SG11201803830PA - Method, device, server and system for authenticating a user - Google Patents

Method, device, server and system for authenticating a user

Info

Publication number
SG11201803830PA
SG11201803830PA SG11201803830PA SG11201803830PA SG11201803830PA SG 11201803830P A SG11201803830P A SG 11201803830PA SG 11201803830P A SG11201803830P A SG 11201803830PA SG 11201803830P A SG11201803830P A SG 11201803830PA SG 11201803830P A SG11201803830P A SG 11201803830PA
Authority
SG
Singapore
Prior art keywords
vector
user
data
server
key
Prior art date
Application number
SG11201803830PA
Inventor
Jean-Michel Desjardins
Marie Lathiere
Original Assignee
Gemalto Sa
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Gemalto Sa filed Critical Gemalto Sa
Publication of SG11201803830PA publication Critical patent/SG11201803830PA/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/606Protecting data by securing the transmission between two devices or processes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3825Use of electronic signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3827Use of message hashing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0625Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation with splitting of the data block into left and right halves, e.g. Feistel based algorithms, DES, FEAL, IDEA or KASUMI
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Finance (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Health & Medical Sciences (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

INTERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPERATION TREATY (PCT) (19) World Intellectual Property ' Organization International Bureau irst0) (43) International Publication Date .... ..sr.) 22 June 2017(22.06.2017) WIPO I PCT ID Hit (10) WO International 2017/102142 111111111111111111IIIIIIIIIIII111111111111111111111IIIIIIIIIIMIIIIIIIIIIIIIII Publication Al Number (51) International Patent Classification: (81) Designated States (unless otherwise indicated, for every GOOF 21/32 (2013.01) G06Q 20/40 (2012.01) kind of national protection available): AE, AG, AL, AM, GOOF 21/60 (2013.01) AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, (21) International Application Number: DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, PCT/EP2016/075258 HN, HR, HU, ID, IL, IN, IR, IS, JP, KE, KG, KN, KP, KR, (22) International Filing Date: KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, 20 October 2016 (20.10.2016) MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, (25) Filing Language: English SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, (26) Publication Language: English TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW. (30) Priority Data: 15307028.9 16 December 2015 (16.12.2015) EP (84) Designated States (unless otherwise indicated, for every kind of regional protection available): ARIPO (BW, GH, (71) Applicant: GEMALTO SA [FR/FR]; 6, me de la Verrer- GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, ie, 92190 Meudon (FR). TZ, UG, ZM, ZW), Eurasian (AM, AZ, BY, KG, KZ, RU, (72) Inventors: DESJARDINS, Jean-Michel; c/o Gemalto SA, TJ, TM), European (AL, AT, BE, BG, CH, CY, CZ, DE, service brevets, 525 Avenue du Pic de Bertagne, CS DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, 12023, 13881 Gemenos cedex (FR). LATHIERE, Marie; c/o Gemalto SA, service brevets, 525 Avenue du Pic de SM, TR), OAPI (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, Bertagne, CS 12023, 13881 Gemenos cedex (FR). GW, KM, ML, MR, NE, SN, TD, TG). [Continued on next page] Title: METHOD, DEVICE, SERVER AND SYSTEM FOR AUTHENTICATING A USER (54) (57) : The invention relates to a method 40 for au- thenticating a user. According to the invention,the method 11 12 14 18 comprises the following steps. A device 12 accesses 41 a key \ \ least initial The least initial is and at one vector. at one vector USER TERMINAL POS SERVER by a first algorithm, at least 414 previously generated using one 416 reference vector and reference user authentication data. The 40 at least one reference vector is previously generated without ACCESS A KEY v L._ AND AN ACCESS THE KEY data. The device INITIAL 41 using the reference user authentication ac - VECTOR ---7 - AND A REFERENCE 44 cesses data 42 and provided user authentication data 46. The 418 VECTOR device generates 48 at least one intermediary vector by using a second algorithm, the at least one initial vector and the GENERATE CRYPTO 2 authentication data. The device 410 a provided user generates WITH THE KEY, THE 46 GENERATE AN REFERENCE VECTOR AND cryptogram by using a third algorithm22, the key, the at least INTERMEDIARY THE TRANSACTION DATA VECTOR WITH one intermediary vector and the data. A server 18 receives a 48 PROVIDED USER DATA 420 request 414 for authenticating a user accompanied with the cryptogram and the data. The server accesses 416 the key and \It KC) CRYPTO 2 the at least The 418 one reference vector. server generates a GENERATE CRYPTO 1 CRYPTO 1 410----___ WITH THE KEY, THE 9 reference cryptogram by using the third algorithm, the key, 422 INTERMEDIARY VECTOR OK the at least one reference vector and the data. The server veri- AND TRANSACTION DATA USER IS fies 420 the does does whether reference cryptogram or not It AUTHENTICATED If the reference cryptogram does match the cryptogram. or 11 412 -1 .4t does not match the cryptogram, then the server does 422 or does not 424 authenticate the user respectively. The inven- ei 424 11. USER IS NOT AUTHENTICATED tion also relates to corresponding device, server and system. 11 ei 0 Fig. 4 1-1 -..„ Ir--- 1-1 0 ei O WO 2017/102142 Al 1#11101MO11111 1ER111E301011010101011101E0#011 Published: — with international search report (Art. 21(3))
SG11201803830PA 2015-12-16 2016-10-20 Method, device, server and system for authenticating a user SG11201803830PA (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
EP15307028.9A EP3182315A1 (en) 2015-12-16 2015-12-16 Method, device, server and system for authenticating a user
PCT/EP2016/075258 WO2017102142A1 (en) 2015-12-16 2016-10-20 Method, device, server and system for authenticating a user

