CO5630046A1 - La autenticacion desafio-basado sin requerir conocimientos de datos de la autenticacion confidenciales - Google Patents
La autenticacion desafio-basado sin requerir conocimientos de datos de la autenticacion confidencialesInfo
- Publication number
- CO5630046A1 CO5630046A1 CO04106330A CO04106330A CO5630046A1 CO 5630046 A1 CO5630046 A1 CO 5630046A1 CO 04106330 A CO04106330 A CO 04106330A CO 04106330 A CO04106330 A CO 04106330A CO 5630046 A1 CO5630046 A1 CO 5630046A1
- Authority
- CO
- Colombia
- Prior art keywords
- computing entity
- authenticated
- challenge
- authenticator
- act
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3271—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/56—Financial cryptography, e.g. electronic payment or e-cash
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Storage Device Security (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Collating Specific Patterns (AREA)
Abstract
En un ambiente que incluye una entidad de cómputo autenticada, una entidad de cómputo suplente, un autenticador de la entidad de cómputo, y un autenticador supletorio de entidad de cómputo, un método para el autenticador de la entidad cómputo para autenticar al autenticado de la entidad de cómputo que usa el desafío-basado en la autenticación y sin requerir que el autenticado y autenticador de las entidades de cómputo sean conscientes de los datos confidenciales usados para la autenticación, el método comprende lo siguiente:Un acto de la entidad de cómputo autenticada que adquiere un desafío del autenticado supletorio de la entidad de cómputo;Un acto del autenticado de la entidad de cómputo que proporciona el desafío al autenticador de la entidad de cómputo;Un acto del autenticador de la entidad de cómputo que adquiere una respuesta al desafío del autenticador supletorio de la entidad de cómputo;Un acto del autenticador de la entidad de cómputo que proporciona la respuesta al autenticado de la entidad de cómputo; y Un acto del autenticado de la entidad de cómputo que usa la respuesta para autenticar el autenticador de la entidad de cómputo. Un método de acuerdo con la Demanda 1, en donde el acto del autenticado de la entidad de cómputo que adquiere un desafío del autenticado supletorio de la entidad de cómputo comprende lo siguiente:Un acto del autenticado de la entidad de cómputo que proporciona una demanda del desafío al autenticado supletorio de la entidad de cómputo; ...<EMI FILE="04106330_1" ID="1" IMF=JPEG HE=50 WI=50 >
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US51546103P | 2003-10-29 | 2003-10-29 | |
US10/917,786 US7519815B2 (en) | 2003-10-29 | 2004-08-13 | Challenge-based authentication without requiring knowledge of secret authentication data |
Publications (1)
Publication Number | Publication Date |
---|---|
CO5630046A1 true CO5630046A1 (es) | 2006-04-28 |
Family
ID=34426330
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CO04106330A CO5630046A1 (es) | 2003-10-29 | 2004-10-22 | La autenticacion desafio-basado sin requerir conocimientos de datos de la autenticacion confidenciales |
Country Status (17)
Country | Link |
---|---|
US (1) | US7519815B2 (es) |
EP (1) | EP1528707A3 (es) |
JP (1) | JP4807944B2 (es) |
KR (1) | KR20050040705A (es) |
CN (1) | CN1612522B (es) |
AU (1) | AU2004218603A1 (es) |
BR (1) | BRPI0404490A (es) |
CA (1) | CA2482696A1 (es) |
CO (1) | CO5630046A1 (es) |
IL (1) | IL164320A (es) |
MX (1) | MXPA04010160A (es) |
MY (1) | MY141019A (es) |
NO (1) | NO20044126L (es) |
NZ (1) | NZ536222A (es) |
RU (1) | RU2363985C2 (es) |
SG (1) | SG111217A1 (es) |
