WO2003093942A3 - System for configuring client computers to a secure host using smart cards - Google Patents

System for configuring client computers to a secure host using smart cards

Info

Publication number
WO2003093942A3
WO2003093942A3 PCT/US2003/013799 US0313799W WO2003093942A3 WO 2003093942 A3 WO2003093942 A3 WO 2003093942A3 US 0313799 W US0313799 W US 0313799W WO 2003093942 A3 WO2003093942 A3 WO 2003093942A3
Authority
WO
Grant status
Application
Patent type
Prior art keywords
smart
cards
encryption
configuration
access
Prior art date
Application number
PCT/US2003/013799
Other languages
French (fr)
Other versions
WO2003093942A2 (en )
Inventor
Bruce Eric Ross
Original Assignee
Bruce Eric Ross
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network
    • H04L63/0823Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network
    • H04L63/083Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network
    • H04L63/0853Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network
    • H04L63/0861Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response

Abstract

The invention relates to a system and method for integrating various data platforms using smart cards. The smart card may be used to securely contain digital credentials and/or access a network or website, and may be used to retain and secure a Virtual Private Network (VPN) or Remote Access Server (RAS) configuration. The configuration may include, for example, an Internet Protocol (IP) address, type of encryption, encryption keys, digital certificates, etc. The invention further combines dedicated phone lines in combination with biometric or other identification methodologies.
PCT/US2003/013799 2002-05-01 2003-05-01 System for configuring client computers to a secure host using smart cards WO2003093942A3 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US37727902 true 2002-05-01 2002-05-01
US60/377,279 2002-05-01

Publications (2)

Publication Number Publication Date
WO2003093942A2 true WO2003093942A2 (en) 2003-11-13
WO2003093942A3 true true WO2003093942A3 (en) 2004-06-10

Family

ID=29401472

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2003/013799 WO2003093942A3 (en) 2002-05-01 2003-05-01 System for configuring client computers to a secure host using smart cards

Country Status (1)

Country Link
WO (1) WO2003093942A3 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004075097A1 (en) * 2003-02-18 2004-09-02 Biometrics Ltd Biometric identity verification system
US8375202B2 (en) * 2004-09-30 2013-02-12 Hewlett-Packard Development Company, L.P. Communications methods and appliances
US8732451B2 (en) 2009-05-20 2014-05-20 Microsoft Corporation Portable secure computing network
GB201520678D0 (en) * 2015-11-24 2016-01-06 Nokia Technologies Oy Method and apparatus for device setup

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5469506A (en) * 1994-06-27 1995-11-21 Pitney Bowes Inc. Apparatus for verifying an identification card and identifying a person by means of a biometric characteristic
US5578808A (en) * 1993-12-22 1996-11-26 Datamark Services, Inc. Data card that can be used for transactions involving separate card issuers
US5875432A (en) * 1994-08-05 1999-02-23 Sehr; Richard Peter Computerized voting information system having predefined content and voting templates

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5578808A (en) * 1993-12-22 1996-11-26 Datamark Services, Inc. Data card that can be used for transactions involving separate card issuers
US5469506A (en) * 1994-06-27 1995-11-21 Pitney Bowes Inc. Apparatus for verifying an identification card and identifying a person by means of a biometric characteristic
US5875432A (en) * 1994-08-05 1999-02-23 Sehr; Richard Peter Computerized voting information system having predefined content and voting templates

Also Published As

Publication number Publication date Type
WO2003093942A2 (en) 2003-11-13 application

Similar Documents

Publication Publication Date Title
US5778072A (en) System and method to transparently integrate private key operations from a smart card with host-based encryption services
US6748541B1 (en) User-computer interaction method for use by a population of flexibly connectable computer systems
US8307413B2 (en) Personal token and a method for controlled authentication
US20070220594A1 (en) Software based Dynamic Key Generator for Multifactor Authentication
US20070006286A1 (en) System and method for security in global computer transactions that enable reverse-authentication of a server by a client
US6880079B2 (en) Methods and systems for secure transmission of information using a mobile device
US20050149740A1 (en) Method and apparatus for device authentication
US7117364B1 (en) System and method for downloading application components to a chipcard
US7085931B1 (en) Virtual smart card system and method
US20080189543A1 (en) Method and system for reducing a size of a security-related data object stored on a token
US20100313018A1 (en) Method and system for backup and restoration of computer and user information
US20020133719A1 (en) Method and apparatus for sharing authentication information between multiple servers
US20100080383A1 (en) Secure provisioning of a portable device using a representation of a key
Liao et al. A Novel User Authentication Scheme Based on QR-Code.
WO2002084548A1 (en) Electronic settling system
WO2007107868A2 (en) A method of securely login to remote servers
US20120266224A1 (en) Method and system for user authentication
US20050050366A1 (en) Personal website for electronic commerce on a smart Java card with multiple security check points
US20060242693A1 (en) Isolated authentication device and associated methods
WO2009057771A1 (en) Electronic authentication device, electronic authentication system, electronic authentication method and its program
JP2007264835A (en) Authentication method and system
US20100107240A1 (en) Network location determination for direct access networks
WO2009001197A2 (en) A method of preventing web browser extensions from hijacking user information
US20070209014A1 (en) Method and apparatus for secure data input
US20110154452A1 (en) Methods, Systems and Computer Program Products for Secure Access to Information

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SK SL TJ TM TN TR TT TZ UA UG US UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase in:

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP