SG11201803830PA - Method, device, server and system for authenticating a user - Google Patents
Method, device, server and system for authenticating a userInfo
- Publication number
- SG11201803830PA SG11201803830PA SG11201803830PA SG11201803830PA SG11201803830PA SG 11201803830P A SG11201803830P A SG 11201803830PA SG 11201803830P A SG11201803830P A SG 11201803830PA SG 11201803830P A SG11201803830P A SG 11201803830PA SG 11201803830P A SG11201803830P A SG 11201803830PA
- Authority
- SG
- Singapore
- Prior art keywords
- vector
- user
- data
- server
- key
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/32—User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/606—Protecting data by securing the transmission between two devices or processes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3825—Use of electronic signatures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3827—Use of message hashing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04L9/0625—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation with splitting of the data block into left and right halves, e.g. Feistel based algorithms, DES, FEAL, IDEA or KASUMI
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/56—Financial cryptography, e.g. electronic payment or e-cash
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Accounting & Taxation (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- Strategic Management (AREA)
- Finance (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Storage Device Security (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
INTERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPERATION TREATY (PCT) (19) World Intellectual Property ' Organization International Bureau irst0) (43) International Publication Date .... ..sr.) 22 June 2017(22.06.2017) WIPO I PCT ID Hit (10) WO International 2017/102142 111111111111111111IIIIIIIIIIII111111111111111111111IIIIIIIIIIMIIIIIIIIIIIIIII Publication Al Number (51) International Patent Classification: (81) Designated States (unless otherwise indicated, for every GOOF 21/32 (2013.01) G06Q 20/40 (2012.01) kind of national protection available): AE, AG, AL, AM, GOOF 21/60 (2013.01) AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, (21) International Application Number: DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, PCT/EP2016/075258 HN, HR, HU, ID, IL, IN, IR, IS, JP, KE, KG, KN, KP, KR, (22) International Filing Date: KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, 20 October 2016 (20.10.2016) MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, (25) Filing Language: English SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, (26) Publication Language: English TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW. (30) Priority Data: 15307028.9 16 December 2015 (16.12.2015) EP (84) Designated States (unless otherwise indicated, for every kind of regional protection available): ARIPO (BW, GH, (71) Applicant: GEMALTO SA [FR/FR]; 6, me de la Verrer- GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, ie, 92190 Meudon (FR). TZ, UG, ZM, ZW), Eurasian (AM, AZ, BY, KG, KZ, RU, (72) Inventors: DESJARDINS, Jean-Michel; c/o Gemalto SA, TJ, TM), European (AL, AT, BE, BG, CH, CY, CZ, DE, service brevets, 525 Avenue du Pic de Bertagne, CS DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, 12023, 13881 Gemenos cedex (FR). LATHIERE, Marie; c/o Gemalto SA, service brevets, 525 Avenue du Pic de SM, TR), OAPI (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, Bertagne, CS 12023, 13881 Gemenos cedex (FR). GW, KM, ML, MR, NE, SN, TD, TG). [Continued on next page] Title: METHOD, DEVICE, SERVER AND SYSTEM FOR AUTHENTICATING A USER (54) (57) : The invention relates to a method 40 for au- thenticating a user. According to the invention,the method 11 12 14 18 comprises the following steps. A device 12 accesses 41 a key \ \ least initial The least initial is and at one vector. at one vector USER TERMINAL POS SERVER by a first algorithm, at least 414 previously generated using one 416 reference vector and reference user authentication data. The 40 at least one reference vector is previously generated without ACCESS A KEY v L._ AND AN ACCESS THE KEY data. The device INITIAL 41 using the reference user authentication ac - VECTOR ---7 - AND A REFERENCE 44 cesses data 42 and provided user authentication data 46. The 418 VECTOR device generates 48 at least one