TW (1) | TW200518552A (es) |
Families Citing this family (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20060294383A1 (en) * | 2005-06-28 | 2006-12-28 | Paula Austel | Secure data communications in web services |
US8848912B2 (en) | 2005-12-19 | 2014-09-30 | Nippon Telegraph And Telephone Corporation | Terminal identification method, authentication method, authentication system, server, terminal, wireless base station, program, and recording medium |
US8301897B2 (en) * | 2006-08-23 | 2012-10-30 | Cisco Technology, Inc. | Challenge-based authentication protocol |
CN101796837B (zh) * | 2007-09-11 | 2012-12-19 | Lg电子株式会社 | 安全签名方法、安全认证方法和iptv系统 |
US8943560B2 (en) * | 2008-05-28 | 2015-01-27 | Microsoft Corporation | Techniques to provision and manage a digital telephone to authenticate with a network |
US8484708B2 (en) * | 2009-12-11 | 2013-07-09 | Canon Kabushiki Kaisha | Delegating authentication using a challenge/response protocol |
FR2955682B1 (fr) * | 2010-01-28 | 2012-03-16 | Paycool Int Ltd | Procede de fourniture d'un code dynamique par l'intermediaire d'un telephone |
US20110197267A1 (en) * | 2010-02-05 | 2011-08-11 | Vivianne Gravel | Secure authentication system and method |
US8839357B2 (en) * | 2010-12-22 | 2014-09-16 | Canon U.S.A., Inc. | Method, system, and computer-readable storage medium for authenticating a computing device |
US8856954B1 (en) * | 2010-12-29 | 2014-10-07 | Emc Corporation | Authenticating using organization based information |
US8839390B2 (en) * | 2011-03-08 | 2014-09-16 | Microsoft Corporation | Grouping personal accounts to tailor a web service |
US9294267B2 (en) * | 2012-11-16 | 2016-03-22 | Deepak Kamath | Method, system and program product for secure storage of content |
US10764068B2 (en) * | 2018-01-30 | 2020-09-01 | EMC IP Holding Company LLC | Computer system employing challenge/response protocol with detection of non-unique incorrect responses |
CN108449182B (zh) * | 2018-04-09 | 2021-10-01 | 南京网觉软件有限公司 | 基于显示设备电磁辐射通信的手机验证登录系统及方法 |
Family Cites Families (31)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5668876A (en) * | 1994-06-24 | 1997-09-16 | Telefonaktiebolaget Lm Ericsson | User authentication method and apparatus |
US6948070B1 (en) | 1995-02-13 | 2005-09-20 | Intertrust Technologies Corporation | Systems and methods for secure transaction management and electronic rights protection |
US5991407A (en) * | 1995-10-17 | 1999-11-23 | Nokia Telecommunications Oy | Subscriber authentication in a mobile communications system |
US5815665A (en) | 1996-04-03 | 1998-09-29 | Microsoft Corporation | System and method for providing trusted brokering services over a distributed network |
US6335927B1 (en) | 1996-11-18 | 2002-01-01 | Mci Communications Corporation | System and method for providing requested quality of service in a hybrid network |
US5930804A (en) | 1997-06-09 | 1999-07-27 | Philips Electronics North America Corporation | Web-based biometric authentication system and method |
US6263446B1 (en) * | 1997-12-23 | 2001-07-17 | Arcot Systems, Inc. | Method and apparatus for secure distribution of authentication credentials to roaming users |
US6772336B1 (en) * | 1998-10-16 | 2004-08-03 | Alfred R. Dixon, Jr. | Computer access authentication method |
US6487665B1 (en) | 1998-11-30 | 2002-11-26 | Microsoft Corporation | Object security boundaries |
US7209889B1 (en) | 1998-12-24 | 2007-04-24 | Henry Whitfield | Secure system for the issuance, acquisition, and redemption of certificates in a transaction network |
DE69934207T2 (de) * | 1999-03-08 | 2007-10-25 | Software Ag | Verfahren zur Zugriffsprüfung eines Anwenders |
