server of an online service, or for any other
use that requires a dynamic code to be obtained.
STATE OF THE ART
[0002] In the digital economy, the number of online ser
vices and applications is greatly expanding and access to
these services, like the validation of certain actions, requires
either the authentication of the users or the digital validation
of certain actions, even digital signing.
[0003] The implementation of these methods of authenti
cation With online services, or of signature validation, very
often involves the use of a dynamic passWord or code (also
called “one-time passWord”) Which is veri?ed directly or
indirectly either by the entity Which requires it (for example
an online service), or by an independent third party.
[0004] In particular, there is an increasing demand among
online service operators, such as banks for example, for safer
authentication methods that in particular make it possible to
increase the security With respect to attacks of the phishing
type Which involve cunningly obtaining a user’s static pass
Word for an online service. Increasing this security entails
abandoning the static passWords and replacing them With
AIM OF THE INVENTION
[0011] The general aim of the present invention is conse
quently to provide a solution to the problems posed by the
systems for supplying and routing one-time codes used hith
erto.
[0012] Another more speci?c aim of the invention is to
propose a method for supplying dynamic codes that makes it
possible to overcome the issues of deployment and cost, in
order to alloW massive use of the dynamic codes Within the
frameWork of the infrastructures for online services.
[0013] In order to ensure a better clarity of the folloWing
description of the invention, it is useful to introduce a certain
number of de?nitions of the main elements involved in imple
menting the method.
[0014]
Online service: This is a service or an application
that is available or supplied digitally via a digital netWork (of
internet or equivalent type, telecommunication netWork, etc.)
and Which asks its users to input a dynamic code to validate
some of their actions (for example a so-called “login” code to
alloW access to the service, or the provision of an authentica
tion code in the context of a multiple-factor authentication
method, or for the validation of transactions or digital signa
ture, etc.).
[0015]
[0016]
Code server: This is a computer server having:
secure connection capabilities With one or more
online services,
[0017] data management and processing capabilities,
[0018]
connections With one or more voice telephony
networks,
dynamic passWords or authentication methods With a number
[0019] access to a signi?cantly large number of calling
telephone lines (advantageously, several thousands or
tens of thousands of lines), called available lines,
of factors using one-time codes.
[0005] NoW, there are already various methods for gener
ating and supplying a user With a dynamic passWord, for
[0020] a program and an algorithm that are capable of
producing, at the request of an online service, the selec
tion of a line number suitable for responding to said
example by:
[0006] generating a code or passWord from using a dedi
cated tool, such as the one marketed by RSA under the
brand name “SecureID”. This tool makes it possible to
compute and display a code Which varies as a function of
time, for example every 60 seconds;
[0007] generating a dynamic code from cryptographic
calculators using chip cards;
[0008]
using SMS (short message service) to send a
dynamic code to a cell phone of the user;
[0009]
generating a dynamic code using a speci?c soft
Ware application installed on the cell phone or the SIM
card of the telephone; such a solution has been described
in the French patent application number FR 08/ 00440
?led by the same applicant.
[0010] Most of these knoWn methods obviously offer
increased security compared to the use of static codes, but
there are still one or more draWbacks, the main one very often
being the cost of use, either because the dynamic code gen
eration tool is itself costly, or because the cost of routing such
a code to the user is signi?cant (for example, the cost of an
SMS to send each neW code). To that is added the additional
draWback that the banks or other organizations offering
online services do not knoW in advance hoW many one-time
request (from the available lines) and for initiating a call
from the selected line to the telephone number of a user.
[0021] The code server Within the meaning of the invention
may be operated either by the online service or by an entity
that is independent of the online service.
[0022] Available lines: These are telephone lines each hav
ing a different telephone number, made available (perma
nently or temporarily) to the code server and from Which the
latter can make calls to the telephones of the users.
[0023] Calling line: This is the line selected by the code
server, on the basis of the parameters supplied by the online
service in its dynamic code request. The calling line is
selected from the available lines to make a call to the tele
phone of a user, and of Which the number has to be displayed
on said telephone, or any equivalent device suitable for
receiving a telephone call, such as, for example, a computer
provided With a modem.
[0024] User: This is a person having, on the one hand, a
netWork terminal to access online services, and, on the other
hand, a telephone for personal use or any device suitable for
receiving a telephone call and for displaying the number of a
calling line. The user Wants to have access to and/or use the
functionalities of an online service to Which he or she Will ?rst
have communicated his or her telephone number.
[0025] Dynamic code: This is a code intended to be used
directly or indirectly only for a single action or transaction
betWeen the user and the online service and Whose validity
codes Will be needed, and consequently What Will be the
corresponding cost, since this number depends solely on the
period is advantageously limited in time (of the order of a feW
number of cases of use of these codes.
minutes).
