JP5049962B2 - 個人の存在を条件とする、トークンによるトランザクション認証 - Google Patents
個人の存在を条件とする、トークンによるトランザクション認証 Download PDFInfo
- Publication number
- JP5049962B2 JP5049962B2 JP2008511863A JP2008511863A JP5049962B2 JP 5049962 B2 JP5049962 B2 JP 5049962B2 JP 2008511863 A JP2008511863 A JP 2008511863A JP 2008511863 A JP2008511863 A JP 2008511863A JP 5049962 B2 JP5049962 B2 JP 5049962B2
- Authority
- JP
- Japan
- Prior art keywords
- host
- token
- user
- interface
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/32—User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
- G06F21/35—User authentication involving the use of external additional devices, e.g. dongles or smart cards communicating wirelessly
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/02—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3821—Electronic credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
- G06Q20/40145—Biometric identity checks
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2115—Third party
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2133—Verifying human interaction, e.g., Captcha
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
- G06Q30/0601—Electronic shopping [e-shopping]
Description
Claims (26)
- ホストのユーザが開始した前記ホストとサーバとの間のトランザクションを前記ホストに接続されたトークンによって認証するための方法であって、
前記ユーザから入力された前記ユーザの識別証明情報を前記トークンによって検証し、
人間による規定の行為を行う要求に対応して前記ユーザが行った前記規定の行為により生じる信号に基づいて前記トークンが前記人間による規定の行為を検出し、
前記検証が行われるとともに前記検出が行われることを条件として、前記ホストと前記サーバとの間の前記トランザクションの認証に用いられるトークン認証データを前記トークンが生成することを特徴とする方法。 - 前記識別証明情報がパスワードである、請求項1の方法。
- 前記識別証明情報が生体情報である、請求項1の方法。
- 前記人間による規定の行為が、前記トークンが前記ホストに接続されている間に少なくとも部分的に実行される、個人と前記トークンとの間の相互作用を含む、請求項1の方法。
- 前記相互作用がアノニマスである、請求項4の方法。
- 前記アノニマス相互作用が、前記個人と前記トークンとの間の直接的な相互作用である、請求項5の方法。
- 前記トークンが前記トークン認証データの生成を実行しようとしていることを合図するユーザ・インターフェイスを含み、
前記直接的な相互作用が、前記合図の後、少なくとも所定の時間だけ、前記トークンを前記ホストに接続されたままにすることを含む、請求項6の方法。 - 前記直接的な相互作用が、前記ホストから前記トークンを分離し、それから前記トークンを前記ホストに再接続することを含む、請求項6の方法。
- 前記トークンがユーザ・インターフェイスを含み、前記直接的な相互作用が、前記ユーザ・インターフェイスのアノニマス操作を含む、請求項6の方法。
- 前記アノニマス相互作用が、少なくとも部分的に前記ホストによって調停される、請求
項5の方法。 - 前記アノニマス相互作用は、前記ホストが前記個人から複数の前記入力を受信すること
を含み、前記入力の各々が、対応する前記信号に実質的に同期されて受信される、請求項
10の方法。 - 前記トークンがユーザ・インターフェイスを含み、
前記トークンによって前記サーバを検証し、そして
前記サーバが認証されている場合には、前記トークンが前記ユーザ・インターフェイスを介してそれを表示する、請求項1の方法。 - ホストとサーバとの間のトランザクションを認証するためのデバイスであって、
前記ホストに相互作用するためのデバイス・インターフェイスと、
前記デバイス・インターフェイスを前記ホストに接続するためのコネクタと、
ユーザから入力された前記ユーザの識別証明情報を検証するように作動可能なコントローラであって、
人間による規定の行為を行う要求に対応して前記ユーザが行った前記規定の行為により生じる信号に基づいて前記人間による規定の行為の検出が行われるとともに前記ユーザの識別証明情報の検証が行われたことを条件として、前記デバイス・インターフェイスを介して前記ホストからトランザクション認証要求を受信したときに、一度だけ前記トランザクションを認証するように作動可能な前記コントローラと、
を備える、デバイス。 - 前記人間による規定の行為が、前記認証要求が受信される前の所定の時限内に、前記デバイス・インターフェイスを前記ホストへ接続することを含む、請求項13のデバイス。
- ユーザ・インターフェイスを備え、前記人間による規定の行為が、前記認証を可能にするために前記ユーザ・インターフェイスに相互作用することを含む、請求項13のデバイス。
- ユーザ・インターフェイスを備え、前記人間による規定の行為は、前記ユーザ・インターフェイスが個人に、前記認証要求が受信されたことを表示した後の少なくとも所定の時間だけ、前記デバイス・インターフェイスを前記ホストへ作動可能に接続したままにすることを含む、請求項13のデバイス。
- ユーザ・インターフェイスを備え、前記人間による規定の行為が、前記ユーザ・インターフェイスからの少なくとも一つの信号の各々に実質的に同期させて前記ホストに相互作用することを含む、請求項13のデバイス。
- 前記識別証明情報がパスワードである、請求項13のデバイス。
- ユーザ・インターフェイスを備え、前記コントローラが、また、前記サーバを検証し、そして前記ユーザ・インターフェイスを介して前記サーバが認証されているか否かを表示するように作動可能である、請求項13のデバイス。