US6851051B1 (en) * | 1999-04-12 | 2005-02-01 | International Business Machines Corporation | System and method for liveness authentication using an augmented challenge/response scheme |
US6760841B1 (en) | 2000-05-01 | 2004-07-06 | Xtec, Incorporated | Methods and apparatus for securely conducting and authenticating transactions over unsecured communication channels |
US7020773B1 (en) * | 2000-07-17 | 2006-03-28 | Citrix Systems, Inc. | Strong mutual authentication of devices |
US6879690B2 (en) * | 2001-02-21 | 2005-04-12 | Nokia Corporation | Method and system for delegation of security procedures to a visited domain |
US6947902B2 (en) | 2001-05-31 | 2005-09-20 | Infonox On The Web | Active transaction generation, processing, and routing system |
US7191151B1 (en) | 2001-08-23 | 2007-03-13 | Paypal, Inc. | Instant availability of electronically transferred funds |
CA2356420A1 (en) | 2001-08-30 | 2003-02-28 | Wmode Inc. | Authentication and non-repudiation of a subscriber on a public network |
WO2003042830A1 (en) | 2001-11-14 | 2003-05-22 | Igt | Method of verifying entitlement to participate in a gaming event from a remote location |
US20030096595A1 (en) * | 2001-11-21 | 2003-05-22 | Michael Green | Authentication of a mobile telephone |
US20030110046A1 (en) | 2001-12-06 | 2003-06-12 | Nokia Corporation | Method and device for dispensing electronic information |
US20030120920A1 (en) | 2001-12-20 | 2003-06-26 | Svensson Sven Anders Borje | Remote device authentication |
US20030157925A1 (en) | 2002-02-21 | 2003-08-21 | Sorber Russell E. | Communication unit and method for facilitating prepaid communication services |
US7221935B2 (en) * | 2002-02-28 | 2007-05-22 | Telefonaktiebolaget Lm Ericsson (Publ) | System, method and apparatus for federated single sign-on services |
US20040104807A1 (en) | 2002-10-16 | 2004-06-03 | Frank Ko | Networked fingerprint authentication system and method |
WO2004077208A2 (en) | 2003-02-27 | 2004-09-10 | Rand Afrikaans University | Authentication system and method |
US7233664B2 (en) * | 2003-03-13 | 2007-06-19 | New Mexico Technical Research Foundation | Dynamic security authentication for wireless communication networks |
US7765153B2 (en) | 2003-06-10 | 2010-07-27 | Kagi, Inc. | Method and apparatus for verifying financial account information |
US20050289082A1 (en) | 2003-10-29 | 2005-12-29 | Microsoft Corporation | Secure electronic transfer without requiring knowledge of secret data |
US7657745B2 (en) | 2003-10-29 | 2010-02-02 | Microsoft Corporation | Secure electronic transfer without requiring knowledge of secret data |
US8615487B2 (en) | 2004-01-23 | 2013-12-24 | Garrison Gomez | System and method to store and retrieve identifier associated information content |
-
2004
- 2004-08-13 US US10/917,786 patent/US7519815B2/en not_active Expired - Fee Related
- 2004-09-27 TW TW093129291A patent/TW200518552A/zh unknown
- 2004-09-28 EP EP04023087A patent/EP1528707A3/en not_active Withdrawn
- 2004-09-28 IL IL164320A patent/IL164320A/en not_active IP Right Cessation
- 2004-09-28 CA CA002482696A patent/CA2482696A1/en not_active Abandoned
- 2004-09-29 MY MYPI20043996A patent/MY141019A/en unknown
- 2004-09-29 NO NO20044126A patent/NO20044126L/no not_active Application Discontinuation
- 2004-09-29 SG SG200405722A patent/SG111217A1/en unknown
- 2004-10-04 AU AU2004218603A patent/AU2004218603A1/en not_active Abandoned
- 2004-10-13 KR KR1020040081815A patent/KR20050040705A/ko not_active Application Discontinuation
- 2004-10-15 MX MXPA04010160A patent/MXPA04010160A/es active IP Right Grant
