RU2158485C1 - Method for checking right for user's access to multiple access system - Google Patents

Abstract

FIELD: telecommunications. SUBSTANCE: method involves reading personal number, transmission of request of at least one personal identification number (PIN code), and permitting or prohibiting access to system upon comparison of response. PIN code is designed as sequence of characters, which are indexed. Request concerns several characters which are arbitrarily taken from the sequence. EFFECT: increased efficiency, increased reliability of access check. 7 cl, 2 dwg

Description

 The invention relates to systems with collective subscriber lines and can be used to identify a call from a subscriber connected to a shared line, as well as to protect against unauthorized access to resources of remote computer and telephone systems (UKTS), etc.

 A known method of checking a subscriber’s access right to a collective use system, including establishing a subscriber line connection, receiving, registering, and verifying an individual number of a calling subscriber, as well as transmitting to the latter using communication means a request for information regarding a personal identification number [1].

 The disadvantage of this method is the low degree of protection against unauthorized access to the system.

 There is a method of checking a subscriber’s access right to a collective use system, which consists in conducting an authorization procedure, including establishing a connection via a communication channel, receiving, registering and verifying an individual number of a calling subscriber, as well as transmitting to the latter using communication means an information request regarding at least personal identification number (PIN), followed by a decision on whether to allow or deny access to the system based on the results of comparing a subscriber’s response and with the database information about the true personal identification number of this subscriber [2].

 The disadvantages of this method are the long duration of the authorization procedure and the ability to disclose the individual identification number of a bona fide subscriber by unauthorized persons, for example, by scanning if the authorization procedure is performed automatically, as well as the possibility of accidental or intentional disclosure of this number by the operator if the authorization procedure is carried out from a computer keyboard , so the use of a SIM card and two PIN codes in this technical solution is not complete a guarantee against unauthorized access to the system.

 An object of the invention is the creation of the most effective, reliable and convenient way to check access rights to a collective use system, implemented using universal equipment of collective use systems for various purposes.

 The technical result that ensures the solution of the problem lies in reducing the duration of the authorization procedure, eliminating the accidental or intentional disclosure of a personal identification number by unauthorized persons and, therefore, increasing the degree of protection against unauthorized access to the system.

 The essence of the invention lies in the fact that in the method of checking the subscriber’s right of access to the collective use system, which consists in carrying out an authorization procedure, including establishing a connection via the communication channel, receiving, registering and verifying the individual number of the calling subscriber, as well as transmitting the request using the communication means to the latter information regarding at least one personal identification number (PIN), followed by a decision on whether to allow or deny access to the system by the results of comparing the subscriber’s response with the database information about the true personal identification number of this subscriber, to solve the problem as a personal identification number, use a series of numbered characters known to the subscriber who has the right to access the system, while the request for information is made in relation to one or several randomly selected from the specified series of characters, the sequence numbers of which are transmitted to the caller, and a comparison of the response of the last camping only in respect of characters, whose number was passed to the query, and other symbols of a personal identification number within the same authorization procedures remain secret.

 In some cases, at least two personal identification numbers (PINs) are used in the form of the corresponding number of rows, numbered in order of characters, these numbers are assigned their own serial numbers and the serial number of the rows (PINs) and random numbers selected are transmitted to the caller characters in the corresponding rows, followed by a decision on allowing or prohibiting access to the system based on the results of comparing the characters received in the subscriber’s response with the database information in Ocean of the personal identification numbers that are involved in this query.

 As a rule, at each subsequent call of the subscriber, the authorization procedure is performed with a change in the numbers of characters transmitted to the subscriber upon request, the request being made automatically or with the help of an operator, while the selection of the numbers of characters transmitted to the caller upon request is made using a random number generator, and letters, Arabic numerals or other characters are used as characters in PIN codes and entered using the keys on the telephone or computer.

 Figure 1 shows a schematic diagram of the architecture of a shared system based on a computer telephony platform, figure 2 is a diagram of a schematic architecture of an intelligent voice server of this system, one of the functions of which is to carry out the authorization procedure according to the present invention.

 The hardware and software complex of the system based on the Computer Telephony Platform includes: station 1 for switching channels, an intelligent voice server 2, editor for 3 call processing scripts, 4 boards for Dialogic, AWP 5 Administrators, Server 6 Dialogic CT-Connect, Server 7 of the control system databases (DBMS), system database 8 data (DB), Calling Card database 17.

 Intelligent voice server 2 includes a call script processor 9, a hardware management core 10, an interface 11 with Dialogic CT-Connect, an interface 12 Sybase Open Server.

 The method of checking the subscriber’s access right to the collective use system is as follows.