Mar. 7, 2013
US 2013/0060892 A1
OBJECT OF THE INVENTION
[0026] These aims are achieved by the method according to
the invention. In order to solve the problem posed, the inven
tion makes an innovative use of the code servers Which are
used by the online services. In effect, the invention provides
for the generation of the dynamic codes Which are then trans
mitted to the user by the code server, by means of a call to the
telephone of the user from a calling line chosen by the code
server. This choice of calling line is determined on the basis of
a speci?cation issued by the online service.
[0027] Furthermore, the dynamic code is contained in, and
transported directly by, the number of the calling line Which is
vieWed by the user on his or her telephone, While avoiding the
generation of the cost ofa call or ofan SMS.
[0028] It folloWs that, in the invention, the object (the code)
and its transmission means (the number of the calling line) are
intermingled: it is the transmission means Which is the code.
[0029] More speci?cally, the subject of the invention is a
method for supplying the user of an online service With a
dynamic code via a telephone, in Which said user supplies, on
the one hand, an identi?er to a computer server operating an
online service, by means of a netWork terminal connected to
said computer server by a digital network, and, on the other
hand, a dynamic code intended to be used With the online
service, said method being characterized in that the dynamic
code is made up of a subset of the digits that make up the
number of a calling line, selected by a code server from a set
of available lines to call the telephone of the user, and the
number of Which is transmitted to the online service by the
code server.
[0030] Advantageously, the number of the calling line, con
taining the dynamic code, is determined by an algorithm
implemented by the code server, on the basis of a set of
parameters included in a dynamic code request transmitted by
the online service.
[0031] For a particular choice of the parameters included in
the dynamic code request, the determination of the calling
line number by the code server can be made by a random
selection of the number of the calling line from the numbers
of available lines for the code server.
[0032] Advantageously, the dynamic code is determined
from the calling line number used by the code server to call
the telephone of the user, by a dynamic code extraction rule,
Which designates the digits of the telephone number of the
calling line to be taken into account to make up the dynamic
code.
[0033]
The dynamic code extraction rule may be ?xed, but
it could also vary and be rede?ned by the online service on the
occasion of each dynamic code request.
[0034] As an example, the digits that make up the dynamic
code may be made up by the last 4, 5 or 6 digits of the number
of the calling line. This very simply makes it possible for the
user to select from the digits of the number of the calling line
those that correspond to the dynamic code, by applying the
extraction rule supplied by his or her netWork terminal.
[0035] As a variant, the dynamic code may be made up of
the positions of a predetermined subset of digits taken from
the digits that make up said telephone number of the calling
line, the positions of the digits to be taken into consideration
for the dynamic code being indicated in the message trans
mitted by the online service to the netWork terminal of the
mode, and a more automated mode involving a speci?c appli
cation installed on the telephone of the user.
[0037] Thus, in a manual extraction mode, the user Will be
able to simply vieW the number of the calling line Which is
displayed on the screen of his or her telephone, and manually
extract therefrom the digits of the dynamic code, based on the
extraction rule Which is displayed on the screen of his or her
netWork terminal. Then the user Will input the digits of the
dynamic code on his or her netWork terminal, for the dynamic
code to be transmitted to the software of the online service
Which Will compare it to the reference dynamic code obtained
via the code server.
[0038] In another, more automated, mode of use, the num
ber of the calling line may be captured, once the call is made,
by a softWare application installed for this purpose on the
telephone of the user or any equivalent device. This applica
tion Will then extract from the number of the calling line the
dynamic code to perform the task for Which it Was provided,
for example the creation of another code, the generation of a
digital signature, etc. The extraction Will be done either on the
basis of an extraction rule prede?ned in the softWare of the
telephone of the user, or an extraction rule communicated by
the online service to the telephone of the user.
[0039]
To give more detail, the method according to the
invention also comprises the folloWing steps:
[0040]
transmission by the online service to said code
server of a request to send a dynamic code to a given user
of the online service, together With a set of parameters
specifying the dynamic code;
[0041]
transmission by the online service of a call noti
?cation sent to the netWork terminal of the user;
[0042] after the selection by the code server of a calling
line telephone number, transmission by the code server
of the number of the duly selected calling line to the
server of the online service, and extraction by said server
of the dynamic code from the calling line number;
[0043]
initiation of a telephone call by the code server to
the telephone of the user, using the previously selected
calling line number;
[0044]
on reception of the telephone call by the tele
phone of the user, manual or automatic extraction of the
dynamic code on the basis of the calling line number and
of the previously noti?ed extraction rule;
[0045] transmission by the user of the duly extracted
dynamic code to the server of the online service, by
means of his or her netWork terminal;
[0046]
on reception of the dynamic code by the server of
the online service, comparison betWeen the locally
obtained dynamic code and the dynamic code transmit
ted by the user, and if the tWo dynamic codes match,
validation of the dynamic code transmitted by the user.