- 2004-10-20 BR BR0404490-8A patent/BRPI0404490A/pt not_active IP Right Cessation
- 2004-10-22 CO CO04106330A patent/CO5630046A1/es not_active Application Discontinuation
- 2004-10-28 RU RU2004131500/09A patent/RU2363985C2/ru not_active IP Right Cessation
- 2004-10-28 NZ NZ536222A patent/NZ536222A/en not_active IP Right Cessation
- 2004-10-29 CN CN2004100899042A patent/CN1612522B/zh not_active Expired - Fee Related
- 2004-10-29 JP JP2004316989A patent/JP4807944B2/ja not_active Expired - Fee Related
Also Published As
Publication number | Publication date |
---|---|
US7519815B2 (en) | 2009-04-14 |
JP4807944B2 (ja) | 2011-11-02 |
CA2482696A1 (en) | 2005-04-29 |
IL164320A0 (en) | 2005-12-18 |
CN1612522A (zh) | 2005-05-04 |
KR20050040705A (ko) | 2005-05-03 |
RU2363985C2 (ru) | 2009-08-10 |
SG111217A1 (en) | 2005-05-30 |
RU2004131500A (ru) | 2006-04-10 |
BRPI0404490A (pt) | 2005-06-21 |
CN1612522B (zh) | 2010-05-12 |
MXPA04010160A (es) | 2005-07-05 |
EP1528707A3 (en) | 2009-07-15 |
AU2004218603A1 (en) | 2005-05-19 |
MY141019A (en) | 2010-02-25 |
JP2005137011A (ja) | 2005-05-26 |
IL164320A (en) | 2010-04-15 |
TW200518552A (en) | 2005-06-01 |
NZ536222A (en) | 2006-10-27 |
NO20044126L (no) | 2005-05-02 |
EP1528707A2 (en) | 2005-05-04 |
US20050097325A1 (en) | 2005-05-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CO5630046A1 (es) | La autenticacion desafio-basado sin requerir conocimientos de datos de la autenticacion confidenciales | |
WO2006086929A8 (en) | System and method of mobile anti-pharming and improving two factor usage | |
WO2009117638A3 (en) | System and method for storing client-side certificate credentials | |
TW200520506A (en) | Method for using trusted, hardware-based identity credentials in runtime package signature to secure mobile communications and high-value transaction execution | |
AR051943A1 (es) | Sistema y metodo para proporcionar un protocolo para la autenticacion de multiples credenciales | |
EP1577736A3 (en) | Efficient and secure authentication of computing systems | |
WO2007121190A3 (en) | Method and apparatus for binding multiple authentications | |
DE602004020276D1 (de) | Anfrage-antwort-system und -verfahren | |
WO2009002599A3 (en) | Electronically securing an electronic device using physically unclonable functions | |
BR0301154A (pt) | Método para mudar remotamente uma senha de comunicações | |
WO2002093824A3 (en) | Authentication method | |
RU2008129307A (ru) | Аппаратура и способ для передачи объекта прав из одного устройства другому устройству посредством сервера | |
EP2348446A3 (en) | A computer implemented method for authenticating a user | |
WO2004046849A3 (en) | Cryptographic methods and apparatus for secure authentication | |
WO2006084036A3 (en) | System and method for providing peer-to-peer communication | |
CA2440546A1 (en) | Cryptographic authentication with ephemeral modules | |
TNSN07055A1 (en) | Permutation data transform to enhance security | |
JP2008131652A5 (es) | ||
SG143152A1 (en) | System and method for secure record protocol using shared knowledge of mobile user credentials | |
BRPI0811643A2 (pt) | Protocolo de login seguro | |
Goutham Reddy et al. | Lightweight authentication with key‐agreement protocol for mobile network environment using smart cards | |
WO2002005475A3 (en) | Generation and use of digital signatures | |
ATE387795T1 (de) | Verfahren zum verteilen von passwörtern | |
CN105391727A (zh) | 一种基于移动终端的系统登录方法 | |
JP4936370B2 (ja) | 鍵交換システムおよび鍵交換方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
FC | Application refused |