CO2018004380A2 - Sistema y método de autenticación y encriptación a prueba de intercepciones - Google Patents
Sistema y método de autenticación y encriptación a prueba de intercepcionesInfo
- Publication number
- CO2018004380A2 CO2018004380A2 CONC2018/0004380A CO2018004380A CO2018004380A2 CO 2018004380 A2 CO2018004380 A2 CO 2018004380A2 CO 2018004380 A CO2018004380 A CO 2018004380A CO 2018004380 A2 CO2018004380 A2 CO 2018004380A2
- Authority
- CO
- Colombia
- Prior art keywords
- user
- tokens
- symbols
- access code
- authentication
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/36—User authentication by graphic or iconic representation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0435—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Theoretical Computer Science (AREA)
- Computing Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Software Systems (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
- Steering Control In Accordance With Driving Conditions (AREA)
- Facsimiles In General (AREA)
- Lock And Its Accessories (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
La presente invención se refiere a un sistema y método de autenticación y encriptación a prueba de intercepciones que usa códigos de acceso con pines individuales que se integran de símbolos de un conjunto de símbolos, y tokens que contienen al menos dos símbolos del conjunto de símbolos usados para el código de acceso. Se presentan múltiples tokens (un conjunto de tokens) a un usuario, con algunos o todos los pines (símbolos) preseleccionados insertados aleatoriamente en algunos o todos los tokens. El usuario selecciona un token del conjunto de tokens para cada posición de pin en el código de acceso. El usuario se autentica con base en los tokens seleccionados. Debido a que cada token seleccionado puede contener o no uno de los pines preseleccionados en el código de acceso de usuario, y también contiene otros símbolos generados aleatoriamente que no son uno de los pines preseleccionados en el código de acceso de usuario, alguien que observa cuales tokens ha elegido el usuario no puede determinar cuál es el código de acceso real del usuario.
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US201514925769A | 2015-10-28 | 2015-10-28 | |
US14/931,613 US9460280B1 (en) | 2015-10-28 | 2015-11-03 | Interception-proof authentication and encryption system and method |
PCT/US2016/054186 WO2017105579A2 (en) | 2015-10-28 | 2016-09-28 | Interception-proof authentication and encryption system and method |
Publications (1)
Publication Number | Publication Date |
---|---|
CO2018004380A2 true CO2018004380A2 (es) | 2018-07-10 |
Family
ID=56995117
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CONC2018/0004380A CO2018004380A2 (es) | 2015-10-28 | 2018-04-25 | Sistema y método de autenticación y encriptación a prueba de intercepciones |
Country Status (26)
Country | Link |
---|---|
US (2) | US9460280B1 (es) |
EP (2) | EP3369208B1 (es) |
JP (1) | JP2018536931A (es) |
KR (1) | KR102577973B1 (es) |
CN (2) | CN115396139A (es) |
AU (2) | AU2016372648B2 (es) |
BR (1) | BR112018008406A2 (es) |
CA (1) | CA3002678C (es) |
CL (1) | CL2018001102A1 (es) |
CO (1) | CO2018004380A2 (es) |
DK (1) | DK3369208T3 (es) |
EC (1) | ECSP18032669A (es) |
ES (1) | ES2814275T3 (es) |
IL (1) | IL258926B (es) |
MA (1) | MA42340A1 (es) |
MX (1) | MX2018005357A (es) |
MY (1) | MY190215A (es) |
PE (2) | PE20181226A1 (es) |
PH (1) | PH12018500888A1 (es) |
PL (1) | PL3369208T3 (es) |
RU (1) | RU2730386C2 (es) |
SG (2) | SG11201803264UA (es) |
TW (1) | TW201723908A (es) |
UA (1) | UA122244C2 (es) |
WO (1) | WO2017105579A2 (es) |
ZA (1) | ZA201802574B (es) |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9813415B2 (en) * | 2007-04-02 | 2017-11-07 | Abdul Rahman Syed Ibrahim Abdul Hameed Khan | System and method of generating and using bilaterally generated variable instant passwords |