- 前記認証に無関係な機能を前記ホストに提供するための機能コンポーネントを備える、請求項13のデバイス。
- 前記機能コンポーネントが、前記デバイス・インターフェイスを介して前記ホストから受信したデータを記憶するためのメモリを含む、請求項20のデバイス。
- 前記デバイス・インターフェイスが前記ホストへ接続されると、前記コントローラが、
(i)前記認証要求がペンディングである場合、前記機能を前記ホストへ提供することなく、前記トランザクションを認証するために前記要求を取り扱うよう、そして
(ii)そうでない場合、前記機能を前記ホストへ提供するように作動可能である、請求項20のデバイス。 - 前記認証要求を取り扱った後、前記デバイス・インターフェイスを介して前記機能を前記ホストへ提供するよう要求を受信すると、前記コントローラが、前記ユーザに、前記ホストから前記デバイス・インターフェイスを分離し、それから前記デバイス・インターフェイスを前記ホストへ再接続するよう通知するように作動可能である、請求項22のデバイス。
- 前記機能を前記ホストへ提供している間に前記認証要求を受信すると、前記コントローラが、前記ユーザに、前記ホストから前記デバイス・インターフェイスを分離し、それから前記デバイス・インターフェイスを前記ホストへ再接続するよう通知するように作動可能である、請求項22のデバイス。
- 前記認証要求を取り扱った後、前記デバイス・インターフェイスを介して前記機能を前記ホストへ提供するよう要求を受信すると、前記コントローラが、前記機能を前記ホストへ提供するように作動する、請求項22のデバイス。
- 前記機能を前記ホストへ提供している間に前記認証要求を受信すると、前記コントローラが、前記機能を前記ホストへ提供することを停止し、その代わりに、前記認証要求を扱うように作動可能である、請求項22のデバイス。
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US68234505P | 2005-05-19 | 2005-05-19 | |
PCT/IL2006/000583 WO2006123339A2 (en) | 2005-05-19 | 2006-05-17 | Transaction authentication by a token, contingent on personal presence |
Related Child Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2011204303A Division JP2012048728A (ja) | 2011-09-20 | 2011-09-20 | 個人の存在を条件とする、トークンによるトランザクション認証 |
JP2012114837A Division JP2012198914A (ja) | 2012-05-18 | 2012-05-18 | 個人の存在を条件とする、トークンによるトランザクション認証 |
Publications (2)
Publication Number | Publication Date |
---|---|
JP2008541290A JP2008541290A (ja) | 2008-11-20 |
JP5049962B2 true JP5049962B2 (ja) | 2012-10-17 |
Family
ID=37431666
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2008511863A Expired - Fee Related JP5049962B2 (ja) | 2005-05-19 | 2006-05-17 | 個人の存在を条件とする、トークンによるトランザクション認証 |
Country Status (6)
Country | Link |
---|---|
US (1) | US11086978B2 (ja) |
EP (1) | EP1886269A4 (ja) |
JP (1) | JP5049962B2 (ja) |
KR (1) | KR100997911B1 (ja) |
CN (1) | CN101390126A (ja) |
WO (1) | WO2006123339A2 (ja) |
Families Citing this family (38)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7945952B1 (en) * | 2005-06-30 | 2011-05-17 | Google Inc. | Methods and apparatuses for presenting challenges to tell humans and computers apart |
US8005459B2 (en) * | 2005-12-16 | 2011-08-23 | Research In Motion Limited | System and method of authenticating login credentials in a wireless communication system |
US8099082B2 (en) | 2005-12-16 | 2012-01-17 | Research In Motion Limited | System and method wireless messaging in a wireless communication system |
US20070150746A1 (en) * | 2005-12-27 | 2007-06-28 | Li-Kuo Chiu | Portable storage with bio-data protection mechanism & methodology |
US8122491B2 (en) * | 2006-05-18 | 2012-02-21 | Microsoft Corporation | Techniques for physical presence detection for a communications device |
GB2438452B (en) * | 2006-05-24 | 2010-12-15 | Nokia Corp | Portable telecommunications apparatus |
JP4814718B2 (ja) * | 2006-07-28 | 2011-11-16 | 株式会社リコー | 認証制御方法及び認証制御プログラム |
US8220047B1 (en) | 2006-08-09 | 2012-07-10 | Google Inc. | Anti-phishing system and method |
US8424057B2 (en) | 2007-12-28 | 2013-04-16 | Ebay, Inc. | Mobile anti-phishing |