Depending on the implementation of UKTS, the user can use various communication channels to connect to the system:
- telephone communication channels;
- channels of cellular communication;
- payphone communication channels;
- satellite communication channels;
- computer communication channels using the Internet.

The choice of communication channel determines the means of user access to a remote computer in the system:
- telephone or fax machine;
- radiotelephone;
- payphone;
- a computer connected to the network (local or global).

 Intelligent voice server receives an incoming call from the PBX.

 After the subscriber is connected via the communication channel with UKTS, the individual number (or name) of the calling subscriber is transmitted. This number is registered, its presence or absence in the "black list" is checked, and, in the latter case, the details of this user stored in the database are determined by which the caller's authorization (authentication) procedure can be performed. These details are one or more personal identification numbers (PIN codes) that are assigned to this user. A unique combination is used as a PIN code - a series of characters numbered in order, known to the subscriber who has the right to access the system. Thus, at least two codes are assigned to the subscriber: an individual number or name to establish the initial connection, and a PIN or password to complete the "access check."

 In some cases, at least two PIN codes are assigned in the form of the corresponding number of rows, numbered in order of characters (numbers, letters, etc.), and these numbers are assigned their own serial numbers.

For example: The individual user number is 127345,
PIN N1 consists of:
number of characters: 1, 5, 7, 8, 2, 8, 0, 0, 9, 1, 6, 4
numbering: 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12
PIN N2 consists of:
number of characters: 2, 2, 4, 8, 2, 8, 9, 7, 6, 3
numbering: 1, 2, 3, 4, 5, 6, 7, 8, 9, 10
Each character in this entry corresponds to a serial number written under it.

 The caller is sent a request for PIN codes, which indicates their serial numbers and serial numbers of characters selected from the corresponding series using a random number generator, for example: N1 (2, 3, 7) and N2 (1, 3, 5, eight). The subscriber is invited to type characters from the telephone or computer keyboard that correspond to the transmitted numbers.

 To complete the authorization procedure with a positive result, the caller must enter the answer: N1 (5, 7, 0), N2 (2, 4, 2, 7), in which case the subscriber will be given permission to access the system. Otherwise, the authorization result will be negative and, therefore, a decision will be made to ban access to the system for this call.

 If UKTS has built-in support for the operator service, then, upon receiving a subscriber's call (incoming call), the system automatically switches it (immediately or after a predetermined pause, during which the user can be given the opportunity to authorize automatically) to the telephone number or computer terminal of the operator UKTS connected to the system. The procedure for requesting codes from the user is transmitted to the operator’s computer screen, which performs the authorization procedure from the computer keyboard.

 The ability to enter unique access codes in the above order provides an intelligent voice server.

 Since the request for information is made in relation to one or more randomly selected characters from the indicated series, the sequence numbers of which are transmitted to the caller, and the response of the latter is compared only with respect to the characters whose sequence numbers were transmitted during the request, the remaining characters of the personal identification number within one procedure authorizations over communication channels are not transmitted and are kept secret.

 Since the first individual number is completely reported to the system, the possibility of confusing one subscriber with another is excluded, despite the incomplete input of subsequent codes.

 At each subsequent call of the subscriber, the authorization procedure is performed with a change in at least one of the character numbers transmitted to the subscriber upon request, which prevents the possibility of unauthorized access to the system even if the characters transmitted during the previous call to the system accidentally or intentionally disposal of unauthorized persons. This makes covert scanning of code transfers useless and eliminates the possibility of abuse by the operator.

 The transfer of PIN codes not in full allows to reduce the duration of the authorization procedure according to the present method, which is assigned the abbreviated name ACCESS-2000.

 An example of the implementation of a debit and credit telephone card system based on the Computer Telephony Platform using the ACCESS-2000 solution.

 1. The purpose of the system.

 The provision of international, long-distance and local communication services, as well as additional services to subscribers of the public telephone network through the use of telephone cards. Each card has a unique number and code.

 To access the services, the user must establish a connection with the system by the appropriate local telephone number and inform the system (automatically or through the operator) of the number and, in accordance with ACCESS-2000, the card code. Services are provided as part of the funds available on the user's account or on credit based on customized tariff plans.

 The system is implemented to work both in automatic mode (using the tone dialing mode of the phone and voice menu), and through the operator.

1.1 Basic application functions of the system
Maintaining deposit and credit accounts of cards of legal entities and individuals.

Implementation of additional services for cardholders:
- choice of language of voice messages;
- abbreviated set;
- receiving voice information about the status of the account, the maximum duration of the conversation, the cost of services;
- permission / prohibition of calls to directions;
- generation of a report on the facts of the provision of services to cardholders;
- real-time call charging, call termination at the end of the funds in the subscriber's account;
- Creation and change of tariff plans for services;
- accumulation of information about the operation of the system. Receiving analytical reports based on accumulated information;
- Formation of an invoice for legal entities.