[0047] According to the invention, in order for the user to
knoW that he or she Will be receiving a dynamic code, a call
noti?cation is sent to the netWork terminal of the user, on the
one hand to indicate that a dynamic code is incorporated in the
calling line number used by the code server to call the tele
phone of the user, and on the other hand to communicate the
rule for extracting the dynamic code from the calling line
number.
[0048]
Advantageously, the noti?cation transmitted to the
netWork terminal of the user comprises instructions to not
user.
ansWer the call originating from the calling line. This makes
[0036] There are tWo methods for extracting and using the
dynamic code from the calling line number, namely a manual
it possible to display the calling line number including the
dynamic code Without generating communication costs.
Mar. 7, 2013
US 2013/0060892 A1
[0049] Alternatively, the code server is programmed to cut
the telephone communication sent from the calling line to the
telephone of the user after the ?rst ring, Which makes it
possible to achieve the same result.
said system being characterized in that it also comprises:
[0067]
a computer server operating an online service;
[0068]
a code server linked to said computer server by a
secure digital link;
[0050] Preferably, the calling line number selected from the
available lines according to the parameters supplied to the
[0069] said computer server comprising a softWare mod
ule suitable for specifying a dynamic code request in the
code server is valid only for a limited period, typically of the
order of a feW minutes, in order to increase the security linked
to the use of the dynamic code.
form of a series of parameters, on the basis of the user
[0051] The method according to the invention is imple
mented partly by a speci?c software module incorporated in
the server of the online service, and Which implements the
folloWing steps:
[0052]
reception on behalf of a user terminal of a request
to access the online service hosted by the computer
server;
[0053] generation of the speci?cation of the dynamic
code, in the form of a series of parameters, on the basis
of the user and of the use Which Will be made of the
dynamic code, and generation of the rule for extracting
the dynamic code from the calling line number;
[0054] transmission of a dynamic code request, speci?ed
and of the use of the dynamic code, for generating a rule
for extracting the dynamic code and for transmitting
such a dynamic code request to the code server;
[0070] said code server comprising a softWare module
suitable for selecting a calling line from a set of available
lines for Which the number satis?es the parameters sub
mitted in the dynamic code request, for calling the tele
phone of the user from the calling line and for transmit
ting the number of the calling line to said computer
server;
[0071]
line received from the code server, and a dynamic code
received from the netWork terminal of the user.
by a set of parameters, to the code server;
[0055]
reception of a calling line number, from the code
server;
[0056]
local extraction on the server of the online service
of the dynamic code from the calling line number;
[0057] reception of the dynamic code transmitted by the
user terminal;
[0058] comparison of the locally extracted reference
dynamic code, and of the dynamic code transmitted by
the user terminal, and if the tWo codes match, the
dynamic code of the user is declared valid by the online
service and the access of the user to the online service is
said softWare module of the computer server of
the online service also being suitable for comparing the
dynamic code extracted from the number of the calling
DESCRIPTION OF THE INVENTION
[0072] The invention Will be better understood by referring
to the folloWing description and to the appended ?gures, in
Which:
[0073]
FIG. 1 represents a block diagram of a system suit
able for implementing the method according to the invention;
[0074] FIG. 2 represents an overall ?oW diagram of the
method according to the invention, shoWing all the elements
of the system implementing the different steps, including the
netWork terminal and the telephone of the user;
[0075] FIG. 3 represents a How diagram of the steps of the
method according to the invention, as implemented by the
authorized; otherWise, an error message is prepared by
the softWare module of the online service for display on
online service and by the code server.
the network terminal of the user.
to the invention is made in the context of the conventional
[0059] The method according to the invention is also partly
implemented by another softWare module incorporated in the
code server and implementing the folloWing steps:
[0060] reception of the dynamic code request and of the
parameters specifying it, transmitted by the softWare of
the server operating the online service;
[0061] selection of a calling line from the available lines,
on the basis of the dynamic code request transmitted by
the softWare of the server operating the online service,
and of the parameters associated thereWith;
[0062] sending of a telephone call from the calling line to
the telephone number of the user;
[0063] transmission of the number of the calling line to
the softWare of the online service, then return to the start
pending the next dynamic code request.
[0064]
[0076] The folloWing description of the method according
manual use of a dynamic code to alloW access to an online
services site, Without this context being in any Way limiting.
