ACCESS METHOD TO AN ON LINE SERVICE BY MEANS OF ACCESS TOKENS AND OF A SECURE ELEMENT RESTRICTING THE USE OF THESE ACCESS TOKENS TO THEIR LEGITIMATE OWNER

摘要

Method allowing a user, using a Client Application, to access to an on line target server by means of a secure element, of a pseudonym and of an access token containing attributes, the aforementioned access token having been obtained from a Token Issuer server, which can either be an Attribute Provider or an Identity Provider, characterized by the fact that the Client Application obtaining the access token has no way to grant the benefit of the aforesaid access token to another Client Application, and that the method includes the following steps: - the provision to users of secure elements with specific characteristics by secure elements suppliers, - the creation of an account on a target server by means of a pseudonym, a public key and of such a secure element, - the creation of an account on a Token Issuer server by means of a pseudonym a public key and of such a secure element, - the request of an access token to a Token Issuer server by means of a pseudonym or alternatively a public key and of such a secure element, - the generation of an access token by a Token Issuer server, and the acceptance of the access token by the target server.