CA2798024C - One time passwords with ipsec and ike version 1 authentication - Google Patents
One time passwords with ipsec and ike version 1 authentication Download PDFInfo
- Publication number
- CA2798024C CA2798024C CA2798024A CA2798024A CA2798024C CA 2798024 C CA2798024 C CA 2798024C CA 2798024 A CA2798024 A CA 2798024A CA 2798024 A CA2798024 A CA 2798024A CA 2798024 C CA2798024 C CA 2798024C
- Authority
- CA
- Canada
- Prior art keywords
- password
- time
- communication
- client
- certificate
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 235000014510 cooky Nutrition 0.000 claims abstract description 26
- 238000004891 communication Methods 0.000 claims description 120
- 238000000034 method Methods 0.000 claims description 51
- 230000004044 response Effects 0.000 claims description 11
- 238000010200 validation analysis Methods 0.000 claims description 9
- 230000007246 mechanism Effects 0.000 description 17
- 238000012545 processing Methods 0.000 description 16
- 230000008569 process Effects 0.000 description 15
- 230000003993 interaction Effects 0.000 description 14
- 230000006870 function Effects 0.000 description 3
- 230000006872 improvement Effects 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000004075 alteration Effects 0.000 description 2
- 238000013475 authorization Methods 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 2
- 230000015572 biosynthetic process Effects 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000004519 manufacturing process Methods 0.000 description 2
- 241000699670 Mus sp. Species 0.000 description 1
- 230000006978 adaptation Effects 0.000 description 1
- 238000013459 approach Methods 0.000 description 1
- 230000009118 appropriate response Effects 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 238000004590 computer program Methods 0.000 description 1
- 210000000744 eyelid Anatomy 0.000 description 1
- 239000000835 fiber Substances 0.000 description 1
- 230000036541 health Effects 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 230000015654 memory Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000000737 periodic effect Effects 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 230000002123 temporal effect Effects 0.000 description 1
- 230000000007 visual effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H04L63/0838—Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
- H04L9/3228—One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US12/779,457 US8799649B2 (en) | 2010-05-13 | 2010-05-13 | One time passwords with IPsec and IKE version 1 authentication |
| US12/779,457 | 2010-05-13 | ||
| PCT/US2011/034188 WO2011142971A2 (en) | 2010-05-13 | 2011-04-27 | One time passwords with ipsec and ike version 1 authentication |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CA2798024A1 CA2798024A1 (en) | 2011-11-17 |
| CA2798024C true CA2798024C (en) | 2017-04-04 |
Family
ID=44912769
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CA2798024A Expired - Fee Related CA2798024C (en) | 2010-05-13 | 2011-04-27 | One time passwords with ipsec and ike version 1 authentication |
Country Status (7)
| Country | Link |
|---|---|
| US (1) | US8799649B2 (enExample) |
| EP (1) | EP2569897B1 (enExample) |
| JP (1) | JP5827680B2 (enExample) |
| CN (1) | CN102893575B (enExample) |
| AU (1) | AU2011253346B2 (enExample) |
| CA (1) | CA2798024C (enExample) |
| WO (1) | WO2011142971A2 (enExample) |
Families Citing this family (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8856509B2 (en) * | 2010-08-10 | 2014-10-07 | Motorola Mobility Llc | System and method for cognizant transport layer security (CTLS) |
| US8595806B1 (en) * | 2010-09-21 | 2013-11-26 | Amazon Technologies, Inc. | Techniques for providing remote computing services |
| US8843741B2 (en) * | 2012-10-26 | 2014-09-23 | Cloudpath Networks, Inc. | System and method for providing a certificate for network access |
| US9325697B2 (en) | 2013-01-31 | 2016-04-26 | Hewlett Packard Enterprise Development Lp | Provisioning and managing certificates for accessing secure services in network |
| CN103428203B (zh) * | 2013-07-24 | 2016-06-29 | 福建星网锐捷网络有限公司 | 接入访问控制方法及设备 |
| KR20150015793A (ko) * | 2013-08-01 | 2015-02-11 | 삼성전자주식회사 | 화상형성장치 및 화상형성장치의 사용자 인증 방법 |
| US10985921B1 (en) | 2019-11-05 | 2021-04-20 | Capital One Services, Llc | Systems and methods for out-of-band authenticity verification of mobile applications |
| KR102558364B1 (ko) * | 2021-03-18 | 2023-07-20 | 주식회사 케이티 | 5g lan 서비스 제공 방법 |
| CN115002057B (zh) * | 2022-05-26 | 2024-04-12 | 威艾特科技(深圳)有限公司 | 一种分布式多服务端即时通信方法 |
Family Cites Families (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPH11282804A (ja) * | 1998-03-31 | 1999-10-15 | Secom Joho System Kk | ユーザ認証機能付き通信システム及びユーザ認証方法 |
| US20020138728A1 (en) | 2000-03-07 | 2002-09-26 | Alex Parfenov | Method and system for unified login and authentication |