It is understood that the method thus described can be used in
many other circumstances, for example, Without this list
being exhaustive:
[0077]
to perform the authentication of users in the case
of access to digital services, the dynamic code then
constituting one of the authentication factors;
[0078] to validate an action and check that the author is
indeed Who he or she pretends to be, as is useful to
validate an online banking transaction;
[0079]
to provide a random factor or a challenge to any
application installed on the telephone of the user, such
as, for example, a digital signature application.
[0080]
Reference is made to FIG. 1. The method imple
ments an online service Which is executed by a computer
Another subject of the invention is a system for
server 1, a code server 2 connected to the computer server 1
supplying the user of an online service With a dynamic code
via a telephone, in Which said user supplies, on the one hand,
an identi?er to a computer server operating an online service,
via a secure digital link 3, supplied, for example, by a netWork
and, on the other hand, a dynamic code intended to be used by
the user With the online service, said system comprising:
[0065] a netWork terminal connected to said computer
server by a digital netWork;
[0066] a user telephone suitable for displaying the tele
phone number of a calling line;
4 of intemet type. The computer server 1 is a server like the
many that exist in their thousands, apart from the fact that it
hosts a speci?c softWare application, denoted 5, suitable for
implementing, With the other components of the system, the
method according to the invention, Which Will be described
beloW.
[0081] Similarly, the code server 2 hosts a speci?c softWare
application, denoted 6, suitable for implementing the method
Mar. 7, 2013
US 2013/0060892 A1
according to the invention, in cooperation With the other
components of the system represented in FIG. 1.
[0082]
It should be noted that there is no limit to the nature
of the transactions envisaged in the context of the online
service; they can be commercial or not, of banking or other
type, inasmuch as a user has to be able to provide a dynamic
code to the online service, at the request thereof.
[0083] Furthermore, on the user’s side, the method accord
ing to the invention implements, on the one hand, a netWork
terminal 7 and, on the other hand, a telephone 8, Which can be
a conventional cell phone, or a ?xed telephone provided With
a display, or even a computer device provided With a modem
function.
[0084] The netWork terminal 7 is also connected to the
computer server 1 via the digital netWork 4, in order for the
user to be able to dialogue With the online service, notably to
be able to provide it With his or her identi?er and his or her
passWord in the form of a dynamic code.
[0085] To be able to use the method, the online service may
previously have registered the telephone number of the user.
[0086]
There noW folloWs a more detailed description
through an example illustrated in FIG. 2, of the method for
supplying a dynamic code according to the invention.
[0087]
Preliminary step (0): transmission by the user of his
or her identi?er to the online service: When the user Wants to
connect to the online service, he or she enters his or her
identi?er on the user interface of the netWork terminal 7,
Which transmits it via the netWork 4 to the computer server 1
hosting the online service.
[0088] Step la: at the request of the online service, deter
mination of the dynamic code speci?cation parameters and
generation of an extraction rule by the softWare application 5
and transmission of the request to send dynamic code to the
softWare application 6 hosted by the code server 2;
[0089] The request to send dynamic code may vary accord
ing to the requirements of the application installed on the
online server.
[0090] Depending on the use Which Will be made of the
dynamic code, the online service Will use an appropriate
algorithm implemented by its application softWare to de?ne
the type of code that it Wants to supply to the user by speci
ing all the digits of the dynamic code, in this case it is the
entire dynamic code Which is determined. For example, for a
4-digit code, N:4 and an imposed dynamic code of 1234 for
a given transaction.
[0096] P4: this parameter de?nes the extraction rule
required. The extraction rule de?nes in Which position each
digit Ci of the dynamic code should be situated in the number
of the calling line Ci(j); i:l,N. It is possible to have no
extraction rule required notably When no value of Ci is speci
?ed.
[0097]
Depending on the requirements of the online ser
vice, the algorithm of the online service Will de?ne the type of
code to be transmitted to the user and communicate, via a
secure connection, this request to the code server specifying
the required parameters (P0; P1; P2; P3; P4).
EXAMPLE 1
[0098] in the simplest case, the online service speci?es no
constraint for the dynamic code. In this case, the parameters
indicated by the online service to the code server Will be: P0;
PlIunde?ned; P2:manual; P3:none; P4:none. The soft
Ware of the code server Will then execute a random selection
of a calling line number from the available lines. This case is
the one particularly suited to the replacement of a static pass
Word by a dynamic code for a “login”.
[0099] Through the Example 1, the additional advantages
of the method due to the parameteriZing of the dynamic code
request by the online service can be seen, namely that the
online service can use a dynamic extraction method, that is to
say de?ne, on each dynamic code request, the number of
digits that make up the dynamic code and the extraction rule.