intermediary vector by using a second algorithm, the at least one initial vector and the GENERATE CRYPTO 2 authentication data. The device 410 a provided user generates WITH THE KEY, THE 46 GENERATE AN REFERENCE VECTOR AND cryptogram by using a third algorithm22, the key, the at least INTERMEDIARY THE TRANSACTION DATA VECTOR WITH one intermediary vector and the data. A server 18 receives a 48 PROVIDED USER DATA 420 request 414 for authenticating a user accompanied with the cryptogram and the data. The server accesses 416 the key and \It KC) CRYPTO 2 the at least The 418 one reference vector. server generates a GENERATE CRYPTO 1 CRYPTO 1 410----___ WITH THE KEY, THE 9 reference cryptogram by using the third algorithm, the key, 422 INTERMEDIARY VECTOR OK the at least one reference vector and the data. The server veri- AND TRANSACTION DATA USER IS fies 420 the does does whether reference cryptogram or not It AUTHENTICATED If the reference cryptogram does match the cryptogram. or 11 412 -1 .4t does not match the cryptogram, then the server does 422 or does not 424 authenticate the user respectively. The inven- ei 424 11. USER IS NOT AUTHENTICATED tion also relates to corresponding device, server and system. 11 ei 0 Fig. 4 1-1 -..„ Ir--- 1-1 0 ei O WO 2017/102142 Al 1#11101MO11111 1ER111E301011010101011101E0#011 Published: — with international search report (Art. 21(3))
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP15307028.9A EP3182315A1 (en) | 2015-12-16 | 2015-12-16 | Method, device, server and system for authenticating a user |
PCT/EP2016/075258 WO2017102142A1 (en) | 2015-12-16 | 2016-10-20 | Method, device, server and system for authenticating a user |
Publications (1)
Publication Number | Publication Date |
---|---|
SG11201803830PA true SG11201803830PA (en) | 2018-06-28 |
Family
ID=55070809
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
SG11201803830PA SG11201803830PA (en) | 2015-12-16 | 2016-10-20 | Method, device, server and system for authenticating a user |
SG10202005715QA SG10202005715QA (en) | 2015-12-16 | 2016-10-20 | Method, device, server and system for authenticating a user |
Family Applications After (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
SG10202005715QA SG10202005715QA (en) | 2015-12-16 | 2016-10-20 | Method, device, server and system for authenticating a user |
Country Status (10)
Country | Link |
---|---|
US (1) | US20190266603A1 (en) |
EP (2) | EP3182315A1 (en) |
KR (1) | KR20180086436A (en) |
AU (2) | AU2016373702A1 (en) |
BR (1) | BR112018010287B1 (en) |
ES (1) | ES2896274T3 (en) |
MX (1) | MX2018007332A (en) |
PL (1) | PL3391266T3 (en) |
SG (2) | SG11201803830PA (en) |
WO (1) | WO2017102142A1 (en) |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US11075910B2 (en) * | 2017-08-10 | 2021-07-27 | Patroness, LLC | Secure systems architecture for integrated motorized mobile systems |
US20190228410A1 (en) * | 2018-01-24 | 2019-07-25 | Mastercard International Incorporated | Method and system for generating and using contextual cryptograms for proximity and e-commerce payment |
CA3138670C (en) * | 2018-08-21 | 2023-04-25 | Visa International Service Association | System, method, and computer program product for mobile device transactions |
CN110929238B (en) * | 2019-10-29 | 2022-02-01 | 维沃移动通信有限公司 | Information processing method and device |
KR20210133471A (en) * | 2020-04-29 | 2021-11-08 | 삼성전자주식회사 | Electronic device and control method thereof |
EP3937036A1 (en) * | 2020-07-09 | 2022-01-12 | Thales DIS France SA | Method, user device, verifier device, server and system for authenticating user data while preserving user privacy |
CN112055019B (en) * | 2020-09-03 | 2022-09-27 | 深圳市百富智能新技术有限公司 | Method for establishing communication channel and user terminal |
Family Cites Families (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
BRPI0808238A2 (en) * | 2007-03-14 | 2014-07-29 | Dexrad Proprietary | IDENTIFICATION DEVICE, IDENTIFICATION AND AUTHENTICATION SYSTEM AND METHOD FOR IDENTIFYING A PERSON " |
US10354321B2 (en) * | 2009-01-22 | 2019-07-16 | First Data Corporation | Processing transactions with an extended application ID and dynamic cryptograms |
DE102009055947A1 (en) * | 2009-11-30 | 2011-06-01 | Christoph Busch | Authenticated transmission of data |
RU2663476C2 (en) * | 2013-09-20 | 2018-08-06 | Виза Интернэшнл Сервис Ассосиэйшн | Remote payment transactions protected processing, including authentication of consumers |