US8918872B2 (en) * | 2008-06-27 | 2014-12-23 | Mcafee, Inc. | System, method, and computer program product for reacting in response to a detection of an attempt to store a configuration file and an executable file on a removable device |
US8386773B2 (en) | 2008-12-09 | 2013-02-26 | Research In Motion Limited | Verification methods and apparatus for use in providing application services to mobile communication devices |
US8225401B2 (en) * | 2008-12-18 | 2012-07-17 | Symantec Corporation | Methods and systems for detecting man-in-the-browser attacks |
US20100205448A1 (en) * | 2009-02-11 | 2010-08-12 | Tolga Tarhan | Devices, systems and methods for secure verification of user identity |
US20100328074A1 (en) * | 2009-06-30 | 2010-12-30 | Johnson Erik J | Human presence detection techniques |
BR112012008846A2 (pt) * | 2009-10-16 | 2019-09-24 | Visa Int Service Ass | método e sistema anti-fraude por indução |
KR101284114B1 (ko) * | 2009-11-18 | 2013-07-10 | 한국전자통신연구원 | 익명 id 관리 장치 및 그 방법, 익명 id 관리 시스템 및 이를 이용한 서비스 제공 방법 |
CN101800987B (zh) * | 2010-02-10 | 2014-04-09 | 中兴通讯股份有限公司 | 一种智能卡鉴权装置及方法 |
US8656486B2 (en) * | 2010-02-12 | 2014-02-18 | Authentec, Inc. | Biometric sensor for human presence detection and associated methods |
EP2647003A4 (en) * | 2010-11-30 | 2014-08-06 | Towson University | PROTECTION AGAINST HUMAN INTERACTION USING SOUNDS |
US20120166335A1 (en) * | 2010-12-23 | 2012-06-28 | Sanjay Bakshi | Transaction integrity |
EP2795530B1 (en) * | 2011-12-19 | 2020-02-26 | Hand Held Products, Inc. | Encoded information reading terminal using external token |
CN102611556B (zh) * | 2012-03-31 | 2014-10-29 | 飞天诚信科技股份有限公司 | 一种动态令牌的工作方法 |
EP2675106A1 (en) * | 2012-04-23 | 2013-12-18 | ABB Technology AG | Industrial automation and control device user access |
CN102801531B (zh) * | 2012-09-04 | 2015-03-04 | 飞天诚信科技股份有限公司 | 一种基于声音传输的动态令牌的工作方法 |
US8966599B1 (en) * | 2013-03-14 | 2015-02-24 | Amazon Technologies, Inc. | Automatic token renewal for device authentication |
US9705869B2 (en) * | 2013-06-27 | 2017-07-11 | Intel Corporation | Continuous multi-factor authentication |
CN104580108B (zh) * | 2013-10-24 | 2018-04-10 | 深圳市腾讯计算机系统有限公司 | 信息提示方法和系统、服务器 |
US9306930B2 (en) | 2014-05-19 | 2016-04-05 | Bank Of America Corporation | Service channel authentication processing hub |
US9836594B2 (en) | 2014-05-19 | 2017-12-05 | Bank Of America Corporation | Service channel authentication token |
CN104394145B (zh) * | 2014-11-25 | 2015-09-23 | 飞天诚信科技股份有限公司 | 一种具有日志功能的动态令牌及其工作方法 |
US10769622B2 (en) * | 2015-03-25 | 2020-09-08 | Facebook, Inc. | User communications with a merchant through a social networking system |
JP6554969B2 (ja) * | 2015-07-24 | 2019-08-07 | 沖電気工業株式会社 | 取引装置 |
EP3364363A1 (en) * | 2017-02-21 | 2018-08-22 | Mastercard International Incorporated | Transaction cryptogram |
KR101946634B1 (ko) | 2017-07-04 | 2019-05-08 | 김덕우 | 비밀번호 입력 시스템 |
US10630487B2 (en) * | 2017-11-30 | 2020-04-21 | Booz Allen Hamilton Inc. | System and method for issuing a certificate to permit access to information |
US10986079B2 (en) | 2018-12-06 | 2021-04-20 | Bank Of America Corporation | System and method for hierarchical decisioning within a hybrid blockchain |