The security linked to the use of a dynamic code is thus
reinforced by introducing additional random elements, in
addition to the dynamic nature of the code itself, namely, in
particular, the length of the dynamic code, or its extraction
method.
[0100] The algorithm of the online service is therefore
designed at the same time to specify, using the parameters
described previously, both the characteristics of the dynamic
code to be generated by the code server and its extraction
mode.
fying a certain number of parameters Which are as many
[0101] Step lb: substantially simultaneously With the
constraints as the dynamic code Will have to satisfy.
[0091] As a nonlimiting example, the parameters used to
specify the type of code to be supplied to the user Will com
request to send a dynamic code in la, the computer program
of the online service reacts to the reception of the identi?er of
the user, by sending, to the netWork terminal 7 of the user, a
message to be displayed, indicating the imminent arrival of a
prise the folloWing parameters:
[0092] P0: this parameter relates to the identi?er of the user
(if the latter is registered With the code server), or his or her
telephone number.
[0093] P1: this parameter relates to the number N of digits
that the dynamic code must contain, typically N is generally
betWeen 3 and 9;
[0094] P2: this parameter determines the type of extraction
of the dynamic code from the calling line number. This
extraction Will be manual by the user, from the calling line
call Which he or she must not ansWer and the procedure to be
folloWed by the user upon the reception of this call from the
calling line, that is to say in particular hoW to extract from the
number of the calling line Which Will be displayed on his or
her telephone, Which digits of the number must be taken into
account to make up the dynamic code.
[0102]
For example, the message transmitted by the online
service to the telephone of the user Will be of the type: “you
Will be receiving a telephone call from a number beginning
number displayed on his or her telephone, or automatic and
With +33l234 . . . , do not ansWer this call and use the last 5
performed by a speci?c application installed on the telephone
digits of this number as passWord”; simultaneously, the
of the user.
online service sends, via a secure connection 3, a dynamic
[0095] P3: this parameter determines, as appropriate, any
imposed values, namely the values of the digits Which should
appear in the dynamic code, if this is required by the online
service. This may be a single imposed value, for example the
?rst digit C1 of the dynamic code must be equal to 0. There
code request to the code server by supplying it With all the
may also be a requirement set by the online service concem
parameters Which the dynamic code must satisfy.
[0103] Step 2a: on reception of the dynamic code request,
the speci?c softWare 6 of the code server 2 proceeds to select
a calling line, from the available lines. This selection is made
on the basis of the parameters indicated by the online service.
Mar. 7, 2013
US 2013/0060892 A1
[0104] The code server launches its calling line selection
algorithm. This algorithm Will analyze the different con
straints represented by the parameters Pi and search through
all the available lines for those Which can satisfy said param
eters, then make a choice of a line Which Will be the calling
line.
[0105] It might be thought that, in certain cases Where the
number of constraints Would be too great, the algorithm may
fail to ?nd any calling line. In this case, the code server
indicates to the online service the impossibility of satisfying
this particular code request and suggests, for example, a
relaxation of the constraints. The probability of culminating
in an impossibility Will be all the loWer the greater the number
of available lines.
[0106] In case of success, a calling line is selected by the
code server Which initiates a telephone call from the calling
line to the telephone of the user and communicates the num
ber of the calling line to the online service via a secure
there is a match betWeen the tWo codes, the softWare 5 of the
online service authoriZes the user to access the online service,
otherWise it displays a message indicating to the user that his
or her identi?cation or validation attempt has failed.
[0116] Variants can be implemented on the basis of the
basic outline of the method Which has just been described.
[0117] Thus, it Would be possible for an online service to
have its oWn dedicated code server, assigned to generate
dynamic codes, rather than having to communicate With a
remote and independent code server.
[0118] Reference is noW made to FIG. 3 in Which is repre
sented the simpli?ed functional ?oW diagram of the speci?c
softWare packages 5 and 6 to be installed respectively in the
computer server 1 hosting the online service and in the code
server 2, in order to be able to implement the online service
method of the invention.
[0119] The left hand part of FIG. 3 represents the How
diagram 10 of the softWare 5 Which shouldbe run in the server
connection.
1 of the online service. This softWare comprises the folloWing
[0107]
steps:
In the above Example 1, Without constraint, the
algorithm of the code server Will make random selection of a
line from the available lines and initiate a call to the telephone
of the user from the calling line.