CN107947924A (zh) * | 2017-12-04 | 2018-04-20 | 深圳绿米联创科技有限公司 | 智能家居系统与信息加密方法及装置、终端 |
CN110324359A (zh) * | 2019-08-02 | 2019-10-11 | 北京朋创天地科技有限公司 | 互联网个人信息安全发布、访问方法及系统 |
BG113519A (bg) * | 2022-04-07 | 2023-10-16 | ИКТ платформи ООД | Метод за удостоверяване |
Family Cites Families (23)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP3781874B2 (ja) * | 1997-09-05 | 2006-05-31 | 富士通株式会社 | 画像指示による電子情報管理装置、秘密鍵管理装置及び方法、並びに、秘密鍵管理プログラムを記録した記録媒体 |
US8031865B2 (en) * | 2004-01-08 | 2011-10-04 | Encryption Solutions, Inc. | Multiple level security system and method for encrypting data within documents |
WO2006064241A2 (en) * | 2004-12-16 | 2006-06-22 | Mark Dwight Bedworth | User validation using images |
US20080025497A1 (en) * | 2005-06-28 | 2008-01-31 | Ogram Mark E | Multiple key encryption with "Red Herrings" |
US7801307B2 (en) * | 2005-07-28 | 2010-09-21 | Alcatel-Lucent Usa Inc. | Method of symmetric key data encryption |
US20070028088A1 (en) * | 2005-08-01 | 2007-02-01 | Coskun Bayrak | Polymorphic encryption method and system |
JP2007086873A (ja) * | 2005-09-20 | 2007-04-05 | Fuji Xerox Co Ltd | 認証装置及び認証方法 |
JP5160908B2 (ja) * | 2008-01-18 | 2013-03-13 | 沖電気工業株式会社 | 認証システム |
CN101635622B (zh) * | 2008-07-24 | 2013-06-12 | 阿里巴巴集团控股有限公司 | 一种网页加密和解密的方法、系统及设备 |
US9002976B2 (en) | 2008-09-15 | 2015-04-07 | Vaultive Ltd | System, apparatus and method for encryption and decryption of data transmitted over a network |
TW201042973A (en) * | 2008-11-28 | 2010-12-01 | Ibm | Token-based client to server authentication of a secondary communication channel by way of primary authenticated communication channels |
JP2011154617A (ja) * | 2010-01-28 | 2011-08-11 | Kyocera Mita Corp | パスワード照合装置、画像処理装置 |
US8510552B2 (en) * | 2010-04-07 | 2013-08-13 | Apple Inc. | System and method for file-level data protection |
US8756672B1 (en) | 2010-10-25 | 2014-06-17 | Wms Gaming, Inc. | Authentication using multi-layered graphical passwords |
KR101425171B1 (ko) * | 2010-11-03 | 2014-08-04 | 한국전자통신연구원 | 사용자 비밀번호 입력 장치 및 방법 |
US20120124656A1 (en) * | 2010-11-16 | 2012-05-17 | Evolucard S/A | Method and system for mobile device based authentication |
CN102202067B (zh) * | 2011-07-15 | 2016-06-08 | 席勇良 | 动态随机密码登录方法 |
CN103379091A (zh) * | 2012-04-16 | 2013-10-30 | 上海博路信息技术有限公司 | 一种随机验证码 |
CA2871726C (en) * | 2012-04-25 | 2020-08-25 | Southeast Solutions, Inc. | Fraud resistant passcode entry system |
US8881251B1 (en) | 2012-05-30 | 2014-11-04 | RememberIN, Inc. | Electronic authentication using pictures and images |
RU2541868C2 (ru) * | 2013-05-14 | 2015-02-20 | Федеральное государственное образовательное бюджетное учреждение высшего профессионального образования "Санкт-Петербургский государственный университет телекоммуникаций им. проф. М.А. Бонч-Бруевича" | Способ аутентификации пользователей с защитой от подсматривания |
CN103812854B (zh) * | 2013-08-19 | 2015-03-18 | 深圳光启创新技术有限公司 | 身份认证系统、装置、方法以及身份认证请求装置 |
TWI525467B (zh) * | 2013-10-31 | 2016-03-11 | 萬國商業機器公司 | 動態提供多因次式密碼/盤問鑑定的方法與電腦系統 |
-
2015
- 2015-11-03 US US14/931,613 patent/US9460280B1/en active Active
-
2016
- 2016-08-27 US US15/249,355 patent/US10289830B2/en active Active
- 2016-09-28 KR KR1020187012319A patent/KR102577973B1/ko active IP Right Grant
- 2016-09-28 EP EP16876204.5A patent/EP3369208B1/en active Active
- 2016-09-28 ES ES16876204T patent/ES2814275T3/es active Active
- 2016-09-28 MY MYPI2018701669A patent/MY190215A/en unknown
- 2016-09-28 CN CN202210691523.XA patent/CN115396139A/zh active Pending
- 2016-09-28 UA UAA201804726A patent/UA122244C2/uk unknown
- 2016-09-28 CA CA3002678A patent/CA3002678C/en active Active
- 2016-09-28 DK DK16876204.5T patent/DK3369208T3/da active
- 2016-09-28 JP JP2018521039A patent/JP2018536931A/ja active Pending
- 2016-09-28 PE PE2018000613A patent/PE20181226A1/es unknown