| US7113996B2 (en) | 2000-07-21 | 2006-09-26 | Sandy Craig Kronenberg | Method and system for secured transport and storage of data on a network |
| US6931529B2 (en) * | 2001-01-05 | 2005-08-16 | International Business Machines Corporation | Establishing consistent, end-to-end protection for a user datagram |
| US7209479B2 (en) * | 2001-01-18 | 2007-04-24 | Science Application International Corp. | Third party VPN certification |
| US20030208695A1 (en) * | 2002-05-01 | 2003-11-06 | Ronald Soto | Method and system for controlled, centrally authenticated remote access |
| US7421732B2 (en) | 2003-05-05 | 2008-09-02 | Nokia Corporation | System, apparatus, and method for providing generic internet protocol authentication |
| US20070008924A1 (en) * | 2004-01-15 | 2007-01-11 | Padraig Moran | Device to facilitate the deployment of mobile virtual private networks for medium/large corporate networks |
| US20060059346A1 (en) * | 2004-09-14 | 2006-03-16 | Andrew Sherman | Authentication with expiring binding digital certificates |
| US7836306B2 (en) * | 2005-06-29 | 2010-11-16 | Microsoft Corporation | Establishing secure mutual trust using an insecure password |
| EP1922632B1 (en) * | 2005-08-11 | 2014-05-07 | SanDisk IL Ltd. | Extended one-time password method and apparatus |
| US20080034216A1 (en) * | 2006-08-03 | 2008-02-07 | Eric Chun Wah Law | Mutual authentication and secure channel establishment between two parties using consecutive one-time passwords |
| US20090025080A1 (en) | 2006-09-27 | 2009-01-22 | Craig Lund | System and method for authenticating a client to a server via an ipsec vpn and facilitating a secure migration to ssl vpn remote access |
| JP2008129673A (ja) * | 2006-11-17 | 2008-06-05 | Nippon Telegr & Teleph Corp <Ntt> | ユーザ認証システム、ユーザ認証方法、それに用いるゲートウェイ及びプログラムとその記録媒体 |
| US20080137863A1 (en) | 2006-12-06 | 2008-06-12 | Motorola, Inc. | Method and system for using a key management facility to negotiate a security association via an internet key exchange on behalf of another device |
| US20080183851A1 (en) | 2007-01-30 | 2008-07-31 | Utstarcom, Inc. | Apparatus and Method Pertaining to Management of On-Line Certificate Status Protocol Responses in a Cache |
| KR20070072463A (ko) * | 2007-06-14 | 2007-07-04 | 이상곤 | 일회용 비밀번호를 이용한 공인인증서 보안 강화 방안 |
| KR100980831B1 (ko) * | 2007-12-12 | 2010-09-10 | 한국전자통신연구원 | 일회용 패스워드를 이용한 신뢰성 있는 통신 시스템 및방법 |
| KR101096726B1 (ko) * | 2008-05-19 | 2011-12-21 | 에스케이플래닛 주식회사 | 콘텐츠 drm 변환 시스템 및 방법과 이를 위한 인증 서버및 사용자 단말기 |
-
2010
- 2010-05-13 US US12/779,457 patent/US8799649B2/en active Active
-
2011
- 2011-04-27 AU AU2011253346A patent/AU2011253346B2/en not_active Ceased
- 2011-04-27 JP JP2013510122A patent/JP5827680B2/ja not_active Expired - Fee Related
- 2011-04-27 EP EP11781009.3A patent/EP2569897B1/en active Active
- 2011-04-27 CA CA2798024A patent/CA2798024C/en not_active Expired - Fee Related
- 2011-04-27 WO PCT/US2011/034188 patent/WO2011142971A2/en not_active Ceased
- 2011-04-27 CN CN201180023577.9A patent/CN102893575B/zh active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN102893575B (zh) | 2015-08-26 |
| JP2013531834A (ja) | 2013-08-08 |
| EP2569897B1 (en) | 2014-08-20 |
| AU2011253346B2 (en) | 2014-05-01 |
| CN102893575A (zh) | 2013-01-23 |
| US8799649B2 (en) | 2014-08-05 |
| WO2011142971A3 (en) | 2012-01-26 |
| CA2798024A1 (en) | 2011-11-17 |
| EP2569897A4 (en) | 2013-12-04 |
| EP2569897A2 (en) | 2013-03-20 |
| JP5827680B2 (ja) | 2015-12-02 |
| AU2011253346A1 (en) | 2012-12-13 |
| WO2011142971A2 (en) | 2011-11-17 |
| US20110283103A1 (en) | 2011-11-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US12170662B2 (en) | Domain unrestricted mobile initiated login | |
| US11647023B2 (en) | Out-of-band authentication to access web-service with indication of physical access to client device | |
| US11855767B2 (en) | Methods and systems for distributing encrypted cryptographic data | |
| CN110874464B (zh) | 用户身份认证数据的管理方法和设备 | |
| CA2798024C (en) | One time passwords with ipsec and ike version 1 authentication | |
| EP2632108B1 (en) | Method and system for secure communication | |
| US9578021B2 (en) | Methods and systems for distributing cryptographic data to authenticated recipients | |
| US9332002B1 (en) | Authenticating and authorizing a user by way of a digital certificate | |
| US20120297187A1 (en) | Trusted Mobile Device Based Security | |
| CN102577301A (zh) | 用于可信认证和登录的方法和装置 | |
| US11677547B1 (en) | Mobile authenticator for performing a role in user authentication | |
| US20160285843A1 (en) | System and method for scoping a user identity assertion to collaborative devices | |
| WO2022140469A1 (en) | Domain unrestricted mobile initiated login | |
| Goel | Access Control and Authorization Techniques wrt Client Applications | |
| Paul et al. | UI Component and Authentication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| EEER | Examination request |
Effective date: 20160427 |
|
| MKLA | Lapsed |
Effective date: 20190429 |