[0120] (l 1): reception from a user terminal 7 of a request to
access the online service hosted by the computer server 1;
[0108] Step 2b: then transmission by the code server 2 of
the calling line number selected in 2a, to the online service
Which communicates it to the speci?c softWare 5 in order for
the latter then to be able to verify the code that Will be input by
a series of parameters) of the dynamic code on the basis of
the user and of the use Which Will be made of the dynamic
code, and determination of the rule for extraction from the
the user in response to the call from the code server.
[0109]
Step 3: next, the speci?c software 6 of the code
server 2 initiates a telephone call to the telephone 8 of the user,
using the calling line number selected previously (step 2a) as
call number.
[0110] Preferably, When the softWare 6 of the code server 2
initiates a call to the telephone 8 of the user from the calling
line (for example: +33 123456789), it interrupts this call after
the ?rst ring to avoid having the call ansWered by the user.
This makes it possible to have the number of the calling line
(containing the dynamic code) displayed on the display of the
telephone 8 of the user, Without this call consuming commu
nication units.
[0111] Step 4: the user discovers the incoming call and the
number of the calling line displayed on his or her telephone 8.
He or she then extracts the dynamic code therefrom. This
extraction is done according to the indications given previ
ously (step lb) in the context of the dynamic code request sent
by the online service.
[0112] Thus, in the example chosen, it Will be suf?cient for
the user to read the last 5 digits of the displayed calling line
number. HoWever, many other “encodings” of the dynamic
code Within the number of the calling line Will obviously be
possible Without departing from the frameWork of the present
[0121]
(12): generation of the speci?cation (in the form of
calling line number;
[0122] (13): transmission of a dynamic code request, pro
viding a set of parameters Which said code must satisfy, to
the softWare 6 of the code server 2;
[0123]
(14): reception of a calling line number, from the
software 6 of the code server;
[0124]
(15): local extraction of the dynamic code from the
calling line number;
[0125] (16): reception of the dynamic code transmitted by
the user terminal 7;
[0126] (17): comparison of the locally extracted dynamic
code, and of the dynamic code transmitted by the user via
his or her netWork terminal 7. If the tWo codes match, the
dynamic code of the user is declared valid and the user’s
access to the online service is authorized; otherWise, an
error message is prepared by the softWare 5 and transmitted
to the online service for display on the netWork terminal of
the user.
[0127]
The right hand part of FIG. 3 represents the How
diagram 20 of the softWare 6 Which must be run in the code
server 2. This softWare comprises the folloWing steps:
[0128] After the start 21:
[0129] (22): reception of the dynamic code request and of
the parameters specifying it, transmitted by the softWare 5
tion, he or she inputs the dynamic code in the space provided
of the server operating the online service;
[0130] (23): selection of a calling line, from the available
lines, on the basis of the parameters speci?ed in the
for the input of the pas sWord on his or her netWork terminal 7.
Thus, in the example chosen, the user inputs, on his or her
dynamic code request by the online service;
[0131] (24): sending of a telephone call from the calling
netWork terminal 7, the last 5 digits of the calling line number
line, to the telephone number of the user;
[0132] (25): transmission of the number of the calling line
invention.
[0113] When the user has the dynamic code after its extrac
Which is displayed on his or her telephone 8.
[0114] Obviously, in 4b, the netWork terminal 7 transmits
the input dynamic code to the software 5 of the online service.
[0115] Step 5: to ?nish, the softWare 5 of the online service
compares the dynamic code received via the terminal 7 of the
user, With that extracted from the calling line number trans
mitted previously (step 2b) by the code server for this user. If
to the softWare 5 of the online service, then return to the
start (21) pending the next dynamic code request.
[0133]
The softWare of the code server implements an algo
rithm for determining the number of the calling line, from the
available lines, on the basis of the parameters of the code
request Which has been received from the online service.
Mar. 7, 2013
US 2013/0060892 A1
To avoid having the transmission of the dynamic
communication costs for the online service or for the user,
code to the user generate communication costs, a ?rst alter
[0134]
Which is What the invention aims to make disappear. On the
contrary, in the method according to the invention, the send
ing of the dynamic code to the user does not generate any cost
native consists in having the call noti?cation sent by the
online service ask the user not to ansWer the call from the
calling line, as described above. As a variant or as a comple
ment, provision is advantageously made for the call made
from the calling line by the code server to be interrupted by
since there is no ansWer to the call made by the code server.
the user.
[0145] Furthermore, this method operates With all the exist
ing cell phones Without exception, and even With ?xed-line
telephones Which have a display, or With computer systems
provided With a modem and emulating the operation of a
telephone. Consequently, this novel method can be used by
the greatest possible number of subscribers to the telephony
[0135] In all the embodiments of the method according to
the invention, it is advantageous to assign a validity period to
services. In most of the cases envisaged in practice, the
dynamic code Will be supplied to the user via his or her cell
the dynamic code. This period can typically be set to a feW
minutes.