1.2 Interaction with the system
The system staff consists of the following employees:
Charger - sets up and enforces all tariff plans, monitors the relevance of access codes.

 Agents (operators) - help the user to receive services in the case of using the "call operator" mode.

 Accountant - enters cards into the system, maintains contracts and accounts, receives information about calls and debiting funds from the card account, enters information on received payments and generates an invoice for legal entities.

 Financial analyst - analyzes the accumulated information about the use of the system for subsequent decision-making on changing or updating the application settings of the system (including tariff plans, call routing, etc.).

 System administrator - monitors the operation of the system, performs the necessary actions to maintain its operability (backup management), monitors the operation of agents and congestion of channels. Manages access rights to the system staff.

2. Applied system architecture
The system is implemented as a hardware-software complex based on the Computer Telephony Platform depicted in FIG. 1.

2.1 Station 1 channel switching
Provides incoming calls from the public telephone network 16 (PSTN), routing outgoing calls. Depending on the system requirements, the Station must support digital channel switching, automatic call distribution (ACD), etc.

2.2 Intelligent Voice Server 2
Executes call processing scripts taking into account the conditions set for each user in the Calling Card database 17. Executes call processing scripts running OC Windows NT on Intel platform. It implements the following functions:
- accepts an incoming call from the PBX;
- plays the script of the voice menu;
- performs authorization in accordance with the ACCESS-2000 solution, that is, it allows you to enter unique user access codes using the keys of the telephone set in tone mode;
- allows you to dial the number of the called subscriber using information about the call route;
- Routes the call based on predefined rules (user profile, availability of funds in the account, call direction, etc.);
- Reproduces reference information about the status of the subscriber's account in whole numbers, using the ability to generate voice messages taking into account the rules of the Russian and English languages;
- switches the call to the operator (either by pressing a key in tone mode or automatically);
- manages the duration of the call in real time and interrupts the conversation at the end of the funds in the account or reaching the established limits (in accordance with the tariff plan);
- deducts funds from the user account by interacting with the DBMS server;
- writes all information about his work (including errors) to the database.

 The call script handler 9 is a custom state machine, controlled by events that occur in the system and data received from the application databases during the execution of the script. Sources of these events are resources - voice or network channels. This server element also implements the functions of an interactive voice response system, including tracking telephone key presses in tone mode, generating voice messages based on information received from application databases and language rules described in the system database. The DBMS connection manager 19 establishes and maintains all communication routes between the call script processor and the DBMS.

 The core 10 equipment control (Dialogic) is an interface to the Board 4 Dialogic protocol 20 TCP / IP through a standard API and provides control of communication channels, setting the physical parameters of the channels, monitoring the status of the channels, as well as specific functions for processing voice messages.

 Interface 11 with Dialogic CT-Connect provides interaction with a switching station for receiving call information.

 Interface 12 Sybase Open Server provides an open external protocol to the server and is designed for remote administration, monitoring and configuration of one or more servers. Support for the Sybase TDS protocol (Tabular Data Stream) provides the organization of interaction with the server using almost any modern development tool 14, including Visual Basic, Power Builder Visual C ++, and others that support the ODBC protocol or Sybase Open Client. This interface allows you to organize information exchange between servers and DBMS using remote procedure calls.

 The system database (database) 8 is managed by the DBMS and is used to store scripts for processing calls, voice messages, equipment settings, and other information necessary for the operation of the remaining server elements.

2.3 Editor 3 call processing scripts
Provides a call processing script for Intelligent Voice Server 2.

It implements the following functions:
2.3.1 Graphical interface that provides the presentation of the call processing script in the form of a graph, the ability to edit it. Each state is displayed as a graphic primitive, and transitions between them are displayed as a unidirectional arrow. There are five types of conditions:
- the beginning of the script;
- process - allows you to initiate a particular action with the resource and organize the expectation of events from the resource;
- request to the database;
- capture of the resource by the current process;
- release of the resource.

 In each state, it is possible to add the VBScript language event handlers "Enter State" and "Exit State". Transitions between states are determined by an event or group of events. The transition can be conditional - the condition is set in VBScript. Possible actions with the resource (resource functions) are defined at the system level and cannot be changed in the script editor.

 2.3.2 Create, modify and edit user variables. User variables are used in event handlers, transition conditions, and database queries.

2.3.3 Create and edit voice messages taking into account the rules of grammar of the Russian and English languages. A message can consist of an arbitrary number of components of one of the following types:
- permanent part:
- fractional or integer numeral;
- unit;
- a list (for example, a list of cities):
- date and time.

 Import into the system files in Dialogic ADPCM format, which serve as the basis for the formation of messages.