Publications (1)

Publication Number Publication Date
SG11201803830PA true SG11201803830PA (en) 2018-06-28

Family

ID=55070809

Family Applications (2)

Application Number Title Priority Date Filing Date
SG11201803830PA SG11201803830PA (en) 2015-12-16 2016-10-20 Method, device, server and system for authenticating a user
SG10202005715QA SG10202005715QA (en) 2015-12-16 2016-10-20 Method, device, server and system for authenticating a user

Family Applications After (1)

Application Number Title Priority Date Filing Date
SG10202005715QA SG10202005715QA (en) 2015-12-16 2016-10-20 Method, device, server and system for authenticating a user

Country Status (10)

Country Link
US (1) US20190266603A1 (en)
EP (2) EP3182315A1 (en)
KR (1) KR20180086436A (en)
AU (2) AU2016373702A1 (en)
BR (1) BR112018010287B1 (en)
ES (1) ES2896274T3 (en)
MX (1) MX2018007332A (en)
PL (1) PL3391266T3 (en)
SG (2) SG11201803830PA (en)
WO (1) WO2017102142A1 (en)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11075910B2 (en) * 2017-08-10 2021-07-27 Patroness, LLC Secure systems architecture for integrated motorized mobile systems
US20190228410A1 (en) * 2018-01-24 2019-07-25 Mastercard International Incorporated Method and system for generating and using contextual cryptograms for proximity and e-commerce payment
CA3138670C (en) * 2018-08-21 2023-04-25 Visa International Service Association System, method, and computer program product for mobile device transactions
CN110929238B (en) * 2019-10-29 2022-02-01 维沃移动通信有限公司 Information processing method and device
KR20210133471A (en) * 2020-04-29 2021-11-08 삼성전자주식회사 Electronic device and control method thereof
EP3937036A1 (en) * 2020-07-09 2022-01-12 Thales DIS France SA Method, user device, verifier device, server and system for authenticating user data while preserving user privacy
CN112055019B (en) * 2020-09-03 2022-09-27 深圳市百富智能新技术有限公司 Method for establishing communication channel and user terminal

