EA202092438A1 - Система многофакторной аутентификации для одного устройства - Google Patents
Система многофакторной аутентификации для одного устройстваInfo
- Publication number
- EA202092438A1 EA202092438A1 EA202092438A EA202092438A EA202092438A1 EA 202092438 A1 EA202092438 A1 EA 202092438A1 EA 202092438 A EA202092438 A EA 202092438A EA 202092438 A EA202092438 A EA 202092438A EA 202092438 A1 EA202092438 A1 EA 202092438A1
- Authority
- EA
- Eurasian Patent Office
- Prior art keywords
- user
- code
- applications
- websites
- stored
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/36—User authentication by graphic or iconic representation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
- G06F21/6254—Protecting personal data, e.g. for financial or medical purposes by anonymising data, e.g. decorrelating personal data from the owner's identification
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0861—Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0866—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0877—Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3239—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/082—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying multi-factor authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Theoretical Computer Science (AREA)
- General Health & Medical Sciences (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Biomedical Technology (AREA)
- Medical Informatics (AREA)
- Databases & Information Systems (AREA)
- User Interface Of Digital Computer (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
- Computer And Data Communications (AREA)
Abstract
Система многофакторной аутентификации поддерживает множество механизмов ввода пароля (например, буквенно-цифровой, визуальный, голосовой и т.д.), которые могут использоваться для аутентификации пользователя для доступа к множеству мест назначения: приложений и веб-сайтов. Примеры способов и систем включают генератор паролей в реальном времени, который создает уникальные и сложные пароли независимо от подключения к Интернету для нескольких различных поставщиков услуг (например, сторонних приложений, облачных служб, веб-сайтов и т.д., которые включают аутентификацию пользователей) без хранения паролей в локальной или сетевой памяти (например, хранилище паролей). В ответ на получение запроса на вход пользовательское устройство предлагает пользователю предоставить код доступа и генерирует ключ места назначения на основе надежно сохраненного кода идентификатора. Ключ места назначения может быть повторно сгенерирован с использованием сохраненного кода идентификатора и кода доступа. Один и тот же сохраненный код идентификатора и полученный код доступа можно использовать для повторного генерирования разных ключей мест назначения для разных приложений или служб.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US15/952,533 US20180278600A1 (en) | 2016-01-19 | 2018-04-13 | Multi-factor masked access control system |
PCT/US2019/024306 WO2019199460A1 (en) | 2018-04-13 | 2019-03-27 | Single-device multi-factor authentication system |
Publications (1)
Publication Number | Publication Date |
---|---|
EA202092438A1 true EA202092438A1 (ru) | 2021-01-27 |
Family
ID=68164475
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EA202092438A EA202092438A1 (ru) | 2018-04-13 | 2019-03-27 | Система многофакторной аутентификации для одного устройства |
Country Status (5)
Country | Link |
---|---|
JP (1) | JP2021521531A (ru) |
KR (1) | KR20200132999A (ru) |
CN (1) | CN112689980A (ru) |
EA (1) | EA202092438A1 (ru) |
WO (1) | WO2019199460A1 (ru) |
Family Cites Families (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP4440513B2 (ja) * | 2002-03-14 | 2010-03-24 | 明宏 清水 | 資格認証方法 |
US20080216153A1 (en) * | 2007-03-02 | 2008-09-04 | Aaltonen Janne L | Systems and methods for facilitating authentication of network devices |
US20100043062A1 (en) * | 2007-09-17 | 2010-02-18 | Samuel Wayne Alexander | Methods and Systems for Management of Image-Based Password Accounts |
US9659164B2 (en) * | 2011-08-02 | 2017-05-23 | Qualcomm Incorporated | Method and apparatus for using a multi-factor password or a dynamic password for enhanced security on a device |
US8789150B2 (en) * | 2011-09-22 | 2014-07-22 | Kinesis Identity Security System Inc. | System and method for user authentication |
JP5947453B2 (ja) * | 2012-04-25 | 2016-07-06 | ロウェム インコーポレイテッド | パスコード運営システム、パスコード装置、及びスーパーパスコードの生成方法 |
EP3350738A4 (en) * | 2015-09-18 | 2019-03-27 | First Data Corporation | SYSTEM FOR VALIDATING A BIOMETRIC INPUT |
US20170205968A1 (en) * | 2016-01-19 | 2017-07-20 | Regwez, Inc. | Multimode user interface |
EP3424179B1 (en) * | 2016-03-04 | 2022-02-16 | Ping Identity Corporation | Method and system for authenticated login using static or dynamic codes |
-
2019
- 2019-03-27 CN CN201980039612.2A patent/CN112689980A/zh active Pending
- 2019-03-27 EA EA202092438A patent/EA202092438A1/ru unknown
- 2019-03-27 WO PCT/US2019/024306 patent/WO2019199460A1/en active Application Filing
- 2019-03-27 JP JP2020555918A patent/JP2021521531A/ja active Pending
- 2019-03-27 KR KR1020207032492A patent/KR20200132999A/ko not_active Application Discontinuation
Also Published As
Publication number | Publication date |
---|---|
KR20200132999A (ko) | 2020-11-25 |
JP2021521531A (ja) | 2021-08-26 |
EP3777092A1 (en) | 2021-02-17 |
CN112689980A (zh) | 2021-04-20 |
WO2019199460A1 (en) | 2019-10-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10404680B2 (en) | Method for obtaining vetted certificates by microservices in elastic cloud environments | |
US9491165B2 (en) | Providing a service based on time and location based passwords | |
US9609514B2 (en) | System and method for securing a conference bridge from eavesdropping | |
US11178132B2 (en) | Unified VPN and identity based authentication to cloud-based services | |
US9838366B2 (en) | Secure shell public key audit system | |
US10320771B2 (en) | Single sign-on framework for browser-based applications and native applications | |
US10206099B1 (en) | Geolocation-based two-factor authentication | |
WO2018121445A1 (zh) | 一种多租户访问控制方法和装置 | |
BR112017019089A2 (pt) | conectividade patrocinada com redes celulares que utilizam credenciais existentes | |
EP4362396A3 (en) | Systems and method for authenticating users of a data processing platform from multiple identity providers | |
RU2017115774A (ru) | Системы и способы для защиты сетевых устройств | |
GB2560434A8 (en) | Securely transferring user information between applications | |
US9231940B2 (en) | Credential linking across multiple services | |
KR102274285B1 (ko) | 동적 공유 시크릿 분배 방식의 otp 보안관리 방법 | |
JP2017509964A (ja) | 異種アイデンティティサービスに基づくユーザの仮想アイデンティティ | |
US20140351260A1 (en) | Encrypted search acceleration | |
US20060143705A1 (en) | User authentication in a conversion system | |
CN103944889A (zh) | 一种网络用户在线身份认证的方法和认证服务器 | |
US9941964B2 (en) | Authentication for wireless local area networks | |
US9948648B1 (en) | System and method for enforcing access control to publicly-accessible web applications | |
EA202092438A1 (ru) | Система многофакторной аутентификации для одного устройства | |
US11503025B2 (en) | Solution for receiving network service | |
ATE387795T1 (de) | Verfahren zum verteilen von passwörtern | |
EP3953841A1 (en) | Managing user identities in a managed multi-tenant service | |
US20130247162A1 (en) | Single authentication context for network and application access |