WO2003093923A3 - System and apparatus for authenticating to a system or network - Google Patents

System and apparatus for authenticating to a system or network Download PDF

Info

Publication number
WO2003093923A3
WO2003093923A3 PCT/IB2003/003301 IB0303301W WO03093923A3 WO 2003093923 A3 WO2003093923 A3 WO 2003093923A3 IB 0303301 W IB0303301 W IB 0303301W WO 03093923 A3 WO03093923 A3 WO 03093923A3
Authority
WO
WIPO (PCT)
Prior art keywords
biotoken
biometric
secure
server
validation
Prior art date
Application number
PCT/IB2003/003301
Other languages
French (fr)
Other versions
WO2003093923A2 (en
Inventor
Robert Eryou
Clovis Najm
Original Assignee
Robert Eryou
Clovis Najm
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Robert Eryou, Clovis Najm filed Critical Robert Eryou
Priority to EP03747532A priority Critical patent/EP1506469A2/en
Priority to AU2003247117A priority patent/AU2003247117B2/en
Priority to CA2483989A priority patent/CA2483989C/en
Publication of WO2003093923A2 publication Critical patent/WO2003093923A2/en
Publication of WO2003093923A3 publication Critical patent/WO2003093923A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/42User authentication using separate channels for security data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2149Restricted operating environment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/76Proxy, i.e. using intermediary entity to perform cryptographic operations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords

Abstract

A mobile biometric device, or biotoken and server are disclosed that permit biometric validation of a person that has initialized the biotoken and has communicated one or more codes generated by the biotoken to a server over either a secure or unsecure communications channel. The biotoken that includes a means for capturing biometric information, for hashing some portion of information, and for transmitting or displaying a code that is calculated using a clock value, a random number, a secure hash function and a counter. The server includes functions for initializing the biometric device, for storing key values responsive to initialization, and for validating codes that are provided responsive to future use of the biometric device following a request for validation. Additional functions and features are also disclosed for creating a secure, auditable and private application space on a device or machine, such as a computer or cell phone.
PCT/IB2003/003301 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network WO2003093923A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
EP03747532A EP1506469A2 (en) 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network
AU2003247117A AU2003247117B2 (en) 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network
CA2483989A CA2483989C (en) 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US37713202P 2002-04-30 2002-04-30
US37719202P 2002-04-30 2002-04-30
US60/377,192 2002-04-30
US60/377,132 2002-04-30

Publications (2)

Publication Number Publication Date
WO2003093923A2 WO2003093923A2 (en) 2003-11-13
WO2003093923A3 true WO2003093923A3 (en) 2004-12-23

Family

ID=29406780

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2003/003301 WO2003093923A2 (en) 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network

Country Status (4)

Country Link
EP (1) EP1506469A2 (en)
AU (1) AU2003247117B2 (en)
CA (1) CA2483989C (en)
WO (1) WO2003093923A2 (en)

Families Citing this family (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
NO321850B1 (en) * 2004-06-25 2006-07-10 Buypass As Procedure for generating and verifying an electronic signature
US7707622B2 (en) 2004-11-18 2010-04-27 Biogy, Inc. API for a system having a passcode authenticator
US8209751B2 (en) 2004-11-18 2012-06-26 Biogy, Inc. Receiving an access key
US7702911B2 (en) 2004-11-18 2010-04-20 Biogy, Inc. Interfacing with a system that includes a passcode authenticator
US7886155B2 (en) 2004-12-20 2011-02-08 Biogy, Inc. System for generating requests to a passcode protected entity
WO2006069082A2 (en) 2004-12-20 2006-06-29 Bionopoly Llc Access keys
WO2007036763A1 (en) * 2005-09-29 2007-04-05 Clovis Najm Biometric authentication system
ATE495504T1 (en) 2005-10-26 2011-01-15 Swisscom Ag METHOD AND COMMUNICATION SYSTEM FOR COMPARING BIOMETRIC DATA RECORDED WITH BIOMETRIC SENSORS WITH REFERENCE DATA
EP1868126B1 (en) * 2006-06-16 2011-08-10 Thomson Licensing Device and method for discovering emulated clients
RU2451409C2 (en) * 2010-01-26 2012-05-20 Российская Федерация, от имени которой выступает Федеральная служба по техническому и экспортному контролю (ФСТЭК России) Method for unambiguous hashing of ambiguous biometric data
CN104125070B (en) * 2014-07-30 2018-05-15 中国银行股份有限公司 A kind of mutual trust authentication method and system for multiple information interaction systems
TWI725696B (en) 2020-01-07 2021-04-21 緯創資通股份有限公司 Mobile device, verification terminal device and identity verification method
EP3917103A1 (en) * 2020-05-29 2021-12-01 Siemens Aktiengesellschaft Method, system, transmitter and receiver for authenticating a transmitter
CN111783071B (en) * 2020-07-07 2024-04-19 支付宝(杭州)信息技术有限公司 Verification method, device, equipment and system based on password and privacy data