MX361684B (en) * | 2013-12-02 | 2018-12-13 | Mastercard International Inc | Method and system for secure tranmission of remote notification service messages to mobile devices without secure elements. |
US10116447B2 (en) * | 2015-02-17 | 2018-10-30 | Visa International Service Association | Secure authentication of user and mobile device |
US10360558B2 (en) * | 2015-03-17 | 2019-07-23 | Ca, Inc. | Simplified two factor authentication for mobile payments |
US20170032370A1 (en) * | 2015-07-27 | 2017-02-02 | Mastercard International Incorporated | Electronic payment transactions using machine readable code without requiring online connection |
-
2015
- 2015-12-16 EP EP15307028.9A patent/EP3182315A1/en not_active Withdrawn
-
2016
- 2016-10-20 AU AU2016373702A patent/AU2016373702A1/en not_active Abandoned
- 2016-10-20 US US16/062,812 patent/US20190266603A1/en not_active Abandoned
- 2016-10-20 ES ES16787776T patent/ES2896274T3/en active Active
- 2016-10-20 SG SG11201803830PA patent/SG11201803830PA/en unknown
- 2016-10-20 KR KR1020187016690A patent/KR20180086436A/en not_active Application Discontinuation
- 2016-10-20 WO PCT/EP2016/075258 patent/WO2017102142A1/en active Application Filing
- 2016-10-20 EP EP16787776.0A patent/EP3391266B1/en active Active
- 2016-10-20 SG SG10202005715QA patent/SG10202005715QA/en unknown
- 2016-10-20 MX MX2018007332A patent/MX2018007332A/en unknown
- 2016-10-20 BR BR112018010287-3A patent/BR112018010287B1/en active IP Right Grant
- 2016-10-20 PL PL16787776T patent/PL3391266T3/en unknown
-
2020
- 2020-03-23 AU AU2020202106A patent/AU2020202106B2/en active Active
Also Published As
Publication number | Publication date |
---|---|
AU2020202106A1 (en) | 2020-04-09 |
BR112018010287A2 (en) | 2018-11-27 |
EP3182315A1 (en) | 2017-06-21 |
MX2018007332A (en) | 2018-08-24 |
AU2016373702A1 (en) | 2018-06-14 |
WO2017102142A1 (en) | 2017-06-22 |
BR112018010287B1 (en) | 2023-12-19 |
AU2020202106B2 (en) | 2021-11-04 |
ES2896274T3 (en) | 2022-02-24 |
US20190266603A1 (en) | 2019-08-29 |
EP3391266B1 (en) | 2021-08-18 |
EP3391266A1 (en) | 2018-10-24 |
SG10202005715QA (en) | 2020-07-29 |
PL3391266T3 (en) | 2022-01-24 |
KR20180086436A (en) | 2018-07-31 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
SG11201803830PA (en) | Method, device, server and system for authenticating a user | |
SG11201804361YA (en) | Method for managing a trusted identity | |
SG11201903276VA (en) | Virtual reality identity verification | |
SG11201807995TA (en) | Method and system for user authentication with improved security | |
SG11201806798XA (en) | Systems and methods for allowing a user to access blocked media | |
SG11201809010TA (en) | System and methods for validating and performing operations on homomorphically encrypted data | |
SG11201804697PA (en) | Method and system for distributed cryptographic key provisioning and storage via elliptic curve cryptography | |
SG11201909630TA (en) | Anti-replay attack authentication protocol | |
SG11201811007TA (en) | Blockchain-implemented method and system | |
SG11201906532PA (en) | Key establishment and data sending method and apparatus | |
SG11201907320YA (en) | Trusted login method, server, and system | |
SG11201808737YA (en) | Unique token authentication cryptogram | |
SG11201809648QA (en) | Distributed transaction propagation and verification system | |
SG11201809866PA (en) | Cryptographic applications for a blockchain system | |
SG11201903141QA (en) | Business processing method and apparatus | |
SG11201809963XA (en) | Application framework using blockchain-based asset ownership | |
SG11201804258PA (en) | Authenticating or registering users of wearable devices using biometrics | |
SG11201903541YA (en) | Asymmetric key management in consortium blockchain networks | |
SG11201908732YA (en) | Securing blockchain transaction based on undetermined data | |
SG11201811691RA (en) | Systems and methods for verifying authenticity of id photo | |
SG11201808998RA (en) | Encryption key exchange process using access device | |
SG11201903582UA (en) | Settlement method, entrance control method, and apparatus | |
SG11201808991WA (en) | Method and system for secure data transmission | |
SG11201806709PA (en) | Universal tokenisation system for blockchain-based cryptocurrencies | |
SG11201809872TA (en) | Using hardware based secure isolated region to prevent piracy and cheating on electronic devices |