WO2001011817A3 - Network user authentication protocol - Google Patents

Network user authentication protocol Download PDF

Info

Publication number
WO2001011817A3
WO2001011817A3 PCT/US2000/021414 US0021414W WO0111817A3 WO 2001011817 A3 WO2001011817 A3 WO 2001011817A3 US 0021414 W US0021414 W US 0021414W WO 0111817 A3 WO0111817 A3 WO 0111817A3
Authority
WO
WIPO (PCT)
Prior art keywords
user
user authentication
encrypted
message
random number
Prior art date
Application number
PCT/US2000/021414
Other languages
French (fr)
Other versions
WO2001011817A2 (en
Inventor
Harvey Waldman
Original Assignee
Sarnoff Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sarnoff Corp filed Critical Sarnoff Corp
Priority to AU65222/00A priority Critical patent/AU6522200A/en
Publication of WO2001011817A2 publication Critical patent/WO2001011817A2/en
Publication of WO2001011817A3 publication Critical patent/WO2001011817A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Computer And Data Communications (AREA)

Abstract

In a network having a plurality of user terminals and a user authentication site, a method for authenticating a user. A user terminal of the network receives a password from a user, and translates the password into an authentication encryption key for the user. The terminal generates a first random number, encrypts the first random number with the authentication encryption key to provide a first encrypted message, and transmits the first encrypted message to the user authentication site. The user authentication site decrypts the encrypted first message to provide the first random number, and generates a second random number, which is transmitted to the user terminal. The user terminal combines and encrypts the first and second random numbers, with the authentication encryption key, to provide a second encrypted message. The user terminal transmits the second encrypted message to the user authentication site, which decrypts the encrypted second message to provide the combined first and second random numbers. The user authentication site verifies that the first and second random numbers are correct, and authenticates the user in accordance with this verification.
PCT/US2000/021414 1999-08-06 2000-08-07 Network user authentication protocol WO2001011817A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU65222/00A AU6522200A (en) 1999-08-06 2000-08-07 Network user authentication protocol

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
US14794499P 1999-08-06 1999-08-06
US60/147,944 1999-08-06
US14862499P 1999-08-12 1999-08-12
US60/148,624 1999-08-12
US63271700A 2000-08-04 2000-08-04
US09/632,716 2000-08-04

Publications (2)

Publication Number Publication Date
WO2001011817A2 WO2001011817A2 (en) 2001-02-15
WO2001011817A3 true WO2001011817A3 (en) 2001-12-06

Family

ID=28794923

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2000/021414 WO2001011817A2 (en) 1999-08-06 2000-08-07 Network user authentication protocol

Country Status (2)

Country Link
AU (1) AU6522200A (en)
WO (1) WO2001011817A2 (en)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7373507B2 (en) 2000-08-10 2008-05-13 Plethora Technology, Inc. System and method for establishing secure communication
DE102005038106A1 (en) * 2005-08-11 2007-02-15 Giesecke & Devrient Gmbh Method for securing the authentication of a portable data carrier against a reader via an insecure communication path
GB0613235D0 (en) 2006-07-04 2006-08-09 Maidsafe Net Ltd File system authentication
EP2738705B1 (en) * 2012-11-30 2019-07-17 Certicom Corp. Challenge-response authentication using a masked response value
US9369290B2 (en) 2012-11-30 2016-06-14 Certicom Corp. Challenge-response authentication using a masked response value
US9727720B2 (en) 2012-11-30 2017-08-08 Certicom Corp. Challenge-response authentication using a masked response value
CN103428221B (en) * 2013-08-26 2017-04-05 百度在线网络技术(北京)有限公司 Safe login method, system and device to Mobile solution
US9560046B2 (en) 2014-11-07 2017-01-31 Kaiser Foundation Hospitals Device notarization
US9560030B2 (en) 2014-11-07 2017-01-31 Kaiser Foundation Hospitals Nodal random authentication

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
BHARGHAVAN V: "Secure Wireless LANs", 2ND ACM CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2 November 1994 (1994-11-02), XP002155490 *
KWON T ET AL: "AUTHENTICATED KEY EXCHANGE PROTOCOLS RESISTANT TO PASSWORD GUESSING ATTACKS", IEE PROCEEDINGS: COMMUNICATIONS,INSTITUTION OF ELECTRICAL ENGINEERS,GB, vol. 145, no. 5, October 1998 (1998-10-01), pages 304 - 308, XP000793271, ISSN: 1350-2425 *

Also Published As

Publication number Publication date
AU6522200A (en) 2001-03-05
WO2001011817A2 (en) 2001-02-15

Similar Documents

Publication Publication Date Title
CN109728909B (en) Identity authentication method and system based on USBKey
ES2584862T3 (en) Authentication in data communication
JP5345675B2 (en) Network helper for authentication between token and verifier
CA2446304A1 (en) Use and generation of a session key in a secure socket layer connection
RU2004101416A (en) DEVICE CONFIGURED FOR DATA EXCHANGE AND AUTHENTICATION METHOD
JP5845393B2 (en) Cryptographic communication apparatus and cryptographic communication system
CN101272616B (en) Safety access method of wireless metropolitan area network
CN105162599B (en) A kind of data transmission system and its transmission method
WO2005006629A3 (en) Terminal authentication in a wireless network
CA2546553A1 (en) System and method for provisioning and authenticating via a network
WO2003032126A3 (en) Multi-factor authentication system
WO2004034213A3 (en) Localized network authentication and security using tamper-resistant keys
RU2006101287A (en) ADVANCED PROTECTED AUTHENTICATED CHANNEL
CA2518032A1 (en) Methods and software program product for mutual authentication in a communications network
JP2000083018A (en) Method for transmitting information needing secrecy by first using communication that is not kept secret
WO2007063420A3 (en) Authentication in communications networks
NO953143D0 (en) Procedure for providing mutual authentication of a user and a server on a network
CN101741555A (en) Method and system for identity authentication and key agreement
WO2001013201A3 (en) Peer-to-peer network user authentication protocol
CA2540590A1 (en) System and method for secure access
Hwang et al. Two attacks on Neuman—Stubblebine authentication protocols
CN111031061A (en) Verification method and gateway equipment
CN107682152B (en) Group key negotiation method based on symmetric cipher
WO2001011817A3 (en) Network user authentication protocol
CA2571814A1 (en) System and method for secure access

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AL AM AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ DE DK DM EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AL AM AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ DE DK DM EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP