WO2004105309A3 - Access authentication - Google Patents

Access authentication Download PDF

Info

Publication number
WO2004105309A3
WO2004105309A3 PCT/EP2004/005522 EP2004005522W WO2004105309A3 WO 2004105309 A3 WO2004105309 A3 WO 2004105309A3 EP 2004005522 W EP2004005522 W EP 2004005522W WO 2004105309 A3 WO2004105309 A3 WO 2004105309A3
Authority
WO
WIPO (PCT)
Prior art keywords
client
access authentication
service
service provider
session
Prior art date
Application number
PCT/EP2004/005522
Other languages
French (fr)
Other versions
WO2004105309A2 (en
Inventor
Jens Bjarme
Michael Skoog
Patrik Schalin
Bernard Smeets
Original Assignee
Ericsson Telefon Ab L M
Jens Bjarme
Michael Skoog
Patrik Schalin
Bernard Smeets
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from EP03253137A external-priority patent/EP1480374B1/en
Application filed by Ericsson Telefon Ab L M, Jens Bjarme, Michael Skoog, Patrik Schalin, Bernard Smeets filed Critical Ericsson Telefon Ab L M
Publication of WO2004105309A2 publication Critical patent/WO2004105309A2/en
Publication of WO2004105309A3 publication Critical patent/WO2004105309A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/067Network architectures or network communication protocols for network security for supporting key management in a packet data network using one-time keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer And Data Communications (AREA)

Abstract

A method of authenticating a client for a service on a network, wherein the client is authenticated by a service provider and granted permissions for the service if the client can read a service provider session secret, calculate a client session secret and upon comparison of the service provider and client session secrets grant permissions.
PCT/EP2004/005522 2003-05-20 2004-05-21 Access authentication WO2004105309A2 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
EP03253137.8 2003-05-20
EP03253137A EP1480374B1 (en) 2003-05-20 2003-05-20 Access authentication
US47383403P 2003-05-27 2003-05-27
US60/473,834 2003-05-27

Publications (2)

Publication Number Publication Date
WO2004105309A2 WO2004105309A2 (en) 2004-12-02
WO2004105309A3 true WO2004105309A3 (en) 2005-02-17

Family

ID=33477643

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2004/005522 WO2004105309A2 (en) 2003-05-20 2004-05-21 Access authentication

Country Status (1)

Country Link
WO (1) WO2004105309A2 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5668876A (en) * 1994-06-24 1997-09-16 Telefonaktiebolaget Lm Ericsson User authentication method and apparatus
US6226383B1 (en) * 1996-04-17 2001-05-01 Integrity Sciences, Inc. Cryptographic methods for remote authentication
US20020023213A1 (en) * 2000-06-12 2002-02-21 Tia Walker Encryption system that dynamically locates keys

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5668876A (en) * 1994-06-24 1997-09-16 Telefonaktiebolaget Lm Ericsson User authentication method and apparatus
US6226383B1 (en) * 1996-04-17 2001-05-01 Integrity Sciences, Inc. Cryptographic methods for remote authentication
US20020023213A1 (en) * 2000-06-12 2002-02-21 Tia Walker Encryption system that dynamically locates keys

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
MENEZES A ET AL: "Handbook of Applied Cryptography , IDENTIFICATION AND ENTITY AUTHENTICATION", HANDBOOK OF APPLIED CRYPTOGRAPHY, CRC PRESS SERIES ON DISCRETE MATHEMATICES AND ITS APPLICATIONS, BOCA RATON, FL, CRC PRESS, US, 1997, pages 385 - 424, XP002262234, ISBN: 0-8493-8523-7 *
MENEZES A ET AL: "Handbook of Applied Cryptography KEY ESTABLISHMENT PROTOCOLS", HANDBOOK OF APPLIED CRYPTOGRAPHY, CRC PRESS SERIES ON DISCRETE MATHEMATICES AND ITS APPLICATIONS, BOCA RATON, FL, CRC PRESS, US, 1997, pages 489 - 541, XP002304953, ISBN: 0-8493-8523-7 *

Also Published As

Publication number Publication date
WO2004105309A2 (en) 2004-12-02

Similar Documents

Publication Publication Date Title
WO2003032126A3 (en) Multi-factor authentication system
WO2003100544A3 (en) Method for authenticating a user to a service of a service provider
WO2007039866A3 (en) System and/or method for authentication and/or authorization via a network
WO2007039865A3 (en) System and/or method for authentication and/or authorization
WO2005003907A3 (en) Method and apparatus to authenticate and authorize user access to a system
GB2464552B (en) Authentication system and method for authenticating a user terminal with an access node providing restricted access to a communication network
WO2009068956A3 (en) Authentication method without credential duplication for users belonging to different organizations
WO1999060750A3 (en) Preventing unauthorized use of service
MY145724A (en) Persistent authorization context based on external authentication
WO2002019593A3 (en) End-user authentication independent of network service provider
WO2005096701A3 (en) System and method for enabling authorization of a network device using attribute certificates
WO2004034213A3 (en) Localized network authentication and security using tamper-resistant keys
WO2006019752A8 (en) Methods for authorizing transmission of content from first to second individual and authentication an individual based on an individual’s social network
WO2007047440A3 (en) Method and apparatus for re-authentication of a computing device using cached state
WO2007039874A3 (en) System and/or method for role-based authorization
WO2005065132A3 (en) System, method, and devices for authentication in a wireless local area network (wlan)
WO2002093824A3 (en) Authentication method
WO2007114866A3 (en) Method off-line authentication on a limited-resource device
WO2006027650A3 (en) Service authentication
WO2004027588A3 (en) Certificate based authorized domains
WO2004008683A3 (en) Automated network security system and method
WO2004080096A3 (en) User plane-based location services (lcs) system, method and apparatus
EP1343345A3 (en) Mobile authentication system with reduced authentication delay
WO2006118829A3 (en) Preventing fraudulent internet account access
WO2006039365A3 (en) Method and system of authentication on an open network

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase