METHOD OF AUTHENTICATING AND SIGNING A USER TO AN APPLICATION SERVICE USING A MOBILE PHONE AS A SECOND FACTOR IN COMPLEMENT AND INDEPENDENTLY OF A FIRST FACTOR

摘要

The invention relates to a two-factor authentication method of a user with an application service running on an application server (5) .This authentication method is characterized in that the first authentication factor is a PIN authentication code known only to the user and the Application Service, and in that the second authentication factor is the Mobile Communication Terminal (3) of the user on which a Trusted Application has been installed. of a trusted third party or certified by him, said trusted application being able to generate using said PIN authentication code and a secret key (Ks) shared only with the trusted third party, a code of Single Use Authentication (OTP) for each user authentication to the Application Service.