US10944745B2 (en) | 2018-12-06 | 2021-03-09 | Bank Of America Corporation | System and method for device and transaction authentication |
US20210326858A1 (en) * | 2020-04-15 | 2021-10-21 | Capital One Services, Llc | Post-provisioning authentication protocols |
Family Cites Families (29)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5241594A (en) * | 1992-06-02 | 1993-08-31 | Hughes Aircraft Company | One-time logon means and methods for distributed computing systems |
US5432851A (en) * | 1993-10-21 | 1995-07-11 | Tecsec Incorporated | Personal computer access control system |
US5621912A (en) * | 1994-12-29 | 1997-04-15 | International Business Machines Corporation | Method and apparatus for enabling monitoring of guests and native operating systems |
US6246767B1 (en) * | 1995-04-03 | 2001-06-12 | Scientific-Atlanta, Inc. | Source authentication of download information in a conditional access system |
US6607136B1 (en) * | 1998-09-16 | 2003-08-19 | Beepcard Inc. | Physical presence digital authentication system |
CA2400440C (en) * | 2000-02-18 | 2016-07-19 | Vasco Data Security, Inc. | Field programmable smart card terminal and token device |
BR0111919A (pt) * | 2000-06-28 | 2003-06-17 | Holdings Ltd G | Métodos de transação, de obtenção e de compra de um produto e de acesso temporário a um produto, dispositivo pessoal portátil de identificação e de controle de transação e sistemas de compra de um produto e de acesso temporário a um produto |
US20020091937A1 (en) * | 2001-01-10 | 2002-07-11 | Ortiz Luis M. | Random biometric authentication methods and systems |
US7861091B2 (en) * | 2001-02-28 | 2010-12-28 | O2Micro International Limited | Smart card enabled secure computing environment system |
US9219708B2 (en) * | 2001-03-22 | 2015-12-22 | DialwareInc. | Method and system for remotely authenticating identification devices |
US20030087601A1 (en) * | 2001-11-05 | 2003-05-08 | Aladdin Knowledge Systems Ltd. | Method and system for functionally connecting a personal device to a host computer |
WO2003044721A2 (en) | 2001-11-19 | 2003-05-30 | Burchette Robert L Jr | Transaction card system having security against unauthorized usage |
WO2003052562A1 (en) * | 2001-12-19 | 2003-06-26 | Elling Innovative Group As | A copy-protected optical information carrier and methods for its manufacture and operation |
JP3845635B2 (ja) * | 2002-02-22 | 2006-11-15 | 富士通株式会社 | 情報処理装置および認証処理プログラム |
US7149899B2 (en) * | 2002-04-25 | 2006-12-12 | Intertrust Technologies Corp. | Establishing a secure channel with a human user |
US20060032905A1 (en) * | 2002-06-19 | 2006-02-16 | Alon Bear | Smart card network interface device |
US20040024817A1 (en) * | 2002-07-18 | 2004-02-05 | Binyamin Pinkas | Selectively restricting access of automated agents to computer services |
US20050044385A1 (en) * | 2002-09-09 | 2005-02-24 | John Holdsworth | Systems and methods for secure authentication of electronic transactions |
US20040254793A1 (en) * | 2003-06-12 | 2004-12-16 | Cormac Herley | System and method for providing an audio challenge to distinguish a human from a computer |
US8112483B1 (en) * | 2003-08-08 | 2012-02-07 | Emigh Aaron T | Enhanced challenge-response |