[0136] It may also be advantageous for the code server to
arrange for its lines to have a portion of their number com
mon, for example +33999-----.
[0137] This Way, the user-friendliness of the method Will be
enhanced, because, When the user has become accustomed to
this method, he Will quickly recogniZe a call from the code
phone, Which makes it possible to use the huge base, already
installed, of cell phones.
the code server itself after the ?rst ring, so as to avoid having
the user ansWer, bearing in mind that the call number Will in
any case remain displayed on the screen of the telephone of
1 . A method for supplying the user of an online service With
a dynamic code via a telephone, in Which said user supplies,
on the one hand, an identi?er to a computer server operating
an online service, by means of a netWork terminal connected
server and Will not be tempted to ansWer the call.
to said computer server by a digital netWork, and a dynamic
code to be used With the online service, Wherein the dynamic
code is made up of a subset of the digits that make up the
[0138] In another embodiment, the dynamic code, included
in the number of the calling line, Will be read automatically
number of a calling line, selected by a code server from a set
of available lines to call a telephone of the user, and Wherein
and used by an application installed on the telephone of the
the number is transmitted to the online service by the code
user.
server.
[0139]
This type of embodiment is particularly Well suited
2. The method as claimed in claim 1, Wherein the number
to a situation in Which a user has an application installed on
of the calling line, containing the dynamic code, is deter
his or her telephone, or Where the use thereof requires a
mined by an algorithm implemented by the code server, on
dynamic code to be supplied. In this case, the application Will
itself be adapted to automatically capture the dynamic code
included in the number of the calling line.
[0140] As an example, this may correspond to the situation
request transmitted by the online service.
of an online bank user Who Will be asked by the online bank
the basis of a set of parameters included in a dynamic code
3. The method as claimed in claim 2, Wherein, for a par
ticular choice of the parameters included in the dynamic code
request, the determination of the calling line number by the
site to produce the digital signature of a transaction, using his
code server is made by a random selection of the number of
or her signature application previously installed on his or her
the calling line from the numbers of available lines for the
telephone and requiring a dynamic code.
code server.
[0141] The method is identical to the one already described
up to the step of extraction by the user. In the dynamic code
speci?cation parameters, the online service indicates an auto
matic usage mode in P2 and speci?es the parameters P3 and
P4 in such a Way that the application installed on the tele
phone of the user can extract dynamic code. At this stage, the
user launches, on his or her telephone, the application Which
Will use the dynamic code. The application Will then either
consult the log of incoming calls and select the last number
(that of the calling line) or ask the user Which incoming call
number it should take into account. Once this selection is
made, the application automatically extracts the dynamic
code from the number of the calling line and performs the
tasks for Which it Was designed.
ADVANTAGES OF THE INVENTION
4. The method as claimed in claim 1, Wherein the dynamic
code is determined from the calling line number used by the
code server to call the telephone of the user, by a dynamic
code extraction rule, Which designates the digits of the tele
phone number of the calling line to be taken into account to
make up the dynamic code.
5. The method as claimed in claim 4, Wherein the dynamic
code extraction rule is either ?xed, or de?ned by the online
service on the occasion of each dynamic code request.
6. The method as claimed in claim 5, Wherein the extraction
rule comprises selecting the last 4, 5 or 6 digits of the number
of the calling line to make up the dynamic code.
7. The method as claimed in claim 4, Wherein the extraction
of the dynamic code from the calling line number, on the basis
of said extraction rule, is either performed manually by the
user, or performed automatically by a softWare application
possible to address the aims set, and offers a number of
installed on the telephone of the user.
8. The method as claimed in claim 7, Wherein, in the case of
decisive advantages compared to the knoWn methods for gen
manual extraction of the dynamic code by the user, the digits
erating and supplying one-time codes.
[0143] Unlike the knoWn methods, the dynamic code Will
of the dynamic code are ?rstly chosen by the user from the
display of the number of the calling line on the telephone of
not be generated in the cell phone itself, Which Would demand
the onboard presence of speci?c softWare dedicated to this
function.
server of the online service then transmitted to the user via a
the user, on the basis of the extraction rule communicated by
the online service to the user, then input on the netWork
terminal of the user and communicated to the softWare of the
online service.