- 2016-09-28 PL PL16876204T patent/PL3369208T3/pl unknown
- 2016-09-28 BR BR112018008406-9A patent/BR112018008406A2/pt not_active Application Discontinuation
- 2016-09-28 WO PCT/US2016/054186 patent/WO2017105579A2/en active Application Filing
- 2016-09-28 MX MX2018005357A patent/MX2018005357A/es unknown
- 2016-09-28 MA MA42340A patent/MA42340A1/fr unknown
- 2016-09-28 PE PE2022001468A patent/PE20221776A1/es unknown
- 2016-09-28 SG SG11201803264UA patent/SG11201803264UA/en unknown
- 2016-09-28 SG SG10202003699SA patent/SG10202003699SA/en unknown
- 2016-09-28 RU RU2018115767A patent/RU2730386C2/ru active
- 2016-09-28 EP EP20165631.1A patent/EP3691177B1/en active Active
- 2016-09-28 AU AU2016372648A patent/AU2016372648B2/en not_active Ceased
- 2016-09-28 CN CN201680062621.XA patent/CN109075972B/zh active Active
- 2016-10-20 TW TW105133907A patent/TW201723908A/zh unknown
-
2018
- 2018-04-18 ZA ZA2018/02574A patent/ZA201802574B/en unknown
- 2018-04-25 CO CONC2018/0004380A patent/CO2018004380A2/es unknown
- 2018-04-25 CL CL2018001102A patent/CL2018001102A1/es unknown
- 2018-04-25 IL IL258926A patent/IL258926B/en active IP Right Grant
- 2018-04-25 PH PH12018500888A patent/PH12018500888A1/en unknown
- 2018-04-26 EC ECIEPI201832669A patent/ECSP18032669A/es unknown
-
2020
- 2020-08-20 AU AU2020220152A patent/AU2020220152A1/en not_active Abandoned
Also Published As
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CO2018004380A2 (es) | Sistema y método de autenticación y encriptación a prueba de intercepciones | |
BR112018009007A8 (pt) | método e sistema para processamento de uma transação de protocolo de confiança em uma rede de processamento de transação | |
GB201209404D0 (en) | Method and system for secure user identification | |
BR112016014106A2 (pt) | Método para intensificar a segurança de um dispositivo de comunicação, e, dispositivo de comunicação | |
AR109632A1 (es) | Sistemas para determinar resultados agronómicos para una región cultivable y métodos y aparatos relacionados | |
BR112017020675A2 (pt) | acordo de autenticação e chave com sigilo perfeito de emissão | |
BR112015024921A2 (pt) | método para destravar a autoridade de administração e dispositivo para autenticação | |
BR112018007449A2 (pt) | plataforma de identidade e transação baseada em cadeia de blocos | |
BR112017020724A2 (pt) | método, e, dispositivo de comunicação | |
CO2019015066A2 (es) | Procedimiento para autorizar permisos de operaciones de valores de campo de formulario | |
NZ715811A (en) | Method of control of persons and application to the inspection of persons | |
BR112017003848A2 (pt) | sistema de arquivos com somas de verificação associadas com extensões | |
CL2015002127A1 (es) | Sistemas y métodos para soporte de decisión clínica. | |
PH12018502584A1 (en) | Method and device for identity authentication | |
IN2014MU00771A (es) | ||
EA202190479A1 (ru) | Способ предоставления прав на основе отображения текущего состояния прав всех пользователей системы | |
CL2016001938A1 (es) | Metodo y sistema para juegos | |
BR112017026874A2 (pt) | segurança para transações eletrônicas e autenticação de usuário | |
SG10201809264SA (en) | Shuffling Method Of Playing Cards | |
BR112017016101A2 (pt) | preenchimento de formulário online para credenciais com token | |
PH12020550989A1 (en) | Personal authentication method and personal authentication device | |
BR112016023531A2 (pt) | sistema e método para modificação de sequência de inicialização usando instruções restritas a chips que residem em um dispositivo de memória externa | |
BR112018002841A8 (pt) | método e sistema para autorização de transação com base em uma autenticação multiusuário e multifator de canal autônomo paralelo | |
MX2018002940A (es) | Metodos y sistemas para autenticacion usando codigo de cero conocimiento. | |
NZ631346A (en) | Vetting system and method |