US7725395B2 (en) * | 2003-09-19 | 2010-05-25 | Microsoft Corp. | System and method for devising a human interactive proof that determines whether a remote client is a human or a computer program |
US7533411B2 (en) * | 2003-09-23 | 2009-05-12 | Microsoft Corporation | Order-based human interactive proofs (HIPs) and automatic difficulty rating of HIPs |
US7337324B2 (en) * | 2003-12-01 | 2008-02-26 | Microsoft Corp. | System and method for non-interactive human answerable challenges |
US20050193208A1 (en) * | 2004-02-26 | 2005-09-01 | Charrette Edmond E.Iii | User authentication |
GB2412979A (en) * | 2004-04-07 | 2005-10-12 | Hewlett Packard Development Co | Computer access control based on user behaviour |
US7606918B2 (en) * | 2004-04-27 | 2009-10-20 | Microsoft Corporation | Account creation via a mobile device |
US7693797B2 (en) * | 2004-06-21 | 2010-04-06 | Nokia Corporation | Transaction and payment system security remote authentication/validation of transactions from a transaction provider |
US8473336B1 (en) * | 2004-09-20 | 2013-06-25 | Jared Kopf | Resource access control method and system for imprinting a product or service on the mind of a user of an online resource |
US7848501B2 (en) * | 2005-01-25 | 2010-12-07 | Microsoft Corporation | Storage abuse prevention |
-
2006
- 2006-05-17 KR KR1020077027616A patent/KR100997911B1/ko not_active IP Right Cessation
- 2006-05-17 US US11/434,818 patent/US11086978B2/en active Active
- 2006-05-17 CN CNA2006800171189A patent/CN101390126A/zh active Pending
- 2006-05-17 WO PCT/IL2006/000583 patent/WO2006123339A2/en not_active Application Discontinuation
- 2006-05-17 EP EP06728358A patent/EP1886269A4/en not_active Ceased
- 2006-05-17 JP JP2008511863A patent/JP5049962B2/ja not_active Expired - Fee Related
Also Published As
Publication number | Publication date |
---|---|
JP2008541290A (ja) | 2008-11-20 |
WO2006123339A3 (en) | 2007-10-18 |
KR100997911B1 (ko) | 2010-12-02 |
CN101390126A (zh) | 2009-03-18 |
EP1886269A2 (en) | 2008-02-13 |
WO2006123339A2 (en) | 2006-11-23 |
US20060265340A1 (en) | 2006-11-23 |
KR20080009217A (ko) | 2008-01-25 |
US11086978B2 (en) | 2021-08-10 |
EP1886269A4 (en) | 2010-05-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP5049962B2 (ja) | 個人の存在を条件とする、トークンによるトランザクション認証 | |
US10187211B2 (en) | Verification of password using a keyboard with a secure password entry mode | |
CN106464673B (zh) | 用于验证装置注册的增强的安全性 | |
KR100331671B1 (ko) | 퍼스널 디바이스, 단말기, 서버, 및 사용자와 단말기간에신뢰 접속을 설정하기 위한 방법 | |
US8996867B2 (en) | Method and device for end-user verification of an electronic transaction | |
TWI435272B (zh) | 基於行動智慧卡之鑑認 | |
US20090199272A1 (en) | Authentication using a turing test to block automated attacks | |
JP2012503229A (ja) | サーバ・オペレーションの認可を行うための装置、システムおよびコンピュータ・プログラム | |
US20140258718A1 (en) | Method and system for secure transmission of biometric data | |
US20120095919A1 (en) | Systems and methods for authenticating aspects of an online transaction using a secure peripheral device having a message display and/or user input | |
US9977886B2 (en) | Methods, apparatus and computer programs for entity authentication | |
KR101272349B1 (ko) | 복수의 일회용 비밀번호를 이용한 사용자 인증 방법 | |