9. The method as claimed in claim 7, Wherein, in the case of
conventional voice call or SMS, because that Would introduce
automatic extraction of the dynamic code from the telephone
[0142]
The method according to the invention makes it
[0144] Nor Will the dynamic code be generated by the
Mar. 7, 2013
US 2013/0060892 A1
number of the calling line, the telephone of the user is pro
vided With software suitable for reading the number of the
calling line, and for extracting the dynamic code therefrom on
the basis of an extraction rule prede?ned in said software, or
communicated by the online service to the telephone of the
transmission of a dynamic code request to the code server
user.
reception of the dynamic code transmitted by the user
10. The method as claimed in claim 1, further comprising
the folloWing steps:
transmission by the online service to said code server of a
request to send a dynamic code to a given user With the
online service, together With a set of parameters speci
fying the dynamic code;
transmission by the online service of a call noti?cation sent
to the netWork terminal of the user;
after the selection by the code server of a calling line
telephone number, transmission by the code server of the
number of the duly selected calling line to the server of
the online service, and extraction by said server of the
dynamic code from the calling line number;
and of a set of parameters specifying the dynamic code;
reception of a calling line number, from the code server;
local extraction on the server of the online service, of the
dynamic code from the calling line number;
terminal;
comparison of the locally extracted dynamic code, and of
the dynamic code transmitted by the user terminal, and if
the tWo codes match, the dynamic code of the user is
declared valid by the online service and the access of the
user to the online service is authorized; otherWise, an
error message is prepared by the softWare of the online
service for display on the netWork terminal of the user.
16. The method as claimed in claim 2, Wherein the softWare
of the code server implements the folloWing steps:
reception of the dynamic code request transmitted by the
softWare of the server operating the online service, and
of the parameters associated thereWith;
initiation of a telephone call by the code server to the
selection of a calling line from the available lines, on the
telephone of the user, by using the previously selected
calling line number;
on reception of the telephone call by the telephone of the
basis of the dynamic code request transmitted by the
user, manual or automatic extraction of the dynamic
code on the basis of the calling line number and of the
previously noti?ed extraction rule;
transmission by the user of the duly extracted dynamic
softWare of the server operating the online service, and
of the parameters associated thereWith;
sending of a telephone call from the duly selected calling
line to the telephone number of the user; and
transmission of the number of the calling line to the soft
Ware of the online service, then return to the start pend
ing the next dynamic code request.
code to the server of the online service, by means of his
or her netWork terminal;
on reception of the dynamic code by the server of the online
17. A system for supplying the user of an online service
With a dynamic code via a telephone, in Which said user
service, comparison betWeen the locally obtained
dynamic code and the dynamic code transmitted by the
user, and, if the tWo dynamic codes match, validation of
service, and a dynamic code intended to be used by the user
the dynamic code transmitted by the user.
11. The method as claimed in claim 10, Wherein the call
noti?cation is sent to the netWork terminal of the user to notify
the user of a call emanating from the calling line Whose
number contains the dynamic code, and to communicate to
the user the rule for extracting the dynamic code from the
calling line number.
supplies an identi?er to a computer server operating an online
With the online service, said system comprising:
a netWork terminal connected to said computer server by a
digital netWork;
a user telephone suitable for displaying the telephone num
ber of a calling line;
a computer server operating an online service;
a code server linked to said computer server by a secure
digital link;
12. The method as claimed in claim 11, Wherein the call
noti?cation transmitted to the netWork terminal of the user
comprises instructions to not ansWer the call originating from
said computer server operating the online service compris
the calling line.
said computer server comprising a softWare module suit
13. The method as claimed in claim 10, Wherein the code
server is programmed to cut the telephone communication
sent from the calling line to the telephone of the user after the
?rst ring.
14. The method as claimed in claim 1, Wherein the calling
line number selected from the available lines of the code
server is valid only for a limited period, of the order of a feW
minutes.
15. The method as claimed in claim 2, Wherein the softWare
of the online service implements the folloWing steps:
reception on behalf of a user terminal of a request to access
the online service hosted by the computer server;
generation of the speci?cation of the dynamic code, in the
form of a series of parameters, on the basis of the user
and of the use Which Will be made of the dynamic code,
and generation of the rule for extracting the dynamic
code from the calling line number;
ing a softWare module suitable for transmitting a
dynamic code request to the code server;
able for specifying a dynamic code request in the form of
a series of parameters, on the basis of the user and of the
use of the dynamic code, for generating a rule for
extracting the dynamic code and for transmitting such a
dynamic code request to the code server;
said code server comprising a softWare module suitable for
selecting a calling line from a set of available lines for
Which the number satis?es the parameters submitted in
the dynamic code request, for calling the telephone of
the user from the calling line and for transmitting a the
number of the calling line to said computer server; and
said softWare module of the computer server of the online
service also being suitable for comparing the dynamic
code extracted from the number of the calling line
received from the code server, and a dynamic code
received from the netWork terminal of the user.
*
*
*
*
*
Download PDF