 2.3.4 Configuring connection pools with application DBMS.

2.4 Boards 4 Dialogic
Cards for computer telephony are divided into the main types:
- voice cards provide the establishment of a telephone line connection and voice interaction with the subscriber, and also perceive the commands issued by the user by pressing the keys of the telephone with tone dialing;
- switching boards used both for internal switching of resources and for organizing switching between telephone lines connected to one system.

 All voice cards recognize the answer of the subscriber in the form of tone dialing signals. Support for both analog and digital lines 13 ISDN.

2.5 AWP 5 Administrator
Provides the following features:
2.5.1 Monitoring channel load in real time, taking into account the following parameters:
- total number of channels;
- number of occupied channels;
- balance of free channels.

2.5.2 Information about the loading of channels over a period of time in the form of a graph and a table for the following indicators:
- the load level is greater or less than the specified value;
- The history of loading channels for different periods of time.

 2.5.3 Dialogic analog and digital channel setup.

 2.5.4 Configuring system agents.

 2.5.5 Monitoring agents in real time with the status of the agent in tabular and graphical form.

 2.5.6 Agent work history with display of states and statuses.

2.5.7 Agent performance statistics:
- the number of calls served by agents for a period of time (for all agents, for each agent, for the ACD group);
- average call service time over a period of time (for all agents, for each agent, for the ACD group);
- the total number of received calls over a period of time (for all agents, for each agent, for ACD group) divided by “unsuccessful calls” (the subscriber made a call but was not authorized) and “successful calls” (the subscriber made a call and authorized);
- the number of “successful calls” for a period of time divided by calls served through the Voice Menu and served through the operator (for all agents, for each agent, for ACD group).

2.6 Server 6 Dialogic CT-Connect
It provides the following basic functions:
- implements support for the necessary communication protocols for interaction with the channel switching station through the CTI-interface 15;
- provides a single application interface for interaction with protocols and messages of various switching stations;
- allows you to track the flow of service requests and status messages that occur between the voice server and the channel switching station.

 There are versions of Dialogic CT-Connect for the Windows NT / Intel and Sun Solaris / Sun platforms.

2.7 Server 7 database management system (DBMS)
Provides reliable storage, efficient processing of all necessary data and transactions. The Sybase Adaptive Server Enterprise DBMS server is used, working both on the Intel / Windows NT platform and on the main RISC / Unix platforms. Sybase product management is provided through the Sybase Central 18 system management tool.

 The technical result from the use of the invention in the described system is to reduce the duration of the authorization procedure, to prevent accidental or intentional disclosure of a personal identification number by unauthorized persons and, therefore, to increase the degree of protection against unauthorized access to the system and violation of its functions.

Sources of information
1. RF patent N 2111621, 1998.

 2. RF patent N 2111615, 1998 (prototype).

Claims (7)

 1. A method of checking a subscriber’s access right to a collective use system, which consists in conducting an authorization procedure, including establishing a connection through a communication channel, receiving, registering, and verifying the individual number of the calling subscriber, as well as transmitting to the latter using communication means a request for information regarding one personal identification number (PIN-code), followed by a decision on whether to allow or deny access to the system based on the results of comparing the subscriber’s response with the info database of the true personal identification number of this subscriber, characterized in that as a personal identification number a series of numbered symbols is used, known to the subscriber who has the right to access the system, and information is requested regarding one or more randomly selected from the specified a number of characters, the sequence numbers of which are transmitted to the caller, and the comparison of the answer of the latter is made only in relation to characters, the sequence numbers of which s have been transferred at the request, and other symbols of a personal identification number within the same authorization procedures remain secret.  2. The method according to claim 1, characterized in that at least two personal identification numbers (PINs) are used in the form of a corresponding number of rows of numbered symbols in order, assign these numbers to their own sequence numbers and transmit the sequence numbers of the rows to the caller (PIN codes) and serial numbers of randomly selected characters in the corresponding rows, followed by a decision on whether to allow or deny access to the system based on the results of comparing the characters received in the subscriber’s response with Data bases regarding those personal identification numbers that participated in this request.  3. The method according to claim 1 or 2, characterized in that at each subscriber's request, the authorization procedure is performed with a change in the number of characters transmitted to the subscriber upon request.  4. The method according to any one of claims 1 to 3, characterized in that the request is carried out automatically or with the help of an operator.  5. The method according to any one of claims 1 to 4, characterized in that the choice of symbol numbers transmitted to the caller upon request is made using a random number generator.  6. The method according to any one of claims 1 to 5, characterized in that the symbols used are numbers, letters or other symbols.  7. The method according to any one of claims 1 to 6, characterized in that the PIN codes are entered using the keys of the telephone or computer.

Images