JP2012048728A (ja) | 個人の存在を条件とする、トークンによるトランザクション認証 | |
Singh | Multi-factor authentication and their approaches | |
WO2017145273A1 (ja) | ユーザ認証装置 | |
EP1610199A1 (en) | Controlling access to a secure service by means of a removable security device | |
JP2012198914A (ja) | 個人の存在を条件とする、トークンによるトランザクション認証 | |
WO2001095074A2 (en) | A method and system for securely displaying and confirming request to perform operation on host | |
KR20150089960A (ko) | 본인인증방법 및 이를 위한 디지털 시스템, 인증 시스템 | |
KR101584219B1 (ko) | 본인인증방법 및 이를 위한 디지털 시스템, 인증 시스템 | |
KR20160087519A (ko) | 금융거래를 위한 인증방법 및 이를 위한 거래매체, 인증매체, 및 금융거래 시스템 | |
KR20160099766A (ko) | 코드분할과 복호화 키의 분리점유를 통한 보안 결제 방법, 디지털 시스템, 및 결제인증 시스템 | |
KR20160099767A (ko) | 상호인증 및 결제정보의 분할을 통한 보안 결제 방법, 디지털 시스템, 및 결제인증 시스템 | |
KR20160087518A (ko) | 금융거래를 위한 인증방법 및 이를 위한 거래매체, 인증매체, 및 금융거래 시스템 | |
TW201143328A (en) | System and method for preventing identification mark from being misappropriated |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20101119 |
|
A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20110215 |
|
A602 | Written permission of extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A602 Effective date: 20110222 |
|
A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20110418 |
|
A602 | Written permission of extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A602 Effective date: 20110425 |
|
A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20110426 |
|
A02 | Decision of refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A02 Effective date: 20110520 |
|
A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20110920 |
|
A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20111024 |
|
A911 | Transfer to examiner for re-examination before appeal (zenchi) |
Free format text: JAPANESE INTERMEDIATE CODE: A911 Effective date: 20111027 |
|
A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20111118 |
|
A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20120209 |
|
A602 | Written permission of extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A602 Effective date: 20120216 |
|
A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20120314 |
|
A602 | Written permission of extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A602 Effective date: 20120322 |
|
A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20120417 |
|
A602 | Written permission of extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A602 Effective date: 20120424 |
|
A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20120518 |
|
TRDD | Decision of grant or rejection written | ||
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20120713 |
|
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 |
|
A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20120723 |
|
FPAY | Renewal fee payment (event date is renewal date of database) |
Free format text: PAYMENT UNTIL: 20150727 Year of fee payment: 3 |
|
R150 | Certificate of patent or registration of utility model |
Free format text: JAPANESE INTERMEDIATE CODE: R150 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
LAPS | Cancellation because of no payment of annual fees |