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
BRPI0808238A2 (en) * 2007-03-14 2014-07-29 Dexrad Proprietary IDENTIFICATION DEVICE, IDENTIFICATION AND AUTHENTICATION SYSTEM AND METHOD FOR IDENTIFYING A PERSON "
US10354321B2 (en) * 2009-01-22 2019-07-16 First Data Corporation Processing transactions with an extended application ID and dynamic cryptograms
DE102009055947A1 (en) * 2009-11-30 2011-06-01 Christoph Busch Authenticated transmission of data
RU2663476C2 (en) * 2013-09-20 2018-08-06 Виза Интернэшнл Сервис Ассосиэйшн Remote payment transactions protected processing, including authentication of consumers
MX361684B (en) * 2013-12-02 2018-12-13 Mastercard International Inc Method and system for secure tranmission of remote notification service messages to mobile devices without secure elements.
US10116447B2 (en) * 2015-02-17 2018-10-30 Visa International Service Association Secure authentication of user and mobile device
US10360558B2 (en) * 2015-03-17 2019-07-23 Ca, Inc. Simplified two factor authentication for mobile payments
US20170032370A1 (en) * 2015-07-27 2017-02-02 Mastercard International Incorporated Electronic payment transactions using machine readable code without requiring online connection

Also Published As

Publication number Publication date
AU2020202106A1 (en) 2020-04-09
BR112018010287A2 (en) 2018-11-27
EP3182315A1 (en) 2017-06-21
MX2018007332A (en) 2018-08-24
AU2016373702A1 (en) 2018-06-14
WO2017102142A1 (en) 2017-06-22
BR112018010287B1 (en) 2023-12-19
AU2020202106B2 (en) 2021-11-04
ES2896274T3 (en) 2022-02-24
US20190266603A1 (en) 2019-08-29
EP3391266B1 (en) 2021-08-18
EP3391266A1 (en) 2018-10-24
SG10202005715QA (en) 2020-07-29
PL3391266T3 (en) 2022-01-24
KR20180086436A (en) 2018-07-31

Similar Documents

Publication Publication Date Title
SG11201803830PA (en) Method, device, server and system for authenticating a user
SG11201804361YA (en) Method for managing a trusted identity
SG11201903276VA (en) Virtual reality identity verification
SG11201807995TA (en) Method and system for user authentication with improved security
SG11201806798XA (en) Systems and methods for allowing a user to access blocked media
SG11201809010TA (en) System and methods for validating and performing operations on homomorphically encrypted data
SG11201804697PA (en) Method and system for distributed cryptographic key provisioning and storage via elliptic curve cryptography
SG11201909630TA (en) Anti-replay attack authentication protocol
SG11201811007TA (en) Blockchain-implemented method and system
SG11201906532PA (en) Key establishment and data sending method and apparatus
SG11201907320YA (en) Trusted login method, server, and system
SG11201808737YA (en) Unique token authentication cryptogram
SG11201809648QA (en) Distributed transaction propagation and verification system
SG11201809866PA (en) Cryptographic applications for a blockchain system
SG11201903141QA (en) Business processing method and apparatus
SG11201809963XA (en) Application framework using blockchain-based asset ownership
SG11201804258PA (en) Authenticating or registering users of wearable devices using biometrics
SG11201903541YA (en) Asymmetric key management in consortium blockchain networks
SG11201908732YA (en) Securing blockchain transaction based on undetermined data
SG11201811691RA (en) Systems and methods for verifying authenticity of id photo
SG11201808998RA (en) Encryption key exchange process using access device
SG11201903582UA (en) Settlement method, entrance control method, and apparatus
SG11201808991WA (en) Method and system for secure data transmission
SG11201806709PA (en) Universal tokenisation system for blockchain-based cryptocurrencies
SG11201809872TA (en) Using hardware based secure isolated region to prevent piracy and cheating on electronic devices