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2000042491A1 (en) * 1999-01-15 2000-07-20 Rainbow Technologies, Inc. Usb-compliant personal key with integral input and output devices
WO2000045551A1 (en) * 1999-01-27 2000-08-03 International Business Machines Corporation Protection of biometric data via key-dependent sampling
WO2001082190A1 (en) * 2000-04-26 2001-11-01 Global Transaction Company Multi-tiered identity verification authority for e-commerce

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2000042491A1 (en) * 1999-01-15 2000-07-20 Rainbow Technologies, Inc. Usb-compliant personal key with integral input and output devices
WO2000045551A1 (en) * 1999-01-27 2000-08-03 International Business Machines Corporation Protection of biometric data via key-dependent sampling
WO2001082190A1 (en) * 2000-04-26 2001-11-01 Global Transaction Company Multi-tiered identity verification authority for e-commerce

Also Published As

Publication number Publication date
AU2003247117B2 (en) 2010-01-21
AU2003247117A1 (en) 2003-11-17
WO2003093923A2 (en) 2003-11-13
CA2483989C (en) 2013-04-09
CA2483989A1 (en) 2003-11-13
EP1506469A2 (en) 2005-02-16

Similar Documents

Publication Publication Date Title
CN107453862B (en) Scheme for generating, storing and using private key
CN105303659B (en) A kind of gate inhibition's personal identification method and device based on ultrasonic wave
US8214888B2 (en) Two-factor USB authentication token
TWI268688B (en) System and method for acoustic two factor authentication
CN108270571A (en) Internet of Things identity authorization system and its method based on block chain
CN101404577B (en) Secret communication method for amalgamating multi-secrecy technology
WO2003093923A3 (en) System and apparatus for authenticating to a system or network
EP1338940A1 (en) Universal password generator
WO2004046849A3 (en) Cryptographic methods and apparatus for secure authentication
CN105516201A (en) Lightweight anonymous authentication and key negotiation method in multi-server environment
BRPI0519184A2 (en) Methods for authenticating a remote service to a user, and for mutually authenticating a remote service user and a remote service, software architecture, authentication device, and methods for authenticating a second user's identity and / or credentials to create an authentication device and to authenticate a user to a remote service
AU2003276090A1 (en) Secure communications
TWI256227B (en) Device, system and method to manage security credentials in a protected computer network domain
WO2003032126A3 (en) Multi-factor authentication system
CN101129018A (en) Small public-key based digital signatures for authentication
CA2541639A1 (en) System and method for application authorization
WO2006107542A3 (en) System and method for achieving machine authentication without maintaining additional credentials
AU4572700A (en) Method and device for authenticating a program code
KR20140046474A (en) Communication method utilizing fingerprint information for authentication
CN109075965A (en) Use the mthods, systems and devices for the forward secrecy cryptographic technique that password code is verified
CN109660494A (en) The signature method, apparatus and server of electronic contract
CN101964789A (en) Method and system for safely accessing protected resources
JP2011165102A (en) Biometrics authentication system and portable terminal
WO2002058357A3 (en) Pre-authentication of users using one-time passwords
US8756666B1 (en) Generating authentication codes

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SK SL TJ TM TN TR TT TZ UA UG US UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2003247117

Country of ref document: AU

WWE Wipo information: entry into national phase

Ref document number: 3207/DELNP/2004

Country of ref document: IN

Ref document number: 2003747532

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2483989

Country of ref document: CA

WWP Wipo information: published in national office

Ref document number: 2003747532

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Ref document number: JP